aboutsummaryrefslogtreecommitdiffstats
path: root/tools/patch/Makefile
diff options
context:
space:
mode:
authorRussell Senior <russell@personaltelco.net>2019-07-29 12:09:09 -0700
committerPetr Štetiar <ynezz@true.cz>2019-08-14 09:12:23 +0200
commitc99ceb7030ed92926d6e3561b176cb9940daa3cb (patch)
tree1b1368b291e09a3037119fca868f962535cfab2a /tools/patch/Makefile
parent89808e211cd5ef5989bd0becb8cd45f9340610ff (diff)
downloadupstream-c99ceb7030ed92926d6e3561b176cb9940daa3cb.tar.gz
upstream-c99ceb7030ed92926d6e3561b176cb9940daa3cb.tar.bz2
upstream-c99ceb7030ed92926d6e3561b176cb9940daa3cb.zip
tools/patch: apply upstream patch for CVE-2019-13636
In GNU patch through 2.7.6, the following of symlinks is mishandled in certain cases other than input files. This affects inp.c and util.c. https://nvd.nist.gov/vuln/detail/CVE-2019-13636 Signed-off-by: Russell Senior <russell@personaltelco.net> (cherry picked from commit 995bcc532943639f3df36dbcaa361f9167f9f4d5)
Diffstat (limited to 'tools/patch/Makefile')
-rw-r--r--tools/patch/Makefile2
1 files changed, 1 insertions, 1 deletions
diff --git a/tools/patch/Makefile b/tools/patch/Makefile
index cab9fee9f6..3bcf668b04 100644
--- a/tools/patch/Makefile
+++ b/tools/patch/Makefile
@@ -8,7 +8,7 @@ include $(TOPDIR)/rules.mk
PKG_NAME:=patch
PKG_VERSION:=2.7.6
-PKG_RELEASE:=4
+PKG_RELEASE:=5
PKG_CPE_ID:=cpe:/a:gnu:patch
PKG_SOURCE:=$(PKG_NAME)-$(PKG_VERSION).tar.xz