mirror of
https://github.com/openembedded/meta-openembedded.git
synced 2026-01-20 18:11:47 +00:00
0166a17f24
Upgrade to release 6.4.2 which brings security improvements: Parsing of the cookie header is now much more efficient. The older algorithm sometimes had quadratic performance which allowed for a denial-of-service attack in which the server would spend excessive CPU time parsing cookies and block the event loop. This change fixes CVE-2024-7592. Signed-off-by: Leon Anavi <leon.anavi@konsulko.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>
1.3 KiB
1.3 KiB