[Buildroot] [PATCH 1/1] package/qdecoder: security bump to version 12.1.0
Fabrice Fontaine
fontaine.fabrice at gmail.com
Wed Jun 15 21:01:07 UTC 2022
This is a maintenance release includes important security updates that
fixes possible vulnerability in URL decoding (see the report attached
below). All the qDecoder users are recommended to upgrade to this
version as soon as possible.
Fix CVE-2022-32265
Update hash of COPYING (change in year and URL removed:
https://github.com/wolkykim/qdecoder/commit/51bdcc2c158f2a12a817e8ebcb18f56e3121a808
https://github.com/wolkykim/qdecoder/commit/745878212df963a7a8081f09a747730e74faae63)
https://github.com/wolkykim/qdecoder/releases/tag/v12.1.0
Signed-off-by: Fabrice Fontaine <fontaine.fabrice at gmail.com>
---
package/qdecoder/qdecoder.hash | 4 ++--
package/qdecoder/qdecoder.mk | 2 +-
2 files changed, 3 insertions(+), 3 deletions(-)
diff --git a/package/qdecoder/qdecoder.hash b/package/qdecoder/qdecoder.hash
index e3fb837597..05337777b4 100644
--- a/package/qdecoder/qdecoder.hash
+++ b/package/qdecoder/qdecoder.hash
@@ -1,3 +1,3 @@
# Locally calculated
-sha256 3911576ad8766697a9c8c767458edc953ae686eb53cd31d21e38edd7831ed9aa qdecoder-12.0.8.tar.gz
-sha256 17e647523e5c5c75fd02861dcf3ea91a146d918ab303460ee58135c9dd70904e COPYING
+sha256 edd32bd5119d276afa9e01cd54a1c23049cad4e96dc6a8e48ac324580e085ebb qdecoder-12.1.0.tar.gz
+sha256 41f34ba1ed6e5d8d3488992311f474cd3f614b82bada88ae53216946026cfae7 COPYING
diff --git a/package/qdecoder/qdecoder.mk b/package/qdecoder/qdecoder.mk
index 8cb5d3bc97..05ee657131 100644
--- a/package/qdecoder/qdecoder.mk
+++ b/package/qdecoder/qdecoder.mk
@@ -4,7 +4,7 @@
#
################################################################################
-QDECODER_VERSION = 12.0.8
+QDECODER_VERSION = 12.1.0
QDECODER_SITE = $(call github,wolkykim,qdecoder,v$(QDECODER_VERSION))
QDECODER_LICENSE = BSD-2-Clause
QDECODER_LICENSE_FILES = COPYING
--
2.35.1
More information about the buildroot
mailing list