projects / openwrt / staging / xback.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: ebafb74) | patch
libubox: backport security patches
authorHauke Mehrtens <hauke@hauke-m.de>
Tue, 21 Jan 2020 22:58:30 +0000 (23:58 +0100)
committerHauke Mehrtens <hauke@hauke-m.de>
Mon, 27 Jan 2020 20:44:28 +0000 (21:44 +0100)
commitcc0a54e3326d6329d85106d93d4083df380dac09
tree25a5238aa80d0a2ad920a94e86bd988d775fc48btree | snapshot
parentebafb746f03e642740159614245e67017734db29commit | diff
libubox: backport security patches

This backports some security relevant patches from libubox master. These
patches should not change the existing API and ABI so that old
applications still work like before without any recompilation.
Application can now also use more secure APIs.

The new more secure interfaces are also available, but not used.

OpenWrt master and 19.07 already have these patches by using a more
recent libubox version.

Signed-off-by: Hauke Mehrtens <hauke@hauke-m.de>
17 files changed:
package/libs/libubox/Makefile diff | blob | history
package/libs/libubox/patches/0001-blobmsg_json-fix-possible-uninitialized-struct-membe.patch [new file with mode: 0644] blob
package/libs/libubox/patches/0002-jshn-fix-off-by-one-in-jshn_parse_file.patch [new file with mode: 0644] blob
package/libs/libubox/patches/0003-blob-refactor-attr-parsing-into-separate-function.patch [new file with mode: 0644] blob
package/libs/libubox/patches/0004-blob-introduce-blob_parse_untrusted.patch [new file with mode: 0644] blob
package/libs/libubox/patches/0005-blob-fix-OOB-access-in-blob_check_type.patch [new file with mode: 0644] blob
package/libs/libubox/patches/0006-blobmsg-fix-heap-buffer-overflow-in-blobmsg_parse.patch [new file with mode: 0644] blob
package/libs/libubox/patches/0007-Ensure-blob_attr-length-check-does-not-perform-out-o.patch [new file with mode: 0644] blob
package/libs/libubox/patches/0008-Replace-use-of-blobmsg_check_attr-by-blobmsg_check_a.patch [new file with mode: 0644] blob
package/libs/libubox/patches/0009-blobmsg-add-_len-variants-for-all-attribute-checking.patch [new file with mode: 0644] blob
package/libs/libubox/patches/0010-blobmsg-fix-array-out-of-bounds-GCC-10-warning.patch [new file with mode: 0644] blob
package/libs/libubox/patches/0011-blobmsg-fix-wrong-payload-len-passed-from-blobmsg_ch.patch [new file with mode: 0644] blob
package/libs/libubox/patches/0012-jshn-prefer-snprintf-usage.patch [new file with mode: 0644] blob
package/libs/libubox/patches/0013-blobmsg-blobmsg_vprintf-prefer-vsnprintf.patch [new file with mode: 0644] blob
package/libs/libubox/patches/0014-blobmsg_json-fix-int16-serialization.patch [new file with mode: 0644] blob
package/libs/libubox/patches/0015-blobmsg_json-prefer-snprintf-usage.patch [new file with mode: 0644] blob
package/libs/libubox/patches/0016-blobmsg-blobmsg_parse-and-blobmsg_parse_array-oob-re.patch [new file with mode: 0644] blob
Staging tree of Koen Vandeputte