kumquat-buildroot/package/mongoose/mongoose.mk
Pierre-Jean Texier aeee0b9bd7 package/mongoose: security bump to version 6.16
Fixes the following security vulnerability:

CVE-2019-13503: mq_parse_http in mongoose.c in Mongoose 6.15
has a heap-based buffer over-read.

See https://github.com/cesanta/mongoose/releases/tag/6.16

Signed-off-by: Pierre-Jean Texier <pjtexier@koncepto.io>
Signed-off-by: Arnout Vandecappelle (Essensium/Mind) <arnout@mind.be>
2019-10-13 22:43:41 +02:00

35 lines
986 B
Makefile

################################################################################
#
# mongoose
#
################################################################################
MONGOOSE_VERSION = 6.16
MONGOOSE_SITE = $(call github,cesanta,mongoose,$(MONGOOSE_VERSION))
MONGOOSE_LICENSE = GPL-2.0
MONGOOSE_LICENSE_FILES = LICENSE
MONGOOSE_INSTALL_STAGING = YES
# static library
MONGOOSE_INSTALL_TARGET = NO
MONGOOSE_CFLAGS = $(TARGET_CFLAGS)
ifeq ($(BR2_PACKAGE_OPENSSL),y)
MONGOOSE_DEPENDENCIES += openssl
MONGOOSE_CFLAGS += -DMG_ENABLE_SSL
endif
define MONGOOSE_BUILD_CMDS
$(TARGET_MAKE_ENV) $(TARGET_CC) -c $(@D)/mongoose.c $(MONGOOSE_CFLAGS) -o $(@D)/mongoose.o
$(TARGET_MAKE_ENV) $(TARGET_AR) rcs $(@D)/libmongoose.a $(@D)/mongoose.o
endef
define MONGOOSE_INSTALL_STAGING_CMDS
$(INSTALL) -D -m 644 $(@D)/libmongoose.a \
$(STAGING_DIR)/usr/lib/libmongoose.a
$(INSTALL) -D -m 644 $(@D)/mongoose.h \
$(STAGING_DIR)/usr/include/mongoose.h
endef
$(eval $(generic-package))