summaryrefslogtreecommitdiff
path: root/poky/meta/recipes-devtools/perl/files/CVE-2023-31484.patch
blob: 1f7cbd0da18c474723b2ea39941cfc7d6d566060 (plain) 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29

From a625ec2cc3a0b6116c1f8b831d3480deb621c245 Mon Sep 17 00:00:00 2001
From: Stig Palmquist <git@stig.io>
Date: Tue, 28 Feb 2023 11:54:06 +0100
Subject: [PATCH] Add verify_SSL=>1 to HTTP::Tiny to verify https server
 identity

Upstream-Status: Backport [https://github.com/andk/cpanpm/commit/9c98370287f4e709924aee7c58ef21c85289a7f0]

CVE: CVE-2023-31484

Signed-off-by: Soumya <soumya.sambu@windriver.com>
---
 cpan/CPAN/lib/CPAN/HTTP/Client.pm | 1 +
 1 file changed, 1 insertion(+)

diff --git a/cpan/CPAN/lib/CPAN/HTTP/Client.pm b/cpan/CPAN/lib/CPAN/HTTP/Client.pm
index 4fc792c..a616fee 100644
--- a/cpan/CPAN/lib/CPAN/HTTP/Client.pm
+++ b/cpan/CPAN/lib/CPAN/HTTP/Client.pm
@@ -32,6 +32,7 @@ sub mirror {

     my $want_proxy = $self->_want_proxy($uri);
     my $http = HTTP::Tiny->new(
+        verify_SSL => 1,
         $want_proxy ? (proxy => $self->{proxy}) : ()
     );

--
2.40.0
generated by cgit v1.2.3 (git 2.39.0) at 2024-05-20 00:21:32 +0300