projects / feed / packages.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: ccabe6d) | patch
Revert "tools/xz: update to 5.6.1" (CVE-2024-3094)
authorPetr Štetiar <ynezz@true.cz>
Fri, 29 Mar 2024 17:31:17 +0000 (17:31 +0000)
committerPetr Štetiar <ynezz@true.cz>
Fri, 29 Mar 2024 17:31:17 +0000 (17:31 +0000)
commit9e46b47ca3ece6de6bb185ba3645299167150b59
treedd3dcd3130512d7c5a27c09c1c83ee8877fa12b1tree | snapshot
parentccabe6d8e65b5db76156488ffa51fd347a0c486dcommit | diff
Revert "tools/xz: update to 5.6.1" (CVE-2024-3094)

This reverts commit 714c91d1a63f29650abaa9cf69ffa47cf2c70297 as probably
the upstream xz repository and the xz tarballs have been backdoored.

References: https://www.openwall.com/lists/oss-security/2024/03/29/4
Signed-off-by: Petr Štetiar <ynezz@true.cz>
utils/xz/Makefile diff | blob | history
utils/xz/patches/001-relative-pkg-config-paths.patch diff | blob | history
Mirror of packages feed