libjson-c: backport security fixes
authorRobert Marko <robert.marko@sartura.hr>
Tue, 12 May 2020 20:18:33 +0000 (22:18 +0200)
committerRISCi_ATOM <bob@bobcall.me>
Thu, 21 May 2020 17:00:27 +0000 (13:00 -0400)
commit2c4ca7ef1d58d3a768e3e9d6631e624452c2acbe
tree454253ac73236d155bc54aa88db1b3288156b819
parent05dc838d13fd8c5faf81af992b194f679f78780b
libjson-c: backport security fixes

This backports upstream fixes for the out of bounds write vulnerability in json-c.
It was reported and patches in this upstream PR: https://github.com/json-c/json-c/pull/592

Addresses CVE-2020-12762

Signed-off-by: Robert Marko <robert.marko@sartura.hr>
Signed-off-by: Luka Perkov <luka.perkov@sartura.hr>
[bump PKG_RELEASE, rebase patches on top of json-c 0.12]
Signed-off-by: Jo-Philipp Wich <jo@mein.io>
(backported from commit bc0288b76816578f5aeccb2abd679f82bfc5738e)
package/libs/libjson-c/Makefile
package/libs/libjson-c/patches/000-libm.patch
package/libs/libjson-c/patches/001-Prevent-division-by-zero-in-linkhash.patch [new file with mode: 0644]
package/libs/libjson-c/patches/002-Fix-integer-overflows.patch [new file with mode: 0644]