godotengine/buildroot
1
0
Fork 0
mirror of https://github.com/godotengine/buildroot.git synced 2026-01-05 14:09:53 +03:00
Code Issues Packages Projects Releases Wiki Activity
Files
2019.02.x
buildroot/package/exiv2
History
Fabrice Fontaine ec89416cec package/exiv2: fix CVE-2019-17402 
Exiv2 0.27.2 allows attackers to trigger a crash in Exiv2::getULong in
types.cpp when called from Exiv2::Internal::CiffDirectory::readDirectory
in crwimage_int.cpp, because there is no validation of the relationship
of the total size to the offset and size.

Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
Signed-off-by: Yann E. MORIN <yann.morin.1998@free.fr>
(cherry picked from commit d383b46ac1)
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
2020-03-14 18:58:18 +01:00
..
0001-crwimage-Check-offset-and-size-against-total-size.patch
package/exiv2: fix CVE-2019-17402
2020-03-14 18:58:18 +01:00
Config.in
exiv2.hash
package/exiv2: bump version to 0.27.2
2020-03-14 18:58:09 +01:00
exiv2.mk
package/exiv2: fix CVE-2019-17402
2020-03-14 18:58:18 +01:00