ExternalVendorCode/openwrt
1
0
Fork 0
mirror of https://github.com/openwrt/openwrt.git synced 2025-01-30 08:04:10 +00:00
Code Issues Actions 3 Packages Projects Releases Wiki Activity
openwrt/tools
History
Petr Štetiar 3965dda0fa zlib: backport security fix for a reproducible crash in compressor 
Tavis has just reported, that he was recently trying to track down a
reproducible crash in a compressor. Believe it or not, it really was a
bug in zlib-1.2.11 when compressing (not decompressing!) certain inputs.

Tavis has reported it upstream, but it turns out the issue has been
public since 2018, but the patch never made it into a release. As far as
he knows, nobody ever assigned it a CVE.

Suggested-by: Tavis Ormandy <taviso@gmail.com>
References: https://www.openwall.com/lists/oss-security/2022/03/24/1
Signed-off-by: Petr Štetiar <ynezz@true.cz>
(cherry picked from commit b3aa2909a79aeff20d594160b207a89dc807c033)
2022-03-24 08:18:21 +01:00
..
autoconf
treewide: clean up download hashes
2016-12-16 22:39:22 +01:00
autoconf-archive
tools/autoconf-archive: update to 2021.02.19
2021-09-20 15:21:17 +02:00
automake
tools/automake: Revert "Do not use $(V) - force AM_V=1"
2019-11-06 00:21:15 +01:00
b43-tools
tools/b43-tools/b43-fwsquash: convert to Python 3 with 2-to-3
2019-07-26 08:09:16 +02:00
bash
tools: build bash on macOS and use it for ipkg-build
2022-01-27 13:38:48 +01:00
bc
tools: use https for bc mirrors
2022-02-24 15:36:28 +01:00
bison
tools/bison: update to 3.8.2
2021-10-05 20:59:41 +02:00
cbootimage
treewide: update email address of Tomasz Maciej Nowak
2020-11-24 15:39:07 +01:00
cbootimage-configs
treewide: update email address of Tomasz Maciej Nowak
2020-11-24 15:39:07 +01:00
ccache
tools/ccache: update to 4.6
2022-03-13 19:24:13 +01:00
cmake
tools/cmake: update to 3.22.3
2022-03-13 19:24:13 +01:00
coreutils
tools/coreutils: build chown
2022-01-27 13:38:48 +01:00
cpio
tools/cpio: fix compilation with clang
2021-11-20 21:08:25 +01:00
dosfstools
tools/dosfstools: update to 4.2
2021-09-05 21:28:20 +02:00
e2fsprogs
tools/e2fsprogs: update to 1.46.4
2021-09-20 15:21:17 +02:00
elftosb
treewide: clean up download hashes
2016-12-16 22:39:22 +01:00
expat
tools/expat: enable DTD
2022-03-13 10:10:30 +01:00
fakeroot
tools/fakeroot: update to 1.28
2022-03-13 19:24:13 +01:00
findutils
tools/findutils: update to 4.9.0
2022-03-01 00:08:08 +01:00
firmware-utils
firmware-utils: bump to git HEAD
2022-02-28 13:12:00 +02:00
flex
flex: Add a lex symlink
2018-11-25 19:23:03 +01:00
flock
tools/flock: add PKG_{VERSION,RELEASE}
2020-07-23 11:30:22 +02:00
genext2fs
treewide: clean up download hashes
2016-12-16 22:39:22 +01:00
gengetopt
tools/gengetopt: Update to 2.23
2019-07-08 16:42:26 +02:00
gmp
tools/gmp: update to 6.2.1
2020-11-21 18:49:17 +01:00
include
build: fix kernel 5.4 on macos
2020-03-14 13:20:06 +00:00
isl
tools/isl: update the download URL
2021-10-21 20:37:20 +01:00
kernel2minor
tools: kernel2minor: update to latest version
2018-07-12 18:15:33 +02:00
libressl
tools/libressl: update to version 3.4.2
2022-03-01 00:08:08 +01:00
libtool
libtool: Revert "libtool: bump to 2.4.6"
2021-09-23 13:39:11 +02:00
llvm-bpf
tools/llvm-bpf: move tarball packing to target/llvm-bpf
2021-11-22 12:00:40 +01:00
lzma
treewide: unify OpenWrt hosted source via @OPENWRT
2021-02-05 12:00:24 -10:00
lzma-old
treewide: unify OpenWrt hosted source via @OPENWRT
2021-02-05 12:00:24 -10:00
m4
tools/m4: update to 1.4.19
2021-09-20 15:21:17 +02:00
make-ext4fs
make_ext4fs: Update to version 2020-01-05
2020-01-05 20:04:37 +01:00
meson
tools/meson: update to 0.61.2
2022-02-26 13:44:14 +01:00
missing-macros
treewide: remove empty default cases
2020-09-17 12:46:19 +02:00
mkimage
tools/mkimage: update to 2022.01
2022-03-01 00:08:08 +01:00
mklibs
tools/mklibs: update to 0.1.45
2022-03-01 00:08:08 +01:00
mpc
tools/mpc: update to 1.2.1
2020-11-21 18:49:27 +01:00
mpfr
tools/mpfr: update to 4.1.0
2020-08-23 19:40:32 +02:00
mtd-utils
tools: mtd-utils: Update to version 2.1.2
2020-08-26 23:29:35 +02:00
mtools
tools/mtools: update to 4.0.38
2022-03-13 19:24:13 +01:00
ninja
tools: build ninja before ccache to fix the build order
2021-06-12 14:33:57 +02:00
padjffs2
tools: drop PKG_VERSION for purely local packages
2020-07-23 10:54:33 +02:00
patch
tools/patch: apply upstream patch for cve-2019-13638
2019-08-13 10:00:10 +02:00
patch-image
rb532: drop target
2020-09-02 16:29:22 +02:00
patchelf
tools/patchelf: bump to use latest master
2021-02-15 07:12:51 +01:00
pkgconf
tools/pkgconf: add PKG_CONFIG_EXTRAARGS for additional arguments
2021-10-24 18:00:49 +02:00
quilt
tools/quilt: update to 0.67
2022-02-25 14:12:39 +01:00
sdimage
tools/sdimage: Fix build with host Linux headers < 3.18
2018-12-16 14:03:35 +01:00
sed
tools/sed: Update to 4.8
2020-02-18 21:39:14 +01:00
sparse
tools/sparse: update to 0.6.4
2021-09-20 15:21:17 +02:00
squashfs
squashfs: Fix compile with GCC 10
2020-05-24 14:38:40 +02:00
squashfskit4
tools/squashfskit4: fix compilation under big endian
2021-06-20 18:59:36 -10:00
sstrip
tools/sstrip: update to 3.2
2021-09-20 15:21:17 +02:00
tar
tools/tar: update to 1.34
2021-09-05 21:26:48 +02:00
xxd
tools/xxd: fix source URL
2021-03-01 16:39:17 +00:00
xz
tools/xz: Update to 5.2.5
2020-04-09 22:09:13 +02:00
zip
tools: zip: make encrypted archives reproducible
2022-03-09 15:38:23 +09:00
zlib
zlib: backport security fix for a reproducible crash in compressor
2022-03-24 08:18:21 +01:00
zstd
tools/zstd: update to 1.5.2
2022-03-01 00:08:08 +01:00
Makefile
tools/mkimage: update to 2022.01
2022-03-01 00:08:08 +01:00