[Buildroot] [PATCH] tremor: security bump to fix CVE-2018-5146
Peter Korsgaard
peter at korsgaard.com
Tue Mar 20 07:34:01 UTC 2018
>>>>> "Peter" == Peter Korsgaard <peter at korsgaard.com> writes:
> Prevent out-of-bounds write in codebook decoding.
> Codebooks that are not an exact divisor of the partition size are now
> truncated to fit within the partition.
> Upstream has migrated from subversion to git, so change to git and bump the
> version to include the fix for CVE-2018-5146.
> While we're at it, also add a hash file.
> Signed-off-by: Peter Korsgaard <peter at korsgaard.com>
Committed, thanks.
--
Bye, Peter Korsgaard
More information about the buildroot
mailing list