summaryrefslogtreecommitdiff
path: root/LICENSE
diff options
context:
space:
mode:
authorRobert Yang <liezhi.yang@windriver.com>2017-08-29 17:48:57 -0700
committerRichard Purdie <richard.purdie@linuxfoundation.org>2017-08-30 11:19:35 +0100
commit1b87201784e733f3a9d436f56cb5a6151ba6bdfa (patch)
tree1024d043ef71f54eb436265efbb72072d3f8d576 /LICENSE
parentdd63a26fedb8a578d34850ede4c27e26b8876e7e (diff)
downloadopenembedded-core-1b87201784e733f3a9d436f56cb5a6151ba6bdfa.tar.gz
openembedded-core-1b87201784e733f3a9d436f56cb5a6151ba6bdfa.tar.bz2
openembedded-core-1b87201784e733f3a9d436f56cb5a6151ba6bdfa.zip
libpcre2: Fix CVE-2017-7186
A fuzz on libpcre1 through the pcretest utility revealed an invalid read in the library. For who is interested in a detailed description of the bug, will follow a feedback from upstream: This was a genuine bug in the 32-bit library. Thanks for finding it. The crash was caused by trying to find a Unicode property for a code value greater than 0x10ffff, the Unicode maximum, when running in non-UTF mode (where character values can be up to 0xffffffff). Signed-off-by: Robert Yang <liezhi.yang@windriver.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
Diffstat (limited to 'LICENSE')
0 files changed, 0 insertions, 0 deletions
generated by cgit v1.2.3 (git 2.25.1) at 2025-03-19 19:02:54 +0000