Archana Polampalli 5f8155aefa go: fix CVE-2025-58189 ...

When Conn.Handshake fails during ALPN negotiation the error contains attacker controlled
information (the ALPN protocols sent by the client) which is not escaped.

(From OE-Core rev: b3f055df67cf345c9a17c5c1c874c778d538ba9e)

Signed-off-by: Archana Polampalli <archana.polampalli@windriver.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>

2025-12-05 06:56:34 -08:00

..

classes

goarch.bbclass: do not leak TUNE_FEATURES into crosssdk task signatures

2025-11-19 08:21:24 -08:00

conf

conf/bitbake.conf: use gnu mirror instead of main server

2025-10-14 07:20:36 -07:00

files

meta: Enable '-o pipefail' for the SDK installer

2025-03-04 08:46:02 -08:00

lib

oeqa/sdk/cases/buildcpio.py: use gnu mirror instead of main server

2025-10-14 07:20:36 -07:00

recipes-bsp

efibootmgr: update SRC_URI branch

2025-11-19 08:21:24 -08:00

recipes-connectivity

bind: upgrade 9.18.33 -> 9.18.41

2025-11-06 07:14:05 -08:00

recipes-core

musl: patch CVE-2025-26519

2025-11-24 06:57:39 -08:00

recipes-devtools

go: fix CVE-2025-58189

2025-12-05 06:56:34 -08:00

recipes-example/rust-hello-world

rustfmt: remove the recipe

2021-12-08 20:22:11 +00:00

recipes-extended

libarchive: patch CVE-2025-60753

2025-12-01 06:50:49 -08:00

recipes-gnome

Don't use ftp.gnome.org

2025-11-06 07:14:05 -08:00

recipes-graphics

xwayland: Fix for CVE-2025-62231

2025-11-24 06:57:39 -08:00

recipes-kernel

babeltrace2: fetch with https protocol

2025-11-19 08:21:24 -08:00

recipes-multimedia

libpng: patch CVE-2025-65018

2025-12-05 06:56:34 -08:00

recipes-rt

meta/recipes: python 3.12 regex

2024-03-01 05:19:54 -10:00

recipes-sato

puzzles: ignore three new CVEs for a different puzzles

2025-03-19 07:13:17 -07:00

recipes-support

gnutls: patch CVE-2025-9820

2025-12-05 06:56:34 -08:00

site

ppc/siteinfo: Fix differences between musl and glibc

2022-03-15 08:40:09 +00:00

COPYING.MIT

…

recipes.txt

Remove LSB support

2019-08-29 14:05:12 +01:00