projects / buildroot.git / commitdiff
? search:
summary | shortlog | log | commit | commitdiff | tree
raw | patch | inline | side by side (parent: aceb711)
poppler: security bump to version 0.24.5
authorGustavo Zacarias <gustavo@zacarias.com.ar>
Tue, 6 Jan 2015 12:30:02 +0000 (09:30 -0300)
committerThomas Petazzoni <thomas.petazzoni@free-electrons.com>
Tue, 6 Jan 2015 20:13:47 +0000 (21:13 +0100)
Fixes CVE-2013-7296 - JBIG2Stream::readSegments()" Denial of Service
Vulnerability.

Also add hash file.

Signed-off-by: Gustavo Zacarias <gustavo@zacarias.com.ar>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com>
package/poppler/poppler.hash [new file with mode: 0644] patch | blob
package/poppler/poppler.mk patch | blob | history

diff --git a/package/poppler/poppler.hash b/package/poppler/poppler.hash
new file mode 100644 (file)
index 0000000..f3225bc
--- /dev/null
+++ b/package/poppler/poppler.hash
@@ -0,0 +1,2 @@
+# Locally calculated
+sha256 a2654910100c923c44e366242495e226db2798254f2fa2781138867348759f84        poppler-0.24.5.tar.xz
diff --git a/package/poppler/poppler.mk b/package/poppler/poppler.mk
index a972325846e6816403474997141050c3031d1953..2ac7e642971393553015e1d4257da01d4bb64c0b 100644 (file)
--- a/package/poppler/poppler.mk
+++ b/package/poppler/poppler.mk
@@ -4,7 +4,7 @@
 #
 ################################################################################
 
-POPPLER_VERSION = 0.24.4
+POPPLER_VERSION = 0.24.5
 POPPLER_SOURCE = poppler-$(POPPLER_VERSION).tar.xz
 POPPLER_SITE = http://poppler.freedesktop.org
 POPPLER_DEPENDENCIES = fontconfig