[Buildroot] [PATCH 2/2] libnss: security bump to version 3.30.2
Peter Korsgaard
peter at korsgaard.com
Mon Apr 24 19:32:11 UTC 2017
>>>>> "Baruch" == Baruch Siach <baruch at tkos.co.il> writes:
> CVE-2017-5461 - Out-of-bounds write in Base64 encoding in NSS. Might cause
> remote arbitrary code execution
> (https://access.redhat.com/errata/RHSA-2017:1100).
> CVE-2017-5462 - DRBG flaw in NSS
> Drop 0001-cross-compile.patch and TARGET* variables. Upstream Makefile now
> allows override of CC, so use TARGET_CONFIGURE_OPTS instead.
> Drop upstream 0003-it-uninitialized-fix.patch.
> Renumber the remaining patch.
> Signed-off-by: Baruch Siach <baruch at tkos.co.il>
> ---
> Backport note: depends on libnspr version 4.14
Committed to 2017.02.x, thanks.
--
Bye, Peter Korsgaard
More information about the buildroot
mailing list