Google Git
Sign in
android-kvm / buildroot / c7a369a907f988cf193b06fd4a7ce5547976c21a
commitc7a369a907f988cf193b06fd4a7ce5547976c21a[log] [tgz]
authorFabrice Fontaine <fontaine.fabrice@gmail.com>Tue Nov 17 08:10:54 2020 +0100
committerPeter Korsgaard <peter@korsgaard.com>Tue Nov 17 20:57:50 2020 +0100
tree292d44d33d3b5c16d7f150fbbd8acc650ad7b378
parent9bbb6efc81fee71f8045530742f715c933361f77 [diff]
package/c-ares: security bump to version 1.17.0

- avoid read-heap-buffer-overflow in ares_parse_soa_reply found during
  fuzzing
- Avoid theoretical buffer overflow in RC4 loop comparison
- Empty hquery->name could lead to invalid memory access
- ares_parse_{a,aaaa}_reply() could return a larger *naddrttls than was
  passed in

https://c-ares.haxx.se/changelog.html#1_17_0

Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
2 files changed
tree: 292d44d33d3b5c16d7f150fbbd8acc650ad7b378
  1. arch/
  2. board/
  3. boot/
  4. configs/
  5. docs/
  6. fs/
  7. linux/
  8. package/
  9. support/
  10. system/
  11. toolchain/
  12. utils/
  13. .defconfig
  14. .flake8
  15. .gitignore
  16. .gitlab-ci.yml
  17. CHANGES
  18. Config.in
  19. Config.in.legacy
  20. COPYING
  21. DEVELOPERS
  22. Makefile
  23. Makefile.legacy
  24. README