mirrors/poky
1
0
Fork 0
mirror of https://git.yoctoproject.org/poky synced 2026-04-28 15:32:27 +02:00
Code Issues Packages Projects Releases Wiki Activity
Files
23e7248bd1d5e643f7c88a1f1d8502ff534c6021
poky/meta/recipes-core
History
Soumya Sambu 23e7248bd1 ovmf: Fix CVE-2023-45234 
EDK2's Network Package is susceptible to a buffer overflow vulnerability
when processing DNS Servers option from a DHCPv6 Advertise message. This
vulnerability can be exploited by an attacker to gain unauthorized access
and potentially lead to a loss of Confidentiality, Integrity and/or
Availability.

References:
https://nvd.nist.gov/vuln/detail/CVE-2023-45234

Upstream-patches:
1b53515d53
458c582685

(From OE-Core rev: d9d9e66349ac0a2e58f54b104fb1b30f1633c1ab)

Signed-off-by: Soumya Sambu <soumya.sambu@windriver.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2024-12-09 07:54:03 -08:00
..
base-files
base-files: Drop localhost.localdomain from hosts file
2023-03-23 22:45:34 +00:00
base-passwd
base-passwd: Disable shell for default users
2022-05-20 10:08:06 +01:00
busybox
busybox: Fix cut with "-s" flag
2024-09-27 05:57:35 -07:00
coreutils
coreutils: fix CVE-2024-0684
2024-12-02 06:23:20 -08:00
dbus
dbus: Add missing CVE_PRODUCT
2024-03-07 08:32:54 -10:00
dbus-wait
meta/meta-selftest/meta-skeleton: Update LICENSE variable to use SPDX license identifiers
2022-02-20 16:45:25 +00:00
dropbear
dropbear: backport patch for CVE-2023-48795
2024-01-24 04:04:55 -10:00
ell
ell: upgrade 0.49 -> 0.50
2022-08-28 07:51:29 +01:00
expat
expat: patch CVE-2024-50602
2024-11-15 06:05:32 -08:00
fts
recipes: Update github.com urls to use https
2021-11-03 10:12:42 +00:00
gettext
gettext: add MIT conditional as license
2022-04-14 09:47:00 +01:00
glib-2.0
tzdata&tzcode-native: upgrade 2024a -> 2024b
2024-12-02 06:23:20 -08:00
glib-networking
glib-networking: upgrade 2.72.1 -> 2.72.2
2022-08-31 16:54:17 +01:00
glibc
glibc: stable 2.35 branch updates
2024-10-07 05:43:22 -07:00
ifupdown
ifupdown: upgrade 0.8.37 -> 0.8.39
2022-11-09 17:42:08 +00:00
images
build-appliance-image: Update to kirkstone head revision
2024-11-15 12:20:43 -08:00
init-ifupdown
meta/meta-selftest/meta-skeleton: Update LICENSE variable to use SPDX license identifiers
2022-02-20 16:45:25 +00:00
initrdscripts
udev-extraconf/initrdscripts/parted: Rename mount.blacklist -> mount.ignorelist
2022-07-25 15:11:46 +01:00
initscripts
initscripts: Add custom mount args for /var/lib
2024-05-29 05:24:08 -07:00
kbd
meta, meta-selftest: Replace more non-SPDX license identifiers
2022-03-01 23:44:59 +00:00
libcgroup
libcgroup: upgrade 2.0.1 -> 2.0.2
2022-05-28 10:38:17 +01:00
libxcrypt
libxcrypt: update PV to match SRCREV
2023-08-19 05:56:59 -10:00
libxml
libxml2: Security fix for CVE-2024-34459
2024-06-26 05:04:39 -07:00
meta
cve_check: Use a local copy of the database during builds
2024-11-11 06:19:18 -08:00
musl
gcompat: Fix build when usrmerge distro feature is enabled
2022-05-04 13:07:33 +01:00
ncurses
ncurses: Fix CVE-2023-45918
2024-05-15 09:44:14 -07:00
netbase
meta/meta-selftest/meta-skeleton: Update LICENSE variable to use SPDX license identifiers
2022-02-20 16:45:25 +00:00
newlib
meta/meta-selftest/meta-skeleton: Update LICENSE variable to use SPDX license identifiers
2022-02-20 16:45:25 +00:00
os-release
os-release: add os-release-initrd package
2022-04-05 22:23:40 +01:00
ovmf
ovmf: Fix CVE-2023-45234
2024-12-09 07:54:03 -08:00
packagegroups
packagegroup-self-hosted: update for strace
2022-08-28 07:51:30 +01:00
psplash
psplash: consider the situation of psplash not exist for systemd
2022-12-13 15:23:34 +00:00
readline
meta, meta-selftest: Replace more non-SPDX license identifiers
2022-03-01 23:44:59 +00:00
seatd
seatd: Disable overflow warning as error on ppc64/musl
2022-05-04 13:07:33 +01:00
sysfsutils
sysfsutils: fetch a supported fork from github
2023-07-21 06:27:34 -10:00
systemd
systemd-systemctl: Fix WantedBy processing
2024-05-29 05:24:08 -07:00
sysvinit
sysvinit-inittab/start_getty: Fix respawn too fast
2022-08-31 16:54:17 +01:00
udev
udev-extraconf: fix network.sh script did not configure hotplugged interfaces
2024-11-27 06:27:26 -08:00
update-rc.d
meta/meta-selftest/meta-skeleton: Update LICENSE variable to use SPDX license identifiers
2022-02-20 16:45:25 +00:00
util-linux
util-linux: Define pidfd_* function signatures
2024-11-02 06:32:36 -07:00
volatile-binds
volatile-binds: Change DefaultDependencies from false to no
2022-05-12 16:44:05 +01:00
zlib
zlib: ignore CVE-2023-6992
2024-01-21 08:50:38 -10:00