[Buildroot] [PATCH] libcurl: security bump to version 7.55.0
Arnout Vandecappelle
arnout at mind.be
Fri Aug 11 12:09:47 UTC 2017
On 10-08-17 19:35, Baruch Siach wrote:
> Fixes:
>
> glob: do not parse after a strtoul() overflow range (CVE-2017-1000101)
> tftp: reject file name lengths that don't fit (CVE-2017-1000100)
> file: output the correct buffer to the user (CVE-2017-1000099)
>
> Switch to .tar.xz to save bandwidth.
>
> Add reference to tarball signature.
Nice!
> Signed-off-by: Baruch Siach <baruch at tkos.co.il>
Applied to master, thanks.
Regards,
Arnout
--
Arnout Vandecappelle arnout at mind be
Senior Embedded Software Architect +32-16-286500
Essensium/Mind http://www.mind.be
G.Geenslaan 9, 3001 Leuven, Belgium BE 872 984 063 RPR Leuven
LinkedIn profile: http://www.linkedin.com/in/arnoutvandecappelle
GPG fingerprint: 7493 020B C7E3 8618 8DEC 222C 82EB F404 F9AC 0DDF
More information about the buildroot
mailing list