mirrors/poky
1
0
Fork 0
mirror of https://git.yoctoproject.org/poky synced 2026-05-02 18:32:15 +02:00
Code Issues Packages Projects Releases Wiki Activity
Files
1e8fd09f78a3f327e1d11dac9df7fd339b18e95e
poky/meta/recipes-extended
History
Sanjay Chitroda a3983ed726 cups: Fix CVE-2023-32324 
OpenPrinting CUPS is an open source printing system. In versions 2.4.2
and prior, a heap buffer overflow vulnerability would allow a remote
attacker to launch a denial of service (DoS) attack. A buffer overflow
vulnerability in the function `format_log_line` could allow remote
attackers to cause a DoS on the affected system. Exploitation of the
vulnerability can be triggered when the configuration file `cupsd.conf`
sets the value of `loglevel `to `DEBUG`. No known patches or
workarounds exist at time of publication.

References:
https://nvd.nist.gov/vuln/detail/CVE-2023-32324
https://security-tracker.debian.org/tracker/CVE-2023-32324

Upstream Patch:
https://github.com/OpenPrinting/cups/commit/fd8bc2d32589

(From OE-Core rev: cf741646f41835024c7e53234cfd527ff3f8542b)

Signed-off-by: Sanjay Chitroda <schitrod@cisco.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2023-06-21 04:00:58 -10:00
..
acpica
meta/meta-selftest/meta-skeleton: Update LICENSE variable to use SPDX license identifiers
2022-02-20 16:45:25 +00:00
asciidoc
meta: remove obsolete PIP_INSTALL_PACKAGE
2022-03-12 09:20:03 +00:00
at
at: Change when files are copied
2023-01-26 23:37:05 +00:00
bash
bash: backport patch to fix CVE-2022-3715
2022-12-01 19:35:04 +00:00
bc
bc: extend to nativesdk
2022-12-23 23:05:50 +00:00
blktool
meta/meta-selftest/meta-skeleton: Update LICENSE variable to use SPDX license identifiers
2022-02-20 16:45:25 +00:00
bzip2
meta/meta-selftest/meta-skeleton: Update LICENSE variable to use SPDX license identifiers
2022-02-20 16:45:25 +00:00
cpio
cpio: Fix wrong CRC with ASCII CRC for large files
2023-05-30 04:11:15 -10:00
cracklib
cracklib: update github branch to 'main'
2023-03-28 22:31:54 +01:00
cronie
cronie: upgrade 1.6.0 -> 1.6.1
2022-05-20 10:08:06 +01:00
cups
cups: Fix CVE-2023-32324
2023-06-21 04:00:58 -10:00
cwautomacros
meta/meta-selftest/meta-skeleton: Update LICENSE variable to use SPDX license identifiers
2022-02-20 16:45:25 +00:00
diffutils
diffutils: update 3.8 -> 3.9
2023-02-24 16:41:46 +00:00
ed
meta/meta-selftest/meta-skeleton: Update LICENSE variable to use SPDX license identifiers
2022-02-20 16:45:25 +00:00
ethtool
meta/meta-selftest/meta-skeleton: Update LICENSE variable to use SPDX license identifiers
2022-02-20 16:45:25 +00:00
findutils
meta, meta-selftest: Replace more non-SPDX license identifiers
2022-03-01 23:44:59 +00:00
gawk
meta, meta-selftest: Replace more non-SPDX license identifiers
2022-03-01 23:44:59 +00:00
ghostscript
ghostscript: fix CVE-2023-29979
2023-05-03 04:17:12 -10:00
go-examples
go-helloworld: remove unused GO_WORKDIR
2022-05-12 16:44:05 +01:00
gperf
gperf: Switch to upstream patch
2022-07-25 15:11:46 +01:00
grep
grep: Fix build on ppc/musl
