Lee Chee Yang
264f097580
rsync: whitelist CVE-2017-16548
...
patch for this CVE applies to v3.1.3pre1 not for v3.1.3.
patch already in v3.1.3.
see
https://git.samba.org/rsync.git/?p=rsync.git;a=commitdiff;h=47a63d90e71d3e19e0e96052bb8c6b9cb140ecc1;hp=bc112b0e7feece62ce98708092306639a8a53cce
(From OE-Core rev: 1e2739c821312527010fb0afbde5a20cd3f03d24)
Signed-off-by: Lee Chee Yang <chee.yang.lee@intel.com >
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org >
2020-02-04 15:56:29 +00:00
Anuj Mittal
db32c9bda3
rsync: fix CVEs for included zlib
...
rsync includes its own copy of zlib and doesn't recommend linking with
the system version [1].
Import CVE fixes that impact zlib version 1.2.8 [2] that is currently used
by rsync.
[1] https://git.samba.org/rsync.git/?p=rsync.git;a=blob;f=zlib/README.rsync
[2] https://nvd.nist.gov/vuln/search/results?form_type=Advanced&cves=on&cpe_version=cpe%3a%2fa%3agnu%3azlib%3a1.2.8
(From OE-Core rev: a55fbb4cb489853dfb0b4553f6e187c3f3633f48)
Signed-off-by: Anuj Mittal <anuj.mittal@intel.com >
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org >
2019-07-19 16:19:14 +01:00
Andre McCurdy
1ecb384c11
rsync: merge rsync.inc into the rsync recipe
...
There's only one user of rsync.inc (meta-gplv2 has its own copy), so
merge the .inc file into the rsync recipe.
(From OE-Core rev: 4e42ad44f1df510a527d199b6ec41541f8939654)
Signed-off-by: Andre McCurdy <armccurdy@gmail.com >
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org >
2018-06-18 11:07:57 +01:00
Yi Zhao
a1027acfd7
rsync: update to 3.1.3
...
(From OE-Core rev: ded47001bec3fbbcbcdbe358a32c14ed0322d431)
Signed-off-by: Yi Zhao <yi.zhao@windriver.com >
Signed-off-by: Ross Burton <ross.burton@intel.com >
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org >
2018-02-06 11:06:28 +00:00
