arne/openwrt
1
0
Fork 0
forked from mirror/openwrt
Code Pull requests Activity
openwrt/package
History
Hauke Mehrtens 6637af95aa bsdiff: Add patches for CVEs 
Add two patches from Debian fixing CVEs in the bsdiff application.
CVE-2014-9862: Heap vulnerability in bspatch
CVE-2020-14315: Memory Corruption Vulnerability in bspatch

Copied the patches from this location:
https://salsa.debian.org/debian/bsdiff/-/blob/debian/latest/debian/patches/20-CVE-2014-9862.patch
https://salsa.debian.org/debian/bsdiff/-/blob/debian/latest/debian/patches/33-CVE-2020-14315.patch

Signed-off-by: Hauke Mehrtens <hauke@hauke-m.de>
(cherry picked from commit cac723e8b8)
2023-10-09 23:45:35 +02:00
..
base-files OpenWrt v23.05.0-rc4: revert to branch defaults 2023-09-29 20:28:43 +02:00
boot treewide: Add extra CPE identifier 2023-09-27 22:37:13 +02:00
devel perf: opt-out of lto usage 2023-08-11 12:53:34 +02:00
firmware packages: assign PKG_CPE_ID for all missing packages 2023-09-27 22:37:01 +02:00
kernel mac80211: fix AP reconfiguration on DFS channels in non-ETSI regdomain 2023-09-18 16:52:25 +02:00
libs treewide: Add extra CPE identifier 2023-09-27 22:37:13 +02:00
network uqmi: added timeout to fix hanging qmi.sh 2023-10-08 14:14:50 +02:00
system treewide: Add extra CPE identifier 2023-09-27 22:37:13 +02:00
utils bsdiff: Add patches for CVEs 2023-10-09 23:45:35 +02:00
Makefile build: generate index.json 2023-05-09 23:56:49 +02:00