[Buildroot] [PATCH] package/privoxy: security bump to version 3.0.31

Peter Korsgaard peter at korsgaard.com
Tue Feb 2 15:34:49 UTC 2021


>>>>> "Peter" == Peter Korsgaard <peter at korsgaard.com> writes:

 > From the announcement:
 > ChangeLog for Privoxy 3.0.31
 > --------------------------------------------------------------------
 > - Security/Reliability:
 >   - Prevent an assertion from getting triggered by a crafted CGI request.
 >     Commit 5bba5b89193fa. OVE-20210130-0001.
 >     Reported by: Joshua Rogers (Opera)
 >   - Fixed a memory leak when decompression fails "unexpectedly".
 >     Commit f431d61740cc0. OVE-20210128-0001.

 > - Bug fixes:
 >   - Fixed detection of insufficient data for decompression.
 >     Previously Privoxy could try to decompress a partly
 >     uninitialized buffer.

 > https://www.privoxy.org/announce.txt

 > Signed-off-by: Peter Korsgaard <peter at korsgaard.com>

Committed, thanks.

-- 
Bye, Peter Korsgaard


More information about the buildroot mailing list