mirrors/poky
1
0
Fork 0
mirror of https://git.yoctoproject.org/poky synced 2026-06-02 13:29:49 +00:00
Code Issues Projects Releases Wiki Activity
Files
yocto-4.0.29
poky/meta/recipes-connectivity
T
History
Zhang Peng 9e416e05f6 avahi: fix CVE-2024-52615 
CVE-2024-52615:
A flaw was found in Avahi-daemon, which relies on fixed source ports for wide-area
DNS queries. This issue simplifies attacks where malicious DNS responses are injected.

Reference:
[https://nvd.nist.gov/vuln/detail/CVE-2024-52615]
[https://github.com/avahi/avahi/security/advisories/GHSA-x6vp-f33h-h32g]

Upstream patches:
[https://github.com/avahi/avahi/commit/4e2e1ea0908d7e6ad7f38ae04fdcdf2411f8b942]

(From OE-Core rev: 7bd9fee6d654326ea921b51113de99f793e11545)

Signed-off-by: Zhang Peng <peng.zhang1.cn@windriver.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-08-08 06:30:55 -07:00
..
avahi
avahi: fix CVE-2024-52615
2025-08-08 06:30:55 -07:00
bind
bind: Upgrade 9.18.28 -> 9.18.33
2025-03-04 08:46:02 -08:00
bluez5
bluez5: Fix CVE-2023-27349 CVE-2023-50229 & CVE-2023-50230
2024-05-16 05:22:09 -07:00
connman
connman :fix CVE-2025-32366
2025-05-28 08:46:32 -07:00
dhcpcd
dhcpcd: use git instead of tarballs
2023-05-30 04:11:15 -10:00
inetutils
inetutils: Backport fix for CVE-2023-40303
2023-09-08 16:09:41 -10:00
iproute2
iproute2: upgrade 5.16.0 -> 5.17.0
2022-03-29 15:59:29 +01:00
iw
iw: Fix LICENSE
2024-09-16 06:09:56 -07:00
kea
kea: submit patch upstream
2022-11-24 15:30:01 +00:00
libnss-mdns
meta/meta-selftest/meta-skeleton: Update LICENSE variable to use SPDX license identifiers
2022-02-20 16:45:25 +00:00
libpcap
libpcap: Security fix for CVE-2023-7256 & CVE-2024-8006
2024-09-27 05:57:34 -07:00
libuv
libuv: fix CVE-2024-24806
2024-02-28 03:32:09 -10:00
mobile-broadband-provider-info
mobile-broadband-provider-info: upgrade 20221107 -> 20230416
2023-07-01 08:37:24 -10:00
neard
neard: Switch SRC_URI to git repo
2022-05-04 13:07:34 +01:00
nfs-utils
nfs-utils: don't use signals to shut down nfs server.
2025-06-04 09:06:31 -07:00
ofono
ofono: fix CVE-2023-4235
2025-07-18 08:32:26 -07:00
openssh
openssh: Fix CVE-2025-32728
2025-05-28 08:46:32 -07:00
openssl
openssl: fix CVE-2024-41996
2025-07-18 08:32:26 -07:00
ppp
ppp: patch CVE-2024-58250
2025-05-02 08:12:41 -07:00
ppp-dialin
resolvconf
resolvconf: make it work
2022-12-07 15:02:45 +00:00
socat
socat: patch CVE-2024-54661
2025-01-24 07:49:28 -08:00
ssh-pregen-hostkeys
wpa-supplicant
wpa-supplicant: Patch security advisory 2024-2
2024-10-07 05:43:22 -07:00