starlingx/integ
Code Issues Proposed changes
dcd05bea43
integ/base/lighttpd/debian/patches
History
Zhixiong Chi cf4c478e66 Debian: lighttpd: fix CVE-2022-37797 
Backport the source patch from the upstream
https://salsa.debian.org/debian/lighttpd/-/blob/buster-security/debian/patches/CVE-2022-37797.patch

Refer to:
https://security-tracker.debian.org/tracker/DLA-3133-1

Test Plan:
Pass: build-pkgs -c -p lighttpd
Pass: build-pkgs -a
Pass: build-image
Pass: Debian AIO jenkins installation
Pass: Successfully host-unlock
Pass: Execute the steps from https://redmine.lighttpd.net/issues/3165
      without the Segmentation fault.

Closes-Bug: 1997327

Signed-off-by: Zhixiong Chi <zhixiong.chi@windriver.com>
Change-Id: Idbcd0937524278f304eb09956e2def71951c4ff4
2022-11-23 21:42:04 -05:00
..
check-content-length.patch Add debian package for lighttpd 2021-10-19 11:00:17 +08:00
CVE-2022-37797.patch Debian: lighttpd: fix CVE-2022-37797 2022-11-23 21:42:04 -05:00
series Debian: lighttpd: fix CVE-2022-37797 2022-11-23 21:42:04 -05:00