powerpc-utils: security bump to 1.2.24 - buildroot

diff options

author	Baruch Siach <baruch@tkos.co.il>	2015-03-20 07:55:47 +0200
committer	Thomas Petazzoni <thomas.petazzoni@free-electrons.com>	2015-03-20 14:04:14 +0100
commit	0a12a5a1b94465fd0aef6185e81715880be26ab0 (patch)
tree	d2e37b861df5df936edef040054d47a221cf68ed /package/gcc
parent	6259a985a28a74f4c36dfebbca5fad8c3595e56d (diff)
download	buildroot-0a12a5a1b94465fd0aef6185e81715880be26ab0.tar.gz buildroot-0a12a5a1b94465fd0aef6185e81715880be26ab0.zip

powerpc-utils: security bump to 1.2.24

Fixes CVE-2014-4040: A local attacker could obtain sensitive information from the generated archive such as plain text passwords. Yes, version 1.2.24 seems to be newer than 1.4, which is equivalent to 1.2.20. Also, switch from git clone to tarball download , and add a .hash file. The configure script seems to misdetect stack smashing protection support in the toolchain. gcc accepts -fstack_protector_all, but the linker complains: "ld: cannot find -lssp". Cc: Jeremy Kerr <jk@ozlabs.org> Signed-off-by: Baruch Siach <baruch@tkos.co.il> Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com>

Diffstat (limited to 'package/gcc')

0 files changed, 0 insertions, 0 deletions


context:
space:
mode: