* [Buildroot] [PATCH] package/xterm: security bump to version 366
@ 2021-02-11 18:09 Peter Korsgaard
2021-02-12 7:42 ` Peter Korsgaard
2021-02-14 16:53 ` Peter Korsgaard
0 siblings, 2 replies; 3+ messages in thread
From: Peter Korsgaard @ 2021-02-11 18:09 UTC (permalink / raw)
To: buildroot
Fixes the following security issue:
CVE-2021-27135: xterm through Patch #365 allows remote attackers to cause a
denial of service (segmentation fault) or possibly have unspecified other
impact via a crafted UTF-8 character sequence.
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
---
package/xterm/xterm.hash | 4 ++--
package/xterm/xterm.mk | 2 +-
2 files changed, 3 insertions(+), 3 deletions(-)
diff --git a/package/xterm/xterm.hash b/package/xterm/xterm.hash
index 8e2d2c5309..588b7fca51 100644
--- a/package/xterm/xterm.hash
+++ b/package/xterm/xterm.hash
@@ -1,4 +1,4 @@
# Locally calculated after checking pgp signature
-sha256 d81a3639e26552b6765bdcf28be1ecdb8acabf907955708e830ad6397ea10b48 xterm-363.tgz
+sha256 858b2885963fe97e712739066aadc1baeba2b33a0016303a7fec7d38bc73bf6e xterm-366.tgz
# Locally calculated
-sha256 c655a5fa3dec936543e02f863b8c1343d08522a2821cb484df6c5f62afa7354d COPYING
+sha256 dfb668cc977e24649500f3cc54de3e2b793928d210715a445ab1227930b07ba6 COPYING
diff --git a/package/xterm/xterm.mk b/package/xterm/xterm.mk
index 0984ef4dc8..f0c497e5e9 100644
--- a/package/xterm/xterm.mk
+++ b/package/xterm/xterm.mk
@@ -4,7 +4,7 @@
#
################################################################################
-XTERM_VERSION = 363
+XTERM_VERSION = 366
XTERM_SOURCE = xterm-$(XTERM_VERSION).tgz
XTERM_SITE = http://invisible-mirror.net/archives/xterm
XTERM_DEPENDENCIES = ncurses xlib_libXaw host-pkgconf
--
2.20.1
^ permalink raw reply related [flat|nested] 3+ messages in thread
* [Buildroot] [PATCH] package/xterm: security bump to version 366
2021-02-11 18:09 [Buildroot] [PATCH] package/xterm: security bump to version 366 Peter Korsgaard
@ 2021-02-12 7:42 ` Peter Korsgaard
2021-02-14 16:53 ` Peter Korsgaard
1 sibling, 0 replies; 3+ messages in thread
From: Peter Korsgaard @ 2021-02-12 7:42 UTC (permalink / raw)
To: buildroot
>>>>> "Peter" == Peter Korsgaard <peter@korsgaard.com> writes:
> Fixes the following security issue:
> CVE-2021-27135: xterm through Patch #365 allows remote attackers to cause a
> denial of service (segmentation fault) or possibly have unspecified other
> impact via a crafted UTF-8 character sequence.
> Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
Committed, thanks.
--
Bye, Peter Korsgaard
^ permalink raw reply [flat|nested] 3+ messages in thread
* [Buildroot] [PATCH] package/xterm: security bump to version 366
2021-02-11 18:09 [Buildroot] [PATCH] package/xterm: security bump to version 366 Peter Korsgaard
2021-02-12 7:42 ` Peter Korsgaard
@ 2021-02-14 16:53 ` Peter Korsgaard
1 sibling, 0 replies; 3+ messages in thread
From: Peter Korsgaard @ 2021-02-14 16:53 UTC (permalink / raw)
To: buildroot
>>>>> "Peter" == Peter Korsgaard <peter@korsgaard.com> writes:
> Fixes the following security issue:
> CVE-2021-27135: xterm through Patch #365 allows remote attackers to cause a
> denial of service (segmentation fault) or possibly have unspecified other
> impact via a crafted UTF-8 character sequence.
> Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
Committed to 2020.02.x and 2020.11.x, thanks.
--
Bye, Peter Korsgaard
^ permalink raw reply [flat|nested] 3+ messages in thread
end of thread, other threads:[~2021-02-14 16:53 UTC | newest]
Thread overview: 3+ messages (download: mbox.gz / follow: Atom feed)
-- links below jump to the message on this page --
2021-02-11 18:09 [Buildroot] [PATCH] package/xterm: security bump to version 366 Peter Korsgaard
2021-02-12 7:42 ` Peter Korsgaard
2021-02-14 16:53 ` Peter Korsgaard
This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.