CaROS/poky
3
1
Fork 0
mirror of https://git.yoctoproject.org/git/poky synced 2026-01-01 13:58:04 +00:00
Code Issues Packages Projects Releases Wiki Activity
d4b6c1657b
poky/meta
History
Li Zhou d4b6c1657b rpcbind: Security Advisory - rpcbind - CVE-2015-7236 
rpcbind: Fix memory corruption in PMAP_CALLIT code

Use-after-free vulnerability in xprt_set_caller in rpcb_svc_com.c in
rpcbind 0.2.1 and earlier allows remote attackers to cause a denial of
service (daemon crash) via crafted packets, involving a PMAP_CALLIT
code.

The patch comes from
<http://www.openwall.com/lists/oss-security/2015/09/18/7>, and it hasn't
been in rpcbind upstream yet.

(From OE-Core master rev: cc4f62f3627f3804907e8ff9c68d9321979df32b)

(From OE-Core rev: 224bcc2ead676600bcd9e290ed23d9b2ed2f481e)

(From OE-Core rev: 16cf2f5386bc438dc20c4ae40de267618e9dc500)

Signed-off-by: Li Zhou <li.zhou@windriver.com>
Signed-off-by: Wenzong Fan <wenzong.fan@windriver.com>
Signed-off-by: Ross Burton <ross.burton@intel.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
Signed-off-by: Robert Yang <liezhi.yang@windriver.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
Signed-off-by: Armin Kuster <akuster@mvista.com>
Signed-off-by: Joshua Lock <joshua.g.lock@intel.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
2016-03-03 11:11:40 +00:00
..
classes kernel.bbclass: do not mv/link sources when externalsrc enabled 2016-02-16 15:16:55 +00:00
conf feature-arm-thumb.inc: Fix ARMPKGSFX_THUMB value 2016-01-15 13:14:34 +00:00
files toolchain-shar-template.sh: Make relocation optional. 2015-02-24 17:41:43 +00:00
lib rootfs.py: show intercept script output in log.do_rootfs 2015-09-18 19:22:26 +01:00
recipes-bsp grub2: Fix CVE-2015-8370 2016-01-15 13:14:35 +00:00
recipes-connectivity bind: Security fix CVE-2015-8704 2016-02-07 17:23:06 +00:00
recipes-core glibc: Security fix CVE-2015-7547 2016-02-18 11:03:10 +00:00
recipes-devtools qemu: Security fix CVE-2016-2198 2016-03-03 11:11:39 +00:00
recipes-extended rpcbind: Security Advisory - rpcbind - CVE-2015-7236 2016-03-03 11:11:40 +00:00
recipes-gnome gdk-pixbuf: Security fix CVE-2015-7674 2016-03-03 11:11:39 +00:00
recipes-graphics cairo: make xlib and libxcb dependencies explicit 2015-09-01 21:19:33 +01:00
recipes-kernel linux-dtb.inc: drop unused DTB_NAME variable from do_install 2016-01-15 13:14:34 +00:00
recipes-lsb4 libpng12: upgrade to 1.2.52 2015-01-07 23:35:01 +00:00
recipes-multimedia libpng: Security fix CVE-2015-8472 2016-03-03 11:11:40 +00:00
recipes-qt qt4: fix CVE issues 2015-06-28 09:44:17 +01:00
recipes-rt rt-tests: fix gzip command 2015-02-15 21:58:25 +00:00
recipes-sato webkit-gtk: disable JIT for armv5/armv6 2015-03-25 12:39:37 +00:00
recipes-support curl: Secuirty fix CVE-2016-0755 2016-03-03 11:11:40 +00:00
site siteinfo: account for 32 and 64 bit arm 2014-12-23 10:18:17 +00:00
COPYING.GPLv2
COPYING.MIT
recipes.txt