Openwrt/tools
Russell Senior bcfd1d7685 tools/patch: apply upstream patch for cve-2019-13638
GNU patch through 2.7.6 is vulnerable to OS shell command injection that
can be exploited by opening a crafted patch file that contains an ed style

diff payload with shell metacharacters. The ed editor does not need to be
present on the vulnerable system. This is different from CVE-2018-1000156.

https://nvd.nist.gov/vuln/detail/CVE-2019-13638

Signed-off-by: Russell Senior <russell@personaltelco.net>
2019-08-13 10:00:10 +02:00
..
autoconf
automake
b43-tools tools/b43-tools/b43-fwsquash: convert to Python 3 with 2-to-3 2019-07-26 08:09:16 +02:00
bc Revert "bc: update to 1.07.1" 2019-05-22 21:27:44 +02:00
bison tools/bison: Update to 3.4.1 2019-06-22 10:23:56 +02:00
cbootimage
cbootimage-configs
ccache ccache: update to 3.7.2 2019-08-04 13:53:05 +02:00
cmake
coreutils
dosfstools
e2fsprogs
elftosb
expat expat: Update to 2.2.7 2019-08-06 14:03:09 +02:00
findutils
firmware-utils ath79: add support for TP-Link CPE220 v2 2019-08-07 18:04:03 +02:00
flex
flock
genext2fs
gengetopt tools/gengetopt: Update to 2.23 2019-07-08 16:42:26 +02:00
gmp
include
isl
kernel2minor
libelf
libressl tools: libressl: fix compilation for non-glibc clib (FS#2400) 2019-07-23 14:54:07 +02:00
libtool
lzma
lzma-old
m4
make-ext4fs
missing-macros
mkimage
mklibs tools/mklibs: update to 0.1.44 and convert to Python 3 2019-07-26 23:50:21 +02:00
mm-macros
mpc
mpfr
mtd-utils
mtools
padjffs2
patch tools/patch: apply upstream patch for cve-2019-13638 2019-08-13 10:00:10 +02:00
patch-image
patchelf
pkg-config
qemu
quilt
scons tools/scons: update scons to 3.1.1 2019-08-13 09:49:50 +02:00
sdimage
sed
sparse
squashfs
squashfskit4
sstrip
tar
upslug2
wrt350nv2-builder
xz
zip
zlib
Makefile