mirrors/poky
1
0
Fork 0
mirror of https://git.yoctoproject.org/poky synced 2026-02-05 16:28:43 +01:00
Code Issues Packages Projects Releases Wiki Activity
Files
2dadccd9e67d831cfda17035472c41de484ed1c1
poky/meta/recipes-connectivity
History
Praveen Kumar edfc53d729 connman: Fix CVE-2025-32366 
In ConnMan through 1.44, parse_rr in dnsproxy.c has a memcpy length
that depends on an RR RDLENGTH value, i.e., *rdlen=ntohs(rr->rdlen)
and memcpy(response+offset,*end,*rdlen) without a check for whether
the sum of *end and *rdlen exceeds max. Consequently, *rdlen may be
larger than the amount of remaining packet data in the current state
of parsing. Values of stack memory locations may be sent over the
network in a response.

Reference:
https://nvd.nist.gov/vuln/detail/CVE-2025-32366

Upstream-patch:
https://git.kernel.org/pub/scm/network/connman/connman.git/commit/?id=8d3be0285f1d4667bfe85dba555c663eb3d704b4

(From OE-Core rev: 548eddd84f23c6cb0352b9a692144050da8ba37a)

Signed-off-by: Praveen Kumar <praveen.kumar@windriver.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
2025-05-19 17:35:42 +01:00
..
avahi
avahi: mark initscript.patch as Inappropriate
2025-04-10 11:05:34 +01:00
bind
bind: upgrade 9.20.7 -> 9.20.8
2025-05-13 10:29:20 +01:00
bluez5
bluez5: remove obsolete patch for test-gatt
2025-04-10 11:05:34 +01:00
connman
connman: Fix CVE-2025-32366
2025-05-19 17:35:42 +01:00
dhcpcd
dhcpcd: don't try to run autoreconf
2025-03-18 11:25:36 +00:00
inetutils
inetutils: upgrade 2.5 -> 2.6
2025-03-06 11:16:47 +00:00
iproute2
iproute2: upgrade 6.13.0 -> 6.14.0
2025-04-03 11:06:19 +01:00
iw
iw: Fix LICENSE
2024-09-01 12:32:37 +01:00
kea
kea: fix conflict between kea-dhcp6 multilibs
2025-03-20 11:29:03 +00:00
libpcap
libpcap: upgrade 1.10.4 -> 1.10.5
2024-09-03 10:21:38 +01:00
libuv
libuv: upgrade 1.50.0 -> 1.51.0
2025-05-13 10:29:21 +01:00
mobile-broadband-provider-info
mobile-broadband-provider-info: upgrade 20230416 -> 20240407
2024-05-30 09:04:14 +01:00
neard
recipes-connectivity: Drop dbus from RDEPENDS:${PN}
2025-04-01 22:05:54 +01:00
nfs-utils
nfs-utils: replace problematic pending patch with upstream submission
2025-04-10 11:05:34 +01:00
ofono
ofono: upgrade 2.15 -> 2.16
2025-04-03 11:06:20 +01:00
openssh
openssh: Upgrade 9.9p2 -> 10.0p1
2025-05-15 10:55:26 +01:00
openssl
openssl: add fips support
2025-05-15 10:55:26 +01:00
ppp
ppp: Fix build when shadow is enabled
2025-03-20 11:29:04 +00:00
ppp-dialin
recipes: Switch away from S = WORKDIR
2024-05-21 12:08:04 +01:00
resolvconf
resolvconf: upgrade 1.92 -> 1.93
2025-05-13 10:29:21 +01:00
slirp
libslirp: set the PV in the filename
2025-02-10 13:03:57 +00:00
socat
socat: upgrade 1.8.0.2 -> 1.8.0.3
2025-02-27 10:55:16 +00:00
ssh-pregen-hostkeys
recipes: Ensure S is set to a valid directory
2024-05-21 12:08:04 +01:00
wpa-supplicant
wpa-supplicant: Ignore CVE-2024-5290
2024-10-01 12:40:48 +01:00