Google Git
Sign in
android-kvm / buildroot / c9f4328ef4e12852e1cde814d919186846131765
commitc9f4328ef4e12852e1cde814d919186846131765[log] [tgz]
authorAngelo Compagnucci <angelo.compagnucci@gmail.com>Wed Aug 20 18:55:02 2025 +0200
committerPeter Korsgaard <peter@korsgaard.com>Thu Aug 21 08:44:05 2025 +0200
treef398863289c411181fb2244609c40cc2df99aea7
parente002ec3773452a14180b9be686d909ccb2e61a5d [diff]
package/jq: security bump to version 1.8.1

Changelog:
https://github.com/jqlang/jq/releases/tag/jq-1.8.1

COPYING:
Add LICENSE notice of NetBSD's strptime() to COPYING
https://github.com/jqlang/jq/commit/78045d8aa9d155ec0f82ab102aa752300c2349f1

Fixes the following security issues:

- CVE-2025-49014: Fix heap use after free in f_strftime, f_strflocaltime.

  https://www.cve.org/CVERecord?id=CVE-2025-49014

- GHSA-f946-j5j2-4w5m: Fix stack overflow in node_min_byte_len of oniguruma.

  https://github.com/jqlang/jq/security/advisories/GHSA-f946-j5j2-4w5m

Signed-off-by: Angelo Compagnucci <angelo.compagnucci@gmail.com>
[Peter: fix license info]
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
2 files changed
tree: f398863289c411181fb2244609c40cc2df99aea7
  1. .github/
  2. .gitlab/
  3. arch/
  4. board/
  5. boot/
  6. configs/
  7. docs/
  8. fs/
  9. linux/
  10. package/
  11. support/
  12. system/
  13. toolchain/
  14. utils/
  15. .b4-config
  16. .checkpackageignore
  17. .clang-format
  18. .defconfig
  19. .editorconfig
  20. .flake8
  21. .gitignore
  22. .gitlab-ci.yml
  23. .shellcheckrc
  24. CHANGES
  25. Config.in
  26. Config.in.legacy
  27. COPYING
  28. DEVELOPERS
  29. Makefile
  30. Makefile.legacy
  31. README