projects / feed / packages.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 546cac7) | patch
c-ares: update to version 1.17.2 16312/head
authorPetr Štetiar <ynezz@true.cz>
Tue, 10 Aug 2021 07:15:06 +0000 (09:15 +0200)
committerPetr Štetiar <ynezz@true.cz>
Tue, 10 Aug 2021 07:17:17 +0000 (09:17 +0200)
commit2d491120357a988a587cd87434589629b8d44a8d
tree75a3483cee0ee365fe1f3521026e2526ca6f78e5tree | snapshot
parent546cac746e79733942448857acf93800188fde4acommit | diff
c-ares: update to version 1.17.2

Missing input validation of host names returned by Domain Name Servers
in the c-ares library can lead to output of wrong hostnames (leading to
Domain Hijacking).

The Common Vulnerabilities and Exposures (CVE) project has assigned the
name CVE-2021-3672 to this issue.

References: https://c-ares.haxx.se/adv_20210810.html
Signed-off-by: Petr Štetiar <ynezz@true.cz>
libs/c-ares/Makefile diff | blob | history
Mirror of packages feed