diff options
author | Michael Stahl <Michael.Stahl@cib.de> | 2019-05-22 11:40:54 +0200 |
---|---|---|
committer | Thorsten Behrens <Thorsten.Behrens@CIB.de> | 2019-06-17 13:17:21 +0200 |
commit | 1e0848726c7caf916d7bcd4577453c176c10ec28 (patch) | |
tree | 64ce396f7dc248ecbfed73a9cc4b5dd00cfe9300 /xmlscript/source/xmlmod_imexp | |
parent | a19d1e592695f95e8ef1e57ee23d74cad7801a29 (diff) |
curl: upgrade to release 7.65.0
Fixes CVE-2019-5435. It looks like this is not a problem on 32-bit
Windows because fortunately we don't use /LARGEADDRESSAWARE flag
to set IMAGE_FILE_LARGE_ADDRESS_AWARE... but on 32-bit Linux
the user-space VM is 3GB so an exploit might be possible.
Apparently there's no code in LO that uses the CURLU_URLENCODE flag.
The other one, CVE-2019-5436, doesn't matter because we disable tftp.
Change-Id: I0d4f087befa5a3c4fb21ec36761dad68932425d9
Reviewed-on: https://gerrit.libreoffice.org/72732
Tested-by: Jenkins
Reviewed-by: Michael Stahl <Michael.Stahl@cib.de>
(cherry picked from commit edb01616ac176401650c35d938c75c6c5558a47e)
Diffstat (limited to 'xmlscript/source/xmlmod_imexp')
0 files changed, 0 insertions, 0 deletions