- 14 Jul, 2017 7 commits
-
-
Yann E. MORIN authored
The current test fails because of a legacy option, renamed during the recent ext overhaul. Signed-off-by:
"Yann E. MORIN" <yann.morin.1998@free.fr> Cc: Sébastien Szymanski <sebastien.szymanski@armadeus.com> Cc: Samuel Martin <s.martin49@gmail.com> Cc: Thomas Petazzoni <thomas.petazzoni@free-electrons.com> Cc: Arnout Vandecappelle <arnout@mind.be> Signed-off-by:
Thomas Petazzoni <thomas.petazzoni@free-electrons.com>
-
Peter Korsgaard authored
Fixes CVE-2017 -10688 - n LibTIFF 4.0.8, there is a assertion abort in the TIFFWriteDirectoryTagCheckedLong8Array function in tif_dirwrite.c. A crafted input will lead to a remote denial of service attack. Signed-off-by:
Peter Korsgaard <peter@korsgaard.com> Signed-off-by:
-
Peter Korsgaard authored
Fixes CVE-2017-7506 - Possible buffer overflow via invalid monitor configurations. For more details, see: https://marc.info/?l=oss-security&m=150001782924095 Signed-off-by:
-
Yegor Yefremov authored
Remove Python2 only dependency as the package is compatible with Python3. Add a dot at the end of the help text. Signed-off-by:
Yegor Yefremov <yegorslists@googlemail.com> Signed-off-by:
-
Peter Korsgaard authored
Fixes CVE-2017-7529 - Nginx versions since 0.5.6 up to and including 1.13.2 are vulnerable to integer overflow vulnerability in nginx range filter module resulting into leak of potentially sensitive information triggered by specially crafted request. For more details, see: http://mailman.nginx.org/pipermail/nginx-announce/2017/000200.html Signed-off-by:
-
Peter Korsgaard authored
Fixes: http://autobuild.buildroot.net/results/9ec/9ecf714667736bf61f643ad55588d3d6ebdde603/ http://autobuild.buildroot.net/results/cea/cea64e30e98543e10c8819f6337babfec6d7ac0f/ Bump to the latest commit on the 2.255 branch, which contains pull request 88 (work with latest nginx versions): https://github.com/vkholodkov/nginx-upload-module/pull/88 git shortlog aba1e3f34c754551f4f49e572bc86863d535609d.. Anton (1): Add files via upload Valery Kholodkov (5): Added tag for version 2.0.8 Recreated tag for version 2.0.8 Backported to nginx 0.5.37 by Anthony Kholodkov Updated Changelog Merge pull request #88 from antonbarinov/2.255 Signed-off-by:
-
Samuel Martin authored
Add a patch to nginx configuration system fixing misdetected unneeded PCRE dependency. This patch has been submitted upstream [1]. Fixes: http://autobuild.buildroot.net/results/bc7/bc7458b97a88785653845afd30fe9d5f3a69905b/build-end.log [1] http://mailman.nginx.org/pipermail/nginx-devel/2017-July/010308.html Signed-off-by:
Samuel Martin <s.martin49@gmail.com> Signed-off-by:
-
- 13 Jul, 2017 14 commits
-
-
Martin Bark authored
Fixes CVE-2017-1000381 - The c-ares function ares_parse_naptr_reply(), which is used for parsing NAPTR responses, could be triggered to read memory outside of the given input buffer if the passed in DNS response packet was crafted in a particular way. This patch checks that there is enough data for the required elements of an NAPTR record (2 int16, 3 bytes for string lengths) before processing a record. See https://nodejs.org/en/blog/release/v8.1.4/ [Peter: add CVE info] Signed-off-by:
Martin Bark <martin@barkynet.com> Signed-off-by:
-
Bernd Kuhls authored
Fixes CVE-2017-11103: All versions of Samba from 4.0.0 onwards using embedded Heimdal Kerberos are vulnerable to a man-in-the-middle attack impersonating a trusted server, who may gain elevated access to the domain by returning malicious replication or authorization data. Samba binaries built against MIT Kerberos are not vulnerable. https://www.samba.org/samba/history/samba-4.5.12.html [Peter: add CVE info] Signed-off-by:
Bernd Kuhls <bernd.kuhls@t-online.de> Signed-off-by:
-
Bernd Kuhls authored
Removed patches 0003 & 0004, applied upstream. Fixes the following security issues: CVE-2017-7244 - The _pcre32_xclass function in pcre_xclass.c in libpcre1 in PCRE 8.40 allows remote attackers to cause a denial of service (invalid memory read) via a crafted file. CVE-2017-7245 - Stack-based buffer overflow in the pcre32_copy_substring function in pcre_get.c in libpcre1 in PCRE 8.40 allows remote attackers to cause a denial of service (WRITE of size 4) or possibly have unspecified other impact via a crafted file. CVE-2017 -7246 - Stack-based buffer overflow in the pcre32_copy_substring function in pcre_get.c in libpcre1 in PCRE 8.40 allows remote attackers to cause a denial of service (WRITE of size 268) or possibly have unspecified other impact via a crafted file. [Peter: add CVE info] Signed-off-by:
-
Bernd Kuhls authored
Signed-off-by:
-
Thomas Petazzoni authored
The recent change on PYTHONPATH for Python 2.x has revealed a missing dependency in the python-twisted package. The incremental Python module is listed in both setup_requires and install_requires, so we must depend on both its target *and* host variants. Fixes: http://autobuild.buildroot.net/results/386bf87abba550b5477d5e15e57981b8c3cef8d6/ Signed-off-by:
-
Baruch Siach authored
The email address of Sagaert Johan is bouncing. Remove his DEVELOPERS entry. Signed-off-by:
Baruch Siach <baruch@tkos.co.il> Signed-off-by:
-
Thomas Petazzoni authored
We currently have $(TARGET_DIR)/usr/lib/python$(PYTHON_VERSION_MAJOR)/site-packages/ inside the PYTHON_PATH variable, which gets used to define PYTHONPATH, passed to the host Python interpreter when building/installing target packages. However, this is terribly wrong, as it causes the host interpreter to potentially import target Python packages. This is wrong for several reasons: - Some Python packages might need some Python modules to be installed on the host (described in setup_requires in setup.py), but their installation currently works because by luck the corresponding Python module is installed for the target. Some of those cases were happening for real, and fixed by previous patches. - Some Python packages include some native code, therefore built for a specific CPU architecture. When you point the host Python interpreter to native libraries built for the target, you get nice build failures, such as the one affecting the python-cffi related packages. Making this change allows to fix the python-cffi related build failures: http://autobuild.buildroot.net/results/a9af84f2d845ee25e2b7d8b92aef485112b46060/ (python-cryptography) http://autobuild.buildroot.net/results/b017c4f6b4d45c0afbf06a80dbd3f2ebe5d49d20/ (python-pynacl) http://autobuild.buildroot.net/results/25144ea191ad46d851b31d3a2f0ef939f215494b/ (python-smbus-cffi) This change has been verified with the following defconfig that enables a lot of Python packages: BR2_arm=y BR2_TOOLCHAIN_EXTERNAL=y BR2_TOOLCHAIN_EXTERNAL_CUSTOM=y BR2_TOOLCHAIN_EXTERNAL_DOWNLOAD=y BR2_TOOLCHAIN_EXTERNAL_URL="http://autobuild.buildroot.org/toolchains/tarballs/br-arm-full-2017.05-834-gb595627.tar.bz2 " BR2_TOOLCHAIN_EXTERNAL_GCC_4_9=y BR2_TOOLCHAIN_EXTERNAL_HEADERS_3_10=y BR2_TOOLCHAIN_EXTERNAL_LOCALE=y BR2_TOOLCHAIN_EXTERNAL_CXX=y BR2_INIT_NONE=y BR2_SYSTEM_BIN_SH_NONE=y BR2_PACKAGE_PYTHON=y BR2_PACKAGE_PYTHON_ALSAAUDIO=y BR2_PACKAGE_PYTHON_ARROW=y BR2_PACKAGE_PYTHON_ATTRS=y BR2_PACKAGE_PYTHON_AUTOBAHN=y BR2_PACKAGE_PYTHON_BITSTRING=y BR2_PACKAGE_PYTHON_BOTTLE=y BR2_PACKAGE_PYTHON_CAN=y BR2_PACKAGE_PYTHON_CBOR=y BR2_PACKAGE_PYTHON_CHARDET=y BR2_PACKAGE_PYTHON_CHEETAH=y BR2_PACKAGE_PYTHON_CHERRYPY=y BR2_PACKAGE_PYTHON_CONFIGOBJ=y BR2_PACKAGE_PYTHON_CONFIGSHELL_FB=y