projects / feed / packages.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: ebb9b3f) | patch
tools/patch: apply upstream patch for CVE-2019-13636
authorRussell Senior <russell@personaltelco.net>
Mon, 29 Jul 2019 20:14:19 +0000 (13:14 -0700)
committerRussell Senior <russell@personaltelco.net>
Mon, 2 Sep 2019 06:39:22 +0000 (23:39 -0700)
commita3d8698e357a6fbdab279811957b93ca18ac7377
tree9e8b343e465b409d2da32bc68f7f8cbc3fd521c5tree | snapshot
parentebb9b3f17259b6c0545fd258f9e8bb58e86c4785commit | diff
tools/patch: apply upstream patch for CVE-2019-13636

In GNU patch through 2.7.6, the following of symlinks is mishandled in
certain cases other than input files. This affects inp.c and util.c.

https://nvd.nist.gov/vuln/detail/CVE-2019-13636

Signed-off-by: Russell Senior <russell@personaltelco.net>
devel/patch/Makefile diff | blob | history
devel/patch/patches/050-CVE-2019-13636.patch [new file with mode: 0644] blob
Mirror of packages feed