ez-ipupdate: patch CVE-2003-0887 - linux/meta-openembedded.git - Mirror of git.openembedded.org/meta-openembedded

diff options

author	Gyorgy Sarvari <skandigraun@gmail.com>	2026-02-13 16:42:25 +0100
committer	Gyorgy Sarvari <skandigraun@gmail.com>	2026-02-13 17:03:50 +0100
commit	d27a3be1f6b28b41a910185258f688790975f523 (patch)
tree	84c4c080451f871bedb268633b1819c3912cd538 /meta-python/recipes-devtools/python/python3-pytest-benchmark_3.4.1.bb
parent	6f0602375b90abeeb07c5a17a4f3480c8ebabdf7 (diff)
download	meta-openembedded-d27a3be1f6b28b41a910185258f688790975f523.tar.gz

ez-ipupdate: patch CVE-2003-0887

Details: https://nvd.nist.gov/vuln/detail/CVE-2003-0887 The vulnerability is about the default (example) configurations, which place cache files into the /tmp folder, that is world-writeable. The recommendation would be to place them to a more secure folder. The recipe however does not install these example configurations, and as such it is not vulnerable either. Just to make sure, patch these folders to a non-tmp folder (and also install that folder, empty). Some more discussion about the vulnerability: https://bugzilla.suse.com/show_bug.cgi?id=48161 Signed-off-by: Gyorgy Sarvari <skandigraun@gmail.com> Signed-off-by: Khem Raj <raj.khem@gmail.com> (cherry picked from commit dd81ffdb685bd9c2ce1b27d0e5ff3f8e5551e3ad) Signed-off-by: Gyorgy Sarvari <skandigraun@gmail.com>

Diffstat (limited to 'meta-python/recipes-devtools/python/python3-pytest-benchmark_3.4.1.bb')

0 files changed, 0 insertions, 0 deletions


context:
space:
mode: