mirrors/poky
1
0
Fork 0
mirror of https://git.yoctoproject.org/poky synced 2026-05-04 22:39:49 +02:00
Code Issues Packages Projects Releases Wiki Activity
Files
2ffce31116b75d4d871cfcfeea3ed87020b1c2eb
poky/meta/recipes-extended
History
Polampalli, Archana bbc86eab13 libpam: fix CVE-2022-28321 
The Linux-PAM package before 1.5.2-6.1 for openSUSE Tumbleweed allows
authentication bypass for SSH logins. The pam_access.so module doesn't
correctly restrict login if a user tries to connect from an IP address
that is not resolvable via DNS. In such conditions, a user with denied
access to a machine can still get access. NOTE: the relevance of this
issue is largely limited to openSUSE Tumbleweed and openSUSE Factory;
it does not affect Linux-PAM upstream.

References:
https://nvd.nist.gov/vuln/detail/CVE-2022-28321

Upstream patches:
08992030c5
23393bef92

(From OE-Core rev: 6f3744b71abe9d6be9cc4799e00af4f85166d01d)

Signed-off-by: Archana Polampalli <archana.polampalli@windriver.com>
Signed-off-by: Alexandre Belloni <alexandre.belloni@bootlin.com>
(cherry picked from commit b1fd799af0086347de1ec4b72d562b1fb490def1)
Signed-off-by: Steve Sakoman <steve@sakoman.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
2022-12-07 15:02:50 +00:00
..
acpica
acpica: upgrade 20211217 -> 20220331
2022-04-19 14:14:10 +01:00
asciidoc
asciidoc: upgrade 10.1.4 -> 10.2.0
2022-05-31 15:24:18 +01:00
at
at: take tarballs from debian
2022-06-28 12:55:26 +01:00
bash
bash: submit patch upstream
2022-05-27 23:50:47 +01:00
bc
meta/meta-selftest/meta-skeleton: Update LICENSE variable to use SPDX license identifiers
2022-02-20 16:45:25 +00:00
blktool
meta/meta-selftest/meta-skeleton: Update LICENSE variable to use SPDX license identifiers
2022-02-20 16:45:25 +00:00
bzip2
meta/meta-selftest/meta-skeleton: Update LICENSE variable to use SPDX license identifiers
2022-02-20 16:45:25 +00:00
cpio
meta/scripts: Automated conversion of OE renamed variables
2022-02-21 23:37:27 +00:00
cracklib
cracklib: upgrade 2.9.7 -> 2.9.8
2022-09-08 14:59:39 +01:00
cronie
meta: fix version checks in all github recipes using the github-releases class
2022-09-28 08:01:10 +01:00
cups
meta: fix version checks in all github recipes using the github-releases class
2022-09-28 08:01:10 +01:00
cwautomacros
meta/meta-selftest/meta-skeleton: Update LICENSE variable to use SPDX license identifiers
2022-02-20 16:45:25 +00:00
diffutils
diffutils: Fix build on ppc/musl
2022-03-29 15:59:28 +01:00
ed
meta/meta-selftest/meta-skeleton: Update LICENSE variable to use SPDX license identifiers
2022-02-20 16:45:25 +00:00
ethtool
ethtool: upgrade 5.18 -> 5.19
2022-09-01 10:14:01 +01:00
findutils
meta, meta-selftest: Replace more non-SPDX license identifiers
2022-03-01 23:44:59 +00:00
gawk
meta, meta-selftest: Replace more non-SPDX license identifiers
2022-03-01 23:44:59 +00:00
ghostscript
ghostscript: remove unneeded patch
