summary |
shortlog | log |
commit |
commitdiff |
tree
first ⋅ prev ⋅ next
DongHun Kwak [Thu, 3 Mar 2022 03:30:51 +0000 (12:30 +0900)]
Fix build error at autoconf 2.71
Change-Id: If56680da1f7b0768d464709283469debfa1e6c93
Werner Koch [Wed, 30 Jul 2014 09:04:55 +0000 (11:04 +0200)]
[CVE-2014-3564] Fix possible realloc overflow for gpgsm and uiserver engines.
* src/engine-gpgsm.c (status_handler):
* src/engine-uiserver.c (status_handler):
--
After a realloc (realloc is also used for initial alloc) the allocated
size if the buffer is not correctly recorded. Thus an overflow can be
introduced by receiving data with different line lengths in a specific
order. This is not easy exploitable because libassuan constructs the
line. However a crash has been reported and thus it might be possible
to constructs an exploit.
Change-Id: I6d7bdc267f2e45be0ccd47fa4b68e0c358370e91
CVE-id: CVE-2014-3564
Reported-by: Tomáš Trnka
Signed-off-by: DongHun Kwak <dh0128.kwak@samsung.com>
Alexandru Cornea [Fri, 28 Jun 2013 21:22:48 +0000 (00:22 +0300)]
resetting manifest requested domain to floor
Anas Nashif [Tue, 19 Feb 2013 16:46:03 +0000 (08:46 -0800)]
Fixed file list
Anas Nashif [Tue, 19 Feb 2013 16:27:38 +0000 (08:27 -0800)]
remove extraneous libs
Anas Nashif [Tue, 19 Feb 2013 16:24:04 +0000 (08:24 -0800)]
Add packaging
Anas Nashif [Tue, 19 Feb 2013 16:22:18 +0000 (08:22 -0800)]
Imported Upstream version 1.3.2