From 78cb8c81fa81f2a4dd63bcc2621ac5436edf26f6 Mon Sep 17 00:00:00 2001
From: Gustavo Zacarias <gustavo@zacarias.com.ar>
Date: Fri, 23 Jan 2015 07:47:56 -0300
Subject: patch: security bump to version 2.7.3

Fixes CVE-2015-1196 - allows remote attackers to write to arbitrary
files via a symlink attack in a patch file.

Signed-off-by: Gustavo Zacarias <gustavo@zacarias.com.ar>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
---
 package/patch/patch.hash | 2 ++
 1 file changed, 2 insertions(+)
 create mode 100644 package/patch/patch.hash

(limited to 'package/patch/patch.hash')

diff --git a/package/patch/patch.hash b/package/patch/patch.hash
new file mode 100644
index 0000000000..7f1b024ddd
--- /dev/null
+++ b/package/patch/patch.hash
@@ -0,0 +1,2 @@
+# Locally calculated after checking pgp signature
+sha256	d09022de9d629561bf4dad44625ef4b1ead15178b210412113531730cdb6f19d	patch-2.7.3.tar.xz
-- 
cgit v1.2.3