Please take this also to scarthgap.
This contains fixes for two CVEs: CVE-2024-34402 and CVE-2024-34403.
Thanks,
Peter
-=-=-=-=-=-=-=-=-=-=-=-
Links: You receive all messages sent to this group.
View/Reply Online (#110490):
https://lists.openembedded.org/g/openembedded-devel/message/110490
From: Wang Mingyu
Changelog:
===
* Protect against integer overflow in ComposeQueryEngine
* Protect against integer overflow in ComposeQueryMallocExMm
* Require CMake >=3.5.0
* CMake option URIPARSER_SHARED_LIBS=(ON|OFF) to control, whether to produce a
shared or static library for