cbbd2dae9e
- Fix CVE-2022-33070: Protobuf-c v1.4.0 was discovered to contain an
invalid arithmetic shift via the function parse_tag_and_wiretype in
protobuf-c/protobuf-c.c. This vulnerability allows attackers to cause
a Denial of Service (DoS) via unspecified vectors.
- Use official tarball (and so drop autoreconf)
- Update hash of COPYING (year updated with
471aaa5f6d)
https://github.com/protobuf-c/protobuf-c/releases/tag/v1.4.1
Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
Signed-off-by: Arnout Vandecappelle (Essensium/Mind) <arnout@mind.be>
23 lines
796 B
Makefile
23 lines
796 B
Makefile
################################################################################
|
|
#
|
|
# protobuf-c
|
|
#
|
|
################################################################################
|
|
|
|
PROTOBUF_C_VERSION = 1.4.1
|
|
PROTOBUF_C_SITE = https://github.com/protobuf-c/protobuf-c/releases/download/v$(PROTOBUF_C_VERSION)
|
|
PROTOBUF_C_DEPENDENCIES = host-protobuf-c
|
|
HOST_PROTOBUF_C_DEPENDENCIES = host-protobuf host-pkgconf
|
|
PROTOBUF_C_MAKE = $(MAKE1)
|
|
PROTOBUF_C_CONF_OPTS = --disable-protoc
|
|
PROTOBUF_C_INSTALL_STAGING = YES
|
|
PROTOBUF_C_LICENSE = BSD-2-Clause
|
|
PROTOBUF_C_LICENSE_FILES = LICENSE
|
|
PROTOBUF_C_CPE_ID_VENDOR = protobuf-c_project
|
|
|
|
# host-protobuf needs c++11 (since 3.6.0)
|
|
HOST_PROTOBUF_C_CONF_ENV += CXXFLAGS="$(HOST_CXXFLAGS) -std=c++11"
|
|
|
|
$(eval $(autotools-package))
|
|
$(eval $(host-autotools-package))
|