This project is archived. Its data is read-only.

Commit 78cb8c81 authored Jan 23, 2015 by Gustavo Zacarias Committed by Peter Korsgaard Jan 23, 2015

patch: security bump to version 2.7.3



Fixes CVE-2015-1196 - allows remote attackers to write to arbitrary
files via a symlink attack in a patch file.

Signed-off-by: Gustavo Zacarias <gustavo@zacarias.com.ar>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>

parent 9711d8b8

package/patch/patch.hash

0 → 100644

+2 −0

Original line number	Diff line number	Diff line
		# Locally calculated after checking pgp signature
		sha256 d09022de9d629561bf4dad44625ef4b1ead15178b210412113531730cdb6f19d patch-2.7.3.tar.xz

package/patch/patch.mk

+1 −1

Original line number	Diff line number	Diff line
		@@ -4,7 +4,7 @@
		#
		################################################################################

		PATCH_VERSION = 2.7.1
		PATCH_VERSION = 2.7.3
		PATCH_SOURCE = patch-$(PATCH_VERSION).tar.xz
		PATCH_SITE = $(BR2_GNU_MIRROR)/patch
		PATCH_LICENSE = GPLv3+