From: Fabrice Fontaine Date: Thu, 27 May 2021 07:04:23 +0000 (+0200) Subject: package/mpv: security bump to version 0.33.1 X-Git-Url: https://git.libre-soc.org/?a=commitdiff_plain;h=34a387b5f68d2cc259d4fe641c128232edb6da62;p=buildroot.git package/mpv: security bump to version 0.33.1 Fix CVE-2021-30145: A format string vulnerability in mpv through 0.33.0 allows user-assisted remote attackers to achieve code execution via a crafted m3u playlist file. https://github.com/mpv-player/mpv/releases/tag/v0.33.1 Signed-off-by: Fabrice Fontaine Signed-off-by: Peter Korsgaard --- diff --git a/package/mpv/mpv.hash b/package/mpv/mpv.hash index 548a0f0159..0c7eb5f8a5 100644 --- a/package/mpv/mpv.hash +++ b/package/mpv/mpv.hash @@ -1,3 +1,3 @@ # Locally calculated -sha256 f1b9baf5dc2eeaf376597c28a6281facf6ed98ff3d567e3955c95bf2459520b4 mpv-0.33.0.tar.gz +sha256 100a116b9f23bdcda3a596e9f26be3a69f166a4f1d00910d1789b6571c46f3a9 mpv-0.33.1.tar.gz sha256 a99d7b0625a0566271aad6de694e52eafd566db024f9516720d526c680d3ee30 LICENSE.GPL diff --git a/package/mpv/mpv.mk b/package/mpv/mpv.mk index ca3b8c878a..5713b98e8e 100644 --- a/package/mpv/mpv.mk +++ b/package/mpv/mpv.mk @@ -4,7 +4,7 @@ # ################################################################################ -MPV_VERSION = 0.33.0 +MPV_VERSION = 0.33.1 MPV_SITE = $(call github,mpv-player,mpv,v$(MPV_VERSION)) MPV_DEPENDENCIES = \ host-pkgconf ffmpeg libass zlib \