Commit message (Collapse) | Author | Age | Files | Lines | |
---|---|---|---|---|---|
* | rsync: backport a patch to fix CVE-2014-8242 | Roy Li | 2015-06-28 | 1 | -0/+101 |
| | | | | | | | | | | (From OE-Core rev: 81d06ef0a566793e644686ec604ad7d46546d2b0) (From OE-Core rev: 2ebf9ad9791e4b38465bfc456aac1d6009078d82) Signed-off-by: Roy Li <rongqing.li@windriver.com> Signed-off-by: Ross Burton <ross.burton@intel.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org> | ||||
* | rsync: backport a patch to fix CVE-2014-9512 | Roy Li | 2015-05-15 | 1 | -0/+135 |
rsync 3.1.1 allows remote attackers to write to arbitrary files via a symlink attack on a file in the synchronization path. Backport Complain-if-an-inc-recursive-path-is-not-right-for-i.patch to fix it (From OE-Core master rev: f280b4f28231ea5a416266ae022d6e4c4ea91117) (From OE-Core rev: a42af2e434c01c04af36d6ed7a7a5480a7a255a5) Signed-off-by: Roy Li <rongqing.li@windriver.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org> |