mirrors/meta-openembedded
1
0
Fork 0
mirror of https://github.com/openembedded/meta-openembedded.git synced 2026-06-03 14:19:52 +00:00
Code Issues Projects Releases Wiki Activity
16,835 Commits 64 Branches 0 Tags
d7b41ced4b9a9a68083b0fcceff3b226298cff8b
T
Clone
Open with VS Code Open with VSCodium Open with Intellij IDEA
Download ZIP Download TAR.GZ Download BUNDLE
Ovidiu Panait d7b41ced4b net-snmp: Fix CVE-2020-15861 and CVE-2020-15862 
Net-SNMP through 5.7.3 allows Escalation of Privileges because of UNIX symbolic
link (symlink) following.

Net-SNMP through 5.7.3 has Improper Privilege Management because SNMP WRITE
access to the EXTEND MIB provides the ability to run arbitrary commands as
root.

References:
https://nvd.nist.gov/vuln/detail/CVE-2020-15861
https://nvd.nist.gov/vuln/detail/CVE-2020-15862

Upstream patches:
https://github.com/net-snmp/net-snmp/commit/2b3e300ade4add03b889e61d610b0db77d300fc3
https://github.com/net-snmp/net-snmp/commit/9cfb38b0aa95363da1466ca81dd929989ba27c1f
https://github.com/net-snmp/net-snmp/commit/114e4c2cec2601ca56e8afb1f441520f75a9a312
https://github.com/net-snmp/net-snmp/commit/2968b455e6f182f329746e2bca1043f368618c73
https://github.com/net-snmp/net-snmp/commit/4fd9a450444a434a993bc72f7c3486ccce41f602
https://github.com/net-snmp/net-snmp/commit/77f6c60f57dba0aaea5d8ef1dd94bcd0c8e6d205

CVE-2020-15861-0005.patch is the actual fix for CVE-2020-15861 and
CVE-2020-15861-0001.patch through CVE-2020-15861-0004.patch are context
patches needed by the fix to apply cleanly.

Signed-off-by: Ovidiu Panait <ovidiu.panait@windriver.com>
Signed-off-by: Armin Kuster <akuster808@gmail.com>
2020-09-03 08:28:37 -07:00
contrib
tesseract: upgrade to 3.04
2016-10-21 18:20:43 +02:00
meta-filesystems
fuse3: upgrade 3.9.1 -> 3.9.2
2020-07-01 08:01:41 -07:00
meta-gnome
gnome-settings-daemon: Remove duplicate outdated SRC_URI hashes
2020-09-02 21:22:21 -07:00
meta-initramfs
README: updated Maintainers list for Dunfell
2020-05-05 16:47:34 -07:00
meta-multimedia
vlc: fix loop initial declarations are only allowed in C99 mode
2020-08-31 07:38:56 -07:00
meta-networking
net-snmp: Fix CVE-2020-15861 and CVE-2020-15862
2020-09-03 08:28:37 -07:00
meta-oe
lcov: fix lcov-native build
2020-08-23 11:14:56 -07:00
meta-perl
libnet-dns-perl: upgrade 1.23 -> 1.24
2020-06-12 09:32:24 -07:00
meta-python
python3-pandas: Upgrade 1.0.3 -> 1.0.5
2020-08-27 15:40:21 -07:00
meta-webserver
apache2: create log/run directory via pkg_postinst
2020-05-28 21:39:22 -07:00
meta-xfce
thunar: upgrade 1.8.14 -> 1.8.15
2020-05-28 21:50:13 -07:00
.gitignore
.gitignore: add *.pyc and *.pyo
2019-06-15 16:45:33 -07:00
COPYING.MIT
README
README: updated Maintainers list for Dunfell
2020-05-05 16:47:34 -07:00

README 

Collection of layers for the OE-core universe

dunfell maintainer: Armin Kuster  <akuster808@gmail.com>

This repository is a collection of layers to suppliment OE-Core
with additional packages, Each layer have designated maintainer
Please see the respective READMEs in the layer subdirectories
Reference in New Issue View Git Blame Copy Permalink
S
Description
No description provided
Readme 112 MiB
Languages
BitBake 85.2%
Shell 6.1%
C 3%
Roff 2.1%
NASL 1.9%
Other 1.5%