* [Buildroot] [PATCH 1/1] package/cjson: security bump to version 1.7.12
@ 2019-05-17 13:14 Fabrice Fontaine
2019-05-18 16:25 ` Thomas Petazzoni
2019-06-06 6:49 ` Peter Korsgaard
0 siblings, 2 replies; 3+ messages in thread
From: Fabrice Fontaine @ 2019-05-17 13:14 UTC (permalink / raw)
To: buildroot
Fix infinite loop in cJSON_Minify (potential Denial of Service), see
https://github.com/DaveGamble/cJSON/issues/354
Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
---
package/cjson/cjson.hash | 2 +-
package/cjson/cjson.mk | 2 +-
2 files changed, 2 insertions(+), 2 deletions(-)
diff --git a/package/cjson/cjson.hash b/package/cjson/cjson.hash
index 32a05b3c05..d980fc85a3 100644
--- a/package/cjson/cjson.hash
+++ b/package/cjson/cjson.hash
@@ -1,3 +1,3 @@
# Locally computed:
-sha256 17ace0e31ebd639906983b05fe1d51576b948ca5411c2162f55dd34c122162ca cjson-v1.7.11.tar.gz
+sha256 760687665ab41a5cff9c40b1053c19572bcdaadef1194e5cba1b5e6f824686e7 cjson-v1.7.12.tar.gz
sha256 a36dda207c36db5818729c54e7ad4e8b0c6fba847491ba64f372c1a2037b6d5c LICENSE
diff --git a/package/cjson/cjson.mk b/package/cjson/cjson.mk
index e6ab71b92a..ae09ea95ed 100644
--- a/package/cjson/cjson.mk
+++ b/package/cjson/cjson.mk
@@ -4,7 +4,7 @@
#
################################################################################
-CJSON_VERSION = v1.7.11
+CJSON_VERSION = v1.7.12
CJSON_SITE = $(call github,DaveGamble,cjson,$(CJSON_VERSION))
CJSON_INSTALL_STAGING = YES
CJSON_LICENSE = MIT
--
2.20.1
^ permalink raw reply related [flat|nested] 3+ messages in thread
* [Buildroot] [PATCH 1/1] package/cjson: security bump to version 1.7.12
2019-05-17 13:14 [Buildroot] [PATCH 1/1] package/cjson: security bump to version 1.7.12 Fabrice Fontaine
@ 2019-05-18 16:25 ` Thomas Petazzoni
2019-06-06 6:49 ` Peter Korsgaard
1 sibling, 0 replies; 3+ messages in thread
From: Thomas Petazzoni @ 2019-05-18 16:25 UTC (permalink / raw)
To: buildroot
On Fri, 17 May 2019 15:14:36 +0200
Fabrice Fontaine <fontaine.fabrice@gmail.com> wrote:
> Fix infinite loop in cJSON_Minify (potential Denial of Service), see
> https://github.com/DaveGamble/cJSON/issues/354
>
> Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
> ---
> package/cjson/cjson.hash | 2 +-
> package/cjson/cjson.mk | 2 +-
> 2 files changed, 2 insertions(+), 2 deletions(-)
Applied to master, thanks.
Thomas
--
Thomas Petazzoni, CTO, Bootlin
Embedded Linux and Kernel engineering
https://bootlin.com
^ permalink raw reply [flat|nested] 3+ messages in thread
* [Buildroot] [PATCH 1/1] package/cjson: security bump to version 1.7.12
2019-05-17 13:14 [Buildroot] [PATCH 1/1] package/cjson: security bump to version 1.7.12 Fabrice Fontaine
2019-05-18 16:25 ` Thomas Petazzoni
@ 2019-06-06 6:49 ` Peter Korsgaard
1 sibling, 0 replies; 3+ messages in thread
From: Peter Korsgaard @ 2019-06-06 6:49 UTC (permalink / raw)
To: buildroot
>>>>> "Fabrice" == Fabrice Fontaine <fontaine.fabrice@gmail.com> writes:
> Fix infinite loop in cJSON_Minify (potential Denial of Service), see
> https://github.com/DaveGamble/cJSON/issues/354
> Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
Committed to 2019.02.x, thanks.
--
Bye, Peter Korsgaard
^ permalink raw reply [flat|nested] 3+ messages in thread
end of thread, other threads:[~2019-06-06 6:49 UTC | newest]
Thread overview: 3+ messages (download: mbox.gz follow: Atom feed
-- links below jump to the message on this page --
2019-05-17 13:14 [Buildroot] [PATCH 1/1] package/cjson: security bump to version 1.7.12 Fabrice Fontaine
2019-05-18 16:25 ` Thomas Petazzoni
2019-06-06 6:49 ` Peter Korsgaard
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox