projects / buildroot.git / commitdiff
? search:
summary | shortlog | log | commit | commitdiff | tree
raw | patch | inline | side by side (parent: 3302263)
libfuse: security bump to version 2.9.4
authorGustavo Zacarias <gustavo@zacarias.com.ar>
Mon, 1 Jun 2015 21:42:41 +0000 (18:42 -0300)
committerPeter Korsgaard <peter@korsgaard.com>
Mon, 1 Jun 2015 22:00:35 +0000 (00:00 +0200)
Fixes:

CVE-2015-3202 - fix exec environment for mount and umount.

Signed-off-by: Gustavo Zacarias <gustavo@zacarias.com.ar>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
package/libfuse/libfuse.hash patch | blob | history
package/libfuse/libfuse.mk patch | blob | history

diff --git a/package/libfuse/libfuse.hash b/package/libfuse/libfuse.hash
index d37c5217fa15c9d76ae4e61f3d9a66cbc99c3696..b1bbee33b5cc34caeb1b891a2474cfcd9d8720cb 100644 (file)
--- a/package/libfuse/libfuse.hash
+++ b/package/libfuse/libfuse.hash
@@ -1,2 +1,3 @@
-# Locally computed:
-sha256  0beb83eaf2c5e50730fc553406ef124d77bc02c64854631bdfc86bfd6437391c  fuse-2.9.3.tar.gz
+# From http://sourceforge.net/projects/fuse/files/fuse-2.X/2.9.4/
+md5    ecb712b5ffc6dffd54f4a405c9b372d8        fuse-2.9.4.tar.gz
+sha1   c8b25419f33624dc5240af6a5d26f2c04367ca71        fuse-2.9.4.tar.gz
diff --git a/package/libfuse/libfuse.mk b/package/libfuse/libfuse.mk
index 000d2b4298adfbcbc2eb4b1c0e30c2395b0eb97b..7a28a81b92c855601b03c06463f9327a370f6f4e 100644 (file)
--- a/package/libfuse/libfuse.mk
+++ b/package/libfuse/libfuse.mk
@@ -4,7 +4,7 @@
 #
 ################################################################################
 
-LIBFUSE_VERSION = 2.9.3
+LIBFUSE_VERSION = 2.9.4
 LIBFUSE_SOURCE = fuse-$(LIBFUSE_VERSION).tar.gz
 LIBFUSE_SITE = http://downloads.sourceforge.net/project/fuse/fuse-2.X/$(LIBFUSE_VERSION)
 LIBFUSE_LICENSE = GPLv2 LGPLv2.1