Google Git
Sign in
android-kvm / buildroot / 9b92253b7aa80e534cc8197b3a56978e4f45164c
commit9b92253b7aa80e534cc8197b3a56978e4f45164c[log] [tgz]
authorPeter Korsgaard <peter@korsgaard.com>Sun Nov 22 00:21:49 2020 +0100
committerPeter Korsgaard <peter@korsgaard.com>Sun Nov 22 15:32:57 2020 +0100
tree6ddaaa035b1dccae66a216458f2134ecce9ae7f4
parent74cce093b047860e5fde45676fcdeabc6f2d0fef [diff]
package/libkrb5: security bump to version 1.18.3

Fixes the following security issues:

- CVE-2020-28196: MIT Kerberos 5 (aka krb5) before 1.17.2 and 1.18.x before
  1.18.3 allows unbounded recursion via an ASN.1-encoded Kerberos message
  because the lib/krb5/asn.1/asn1_encode.c support for BER indefinite
  lengths lacks a recursion limit.

Also fix .hash file indentation.

Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
2 files changed
tree: 6ddaaa035b1dccae66a216458f2134ecce9ae7f4
  1. arch/
  2. board/
  3. boot/
  4. configs/
  5. docs/
  6. fs/
  7. linux/
  8. package/
  9. support/
  10. system/
  11. toolchain/
  12. utils/
  13. .defconfig
  14. .flake8
  15. .gitignore
  16. .gitlab-ci.yml
  17. CHANGES
  18. Config.in
  19. Config.in.legacy
  20. COPYING
  21. DEVELOPERS
  22. Makefile
  23. Makefile.legacy
  24. README