meta-openembedded

mirror of https://github.com/openembedded/meta-openembedded.git synced 2026-06-14 05:49:57 +00:00

Files

T

Ovidiu Panait d7b41ced4b net-snmp: Fix CVE-2020-15861 and CVE-2020-15862

Net-SNMP through 5.7.3 allows Escalation of Privileges because of UNIX symbolic
link (symlink) following.

Net-SNMP through 5.7.3 has Improper Privilege Management because SNMP WRITE
access to the EXTEND MIB provides the ability to run arbitrary commands as
root.

References:
https://nvd.nist.gov/vuln/detail/CVE-2020-15861
https://nvd.nist.gov/vuln/detail/CVE-2020-15862

Upstream patches:
https://github.com/net-snmp/net-snmp/commit/2b3e300ade4add03b889e61d610b0db77d300fc3
https://github.com/net-snmp/net-snmp/commit/9cfb38b0aa95363da1466ca81dd929989ba27c1f
https://github.com/net-snmp/net-snmp/commit/114e4c2cec2601ca56e8afb1f441520f75a9a312
https://github.com/net-snmp/net-snmp/commit/2968b455e6f182f329746e2bca1043f368618c73
https://github.com/net-snmp/net-snmp/commit/4fd9a450444a434a993bc72f7c3486ccce41f602
https://github.com/net-snmp/net-snmp/commit/77f6c60f57dba0aaea5d8ef1dd94bcd0c8e6d205

CVE-2020-15861-0005.patch is the actual fix for CVE-2020-15861 and
CVE-2020-15861-0001.patch through CVE-2020-15861-0004.patch are context
patches needed by the fix to apply cleanly.

Signed-off-by: Ovidiu Panait <ovidiu.panait@windriver.com>
Signed-off-by: Armin Kuster <akuster808@gmail.com>

2020-09-03 08:28:37 -07:00

classes

waf-samba: switch to python3

2019-07-10 09:24:32 -07:00

conf

layers: update LAYERSERIES_COMPAT to dunfell

2020-03-20 07:44:29 -07:00

files/waf-cross-answers

waf: Add cross answers for riscv32

2020-04-29 22:32:17 -07:00

licenses

…

recipes-connectivity

freeradius: fix the occasional verification failure

2020-08-23 11:13:58 -07:00

recipes-core

grpc: move from meta-networking to meta-oe

2020-03-03 09:23:08 -08:00

recipes-daemons

radvd: add /etc/radvd.conf

2020-07-30 21:11:21 -07:00

recipes-devtools/python

grpc: move from meta-networking to meta-oe

2020-03-03 09:23:08 -08:00

recipes-extended

corosync: update corosync.conf to 3.x

2020-03-18 15:33:49 -07:00

recipes-filter

nftables: upgrade 0.9.5 -> 0.9.6

2020-07-12 19:20:37 -07:00

recipes-irc/znc

znc: upgrade 1.7.4 -> 1.7.5

2019-11-01 17:22:52 -07:00

recipes-kernel/wireguard

wireguard: Upgrade to latest compat external module and tools

2020-04-07 18:50:59 -07:00

recipes-netkit

netkit-telnetd: Fix buffer overflow in netoprintf

2020-07-29 22:44:52 -07:00

recipes-protocols

net-snmp: Fix CVE-2020-15861 and CVE-2020-15862

2020-09-03 08:28:37 -07:00

recipes-support

wireshark: Update to 3.2.5

2020-07-12 19:20:59 -07:00

site

site: move from meta-oe to meta-networking

2018-01-08 12:03:40 -05:00

COPYING.MIT

…

MAINTAINERS

README: updated Maintainers list for Dunfell

2020-05-05 16:47:34 -07:00

README

README: updated Maintainers list for Dunfell

2020-05-05 16:47:34 -07:00

README

meta-networking
===============

This layer is intended to be a central point for networking-related
packages and configuration.  It should be useful directly on top of
oe-core and compliments meta-openembedded.  It should be primarily useful
to the following groups:

      - Anyone building a small networking device (eg. a home router /
        bridge / switch).

      - Anyone wanting to add network services to their device (eg.
        anything that might benefit from a small ftp/tftp server)

Dependencies
------------

This layer depends on:

URI: git://github.com/openembedded/openembedded-core.git
branch: dunfell
revision: HEAD

For some recipes, the meta-oe layer is required:

URI: git://github.com/openembedded/meta-openembedded.git
subdirectory: meta-oe
branch: dunfell
revision: HEAD

URI: git://github.com/openembedded/meta-openembedded.git
subdirectory: meta-python
branch: dunfell
revision: HEAD

Maintenance
-----------

Please see the MAINTAINERS file for information on contacting the
maintainers of this layer, as well as instructions for submitting patches.