libjson-c: backport security fixes
authorRobert Marko <robert.marko@sartura.hr>
Tue, 12 May 2020 20:18:33 +0000 (22:18 +0200)
committerJo-Philipp Wich <jo@mein.io>
Wed, 13 May 2020 09:16:43 +0000 (11:16 +0200)
commitbc0288b76816578f5aeccb2abd679f82bfc5738e
tree288954142579aeac4854e5c0af1d273551e54486
parent2308644b0ce938bbdfe6155b12aae85dd02beea7
libjson-c: backport security fixes

This backports upstream fixes for the out of bounds write vulnerability in json-c.
It was reported and patches in this upstream PR: https://github.com/json-c/json-c/pull/592

Addresses CVE-2020-12762

Signed-off-by: Robert Marko <robert.marko@sartura.hr>
Signed-off-by: Luka Perkov <luka.perkov@sartura.hr>
[bump PKG_RELEASE]
Signed-off-by: Jo-Philipp Wich <jo@mein.io>
package/libs/libjson-c/Makefile
package/libs/libjson-c/patches/001-Protect-array_list_del_idx-against-size_t-overflow.patch [new file with mode: 0644]
package/libs/libjson-c/patches/002-Prevent-division-by-zero-in-linkhash.patch [new file with mode: 0644]
package/libs/libjson-c/patches/003-Fix-integer-overflows.patch [new file with mode: 0644]
package/libs/libjson-c/patches/004-Issue-599-Fix-the-backwards-check-in-lh_table_insert.patch [new file with mode: 0644]