From patchwork Mon May 6 08:19:58 2024 Content-Type: text/plain; charset="utf-8" MIME-Version: 1.0 Content-Transfer-Encoding: 7bit X-Patchwork-Submitter: Fabrice Fontaine X-Patchwork-Id: 1931800 Return-Path: X-Original-To: incoming-buildroot@patchwork.ozlabs.org Delivered-To: patchwork-incoming-buildroot@legolas.ozlabs.org Authentication-Results: legolas.ozlabs.org; spf=pass (sender SPF authorized) smtp.mailfrom=buildroot.org (client-ip=2605:bc80:3010::137; helo=smtp4.osuosl.org; envelope-from=buildroot-bounces@buildroot.org; receiver=patchwork.ozlabs.org) Received: from smtp4.osuosl.org (smtp4.osuosl.org [IPv6:2605:bc80:3010::137]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature ECDSA (secp384r1) server-digest SHA384) (No client certificate requested) by legolas.ozlabs.org (Postfix) with ESMTPS id 4VXvVB1fZyz1yZk for ; Mon, 6 May 2024 18:20:16 +1000 (AEST) Received: from localhost (localhost [127.0.0.1]) by smtp4.osuosl.org (Postfix) with ESMTP id EA04D406C7; Mon, 6 May 2024 08:20:13 +0000 (UTC) X-Virus-Scanned: amavis at osuosl.org Received: from smtp4.osuosl.org ([127.0.0.1]) by localhost (smtp4.osuosl.org [127.0.0.1]) (amavis, port 10024) with ESMTP id Ow3rqRITSnne; Mon, 6 May 2024 08:20:12 +0000 (UTC) X-Comment: SPF check N/A for local connections - client-ip=140.211.166.34; helo=ash.osuosl.org; envelope-from=buildroot-bounces@buildroot.org; receiver= DKIM-Filter: OpenDKIM Filter v2.11.0 smtp4.osuosl.org A0011406C5 Received: from ash.osuosl.org (ash.osuosl.org [140.211.166.34]) by smtp4.osuosl.org (Postfix) with ESMTP id A0011406C5; Mon, 6 May 2024 08:20:12 +0000 (UTC) X-Original-To: buildroot@lists.busybox.net Delivered-To: buildroot@osuosl.org Received: from smtp4.osuosl.org (smtp4.osuosl.org [140.211.166.137]) by ash.osuosl.org (Postfix) with ESMTP id 4A6E51BF5EA for ; Mon, 6 May 2024 08:20:11 +0000 (UTC) Received: from localhost (localhost [127.0.0.1]) by smtp4.osuosl.org (Postfix) with ESMTP id 42A98406C5 for ; Mon, 6 May 2024 08:20:11 +0000 (UTC) X-Virus-Scanned: amavis at osuosl.org Received: from smtp4.osuosl.org ([127.0.0.1]) by localhost (smtp4.osuosl.org [127.0.0.1]) (amavis, port 10024) with ESMTP id UzfIXDsmNYGA for ; Mon, 6 May 2024 08:20:08 +0000 (UTC) Received-SPF: Pass (mailfrom) identity=mailfrom; client-ip=2a00:1450:4864:20::32a; helo=mail-wm1-x32a.google.com; envelope-from=fontaine.fabrice@gmail.com; receiver= DMARC-Filter: OpenDMARC Filter v1.4.2 smtp4.osuosl.org 44630406C0 DKIM-Filter: OpenDKIM Filter v2.11.0 smtp4.osuosl.org 44630406C0 Received: from mail-wm1-x32a.google.com (mail-wm1-x32a.google.com [IPv6:2a00:1450:4864:20::32a]) by smtp4.osuosl.org (Postfix) with ESMTPS id 44630406C0 for ; Mon, 6 May 2024 08:20:08 +0000 (UTC) Received: by mail-wm1-x32a.google.com with SMTP id 5b1f17b1804b1-41b9dff6be8so10515235e9.3 for ; Mon, 06 May 2024 01:20:08 -0700 (PDT) X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20230601; t=1714983606; x=1715588406; h=content-transfer-encoding:mime-version:message-id:date:subject:cc :to:from:x-gm-message-state:from:to:cc:subject:date:message-id :reply-to; bh=MZbhxd0wqeLgOJXJVUtM6HifOOSN0NLTlPvE8gR8CXw=; b=IZFUUgeO2F+s/7cYR5sEMjr6WTtPSFN7PpTXoJWjEixb6K3KMlGCQ88oOsSOzzScKK ETNqPfpU6cqLdEwwWwV3wtOOj5B7i/HShy7l99flrXsldDZwmdHalytgXx8VbpTCT77U DU3QXKjrI4f7HSuTiwbdbcGmU87VjzXDt5BG37qlJWKI4bvbaK5uMdWCpIcyP+ah21Vw lJPfxKIoQvIZWHKVVIDypK4wHc+tGy4JTFkqIJBZjJm4Kev/YfdvqvNnWxFI3TeEkBcX qRVZaI4a3NPymEvOzqYIxLFt6mOVQ999yapcttpT8fOC3O2wNwS/S3Cn/e8rHWKY3NQB ybhg== X-Gm-Message-State: AOJu0Yzo+DIfRAz0st7kBl6iVaj2MJUhD3M2nEkc1HlATuDSfKfuGwf7 sTOCh1/LzQH4UYNGScER81zGc3xFQiQMyPR3XF+BAmVByx3+KUFX6wFlhQ== X-Google-Smtp-Source: AGHT+IFd6pPsxRAqeB4VTDcZ+pLkDM0BUWlA6JXbc6ZElTFzInGN4f5GHDJukEr4cCoCZORarWcN7g== X-Received: by 2002:a05:600c:35c8:b0:41e:1bc1:36de with SMTP id r8-20020a05600c35c800b0041e1bc136demr5965464wmq.26.1714983605502; Mon, 06 May 2024 01:20:05 -0700 (PDT) Received: from kali.home (lfbn-ren-1-785-215.w83-197.abo.wanadoo.fr. [83.197.112.215]) by smtp.gmail.com with ESMTPSA id bd13-20020a05600c1f0d00b0041c012ca327sm15262874wmb.45.2024.05.06.01.20.05 (version=TLS1_3 cipher=TLS_AES_256_GCM_SHA384 bits=256/256); Mon, 06 May 2024 01:20:05 -0700 (PDT) From: Fabrice Fontaine To: buildroot@buildroot.org Date: Mon, 6 May 2024 10:19:58 +0200 Message-ID: <20240506081959.330708-1-fontaine.fabrice@gmail.com> X-Mailer: git-send-email 2.43.0 MIME-Version: 1.0 X-Mailman-Original-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20230601; t=1714983606; x=1715588406; darn=buildroot.org; h=content-transfer-encoding:mime-version:message-id:date:subject:cc :to:from:from:to:cc:subject:date:message-id:reply-to; bh=MZbhxd0wqeLgOJXJVUtM6HifOOSN0NLTlPvE8gR8CXw=; b=T9+1UBKSanJ3HpFf9mJfn1Kor+t7hCDew0RQJtR5sv439Mny9NhJVyfJWd8MRke/rz qQ/Kp4VUl0vb5SX3wMKvrI57cl8i1V7QEy21agx8508wK+6E/ZH9H7j1/9x00S2QXi+w MV5/J3p5EdymDj1IMVljbcpfVyFr0Wh1RAfrXQSTAhKoDA084yoYzaVjqJoZtBzpjqV3 MZnn5aXMStDBCFPIPB1FTVGZFJB8WEi74bS668JbzZdWP6BBJz/pwObqY1MMEXRyPKvB AetgNW/tF0u4fN2uxzwd085ksB33Rcex8p3jBX+SzXW/0LT9ubmAoHvfT6LSWsUwY3jx Ebdg== X-Mailman-Original-Authentication-Results: smtp4.osuosl.org; dmarc=pass (p=none dis=none) header.from=gmail.com X-Mailman-Original-Authentication-Results: smtp4.osuosl.org; dkim=pass (2048-bit key) header.d=gmail.com header.i=@gmail.com header.a=rsa-sha256 header.s=20230601 header.b=T9+1UBKS Subject: [Buildroot] [PATCH 1/2] package/libhtp: security bump to version 0.5.48 X-BeenThere: buildroot@buildroot.org X-Mailman-Version: 2.1.29 Precedence: list List-Id: Discussion and development of buildroot List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , Cc: Fabrice Fontaine Errors-To: buildroot-bounces@buildroot.org Sender: "buildroot" Fix CVE-2024-23837 and CVE-2024-28871 https://github.com/OISF/libhtp/security/advisories/GHSA-f9wf-rrjj-qx8m https://github.com/OISF/libhtp/security/advisories/GHSA-ffr2-45w9-7wmg https://github.com/OISF/libhtp/blob/0.5.48/ChangeLog Signed-off-by: Fabrice Fontaine --- package/libhtp/libhtp.hash | 2 +- package/libhtp/libhtp.mk | 2 +- 2 files changed, 2 insertions(+), 2 deletions(-) diff --git a/package/libhtp/libhtp.hash b/package/libhtp/libhtp.hash index c016cb3439..1809bc93a3 100644 --- a/package/libhtp/libhtp.hash +++ b/package/libhtp/libhtp.hash @@ -1,3 +1,3 @@ # Locally computed: -sha256 d4214f94522fa5a1ec1909dbb52831c534788d93bc6b2ca8252de9332b11b606 libhtp-0.5.45.tar.gz +sha256 7f0719732fd0c82f9915e3df27e31548798590ad624fbad24f58b50885248ab8 libhtp-0.5.48.tar.gz sha256 87c93904e5434c81622ea690c2b90097b9f162aaa92a96542649a157dbf98d15 LICENSE diff --git a/package/libhtp/libhtp.mk b/package/libhtp/libhtp.mk index 8a732d1d5c..8735f593d9 100644 --- a/package/libhtp/libhtp.mk +++ b/package/libhtp/libhtp.mk @@ -4,7 +4,7 @@ # ################################################################################ -LIBHTP_VERSION = 0.5.45 +LIBHTP_VERSION = 0.5.48 LIBHTP_SITE = $(call github,OISF,libhtp,$(LIBHTP_VERSION)) LIBHTP_LICENSE = BSD-3-Clause LIBHTP_LICENSE_FILES = LICENSE From patchwork Mon May 6 08:19:59 2024 Content-Type: text/plain; charset="utf-8" MIME-Version: 1.0 Content-Transfer-Encoding: 7bit X-Patchwork-Submitter: Fabrice Fontaine X-Patchwork-Id: 1931801 Return-Path: X-Original-To: incoming-buildroot@patchwork.ozlabs.org Delivered-To: patchwork-incoming-buildroot@legolas.ozlabs.org Authentication-Results: legolas.ozlabs.org; spf=pass (sender SPF authorized) smtp.mailfrom=buildroot.org (client-ip=140.211.166.137; helo=smtp4.osuosl.org; envelope-from=buildroot-bounces@buildroot.org; receiver=patchwork.ozlabs.org) Received: from smtp4.osuosl.org (smtp4.osuosl.org [140.211.166.137]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature ECDSA (secp384r1) server-digest SHA384) (No client certificate requested) by legolas.ozlabs.org (Postfix) with ESMTPS id 4VXvVJ3XXnz1yZk for ; Mon, 6 May 2024 18:20:24 +1000 (AEST) Received: from localhost (localhost [127.0.0.1]) by smtp4.osuosl.org (Postfix) with ESMTP id 07608406C0; Mon, 6 May 2024 08:20:21 +0000 (UTC) X-Virus-Scanned: amavis at osuosl.org Received: from smtp4.osuosl.org ([127.0.0.1]) by localhost (smtp4.osuosl.org [127.0.0.1]) (amavis, port 10024) with ESMTP id 3O4SWFbm1qSv; Mon, 6 May 2024 08:20:16 +0000 (UTC) X-Comment: SPF check N/A for local connections - client-ip=140.211.166.34; helo=ash.osuosl.org; envelope-from=buildroot-bounces@buildroot.org; receiver= DKIM-Filter: OpenDKIM Filter v2.11.0 smtp4.osuosl.org 7AD9D40707 Received: from ash.osuosl.org (ash.osuosl.org [140.211.166.34]) by smtp4.osuosl.org (Postfix) with ESMTP id 7AD9D40707; Mon, 6 May 2024 08:20:15 +0000 (UTC) X-Original-To: buildroot@lists.busybox.net Delivered-To: buildroot@osuosl.org Received: from smtp4.osuosl.org (smtp4.osuosl.org [140.211.166.137]) by ash.osuosl.org (Postfix) with ESMTP id A1F981BF5EA for ; Mon, 6 May 2024 08:20:12 +0000 (UTC) Received: from localhost (localhost [127.0.0.1]) by smtp4.osuosl.org (Postfix) with ESMTP id EE55A406C0 for ; Mon, 6 May 2024 08:20:11 +0000 (UTC) X-Virus-Scanned: amavis at osuosl.org Received: from smtp4.osuosl.org ([127.0.0.1]) by localhost (smtp4.osuosl.org [127.0.0.1]) (amavis, port 10024) with ESMTP id p-nQI0cPLy8d for ; Mon, 6 May 2024 08:20:10 +0000 (UTC) Received-SPF: Pass (mailfrom) identity=mailfrom; client-ip=2a00:1450:4864:20::329; helo=mail-wm1-x329.google.com; envelope-from=fontaine.fabrice@gmail.com; receiver= DMARC-Filter: OpenDMARC Filter v1.4.2 smtp4.osuosl.org 39F34406C3 DKIM-Filter: OpenDKIM Filter v2.11.0 smtp4.osuosl.org 39F34406C3 Received: from mail-wm1-x329.google.com (mail-wm1-x329.google.com [IPv6:2a00:1450:4864:20::329]) by smtp4.osuosl.org (Postfix) with ESMTPS id 39F34406C3 for ; Mon, 6 May 2024 08:20:10 +0000 (UTC) Received: by mail-wm1-x329.google.com with SMTP id 5b1f17b1804b1-41b2119da94so9896355e9.0 for ; Mon, 06 May 2024 01:20:09 -0700 (PDT) X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20230601; t=1714983607; x=1715588407; h=content-transfer-encoding:mime-version:references:in-reply-to :message-id:date:subject:cc:to:from:x-gm-message-state:from:to:cc :subject:date:message-id:reply-to; bh=HvFiWIUbkjzw/ovUZRTSqRuk2ZBAnKwHVaLcRF2ZLm8=; b=AfH+7Xf7rhiAqN0byzY4gTq2cLi83JZKl4JygqaV2kHUrHSQsEcWkVynjsTVTEmMap 4bar3PtpV3IdecR++ruJkDVvA/6Z42gy5iZoTdCVw9SHHBzcZ/XS089v0+rz2g5GQN7N TC6vlLF0PX8AIUSx5nYMOCemNmSQfOdhDPRluQ5voq/DCt5b9OfnwLKr78aM3snu92g9 kB6ve29eMhcudMStyV/X5By1/b/0BFIVsf1X9e+xeOBraa4CV7L3pn5XYbsaLSZ7rNfg IOMQh/CkvIPlO9Bv1E4o2jyAU1IYjQad2lk0QIeDX4bVT91OOtp8Yah+dPkYqG/yOFw6 MpiQ== X-Gm-Message-State: AOJu0YwSm558q+1Ob03KynngCv1TEeP9dukiRVx4mE05S+p0Q0RLsZ0x w90emfmhpjIbGGF8S4eG1L9DdW1w/Enmgk8ZJskkepzui+lRjE2FBCB0FQ== X-Google-Smtp-Source: AGHT+IFLIH3xxv5Rs8R1nS8hrpCJnxJWKVtAsShAxZbEkcY3C6A+JgtbWSuNcIHTqF+LS3D6LB9nrw== X-Received: by 2002:a05:600c:b8a:b0:418:fd27:692 with SMTP id fl10-20020a05600c0b8a00b00418fd270692mr6583420wmb.14.1714983607212; Mon, 06 May 2024 01:20:07 -0700 (PDT) Received: from kali.home (lfbn-ren-1-785-215.w83-197.abo.wanadoo.fr. [83.197.112.215]) by smtp.gmail.com with ESMTPSA id bd13-20020a05600c1f0d00b0041c012ca327sm15262874wmb.45.2024.05.06.01.20.06 (version=TLS1_3 cipher=TLS_AES_256_GCM_SHA384 bits=256/256); Mon, 06 May 2024 01:20:06 -0700 (PDT) From: Fabrice Fontaine To: buildroot@buildroot.org Date: Mon, 6 May 2024 10:19:59 +0200 Message-ID: <20240506081959.330708-2-fontaine.fabrice@gmail.com> X-Mailer: git-send-email 2.43.0 In-Reply-To: <20240506081959.330708-1-fontaine.fabrice@gmail.com> References: <20240506081959.330708-1-fontaine.fabrice@gmail.com> MIME-Version: 1.0 X-Mailman-Original-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20230601; t=1714983607; x=1715588407; darn=buildroot.org; h=content-transfer-encoding:mime-version:references:in-reply-to :message-id:date:subject:cc:to:from:from:to:cc:subject:date :message-id:reply-to; bh=HvFiWIUbkjzw/ovUZRTSqRuk2ZBAnKwHVaLcRF2ZLm8=; b=UgGd+KSYXsy4con/c9GaQ0llyqzwlLfyzdGGJ7c0zoclAi9SApcQ9iqeI7bbZRnkiq k4WJVY150RJV4UBVzJ0ra3e0z0z3yCiZHKpW4PITqITFawtaRdkxvofvH/DVcLRtDJnk 0gxoJesPOPs+GhVSqyfRlvqgHOiYJXM3hvtVXaOvfMhFGPWiMSXegXlBClKqaNyuk9pk 8JXFhsOSDNYvQSNvb0puVI4+I2kb+TpsexjkRkcf+a3wbFAan5TznvHrY9H7u50mrswr PzYPumLjckh49z1+59bkUzas25Y4d9gfzrmJcOSDnJPz6as32VKhI3mHFNa8+lgiBXcN gyTw== X-Mailman-Original-Authentication-Results: smtp4.osuosl.org; dmarc=pass (p=none dis=none) header.from=gmail.com X-Mailman-Original-Authentication-Results: smtp4.osuosl.org; dkim=pass (2048-bit key) header.d=gmail.com header.i=@gmail.com header.a=rsa-sha256 header.s=20230601 header.b=UgGd+KSY Subject: [Buildroot] [PATCH 2/2] package/suricata: security bump to version 6.0.19 X-BeenThere: buildroot@buildroot.org X-Mailman-Version: 2.1.29 Precedence: list List-Id: Discussion and development of buildroot List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , Cc: Fabrice Fontaine Errors-To: buildroot-bounces@buildroot.org Sender: "buildroot" Fixes: - CVE-2024-23839 - Critical severity - CVE-2024-23836 - Critical severity - CVE-2024-23835 - High severity - CVE-2024-24568 - Moderate severity - CVE-2024-28870 - HIGH - CVE-2024-32663 CRITICAL (HIGH for 6.0.x) - CVE-2024-32664 CRITICAL (HIGH for 7.0.x) - CVE-2024-32867 MODERATE https://forum.suricata.io/t/suricata-7-0-3-and-6-0-16-released/4468 https://forum.suricata.io/t/suricata-7-0-4-and-6-0-17-released/4534 https://forum.suricata.io/t/suricata-6-0-18-released/4539 https://forum.suricata.io/t/suricata-7-0-5-and-6-0-19-released/4617 Signed-off-by: Fabrice Fontaine --- package/suricata/suricata.hash | 2 +- package/suricata/suricata.mk | 2 +- 2 files changed, 2 insertions(+), 2 deletions(-) diff --git a/package/suricata/suricata.hash b/package/suricata/suricata.hash index 41befa61b9..58ab0d93b0 100644 --- a/package/suricata/suricata.hash +++ b/package/suricata/suricata.hash @@ -1,5 +1,5 @@ # Locally computed: -sha256 1bd546149ac6671c2476d520a38eab7755e10c3080fd2ec2dc8624b0cf89ee75 suricata-6.0.15.tar.gz +sha256 98c812faef466d337f107f13ae37843f1c719942b93832d70f1a2fd7ee1b5c2c suricata-6.0.19.tar.gz # Hash for license files: sha256 8177f97513213526df2cf6184d8ff986c675afb514d4e68a404010521b880643 COPYING diff --git a/package/suricata/suricata.mk b/package/suricata/suricata.mk index 5b52635328..2083e0caba 100644 --- a/package/suricata/suricata.mk +++ b/package/suricata/suricata.mk @@ -4,7 +4,7 @@ # ################################################################################ -SURICATA_VERSION = 6.0.15 +SURICATA_VERSION = 6.0.19 SURICATA_SITE = https://www.openinfosecfoundation.org/download SURICATA_LICENSE = GPL-2.0 SURICATA_LICENSE_FILES = COPYING LICENSE