Files
poky/meta/recipes-extended
Mikko Rapeli 615cb60fd4 zip: whitelist CVE-2018-13410 and CVE-2018-13684
https://nvd.nist.gov/vuln/detail/CVE-2018-13410 is disputed and
also Debian considers it not a vulnerability:

https://security-tracker.debian.org/tracker/CVE-2018-13410

http://seclists.org/fulldisclosure/2018/Jul/24
"Negligible security impact, would involve that a untrusted party controls the -TT value."

https://nvd.nist.gov/vuln/detail/CVE-2018-13684 is not for zip, also Debian concludes this:

https://security-tracker.debian.org/tracker/CVE-2018-13684

"NOT-FOR-US: smart contract implementation for ZIP"

(From OE-Core rev: 06b72a91b6dcf63fed437fd2105c59e922ba6525)

Signed-off-by: Mikko Rapeli <mikko.rapeli@bmw.de>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
2021-01-16 22:39:36 +00:00
..
2020-11-03 08:21:12 +00:00
2019-08-21 21:52:59 +01:00
2020-12-18 22:52:24 +00:00
2019-07-02 08:13:07 +01:00
2019-03-29 08:28:53 +00:00
2020-12-18 22:52:24 +00:00
2020-07-03 11:38:24 +01:00
2019-12-15 09:10:46 +00:00
2021-01-13 23:13:46 +00:00
2020-12-30 14:01:06 +00:00
2020-12-31 11:53:26 +00:00
2020-12-18 22:52:24 +00:00
2020-12-21 22:29:57 +00:00
2020-11-29 20:24:32 +00:00
2020-11-03 08:21:12 +00:00
2020-11-03 08:21:11 +00:00
2020-12-15 22:51:56 +00:00
2020-02-25 10:41:22 +00:00
2020-07-18 11:06:32 +01:00
2019-08-22 22:48:26 +01:00
2020-11-03 08:21:12 +00:00
2020-12-30 14:01:06 +00:00
2019-02-19 16:14:57 +00:00
2021-01-03 08:58:26 +00:00
2021-01-08 10:10:15 +00:00
2020-08-25 16:00:10 +01:00
2020-12-30 14:01:07 +00:00
2021-01-13 23:13:46 +00:00
2020-12-09 12:20:32 +00:00
2020-02-21 17:48:08 +00:00
2020-12-18 22:52:24 +00:00
2019-06-07 09:11:49 +01:00
2021-01-10 12:34:40 +00:00
2019-12-09 12:00:43 +00:00
2018-05-04 13:28:05 +01:00
2021-01-05 13:48:41 +00:00
2019-09-30 16:55:21 +01:00
2020-05-09 18:57:21 +01:00
2020-06-09 13:14:00 +01:00
2020-05-19 22:57:27 +01:00
2020-12-30 14:01:07 +00:00