Archana Polampalli a1fab4c1a9 rsync: fix CVE-2024-12084 ... A heap-based buffer overflow flaw was found in the rsync daemon. This issue is due to improper handling of attacker-controlled checksum lengths (s2length) in the code. When MAX_DIGEST_LEN exceeds the fixed SUM_LENGTH (16 bytes), an attacker can write out of bounds in the sum2 buffer. (From OE-Core rev: 17fac276e27af19b00b6263f22156a55bae6a5c9) Signed-off-by: Archana Polampalli <archana.polampalli@windriver.com> Signed-off-by: Steve Sakoman <steve@sakoman.com>		2025-01-24 07:49:28 -08:00
..
classes	package.bbclass: Use shlex instead of deprecated pipes	2024-12-20 06:01:45 -08:00
conf	gcc: upgrade to v11.5	2024-10-07 05:43:22 -07:00
files	toolchain-shar-extract.sh: exit when post-relocate-setup.sh fails	2024-11-27 06:27:26 -08:00
lib	oeqa/utils/gitarchive: Return tag name and improve exclude handling	2024-12-09 07:54:03 -08:00
recipes-bsp	grub: ignore CVE-2024-1048 and CVE-2023-4001	2024-12-09 07:54:03 -08:00
recipes-connectivity	socat: patch CVE-2024-54661	2025-01-24 07:49:28 -08:00
recipes-core	build-appliance-image: Update to kirkstone head revision	2025-01-09 08:51:11 -08:00
recipes-devtools	rsync: fix CVE-2024-12084	2025-01-24 07:49:28 -08:00
recipes-example/rust-hello-world
recipes-extended	wget: fix CVE-2024-10524	2025-01-24 07:49:28 -08:00
recipes-gnome	gcr: Fix LICENSE	2024-09-16 06:09:56 -07:00
recipes-graphics	xwayland: patch CVE-2023-5380 CVE-2024-0229	2025-01-09 08:41:03 -08:00
recipes-kernel	linux-yocto/5.15: update to v5.15.175	2025-01-09 08:41:04 -08:00
recipes-multimedia	gstreamer1.0: ignore CVEs fixed in plugins recipes	2025-01-18 06:21:02 -08:00
recipes-rt	meta/recipes: python 3.12 regex	2024-03-01 05:19:54 -10:00
recipes-sato	webkitgtk: Security fix for CVE-2024-40776 and CVE-2024-40780	2025-01-09 08:41:03 -08:00
recipes-support	vte: fix CVE-2024-37535	2025-01-24 07:49:28 -08:00
site	ppc/siteinfo: Fix differences between musl and glibc	2022-03-15 08:40:09 +00:00
COPYING.MIT
recipes.txt