diff mbox series

libsoup: upgrade to 2.58.2

Message ID 20170831165020.30129-1-ross.burton@intel.com
State Accepted
Commit 56d25765641acaadc21391bd7b00187cf0f4ffe0
Headers show
Series libsoup: upgrade to 2.58.2 | expand

Commit Message

Ross Burton Aug. 31, 2017, 4:50 p.m. UTC 
This fixes CVE-2017-2885 (stack overflow with HTTP chunked encoding), no other
relevant changes.

Signed-off-by: Ross Burton <ross.burton@intel.com>

---
 .../libsoup/{libsoup-2.4_2.58.1.bb => libsoup-2.4_2.58.2.bb}          | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)
 rename meta/recipes-support/libsoup/{libsoup-2.4_2.58.1.bb => libsoup-2.4_2.58.2.bb} (89%)

-- 
2.11.0

-- 
_______________________________________________
Openembedded-core mailing list
Openembedded-core@lists.openembedded.org
http://lists.openembedded.org/mailman/listinfo/openembedded-core
diff mbox series

Patch

diff --git a/meta/recipes-support/libsoup/libsoup-2.4_2.58.1.bb b/meta/recipes-support/libsoup/libsoup-2.4_2.58.2.bb
similarity index 89%
rename from meta/recipes-support/libsoup/libsoup-2.4_2.58.1.bb
rename to meta/recipes-support/libsoup/libsoup-2.4_2.58.2.bb
index 5b1273efec2..c9f95e538a2 100644
--- a/meta/recipes-support/libsoup/libsoup-2.4_2.58.1.bb
+++ b/meta/recipes-support/libsoup/libsoup-2.4_2.58.2.bb
@@ -11,8 +11,8 @@  SHRT_VER = "${@d.getVar('PV').split('.')[0]}.${@d.getVar('PV').split('.')[1]}"
 
 SRC_URI = "${GNOME_MIRROR}/libsoup/${SHRT_VER}/libsoup-${PV}.tar.xz"
 
-SRC_URI[md5sum] = "91d7a6bf8785d31f4b154a7612e53e62"
-SRC_URI[sha256sum] = "62c669f557de745b7b20ba9d5b74d839c95e4c9cea1a5ab7f3da5531a1aeefb9"
+SRC_URI[md5sum] = "eb33adb459c2283efc5c7d09ccdbbcfc"
+SRC_URI[sha256sum] = "442300ca1b1bf8a3bbf2f788203287ff862542d4fc048f19a92a068a27d17b72"
 
 S = "${WORKDIR}/libsoup-${PV}"