projects / librecmc / librecmc.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 05dc838) | patch
libjson-c: backport security fixes
authorRobert Marko <robert.marko@sartura.hr>
Tue, 12 May 2020 20:18:33 +0000 (22:18 +0200)
committerRISCi_ATOM <bob@bobcall.me>
Thu, 21 May 2020 17:00:27 +0000 (13:00 -0400)
commit2c4ca7ef1d58d3a768e3e9d6631e624452c2acbe
tree454253ac73236d155bc54aa88db1b3288156b819tree | snapshot
parent05dc838d13fd8c5faf81af992b194f679f78780bcommit | diff
libjson-c: backport security fixes

This backports upstream fixes for the out of bounds write vulnerability in json-c.
It was reported and patches in this upstream PR: https://github.com/json-c/json-c/pull/592

Addresses CVE-2020-12762

Signed-off-by: Robert Marko <robert.marko@sartura.hr>
Signed-off-by: Luka Perkov <luka.perkov@sartura.hr>
[bump PKG_RELEASE, rebase patches on top of json-c 0.12]
Signed-off-by: Jo-Philipp Wich <jo@mein.io>
(backported from commit bc0288b76816578f5aeccb2abd679f82bfc5738e)
package/libs/libjson-c/Makefile diff | blob | history
package/libs/libjson-c/patches/000-libm.patch diff | blob | history
package/libs/libjson-c/patches/001-Prevent-division-by-zero-in-linkhash.patch [new file with mode: 0644] blob
package/libs/libjson-c/patches/002-Fix-integer-overflows.patch [new file with mode: 0644] blob