diff options
| author | Chen Qi <Qi.Chen@windriver.com> | 2014-05-13 15:46:26 +0800 |
|---|---|---|
| committer | Richard Purdie <richard.purdie@linuxfoundation.org> | 2014-05-13 19:32:06 +0100 |
| commit | fbf63c30c89b39e0b021af6708c53a24f43fe786 (patch) | |
| tree | 89a830980f220f02d526c3ba4e764513e469c685 /meta/recipes-connectivity/openssh/openssh_6.5p1.bb | |
| parent | 939fce4d98c3ee603742250dd39b9b9f4f20825b (diff) | |
| download | poky-fbf63c30c89b39e0b021af6708c53a24f43fe786.tar.gz | |
openssh: fix for CVE-2014-2532
sshd in OpenSSH before 6.6 does not properly support wildcards on
AcceptEnv lines in sshd_config, which allows remote attackers to
bypass intended environment restrictions by using a substring located
before a wildcard character.
(From OE-Core rev: a8d3b8979c27a8dc87971b66a1d9d9282f660596)
Signed-off-by: Chen Qi <Qi.Chen@windriver.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
Diffstat (limited to 'meta/recipes-connectivity/openssh/openssh_6.5p1.bb')
| -rw-r--r-- | meta/recipes-connectivity/openssh/openssh_6.5p1.bb | 3 |
1 files changed, 2 insertions, 1 deletions
diff --git a/meta/recipes-connectivity/openssh/openssh_6.5p1.bb b/meta/recipes-connectivity/openssh/openssh_6.5p1.bb index b93b9ae79f..230f38ab31 100644 --- a/meta/recipes-connectivity/openssh/openssh_6.5p1.bb +++ b/meta/recipes-connectivity/openssh/openssh_6.5p1.bb | |||
| @@ -29,7 +29,8 @@ SRC_URI = "ftp://ftp.openbsd.org/pub/OpenBSD/OpenSSH/portable/openssh-${PV}.tar. | |||
| 29 | file://sshdgenkeys.service \ | 29 | file://sshdgenkeys.service \ |
| 30 | file://volatiles.99_sshd \ | 30 | file://volatiles.99_sshd \ |
| 31 | file://add-test-support-for-busybox.patch \ | 31 | file://add-test-support-for-busybox.patch \ |
| 32 | file://run-ptest" | 32 | file://run-ptest \ |
| 33 | file://openssh-CVE-2014-2532.patch" | ||
| 33 | 34 | ||
| 34 | PAM_SRC_URI = "file://sshd" | 35 | PAM_SRC_URI = "file://sshd" |
| 35 | 36 | ||