home-assistant
/
buildroot
mirror of https://github.com/home-assistant/buildroot.git
0
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
buildroot/package/wpewebkit
History
Adrian Perez de Castro 34b8419717 package/wpewebkit: security bump to version 2.42.5 
Fixes the following security issues:

https://wpewebkit.org/security/WSA-2024-0001.html

- CVE-2024-23222: Processing maliciously crafted web content may lead to
  arbitrary code execution. Apple is aware of a report that this issue
  may have been exploited. Description: A type confusion issue was
  addressed with improved checks.

- CVE-2024-23206: A maliciously crafted webpage may be able to
  fingerprint the user. Description: An access issue was addressed with
  improved access restrictions.

- CVE-2024-23213: Processing web content may lead to arbitrary code
  execution. Description: The issue was addressed with improved memory
  handling.

Add an upstream post-2.42.5 patch to fix an issue with an invalid
backport causing a build issue.

Signed-off-by: Adrian Perez de Castro <aperez@igalia.com>
Signed-off-by: Yann E. MORIN <yann.morin.1998@free.fr>
(cherry picked from commit 5275e14125)
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
 		2024-03-16 23:28:35 +01:00
..
0001-FELightningNEON.cpp-fails-to-build-NEON-fast-path-se.patch
0002-GTK-2.42.5-LowLevelInterpreter.cpp-339-21-error-t6-w.patch package/wpewebkit: security bump to version 2.42.5 2024-03-16 23:28:35 +01:00
Config.in
wpewebkit.hash package/wpewebkit: security bump to version 2.42.5 2024-03-16 23:28:35 +01:00
wpewebkit.mk package/wpewebkit: security bump to version 2.42.5 2024-03-16 23:28:35 +01:00