From 4a146b933e7ab9c6d1b353f61a610c69bc95bc55 Mon Sep 17 00:00:00 2001 From: Peter Korsgaard Date: Mon, 15 May 2017 16:44:47 +0200 Subject: [PATCH] git: security bump to version 2.12.3 Fixes CVE-2017-8386 - Git Shell Bypass By Abusing Less For more details, see: https://insinuator.net/2017/05/git-shell-bypass-by-abusing-less-cve-2017-8386/ http://www.mail-archive.com/git@vger.kernel.org/msg120982.html Signed-off-by: Peter Korsgaard Signed-off-by: Thomas Petazzoni --- package/git/git.hash | 2 +- package/git/git.mk | 2 +- 2 files changed, 2 insertions(+), 2 deletions(-) diff --git a/package/git/git.hash b/package/git/git.hash index 9af360ee2b..4782dcbefb 100644 --- a/package/git/git.hash +++ b/package/git/git.hash @@ -1,2 +1,2 @@ # From: https://www.kernel.org/pub/software/scm/git/sha256sums.asc -sha256 d21a9e23506e618d561fb25a8a7bd6134f927b86147930103487117a7a678c4a git-2.12.2.tar.xz +sha256 016124c54ce2db7a4c2bd26b0de21fbf8f6bcaee04842aa221c7243141df4e42 git-2.12.3.tar.xz diff --git a/package/git/git.mk b/package/git/git.mk index c2e4b8d152..9cea8de6b1 100644 --- a/package/git/git.mk +++ b/package/git/git.mk @@ -4,7 +4,7 @@ # ################################################################################ -GIT_VERSION = 2.12.2 +GIT_VERSION = 2.12.3 GIT_SOURCE = git-$(GIT_VERSION).tar.xz GIT_SITE = https://www.kernel.org/pub/software/scm/git GIT_LICENSE = GPL-2.0, LGPL-2.1+ -- 2.30.2