mirrors/poky
1
0
Fork 0
mirror of https://git.yoctoproject.org/poky synced 2026-04-16 15:32:13 +02:00
Code Issues Packages Projects Releases Wiki Activity
50,268 Commits 38 Branches 623 Tags
7ff0775d278ff9f2cdb4a2155342a320287b9a43
Go to file
Clone
Open with VS Code Open with VSCodium Open with Intellij IDEA
Download ZIP Download TAR.GZ Download BUNDLE
Andre McCurdy 7ff0775d27 cpio: fix CVE-2016-2037 
"The cpio_safer_name_suffix function in util.c in cpio 2.11 allows
remote attackers to cause a denial of service (out-of-bounds write)
via a crafted cpio file."

  https://nvd.nist.gov/vuln/detail/CVE-2016-2037

Note that there appear to be two versions of this fix. The original
patch posted to the bug-cpio mailing list [1] is used by Debian [2],
but apparently causes regression [3]. The patch accepted to the
upstream git repo [4] seems to be the most complete fix.

  [1] https://lists.gnu.org/archive/html/bug-cpio/2016-01/msg00005.html
  [2] https://security-tracker.debian.org/tracker/CVE-2016-2037
  [3] https://www.mail-archive.com/bug-cpio@gnu.org/msg00584.html
  [4] http://git.savannah.gnu.org/cgit/cpio.git/commit/?id=d36ec5f4e93130efb24fb9678aafd88e8070095b

(From OE-Core rev: f170288ac706126e69a504a14d564b2e5c3513e4)

(From OE-Core rev: 5f9d19c53c7704bb8d14f3f7dc36fe54fa501e67)

Signed-off-by: Andre McCurdy <armccurdy@gmail.com>
Signed-off-by: Ross Burton <ross.burton@intel.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
(cherry picked from commit 31a87d4d1d)
Signed-off-by: Armin Kuster <akuster808@gmail.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
2018-07-02 11:41:26 +01:00
bitbake
bitbake: bitbake: Update version to stable release branch version 1.38
2018-06-06 13:35:10 +01:00
documentation
sdk-manual: Updates to Depolying and Debugging
2018-06-28 09:23:04 +01:00
meta
cpio: fix CVE-2016-2037
2018-07-02 11:41:26 +01:00
meta-poky
poky.conf: Bump version for 2.5 sumo release
2018-04-23 17:51:10 +01:00
meta-selftest
oeqa/runtime/cases/dnf_runtime.py: skip test if PACKAGE_FEED_URIS is not set
2018-07-02 11:41:25 +01:00
meta-skeleton
hello-mod_0.1.bb: add RPROVIDES
2018-04-07 11:44:50 +01:00
meta-yocto-bsp
layer.conf: Update LAYERSERIES rocko -> sumo
2018-04-06 11:39:49 +01:00
scripts
wic/bootimg-efi.py: recognize initrd when using grub
2018-07-02 11:41:25 +01:00
.gitignore
gitignore: ignore bitbake documentation build products
2018-03-28 12:50:25 +01:00
.templateconf
meta-yocto: Rename to meta-poky to better match its purpose
2016-02-28 11:31:17 +00:00
LICENSE
Fix license notices for OE-Core
2014-01-02 12:58:54 +00:00
oe-init-build-env
oe-init-build-env-memres: Drop it
2017-07-21 08:44:25 +01:00
README.hardware
meta-yocto: Restructure and tidy up READMEs
2017-09-14 13:36:22 +01:00
README.LSB
pax: remove the recipe
2018-02-24 10:31:45 +00:00
README.poky
meta-yocto: Restructure and tidy up READMEs
2017-09-14 13:36:22 +01:00
README.qemu
README.qemu: qemuppc64 is not supported
2017-10-16 23:54:31 +01:00

README.qemu 

QEMU Emulation Targets
======================

To simplify development, the build system supports building images to
work with the QEMU emulator in system emulation mode. Several architectures
are currently supported in 32 and 64 bit variants:

  * ARM (qemuarm + qemuarm64)
  * x86 (qemux86 + qemux86-64)
  * PowerPC (qemuppc only)
  * MIPS (qemumips + qemumips64)

Use of the QEMU images is covered in the Yocto Project Reference Manual.
The appropriate MACHINE variable value corresponding to the target is given
in brackets.
Description
No description provided
Readme 252 MiB