Paths

Table of Contentst

Differential D1491

Update curl-gnutls to 5.57.0 to address multiple CVEs
ClosedPublic
Actions

Authored by kyrios123 on Nov 29 2017, 11:27 AM.

Tags

Referenced Files

	F11053931: D1491.diff
	Fri, Aug 11, 12:14 AM

	F10771724: D1491.diff
	May 21 2023, 7:56 AM

	F10754788: D1491.id.diff
	May 16 2023, 9:54 PM

	F10740517: D1491.diff
	May 14 2023, 3:41 AM

	F10712891: D1491.id.diff
	May 2 2023, 12:06 PM

Subscribers

None

Details

Reviewers

Group Reviewers

Commits

R579:ac52ddaf40e7: Update curl-gnutls to 5.57.0 to address multiple CVEs

Summary

Vulnerabilities fixed:

CVE-2017-8816: NTLM buffer overflow via integer overflow
CVE-2017-8817: FTP wildcard out of bounds read
CVE-2017-8818: SSL out of buffer access

Full changelog available here

Signed-off-by: Pierre-Yves <pyu@riseup.net>

Test Plan

See curl package

Diff Detail

Repository

R579 curl-gnutls

Branch

master

Lint

No Lint Coverage

Unit

No Test Coverage

Event Timeline

kyrios123 created this revision.Nov 29 2017, 11:27 AM

Herald added a reviewer: Triage Team. · View Herald TranscriptNov 29 2017, 11:27 AM

• sunnyflunk accepted this revision.Nov 29 2017, 11:36 AM

This revision is now accepted and ready to land.Nov 29 2017, 11:36 AM

kyrios123 closed this revision.Nov 29 2017, 11:51 AM

Revision Contents
Changeset List

Path

Size

6 lines

pspec_x86_64.xml

8 lines

Diff 3682

package.yml

Loading...

pspec_x86_64.xml

Loading...