<feed xmlns='http://www.w3.org/2005/Atom'>
<title>buildroot/package/libnss/0001-uclibc.patch, branch 2017.02.2</title>
<subtitle>OpenPOWER buildroot sources</subtitle>
<id>https://git.raptorcs.com/git/buildroot/atom?h=2017.02.2</id>
<link rel='self' href='https://git.raptorcs.com/git/buildroot/atom?h=2017.02.2'/>
<link rel='alternate' type='text/html' href='https://git.raptorcs.com/git/buildroot/'/>
<updated>2017-04-24T15:47:46+00:00</updated>
<entry>
<title>libnss: security bump to version 3.30.2</title>
<updated>2017-04-24T15:47:46+00:00</updated>
<author>
<name>Baruch Siach</name>
<email>baruch@tkos.co.il</email>
</author>
<published>2017-04-20T17:34:29+00:00</published>
<link rel='alternate' type='text/html' href='https://git.raptorcs.com/git/buildroot/commit/?id=bb64a4f87e959d07ac7dd325d05c6afd1f2592ee'/>
<id>urn:sha1:bb64a4f87e959d07ac7dd325d05c6afd1f2592ee</id>
<content type='text'>
CVE-2017-5461 - Out-of-bounds write in Base64 encoding in NSS. Might cause
remote arbitrary code execution
(https://access.redhat.com/errata/RHSA-2017:1100).

CVE-2017-5462 - DRBG flaw in NSS

Drop 0001-cross-compile.patch and TARGET* variables. Upstream Makefile now
allows override of CC, so use TARGET_CONFIGURE_OPTS instead.

Drop upstream 0003-it-uninitialized-fix.patch.

Renumber the remaining patch.

Signed-off-by: Baruch Siach &lt;baruch@tkos.co.il&gt;
Signed-off-by: Thomas Petazzoni &lt;thomas.petazzoni@free-electrons.com&gt;
(cherry picked from commit 09b8e1079ec97d9843430930414a95ac8450a652)
Signed-off-by: Peter Korsgaard &lt;peter@korsgaard.com&gt;
</content>
</entry>
</feed>
