patch: security bump to version 2.7.6

Fixes CVE-2016-10713: Out-of-bounds access within pch_write_line() in pch.c can possibly lead to DoS via a crafted input file. Add upstream patch fixing CVE-2018-6951: There is a segmentation fault, associated with a NULL pointer dereference, leading to a denial of service in the intuit_diff_type function in pch.c, aka a "mangled rename" issue. This bump does NOT fix CVE-2018-6952. See upstream bug #53133 (https://savannah.gnu.org/bugs/index.php?53133). Add license file hash. Signed-off-by: Baruch Siach <baruch@tkos.co.il> Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
author: Baruch Siach <baruch@tkos.co.il> 2018-02-23 07:22:31 +0200
committer: Peter Korsgaard <peter@korsgaard.com> 2018-02-23 09:08:48 +0100
commit: 38d8d86d31147ef83d1d79f67b7ae90e4cefaaea (patch)
tree: bca5f954f0f060baeed602a601b1357db33e2d05 /package/patch/patch.mk
parent: 3b7a59304a9c377b9aec1303d85a60d019b4b9b2 (diff)
download: buildroot-38d8d86d31147ef83d1d79f67b7ae90e4cefaaea.tar.gz
buildroot-38d8d86d31147ef83d1d79f67b7ae90e4cefaaea.zip
1 files changed, 1 insertions, 1 deletions
diff --git a/package/patch/patch.mk b/package/patch/patch.mk
index 4c76a3123b..33f0039d60 100644
--- a/package/patch/patch.mk
+++ b/package/patch/patch.mk
@@ -4,7 +4,7 @@
 #
 ################################################################################
 
-PATCH_VERSION = 2.7.5
+PATCH_VERSION = 2.7.6
 PATCH_SOURCE = patch-$(PATCH_VERSION).tar.xz
 PATCH_SITE = $(BR2_GNU_MIRROR)/patch
 PATCH_LICENSE = GPL-3.0+
author	Baruch Siach <baruch@tkos.co.il>	2018-02-23 07:22:31 +0200
committer	Peter Korsgaard <peter@korsgaard.com>	2018-02-23 09:08:48 +0100
commit	38d8d86d31147ef83d1d79f67b7ae90e4cefaaea (patch)
tree	bca5f954f0f060baeed602a601b1357db33e2d05 /package/patch/patch.mk
parent	3b7a59304a9c377b9aec1303d85a60d019b4b9b2 (diff)
download	buildroot-38d8d86d31147ef83d1d79f67b7ae90e4cefaaea.tar.gz buildroot-38d8d86d31147ef83d1d79f67b7ae90e4cefaaea.zip