From: Peter Korsgaard Date: Wed, 5 Sep 2018 21:40:49 +0000 (+0200) Subject: libcurl: security bump to version 7.61.1 X-Git-Url: https://git.libre-soc.org/?a=commitdiff_plain;h=87d58cccf19039fdca30ad5274ed75030919656d;p=buildroot.git libcurl: security bump to version 7.61.1 Fixes CVE-2018-14618: NTLM password overflow via integer overflow For more details, see the advisory: https://curl.haxx.se/docs/CVE-2018-14618.html Signed-off-by: Peter Korsgaard --- diff --git a/package/libcurl/libcurl.hash b/package/libcurl/libcurl.hash index 9a57153d2b..395307653d 100644 --- a/package/libcurl/libcurl.hash +++ b/package/libcurl/libcurl.hash @@ -1,5 +1,5 @@ # Locally calculated after checking pgp signature -# https://curl.haxx.se/download/curl-7.61.0.tar.xz.asc +# https://curl.haxx.se/download/curl-7.61.1.tar.xz.asc # with key 27EDEAF22F3ABCEB50DB9A125CC908FDB71E12C2 -sha256 ef6e55192d04713673b4409ccbcb4cb6cd723137d6e10ca45b0c593a454e1720 curl-7.61.0.tar.xz +sha256 3d5913d6a39bd22e68e34dff697fd6e4c3c81563f580c76fca2009315cd81891 curl-7.61.1.tar.xz sha256 5f3849ec38ddb927e79f514bf948890c41b8d1407286a49609b8fb1585931095 COPYING diff --git a/package/libcurl/libcurl.mk b/package/libcurl/libcurl.mk index e0ecb081b7..c3da8aa3e5 100644 --- a/package/libcurl/libcurl.mk +++ b/package/libcurl/libcurl.mk @@ -4,7 +4,7 @@ # ################################################################################ -LIBCURL_VERSION = 7.61.0 +LIBCURL_VERSION = 7.61.1 LIBCURL_SOURCE = curl-$(LIBCURL_VERSION).tar.xz LIBCURL_SITE = https://curl.haxx.se/download LIBCURL_DEPENDENCIES = host-pkgconf \