projects / feed / packages.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 3587685) | patch
c-ares: update to version 1.17.2
authorPetr Štetiar <ynezz@true.cz>
Tue, 10 Aug 2021 07:15:06 +0000 (09:15 +0200)
committerKarl Palsson <karlp@etactica.com>
Fri, 20 Aug 2021 10:33:33 +0000 (10:33 +0000)
commit84058b3980a5be03e1c2422aa9d61e2a963644db
treed3ef6487fb75f2ee3c9cc7f8da2bac718eed9ac2tree | snapshot
parent35876858d1a94538f3a0b160e2d8a555c4a30612commit | diff
c-ares: update to version 1.17.2

Missing input validation of host names returned by Domain Name Servers
in the c-ares library can lead to output of wrong hostnames (leading to
Domain Hijacking).

The Common Vulnerabilities and Exposures (CVE) project has assigned the
name CVE-2021-3672 to this issue.

References: https://c-ares.haxx.se/adv_20210810.html
Signed-off-by: Petr Štetiar <ynezz@true.cz>
libs/c-ares/Makefile diff | blob | history
Mirror of packages feed