aboutsummaryrefslogtreecommitdiffstats
path: root/package/network/utils/curl/patches/106-CVE-2017-8817.patch
Commit message (Collapse)AuthorAgeFilesLines
* curl: fix some security problemsHauke Mehrtens2018-08-101-141/+0
| | | | | | | | | | | | | | This fixes the following security problems: * CVE-2017-1000254: FTP PWD response parser out of bounds read * CVE-2017-1000257: IMAP FETCH response out of bounds read * CVE-2018-1000005: HTTP/2 trailer out-of-bounds read * CVE-2018-1000007: HTTP authentication leak in redirects * CVE-2018-1000120: FTP path trickery leads to NIL byte out of bounds write * CVE-2018-1000121: LDAP NULL pointer dereference * CVE-2018-1000122: RTSP RTP buffer over-read * CVE-2018-1000301: RTSP bad headers buffer over-read Signed-off-by: Hauke Mehrtens <hauke@hauke-m.de>
* curl: apply CVE 2017-8816 and 2017-8817 security patchesStijn Segers2017-12-041-0/+141
This commit adds the upstream patches for CVE 2017-8816 and 2017-8817 to the 17.01 Curl package. Compile-tested on ar71xx, ramips and x86. Signed-off-by: Stijn Segers <foss@volatilesystems.org>
generated by cgit v1.2.3 (git 2.25.1) at 2024-07-08 05:04:01 +0000