[Buildroot] [git commit] package/libgit2: bump version to 1.4.3
Arnout Vandecappelle (Essensium/Mind)
arnout at mind.be
Wed Apr 27 19:27:09 UTC 2022
commit: https://git.buildroot.net/buildroot/commit/?id=01ee7f84fb9da338d36fbaad3cf8a07391a843d3
branch: https://git.buildroot.net/buildroot/commit/?id=refs/heads/master
git added restrictions on config files to fix CVE 2022-24765. libgit2
adopted these changes for compatibility reasons, even if the vuln is
not exploitable in libgit2.
https://github.com/libgit2/libgit2/releases/tag/v1.4.3
Signed-off-by: Nicolas Cavallari <nicolas.cavallari at green-communications.fr>
Signed-off-by: Arnout Vandecappelle (Essensium/Mind) <arnout at mind.be>
---
package/libgit2/libgit2.hash | 2 +-
package/libgit2/libgit2.mk | 2 +-
2 files changed, 2 insertions(+), 2 deletions(-)
diff --git a/package/libgit2/libgit2.hash b/package/libgit2/libgit2.hash
index ada411ea22..3b5837f789 100644
--- a/package/libgit2/libgit2.hash
+++ b/package/libgit2/libgit2.hash
@@ -1,3 +1,3 @@
# Locally calculated
-sha256 901c2b4492976b86477569502a41c31b274b69adc177149c02099ea88404ef19 libgit2-1.4.2.tar.gz
+sha256 f48b961e463a9e4e7e7e58b21a0fb5a9b2a1d24d9ba4d15870a0c9b8ad965163 libgit2-1.4.3.tar.gz
sha256 0092f24acc306ee3287dc05b5e85cb9e0e48cd3f11c60c4625b1a673a5912616 COPYING
diff --git a/package/libgit2/libgit2.mk b/package/libgit2/libgit2.mk
index e94dd9c370..3f1e6e1593 100644
--- a/package/libgit2/libgit2.mk
+++ b/package/libgit2/libgit2.mk
@@ -4,7 +4,7 @@
#
################################################################################
-LIBGIT2_VERSION = 1.4.2
+LIBGIT2_VERSION = 1.4.3
LIBGIT2_SITE = $(call github,libgit2,libgit2,v$(LIBGIT2_VERSION))
LIBGIT2_LICENSE = GPL-2.0 with linking exception, MIT (sha1), wildmatch license (wildmatch), CC0-1.0 (xoroshiro256)
LIBGIT2_LICENSE_FILES = COPYING
More information about the buildroot
mailing list