Skip to content

Commit

Permalink
package/exfatprogs: security bump to version 1.2.2
Browse files Browse the repository at this point in the history 
Fix CVE-2023-45897: exfatprogs before 1.2.2 allows out-of-bounds memory
access, such as in read_file_dentry_set.

https://github.com/exfatprogs/exfatprogs/blob/1.2.2/NEWS

Signed-off-by: Fabrice Fontaine <[email protected]>
Signed-off-by: Yann E. MORIN <[email protected]>
(cherry picked from commit 07dad08)
Signed-off-by: Peter Korsgaard <[email protected]>
  • Loading branch information
@ffontaine @jacmet
ffontaine authored and jacmet committed Nov 30, 2023
1 parent b68a880 commit 30bfbf6
Show file tree
Hide file tree
Showing 2 changed files with 3 additions and 3 deletions.
4 changes: 2 additions & 2 deletions package/exfatprogs/exfatprogs.hash
View file
Original file line number Diff line number Diff line change
@@ -1,5 +1,5 @@
# From https://github.com/exfatprogs/exfatprogs/releases/download/1.2.0/exfatprogs-1.2.0.tar.xz.sha256
sha256 56d9a49465deafc367d428afc71c8098705a30ee19a3cdf3c5320650b8880742 exfatprogs-1.2.0.tar.xz
# From https://github.com/exfatprogs/exfatprogs/releases/download/1.2.2/exfatprogs-1.2.2.tar.xz.sha256
sha256 61d517231f8ec177eeb5955fd6edb89748d3f88ba412c48bcb32741b430e359a exfatprogs-1.2.2.tar.xz

# Hash for license file
sha256 8177f97513213526df2cf6184d8ff986c675afb514d4e68a404010521b880643 COPYING
2 changes: 1 addition & 1 deletion package/exfatprogs/exfatprogs.mk
View file
Original file line number Diff line number Diff line change
Expand Up @@ -4,7 +4,7 @@
#
################################################################################

EXFATPROGS_VERSION = 1.2.0
EXFATPROGS_VERSION = 1.2.2
EXFATPROGS_SOURCE = exfatprogs-$(EXFATPROGS_VERSION).tar.xz
EXFATPROGS_SITE = https://github.com/exfatprogs/exfatprogs/releases/download/$(EXFATPROGS_VERSION)
EXFATPROGS_LICENSE = GPL-2.0+
Expand Down

0 comments on commit 30bfbf6

Please sign in to comment.