| Patch | Description | Author | Forwarded | Bugs | Origin | Last update |
|---|---|---|---|---|---|---|
| disable-cflags-rewrite.diff | Prevent autoconf from mangling passed cflags These flags are passed by dpkg-buildflags for hardening. | Gregor Jasny <gjasny@googlemail.com> | not-needed | |||
| CVE-2022-4904.diff | Add str len check in config_sortlist to avoid stack overflow | yes | debian upstream | https://github.com/c-ares/c-ares/commit/9903253c347f9e0bffd285ae3829aef251cc852d | ||
| CVE-2023-31130.diff | [PATCH 2/3] Merge pull request from GHSA-x6mf-cxr9-8q6v * Merged latest OpenBSD changes for inet_net_pton_ipv6() into c-ares. * Always use our own IP conversion functions now, do not delegate to OS so we can have consistency in testing and fuzzing. * Removed bogus test cases that never should have passed. * Add new test case for crash bug found. Fix By: Brad House (@bradh352) |
Brad House <brad@brad-house.com> | yes | upstream | 2023-05-22 | |
| CVE-2023-32067.diff | [PATCH 3/3] Merge pull request from GHSA-9g78-jv2r-p7vc | Brad House <brad@brad-house.com> | yes | upstream | 2023-05-22 |