From: Arnout Vandecappelle <arnout@mind.be>
To: buildroot@busybox.net
Subject: [Buildroot] [PATCH] package/irssi: security bump to version 1.0.8
Date: Wed, 3 Jul 2019 23:30:39 +0200 [thread overview]
Message-ID: <a238bece-e45f-e371-fb29-966cc774f31a@mind.be> (raw)
In-Reply-To: <20190703155213.15636-1-peter@korsgaard.com>
On 03/07/2019 17:52, Peter Korsgaard wrote:
> Fixes the following security vulnerability:
>
> CVE-2019-13045: Use after free when sending SASL login to the server found
> by ilbelkyr
>
> For more details, see the advisory:
> https://irssi.org/security/html/irssi_sa_2019_06/
>
> Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
Applied to master, thanks.
Regards,
Arnout
> ---
> package/irssi/irssi.hash | 2 +-
> package/irssi/irssi.mk | 2 +-
> 2 files changed, 2 insertions(+), 2 deletions(-)
>
> diff --git a/package/irssi/irssi.hash b/package/irssi/irssi.hash
> index 0f298137ba..6a91e16487 100644
> --- a/package/irssi/irssi.hash
> +++ b/package/irssi/irssi.hash
> @@ -1,4 +1,4 @@
> # Locally calculated after checking pgp signature
> -sha256 1b386ca026aa1875c380fd00ef1d24b71fb87cdae39ef5349ecca16c4567feac irssi-1.0.7.tar.xz
> +sha256 414fdee2ffaeb90a55f141b7fb3899608631dc891e2bc1f5e91ca31f1a621101 irssi-1.0.8.tar.xz
> # Locally calculated
> sha256 a1a27cb2ecee8d5378fbb3562f577104a445d6d66fee89286e16758305e63e2b COPYING
> diff --git a/package/irssi/irssi.mk b/package/irssi/irssi.mk
> index 611365f88e..4d7268d291 100644
> --- a/package/irssi/irssi.mk
> +++ b/package/irssi/irssi.mk
> @@ -4,7 +4,7 @@
> #
> ################################################################################
>
> -IRSSI_VERSION = 1.0.7
> +IRSSI_VERSION = 1.0.8
> IRSSI_SOURCE = irssi-$(IRSSI_VERSION).tar.xz
> # Do not use the github helper here. The generated tarball is *NOT* the
> # same as the one uploaded by upstream for the release.
>
next prev parent reply other threads:[~2019-07-03 21:30 UTC|newest]
Thread overview: 3+ messages / expand[flat|nested] mbox.gz Atom feed top
2019-07-03 15:52 [Buildroot] [PATCH] package/irssi: security bump to version 1.0.8 Peter Korsgaard
2019-07-03 21:30 ` Arnout Vandecappelle [this message]
2019-07-07 6:40 ` Peter Korsgaard
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=a238bece-e45f-e371-fb29-966cc774f31a@mind.be \
--to=arnout@mind.be \
--cc=buildroot@busybox.net \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.