[Buildroot] [PATCH 2/2] package/socat: security bump to version 1.7.4.1
Peter Korsgaard
peter at korsgaard.com
Sat Jan 30 12:46:34 UTC 2021
>>>>> "Fabrice" == Fabrice Fontaine <fontaine.fabrice at gmail.com> writes:
> Buffer size option (-b) is internally doubled for CR-CRLF conversion,
> but not checked for integer overflow. This could lead to heap based
> buffer overflow, assuming the attacker could provide this parameter.
> - Update indentation in hash file (two spaces)
> - Update hash of README file due to minor updates:
> https://repo.or.cz/socat.git/commit/b145170837d75bd7a1a5803283910ab075d47bea
> https://repo.or.cz/socat.git/commit/0a115feadc3102f17e0a8a1a985319af0295f704
> http://www.dest-unreach.org/socat/doc/CHANGES
> Signed-off-by: Fabrice Fontaine <fontaine.fabrice at gmail.com>
Committed, thanks.
--
Bye, Peter Korsgaard
More information about the buildroot
mailing list