mirrors/poky
1
0
Fork 0
mirror of https://git.yoctoproject.org/poky synced 2026-04-27 21:32:13 +02:00
Code Issues Packages Projects Releases Wiki Activity
Files
c0a199acdc31730bb09f9dbffdfba5b38b8d2b77
poky/meta/recipes-connectivity
History
Archana Polampalli df2f696e68 openssh: fix CVE-2023-51385 
In ssh in OpenSSH before 9.6, OS command injection might occur if a user name or
host name has shell metacharacters, and this name is referenced by an expansion
token in certain situations. For example, an untrusted Git repository can have a
submodule with shell metacharacters in a user name or host name.

References:
https://nvd.nist.gov/vuln/detail/CVE-2023-51385

Upstream patches:
7ef3787c84

(From OE-Core rev: 617640bd045f07b0870dc9f3bc838b3a9fbc3de7)

Signed-off-by: Archana Polampalli <archana.polampalli@windriver.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2024-01-04 05:00:13 -10:00
..
avahi
avahi: backport CVE-2023-1981 & CVE's follow-up patches
2023-12-15 04:00:33 -10:00
bind
bind: update to 9.18.19
2023-09-30 09:43:59 -10:00
bluez5
bluez5: fix CVE-2023-45866
2023-12-15 04:00:33 -10:00
connman
connman: fix warning by specifying runstatedir at configure time
2023-07-01 08:37:25 -10:00
dhcpcd
dhcpcd: use git instead of tarballs
2023-05-30 04:11:15 -10:00
inetutils
inetutils: Backport fix for CVE-2023-40303
2023-09-08 16:09:41 -10:00
iproute2
iproute2: upgrade 5.16.0 -> 5.17.0
2022-03-29 15:59:29 +01:00
iw
iw: upgrade 5.9 -> 5.16
2021-11-10 19:27:28 +00:00
kea
kea: submit patch upstream
2022-11-24 15:30:01 +00:00
libnss-mdns
meta/meta-selftest/meta-skeleton: Update LICENSE variable to use SPDX license identifiers
2022-02-20 16:45:25 +00:00
libpcap
libpcap: Disable DPDK explicitly
2022-02-12 17:05:35 +00:00
libuv
libuv: fixup SRC_URI
2022-11-24 15:30:01 +00:00
mobile-broadband-provider-info
mobile-broadband-provider-info: upgrade 20221107 -> 20230416
2023-07-01 08:37:24 -10:00
neard
neard: Switch SRC_URI to git repo
2022-05-04 13:07:34 +01:00
nfs-utils
meta/meta-selftest/meta-skeleton: Update LICENSE variable to use SPDX license identifiers
2022-02-20 16:45:25 +00:00
ofono
meta/meta-selftest/meta-skeleton: Update LICENSE variable to use SPDX license identifiers
2022-02-20 16:45:25 +00:00
openssh
openssh: fix CVE-2023-51385
2024-01-04 05:00:13 -10:00
openssl
openssl: fix CVE-2023-5678 Generating excessively long X9.42 DH keys or checking excessively long X9.42 DH keys or parameters may be very slow
2023-12-02 16:36:56 -10:00
ppp
ppp: backport fix for CVE-2022-4603
2023-02-04 23:32:20 +00:00
ppp-dialin
Convert to new override syntax
2021-08-02 15:44:10 +01:00
resolvconf
resolvconf: make it work
2022-12-07 15:02:45 +00:00
socat
socat: upgrade 1.7.4.3 -> 1.7.4.4
2022-11-24 15:30:00 +00:00
ssh-pregen-hostkeys
ssh-pregen-hostkeys: Add a recipe with pregenerated ssh host keys
2020-09-23 20:54:04 +01:00
wpa-supplicant
wpa-supplicant: update 2.9 -> 2.10
2022-02-01 07:31:18 +00:00