poky/gzip at ef2da8f28e54b306674e86e31ebca94ffc4bf50f - poky

mirror of https://git.yoctoproject.org/poky synced 2026-05-02 18:32:15 +02:00

Files

Ralph Siemsen 170ce893e7 gzip: fix CVE-2022-1271

zgrep applied to a crafted file name with two or more newlines
can no longer overwrite an arbitrary, attacker-selected file.

Upstream-Status: Backport [https://git.savannah.gnu.org/cgit/gzip.git/commit/?id=dc9740df61e575e8c3148b7bd3c147a81ea00c7c]
CVE: CVE-2022-1271

(From OE-Core rev: b7f0696bc60409af215549d26621526c1a93a002)

Signed-off-by: Ralph Siemsen <ralph.siemsen@linaro.org>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>

2022-04-21 21:26:01 +01:00

files

gzip: 1.8 -> 1.9

2018-01-29 08:49:50 +00:00

gzip-1.10

gzip: fix CVE-2022-1271

2022-04-21 21:26:01 +01:00

gzip_1.10.bb

gzip: fix CVE-2022-1271

2022-04-21 21:26:01 +01:00

gzip.inc

gzip: upgrade to 1.8

2016-06-15 08:35:03 +01:00