diff options
| author | Baruch Siach <baruch@tkos.co.il> | 2018-05-29 17:37:54 +0300 |
|---|---|---|
| committer | Peter Korsgaard <peter@korsgaard.com> | 2018-05-29 16:59:47 +0200 |
| commit | 488052edffeb20f86b6d3d4bdd1f4f58511c8abf (patch) | |
| tree | 7dc96f8ac799c03475bf3688cdd6d1967e015a45 /package/glibc/glibc.hash | |
| parent | bea6b866efb52c3ff7745bbea4aba4562d6877bf (diff) | |
| download | buildroot-488052edffeb20f86b6d3d4bdd1f4f58511c8abf.tar.gz buildroot-488052edffeb20f86b6d3d4bdd1f4f58511c8abf.zip | |
glibc: security bump to latest 2.27 branch
Fixed issues are listed in the 2.27 branch NEWS file:
CVE-2017-18269: An SSE2-based memmove implementation for the i386
architecture could corrupt memory. Reported by Max Horn.
CVE-2018-11236: Very long pathname arguments to realpath function could
result in an integer overflow and buffer overflow. Reported by Alexey
Izbyshev.
CVE-2018-11237: The mempcpy implementation for the Intel Xeon Phi
architecture could write beyond the target buffer, resulting in a buffer
overflow. Reported by Andreas Schwab.
Signed-off-by: Baruch Siach <baruch@tkos.co.il>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
Diffstat (limited to 'package/glibc/glibc.hash')
| -rw-r--r-- | package/glibc/glibc.hash | 2 |
1 files changed, 1 insertions, 1 deletions
diff --git a/package/glibc/glibc.hash b/package/glibc/glibc.hash index f19fa92af4..1fab3a245c 100644 --- a/package/glibc/glibc.hash +++ b/package/glibc/glibc.hash @@ -1,5 +1,5 @@ # Locally calculated (fetched from Github) -sha256 a74489d14f4017bee6a6c6fe76f1de0dbf7d66c8695116de5aadd141c4757892 glibc-glibc-2.27.tar.gz +sha256 33189b3f10c88730a1f686fac794bc01f31765f12ffd75bc5e8a0f2a690d217a glibc-glibc-2.27-57-g6c99e37f6fb640a50a3113b2dbee5d5389843c1e.tar.gz # Locally calculated (fetched from Github) sha256 ddc63360393ab88ab6a4a0c81d33481f34c5a9ebd758eec2e6bb35385058b4cb glibc-arc-2018.03-rc2.tar.gz |
