libsrtp: security bump to version 1.5.4

Fixes CVE-2015-6360: Prevent potential DoS attack due to lack of bounds
checking on RTP header CSRC count and extension header length.

Also, add a hash file.

Signed-off-by: Baruch Siach <baruch@tkos.co.il>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com>

diff --git a/package/libsrtp/libsrtp.hash b/package/libsrtp/libsrtp.hash
new file mode 100644 (file)
index 0000000..cb060d2
--- /dev/null
+++ b/package/libsrtp/libsrtp.hash
@@ -0,0 +1,2 @@
+# Locally calculated
+sha256 56a7b521c25134f48faff26b0b1e3d4378a14986a2d3d7bc6fefb48987304ff0 libsrtp-v1.5.4.tar.gz

diff --git a/package/libsrtp/libsrtp.mk b/package/libsrtp/libsrtp.mk
index bcf344fa55bf7da958fc12d8ac8ce09626268657..40b85e69f3cf9a0be743c627a7f62aa4175561e7 100644 (file)
--- a/package/libsrtp/libsrtp.mk
+++ b/package/libsrtp/libsrtp.mk
@@ -4,7 +4,7 @@
 #
 ################################################################################
 
-LIBSRTP_VERSION = v1.5.2
+LIBSRTP_VERSION = v1.5.4
 LIBSRTP_SITE = $(call github,cisco,libsrtp,$(LIBSRTP_VERSION))
 LIBSRTP_INSTALL_STAGING = YES
 LIBSRTP_LICENSE = BSD-3c