[Buildroot] [PATCH v2, 1/8] package/rpm: security bump to 4.14.2.1

Peter Korsgaard peter at korsgaard.com
Fri Apr 5 15:30:37 UTC 2019


>>>>> "Fabrice" == Fabrice Fontaine <fontaine.fabrice at gmail.com> writes:

 > - Remove first and second patches (already in version)
 > - Remove third and fourth patches (not needed since:
 >   https://github.com/rpm-software-management/rpm/commit/245b5a3b4b6d616adf47361137987e90f8dab22c)
 > - Add hash for license file
 > - Drop autoreconf (as configure.ac is not patched anymore)
 > - Use new --with-crypto option
 > - Restrict symlink following on installation (CVE-2017-7500,
 >   CVE-2017-7501)

 > Signed-off-by: Fabrice Fontaine <fontaine.fabrice at gmail.com>
 > ---
 > Changes v1 -> v2 (after review of Thomas Petazzoni):
 >  - Put bump as the first patch in the serie

Committed to 2019.02.x, thanks.

-- 
Bye, Peter Korsgaard


More information about the buildroot mailing list