[Intel MKL] Upgrading curl to 7.65.3 to fix CVE-2019-5443

2019-08-16 00:07:21 -07:00 · 2019-08-16 00:07:21 -07:00 · e80fbd2fb1
commit e80fbd2fb1
parent dcdca11bcb
2 changed files with 5 additions and 5 deletions
--- a/tensorflow/workspace.bzl
+++ b/tensorflow/workspace.bzl
@ -500,12 +500,12 @@ def tf_repositories(path_prefix = "", tf_repo_name = ""):
    tf_http_archive(
        name = "curl",
        build_file = clean_dep("//third_party:curl.BUILD"),
-        sha256 = "821aeb78421375f70e55381c9ad2474bf279fc454b791b7e95fc83562951c690",
-        strip_prefix = "curl-7.65.1",
+        sha256 = "4376ac72b95572fb6c4fbffefb97c7ea0dd083e1974c0e44cd7e49396f454839",
+        strip_prefix = "curl-7.65.3",
        system_build_file = clean_dep("//third_party/systemlibs:curl.BUILD"),
        urls = [
-            "http://mirror.tensorflow.org/curl.haxx.se/download/curl-7.65.1.tar.gz",
-            "https://curl.haxx.se/download/curl-7.65.1.tar.gz",
+            "http://mirror.tensorflow.org/curl.haxx.se/download/curl-7.65.3.tar.gz",
+            "https://curl.haxx.se/download/curl-7.65.3.tar.gz",
        ],
    )

--- a/third_party/curl.BUILD
+++ b/third_party/curl.BUILD
@ -216,7 +216,6 @@ cc_library(
        "lib/vauth/vauth.c",
        "lib/vauth/vauth.h",
        "lib/version.c",
-        "lib/vtls/cyassl.h",
        "lib/vtls/gskit.h",
        "lib/vtls/gtls.h",
        "lib/vtls/mbedtls.h",
@ -227,6 +226,7 @@ cc_library(
        "lib/vtls/schannel.h",
        "lib/vtls/vtls.c",
        "lib/vtls/vtls.h",
+        "lib/vtls/wolfssl.h",
        "lib/warnless.c",
        "lib/warnless.h",
        "lib/wildcard.c",