projects / buildroot.git / commitdiff
? search:
summary | shortlog | log | commit | commitdiff | tree
raw | patch | inline | side by side (parent: 200282e)
minicom: security bump to version 2.7.1
authorPeter Korsgaard <peter@korsgaard.com>
Tue, 25 Apr 2017 11:44:34 +0000 (13:44 +0200)
committerPeter Korsgaard <peter@korsgaard.com>
Wed, 26 Apr 2017 07:20:16 +0000 (09:20 +0200)
Fixes CVE-2017-7467 - minicom and prl-vzvncserver vt100.c escparms[] buffer
overflow.

For more details about the issue, see the nice writeup on oss-security:

http://www.openwall.com/lists/oss-security/2017/04/18/5

Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
package/minicom/minicom.hash patch | blob | history
package/minicom/minicom.mk patch | blob | history

diff --git a/package/minicom/minicom.hash b/package/minicom/minicom.hash
index 33ba4ef10c71abe2edac766270218bbcf18a92b2..ca3087160bb4e72fca013325bae77d1e65d7fadf 100644 (file)
--- a/package/minicom/minicom.hash
+++ b/package/minicom/minicom.hash
@@ -1,2 +1,2 @@
 # Locally calculated
-sha256 9ac3a663b82f4f5df64114b4792b9926b536c85f59de0f2d2b321c7626a904f4  minicom-2.7.tar.gz
+sha256 532f836b7a677eb0cb1dca8d70302b73729c3d30df26d58368d712e5cca041f1  minicom-2.7.1.tar.gz
diff --git a/package/minicom/minicom.mk b/package/minicom/minicom.mk
index 75cd0c4ff6fd014ebf4475308f54f24cb6f6ef62..cb06482379322bb89a085bef2f55ff593c545885 100644 (file)
--- a/package/minicom/minicom.mk
+++ b/package/minicom/minicom.mk
@@ -4,8 +4,8 @@
 #
 ################################################################################
 
-MINICOM_VERSION = 2.7
-MINICOM_SITE = https://alioth.debian.org/frs/download.php/file/3977
+MINICOM_VERSION = 2.7.1
+MINICOM_SITE = https://alioth.debian.org/frs/download.php/file/4215
 MINICOM_LICENSE = GPL-2.0+
 MINICOM_LICENSE_FILES = COPYING