2022-03-29 15:59:28 +01:00
groff
groff: submit patches upstream
2022-11-24 15:30:01 +00:00
gzip
gzip: upgrade 1.11 -> 1.12
2022-04-10 08:31:17 +01:00
hdparm
meta/meta-selftest/meta-skeleton: Update LICENSE variable to use SPDX license identifiers
2022-02-20 16:45:25 +00:00
images
core-image-testmaster: Rename to core-image-testcontroller
2022-02-20 16:45:25 +00:00
iptables
iptables: use nft backend with libnftnl PACKAGECONFIG
2022-03-18 23:32:46 +00:00
iputils
meta/scripts: Automated conversion of OE renamed variables
2022-02-21 23:37:27 +00:00
less
less: backport the fix for CVE-2022-46663
2023-03-09 13:19:02 +00:00
libaio
meta/meta-selftest/meta-skeleton: Update LICENSE variable to use SPDX license identifiers
2022-02-20 16:45:25 +00:00
libarchive
libarchive: Enable acls, xattr for native as well as target
2023-05-12 04:04:52 -10:00
libidn
libidn2: add Unicode-DFS-2016 license
2022-04-14 09:47:00 +01:00
libmnl
meta/meta-selftest/meta-skeleton: Update LICENSE variable to use SPDX license identifiers
2022-02-20 16:45:25 +00:00
libnsl
meta/meta-selftest/meta-skeleton: Update LICENSE variable to use SPDX license identifiers
2022-02-20 16:45:25 +00:00
libnss-nis
meta/meta-selftest/meta-skeleton: Update LICENSE variable to use SPDX license identifiers
2022-02-20 16:45:25 +00:00
libpipeline
meta/meta-selftest/meta-skeleton: Update LICENSE variable to use SPDX license identifiers
2022-02-20 16:45:25 +00:00
libsolv
libsolv: upgrade 0.7.21 -> 0.7.22
2022-03-23 12:13:50 +00:00
libtirpc
libtirpc: Check if file exists before operating on it
2023-02-04 23:32:20 +00:00
lighttpd
lighttpd: upgrade 1.4.66 -> 1.4.67
2022-11-10 14:39:24 +00:00
logrotate
logrotate: upgrade 3.19.0 -> 3.20.1
2022-06-11 10:06:13 +01:00
lsb
meta/meta-selftest/meta-skeleton: Update LICENSE variable to use SPDX license identifiers
2022-02-20 16:45:25 +00:00
lsof
lsof: fix old override syntax
2023-02-15 21:46:56 +00:00
ltp
ltp: backport clock_gettime04 fix from upstream
2022-11-09 17:42:08 +00:00
lzip
meta/meta-selftest/meta-skeleton: Update LICENSE variable to use SPDX license identifiers
2022-02-20 16:45:25 +00:00
man-db
man-db: upgrade 2.10.1 -> 2.10.2
2022-03-23 12:13:50 +00:00
man-pages
meta/meta-selftest/meta-skeleton: Update LICENSE variable to use SPDX license identifiers
2022-02-20 16:45:25 +00:00
mc
meta/meta-selftest/meta-skeleton: Update LICENSE variable to use SPDX license identifiers
2022-02-20 16:45:25 +00:00
mdadm
mdadm: Fix raid0 tests
2023-03-23 22:45:34 +00:00
mingetty
meta/meta-selftest/meta-skeleton: Update LICENSE variable to use SPDX license identifiers
2022-02-20 16:45:25 +00:00
minicom
meta/meta-selftest/meta-skeleton: Update LICENSE variable to use SPDX license identifiers
2022-02-20 16:45:25 +00:00
msmtp
msmtp: upgrade 1.8.19 -> 1.8.20
2022-03-29 15:59:29 +01:00
net-tools
meta/meta-selftest/meta-skeleton: Update LICENSE variable to use SPDX license identifiers
2022-02-20 16:45:25 +00:00
newt
libnewt: update 0.52.21 -> 0.52.23
2023-01-06 17:33:23 +00:00
