openwrt/upstream - upstream openwrt

diff options

author	Petr Štetiar <ynezz@true.cz>	2022-08-06 14:55:07 +0200
committer	Petr Štetiar <ynezz@true.cz>	2022-08-06 15:00:08 +0200
commit	7df6795d4c25447683fd4b4a4813bebcddaea547 (patch)
tree	aa4d160e103d1dc5355a569525f2ec54e1bf6bdc /target/linux/ath79
parent	98df6bd99c0f70d4f2ad709af09084f985689ff5 (diff)
download	upstream-7df6795d4c25447683fd4b4a4813bebcddaea547.tar.gz upstream-7df6795d4c25447683fd4b4a4813bebcddaea547.tar.bz2 upstream-7df6795d4c25447683fd4b4a4813bebcddaea547.zip

zlib: backport fix for heap-based buffer over-read (CVE-2022-37434)

zlib through 1.2.12 has a heap-based buffer over-read or buffer overflow in inflate in inflate.c via a large gzip header extra field. NOTE: only applications that call inflateGetHeader are affected. Some common applications bundle the affected zlib source code but may be unable to call inflateGetHeader. Fixes: CVE-2022-37434 References: https://github.com/ivd38/zlib_overflow Signed-off-by: Petr Štetiar <ynezz@true.cz>

Diffstat (limited to 'target/linux/ath79')

0 files changed, 0 insertions, 0 deletions


context:
space:
mode: