godotengine/buildroot
1
0
Fork 0
mirror of https://github.com/godotengine/buildroot.git synced 2026-01-05 14:09:53 +03:00
Code Issues Packages Projects Releases Wiki Activity
Files
e543b3f34dde6b5effdfd66e451f184d3b19d1bd
buildroot/package/minizip-zlib
History
Fabrice Fontaine 4616a30c63 package/minizip-zlib: fix CVE-2023-45853 
MiniZip in zlib through 1.3 has an integer overflow and resultant
heap-based buffer overflow in zipOpenNewFileInZip4_64 via a long
filename, comment, or extra field. NOTE: MiniZip is not a supported part
of the zlib product.

Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
(cherry picked from commit de7bc4ada2ab5ef2e4094934acd5271c0aca19a1)
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
2023-10-30 13:40:31 +01:00
..
0001-Reject-overflows-of-zip-header-fields-in-minizip.patch
Config.in
minizip-zlib.hash
minizip-zlib.mk