[OE-core] [PATCH] libsoup: upgrade to 2.58.2
Ross Burton
ross.burton at intel.com
Thu Aug 31 16:50:20 UTC 2017
This fixes CVE-2017-2885 (stack overflow with HTTP chunked encoding), no other
relevant changes.
Signed-off-by: Ross Burton <ross.burton at intel.com>
---
.../libsoup/{libsoup-2.4_2.58.1.bb => libsoup-2.4_2.58.2.bb} | 4 ++--
1 file changed, 2 insertions(+), 2 deletions(-)
rename meta/recipes-support/libsoup/{libsoup-2.4_2.58.1.bb => libsoup-2.4_2.58.2.bb} (89%)
diff --git a/meta/recipes-support/libsoup/libsoup-2.4_2.58.1.bb b/meta/recipes-support/libsoup/libsoup-2.4_2.58.2.bb
similarity index 89%
rename from meta/recipes-support/libsoup/libsoup-2.4_2.58.1.bb
rename to meta/recipes-support/libsoup/libsoup-2.4_2.58.2.bb
index 5b1273efec2..c9f95e538a2 100644
--- a/meta/recipes-support/libsoup/libsoup-2.4_2.58.1.bb
+++ b/meta/recipes-support/libsoup/libsoup-2.4_2.58.2.bb
@@ -11,8 +11,8 @@ SHRT_VER = "${@d.getVar('PV').split('.')[0]}.${@d.getVar('PV').split('.')[1]}"
SRC_URI = "${GNOME_MIRROR}/libsoup/${SHRT_VER}/libsoup-${PV}.tar.xz"
-SRC_URI[md5sum] = "91d7a6bf8785d31f4b154a7612e53e62"
-SRC_URI[sha256sum] = "62c669f557de745b7b20ba9d5b74d839c95e4c9cea1a5ab7f3da5531a1aeefb9"
+SRC_URI[md5sum] = "eb33adb459c2283efc5c7d09ccdbbcfc"
+SRC_URI[sha256sum] = "442300ca1b1bf8a3bbf2f788203287ff862542d4fc048f19a92a068a27d17b72"
S = "${WORKDIR}/libsoup-${PV}"
--
2.11.0
More information about the Openembedded-core
mailing list