2022-09-02 15:58:25 +01:00
go-examples
go-helloworld: remove unused GO_WORKDIR
2022-04-29 17:54:25 +01:00
gperf
gperf: Switch to upstream patch
2022-07-09 20:58:35 +01:00
grep
grep: Fix build on ppc/musl
2022-03-29 15:59:28 +01:00
groff
groff: submit patches upstream
2022-11-24 15:30:06 +00:00
gzip
gzip: upgrade 1.11 -> 1.12
2022-04-10 08:31:17 +01:00
hdparm
hdparm: Fix build with glibc 2.36
2022-08-02 11:30:00 +01:00
images
core-image-testmaster: Rename to core-image-testcontroller
2022-02-20 16:45:25 +00:00
iptables
iptables: upgrade 1.8.7 -> 1.8.8
2022-05-20 22:52:22 +01:00
iputils
meta/scripts: Automated conversion of OE renamed variables
2022-02-21 23:37:27 +00:00
less
less: upgrade 600 -> 608
2022-09-21 20:19:53 +01:00
libaio
libaio: upgrade 0.3.112 -> 0.3.113
2022-04-19 14:14:12 +01:00
libarchive
libarchive: Avoid mount.h conflict between kernel and glibc
2022-08-02 11:29:59 +01:00
libidn
libidn2: upgrade 2.3.2 -> 2.3.3
2022-07-23 13:55:26 +01:00
libmnl
libmnl: remove unneeded SRC_URI 'name' option
2022-08-10 08:25:28 +01:00
libnsl
meta/meta-selftest/meta-skeleton: Update LICENSE variable to use SPDX license identifiers
2022-02-20 16:45:25 +00:00
libnss-nis
meta/meta-selftest/meta-skeleton: Update LICENSE variable to use SPDX license identifiers
2022-02-20 16:45:25 +00:00
libpipeline
libpipeline: upgrade 1.5.5 -> 1.5.6
2022-05-05 21:17:37 +01:00
libsolv
libsolv: upgrade 0.7.21 -> 0.7.22
2022-03-23 12:13:50 +00:00
libtirpc
libtirpc: Mark CVE-2021-46828 as resolved
2022-08-23 15:24:11 +01:00
lighttpd
lighttpd: upgrade 1.4.66 -> 1.4.67
2022-11-09 17:42:13 +00:00
logrotate
meta: fix version checks in all github recipes using the github-releases class
2022-09-28 08:01:10 +01:00
lsb
meta/meta-selftest/meta-skeleton: Update LICENSE variable to use SPDX license identifiers
2022-02-20 16:45:25 +00:00
lsof
lsof: update 4.94.0 -> 4.95.0
2022-05-05 21:17:38 +01:00
ltp
ltp: Update list of tests not buildable on musl
2022-09-05 08:53:22 +01:00
lzip
meta/meta-selftest/meta-skeleton: Update LICENSE variable to use SPDX license identifiers
2022-02-20 16:45:25 +00:00
man-db
man-db: upgrade 2.10.1 -> 2.10.2
2022-03-23 12:13:50 +00:00
man-pages
man-pages: add an alternative link name for crypt_r.3
2022-05-21 08:37:30 +01:00
mc
mc: submit perl warnings patch upstream
2022-09-02 15:58:25 +01:00
mdadm
mdadm: Drop clang specific cflags
2022-04-19 14:14:11 +01:00
mingetty
meta/meta-selftest/meta-skeleton: Update LICENSE variable to use SPDX license identifiers
2022-02-20 16:45:25 +00:00
minicom
meta/meta-selftest/meta-skeleton: Update LICENSE variable to use SPDX license identifiers
2022-02-20 16:45:25 +00:00
msmtp
msmtp: upgrade 1.8.20 -> 1.8.22
2022-08-17 19:57:32 +01:00
net-tools
meta/meta-selftest/meta-skeleton: Update LICENSE variable to use SPDX license identifiers
2022-02-20 16:45:25 +00:00
newt
