mirrors/poky
1
0
Fork 0
mirror of https://git.yoctoproject.org/poky synced 2026-03-18 05:09:41 +01:00
Code Issues Packages Projects Releases Wiki Activity
Files
1cefabe0f0a2dd2ca8b6eb83e8e0824b72da941a
poky/meta/recipes-extended/ghostscript
History
Minjae Kim f8d05252d1 ghostscript: fix CVE-2021-45949 
Ghostscript GhostPDL 9.50 through 9.54.0 has a heap-based buffer overflow in sampled_data_finish
(called from sampled_data_continue and interp).

To apply this CVE-2021-45959 patch,
the check-stack-limits-after-function-evalution.patch should be applied first.

References:
https://nvd.nist.gov/vuln/detail/CVE-2021-45949

(From OE-Core rev: 5fb43ed64ae32abe4488f2eb37c1b82f97f83db0)

(From OE-Core rev: 9b0199a1d8ec3c7bbfd2022932d524d61f2c6832)

Signed-off-by: Minjae Kim <flowergom@gmail.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
Signed-off-by: Lee Chee Yang <chee.yang.lee@intel.com>
Signed-off-by: Anuj Mittal <anuj.mittal@intel.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
2022-03-10 16:39:45 +00:00
..
files
ghostscript: update 9.50 -> 9.52
2020-05-03 15:41:40 +01:00
ghostscript
ghostscript: fix CVE-2021-45949
2022-03-10 16:39:45 +00:00
ghostscript_9.53.3.bb
ghostscript: fix CVE-2021-45949
2022-03-10 16:39:45 +00:00