projects / feed / packages.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 9a305c4) | patch
tools/patch: apply upstream patch for CVE-2019-13636 9597/head
authorRussell Senior <russell@personaltelco.net>
Mon, 29 Jul 2019 20:14:19 +0000 (13:14 -0700)
committerRussell Senior <russell@personaltelco.net>
Mon, 29 Jul 2019 20:14:58 +0000 (13:14 -0700)
commitc8142f1ac11f0c529992ca8766d38e225ac14418
tree8362682615e6b50eae7c70a9d6b2b18cdc196897tree | snapshot
parent9a305c432bc014a4149177d4f6a749b26fd36dd2commit | diff
tools/patch: apply upstream patch for CVE-2019-13636

In GNU patch through 2.7.6, the following of symlinks is mishandled in
certain cases other than input files. This affects inp.c and util.c.

https://nvd.nist.gov/vuln/detail/CVE-2019-13636

Signed-off-by: Russell Senior <russell@personaltelco.net>
devel/patch/Makefile diff | blob | history
devel/patch/patches/050-CVE-2019-13636.patch [new file with mode: 0644] blob
Mirror of packages feed