Skip to content

Commit

Permalink
package/jq: security bump to version 1.6
Browse files Browse the repository at this point in the history 
- Fix CVE-2015-8863 and  CVE-2016-4074:
  jqlang/jq#1406
- Add hash for license file
- Disable oniguruma (enabled by default)

Signed-off-by: Fabrice Fontaine <[email protected]>
Signed-off-by: Peter Korsgaard <[email protected]>
(cherry picked from commit 3a026d6)
Signed-off-by: Peter Korsgaard <[email protected]>
  • Loading branch information
@ffontaine @jacmet
ffontaine authored and jacmet committed Mar 27, 2019
1 parent 4716f1a commit 1f464e0
Show file tree
Hide file tree
Showing 2 changed files with 5 additions and 4 deletions.
3 changes: 2 additions & 1 deletion package/jq/jq.hash
View file
Original file line number Diff line number Diff line change
@@ -1,2 +1,3 @@
# Locally calculated
sha256 c4d2bfec6436341113419debf479d833692cc5cdab7eb0326b5a4d4fbe9f493c jq-1.5.tar.gz
sha256 5de8c8e29aaa3fb9cc6b47bb27299f271354ebb72514e3accadc7d38b5bbaa72 jq-1.6.tar.gz
sha256 111136aebcbfa68b6b0084e582b30e981da76adcff84eab6f9be32a1f38c5bf1 COPYING
6 changes: 3 additions & 3 deletions package/jq/jq.mk
View file
Original file line number Diff line number Diff line change
Expand Up @@ -4,7 +4,7 @@
#
################################################################################

JQ_VERSION = 1.5
JQ_VERSION = 1.6
JQ_SITE = https://github.com/stedolan/jq/releases/download/jq-$(JQ_VERSION)
JQ_LICENSE = MIT (code), CC-BY-3.0 (documentation)
JQ_LICENSE_FILES = COPYING
Expand All @@ -17,8 +17,8 @@ JQ_CONF_ENV += CFLAGS="$(TARGET_CFLAGS) -std=c99 -D_GNU_SOURCE"
HOST_JQ_CONF_ENV += CFLAGS="$(HOST_CFLAGS) -std=c99 -D_GNU_SOURCE"

# jq explicitly enables maintainer mode, which we don't need/want
JQ_CONF_OPTS += --disable-maintainer-mode
HOST_JQ_CONF_OPTS += --disable-maintainer-mode
JQ_CONF_OPTS += --disable-maintainer-mode --without-oniguruma
HOST_JQ_CONF_OPTS += --disable-maintainer-mode --without-oniguruma

$(eval $(autotools-package))
$(eval $(host-autotools-package))

0 comments on commit 1f464e0

Please sign in to comment.