mirrors/poky
1
0
Fork 0
mirror of https://git.yoctoproject.org/poky synced 2026-04-23 00:32:12 +02:00
Code Issues Packages Projects Releases Wiki Activity

dev-manual: common-tasks.rst: add regular updates and CVE scans to security best practices

Browse Source 
Regular security scans and updates to fix issues and updates from
upstream maintainers are best practices.

(From yocto-docs rev: 24d3337b6cbb38297877f6ce6ec78896ce93e8b2)

Signed-off-by: Mikko Rapeli <mikko.rapeli@linaro.org>
Reviewed-by: Michael Opdenacker <michael.opdenacker@bootlin.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
This commit is contained in:
Mikko Rapeli
2022-10-26 16:12:06 +03:00
committed by Richard Purdie
parent 362477c421
commit aa5fd56b9a
1 changed files with 7 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files

7
documentation/dev-manual/common-tasks.rst
View File

@@ -6231,6 +6231,13 @@ more secure:
vulnerabilities discovered in the future. This consideration
especially applies when your device is network-enabled.
- Regularly scan and apply fixes for CVE security issues affecting
all software components in the product, see ":ref:`dev-manual/common-tasks:checking for vulnerabilities`".
- Regularly update your version of Poky and OE-Core from their upstream
developers, e.g. to apply updates and security fixes from stable
and LTS branches.
- Ensure you remove or disable debugging functionality before producing
the final image. For information on how to do this, see the
":ref:`dev-manual/common-tasks:considerations specific to the openembedded build system`"