mirror of
https://git.busybox.net/buildroot.git
synced 2024-11-28 16:03:45 +08:00
nss: security bump to version 3.23
Fixes: CVE-2016-1950 - Fixed a heap-based buffer overflow related to the parsing of certain ASN.1 structures. An attacker could create a specially-crafted certificate which, when parsed by NSS, would cause a crash or execution of arbitrary code with the permissions of the user. Signed-off-by: Gustavo Zacarias <gustavo@zacarias.com.ar> Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com>
This commit is contained in:
parent
3025e84409
commit
ab61031a34
@ -1,2 +1,2 @@
|
|||||||
# From https://ftp.mozilla.org/pub/mozilla.org/security/nss/releases/NSS_3_22_2_RTM/src/SHA256SUMS
|
# From https://ftp.mozilla.org/pub/mozilla.org/security/nss/releases/NSS_3_23_RTM/src/SHA256SUMS
|
||||||
sha256 07d49287c527ac31200f02dcf8494cef19e936d8ed470802749c4dfc782d3650 nss-3.22.2.tar.gz
|
sha256 94b383e31c9671e9dfcca81084a8a813817e8f05a57f54533509b318d26e11cf nss-3.23.tar.gz
|
||||||
|
@ -4,7 +4,7 @@
|
|||||||
#
|
#
|
||||||
################################################################################
|
################################################################################
|
||||||
|
|
||||||
LIBNSS_VERSION = 3.22.2
|
LIBNSS_VERSION = 3.23
|
||||||
LIBNSS_SOURCE = nss-$(LIBNSS_VERSION).tar.gz
|
LIBNSS_SOURCE = nss-$(LIBNSS_VERSION).tar.gz
|
||||||
LIBNSS_SITE = https://ftp.mozilla.org/pub/mozilla.org/security/nss/releases/NSS_$(subst .,_,$(LIBNSS_VERSION))_RTM/src
|
LIBNSS_SITE = https://ftp.mozilla.org/pub/mozilla.org/security/nss/releases/NSS_$(subst .,_,$(LIBNSS_VERSION))_RTM/src
|
||||||
LIBNSS_DISTDIR = dist
|
LIBNSS_DISTDIR = dist
|
||||||
|
Loading…
Reference in New Issue
Block a user