summaryrefslogtreecommitdiffstats
path: root/meta/recipes-extended/shadow/shadow_4.8.1.bb
Commit message (Collapse)AuthorAgeFilesLines
* shadow: whitelist CVE-2013-4235Purushottam Choudhary2021-03-061-2/+3
| | | | | | | | | | | | | | | This CVE is about TOCTOU (time-of-check time-of-use) race condition when copying and removing directory trees which had very low severity problem and marked as closed and won't fix. Therefore whitelisted CVE-2013-4235. Master, gatesgarth and dunfell all have shadow version 4.81. Hence, this is applicable for master, gatesgarth and dunfell. Link: https://bugzilla.redhat.com/show_bug.cgi?id=884658 (From OE-Core rev: b1c6cd87bee6b019619dc5728fd6c36bc87ed696) Signed-off-by: Sana Kazi <Sana.Kazi@kpit.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* shadow: upgrade 4.8 -> 4.8.1Wang Mingyu2020-02-211-0/+10
0001-Do-not-check-for-validity-of-shell-executable.patch CVE-2019-19882.patch Removed since they are included in 4.8.1. (From OE-Core rev: de9cceb13e264434eb0b8393c3b0c0217b8d505e) Signed-off-by: Wang Mingyu <wangmy@cn.fujitsu.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
generated by cgit v1.2.3-54-g00ecf (git 2.39.0) at 2024-06-30 02:58:25 +0000