[OE-core] [PATCH][v2] unzip: fix three CVE defects
Richard Purdie
richard.purdie at linuxfoundation.org
Sun Jun 28 12:37:22 UTC 2015
On Wed, 2015-06-24 at 09:12 +0800, rongqing.li at windriver.com wrote:
> From: Roy Li <rongqing.li at windriver.com>
>
> Port four patches from unzip_6.0-8+deb7u2.debian.tar.gz to fix:
> cve-2014-8139
> cve-2014-8140
> cve-2014-8141
>
> Signed-off-by: Roy Li <rongqing.li at windriver.com>
I've gone and mixed up patches for this one and merged the wrong one.
Could you send a patch to fix the patches in master to be the correct
ones please? Sorry about that.
Cheers,
Richard
More information about the Openembedded-core
mailing list