BR2_PACKAGE_PYTHON_CRC16=y BR2_PACKAGE_PYTHON_CRCMOD=y BR2_PACKAGE_PYTHON_CSSSELECT=y BR2_PACKAGE_PYTHON_CSSUTILS=y BR2_PACKAGE_PYTHON_DAEMON=y BR2_PACKAGE_PYTHON_DIALOG=y BR2_PACKAGE_PYTHON_DICTTOXML=y BR2_PACKAGE_PYTHON_DJANGO=y BR2_PACKAGE_PYTHON_DOCOPT=y BR2_PACKAGE_PYTHON_DPKT=y BR2_PACKAGE_PYTHON_ECDSA=y BR2_PACKAGE_PYTHON_ENUM=y BR2_PACKAGE_PYTHON_FLASK_BABEL=y BR2_PACKAGE_PYTHON_FLASK_JSONRPC=y BR2_PACKAGE_PYTHON_FLASK_LOGIN=y BR2_PACKAGE_PYTHON_FLUP=y BR2_PACKAGE_PYTHON_GOBJECT=y BR2_PACKAGE_PYTHON_GUNICORN=y BR2_PACKAGE_PYTHON_HTML5LIB=y BR2_PACKAGE_PYTHON_HTTPLIB2=y BR2_PACKAGE_PYTHON_HUMANIZE=y BR2_PACKAGE_PYTHON_ID3=y BR2_PACKAGE_PYTHON_INIPARSE=y BR2_PACKAGE_PYTHON_IOWAIT=y BR2_PACKAGE_PYTHON_IPADDR=y BR2_PACKAGE_PYTHON_IPY=y BR2_PACKAGE_PYTHON_IPYTHON=y BR2_PACKAGE_PYTHON_JSON_SCHEMA_VALIDATOR=y BR2_PACKAGE_PYTHON_KEYRING=y BR2_PACKAGE_PYTHON_LIBCONFIG=y BR2_PACKAGE_PYTHON_LMDB=y BR2_PACKAGE_PYTHON_LXML=y BR2_PACKAGE_PYTHON_MAD=y BR2_PACKAGE_PYTHON_MARKDOWN=y BR2_PACKAGE_PYTHON_MELD3=y BR2_PACKAGE_PYTHON_MISTUNE=y BR2_PACKAGE_PYTHON_MSGPACK=y BR2_PACKAGE_PYTHON_MUTAGEN=y BR2_PACKAGE_PYTHON_MWSCRAPE=y BR2_PACKAGE_PYTHON_NETADDR=y BR2_PACKAGE_PYTHON_NETIFACES=y BR2_PACKAGE_PYTHON_NFC=y BR2_PACKAGE_PYTHON_NUMPY=y BR2_PACKAGE_PYTHON_PAHO_MQTT=y BR2_PACKAGE_PYTHON_PAM=y BR2_PACKAGE_PYTHON_PARAMIKO=y BR2_PACKAGE_PYTHON_PILLOW=y BR2_PACKAGE_PYTHON_POSIX_IPC=y BR2_PACKAGE_PYTHON_PSUTIL=y BR2_PACKAGE_PYTHON_PUDB=y BR2_PACKAGE_PYTHON_PYCLI=y BR2_PACKAGE_PYTHON_PYCPARSER=y BR2_PACKAGE_PYTHON_PYELFTOOLS=y BR2_PACKAGE_PYTHON_PYFTPDLIB=y BR2_PACKAGE_PYTHON_PYGAME=y BR2_PACKAGE_PYTHON_PYGAME_IMAGE=y BR2_PACKAGE_PYTHON_PYGAME_EXAMPLES=y BR2_PACKAGE_PYTHON_PYGAME_FONT=y BR2_PACKAGE_PYTHON_PYGAME_MIXER=y BR2_PACKAGE_PYTHON_PYINOTIFY=y BR2_PACKAGE_PYTHON_PYLIBFTDI=y BR2_PACKAGE_PYTHON_PYMYSQL=y BR2_PACKAGE_PYTHON_PYPARTED=y BR2_PACKAGE_PYTHON_PYPCAP=y BR2_PACKAGE_PYTHON_PYQRCODE=y BR2_PACKAGE_PYTHON_PYRATEMP=y BR2_PACKAGE_PYTHON_PYRO=y BR2_PACKAGE_PYTHON_PYROUTE2=y BR2_PACKAGE_PYTHON_PYSENDFILE=y BR2_PACKAGE_PYTHON_PYSMB=y BR2_PACKAGE_PYTHON_PYSNMP_APPS=y BR2_PACKAGE_PYTHON_PYSNMP_MIBS=y BR2_PACKAGE_PYTHON_PYSOCKS=y BR2_PACKAGE_PYTHON_PYTABLEWRITER=y BR2_PACKAGE_PYTHON_PYTRIE=y BR2_PACKAGE_PYTHON_PYUSB=y BR2_PACKAGE_PYTHON_PYXB=y BR2_PACKAGE_PYTHON_PYZMQ=y BR2_PACKAGE_PYTHON_REQUESTS_TOOLBELT=y BR2_PACKAGE_PYTHON_RPI_GPIO=y BR2_PACKAGE_PYTHON_RTSLIB_FB=y BR2_PACKAGE_PYTHON_SDNOTIFY=y BR2_PACKAGE_PYTHON_SERIAL=y BR2_PACKAGE_PYTHON_SETPROCTITLE=y BR2_PACKAGE_PYTHON_SH=y BR2_PACKAGE_PYTHON_SHUTILWHICH=y BR2_PACKAGE_PYTHON_SIMPLEJSON=y BR2_PACKAGE_PYTHON_SMBUS_CFFI=y BR2_PACKAGE_PYTHON_SOCKETIO=y BR2_PACKAGE_PYTHON_SORTEDCONTAINERS=y BR2_PACKAGE_PYTHON_SPIDEV=y BR2_PACKAGE_PYTHON_THRIFT=y BR2_PACKAGE_PYTHON_TOMAKO=y BR2_PACKAGE_PYTHON_TREQ=y BR2_PACKAGE_PYTHON_U_MSGPACK=y BR2_PACKAGE_PYTHON_UBJSON=y BR2_PACKAGE_PYTHON_UJSON=y BR2_PACKAGE_PYTHON_URLLIB3=y BR2_PACKAGE_PYTHON_VERSIONTOOLS=y BR2_PACKAGE_PYTHON_WATCHDOG=y BR2_PACKAGE_PYTHON_WEB2PY=y BR2_PACKAGE_PYTHON_WEBPY=y BR2_PACKAGE_PYTHON_WHOOSH=y BR2_PACKAGE_PYTHON_WS4PY=y BR2_PACKAGE_PYTHON_WSACCEL=y BR2_PACKAGE_PYTHON_XLUTILS=y Signed-off-by:
-
Thomas Petazzoni authored
The python-treq package lists the incremental Python module as part of its setup_requires variable in setup.py, so it must be added as a host dependency of the python-treq package to avoid build failures. So far, this issue wasn't visible because python-treq selects python-twisted, which itself selects the target python-incremental package. Because python-incremental was before python-treq in the alphabetic ordering, it was always built before python-treq. And due to the fact that PYTHONPATH currently contains the directory with target Python modules, the host Python interpreter was happily using the target python-incremental while running on the host. But as we are going to clean up PYTHONPATH, this will no longer be the case, and hence python-treq needs to be fixed. Signed-off-by:
