Home Explore Help
Register Sign In
PUBLIC_REPOS
/
buildroot
mirror of git://git.buildroot.net/buildroot
2
1
Fork 0
Files
Browse Source

package/c-ares: security bump to version 1.34.5

Fixes the following security issue:

- CVE-2025-31498: Use after free in read_answers()
  https://github.com/c-ares/c-ares/security/advisories/GHSA-6hxc-62jh-p29v

For more details, see the announcement:
https://github.com/c-ares/c-ares/releases/tag/v1.34.5

Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
Signed-off-by: Julien Olivain <ju.o@free.fr>
(cherry picked from commit f85aea1b96ff865ad2981566cfa64f5140f30753)
Signed-off-by: Thomas Perale <thomas.perale@mind.be>
Peter Korsgaard 3 months ago
parent
fa0ee12fcc
commit
9654e8d6e3
2 changed files with 3 additions and 3 deletions
Split View Show Diff Stats
  1. 1 1
      package/c-ares/c-ares.hash
  2. 2 2
      package/c-ares/c-ares.mk

+ 1 - 1
package/c-ares/c-ares.hash
View File 

@@ -1,5 +1,5 @@
 
 # Locally calculated after checking pgp signature
 
-sha256  35410aa625cc9ee95b66475f54aea7c81c673fb63d75fad5eee267711503b72a  c-ares-1.34.2.tar.gz
 
+sha256  7d935790e9af081c25c495fd13c2cfcda4792983418e96358ef6e7320ee06346  c-ares-1.34.5.tar.gz
 
 
 # Hash for license file
 
 sha256  460f5e768fda3752ca2169a95df062578a10fb126bfd65f3b9b1a1bed2f84807  LICENSE.md

+ 2 - 2
package/c-ares/c-ares.mk
View File 

@@ -4,8 +4,8 @@
 
 #
 
 ################################################################################
 
 
-C_ARES_VERSION = 1.34.2
 
-C_ARES_SITE = https://github.com/c-ares/c-ares/releases/download/v1.34.2
 
+C_ARES_VERSION = 1.34.5
 
+C_ARES_SITE = https://github.com/c-ares/c-ares/releases/download/v$(C_ARES_VERSION)
 
 C_ARES_INSTALL_STAGING = YES
 
 C_ARES_CONF_OPTS = --with-random=/dev/urandom
 
 C_ARES_LICENSE = MIT