diff options
| author | Gustavo Zacarias <gustavo@zacarias.com.ar> | 2017-01-09 11:32:20 -0300 |
|---|---|---|
| committer | Peter Korsgaard <peter@korsgaard.com> | 2017-01-09 16:39:50 +0100 |
| commit | 9b347c4acd15afd1368c2d1d24ca73557cb43ceb (patch) | |
| tree | 6aac6a4a2eb5df1328333ef200f840956b72eeda /package/php-imagick/php-imagick.mk | |
| parent | 68e8c3b5a69a469b6d374b53b4542284a091c9a4 (diff) | |
| download | buildroot-9b347c4acd15afd1368c2d1d24ca73557cb43ceb.tar.gz buildroot-9b347c4acd15afd1368c2d1d24ca73557cb43ceb.zip | |
gnutls: security bump to version 3.5.8
The 3.5.x has been promoted to stable, hence 3.4.x is deprecated and
3.3.x kept as old-stable.
libdane now specifies LGPLv2.1+ so drop the README kludge (which is also
gone regarding licensing).
libunistring is a new dependency, even though gnutls ships a builtin version
we prefer to use unbundled to avoid duplication with other users and target
size growth.
Fixes:
GNUTLS-SA-2017-01 - It was found using the OSS-FUZZ fuzzer
infrastructure that decoding a specially crafted X.509 certificate with
Proxy Certificate Information extension present could lead to a double
free.
GNUTLS-SA-2017-02 - It was found using the OSS-FUZZ fuzzer
infrastructure that decoding a specially crafted OpenPGP certificate
could lead to heap and stack overflows.
Signed-off-by: Gustavo Zacarias <gustavo@zacarias.com.ar>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
Diffstat (limited to 'package/php-imagick/php-imagick.mk')
0 files changed, 0 insertions, 0 deletions
