[OE-core] [PATCH 0/1] uprev serf: 1.3.6 -> 1.3.8
akuster
akuster at mvista.com
Mon Nov 17 15:35:17 UTC 2014
Please add to the 1.3.7 the security fix
- CVE-2014-3504: (Closes: #757965)
On 11/17/2014 12:38 AM, wenzong.fan at windriver.com wrote:
> From: Wenzong Fan <wenzong.fan at windriver.com>
>
> Release changes:
>
> Serf 1.3.8 [2014-10-20, from /tags/1.3.8, rxxxx]
> Fix issue #152: CRC calculation error for gzipped http reponses > 4GB.
> Fix issue #153: SSPI CredHandle not freed when APR pool is destroyed.
> Fix issue #154: Disable SSLv2 and SSLv3 as both or broken.
>
> Serf 1.3.7 [2014-08-11, from /tags/1.3.7, r2411]
> Handle NUL bytes in fields of an X.509 certificate. (r2393, r2399)
>
> The following changes since commit edaeb8940813b620090a0797ad3b6a076897512d:
>
> bitbake: cooker.py: fix loginfo op being set to an invalid value (2014-11-12 17:04:50 +0000)
>
> are available in the git repository at:
>
> git://git.pokylinux.org/poky-contrib wenzong/serf
> http://git.pokylinux.org/cgit.cgi/poky-contrib/log/?h=wenzong/serf
>
> Wenzong Fan (1):
> serf: 1.3.6 -> 1.3.8
>
> .../serf/{serf_1.3.6.bb => serf_1.3.8.bb} | 6 +++---
> 1 file changed, 3 insertions(+), 3 deletions(-)
> rename meta/recipes-support/serf/{serf_1.3.6.bb => serf_1.3.8.bb} (74%)
>
More information about the Openembedded-core
mailing list