openembedded-core.git - Mirror of openembedded-core

diff options

author	Yue Tao <Yue.Tao@windriver.com>	2014-04-08 19:15:05 +0100
committer	Richard Purdie <richard.purdie@linuxfoundation.org>	2014-04-09 08:59:17 +0100
commit	a5060594208de172cb31ad406b34b25decd061e4 (patch)
tree	56ec73783646e5c01228b034e434343cc197e0e5 /scripts/lib
parent	590c2135858bb5d0cfc375c0d82ca610550ccd4a (diff)
download	openembedded-core-a5060594208de172cb31ad406b34b25decd061e4.tar.gz openembedded-core-a5060594208de172cb31ad406b34b25decd061e4.tar.bz2 openembedded-core-a5060594208de172cb31ad406b34b25decd061e4.zip

Security Advisory - openssl - CVE-2013-4353

The ssl3_take_mac function in ssl/s3_both.c in OpenSSL 1.0.1 before 1.0.1f allows remote TLS servers to cause a denial of service (NULL pointer dereference and application crash) via a crafted Next Protocol Negotiation record in a TLS handshake. (From OE-Core master rev: 35ccce7002188c8270d2fead35f9763b22776877) Signed-off-by: Yue Tao <Yue.Tao@windriver.com> Signed-off-by: Jackie Huang <jackie.huang@windriver.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>

Diffstat (limited to 'scripts/lib')

0 files changed, 0 insertions, 0 deletions


context:
space:
mode: