mirrors/poky
1
0
Fork 0
mirror of https://git.yoctoproject.org/poky synced 2026-06-30 02:13:38 +02:00
Code Issues Packages Projects Releases Wiki Activity
Files
e61bf028a62ff6f3396dfc5d84a3024769ee74a5
poky/meta
History
Sudhir Dumbhare e61bf028a6 python3: Fix CVE-2025-13462 
Apply the upstream v3.12 fix [1], aligned with the original v3.13 fix [2],
to address incorrect tarfile handling where GNU long name follow-up headers
could be normalized as directories, as referenced in [3].

[1] d10950739a
[2] ae99fe3a33
[3] https://security-tracker.debian.org/tracker/CVE-2025-13462

Reference:
https://nvd.nist.gov/vuln/detail/CVE-2025-13462

(From OE-Core rev: 0b990a354ef858d903d4bed937b1233537c2c478)

Signed-off-by: Sudhir Dumbhare <sudumbha@cisco.com>
Signed-off-by: Yoann Congal <yoann.congal@smile.fr>
Signed-off-by: Paul Barker <paul@pbarker.dev>
2026-06-26 16:55:53 +01:00
..
classes
meta/lib/oe/package.py: fix path to kernel sources in save_debugsources_info
2026-06-16 20:42:20 +01:00
classes-global
classes/base: prefer gnu-prefixed HOSTTOOLS
2026-06-10 14:35:20 +01:00
classes-recipe
python_setuptools_build_meta: clean the build directory in configure
2026-06-19 12:49:08 +01:00
conf
conf/machine: fix typos in ARM and x86 README files
2026-06-19 12:49:07 +01:00
files
meta/files/layers.example.json: switch to https clone URIs
2026-05-04 13:57:32 +01:00
lib
meta: fix generation of kernel CONFIG_ in SPDX3
2026-06-19 12:49:07 +01:00
recipes-bsp
grub: update search parameter
2026-05-12 21:31:34 +01:00
recipes-connectivity
openssh: fix CVE-2026-35386
2026-06-26 16:55:53 +01:00
recipes-core
util-linux: Fix CVE-2026-27456
2026-06-16 20:42:19 +01:00
recipes-devtools
python3: Fix CVE-2025-13462
2026-06-26 16:55:53 +01:00
recipes-extended
xz: Fix CVE-2026-34743
2026-06-16 20:42:19 +01:00
recipes-gnome
gdk-pixbuf: Fix CVE-2026-5201
2026-05-12 21:31:34 +01:00
recipes-graphics
xserver-xorg: Fix CVE-2026-34003
2026-06-19 12:49:08 +01:00
recipes-kernel
linux-yocto/6.6: update CVE exclusions (6.6.127)
2026-06-10 14:35:21 +01:00
recipes-multimedia
tiff: fix CVE-2026-4775
2026-06-26 16:55:53 +01:00
recipes-rt
rt-tests: rt_bmark.py: fix TypeError
2024-08-06 19:11:18 -07:00
recipes-sato
webkitgtk: upgrade 2.44.3 -> 2.44.4
2025-11-14 06:45:29 -08:00
recipes-support
gnupg: upgrade 2.4.8 -> 2.4.9
2026-06-10 14:35:20 +01:00
site
site: remove at-spi2-core values
2023-09-02 07:45:29 +01:00
COPYING.MIT
recipes.txt
Remove LSB support
2019-08-29 14:05:12 +01:00