NetCube-Systems-Austria/kumquat-buildroot
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

package/libcue: security bump to version 2.3.0

Browse Source 
Fixes the following security issue:

CVE-2023-43641: Out-of-bounds array access in track_set_index
https://github.com/lipnitsk/libcue/security/advisories/GHSA-5982-x7hv-r9cj

For more details, see the github writeup:
https://github.blog/2023-10-09-coordinated-disclosure-1-click-rce-on-gnome-cve-2023-43641/

Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
This commit is contained in:
Peter Korsgaard 2023-10-11 10:39:51 +02:00
parent 9104583124
commit 3aee3a326d
2 changed files with 2 additions and 2 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

2
package/libcue/libcue.hash
View File

@ -1,3 +1,3 @@
# Locally computed:
sha256 f27bc3ebb2e892cd9d32a7bee6d84576a60f955f29f748b9b487b173712f1200 libcue-2.2.1.tar.gz
sha256 cc1b3a65c60bd88b77a1ddd1574042d83cf7cc32b85fe9481c99613359eb7cfe libcue-2.3.0.tar.gz
sha256 c388d36583fa54e13b6d73ad924d0b68d073ed8a5771e17cb49104705df4504f LICENSE

2
package/libcue/libcue.mk
View File

@ -4,7 +4,7 @@
#
################################################################################
LIBCUE_VERSION = 2.2.1
LIBCUE_VERSION = 2.3.0
LIBCUE_SITE = $(call github,lipnitsk,libcue,v$(LIBCUE_VERSION))
LIBCUE_LICENSE = GPL-2.0, BSD-2-Clause (rem.c)
LIBCUE_LICENSE_FILES = LICENSE