[Buildroot] [PATCH 1/1] package/unzip: add security patch from Debian
Peter Korsgaard
peter at korsgaard.com
Wed Sep 4 20:54:34 UTC 2019
>>>>> "Sébastien" == Sébastien Szymanski <sebastien.szymanski at armadeus.com> writes:
> Fix the URL and add a new patch. Quoting changelog [1]:
> unzip (6.0-25) unstable; urgency=medium
> * Apply one more patch by Mark Adler:
> - Do not raise a zip bomb alert for a misplaced central directory.
> This should allow Firefox to build again. Closes: #932404.
> Reported by Peter Green. Hopefully CVE-2019-13232 is fixed now.
> -- Santiago Vila <sanvila at debian.org> Sat, 27 Jul 2019 18:01:36 +0200
> [1] https://sources.debian.org/data/main/u/unzip/6.0-25/debian/changelog
> Signed-off-by: Sébastien Szymanski <sebastien.szymanski at armadeus.com>
Committed to 2019.02.x, 2019.05.x and 2019.08.x, thanks.
--
Bye, Peter Korsgaard
More information about the buildroot
mailing list