diff options
author | Hauke Mehrtens <hauke@hauke-m.de> | 2022-11-01 15:23:17 +0100 |
---|---|---|
committer | Hauke Mehrtens <hauke@hauke-m.de> | 2022-11-05 22:43:45 +0100 |
commit | 13bd217821e766110298498d0b73c4394e3330bd (patch) | |
tree | a622ff69ca8403470b31eed2592430ffa5befc36 /package/utils/busybox/config/util-linux/Config.in | |
parent | fe5cd3c9d97caf8c201c0c9953cfd52bec071108 (diff) | |
download | upstream-13bd217821e766110298498d0b73c4394e3330bd.tar.gz upstream-13bd217821e766110298498d0b73c4394e3330bd.tar.bz2 upstream-13bd217821e766110298498d0b73c4394e3330bd.zip |
busybox: awk: fix use after free (CVE-2022-30065)
This backports a commit which fixes a use after free bug in awk.
CVE-2022-30065 description:
A use-after-free in Busybox 1.35-x's awk applet leads to denial of
service and possibly code execution when processing a crafted awk
pattern in the copyvar function.
Signed-off-by: Hauke Mehrtens <hauke@hauke-m.de>
(cherry picked from commit 8b383ee2a0d21144258346ad39006fc499d04b4f)
Diffstat (limited to 'package/utils/busybox/config/util-linux/Config.in')
0 files changed, 0 insertions, 0 deletions