-
Thomas Petazzoni authored
A host variant of the python-incremental package will be needed for the python-treq package. Signed-off-by:
-
Thomas Petazzoni authored
python-json-schema-validator does not need versiontools on the target, but only on the host, as it's listed in setup_requires in setup.py. This was not noticed so far because host Python interpreter is started with a PYTHONPATH that contains a directory with target Python packages, so versiontools was found there. But as we are about to fix PYTHONPATH to no longer include such a directory, python-json-schema-validator would fail due to versiontools being missed on the host. Signed-off-by:
-
Thomas Petazzoni authored
It will be needed by python-json-schema-validator. Signed-off-by:
-
Thomas Petazzoni authored
python-u-msgpack can use setuptools instead of distutils, and using setuptools is generally preferred. In addition, using setuptools allows to make sure the package will continue to build when we will adjust the PYTHONPATH variable to no longer point to target Python modules. Without such a change to setuptools, the build would fail with: ===================================================================== running install Checking .pth file support in /home/test/buildroot/output/target/usr/lib/python2.7/site-packages/ /home/test/buildroot/output/host/bin/python -E -c pass TEST FAILED: /home/test/buildroot/output/target/usr/lib/python2.7/site-packages/ does NOT support .pth files error: bad install directory or PYTHONPATH You are attempting to install a package to a directory that is not on PYTHONPATH and which Python does not read ".pth" files from. The installation directory you specified (via --install-dir, --prefix, or the distutils default setting) was: /home/test/buildroot/output/target/usr/lib/python2.7/site-packages/ and your PYTHONPATH environment variable currently contains: '/home/test/buildroot/output/target/usr/lib/python2.7/sysconfigdata/' Here are some of your options for correcting the problem: * You can choose a different installation directory, i.e., one that is on PYTHONPATH or supports .pth files * You can add the installation directory to the PYTHONPATH environment variable. (It must then also be on PYTHONPATH whenever you run Python and want to use the package(s) you are installing.) * You can set up the installation directory to support ".pth" files by using one of the approaches described here: https://setuptools.readthedocs.io/en/latest/easy_install.html#custom-installation-locations ===================================================================== Signed-off-by: -
Thomas Petazzoni authored
python-pyro can use setuptools instead of distutils, and using setuptools is generally preferred. In addition, using setuptools allows to make sure the package will continue to build when we will adjust the PYTHONPATH variable to no longer point to target Python modules. Without such a change to setuptools, the build would fail with: ===================================================================== running install Checking .pth file support in /home/test/buildroot/output/target/usr/lib/python2.7/site-packages/ /home/test/buildroot/output/host/bin/python -E -c pass TEST FAILED: /home/test/buildroot/output/target/usr/lib/python2.7/site-packages/ does NOT support .pth files error: bad install directory or PYTHONPATH You are attempting to install a package to a directory that is not on