package/traceroute: security bump to version 2.1.3

Fix CVE-2023-46316: In buc Traceroute 2.0.12 through 2.1.2 before 2.1.3, the wrapper scripts do not properly parse command lines. https://sourceforge.net/projects/traceroute/files/traceroute/traceroute-2.1.1 https://sourceforge.net/projects/traceroute/files/traceroute/traceroute-2.1.2 https://sourceforge.net/projects/traceroute/files/traceroute/traceroute-2.1.3 Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com> Signed-off-by: Arnout Vandecappelle <arnout@mind.be>
2023-11-04 23:53:39 +01:00 · 2023-11-04 23:53:39 +01:00 · 604573a625
commit 604573a625
parent 707c2c70bc
2 changed files with 2 additions and 2 deletions
--- a/package/traceroute/traceroute.hash
+++ b/package/traceroute/traceroute.hash
@ -1,5 +1,5 @@
 # Locally computed:
-sha256  3669d22a34d3f38ed50caba18cd525ba55c5c00d5465f2d20d7472e5d81603b6  traceroute-2.1.0.tar.gz
+sha256  05ebc7aba28a9100f9bbae54ceecbf75c82ccf46bdfce8b5d64806459a7e0412  traceroute-2.1.3.tar.gz

 # Hash for license files:
 sha256  8177f97513213526df2cf6184d8ff986c675afb514d4e68a404010521b880643  COPYING
--- a/package/traceroute/traceroute.mk
+++ b/package/traceroute/traceroute.mk
@ -4,7 +4,7 @@
 #
 ################################################################################

-TRACEROUTE_VERSION = 2.1.0
+TRACEROUTE_VERSION = 2.1.3
 TRACEROUTE_SITE = http://downloads.sourceforge.net/traceroute/traceroute/traceroute-$(TRACEROUTE_VERSION)

 TRACEROUTE_LICENSE = GPL-2.0+, LGPL-2.1+