Hongxu Jia 86f0ab4d07 u-boot: fix CVE-2024-57257 ...

A stack consumption issue in sqfs_size in Das U-Boot before 2025.01-rc1
occurs via a crafted squashfs filesystem with deep symlink nesting.

https://nvd.nist.gov/vuln/detail/CVE-2024-57257

(From OE-Core rev: 5ed8ad78bcce836aa8894de7a1d7fdf719e5bbca)

Signed-off-by: Hongxu Jia <hongxu.jia@windriver.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>

2025-02-28 06:51:35 -08:00

..

classes

classes-global/insane: Look up all runtime providers for file-rdeps

2025-02-15 06:04:44 -08:00

conf

gcc: upgrade to v11.5

2024-10-07 05:43:22 -07:00

files

toolchain-shar-extract.sh: exit when post-relocate-setup.sh fails

2024-11-27 06:27:26 -08:00

lib

lib/packagedata.py: Add API to iterate over rprovides

2025-02-15 06:04:44 -08:00

recipes-bsp

u-boot: fix CVE-2024-57257

2025-02-28 06:51:35 -08:00

recipes-connectivity

openssl: upgrade 3.0.15 -> 3.0.16

2025-02-15 06:04:44 -08:00

recipes-core

libxml2: Fix for CVE-2022-49043

2025-02-24 07:00:53 -08:00

recipes-devtools

ruby: fix CVE-2024-41946

2025-02-24 07:00:53 -08:00

recipes-example/rust-hello-world

rustfmt: remove the recipe

2021-12-08 20:22:11 +00:00

recipes-extended

procps: replaced one use of fputs(3) with a write(2) call

2025-02-24 07:00:54 -08:00

recipes-gnome

gcr: Fix LICENSE

2024-09-16 06:09:56 -07:00

recipes-graphics

xwayland: patch CVE-2023-5380 CVE-2024-0229

2025-01-09 08:41:03 -08:00

recipes-kernel

linux-yocto/5.15: update to v5.15.178

2025-02-15 06:04:44 -08:00

recipes-multimedia

ffmpeg: fix CVE-2024-36617

2025-02-24 07:00:53 -08:00

recipes-rt

meta/recipes: python 3.12 regex

2024-03-01 05:19:54 -10:00

recipes-sato

webkitgtk: Security fix for CVE-2024-40776 and CVE-2024-40780

2025-01-09 08:41:03 -08:00

recipes-support

gnutls: fix CVE-2024-12243

2025-02-24 07:00:53 -08:00

site

ppc/siteinfo: Fix differences between musl and glibc

2022-03-15 08:40:09 +00:00

COPYING.MIT

…

recipes.txt

Remove LSB support

2019-08-29 14:05:12 +01:00