]> rtime.felk.cvut.cz Git - coffee/buildroot.git/commit
projects / coffee / buildroot.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 7acbe4e) | patch
spice: add upstream security fixes for CVE-2017-7506
authorPeter Korsgaard <peter@korsgaard.com>
Fri, 14 Jul 2017 14:02:03 +0000 (16:02 +0200)
committerPeter Korsgaard <peter@korsgaard.com>
Wed, 19 Jul 2017 16:16:23 +0000 (18:16 +0200)
commit63519329c46c741e5dd8bc67a332d602873e2b54
tree2332ce1e4bba89ee6451af7cfc155f6be6400f18tree | snapshot
parent7acbe4e952f8375e9d2ae80b00e5275fe59e6458commit | diff
spice: add upstream security fixes for CVE-2017-7506

Fixes CVE-2017-7506 - Possible buffer overflow via invalid monitor
configurations.

For more details, see:
https://marc.info/?l=oss-security&m=150001782924095

Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com>
(cherry picked from commit 31bd29fe093a258755929a23d764b02323fcdc46)
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
package/spice/0004-reds-Disconnect-when-receiving-overly-big-ClientMoni.patch [new file with mode: 0644] blob
package/spice/0005-reds-Avoid-integer-overflows-handling-monitor-config.patch [new file with mode: 0644] blob
package/spice/0006-reds-Avoid-buffer-overflows-handling-monitor-configu.patch [new file with mode: 0644] blob