mirrors/poky
1
0
Fork 0
mirror of https://git.yoctoproject.org/poky synced 2026-02-15 21:23:04 +01:00
Code Issues Packages Projects Releases Wiki Activity
59,515 Commits 38 Branches 617 Tags
8a3ec976528754e376da4251cd7dd6a0978519be
Go to file
Clone
Open with VS Code Open with VSCodium Open with Intellij IDEA
Download ZIP Download TAR.GZ Download BUNDLE
De Huo 8a3ec97652 bash: fix CVE-2019-18276 
An issue was discovered in disable_priv_mode in shell.c in GNU Bash
through 5.0 patch 11. By default, if Bash is run with its effective UID
not equal to its real UID, it will drop privileges by setting its
effective UID to its real UID. However, it does so incorrectly. On Linux
and other systems that support "saved UID" functionality, the saved UID
is not dropped. An attacker with command execution in the shell can use
"enable -f" for runtime loading of a new builtin, which can be a shared
object that calls setuid() and therefore regains privileges. However,
binaries running with an effective UID of 0 are unaffected.

Get the patch from [1] to fix the issue.

[1] https://git.savannah.gnu.org/cgit/bash.git/commit/?h=devel&id=951bdaa

(From OE-Core rev: 6f01acae9c279e0a580f46d1ba4c015caa3f8c2c)

Signed-off-by: De Huo <De.Huo@windriver.com>
Signed-off-by: Kai Kang <kai.kang@windriver.com>
Signed-off-by: Mingli Yu <mingli.yu@windriver.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
2020-09-24 22:32:49 +01:00
bitbake
bitbake: bitbake: siggen: clean_basepath: improve perfo and readability
2020-09-23 20:55:53 +01:00
contrib/artwork
oe.svg: Copy artwork from openembedded-classic.
2019-10-08 11:22:24 +01:00
documentation
sphinx: report errors when dependencies are not met
2020-09-22 09:58:50 +01:00
meta
bash: fix CVE-2019-18276
2020-09-24 22:32:49 +01:00
meta-poky
local.conf.sample.extended: remove help2man reference
2020-09-05 22:21:07 +01:00
meta-selftest
selftest/recipetool: Drop globbing SRC_URI test, no longer supported
2020-08-26 09:04:04 +01:00
meta-skeleton
baremetal-helloworld: Use baremetal-image class to deploy the application
2020-07-08 10:37:12 +01:00
meta-yocto-bsp
meta-yocto-bsp: Bump to the v5.8 kernel
2020-08-26 14:33:05 +01:00
scripts
qemuboot: Add QB_RNG variable
2020-09-24 22:32:49 +01:00
.gitignore
scripts/install-buildtools: improvements
2020-04-01 11:44:23 +01:00
.templateconf
meta-yocto: Rename to meta-poky to better match its purpose
2016-02-28 11:31:17 +00:00
LICENSE
meta/lib+scripts: Convert to SPDX license headers
2019-05-09 16:31:55 +01:00
LICENSE.GPL-2.0-only
meta/lib+scripts: Convert to SPDX license headers
2019-05-09 16:31:55 +01:00
LICENSE.MIT
meta/lib+scripts: Convert to SPDX license headers
2019-05-09 16:31:55 +01:00
MEMORIAM
MEMORIAM: Add recognition for contributors no longer with us
2020-01-30 15:22:35 +00:00
oe-init-build-env
meta/lib+scripts: Convert to SPDX license headers
2019-05-09 16:31:55 +01:00
README.hardware
meta-yocto: Restructure and tidy up READMEs
2017-09-14 13:36:22 +01:00
README.OE-Core
README: Rename to README.OE-Core so its clear where its from/belongs/is about
2019-03-06 23:09:10 +00:00
README.poky
meta-yocto: Restructure and tidy up READMEs
2017-09-14 13:36:22 +01:00
README.qemu
README.qemu: qemuppc64 is not supported
2017-10-16 23:54:31 +01:00

README.qemu 

QEMU Emulation Targets
======================

To simplify development, the build system supports building images to
work with the QEMU emulator in system emulation mode. Several architectures
are currently supported in 32 and 64 bit variants:

  * ARM (qemuarm + qemuarm64)
  * x86 (qemux86 + qemux86-64)
  * PowerPC (qemuppc only)
  * MIPS (qemumips + qemumips64)

Use of the QEMU images is covered in the Yocto Project Reference Manual.
The appropriate MACHINE variable value corresponding to the target is given
in brackets.
Description
No description provided
Readme 249 MiB