meta-openembedded

mirror of git://git.openembedded.org/meta-openembedded synced 2026-01-01 13:58:06 +00:00

History

Kang Kai f58ee5acdd libyaml: add fix for CVE-2014-2525 Security Advisory Heap-based buffer overflow in the yaml_parser_scan_uri_escapes function in LibYAML before 0.1.6 allows context-dependent attackers to execute arbitrary code via a long sequence of percent-encoded characters in a URI in a YAML file. http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2014-2525 Signed-off-by: Yue Tao <Yue.Tao@windriver.com> Signed-off-by: Kai Kang <kai.kang@windriver.com> Signed-off-by: Martin Jansa <Martin.Jansa@gmail.com> Signed-off-by: Armin Kuster <akuster808@gmail.com>	2014-12-01 14:24:52 +01:00
..
files	libyaml: add fix for CVE-2014-2525 Security Advisory	2014-12-01 14:24:52 +01:00
libyaml_0.1.5.bb	libyaml: add fix for CVE-2014-2525 Security Advisory	2014-12-01 14:24:52 +01:00

Kang Kai f58ee5acdd libyaml: add fix for CVE-2014-2525 Security Advisory

Heap-based buffer overflow in the yaml_parser_scan_uri_escapes function
in LibYAML before 0.1.6 allows context-dependent attackers to execute
arbitrary code via a long sequence of percent-encoded characters in a
URI in a YAML file.

http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2014-2525

Signed-off-by: Yue Tao <Yue.Tao@windriver.com>
Signed-off-by: Kai Kang <kai.kang@windriver.com>
Signed-off-by: Martin Jansa <Martin.Jansa@gmail.com>
Signed-off-by: Armin Kuster <akuster808@gmail.com>

2014-12-01 14:24:52 +01:00

files

libyaml: add fix for CVE-2014-2525 Security Advisory

2014-12-01 14:24:52 +01:00

libyaml_0.1.5.bb

libyaml: add fix for CVE-2014-2525 Security Advisory

2014-12-01 14:24:52 +01:00