mirrors/poky
1
0
Fork 0
mirror of https://git.yoctoproject.org/poky synced 2026-02-27 11:59:40 +01:00
Code Issues Packages Projects Releases Wiki Activity
Files
0ffefc4b62d7f863885cecb6b1d7b54b42852255
poky/meta
History
Archana Polampalli 0ffefc4b62 qemu: fix CVE-2023-3180 
A flaw was found in the QEMU virtual crypto device while handling data
encryption/decryption requests in virtio_crypto_handle_sym_req.
There is no check for the value of `src_len` and `dst_len` in
virtio_crypto_sym_op_helper, potentially leading to a heap buffer
overflow when the two values differ.

References:
https://nvd.nist.gov/vuln/detail/CVE-2023-3180

Upstream patches:
49f1e02bac

(From OE-Core rev: de421cab92c49ba0f068eae9d6b458a0368fcd03)

Signed-off-by: Archana Polampalli <archana.polampalli@windriver.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2023-08-19 05:56:58 -10:00
..
classes
meson.bbclass: Point to llvm-config from native sysroot
2023-08-02 04:47:13 -10:00
conf
gcc : upgrade to v11.4
2023-08-07 04:40:44 -10:00
files
classes: files: Extend overlayfs-etc class
2022-10-29 16:32:24 +01:00
lib
oeqa/selftest/devtool: add unit test for "devtool add -b"
2023-08-02 04:47:13 -10:00
recipes-bsp
grub: submit determinism.patch upstream
2023-07-12 05:11:38 -10:00
recipes-connectivity
openssl: Upgrade 3.0.9 -> 3.0.10
2023-08-07 04:40:44 -10:00
recipes-core
build-appliance-image: Update to kirkstone head revision
2023-08-07 04:44:16 -10:00
recipes-devtools
qemu: fix CVE-2023-3180
2023-08-19 05:56:58 -10:00
recipes-example/rust-hello-world
rustfmt: remove the recipe
2021-12-08 20:22:11 +00:00
recipes-extended
procps: patch CVE-2023-4016
2023-08-19 05:56:58 -10:00
recipes-gnome
epiphany: Security fix for CVE-2023-26081
2023-03-20 17:20:44 +00:00
recipes-graphics
libjpeg-turbo: patch CVE-2023-2804
2023-08-02 04:47:12 -10:00
recipes-kernel
lttng-ust: upgrade 2.13.5 -> 2.13.6
2023-08-02 04:47:13 -10:00
recipes-multimedia
libtiff: fix CVE-2023-26965 heap-based use after free
2023-08-02 04:47:13 -10:00
recipes-rt
meta/meta-selftest/meta-skeleton: Update LICENSE variable to use SPDX license identifiers
2022-02-20 16:45:25 +00:00
recipes-sato
webkitgtk: fix CVE-2022-46700
2023-06-21 04:00:58 -10:00
recipes-support
libpcre2: patch CVE-2022-41409
2023-08-07 04:40:43 -10:00
site
ppc/siteinfo: Fix differences between musl and glibc
2022-03-15 08:40:09 +00:00
COPYING.MIT
recipes.txt
Remove LSB support
2019-08-29 14:05:12 +01:00