mirrors/poky
1
0
Fork 0
mirror of https://git.yoctoproject.org/poky synced 2026-04-18 03:32:13 +02:00
Code Issues Packages Projects Releases Wiki Activity
Files
df2f696e68812689366447278d12ceb5ccdbbea8
poky/meta
History
Archana Polampalli df2f696e68 openssh: fix CVE-2023-51385 
In ssh in OpenSSH before 9.6, OS command injection might occur if a user name or
host name has shell metacharacters, and this name is referenced by an expansion
token in certain situations. For example, an untrusted Git repository can have a
submodule with shell metacharacters in a user name or host name.

References:
https://nvd.nist.gov/vuln/detail/CVE-2023-51385

Upstream patches:
7ef3787c84

(From OE-Core rev: 617640bd045f07b0870dc9f3bc838b3a9fbc3de7)

Signed-off-by: Archana Polampalli <archana.polampalli@windriver.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2024-01-04 05:00:13 -10:00
..
classes
testimage: Exclude wtmp from target-dumper commands
2023-12-22 16:36:55 -10:00
conf
yocto-uninative: Update to 4.3
2023-09-18 04:28:04 -10:00
files
classes: files: Extend overlayfs-etc class
2022-10-29 16:32:24 +01:00
lib
goarch: Move Go architecture mapping to a library
2023-11-28 05:00:32 -10:00
recipes-bsp
grub: fix CVE-2023-4693
2023-12-02 16:36:56 -10:00
recipes-connectivity
openssh: fix CVE-2023-51385
2024-01-04 05:00:13 -10:00
recipes-core
build-appliance-image: Update to kirkstone head revision
2023-12-15 04:03:05 -10:00
recipes-devtools
python3-ptest: skip test_storlines
2023-12-22 16:36:55 -10:00
recipes-example/rust-hello-world
rustfmt: remove the recipe
2021-12-08 20:22:11 +00:00
recipes-extended
ghostscript: Backport fix for CVE-2023-46751
2023-12-22 16:36:54 -10:00
recipes-gnome
librsvg: 2.52.7 -> 2.52.10
2023-08-26 04:24:02 -10:00
recipes-graphics
xwayland: fix CVE-2023-5367
2023-12-12 04:20:34 -10:00
recipes-kernel
cve-exclusion_5.10.inc: update for 5.10.202
2023-12-12 04:20:34 -10:00
recipes-multimedia
ffmpeg: fix for CVE-2022-3965
2023-12-22 16:36:55 -10:00
recipes-rt
meta/meta-selftest/meta-skeleton: Update LICENSE variable to use SPDX license identifiers
2022-02-20 16:45:25 +00:00
recipes-sato
webkitgtk: fix CVE-2023-32439
2023-09-30 09:43:59 -10:00
recipes-support
curl: Fix CVE-2023-46218
2023-12-22 16:36:54 -10:00
site
ppc/siteinfo: Fix differences between musl and glibc
2022-03-15 08:40:09 +00:00
COPYING.MIT
recipes.txt
Remove LSB support
2019-08-29 14:05:12 +01:00