[Buildroot] [PATCH 1/1] package/atftp: security bump to version 0.7.5
Peter Korsgaard
peter at korsgaard.com
Wed Oct 6 15:28:23 UTC 2021
>>>>> "Fabrice" == Fabrice Fontaine <fontaine.fabrice at gmail.com> writes:
> - Fix CVE-2021-41054: tftpd_file.c in atftp through 0.7.4 has a buffer
> overflow because buffer-size handling does not properly consider the
> combination of data, OACK, and other options.
> - Update hash of license file (license replaced with current version:
> https://sourceforge.net/p/atftp/code/ci/bf22ccaef34f5dcdbd48de8b0bea3ef97b9d3545)
> https://sourceforge.net/p/atftp/code/ci/v0.7.5/tree/Changelog
> Signed-off-by: Fabrice Fontaine <fontaine.fabrice at gmail.com>
Committed to 2021.02.x, 2021.05.x and 2021.08.x, thanks.
--
Bye, Peter Korsgaard
More information about the buildroot
mailing list