Strona główna Odkrywaj Pomoc
Zarejestruj się Zaloguj się
PUBLIC_REPOS
/
buildroot
kopia lustrzana git://git.buildroot.net/buildroot
2
1
Forkuj 0
Pliki
Przeglądaj źródła

package/screen: security bump to version 5.0.1

Fixes the following security issues:

CVE-2025-46805: do NOT send signals with root privileges
CVE-2025-46804: avoid file existence test information leaks
CVE-2025-46803: apply safe PTY default mode of 0620
CVE-2025-46802: prevent temporary 0666 mode on PTYs in attacher
CVE-2025-23395: reintroduce lf_secreopen() for logfile

https://lists.gnu.org/archive/html/info-gnu/2025-05/msg00002.html

For more details, see:
https://security.opensuse.org/2025/05/12/screen-security-issues.html

Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
Signed-off-by: Julien Olivain <ju.o@free.fr>
(cherry picked from commit 9a1aaec3f3db99bd8fda26cbaf476f4c20dd6740)
Signed-off-by: Thomas Perale <thomas.perale@mind.be>
Peter Korsgaard 2 miesięcy temu
rodzic
b197cf7312
commit
c41e4b3dd9
2 zmienionych plików z 3 dodań i 3 usunięć
Widok podzielony Pokaż statystyki zmian
  1. 2 2
      package/screen/screen.hash
  2. 1 1
      package/screen/screen.mk

+ 2 - 2
package/screen/screen.hash
Wyświetl plik 

@@ -1,5 +1,5 @@
 
 # Locally calculated after checking pgp signature
 
-# https://ftp.gnu.org/gnu/screen/screen-5.0.0.tar.gz.sig
 
-sha256  f04a39d00a0e5c7c86a55338808903082ad5df4d73df1a2fd3425976aed94971  screen-5.0.0.tar.gz
 
+# https://ftp.gnu.org/gnu/screen/screen-5.0.1.tar.gz.sig
 
+sha256  2dae36f4db379ffcd14b691596ba6ec18ac3a9e22bc47ac239789ab58409869d  screen-5.0.1.tar.gz
 
 # Locally calculated
 
 sha256  e79e9c8a0c85d735ff98185918ec94ed7d175efc377012787aebcf3b80f0d90b  COPYING

+ 1 - 1
package/screen/screen.mk
Wyświetl plik 

@@ -4,7 +4,7 @@
 
 #
 
 ################################################################################
 
 
-SCREEN_VERSION = 5.0.0
 
+SCREEN_VERSION = 5.0.1
 
 SCREEN_SITE = $(BR2_GNU_MIRROR)/screen
 
 SCREEN_LICENSE = GPL-3.0+
 
 SCREEN_LICENSE_FILES = COPYING