[Buildroot] [PATCH 1/1] package/libraw: security bump to version 0.20.2
Thomas Petazzoni
thomas.petazzoni at bootlin.com
Sat Oct 24 20:57:23 UTC 2020
On Mon, 19 Oct 2020 23:34:27 +0200
Fabrice Fontaine <fontaine.fabrice at gmail.com> wrote:
> Fix CVE-2020-24890: libraw 20.0 has a null pointer dereference
> vulnerability in parse_tiff_ifd in src/metadata/tiff.cpp, which may
> result in context-dependent arbitrary code execution.
>
> https://www.libraw.org/news/libraw-0-20-2-Release
>
> Signed-off-by: Fabrice Fontaine <fontaine.fabrice at gmail.com>
> ---
> package/libraw/libraw.hash | 2 +-
> package/libraw/libraw.mk | 2 +-
> 2 files changed, 2 insertions(+), 2 deletions(-)
Applied to master, thanks.
Thomas
--
Thomas Petazzoni, CTO, Bootlin
Embedded Linux and Kernel engineering
https://bootlin.com
More information about the buildroot
mailing list