Blame - poky/meta/recipes-devtools/perl/files/CVE-2023-31484.patch - mdmillerii/openbmc

blob: 9a9117c53a44ff6bf63cf19df670d5723a0736ec [file] [log] [blame]

Patrick Williams	520786c	2023-06-25 16:20:36 -0500	[diff] [blame^]	1	From a625ec2cc3a0b6116c1f8b831d3480deb621c245 Mon Sep 17 00:00:00 2001
				2	From: Stig Palmquist <git@stig.io>
				3	Date: Tue, 28 Feb 2023 11:54:06 +0100
				4	Subject: [PATCH] Add verify_SSL=>1 to HTTP::Tiny to verify https server
				5	identity
				6
				7	CVE: CVE-2023-31484
				8
				9	Upstream-Status: Backport [https://github.com/andk/cpanpm/commit/9c98370287f4e709924aee7c58ef21c85289a7f0]
				10
				11	Signed-off-by: Soumya <soumya.sambu@windriver.com>
				12	---
				13	cpan/CPAN/lib/CPAN/HTTP/Client.pm \| 1 +
				14	1 file changed, 1 insertion(+)
				15
				16	diff --git a/cpan/CPAN/lib/CPAN/HTTP/Client.pm b/cpan/CPAN/lib/CPAN/HTTP/Client.pm
				17	index 4fc792c..a616fee 100644
				18	--- a/cpan/CPAN/lib/CPAN/HTTP/Client.pm
				19	+++ b/cpan/CPAN/lib/CPAN/HTTP/Client.pm
				20	@@ -32,6 +32,7 @@ sub mirror {
				21
				22	my $want_proxy = $self->_want_proxy($uri);
				23	my $http = HTTP::Tiny->new(
				24	+ verify_SSL => 1,
				25	$want_proxy ? (proxy => $self->{proxy}) : ()
				26	);
				27
				28	--
				29	2.40.0