mirrors/poky
1
0
Fork 0
mirror of https://git.yoctoproject.org/poky synced 2026-06-03 12:52:39 +02:00
Code Issues Packages Projects Releases Wiki Activity
Files
5ce2f71ca37512b64f14d9bcdc1ebedc24510db3
poky/meta
History
Stefan Ghinea 5ce2f71ca3 qemu: CVE-2020-10756 
An out-of-bounds read vulnerability was found in the SLiRP networking
implementation of the QEMU emulator. This flaw occurs in the
icmp6_send_echoreply() routine while replying to an ICMP echo request,
also known as ping. This flaw allows a malicious guest to leak the
contents of the host memory, resulting in possible information disclosure.
This flaw affects versions of libslirp before 4.3.1.

References:
https://nvd.nist.gov/vuln/detail/CVE-2020-10756
https://bugzilla.redhat.com/show_bug.cgi?id=1835986

Upstream patches:
c7ede54cbd

(From OE-Core rev: b6d73f9f8c055928051dc57943baf5833568d04f)

Signed-off-by: Stefan Ghinea <stefan.ghinea@windriver.com>
Signed-off-by: Anuj Mittal <anuj.mittal@intel.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
2020-09-10 13:21:41 +01:00
..
classes
pypi.bbclass: use new pypi UPSTREAM_CHECK_URI
2020-08-12 10:53:51 +01:00
conf
security_flags.inc: fix flags missing from SDK toolchain
2020-03-30 17:41:56 +01:00
files
files/toolchain-shar-extract.sh: Rework PATH cleaning
2020-09-10 13:21:40 +01:00
lib
oeqa/runtime_test: Disable test_testimage_virgl_gtk
2020-09-10 13:21:41 +01:00
recipes-bsp
u-boot-tools: Split out inc file
2020-04-17 08:29:02 +01:00
recipes-connectivity
wpa-supplicant: Security fix CVE-2020-12695
2020-08-04 23:17:37 +01:00
recipes-core
buildtools-extended-tarball: add nativesdk-libxcrypt-dev
2020-09-10 13:21:41 +01:00
recipes-devtools
qemu: CVE-2020-10756
2020-09-10 13:21:41 +01:00
recipes-extended
timezone: upgrade 2019c -> 2020a
2020-08-04 23:17:37 +01:00
recipes-gnome
gcr: depends on gnupg-native
2020-08-04 23:17:37 +01:00
recipes-graphics
xserver-xorg: Security Advisory - xserver-xorg - CVE-2020-14347
2020-09-10 13:21:41 +01:00
recipes-kernel
perf: Correct the substitution of python shebangs
2020-08-04 23:17:38 +01:00
recipes-multimedia
gstreamer1.0: fix builds with make 4.3
2020-08-04 23:17:38 +01:00
recipes-rt
world-broken.inc: Remove
2019-08-28 11:31:21 +01:00
recipes-sato
webkitgtk: fix occasional link error
2020-02-04 18:43:08 +00:00
recipes-support
acl: Disable parallel make install
2020-09-10 13:21:41 +01:00
site
siteinfo: Define data for ARC
2018-09-21 18:45:47 -07:00
COPYING.MIT
recipes.txt
Remove LSB support
2019-08-29 14:05:12 +01:00