projects / buildroot.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 074ca5a) | patch
libcurl: security bump to version 7.62.0
authorPeter Korsgaard <peter@korsgaard.com>
Wed, 31 Oct 2018 08:40:55 +0000 (09:40 +0100)
committerThomas Petazzoni <thomas.petazzoni@bootlin.com>
Wed, 31 Oct 2018 08:48:06 +0000 (09:48 +0100)
commitc1a01ac2f109d695d1bfe9945bc4df0434eaec51
tree081baaa574ab12154cc8e9fd3ca1c1e616a72b05tree
parent074ca5a45ebd5ddc4238a15d61d7199ef3f8351ccommit | diff
libcurl: security bump to version 7.62.0

Fixes the following security issues:

CVE-2018-16839: SASL password overflow via integer overflow
https://curl.haxx.se/docs/CVE-2018-16839.html

CVE-2018-16840: use-after-free in handle close
https://curl.haxx.se/docs/CVE-2018-16840.html

CVE-2018-16842: warning message out-of-buffer read
https://curl.haxx.se/docs/CVE-2018-16842.html

Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
package/libcurl/libcurl.hash diff | blob | history
package/libcurl/libcurl.mk diff | blob | history