[OE-core] [Master][krogoth][PATCH] librsvg: Security fixes via update to 2.40.15
Armin Kuster
akuster808 at gmail.com
Tue May 3 13:33:36 UTC 2016
From: Armin Kuster <akuster at mvista.com>
CVE-2016-4347 librsvg2: DoS parsing SVGs with circular definitions in certain rsvg_cairo_*() functions
CVE-2016-4348 librsvg2: DoS parsing SVGs with circular definitions _rsvg_css_normalize_font_size() function
Signed-off-by: Armin Kuster <akuster at mvista.com>
---
meta/recipes-gnome/librsvg/{librsvg_2.40.13.bb => librsvg_2.40.15.bb} | 4 ++--
1 file changed, 2 insertions(+), 2 deletions(-)
rename meta/recipes-gnome/librsvg/{librsvg_2.40.13.bb => librsvg_2.40.15.bb} (91%)
diff --git a/meta/recipes-gnome/librsvg/librsvg_2.40.13.bb b/meta/recipes-gnome/librsvg/librsvg_2.40.15.bb
similarity index 91%
rename from meta/recipes-gnome/librsvg/librsvg_2.40.13.bb
rename to meta/recipes-gnome/librsvg/librsvg_2.40.15.bb
index 2ac52f7..caa6a24 100644
--- a/meta/recipes-gnome/librsvg/librsvg_2.40.13.bb
+++ b/meta/recipes-gnome/librsvg/librsvg_2.40.15.bb
@@ -14,8 +14,8 @@ inherit autotools pkgconfig gnomebase gtk-doc pixbufcache upstream-version-is-ev
SRC_URI += "file://gtk-option.patch"
-SRC_URI[archive.md5sum] = "ad03780e12c56e52474d8edf86976c73"
-SRC_URI[archive.sha256sum] = "4d6ea93ec05f5dabe7262d711d246a0a99b2311e215360dd3dcabd6afe3b9804"
+SRC_URI[archive.md5sum] = "3a66ab5b4fe1fb43b471708e4ff39a0e"
+SRC_URI[archive.sha256sum] = "d9cac4a123eec6e553a26e120979bab7425def9ae7ce7c079eba5e4a45db05f4"
CACHED_CONFIGUREVARS = "ac_cv_path_GDK_PIXBUF_QUERYLOADERS=${STAGING_LIBDIR_NATIVE}/gdk-pixbuf-2.0/gdk-pixbuf-query-loaders"
--
2.3.5
More information about the Openembedded-core
mailing list