projects / buildroot.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 67170b7) | patch
libcurl: security bump to version 7.58.0
authorBaruch Siach <baruch@tkos.co.il>
Fri, 26 Jan 2018 06:17:56 +0000 (08:17 +0200)
committerPeter Korsgaard <peter@korsgaard.com>
Fri, 26 Jan 2018 08:11:23 +0000 (09:11 +0100)
commite02dd5a4924c69fc806f4191bc7be67e28d5ad37
tree5a9d8781e3b91569ccbcbe62e4919cfc9d821e3atree
parent67170b76af912bebcdab3aa88a4ac9e5b35d6273commit | diff
libcurl: security bump to version 7.58.0

Fixes CVE-2018-1000007: libcurl might leak authentication data to third
parties.

https://curl.haxx.se/docs/adv_2018-b3bf.html

Fixes CVE-2018-1000005: libcurl contains an out bounds read in code handling
HTTP/2 trailers.

https://curl.haxx.se/docs/adv_2018-824a.html

Update license hash due to copyright year change.

[Peter: also add CVE-2018-1000005 reference]
Signed-off-by: Baruch Siach <baruch@tkos.co.il>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
package/libcurl/libcurl.hash diff | blob | history
package/libcurl/libcurl.mk diff | blob | history