mirrors/meta-openembedded
1
0
Fork 0
mirror of https://github.com/openembedded/meta-openembedded.git synced 2026-06-13 17:39:57 +00:00
Code Issues Projects Releases Wiki Activity
Files
c4bcbae8349303eed4aa37e77e9e40455cf49e37
meta-openembedded/meta-oe/recipes-extended
T
History
Changqing Li 14b3caec6a libblockdev: fix CVE-2025-6019 
CVE-2025-6019:
A Local Privilege Escalation (LPE) vulnerability was found in
libblockdev. Generally, the "allow_active" setting in Polkit permits a
physically present user to take certain actions based on the session
type. Due to the way libblockdev interacts with the udisks daemon, an
"allow_active" user on a system may be able escalate to full root
privileges on the target host. Normally, udisks mounts user-provided
filesystem images with security flags like nosuid and nodev to prevent
privilege escalation. However, a local attacker can create a specially
crafted XFS image containing a SUID-root shell, then trick udisks into
resizing it. This mounts their malicious filesystem with root
privileges, allowing them to execute their SUID-root shell and gain
complete control of the system.

Refer:
https://cdn2.qualys.com/2025/06/17/suse15-pam-udisks-lpe.txt

Signed-off-by: Changqing Li <changqing.li@windriver.com>
Signed-off-by: Armin Kuster <akuster808@gmail.com>
2025-07-06 19:23:22 -04:00
..
7zip
bit7z: add ptest support
2025-04-07 12:21:23 -07:00
beep
beep: Upgrade to 1.4.12
2023-11-13 22:49:05 -08:00
bitwise
bitwise: Include UPSTREAM_CHECK_REGEX to fix UNKNOWN_BROKEN status
2024-07-24 08:56:29 -07:00
boinc
boinc-client: Fix contains reference to TMPDIR [buildpaths] warning
2024-06-28 11:22:01 -07:00
brotli
recipes: Fix variable assignment whitespace
2025-03-20 08:46:56 -07:00
byacc
byacc: upgrade 20230219 -> 20241231
2025-01-07 09:33:14 -08:00
canopenterm
canopenterm: 1.0.9 -> 1.0.10
2024-12-10 08:39:05 -08:00
cfengine
recipes: Fix variable assignment whitespace
2025-03-20 08:46:56 -07:00
cmatrix
cmatrix: Improve reproducibility patch to handle libdir!=/usr/lib
2025-04-12 11:27:20 -07:00
cmpi-bindings
cmpi-bindings: upgrade 1.0.4 -> 1.0.5
2025-03-20 09:04:50 -07:00
collectd
collectd: add PACKAGECONFIG for dpdk
2025-01-25 09:28:57 -08:00
ddrescue
ddrescue: upgrade 1.29 -> 1.29.1
2025-03-25 09:33:50 -07:00
dialog
dialogp: By default, dialog_1.3-20250116 renames /usr/bin/dialog to /usr/bin/${HOST_SYS}-dialog.
2025-03-06 06:58:00 -08:00
dlt-daemon
dlt-daemon: make DLT_WatchdogSec configurable
2025-01-24 18:20:04 -08:00
docopt.cpp
docopt.cpp: add support for native and nativesdk
2024-04-15 21:01:20 -07:00
duktape
duktape: include UPSTREAM_CHECK_URI to fix UNKNOWN_BROKEN status
2024-07-24 08:56:32 -07:00
dumb-init
enscript
enscript: fix error with gcc-15
2025-04-08 08:22:05 -07:00
etcd
recipes: Fix variable assignment whitespace
2025-03-20 08:46:56 -07:00
figlet
recipes: drop ${SRCPV} usage
2024-02-09 09:52:12 -08:00
flatpak
flatpak: update 1.15.10 -> 1.16.0
2025-02-24 21:31:38 -08:00
fluentbit
fluentbit: fix aws-error-reporter package config
2025-03-14 15:32:25 -07:00
gnuplot
gnuplot: add x11 PACKAGECONFIG
2025-02-28 18:48:27 -08:00
haveged
recipes: Fix variable assignment whitespace
2025-03-20 08:46:56 -07:00
hexedit
highway
highway: Drop forcing gcc-only toolchain
2024-10-04 23:54:29 -07:00
hiredis
hiredis: set rdepends on virtual-redis
2025-03-11 19:34:55 -07:00
hplip
recipes: Fix variable assignment whitespace
2025-01-31 10:34:03 -08:00
hwloc
hwloc: upgrade 2.9.2 -> 2.9.3
2023-09-20 15:34:03 -07:00
icewm
icewm: upgrade 3.7.2 -> 3.7.3
2025-04-07 07:39:10 -07:00
indent
Drop unnecessary SRC_URI md5sum from the recipes in meta-oe.
