poky/recipes-extended at be95d5f93abf2bce807f33fa0d9ae38e49fdbcce - poky

mirror of https://git.yoctoproject.org/poky synced 2026-04-27 21:32:13 +02:00

Files

Polampalli, Archana c241999880 libpam: fix CVE-2022-28321

The Linux-PAM package before 1.5.2-6.1 for openSUSE Tumbleweed allows
authentication bypass for SSH logins. The pam_access.so module doesn't
correctly restrict login if a user tries to connect from an IP address
that is not resolvable via DNS. In such conditions, a user with denied
access to a machine can still get access. NOTE: the relevance of this
issue is largely limited to openSUSE Tumbleweed and openSUSE Factory;
it does not affect Linux-PAM upstream.

References:
https://nvd.nist.gov/vuln/detail/CVE-2022-28321

Upstream patches:
08992030c5
23393bef92

(From OE-Core rev: 399d4986a7707c081dd5da1991647cb02cbea69c)

Signed-off-by: Archana Polampalli <archana.polampalli@windriver.com>
Signed-off-by: Alexandre Belloni <alexandre.belloni@bootlin.com>
(cherry picked from commit b1fd799af0086347de1ec4b72d562b1fb490def1)
Signed-off-by: Steve Sakoman <steve@sakoman.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>

2022-12-07 15:02:45 +00:00

acpica

meta/meta-selftest/meta-skeleton: Update LICENSE variable to use SPDX license identifiers

2022-02-20 16:45:25 +00:00

asciidoc

meta: remove obsolete PIP_INSTALL_PACKAGE

2022-03-12 09:20:03 +00:00

at: take tarballs from debian

2022-07-08 08:27:16 +01:00

bash

bash: backport patch to fix CVE-2022-3715

2022-12-01 19:35:04 +00:00

meta/meta-selftest/meta-skeleton: Update LICENSE variable to use SPDX license identifiers

2022-02-20 16:45:25 +00:00

blktool

meta/meta-selftest/meta-skeleton: Update LICENSE variable to use SPDX license identifiers

2022-02-20 16:45:25 +00:00

bzip2

meta/meta-selftest/meta-skeleton: Update LICENSE variable to use SPDX license identifiers

2022-02-20 16:45:25 +00:00

cpio

meta/scripts: Automated conversion of OE renamed variables

2022-02-21 23:37:27 +00:00

cracklib

cracklib: upgrade 2.9.7 -> 2.9.8

2022-09-16 17:53:22 +01:00

cronie

cronie: upgrade 1.6.0 -> 1.6.1

2022-05-20 10:08:06 +01:00

cups

cups: ignore CVE-2022-26691

2022-07-08 08:27:16 +01:00

cwautomacros

meta/meta-selftest/meta-skeleton: Update LICENSE variable to use SPDX license identifiers

2022-02-20 16:45:25 +00:00

diffutils

diffutils: Fix build on ppc/musl

2022-03-29 15:59:28 +01:00

meta/meta-selftest/meta-skeleton: Update LICENSE variable to use SPDX license identifiers

2022-02-20 16:45:25 +00:00

ethtool

meta/meta-selftest/meta-skeleton: Update LICENSE variable to use SPDX license identifiers

2022-02-20 16:45:25 +00:00

findutils

meta, meta-selftest: Replace more non-SPDX license identifiers

2022-03-01 23:44:59 +00:00

gawk

meta, meta-selftest: Replace more non-SPDX license identifiers

2022-03-01 23:44:59 +00:00

ghostscript

ghostscript: fix CVE-2022-2085

2022-07-08 08:27:15 +01:00

go-examples

go-helloworld: remove unused GO_WORKDIR

2022-05-12 16:44:05 +01:00

gperf

gperf: Switch to upstream patch

2022-07-25 15:11:46 +01:00

grep

grep: Fix build on ppc/musl

2022-03-29 15:59:28 +01:00

groff

groff: submit patches upstream

2022-11-24 15:30:01 +00:00

gzip

gzip: upgrade 1.11 -> 1.12

2022-04-10 08:31:17 +01:00

hdparm

meta/meta-selftest/meta-skeleton: Update LICENSE variable to use SPDX license identifiers

