curl: upgrade to 7.58.0

(From OE-Core rev: 9763c9d649a22f9024d832eb625bee35b583e717)

This update include these CVES:
CVE-2018-1000122	CWE-126: Buffer Over-read
CVE-2018-1000121	CWE-476: NULL Pointer Dereference
CVE-2018-1000120	CWE-122: Heap-based Buffer Overflow

Mostly bugfixes.

Signed-off-by: Oleksandr Kravchuk <open.source@oleksandr-kravchuk.com>
Signed-off-by: Ross Burton <ross.burton@intel.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
Signed-off-by: Armin Kuster <akuster808@gmail.com>

diff --git a/meta/recipes-support/curl/curl_7.57.0.bb b/meta/recipes-support/curl/curl_7.58.0.bb
similarity index 95%
rename from meta/recipes-support/curl/curl_7.57.0.bb
rename to meta/recipes-support/curl/curl_7.58.0.bb
index 47e3d45460de43d2c039b641655a6e914a077b98..5535a5609b2dfb86187f8d8b33339a5cc3806b23 100644 (file)
--- a/meta/recipes-support/curl/curl_7.57.0.bb
+++ b/meta/recipes-support/curl/curl_7.58.0.bb
@@ -15,8 +15,8 @@ SRC_URI = "http://curl.haxx.se/download/curl-${PV}.tar.bz2 \
 #
 SRC_URI += " file://configure_ac.patch"
 
-SRC_URI[md5sum] = "dd3e22e923be17663e67f721c2aec054"
-SRC_URI[sha256sum] = "c92fe31a348eae079121b73884065e600c533493eb50f1f6cee9c48a3f454826"
+SRC_URI[md5sum] = "fa049f9f90c1ae473a2a7bcfa14de976"
+SRC_URI[sha256sum] = "1cb081f97807c01e3ed747b6e1c9fee7a01cb10048f1cd0b5f56cfe0209de731"
 
 CVE_PRODUCT = "libcurl"
 inherit autotools pkgconfig binconfig multilib_header