projects / openwrt / staging / ansuel.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: c6d41c3) | patch
tools/patch: apply upstream patch for CVE-2019-13636
authorRussell Senior <russell@personaltelco.net>
Mon, 29 Jul 2019 19:09:09 +0000 (12:09 -0700)
committerPetr Štetiar <ynezz@true.cz>
Tue, 30 Jul 2019 08:16:16 +0000 (10:16 +0200)
commit995bcc532943639f3df36dbcaa361f9167f9f4d5
tree965f6e2bea1e1537f7130186e7eb853a4e14794btree | snapshot
parentc6d41c320c795b0bb9a9350c7d4b1ce55f25769acommit | diff
tools/patch: apply upstream patch for CVE-2019-13636

In GNU patch through 2.7.6, the following of symlinks is mishandled in
certain cases other than input files. This affects inp.c and util.c.

https://nvd.nist.gov/vuln/detail/CVE-2019-13636

Signed-off-by: Russell Senior <russell@personaltelco.net>
tools/patch/Makefile diff | blob | history
tools/patch/patches/050-CVE-2019-13636.patch [new file with mode: 0644] blob
Staging tree of Christian Marangi