linux/meta-el-common.git/recipes-core/systemd, branch pyro

systemd: fix CVE-2017-15908

2018-10-26T13:22:22+00:00

systemd in the upstream pyro is 232 CVE: CVE-2017-15908 Reference: https://github.com/systemd/systemd/commit/9f939335a07085aa9a9663efd1dca06ef6405d62 Change-Id: Ifb3c138b324fe943c8a80e646c06731420d69ec0 Signed-off-by: Andreas Wellving Signed-off-by: Adrian Mangeac

systemd: Drop duplicat CVE patches

2017-11-24T14:06:10+00:00

This patch has already been applied in upstream poky/pyro. Signed-off-by: Adrian Dudau

systemd: CVE-2017-1000082

2017-10-04T07:58:01+00:00

refuse to load units with errors If a unit has a statement such as User=0day where the username exists but is strictly speaking invalid, the unit will be started as the root user instead. Backport a patch from upstream to mitigate this by refusing to start units such as this. (From OE-Core rev: a6eaef0f179a341c0b96bb30aaec2d80862a11d6) Reference: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-1000082 Backport from: http://git.yoctoproject.org/cgit/cgit.cgi/poky/commit/?h=pyro&id=b7e7b5e294f944c27fb1d2be61c0cf38f6c81ba8 Signed-off-by: Ross Burton Signed-off-by: Armin Kuster Signed-off-by: Richard Purdie Signed-off-by: Sona Sarmadi Signed-off-by: Adrian Dudau

systemd: CVE-2017-9445

2017-09-26T13:37:50+00:00

Out-of-bounds write in systemd-resolved due to allocating too small buffer in dns_packet_new References: https://bugzilla.redhat.com/attachment.cgi?id=1290017 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9445 Signed-off-by: Sona Sarmadi Signed-off-by: Adrian Dudau