mirror of
https://github.com/openembedded/meta-openembedded.git
synced 2026-06-14 17:59:59 +00:00
Xufeng Zhang
c1094b8af7
ZNC 1.0 allows remote authenticated users to cause a denial of service (NULL pointer reference and crash) via a crafted request to the (1) editnetwork, (2) editchan, (3) addchan, or (4) delchan page in modules/webadmin.cpp. Per: http://cwe.mitre.org/data/definitions/476.html CWE-476: NULL Pointer Dereference Signed-off-by: Xufeng Zhang <xufeng.zhang@windriver.com> Signed-off-by: Jackie Huang <jackie.huang@windriver.com> Signed-off-by: Martin Jansa <Martin.Jansa@gmail.com>
22 lines
565 B
BlitzBasic
22 lines
565 B
BlitzBasic
SUMMARY = "ZNC, an advanced IRC bouncer"
|
|
LICENSE = "GPLv2"
|
|
LIC_FILES_CHKSUM = "file://LICENSE;md5=751419260aa954499f7abaabaa882bbe"
|
|
|
|
DEPENDS = "openssl"
|
|
|
|
PV = "1.0+git"
|
|
|
|
SRCREV = "ef59c23068547c132cb678092fba9a21317fd5f2"
|
|
SRC_URI = "git://github.com/znc/znc.git \
|
|
file://0001-Fix-NULL-pointer-dereference-in-webadmin.patch \
|
|
"
|
|
|
|
S = "${WORKDIR}/git"
|
|
|
|
inherit autotools-brokensep pkgconfig
|
|
|
|
# ZNC has a custom autogen.sh that states that this command is needed *and* expected to fail
|
|
do_configure_prepend() {
|
|
automake --add-missing || true
|
|
}
|