[Buildroot] [PATCH] qpdf: security bump to version 8.1.0
Peter Korsgaard
peter at korsgaard.com
Thu Jul 19 10:04:26 UTC 2018
>>>>> "Baruch" == Baruch Siach <baruch at tkos.co.il> writes:
> Fixes CVE-2018-9918: mishandle certain "expected dictionary key but
> found non-name object" cases, allowing remote attackers to cause a
> denial of service (stack exhaustion)
> https://github.com/qpdf/qpdf/issues/202
> Drop local SHA256 hash since we use upstream provided SHA512.
> Signed-off-by: Baruch Siach <baruch at tkos.co.il>
Committed to 2018.02.x and 2018.05.x, thanks.
--
Bye, Peter Korsgaard
More information about the buildroot
mailing list