buildroot/package/enlightenment
Daniel Lang 83ffe153fa package/enlightenment: security bump to version 0.25.4
This is a bugfix release which fixes a CVE.

See:
https://www.enlightenment.org/news/2022-09-15-enlightenment-0.25.4

CVE-2022-37706 "enlightenment_sys in Enlightenment before 0.25.4 allows
local users to gain privileges because it is setuid root, and the system
library function mishandles pathnames that begin with a /dev/..
substring."

Hashes were never part of the online news page, therefore mark them as
locally computed.

Signed-off-by: Daniel Lang <dalang@gmx.at>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
2023-10-01 20:54:57 +02:00
..
Config.in
enlightenment.hash package/enlightenment: security bump to version 0.25.4 2023-10-01 20:54:57 +02:00
enlightenment.mk package/enlightenment: security bump to version 0.25.4 2023-10-01 20:54:57 +02:00