[Buildroot] [PATCH] libcurl: security bump to version 7.55.0

Arnout Vandecappelle arnout at mind.be
Fri Aug 11 12:09:47 UTC 2017



On 10-08-17 19:35, Baruch Siach wrote:
> Fixes:
> 
>  glob: do not parse after a strtoul() overflow range (CVE-2017-1000101)
>  tftp: reject file name lengths that don't fit (CVE-2017-1000100)
>  file: output the correct buffer to the user (CVE-2017-1000099)
> 
> Switch to .tar.xz to save bandwidth.
> 
> Add reference to tarball signature.

 Nice!

> Signed-off-by: Baruch Siach <baruch at tkos.co.il>

 Applied to master, thanks.

 Regards,
 Arnout

-- 
Arnout Vandecappelle                          arnout at mind be
Senior Embedded Software Architect            +32-16-286500
Essensium/Mind                                http://www.mind.be
G.Geenslaan 9, 3001 Leuven, Belgium           BE 872 984 063 RPR Leuven
LinkedIn profile: http://www.linkedin.com/in/arnoutvandecappelle
GPG fingerprint:  7493 020B C7E3 8618 8DEC 222C 82EB F404 F9AC 0DDF



More information about the buildroot mailing list