perl: CVE-2018-12015 - linux/poky.git - Mirror of git.yoctoproject.org/poky

diff options

author	Jagadeesh Krishnanjanappa <jkrishnanjanappa@mvista.com>	2018-08-22 17:11:52 +0530
committer	Richard Purdie <richard.purdie@linuxfoundation.org>	2018-08-29 15:23:51 +0100
commit	90cb0ee1c217a8eeaeccb237541dcc6fda057efc (patch)
tree	4caaa5ad3d15dfd856f2619ff19510fb0df8c395 /meta/recipes-devtools/createrepo-c/createrepo-c_git.bb
parent	4f6ff3e60c132a5bf3633b8222ba2a9e003f8ebe (diff)
download	poky-90cb0ee1c217a8eeaeccb237541dcc6fda057efc.tar.gz

perl: CVE-2018-12015

Remove existing files before overwriting them Archive should extract only the latest same-named entry. Extracted regular file should not be writtent into existing block device (or any other one). https://rt.cpan.org/Ticket/Display.html?id=125523 Affects perl <= 5.26.2 (From OE-Core rev: ca005cd857f8e79b135c43526d5b792478a07eb3) Signed-off-by: Jagadeesh Krishnanjanappa <jkrishnanjanappa@mvista.com> Signed-off-by: Armin Kuster <akuster808@gmail.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>

Diffstat (limited to 'meta/recipes-devtools/createrepo-c/createrepo-c_git.bb')

0 files changed, 0 insertions, 0 deletions


context:
space:
mode: