[oe] [meta-oe][PATCH] gd: update to version 2.2.5
Derek Straka
derek at asterius.io
Mon Nov 27 23:01:11 UTC 2017
Resolves the following security issues:
* Double-free in gdImagePngPtr(). (CVE-2017-6362)
* Buffer over-read into uninitialized memory. (CVE-2017-7890)
Full changelog: https://github.com/libgd/libgd/blob/gd-2.2.5/CHANGELOG.md
Signed-off-by: Derek Straka <derek at asterius.io>
---
meta-oe/recipes-support/gd/{gd_2.2.4.bb => gd_2.2.5.bb} | 2 +-
1 file changed, 1 insertion(+), 1 deletion(-)
rename meta-oe/recipes-support/gd/{gd_2.2.4.bb => gd_2.2.5.bb} (96%)
diff --git a/meta-oe/recipes-support/gd/gd_2.2.4.bb b/meta-oe/recipes-support/gd/gd_2.2.5.bb
similarity index 96%
rename from meta-oe/recipes-support/gd/gd_2.2.4.bb
rename to meta-oe/recipes-support/gd/gd_2.2.5.bb
index 4932bb7..63d9acf 100644
--- a/meta-oe/recipes-support/gd/gd_2.2.4.bb
+++ b/meta-oe/recipes-support/gd/gd_2.2.5.bb
@@ -16,7 +16,7 @@ DEPENDS = "freetype libpng jpeg zlib tiff"
SRC_URI = "git://github.com/libgd/libgd.git;branch=GD-2.2 \
"
-SRCREV = "de09874b15a4c88772db35ced842330f5de23e76"
+SRCREV = "8255231b68889597d04d451a72438ab92a405aba"
S = "${WORKDIR}/git"
--
2.7.4
More information about the Openembedded-devel
mailing list