13397b2b95
This backports a fix for the low priority CVE-2021-28831: decompress_gunzip.c in BusyBox through 1.32.1 mishandles the error bit on the huft_build result pointer, with a resultant invalid free or segmentation fault, via malformed gzip data. Signed-off-by: Hauke Mehrtens <hauke@hauke-m.de> |
||
|---|---|---|
| .. | ||
| adb | ||
| bcm27xx-userland | ||
| bcm4908img | ||
| bsdiff | ||
| busybox | ||
| bzip2 | ||
| checkpolicy | ||
| ct-bugcheck | ||
| e2fsprogs | ||
| f2fs-tools | ||
| fbtest | ||
| fritz-tools | ||
| jboot-tools | ||
| jsonfilter | ||
| lua | ||
| lua5.3 | ||
| mdadm | ||
| mtd-utils | ||
| nvram | ||
| osafeloader | ||
| oseama | ||
| otrx | ||
| policycoreutils | ||
| px5g-mbedtls | ||
| px5g-wolfssl | ||
| ravpower-mcu | ||
| secilc | ||
| spidev_test | ||
| ucode | ||
| ugps | ||
| usbmode | ||
| util-linux | ||