2024-11-05 19:19:22 -08:00
inputattach-config
recipes: set S to fix the QA warning
2024-06-21 21:45:10 -07:00
iotop
iotop: upgrade 1.26 -> 1.27
2025-01-24 18:20:00 -08:00
isomd5sum
isomd5sum: upgrade 1.2.4 -> 1.2.5
2024-07-01 08:01:58 -07:00
jansson
jansson: upgrade 2.14 -> 2.14.1
2025-03-31 14:42:07 -07:00
jpnevulator
recipes: drop ${SRCPV} usage
2024-02-09 09:52:12 -08:00
konkretcmpi
recipes: drop ld-is-gold support
2025-02-23 17:36:08 -08:00
libbacktrace
libbacktrace: include UPSTREAM_CHECK_COMMITS to fix UNKNOWN_BROKEN status
2024-08-09 14:25:09 -07:00
libblockdev
libblockdev: fix CVE-2025-6019
2025-07-06 19:23:22 -04:00
libcbor
libcbor: upgrade 0.11.0 -> 0.12.0
2025-03-25 09:33:51 -07:00
libcec
libcec: update 6.0.2 -> 7.0.0
2025-03-25 01:24:19 -07:00
libconfig
libconfig: fix build with gcc-15
2025-03-21 11:07:33 -07:00
libdeflate
libdeflate: fix build with -mcpu=cortex-a76+crypto without -march=armv8.2-a+crypto
2024-05-05 07:37:32 -07:00
libdivecomputer
libexecinfo
Drop unnecessary SRC_URI md5sum from the recipes in meta-oe.
2024-11-05 19:19:22 -08:00
libgxim
Drop unnecessary SRC_URI md5sum from the recipes in meta-oe.
2024-11-05 19:19:22 -08:00
libidn
libidn: upgrade 1.42 -> 1.43
2025-03-31 14:42:06 -07:00
libimobiledevice
libusbmuxd: upgrade 2.0.2 -> 2.1.0
2024-12-19 09:41:23 -08:00
libleak
*.patch: add Upstream-Status to all patches
2023-06-21 09:15:20 -07:00
liblightmodbus
liblockfile
*.patch: add Upstream-Status to all patches
2023-06-21 09:15:20 -07:00
liblogging
Drop unnecessary SRC_URI md5sum from the recipes in meta-oe.
2024-11-05 19:19:22 -08:00
liblognorm
liblognorm:Add asprintf to autoconf function check macro
2023-12-02 08:10:26 -08:00
libmodbus
libmodbus: upgrade 3.1.10 -> 3.1.11
2025-03-06 06:58:00 -08:00
libpwquality
meta-oe: drop ${PYTHON_PN}
2024-02-19 23:22:24 -08:00
libqb
libqb: Switch to release tarballs for SRC_URI
2025-03-13 09:50:12 -07:00
libreport
libreport: upgrade 2.17.11 -> 2.17.15
2024-03-20 09:28:05 -07:00
libserialport
libserialport: upgrade 0.1.1 -> 0.1.2
2025-01-14 08:52:04 -08:00
libstatgrab
libstatgrab: include UPSTREAM_CHECK_REGEX to fix UNKNOWN_BROKEN status
2024-07-24 08:56:41 -07:00
libuio
recipes: drop ${SRCPV} usage
2024-02-09 09:52:12 -08:00
libwmf
limwmf: upgrade 0.2.8.4 -> 0.2.13
2024-12-27 09:21:43 -08:00
libx86-1
libx86-1: don't inherit autotools
2025-03-19 11:37:48 -07:00
libyang
libyang: update from 2.1.148 to 3.7.8
2025-02-26 08:30:48 -08:00
libzip
libzip: upgrade 1.11.2 -> 1.11.3
2025-02-10 08:45:37 -08:00
linuxconsole
recipes: Start WORKDIR -> UNPACKDIR transition
2024-05-23 08:44:44 -07:00
lockfile-progs
logwatch
logwatch: upgrade 7.10 -> 7.11
2024-08-09 14:25:15 -07:00
lprng
Drop unnecessary SRC_URI md5sum from the recipes in meta-oe.
2024-11-05 19:19:22 -08:00
magic-enum
magic-enum: Upgrade 0.9.6 -> 0.9.7
2024-11-19 16:59:10 -08:00
md5deep
recipes: drop ${SRCPV} usage
2024-02-09 09:52:12 -08:00
minifi-cpp
minifi-cpp: Fix build with clang
2025-03-25 22:01:01 -07:00
minio
recipes: Fix variable assignment whitespace
2025-01-31 10:34:03 -08:00
mozjs
mozjs: Remove dangling patch file
2025-03-31 14:42:07 -07:00
mraa
mraa: disable python bindings
2024-10-16 14:07:29 -07:00
nana
nana: Fix buildpaths warning.
2024-05-23 16:17:11 -07:00
networking
recipes: Start WORKDIR -> UNPACKDIR transition
2024-05-23 08:44:44 -07:00
newt
libnewt: upgrade 0.52.24 -> 0.52.25
2025-03-25 09:33:52 -07:00
nicstat
Drop unnecessary SRC_URI md5sum from the recipes in meta-oe.
