fd3dd9d9c5
- Fix CVE-2019-5163: An exploitable denial-of-service vulnerability exists in the UDPRelay functionality of Shadowsocks-libev 3.3.2. When utilizing a Stream Cipher and a local_address, arbitrary UDP packets can cause a FATAL error code path and exit. An attacker can send arbitrary UDP packets to trigger this vulnerability. - Fix CVE-2019-5164: An exploitable code execution vulnerability exists in the ss-manager binary of Shadowsocks-libev 3.3.2. Specially crafted network packets sent to ss-manager can cause an arbitrary binary to run, resulting in code execution and privilege escalation. An attacker can send network packets to trigger this vulnerability. Also update indentation in hash file (two spaces) Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com> Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
25 lines
975 B
Makefile
25 lines
975 B
Makefile
################################################################################
|
|
#
|
|
# shadowsocks-libev
|
|
#
|
|
################################################################################
|
|
|
|
SHADOWSOCKS_LIBEV_VERSION = 3.3.4
|
|
SHADOWSOCKS_LIBEV_SITE = https://github.com/shadowsocks/shadowsocks-libev/releases/download/v$(SHADOWSOCKS_LIBEV_VERSION)
|
|
SHADOWSOCKS_LIBEV_LICENSE = GPL-3.0+, BSD-2-Clause (libbloom), BSD-3-Clause (libcork, libipset)
|
|
SHADOWSOCKS_LIBEV_LICENSE_FILES = COPYING libbloom/LICENSE libcork/COPYING
|
|
SHADOWSOCKS_LIBEV_DEPENDENCIES = host-pkgconf c-ares libev libsodium mbedtls pcre
|
|
SHADOWSOCKS_LIBEV_INSTALL_STAGING = YES
|
|
SHADOWSOCKS_LIBEV_CONF_OPTS = \
|
|
--with-pcre=$(STAGING_DIR)/usr \
|
|
--disable-ssp
|
|
|
|
ifeq ($(BR2_PACKAGE_SHADOWSOCKS_LIBEV_CONNMARKTOS),y)
|
|
SHADOWSOCKS_LIBEV_DEPENDENCIES += libnetfilter_conntrack
|
|
SHADOWSOCKS_LIBEV_CONF_OPTS += --enable-connmarktos
|
|
else
|
|
SHADOWSOCKS_LIBEV_CONF_OPTS += --disable-connmarktos
|
|
endif
|
|
|
|
$(eval $(autotools-package))
|