projects / feed / packages.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 947210e) | patch
lrzsz: update to v0.12.21rc and fix a CVE
authorAndre Heider <a.heider@gmail.com>
Sat, 14 Jan 2023 10:40:39 +0000 (11:40 +0100)
committerAndre Heider <a.heider@gmail.com>
Sun, 15 Jan 2023 14:14:06 +0000 (15:14 +0100)
commit6d6c4b21b5e22a9f1058db5b61521a298e00a5f0
tree6ccf5a56557853c24bd86acd39b0c36cab2de5ebtree | snapshot
parent947210e2d2127c395a0dfd3e468f2e6296d17f24commit | diff
lrzsz: update to v0.12.21rc and fix a CVE

This updates to v0.12.21rc from 1999 (sic), which was never officially
released. There're fixes in there, and it's what debian ships, so let's
use that too. While at it, use debian's autohell hack and package
description too.

Patch 1 fixes a hang with musl.
Patch 2 fixes CVE-2018-10195, add PKG_CPE_ID while at it.

Refesh the rest.

Fixes: CVE-2018-10195
Signed-off-by: Andre Heider <a.heider@gmail.com>
utils/lrzsz/Makefile diff | blob | history
utils/lrzsz/patches/001-siginterrupt-after-the-call-to-signal-otherwise-ymod.patch [new file with mode: 0644] blob
utils/lrzsz/patches/002-may-be-security-fix-avoid-possible-underflow.patch [new file with mode: 0644] blob
utils/lrzsz/patches/100-install_delete_fix.patch diff | blob | history
utils/lrzsz/patches/200-format.patch diff | blob | history
Mirror of packages feed