meta/meta-selftest/meta-skeleton: Update LICENSE variable to use SPDX license identifiers
2022-02-20 16:45:25 +00:00
packagegroups
packagegroup-core-full-cmdline: Drop compatibility mappings
2021-11-13 16:11:27 +00:00
pam
libpam: fix CVE-2022-28321
2022-12-07 15:02:50 +00:00
parted
udev-extraconf/initrdscripts/parted: Rename mount.blacklist -> mount.ignorelist
2022-05-20 22:52:22 +01:00
pbzip2
Convert to new override syntax
2021-08-02 15:44:10 +01:00
perl
meta/meta-selftest/meta-skeleton: Update LICENSE variable to use SPDX license identifiers
2022-02-20 16:45:25 +00:00
pigz
pigz: upgrade 2.6 -> 2.7
2022-01-20 11:57:29 +00:00
procps
procps: restrict version check to 3.x
2022-07-08 00:09:42 +01:00
psmisc
psmisc: upgrade 23.4 -> 23.5
2022-05-20 22:52:23 +01:00
quota
meta/meta-selftest/meta-skeleton: Update LICENSE variable to use SPDX license identifiers
2022-02-20 16:45:25 +00:00
rpcbind
rpcbind: install rpcbind.conf
2021-11-13 16:11:28 +00:00
rpcsvc-proto
rpcsvc-proto: upgrade 1.4.2 -> 1.4.3
2022-01-20 11:57:29 +00:00
rust-example
rust-hello-world: move to recipes-extended
2022-09-13 10:36:50 +01:00
screen
screen: Add missing include files in configure checks
2022-08-17 19:57:32 +01:00
sed
sed: Specify shell for "nobody" user in run-ptest
2022-04-30 22:00:20 +01:00
shadow
shadow: update 4.12.1 -> 4.12.3
2022-11-14 15:59:15 +00:00
slang
slang: update 2.3.2 -> 2.3.3
2022-08-21 22:51:42 +01:00
stress-ng
stress-ng: Upgrade to 0.14.03
2022-08-08 15:44:21 +01:00
sudo
sudo: upgrade 1.9.11p3 -> 1.9.12p1
2022-11-24 15:30:06 +00:00
sysklogd
sysklogd: upgrade 2.4.2 -> 2.4.4
2022-08-21 22:51:42 +01:00
sysstat
sysstat: upgrade 12.6.0 -> 12.6.1
2022-12-01 19:35:11 +00:00
tar
meta/meta-selftest/meta-skeleton: Update LICENSE variable to use SPDX license identifiers
2022-02-20 16:45:25 +00:00
tcp-wrappers
tcp-wrappers: Fix implicit-function-declaration warnings
2022-08-10 08:25:28 +01:00
texinfo
meta/meta-selftest/meta-skeleton: Update LICENSE variable to use SPDX license identifiers
2022-02-20 16:45:25 +00:00
texinfo-dummy-native
meta/recipes-extended: Add HOMEPAGE / DESCRIPTION
2021-03-06 22:39:04 +00:00
time
time: Add missing include for memset
2022-08-17 19:57:32 +01:00
timezone
tzdata: update to 2022d
2022-09-29 21:15:50 +01:00
unzip
unzip: Always enable largefile support
2022-08-16 14:57:58 +01:00
watchdog
watchdog: Remove unneeded tirpc dependency
2022-09-13 10:36:50 +01:00
wget
wget: upgrade 1.21.2 -> 1.21.3
2022-03-02 18:43:24 +00:00
which
meta/meta-selftest/meta-skeleton: Update LICENSE variable to use SPDX license identifiers
2022-02-20 16:45:25 +00:00
xdg-utils
xdg-utils: Add fix for CVE-2020-27748
2021-09-04 08:44:11 +01:00
xinetd
xinetd: Pass missing -D_GNU_SOURCE
2022-08-25 11:08:06 +01:00
xz
xz: update 5.2.5 -> 5.2.6
2022-08-21 22:51:42 +01:00
zip
zip: Always enable LARGE_FILE_SUPPORT
2022-08-16 14:57:58 +01:00
zstd
zstd: do verbose builds
2022-07-25 22:59:00 +01:00