PYTHONPATH and which Python does not read ".pth" files from. The installation directory you specified (via --install-dir, --prefix, or the distutils default setting) was: /home/test/buildroot/output/target/usr/lib/python2.7/site-packages/ and your PYTHONPATH environment variable currently contains: '/home/test/buildroot/output/target/usr/lib/python2.7/sysconfigdata/' Here are some of your options for correcting the problem: * You can choose a different installation directory, i.e., one that is on PYTHONPATH or supports .pth files * You can add the installation directory to the PYTHONPATH environment variable. (It must then also be on PYTHONPATH whenever you run Python and want to use the package(s) you are installing.) * You can set up the installation directory to support ".pth" files by using one of the approaches described here: https://setuptools.readthedocs.io/en/latest/easy_install.html#custom-installation-locations ===================================================================== Signed-off-by: -
Thomas Petazzoni authored
python-pyasn can use setuptools instead of distutils, and using setuptools is generally preferred. In addition, using setuptools allows to make sure the package will continue to build when we will adjust the PYTHONPATH variable to no longer point to target Python modules. Without such a change to setuptools, the build would fail with: ===================================================================== running install Checking .pth file support in /home/test/buildroot/output/target/usr/lib/python2.7/site-packages/ /home/test/buildroot/output/host/bin/python -E -c pass TEST FAILED: /home/test/buildroot/output/target/usr/lib/python2.7/site-packages/ does NOT support .pth files error: bad install directory or PYTHONPATH You are attempting to install a package to a directory that is not on PYTHONPATH and which Python does not read ".pth" files from. The installation directory you specified (via --install-dir, --prefix, or the distutils default setting) was: /home/test/buildroot/output/target/usr/lib/python2.7/site-packages/ and your PYTHONPATH environment variable currently contains: '/home/test/buildroot/output/target/usr/lib/python2.7/sysconfigdata/' Here are some of your options for correcting the problem: * You can choose a different installation directory, i.e., one that is on PYTHONPATH or supports .pth files * You can add the installation directory to the PYTHONPATH environment variable. (It must then also be on PYTHONPATH whenever you run Python and want to use the package(s) you are installing.) * You can set up the installation directory to support ".pth" files by using one of the approaches described here: https://setuptools.readthedocs.io/en/latest/easy_install.html#custom-installation-locations ===================================================================== Signed-off-by:
-
- 12 Jul, 2017 11 commits
-
-
Ben Leinweber authored
There is copyright information in the top level README file. Use this file as the license file which will be included by the `legal-info` build rule. Signed-off-by:
Ben Leinweber <bleinweber@spaceflight.com> Signed-off-by:
Andrey Smirnov <andrew.smirnov@gmail.com> Signed-off-by:
-
Fabio Estevam authored
Signed-off-by:
Fabio Estevam <fabio.estevam@nxp.com> Signed-off-by:
-
Fabio Estevam authored
Signed-off-by:
-
Peter Korsgaard authored
Main difference is that the drm driver now supports the hdmi output. The gxl variant device tree has been renamed in: commit 7eea67101b9713ae438955e8899b3c4b078419f9 Author: Kevin Hilman <khilman@baylibre.com> Date: Fri Jan 20 07:57:52 2017 -0800 ARM64: dts: meson-gxl: rename Nexbox A95x for consistency Since the GXL family has S905X and S905D SoCs, we're keeping the SoC name in the DTS filename for clarity. Rename this file accordingly to be consistent with the rest of the GXL DTS files. Cc: Neil Armstrong <narmstrong@baylibre.com> Reviewed-by:Andreas Färber <afaerber@suse.de> Signed-off-by:
