diff options
| author | Angel Pons <th3fanbus@gmail.com> | 2022-05-01 23:01:07 +0200 | 
|---|---|---|
| committer | Edward O'Callaghan <quasisec@chromium.org> | 2022-05-12 08:31:48 +0000 | 
| commit | b402911a28c3b697ca8437cd79a864db36ca8e10 (patch) | |
| tree | b992d745baf9ac0d401ee212686608e9c4812823 /util/git-hooks/applypatch-msg | |
| parent | b728f4b9483f84eefe4cd0bd23fa9f1c71ebebc3 (diff) | |
| download | flashrom-b402911a28c3b697ca8437cd79a864db36ca8e10.tar.gz flashrom-b402911a28c3b697ca8437cd79a864db36ca8e10.tar.bz2 flashrom-b402911a28c3b697ca8437cd79a864db36ca8e10.zip | |
util/flashrom_tester: Update sys-info crate to version 0.9
An issue was discovered in the sys-info crate before 0.8.0 for Rust.
sys_info::disk_info calls can trigger a double free. To prevent any
potential problems, update this crate to version 0.9 (as of writing,
sys-info version 0.9.1 is the latest).
Refer to CVE-2020-36434 for more details about the sys-info crate bug.
TEST=Run `cargo build` in `util/flashrom_tester`, it still works fine.
Change-Id: I3b6b21e830ff3107860f7bcbfe2d58b29efe0c12
Signed-off-by: Angel Pons <th3fanbus@gmail.com>
Reviewed-on: https://review.coreboot.org/c/flashrom/+/63975
Reviewed-by: Edward O'Callaghan <quasisec@chromium.org>
Reviewed-by: Anastasia Klimchuk <aklm@chromium.org>
Reviewed-by: Peter Marheine <pmarheine@chromium.org>
Reviewed-by: Jack Rosenthal <jrosenth@chromium.org>
Reviewed-by: Tim Wawrzynczak <twawrzynczak@chromium.org>
Tested-by: build bot (Jenkins) <no-reply@coreboot.org>
Diffstat (limited to 'util/git-hooks/applypatch-msg')
0 files changed, 0 insertions, 0 deletions
