diff options
author | Fabio Berton <fabio.berton@ossystems.com.br> | 2016-11-03 18:41:58 -0200 |
---|---|---|
committer | Richard Purdie <richard.purdie@linuxfoundation.org> | 2016-11-15 15:18:48 +0000 |
commit | 0154ff997db8021f93e6ffe8f7a0627d7a1d9b89 (patch) | |
tree | 47ec1ee507766e1310b7225b8f974228b2ee5176 /scripts/sstate-diff-machines.sh | |
parent | 6dadb648494c76b6326874731b4e918f62741b62 (diff) | |
download | openembedded-core-0154ff997db8021f93e6ffe8f7a0627d7a1d9b89.tar.gz openembedded-core-0154ff997db8021f93e6ffe8f7a0627d7a1d9b89.tar.bz2 openembedded-core-0154ff997db8021f93e6ffe8f7a0627d7a1d9b89.zip |
curl: Update to version 7.51.0
CVE fixed in 7.51.0:
CVE-2016-8615: cookie injection for other servers
CVE-2016-8616: case insensitive password comparison
CVE-2016-8617: OOB write via unchecked multiplication
CVE-2016-8618: double-free in curl_maprintf
CVE-2016-8619: double-free in krb5 code
CVE-2016-8620: glob parser write/read out of bounds
CVE-2016-8621: curl_getdate read out of bounds
CVE-2016-8622: URL unescape heap overflow via integer truncation
CVE-2016-8623: Use-after-free via shared cookies
CVE-2016-8624: invalid URL parsing with '#'
CVE-2016-8625: IDNA 2003 makes curl use wrong host
To see complete log access link bellow:
https://curl.haxx.se/changes.html#7_51_0
Signed-off-by: Fabio Berton <fabio.berton@ossystems.com.br>
Signed-off-by: Ross Burton <ross.burton@intel.com>
Diffstat (limited to 'scripts/sstate-diff-machines.sh')
0 files changed, 0 insertions, 0 deletions