aboutsummaryrefslogtreecommitdiffstats
path: root/tools/patch/Makefile
Commit message (Collapse)AuthorAgeFilesLines
* tools/patch: apply upstream patch for cve-2019-13638Russell Senior2019-08-141-1/+1
| | | | | | | | | | | | | GNU patch through 2.7.6 is vulnerable to OS shell command injection that can be exploited by opening a crafted patch file that contains an ed style diff payload with shell metacharacters. The ed editor does not need to be present on the vulnerable system. This is different from CVE-2018-1000156. https://nvd.nist.gov/vuln/detail/CVE-2019-13638 Signed-off-by: Russell Senior <russell@personaltelco.net> (cherry picked from commit bcfd1d76852974170780dbe368e6194dbb0e123e)
* tools/patch: apply upstream patch for CVE-2019-13636Russell Senior2019-08-141-1/+1
| | | | | | | | | | In GNU patch through 2.7.6, the following of symlinks is mishandled in certain cases other than input files. This affects inp.c and util.c. https://nvd.nist.gov/vuln/detail/CVE-2019-13636 Signed-off-by: Russell Senior <russell@personaltelco.net> (cherry picked from commit 995bcc532943639f3df36dbcaa361f9167f9f4d5)
* tools/patch: Add fedora patch for crashing git style patchesRosen Penev2018-12-181-1/+1
| | | | | | | | | https://lists.gnu.org/archive/html/bug-patch/2018-10/msg00000.html I assume a CVE number will be assigned soon. Signed-off-by: Rosen Penev <rosenp@gmail.com> (backported from 32fc41baabc9e83a045a7a805b0d91a030cfbd3c)
* tools: patch: Add missing CVE-2018-6951 fixRosen Penev2018-12-181-1/+1
| | | | | | | | | | | uscan reports a new CVE now that PKG_CPE_ID was added. Reordered patches by date. Signed-off-by: Rosen Penev <rosenp@gmail.com> [re-title commit & refresh patches] Signed-off-by: Kevin Darbyshire-Bryant <ldir@darbyshire-bryant.me.uk> (backported from a6bd9d0cb652686453604b762e80a35d023908c4)
* patch: apply upstream cve fixesRussell Senior2018-12-181-0/+2
| | | | | | | | | | | | | | | | Apply two upstream patches to address two CVEs: * CVE-2018-1000156 * CVE-2018-6952 Add PKG_CPE_ID to Makefile. Build tested on apm821xx and ar71xx. Signed-off-by: Russell Senior <russell@personaltelco.net> (backported from 4797dddfde6a8ffdbdcb4e5b5e137b0a00313f62) (rebased patches) Signed-off-by: Jo-Philipp Wich <jo@mein.io>
* tools: update patch to v2.7.6Russell Senior2018-02-121-2/+2
| | | | | | | Removes a redundant patch with a fix already upstream. Build tested on apm821xx (PPC). Signed-off-by: Russell Senior <russell@personaltelco.net>
* treewide: clean up download hashesFelix Fietkau2016-12-161-1/+1
| | | | | | Replace *MD5SUM with *HASH, replace MD5 hashes with SHA256 Signed-off-by: Felix Fietkau <nbd@nbd.name>
* tools/patch: enable parallel buildFelix Fietkau2015-09-261-0/+2
| | | | | | Signed-off-by: Felix Fietkau <nbd@openwrt.org> SVN-Revision: 47049
* tools: drop circular dependency between patch and ccache, build patch ↵Felix Fietkau2015-07-201-0/+3
| | | | | | | | without ccache (fixes #20132) Signed-off-by: Felix Fietkau <nbd@openwrt.org> SVN-Revision: 46434
* patch: bump GNU patch to 2.7.5Felix Fietkau2015-03-151-3/+3
| | | | | | | | | Bump GNU patch in tools from 2.7.1 to 2.7.5. Change download URL to use @GNU alias. Signed-off-by: Hannu Nyman <hannu.nyman@iki.fi> SVN-Revision: 44760
* build: BSD compile fixesFelix Fietkau2013-03-071-0/+18
following patch allows to build images for Qemu ARM on OpenBSD 5.2 amd64 and FreeBSD 9.1 amd64. Mostly small pieces of code changes to get things right on the specific platform. Updated the README to describe better, which tools on the host are required. Added some kind of prepare scripts to install needed tools on BSD via packages. Signed-off-by: Waldemar Brodkorb <mail@waldemar-brodkorb.de> SVN-Revision: 35900
generated by cgit v1.2.3 (git 2.25.1) at 2024-11-08 08:52:28 +0000