projects / buildroot.git / commitdiff
? search:
summary | shortlog | log | commit | commitdiff | tree
raw | patch | inline | side by side (parent: 6029d1b)
libssh2: security bump to version 1.5.0
authorGustavo Zacarias <gustavo@zacarias.com.ar>
Wed, 11 Mar 2015 14:09:51 +0000 (11:09 -0300)
committerPeter Korsgaard <peter@korsgaard.com>
Wed, 11 Mar 2015 16:09:59 +0000 (17:09 +0100)
Fixes CVE-2015-1782 - kex: bail out on rubbish in the incoming packet.

Also add hash file.

Signed-off-by: Gustavo Zacarias <gustavo@zacarias.com.ar>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
package/libssh2/libssh2.hash [new file with mode: 0644] patch | blob
package/libssh2/libssh2.mk patch | blob | history

diff --git a/package/libssh2/libssh2.hash b/package/libssh2/libssh2.hash
new file mode 100644 (file)
index 0000000..ccc6ed5
--- /dev/null
+++ b/package/libssh2/libssh2.hash
@@ -0,0 +1,2 @@
+# Locally calculated after checking pgp signature
+sha256 83196badd6868f5b926bdac8017a6f90fb8a90b16652d3bf02df0330d573d0fc        libssh2-1.5.0.tar.gz
diff --git a/package/libssh2/libssh2.mk b/package/libssh2/libssh2.mk
index 1a1a06f6f240b059fffde30331aa58e5790aca4b..3b4df3755ebd353a67017a8023508dc6035dfa31 100644 (file)
--- a/package/libssh2/libssh2.mk
+++ b/package/libssh2/libssh2.mk
@@ -4,7 +4,7 @@
 #
 ################################################################################
 
-LIBSSH2_VERSION = 1.4.3
+LIBSSH2_VERSION = 1.5.0
 LIBSSH2_SITE = http://www.libssh2.org/download
 LIBSSH2_LICENSE = BSD
 LIBSSH2_LICENSE_FILES = COPYING