[Buildroot] [PATCH] package/systemd: security bump to version v250.8
Peter Korsgaard
peter at korsgaard.com
Wed Nov 23 09:52:05 UTC 2022
>>>>> "Peter" == Peter Korsgaard <peter at korsgaard.com> writes:
> Fixes the following security issue:
> - CVE-2022-3821: An off-by-one Error issue was discovered in Systemd in
> format_timespan() function of time-util.c. An attacker could supply
> specific values for time and accuracy that leads to buffer overrun in
> format_timespan(), leading to a Denial of Service.
> https://github.com/systemd/systemd/issues/23928
> Drop now upstream 0001-missing-syscall-define-MOVE_MOUNT_T_EMPTY_PATH-if-mi.patch
> Signed-off-by: Peter Korsgaard <peter at korsgaard.com>
Committed to 2022.08.x and 2022.02.x, thanks.
--
Bye, Peter Korsgaard
More information about the buildroot
mailing list