[Buildroot] [PATCH 1/1] package/fastd: fix CVE-2020-27638
Thomas Petazzoni
thomas.petazzoni at bootlin.com
Sat Oct 31 21:04:13 UTC 2020
On Sat, 31 Oct 2020 17:34:20 +0100
Fabrice Fontaine <fontaine.fabrice at gmail.com> wrote:
> receive.c in fastd before v21 allows denial of service (assertion
> failure) when receiving packets with an invalid type code.
>
> Signed-off-by: Fabrice Fontaine <fontaine.fabrice at gmail.com>
> ---
> ...-leak-when-receiving-invalid-packets.patch | 45 +++++++++++++++++++
> package/fastd/fastd.mk | 3 ++
> 2 files changed, 48 insertions(+)
> create mode 100644 package/fastd/0002-receive-fix-buffer-leak-when-receiving-invalid-packets.patch
Applied to master, thanks.
Thomas
--
Thomas Petazzoni, CTO, Bootlin
Embedded Linux and Kernel engineering
https://bootlin.com
More information about the buildroot
mailing list