mirrors/meta-openembedded
1
0
Fork 0
mirror of https://github.com/openembedded/meta-openembedded.git synced 2026-06-14 05:49:57 +00:00
Code Issues Projects Releases Wiki Activity
Files
f29101aa4ed9918fac19fa20f2c895d0c778a457
meta-openembedded/meta-networking/recipes-connectivity
T
History
Gyorgy Sarvari eb8e89e3b4 ez-ipupdate: patch CVE-2003-0887 
Details: https://nvd.nist.gov/vuln/detail/CVE-2003-0887

The vulnerability is about the default (example) configurations,
which place cache files into the /tmp folder, that is world-writeable.
The recommendation would be to place them to a more secure folder.

The recipe however does not install these example configurations,
and as such it is not vulnerable either.

Just to make sure, patch these folders to a non-tmp folder
(and also install that folder, empty).

Some more discussion about the vulnerability:
https://bugzilla.suse.com/show_bug.cgi?id=48161

Signed-off-by: Gyorgy Sarvari <skandigraun@gmail.com>
Signed-off-by: Anuj Mittal <anuj.mittal@oss.qualcomm.com>
(cherry picked from commit 0080dd7973)
Signed-off-by: Gyorgy Sarvari <skandigraun@gmail.com>
Signed-off-by: Anuj Mittal <anuj.mittal@oss.qualcomm.com>
2026-02-09 09:35:53 +05:30
..
adcli
adcli: use https protocol for fetching
2024-01-13 09:08:39 -08:00
autossh
autossh: Correct the license information
2023-04-05 15:56:47 -07:00
bearssl
recipes: drop ${SRCPV} usage
2024-02-09 09:52:12 -08:00
blueman
blueman: Fix buildpathe issue with cython generated code
2025-04-16 20:30:23 -04:00
bluepy
recipes: drop ${SRCPV} usage
2024-02-09 09:52:12 -08:00
bluez-tools
bluez-tools: New recipe for bluez5 tools
2024-03-18 15:42:51 -07:00
cannelloni
cannelloni: Fix build with clang and libc++ runtime
2023-11-13 00:16:50 -08:00
civetweb
civetweb: patch CVE-2025-9648
2025-12-17 11:45:21 +05:30
daq
daq: fix incompatible pointer type error
2024-06-24 07:36:08 -04:00
dhcp
dhcp-relay: Pass cross configure flags to bind build
2023-07-15 23:43:27 -07:00
dibbler
*.patch: add Upstream-Status to all patches
2023-06-21 09:15:20 -07:00
ez-ipupdate
ez-ipupdate: patch CVE-2003-0887
2026-02-09 09:35:53 +05:30
freeradius
freeradius: upgrade 3.2.5 -> 3.2.6
2025-11-12 11:14:57 +05:30
lftp
recipes: Update LICENSE variable to use SPDX license identifiers
2022-03-04 17:41:45 -08:00
libdnet
libdnet: upgrade 1.17.0 -> 1.18.0
2024-03-20 09:28:05 -07:00
libiec61850
libiec61850: patch CVE-2024-45969
2025-12-30 07:08:13 +05:30
mbedtls
mbedtls: fix CVE-2025-47917
2025-12-17 11:45:16 +05:30
miniupnpd
mosquitto
mosquitto: bump to 2.0.22
2025-11-12 10:44:37 +05:30
nanomsg
nng: Rename default branch of github.com:nanomsg/nng.git
2025-09-23 16:30:14 +08:00
networkmanager
networkmanager: upgrade 1.46.0 -> 1.46.6
2026-01-12 08:12:24 +05:30
openconnect
openconnect: Fix build with GnuTLS v3.8.1
2023-09-07 11:43:45 -07:00
openfortivpn
openfortivpn: upgrade 1.22.0 -> 1.22.1
2026-01-19 12:15:48 +05:30
openthread
ot-br-posix: Define config files explicitly
2025-11-25 17:12:18 +05:30
python-networkmanager
rdate
*.patch: add Upstream-Status to all patches
2023-06-21 09:15:20 -07:00
rdist
rdist: Fix contains reference to TMPDIR [buildpaths] warning
2025-04-16 20:30:23 -04:00
relayd
recipes: drop ${SRCPV} usage
2024-02-09 09:52:12 -08:00
restinio
remove unused AUTHOR variable
2023-08-03 09:14:20 -07:00
samba
samba: Run populate-volatile.sh update in postinst
2025-11-12 11:14:57 +05:30
sethdlc
recipes: Update LICENSE variable to use SPDX license identifiers
2022-03-04 17:41:45 -08:00
snort
snort3: update to latest stable version 3.1.84.0
2024-04-21 10:52:40 -07:00
sshpass
sshpass: upgrade 1.09 -> 1.10
2023-02-20 00:23:02 -08:00
tayga
tayga: Fix contains reference to TMPDIR [buildpaths] warning
2024-08-10 11:22:42 -04:00
ufw
ufw: Fix "could not find required binary 'iptables'"
2022-09-15 12:17:30 -07:00
vlan
vlan: Pass CFLAGS via CCFLAGS
2023-05-26 08:28:37 -07:00
vpnc
remove unused AUTHOR variable
2023-08-03 09:14:20 -07:00
wolfssl
wolfssl: patch CVE-2025-7394
2026-01-12 08:12:18 +05:30