[Buildroot] [PATCH 1/1] package/json-c: security bump to version 0.15
Thomas Petazzoni
thomas.petazzoni at bootlin.com
Thu Aug 27 21:10:29 UTC 2020
On Thu, 27 Aug 2020 19:26:44 +0200
Fabrice Fontaine <fontaine.fabrice at gmail.com> wrote:
> Fix CVE-2020-12762: json-c through 0.14 has an integer overflow and
> out-of-bounds write via a large JSON file, as demonstrated by
> printbuf_memappend.
>
> Also update indentation in hash file (two spaces)
>
> Signed-off-by: Fabrice Fontaine <fontaine.fabrice at gmail.com>
> ---
> package/json-c/json-c.hash | 4 ++--
> package/json-c/json-c.mk | 2 +-
> 2 files changed, 3 insertions(+), 3 deletions(-)
Applied to master, thanks.
Thomas
--
Thomas Petazzoni, CTO, Bootlin
Embedded Linux and Kernel engineering
https://bootlin.com
More information about the buildroot
mailing list