LILiK
/
openwrt-packages-dist
5
0
Fork 0
Code Issues 0 Pull Requests 0 Projects 0 Releases 0 Wiki Activity
Browse Source

c-ares: update to version 1.17.2 

Missing input validation of host names returned by Domain Name Servers
in the c-ares library can lead to output of wrong hostnames (leading to
Domain Hijacking).

The Common Vulnerabilities and Exposures (CVE) project has assigned the
name CVE-2021-3672 to this issue.

References: https://c-ares.haxx.se/adv_20210810.html
Signed-off-by: Petr Štetiar <ynezz@true.cz>
lilik-openwrt-22.03
Petr Štetiar 3 years ago
committed by Karl Palsson
parent
35876858d1
commit
84058b3980
1 changed files with 2 additions and 2 deletions
Split View
Diff Options
Show Stats Download Patch File Download Diff File
  1. +2
    -2
      libs/c-ares/Makefile

+ 2
- 2
libs/c-ares/Makefile View File

@ -9,12 +9,12 @@
include $(TOPDIR)/rules.mk
PKG_NAME:=c-ares
PKG_VERSION:=1.17.1
PKG_VERSION:=1.17.2
PKG_RELEASE:=1
PKG_SOURCE:=$(PKG_NAME)-$(PKG_VERSION).tar.gz
PKG_SOURCE_URL:=https://c-ares.haxx.se/download
PKG_HASH:=d73dd0f6de824afd407ce10750ea081af47eba52b8a6cb307d220131ad93fc40
PKG_HASH:=4803c844ce20ce510ef0eb83f8ea41fa24ecaae9d280c468c582d2bb25b3913d
PKG_LICENSE:=MIT
PKG_LICENSE_FILES:=LICENSE.md


Write Preview
Loading…
Cancel
Save