diff options
| author | Richard Purdie <richard.purdie@linuxfoundation.org> | 2024-04-08 14:01:24 +0100 |
|---|---|---|
| committer | Richard Purdie <richard.purdie@linuxfoundation.org> | 2024-04-08 23:33:32 +0100 |
| commit | a260b11e77c212008720a70c5060be13f8c6fd9a (patch) | |
| tree | a892dab29b273f0906adc10c8fae15e4fc97d463 /meta/recipes-support | |
| parent | f68203810d77bfe31c08d54b317e7ad7512f8d8c (diff) | |
| download | poky-a260b11e77c212008720a70c5060be13f8c6fd9a.tar.gz | |
curl: Upgrade 8.6.0 -> 8.7.1
This includes 4 security fixes:
CVE-2024-2466 - TLS certificate check bypass with mbedTLS
CVE-2024-2398 - HTTP/2 push headers memory-leak
CVE-2024-2379 - QUIC certificate check bypass with wolfSSL
CVE-2024-2004 - Usage of disabled protocol
Along with many other changes, mostly bugfixes: https://curl.se/changes.html
(From OE-Core rev: 8e27b472d1bc872c6da2b22f57b30d36e231d745)
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
Diffstat (limited to 'meta/recipes-support')
| -rw-r--r-- | meta/recipes-support/curl/curl/no-test-timeout.patch | 11 | ||||
| -rw-r--r-- | meta/recipes-support/curl/curl_8.7.1.bb (renamed from meta/recipes-support/curl/curl_8.6.0.bb) | 2 |
2 files changed, 10 insertions, 3 deletions
diff --git a/meta/recipes-support/curl/curl/no-test-timeout.patch b/meta/recipes-support/curl/curl/no-test-timeout.patch index b4cfe716db..7122b6f043 100644 --- a/meta/recipes-support/curl/curl/no-test-timeout.patch +++ b/meta/recipes-support/curl/curl/no-test-timeout.patch | |||
| @@ -1,10 +1,17 @@ | |||
| 1 | Set the max-time timeout to 600 so the timeout is 10 minutes instead of 13 seconds. | 1 | From 42cddb52e821cfc2f09f1974742714e5f2f1856e Mon Sep 17 00:00:00 2001 |
| 2 | From: Ross Burton <ross.burton@arm.com> | ||
| 3 | Date: Fri, 15 Mar 2024 14:37:37 +0000 | ||
| 4 | Subject: [PATCH] Set the max-time timeout to 600 so the timeout is 10 minutes | ||
| 5 | instead of 13 seconds. | ||
| 2 | 6 | ||
| 3 | Upstream-Status: Inappropriate | 7 | Upstream-Status: Inappropriate |
| 4 | Signed-off-by: Ross Burton <ross.burton@arm.com> | 8 | Signed-off-by: Ross Burton <ross.burton@arm.com> |
| 9 | --- | ||
| 10 | tests/servers.pm | 2 +- | ||
| 11 | 1 file changed, 1 insertion(+), 1 deletion(-) | ||
| 5 | 12 | ||
| 6 | diff --git a/tests/servers.pm b/tests/servers.pm | 13 | diff --git a/tests/servers.pm b/tests/servers.pm |
| 7 | index d4472d509..aeab62c47 100644 | 14 | index d4472d5..9999938 100644 |
| 8 | --- a/tests/servers.pm | 15 | --- a/tests/servers.pm |
| 9 | +++ b/tests/servers.pm | 16 | +++ b/tests/servers.pm |
| 10 | @@ -120,7 +120,7 @@ my $sshdverstr; # for socks server, ssh daemon version string | 17 | @@ -120,7 +120,7 @@ my $sshdverstr; # for socks server, ssh daemon version string |
diff --git a/meta/recipes-support/curl/curl_8.6.0.bb b/meta/recipes-support/curl/curl_8.7.1.bb index 49ba0cb4a7..c6654bbad6 100644 --- a/meta/recipes-support/curl/curl_8.6.0.bb +++ b/meta/recipes-support/curl/curl_8.7.1.bb | |||
| @@ -15,7 +15,7 @@ SRC_URI = " \ | |||
| 15 | file://disable-tests \ | 15 | file://disable-tests \ |
| 16 | file://no-test-timeout.patch \ | 16 | file://no-test-timeout.patch \ |
| 17 | " | 17 | " |
| 18 | SRC_URI[sha256sum] = "3ccd55d91af9516539df80625f818c734dc6f2ecf9bada33c76765e99121db15" | 18 | SRC_URI[sha256sum] = "6fea2aac6a4610fbd0400afb0bcddbe7258a64c63f1f68e5855ebc0c659710cd" |
| 19 | 19 | ||
| 20 | # Curl has used many names over the years... | 20 | # Curl has used many names over the years... |
| 21 | CVE_PRODUCT = "haxx:curl haxx:libcurl curl:curl curl:libcurl libcurl:libcurl daniel_stenberg:curl" | 21 | CVE_PRODUCT = "haxx:curl haxx:libcurl curl:curl curl:libcurl libcurl:libcurl daniel_stenberg:curl" |