projects / buildroot.git / commitdiff
? search:
summary | shortlog | log | commit | commitdiff | tree
raw | patch | inline | side by side (parent: be1a3a3)
libcurl: security bump to 7.52.0
authorPeter Korsgaard <peter@korsgaard.com>
Wed, 21 Dec 2016 07:48:49 +0000 (08:48 +0100)
committerPeter Korsgaard <peter@korsgaard.com>
Wed, 21 Dec 2016 18:44:44 +0000 (19:44 +0100)
Fixes CVE-2016-9586 - printf floating point buffer overflow

For details, see:
https://curl.haxx.se/docs/adv_20161221A.html

Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
package/libcurl/libcurl.hash patch | blob | history
package/libcurl/libcurl.mk patch | blob | history

diff --git a/package/libcurl/libcurl.hash b/package/libcurl/libcurl.hash
index e1283350cc19ddfd10a828e3610a22db70e29cc0..2b68c6a7b492661021bc022cda5855caf7bdca8e 100644 (file)
--- a/package/libcurl/libcurl.hash
+++ b/package/libcurl/libcurl.hash
@@ -1,2 +1,2 @@
 # Locally calculated after checking pgp signature
-sha256 7f8240048907e5030f67be0a6129bc4b333783b9cca1391026d700835a788dde  curl-7.51.0.tar.bz2
+sha256 b9a2e18b4785eb75ad84598720e1559e1c53550ea011c0e00becdb94e2df5cc6  curl-7.52.0.tar.bz2
diff --git a/package/libcurl/libcurl.mk b/package/libcurl/libcurl.mk
index 197e0b579d475d6bc0ac760f87b4ccd91c675d73..b2a1b241dc70985cc15c9e537eaf183559ea66be 100644 (file)
--- a/package/libcurl/libcurl.mk
+++ b/package/libcurl/libcurl.mk
@@ -4,7 +4,7 @@
 #
 ################################################################################
 
-LIBCURL_VERSION = 7.51.0
+LIBCURL_VERSION = 7.52.0
 LIBCURL_SOURCE = curl-$(LIBCURL_VERSION).tar.bz2
 LIBCURL_SITE = https://curl.haxx.se/download
 LIBCURL_DEPENDENCIES = host-pkgconf \