packagegroups
packagegroup-core-full-cmdline: Drop compatibility mappings
2021-11-13 16:11:27 +00:00
pam
libpam: Fix the xtests/tst-pam_motd[1|3] failures
2023-05-12 04:04:52 -10:00
parted
udev-extraconf/initrdscripts/parted: Rename mount.blacklist -> mount.ignorelist
2022-07-25 15:11:46 +01:00
pbzip2
Convert to new override syntax
2021-08-02 15:44:10 +01:00
perl
meta/meta-selftest/meta-skeleton: Update LICENSE variable to use SPDX license identifiers
2022-02-20 16:45:25 +00:00
pigz
pigz: upgrade 2.6 -> 2.7
2022-01-20 11:57:29 +00:00
procps
meta/scripts: Automated conversion of OE renamed variables
2022-02-21 23:37:27 +00:00
psmisc
meta/meta-selftest/meta-skeleton: Update LICENSE variable to use SPDX license identifiers
2022-02-20 16:45:25 +00:00
quota
meta/meta-selftest/meta-skeleton: Update LICENSE variable to use SPDX license identifiers
2022-02-20 16:45:25 +00:00
rpcbind
rpcbind: install rpcbind.conf
2021-11-13 16:11:28 +00:00
rpcsvc-proto
rpcsvc-proto: upgrade 1.4.2 -> 1.4.3
2022-01-20 11:57:29 +00:00
screen
screen: CVE-2023-24626 allows sending SIGHUP to arbitrary PIDs
2023-04-26 04:03:21 -10:00
sed
sed: Specify shell for "nobody" user in run-ptest
2022-05-20 10:08:06 +01:00
shadow
shadow: backport patch to fix CVE-2023-29383
2023-04-26 04:03:21 -10:00
slang
meta/meta-selftest/meta-skeleton: Update LICENSE variable to use SPDX license identifiers
2022-02-20 16:45:25 +00:00
stress-ng
stress-cpu: disable float128 math on powerpc64 to avoid SIGILL
2022-10-11 21:56:13 +01:00
sudo
sudo: update 1.9.12p2 -> 1.9.13p3
2023-03-20 17:20:44 +00:00
sysklogd
sysklogd: nobranch in SRC_URI is no longer necessary
2022-03-09 11:46:27 +00:00
sysstat
sysstat: Fix CVE-2023-33204
2023-06-14 04:16:59 -10:00
tar
tar: CVE-2022-48303
2023-02-24 16:41:46 +00:00
tcp-wrappers
tcp-wrappers: Fix implicit-function-declaration warnings
2022-08-28 07:51:30 +01:00
texinfo
meta/meta-selftest/meta-skeleton: Update LICENSE variable to use SPDX license identifiers
2022-02-20 16:45:25 +00:00
texinfo-dummy-native
meta/recipes-extended: Add HOMEPAGE / DESCRIPTION
2021-03-06 22:39:04 +00:00
time
meta/meta-selftest/meta-skeleton: Update LICENSE variable to use SPDX license identifiers
2022-02-20 16:45:25 +00:00
timezone
tzcode-native: fix build with gcc-13 on host
2023-03-28 22:31:54 +01:00
unzip
unzip: Port debian fixes for two CVEs
2022-07-08 08:27:15 +01:00
watchdog
watchdog: Include needed system header for function decls
2022-09-03 13:09:49 +01:00
wget
wget: upgrade 1.21.2 -> 1.21.3
2022-03-02 18:43:24 +00:00
which
meta/meta-selftest/meta-skeleton: Update LICENSE variable to use SPDX license identifiers
2022-02-20 16:45:25 +00:00
xdg-utils
xdg-utils: Add fix for CVE-2020-27748
2021-09-04 08:44:11 +01:00
xinetd
xinetd: Pass missing -D_GNU_SOURCE
2022-09-03 13:09:49 +01:00
xz
xz: update 5.2.5 -> 5.2.6
2022-08-31 16:54:17 +01:00
zip
zip/unzip: mark all submittable patches as Inactive-Upstream
2022-06-11 10:06:13 +01:00
zstd
zstd: add libzstd package
2022-03-29 15:59:28 +01:00