projects / buildroot.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 45014da) | patch
package/pango: add upstream security fix for CVE-2018-15120
authorPeter Korsgaard <peter@korsgaard.com>
Fri, 18 Jan 2019 09:22:12 +0000 (10:22 +0100)
committerPeter Korsgaard <peter@korsgaard.com>
Sat, 19 Jan 2019 15:33:49 +0000 (16:33 +0100)
commit1574dd6d48e4b1deef1dc05764eb51687e699822
tree271da16986a3911feff2a8f4acdab1c9eaa92ebbtree
parent45014da2b780e303433e9a7099fa3ef25b248badcommit | diff
package/pango: add upstream security fix for CVE-2018-15120

libpango in Pango 1.40.8 through 1.42.3, as used in hexchat and other
products, allows remote attackers to cause a denial of service (application
crash) or possibly have unspecified other impact via crafted text with
invalid Unicode sequences.

https://nvd.nist.gov/vuln/detail/CVE-2018-15120

Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
package/pango/0002-Prevent-an-assertion-with-invalid-Unicode-sequences.patch [new file with mode: 0644] blob