CaROS/poky
3
1
Fork 0
mirror of https://git.yoctoproject.org/git/poky synced 2026-01-04 16:10:04 +00:00
Code Issues Packages Projects Releases Wiki Activity
8ca73f8fa4
poky/meta/recipes-devtools/elfutils
History
Roy Li def79f5f31 elfutils: Security Advisory - CVE-2015-0255 
Directory traversal vulnerability in the read_long_names function in
libelf/elf_begin.c in elfutils 0.152 and 0.161 allows remote attackers
to write to arbitrary files to the root directory via a / (slash) in a
crafted archive, as demonstrated using the ar program.

https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2014-9447

(From OE-Core rev: 4a65944b89a76f18c8ff6e148f17508882d387cf)

(From OE-Core rev: 5eda84a62201461b9c69498ec35585d2c8142dec)

Signed-off-by: Roy Li <rongqing.li@windriver.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
2015-06-28 09:44:06 +01:00
..
elfutils elfutils: fix an incorrect patch for 0.161 2015-05-15 18:12:44 +01:00
elfutils-0.148 elfutils: fix an incorrect patch for 0.161 2015-05-15 18:12:44 +01:00
elfutils-0.161 elfutils: Security Advisory - CVE-2015-0255 2015-06-28 09:44:06 +01:00
elfutils_0.148.bb elfutils: enable fix-build-gcc-4.8.patch 2015-06-28 09:44:05 +01:00
elfutils_0.161.bb elfutils: Security Advisory - CVE-2015-0255 2015-06-28 09:44:06 +01:00