Age | Commit message (Collapse) | Author | Files | Lines |
|
curl 7.62.0 through 7.70.0 is vulnerable to an information disclosure
vulnerability that can lead to a partial password being leaked
over the network and to the DNS server(s).
Change-Id: I87a5d5ab358f3b42e9c85c4509f586e420ddfeba
Signed-off-by: JinWang An <jinwang.an@samsung.com>
|
|
7.19.4 to 7.65.3
Change-Id: I42c50d480d494d23af5f6e3419744eb1028708de
Signed-off-by: JinWang An <jinwang.an@samsung.com>
|
|
Double-free vulnerability in the FTP-kerberos code in cURL 7.52.0 to 7.65.3.
Change-Id: I99c27c62c1b7d15c2579102d2aac6d5a9a0a3d43
Signed-off-by: JinWang An <jinwang.an@samsung.com>
|
|
A malicious server can use the FTP PASV response to trick curl 7.73.0
and earlier into connecting back to a given IP address and port,
and this way potentially make curl extract information about services
that are otherwise private and not disclosed,
for example doing port scanning and service banner extractions.
Change-Id: Ifb923106339f8d3e64ec171ef22ebab3ac3c6d8d
Signed-off-by: JinWang An <jinwang.an@samsung.com>
|
|
There was a small optimization for PowerPCs to pre-increment a
pointer when accessing a word, instead of post-incrementing. This
required prefacing the loop with a decrement of the pointer,
possibly pointing before the object passed. This is not compliant
with the C standard, for which decrementing a pointer before its
allocated memory is undefined. When tested on a modern PowerPC
with a modern compiler, the optimization no longer has any effect.
Due to all that, and per the recommendation of a security audit of
the zlib code by Trail of Bits and TrustInSoft, in support of the
Mozilla Foundation, this "optimization" was removed, in order to
avoid the possibility of undefined behavior.
Change-Id: Ia4213734d317c5f05dad0eed86587a5683426a33
Signed-off-by: JinWang An <jinwang.an@samsung.com>
|
|
inftrees.c was subtracting an offset from a pointer to an array,
in order to provide a pointer that allowed indexing starting at
the offset. This is not compliant with the C standard, for which
the behavior of a pointer decremented before its allocated memory
is undefined. Per the recommendation of a security audit of the
zlib code by Trail of Bits and TrustInSoft, in support of the
Mozilla Foundation, this tiny optimization was removed, in order
to avoid the possibility of undefined behavior.
Change-Id: I610af44babc621c89300789e9a32d2b037dfe196
Signed-off-by: JinWang An <jinwang.an@samsung.com>
|
|
An old inffast.c optimization turns out to not be optimal anymore
with modern compilers, and furthermore was not compliant with the
C standard, for which decrementing a pointer before its allocated
memory is undefined. Per the recommendation of a security audit of
the zlib code by Trail of Bits and TrustInSoft, in support of the
Mozilla Foundation, this "optimization" was removed, in order to
avoid the possibility of undefined behavior.
Change-Id: Ic12de92b938e9e3d8856e6ff0cf50d55cb9488ef
Signed-off-by: JinWang An <jinwang.an@samsung.com>
|
|
New: Add dependece with zstd, actually there exist internal zstd in cmake.Y
Change-Id: I72753531d4c77db3d93f66bdaefcb9bde2f1b737
Signed-off-by: biao716.wang <biao716.wang@samsung.com>
|
|
Change-Id: Ib03ad3e3807077b43ec60721727db7d4cf054c69
Signed-off-by: biao716.wang <biao716.wang@samsung.com>
|
|
Change-Id: Ic2d290f7f6d2b65070b6e37adb908994453e3d96
Signed-off-by: biao716.wang <biao716.wang@samsung.com>
|
|
Change-Id: Ic0e3032869993efdc7c773f147010f0e0cd6c6d7
Signed-off-by: biao716.wang <biao716.wang@samsung.com>
|
|
Change-Id: Ic5262ea6c0872b353ea2dc35fe1e944063ae8409
Signed-off-by: biao716.wang <biao716.wang@samsung.com>
|
|
Change-Id: I5cb374a9609323e2ac26ad8e95ab65ef2b8bb87b
Signed-off-by: Slava Barinov <v.barinov@samsung.com>
|
|
Change-Id: Iacdc98d9a843149acc3833367b44587df742ca15
Signed-off-by: Slava Barinov <v.barinov@samsung.com>
|
|
FindCUDA:Improve quoting of CUDA_NVCC_COMPILE_DEFINITIONS
Improve FindCUDA in order to resolve
nvcc fatal : Stray '"' character error
FYI :
https://gitlab.kitware.com/cmake/cmake/commit/c1f4f13dbfa7caf6bbf4d8b70a7f09f786c7eed6
Change-Id: I2c970dfe122d8578ed008cd3ab75062761a7aa49
Signed-off-by: jijoong.moon <jijoong.moon@samsung.com>
Signed-off-by: Sangjung woo <sangjung.woo@samsung.com>
|
|
- Remove dependency on rhash, json-cpp, libuv, form
Signed-off-by: MyungJoo Ham <myungjoo.ham@samsung.com>
|
|
Change-Id: I71a1e4e6516702e5bf28d6702b8e588eb3e4b202
Signed-off-by: HyungGi Lee <hyunggi.lee@samsung.com>
|
|
Bug-Tizen: TC-2230
Change-Id: I30413dba248244c4b4c7e8544a4752e2f61555d4
Signed-off-by: Kévin THIERRY <kevin.thierry@open.eurogiciel.org>
Signed-off-by: Philippe Coval <philippe.coval@open.eurogiciel.org>
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
Change-Id: I1e253912caf690c56d827a993e2b5bee18747cf6
Signed-off-by: Philippe Coval <philippe.coval@open.eurogiciel.org>
|
|
|
|
|
|
|
|
|
|
|