From: Ross Burton <ross.burton@intel.com>
Date: Thu, 31 Aug 2017 16:50:20 +0000 (+0100)
Subject: libsoup: upgrade to 2.58.2
X-Git-Tag: 2017-10~359
X-Git-Url: https://code.ossystems.io/gitweb?a=commitdiff_plain;h=56d25765641acaadc21391bd7b00187cf0f4ffe0;p=openembedded-core.git

libsoup: upgrade to 2.58.2

This fixes CVE-2017-2885 (stack overflow with HTTP chunked encoding), no other
relevant changes.

Signed-off-by: Ross Burton <ross.burton@intel.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
---

diff --git a/meta/recipes-support/libsoup/libsoup-2.4_2.58.1.bb b/meta/recipes-support/libsoup/libsoup-2.4_2.58.2.bb
similarity index 89%
rename from meta/recipes-support/libsoup/libsoup-2.4_2.58.1.bb
rename to meta/recipes-support/libsoup/libsoup-2.4_2.58.2.bb
index 5b1273efec..c9f95e538a 100644
--- a/meta/recipes-support/libsoup/libsoup-2.4_2.58.1.bb
+++ b/meta/recipes-support/libsoup/libsoup-2.4_2.58.2.bb
@@ -11,8 +11,8 @@ SHRT_VER = "${@d.getVar('PV').split('.')[0]}.${@d.getVar('PV').split('.')[1]}"
 
 SRC_URI = "${GNOME_MIRROR}/libsoup/${SHRT_VER}/libsoup-${PV}.tar.xz"
 
-SRC_URI[md5sum] = "91d7a6bf8785d31f4b154a7612e53e62"
-SRC_URI[sha256sum] = "62c669f557de745b7b20ba9d5b74d839c95e4c9cea1a5ab7f3da5531a1aeefb9"
+SRC_URI[md5sum] = "eb33adb459c2283efc5c7d09ccdbbcfc"
+SRC_URI[sha256sum] = "442300ca1b1bf8a3bbf2f788203287ff862542d4fc048f19a92a068a27d17b72"
 
 S = "${WORKDIR}/libsoup-${PV}"