diff options
| author | Gustavo Zacarias <gustavo@zacarias.com.ar> | 2017-02-22 16:56:53 -0300 |
|---|---|---|
| committer | Peter Korsgaard <peter@korsgaard.com> | 2017-02-23 09:55:57 +0100 |
| commit | a5015f1025a1aee173c2c2ab39ccac5ce38f30c3 (patch) | |
| tree | e773950f86dfb5b3f28e2501c79c8de5254fe4af /package/util-linux/util-linux.hash | |
| parent | ac8912579f469273b7163577ef71b5f76d7dba9b (diff) | |
| download | buildroot-a5015f1025a1aee173c2c2ab39ccac5ce38f30c3.tar.gz buildroot-a5015f1025a1aee173c2c2ab39ccac5ce38f30c3.zip | |
util-linux: security bump to version 2.29.2
From https://www.kernel.org/pub/linux/utils/util-linux/v2.29/v2.29.2-ReleaseNotes
This release fixes su(1) security issue CVE-2017-2616:
It is possible for any local user to send SIGKILL to other processes with root
privileges. To exploit this, the user must be able to perform su with a
successful login. SIGKILL can only be sent to processes which were executed
after the su process. It is not possible to send SIGKILL to processes which
were already running.
Drop upstream patches and autoreconf since it's no longer required.
[Peter: extend commit message with CVE info / description]
Signed-off-by: Gustavo Zacarias <gustavo@zacarias.com.ar>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
Diffstat (limited to 'package/util-linux/util-linux.hash')
| -rw-r--r-- | package/util-linux/util-linux.hash | 2 |
1 files changed, 1 insertions, 1 deletions
diff --git a/package/util-linux/util-linux.hash b/package/util-linux/util-linux.hash index ec6cc8eadd..71b4982f01 100644 --- a/package/util-linux/util-linux.hash +++ b/package/util-linux/util-linux.hash @@ -1,2 +1,2 @@ # From https://www.kernel.org/pub/linux/utils/util-linux/v2.29/sha256sums.asc -sha256 0ce40600b934ec2fecfa6bfc4efe6982d051ba96c2832b05201347aec582f54f util-linux-2.29.1.tar.xz +sha256 accea4d678209f97f634f40a93b7e9fcad5915d1f4749f6c47bee6bf110fe8e3 util-linux-2.29.2.tar.xz |
