openembedded-core.git - Mirror of openembedded-core

diff options

author	yanjun.zhu <yanjun.zhu@windriver.com>	2012-11-30 19:23:48 +0800
committer	Ross Burton <ross.burton@intel.com>	2013-02-19 11:31:55 +0000
commit	11544f573bc94ce69a8a76d645e46ab6359dee78 (patch)
tree	447eaebc6a4fbf1ce2d099f7348b5373a5d59d66 /scripts/qemuimage-testlib
parent	00d0e1ac741e5fc01a40feb7dcc7ecd3906b5ce4 (diff)
download	openembedded-core-11544f573bc94ce69a8a76d645e46ab6359dee78.tar.gz openembedded-core-11544f573bc94ce69a8a76d645e46ab6359dee78.tar.bz2 openembedded-core-11544f573bc94ce69a8a76d645e46ab6359dee78.zip

Python: Fix for CVE-2012-2135

Reference:http://http://bugs.python.org/issue14579 The utf-16 decoder in Python 3.1 through 3.3 does not update the aligned_end variable after calling the unicode_decode_call_errorhandler function, which allows remote attackers to obtain sensitive information (process memory) or cause a denial of service (memory corruption and crash) via unspecified vectors. http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2012-2135 [YOCTO #3450] Signed-off-by: yanjun.zhu <yanjun.zhu@windriver.com>

Diffstat (limited to 'scripts/qemuimage-testlib')

0 files changed, 0 insertions, 0 deletions


context:
space:
mode: