[Buildroot] [PATCH] pcre: add security patches

Thomas Petazzoni thomas.petazzoni at free-electrons.com
Thu Jun 9 08:36:48 UTC 2016


Hello,

On Wed,  8 Jun 2016 23:14:21 -0300, gustavo.zacarias at free-electrons.com
wrote:
> From: Gustavo Zacarias <gustavo.zacarias at free-electrons.com>
> 
> They address:
> CVE-2016-1283 - Heap Buffer Overflow Vulnerability.
> CVE-2016-3191 - workspace overflow for (*ACCEPT) with deeply nested
> parentheses.
> 
> Signed-off-by: Gustavo Zacarias <gustavo.zacarias at free-electrons.com>
> ---
>  package/pcre/0003-fix-CVE-2016-1283.patch |  44 ++++++++
>  package/pcre/0004-fix-CVE-2016-3191.patch | 174 ++++++++++++++++++++++++++++++
>  2 files changed, 218 insertions(+)
>  create mode 100644 package/pcre/0003-fix-CVE-2016-1283.patch
>  create mode 100644 package/pcre/0004-fix-CVE-2016-3191.patch

Applied to master, thanks.

Thomas
-- 
Thomas Petazzoni, CTO, Free Electrons
Embedded Linux, Kernel and Android engineering
http://free-electrons.com



More information about the buildroot mailing list