projects / buildroot.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: ff4cccb) | patch
libcurl: security bump to version 7.55.0
authorBaruch Siach <baruch@tkos.co.il>
Thu, 10 Aug 2017 17:35:45 +0000 (20:35 +0300)
committerArnout Vandecappelle (Essensium/Mind) <arnout@mind.be>
Fri, 11 Aug 2017 10:42:34 +0000 (12:42 +0200)
commitd88c79090add53947dc3290fb61d51f2b630301c
treeefc572c7018b1390d32659212cd68e9f9b106853tree
parentff4cccbdcf5417a5a8c251ff302791a306023cc1commit | diff
libcurl: security bump to version 7.55.0

Fixes:

 glob: do not parse after a strtoul() overflow range (CVE-2017-1000101)
 tftp: reject file name lengths that don't fit (CVE-2017-1000100)
 file: output the correct buffer to the user (CVE-2017-1000099)

Switch to .tar.xz to save bandwidth.

Add reference to tarball signature.

Signed-off-by: Baruch Siach <baruch@tkos.co.il>
Signed-off-by: Arnout Vandecappelle (Essensium/Mind) <arnout@mind.be>
package/libcurl/libcurl.hash diff | blob | history
package/libcurl/libcurl.mk diff | blob | history