2022-02-20 16:45:25 +00:00

images

core-image-testmaster: Rename to core-image-testcontroller

2022-02-20 16:45:25 +00:00

iptables

iptables: use nft backend with libnftnl PACKAGECONFIG

2022-03-18 23:32:46 +00:00

iputils

meta/scripts: Automated conversion of OE renamed variables

2022-02-21 23:37:27 +00:00

less

meta, meta-selftest: Replace more non-SPDX license identifiers

2022-03-01 23:44:59 +00:00

libaio

meta/meta-selftest/meta-skeleton: Update LICENSE variable to use SPDX license identifiers

2022-02-20 16:45:25 +00:00

libarchive

libarchive: Upgrade to 3.6.1

2022-04-12 09:11:09 +01:00

libidn

libidn2: add Unicode-DFS-2016 license

2022-04-14 09:47:00 +01:00

libmnl

meta/meta-selftest/meta-skeleton: Update LICENSE variable to use SPDX license identifiers

2022-02-20 16:45:25 +00:00

libnsl

meta/meta-selftest/meta-skeleton: Update LICENSE variable to use SPDX license identifiers

2022-02-20 16:45:25 +00:00

libnss-nis

meta/meta-selftest/meta-skeleton: Update LICENSE variable to use SPDX license identifiers

2022-02-20 16:45:25 +00:00

libpipeline

meta/meta-selftest/meta-skeleton: Update LICENSE variable to use SPDX license identifiers

2022-02-20 16:45:25 +00:00

libsolv

libsolv: upgrade 0.7.21 -> 0.7.22

2022-03-23 12:13:50 +00:00

libtirpc

libtirpc: CVE-2021-46828 DoS vulnerability with lots of connections

2022-08-04 16:29:15 +01:00

lighttpd

lighttpd: upgrade 1.4.66 -> 1.4.67

2022-11-10 14:39:24 +00:00

logrotate

logrotate: upgrade 3.19.0 -> 3.20.1

2022-06-11 10:06:13 +01:00

lsb

meta/meta-selftest/meta-skeleton: Update LICENSE variable to use SPDX license identifiers

2022-02-20 16:45:25 +00:00

lsof

recipes: Update github.com urls to use https

2021-11-03 10:12:42 +00:00

ltp

ltp: backport clock_gettime04 fix from upstream

2022-11-09 17:42:08 +00:00

lzip

meta/meta-selftest/meta-skeleton: Update LICENSE variable to use SPDX license identifiers

2022-02-20 16:45:25 +00:00

man-db

man-db: upgrade 2.10.1 -> 2.10.2

2022-03-23 12:13:50 +00:00

man-pages

meta/meta-selftest/meta-skeleton: Update LICENSE variable to use SPDX license identifiers

2022-02-20 16:45:25 +00:00

meta/meta-selftest/meta-skeleton: Update LICENSE variable to use SPDX license identifiers

2022-02-20 16:45:25 +00:00

mdadm

mdadm: Drop clang specific cflags

2022-04-28 17:07:18 +01:00

mingetty

meta/meta-selftest/meta-skeleton: Update LICENSE variable to use SPDX license identifiers

2022-02-20 16:45:25 +00:00

minicom

meta/meta-selftest/meta-skeleton: Update LICENSE variable to use SPDX license identifiers

2022-02-20 16:45:25 +00:00

msmtp

msmtp: upgrade 1.8.19 -> 1.8.20

2022-03-29 15:59:29 +01:00

net-tools

meta/meta-selftest/meta-skeleton: Update LICENSE variable to use SPDX license identifiers

2022-02-20 16:45:25 +00:00

newt

meta/meta-selftest/meta-skeleton: Update LICENSE variable to use SPDX license identifiers

