summaryrefslogtreecommitdiffstats
path: root/package/bash/bash44-007.patch
Commit message (Collapse)AuthorAgeFilesLines
* bash: bump to 4.4.12Adam Duskett2017-11-221-155/+0
| | | | | | | | | | In addition, remove upstreamed patches and add a hash for the license file. Signed-off-by: Adam Duskett <aduskett@gmail.com> [Thomas: indicate pgp signature file address in hash file, as suggested by Baruch.] Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com>
* bash: add upstream security fixes to patch level 12Peter Korsgaard2017-02-081-0/+155
Fixes CVE-2017-5932 - Shell code execution on tab completion of specially crafted files. For details, see the report: https://github.com/jheyens/bash_completion_vuln/raw/master/2017-01-17.bash_completion_report.pdf We unfortunately cannot easily download these because of the file names (not ending in patch) and patch format (p0), so convert to p1 format and include in package/bash with the following script: for i in 06 07 08 09 10 11 12; do cat > bash44-0$i.patch << EOF >From https://ftp.gnu.org/gnu/bash/bash-4.4-patches/bash44-0$i Signed-off-by: Peter Korsgaard <peter@korsgaard.com> EOF curl https://ftp.gnu.org/gnu/bash/bash-4.4-patches/bash44-0$i | \ sed -e 's|^\*\*\* \.\./|*** |' -e 's|^--- |--- b/|' >> bash44-0$i.patch done Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
OpenPOWER on IntegriCloud