Kevin Hilman <khilman@baylibre.com> So adjust the defconfig and boot script to match. Signed-off-by:
-
Yegor Yefremov authored
Though PyPI says the license is BSD, GitHub repo has an MIT license file since April 2017 and upstream setup.py was also fixed. Signed-off-by:
-
Yegor Yefremov authored
Signed-off-by:
-
Yegor Yefremov authored
Change setup type to setuptools and use proper license file. Signed-off-by:
-
Yegor Yefremov authored
Signed-off-by:
-
Yegor Yefremov authored
Signed-off-by:
-
Luca Ceresoli authored
[Build- and run-tested] Signed-off-by:
Luca Ceresoli <luca@lucaceresoli.net> Signed-off-by:
-
Luca Ceresoli authored
This defconfig does not build anymore since commit 6cda724e ("package/gcc: switch to gcc 6.x as the default"). Fix by upgrading to the latest U-Boot version. Fixes: In file included from include/linux/compiler.h:54:0, from include/linux/bitops.h:5, from ./include/common.h:20: include/linux/compiler-gcc.h:114:30: fatal error: linux/compiler-gcc6.h: No such file or directory #include gcc_header(__GNUC__) ^ compilation terminated. [Build- and run-tested] Signed-off-by:
-
- 11 Jul, 2017 8 commits
-
-
Yann E. MORIN authored
And add myself to the DEVELOPPERS for squashfs. Signed-off-by:
-
Jörg Krause authored
Drop the following patches: * the Xtensa patches 870 and 871 are upstream now * patch 942 was backported to GCC 6 branch Note, that a bz2 release tarball is not provided anymore and is replaced by a xz tarball file. Signed-off-by:
Jörg Krause <joerg.krause@embedded.rocks> Signed-off-by:
-
Peter Seiderer authored
Use '--disable-pcre2grep-callout' for !BR2_USE_MMU, disables fork usage. Fixes [1]: CCLD pcre2grep src/pcre2grep-pcre2grep.o: In function `pcre2grep_callout': pcre2grep.c:(.text+0x402): undefined reference to `fork' collect2: error: ld returned 1 exit status [1] http://autobuild.buildroot.net/results/2c2/2c2665844748a3bdb010315200eea70aa3504b95 Signed-off-by:Peter Seiderer <ps.report@gmx.net> Signed-off-by:
-
Francois Perrad authored
Signed-off-by:
Francois Perrad <francois.perrad@gadz.org> Signed-off-by:
-
Baruch Siach authored
libssh2 support mbedtls as crypto back-end library since version 1.8.0. Default to mbedtls since it's smaller than either libgcrypt or openssl. Signed-off-by:
-
Bernd Kuhls authored
Announcement: http://www.apache.org/dist/httpd/Announcement2.4.html Release notes: http://www.apache.org/dist/httpd/CHANGES_2.4.27 Signed-off-by:
-
Peter Korsgaard authored
>From the release notes: - Extend pow tables for layer III to properly handle files with i-stereo and 5-bit scalefactors. Never observed them for real, just as fuzzed input to trigger the read overflow. Note: This one goes on record as CVE-2017 -11126, calling remote denial of service. While the accesses are out of bounds for the pow tables, they still are safely within libmpg123's memory (other static tables). Just wrong values are used for computation, no actual crash unless you use something like GCC's AddressSanitizer, nor any information disclosure. - Avoid left-shifts of negative integers in layer I decoding. While we're at it, add a hash for the license file. Signed-off-by:
-
Peter Korsgaard authored
Drop CVE 2017-9868 patch as that is now upstream. 1.4.14 is a bugfix release, fixing significant websocket performance / correctness issues. Use HTTPS for the download as the server uses HSTS, thus saving a redirect. While we're at it, add hashes for the license files. Signed-off-by:
-