2022-02-20 16:45:25 +00:00

packagegroups

packagegroup-core-full-cmdline: Drop compatibility mappings

2021-11-13 16:11:27 +00:00

pam

libpam: fix CVE-2022-28321

2022-12-07 15:02:45 +00:00

parted

udev-extraconf/initrdscripts/parted: Rename mount.blacklist -> mount.ignorelist

2022-07-25 15:11:46 +01:00

pbzip2

Convert to new override syntax

2021-08-02 15:44:10 +01:00

perl

meta/meta-selftest/meta-skeleton: Update LICENSE variable to use SPDX license identifiers

2022-02-20 16:45:25 +00:00

pigz

pigz: upgrade 2.6 -> 2.7

2022-01-20 11:57:29 +00:00

procps

meta/scripts: Automated conversion of OE renamed variables

2022-02-21 23:37:27 +00:00

psmisc

meta/meta-selftest/meta-skeleton: Update LICENSE variable to use SPDX license identifiers

2022-02-20 16:45:25 +00:00

quota

meta/meta-selftest/meta-skeleton: Update LICENSE variable to use SPDX license identifiers

2022-02-20 16:45:25 +00:00

rpcbind

rpcbind: install rpcbind.conf

2021-11-13 16:11:28 +00:00

rpcsvc-proto

rpcsvc-proto: upgrade 1.4.2 -> 1.4.3

2022-01-20 11:57:29 +00:00

screen

meta/meta-selftest/meta-skeleton: Update LICENSE variable to use SPDX license identifiers

2022-02-20 16:45:25 +00:00

sed

sed: Specify shell for "nobody" user in run-ptest

2022-05-20 10:08:06 +01:00

shadow

shadow: Avoid nss warning/error with musl

2022-09-03 13:09:49 +01:00

slang

meta/meta-selftest/meta-skeleton: Update LICENSE variable to use SPDX license identifiers

2022-02-20 16:45:25 +00:00

stress-ng

stress-cpu: disable float128 math on powerpc64 to avoid SIGILL

2022-10-11 21:56:13 +01:00

sudo

sudo: upgrade 1.9.10 -> sudo 1.9.12p1

2022-11-24 15:30:00 +00:00

sysklogd

sysklogd: nobranch in SRC_URI is no longer necessary

2022-03-09 11:46:27 +00:00

sysstat

sysstat: upgrade 12.4.4 -> 12.4.5

2022-03-02 18:43:24 +00:00

tar

meta/meta-selftest/meta-skeleton: Update LICENSE variable to use SPDX license identifiers

2022-02-20 16:45:25 +00:00

tcp-wrappers

tcp-wrappers: Fix implicit-function-declaration warnings

2022-08-28 07:51:30 +01:00

texinfo

meta/meta-selftest/meta-skeleton: Update LICENSE variable to use SPDX license identifiers

2022-02-20 16:45:25 +00:00

texinfo-dummy-native

meta/recipes-extended: Add HOMEPAGE / DESCRIPTION

2021-03-06 22:39:04 +00:00

time

meta/meta-selftest/meta-skeleton: Update LICENSE variable to use SPDX license identifiers

2022-02-20 16:45:25 +00:00

timezone

tzdata: update to 2022d

2022-10-11 21:56:13 +01:00

unzip

unzip: Port debian fixes for two CVEs

2022-07-08 08:27:15 +01:00

watchdog

watchdog: Include needed system header for function decls

2022-09-03 13:09:49 +01:00

wget

wget: upgrade 1.21.2 -> 1.21.3

2022-03-02 18:43:24 +00:00

which

meta/meta-selftest/meta-skeleton: Update LICENSE variable to use SPDX license identifiers

2022-02-20 16:45:25 +00:00

xdg-utils

xdg-utils: Add fix for CVE-2020-27748

2021-09-04 08:44:11 +01:00

xinetd

xinetd: Pass missing -D_GNU_SOURCE

2022-09-03 13:09:49 +01:00

xz: update 5.2.5 -> 5.2.6

2022-08-31 16:54:17 +01:00

zip

zip/unzip: mark all submittable patches as Inactive-Upstream

2022-06-11 10:06:13 +01:00

zstd

zstd: add libzstd package

2022-03-29 15:59:28 +01:00