libsrtp: security bump to version 1.5.4

Fixes CVE-2015-6360: Prevent potential DoS attack due to lack of bounds checking on RTP header CSRC count and extension header length. Also, add a hash file. Signed-off-by: Baruch Siach <baruch@tkos.co.il> Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com>
2025-07-29 06:06:32 +00:00 · 2016-04-08 01:09:37 +03:00 · 2016-04-08 01:09:37 +03:00 · 6c67a6d7c5
commit 6c67a6d7c5
parent ddc27df28f
2 changed files with 3 additions and 1 deletions
--- a/package/libsrtp/libsrtp.hash
+++ b/package/libsrtp/libsrtp.hash
@ -0,0 +1,2 @@
 # Locally calculated
 sha256 56a7b521c25134f48faff26b0b1e3d4378a14986a2d3d7bc6fefb48987304ff0 libsrtp-v1.5.4.tar.gz
--- a/package/libsrtp/libsrtp.mk
+++ b/package/libsrtp/libsrtp.mk
@ -4,7 +4,7 @@
 #
 ################################################################################
-LIBSRTP_VERSION = v1.5.2
+LIBSRTP_VERSION = v1.5.4
 LIBSRTP_SITE = $(call github,cisco,libsrtp,$(LIBSRTP_VERSION))
 LIBSRTP_INSTALL_STAGING = YES
 LIBSRTP_LICENSE = BSD-3c
		`@ -0,0 +1,2 @@`
							`# Locally calculated`
							`sha256 56a7b521c25134f48faff26b0b1e3d4378a14986a2d3d7bc6fefb48987304ff0 libsrtp-v1.5.4.tar.gz`