2024-11-05 19:19:22 -08:00
openwsman
recipes: drop ld-is-gold support
2025-02-23 17:36:08 -08:00
ostree
ostree: upgrade 2024.9 -> 2024.10
2024-12-24 08:23:08 -08:00
p8platform
recipes: drop ${SRCPV} usage
2024-02-09 09:52:12 -08:00
pam
recipes: Fix variable assignment whitespace
2025-03-20 08:46:56 -07:00
parallel
parallel: upgrade 20250222 -> 20250322
2025-03-31 15:00:30 -07:00
pegtl
recipes: Fix variable assignment whitespace
2025-01-31 10:34:03 -08:00
perl
Drop unnecessary SRC_URI md5sum from the recipes in meta-oe.
2024-11-05 19:19:22 -08:00
plocate
plocate: upgrade 1.1.22 -> 1.1.23
2024-12-03 09:44:33 -08:00
pmdk
recipes: Fix variable assignment whitespace
2025-03-20 08:46:56 -07:00
polkit
polkit: dont add mozjs PACKAGECONFIG
2025-01-17 11:01:39 -08:00
properties-cpp
properties-cpp: include UPSTREAM_CHECK_COMMITS to fix UNKNOWN_BROKEN status
2024-08-09 14:25:10 -07:00
qad
qad: Add UPSTREAM_CHECK_COMMITS
2024-08-09 14:25:10 -07:00
qcbor
qcbor: upgrade 1.4 -> 1.4.1
2024-08-09 14:25:20 -07:00
rarpd
Drop unnecessary SRC_URI md5sum from the recipes in meta-oe.
2024-11-05 19:19:22 -08:00
redis
redis: upgrade 6.2.16 -> 6.2.18
2025-06-20 10:46:50 -04:00
redis-plus-plus
redis-plus-plus: upgrade 1.3.10 -> 1.3.11
2024-01-02 00:35:51 -08:00
rrdtool
rrdtool: upgrade 1.8.0 -> 1.9.0
2025-03-11 19:35:32 -07:00
rsyslog
rsyslog: update from 8.2408.0 to 8.2502.0
2025-02-25 09:48:25 -08:00
s-nail
s-nail: upgrade 14.9.24 -> 14.9.25
2024-09-11 21:15:34 -07:00
sanlock
sanlock: upgrade 3.9.4 -> 3.9.5
2024-11-05 22:45:22 -08:00
sblim-cmpi-devel
Drop unnecessary SRC_URI md5sum from the recipes in meta-oe.
2024-11-05 19:19:22 -08:00
sblim-sfc-common
Drop unnecessary SRC_URI md5sum from the recipes in meta-oe.
2024-11-05 19:19:22 -08:00
sblim-sfcb
recipes: drop ld-is-gold support
2025-02-23 17:36:08 -08:00
sblim-sfcc
recipes: Fix variable assignment whitespace
2025-03-20 08:46:56 -07:00
scsirastools
Drop unnecessary SRC_URI md5sum from the recipes in meta-oe.
2024-11-05 19:19:22 -08:00
sedutil
sedutil: Upgrade to latest on tip of master branch
2025-03-20 17:57:31 -07:00
sgpio
Drop unnecessary SRC_URI md5sum from the recipes in meta-oe.
2024-11-05 19:19:22 -08:00
sigrok
Drop unnecessary SRC_URI md5sum from the recipes in meta-oe.
2024-11-05 19:19:22 -08:00
smartmontools
recipes: Start WORKDIR -> UNPACKDIR transition
2024-05-23 08:44:44 -07:00
snappy
snappy: upgrade 1.1.9 -> 1.1.10
2023-12-08 07:57:57 -08:00
socketcan
canutils: use https instead of git protocol
2025-07-06 19:23:22 -04:00
sysdig
recipes: Fix variable assignment whitespace
2025-03-20 08:46:56 -07:00
tipcutils
tipcutils: Replace WORKDIR with UNPACKDIR
2024-06-27 09:18:47 -07:00
tiptop
tmate
tmate: Fix finding msgpack 6+
2023-11-28 08:55:43 -08:00
tmux
tmux: upgrade 3.4 -> 3.5
2024-09-30 07:34:28 -07:00
triggerhappy
triggerhappy: don't inherit autotools
2025-03-19 11:37:47 -07:00
uml-utilities
Drop unnecessary SRC_URI md5sum from the recipes in meta-oe.
2024-11-05 19:19:22 -08:00
upm
meta-oe: drop ${PYTHON_PN}
2024-02-19 23:22:24 -08:00
valkey
valkey: upgrade 8.1.0 -> 8.1.1
2025-06-20 10:46:50 -04:00
vlock
Drop unnecessary SRC_URI md5sum from the recipes in meta-oe.
2024-11-05 19:19:22 -08:00
volume_key
Drop unnecessary SRC_URI md5sum from the recipes in meta-oe.
2024-11-05 19:19:22 -08:00
wipe
wtmpdb
wtmpdb: fix installed-vs-shipped build error
2024-10-09 15:47:22 -07:00
wxwidgets
recipes: Fix variable assignment whitespace
2025-03-20 08:46:56 -07:00
zlog
zram
recipes: set S to fix the QA warning
2024-06-21 21:45:10 -07:00
zsync
zsync-curl: Add UPSTREAM_CHECK_COMMITS
2024-08-09 14:25:11 -07:00