ez-ipupdate: patch CVE-2003-0887 - linux/meta-openembedded.git - Mirror of git.openembedded.org/meta-openembedded

diff options

author	Gyorgy Sarvari <skandigraun@gmail.com>	2026-02-02 21:22:32 +0100
committer	Khem Raj <raj.khem@gmail.com>	2026-02-02 19:54:39 -0800
commit	dd81ffdb685bd9c2ce1b27d0e5ff3f8e5551e3ad (patch)
tree	3200775a374f11ea083c9ea5e4691af3d5a02a64 /meta-python/recipes-devtools/python/python3-pytest-unordered_0.7.0.bb
parent	e39458314e804c28cd87b6ca47adad8337e4ac43 (diff)
download	meta-openembedded-dd81ffdb685bd9c2ce1b27d0e5ff3f8e5551e3ad.tar.gz

ez-ipupdate: patch CVE-2003-0887

Details: https://nvd.nist.gov/vuln/detail/CVE-2003-0887 The vulnerability is about the default (example) configurations, which place cache files into the /tmp folder, that is world-writeable. The recommendation would be to place them to a more secure folder. The recipe however does not install these example configurations, and as such it is not vulnerable either. Just to make sure, patch these folders to a non-tmp folder (and also install that folder, empty). Some more discussion about the vulnerability: https://bugzilla.suse.com/show_bug.cgi?id=48161 Signed-off-by: Gyorgy Sarvari <skandigraun@gmail.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>

Diffstat (limited to 'meta-python/recipes-devtools/python/python3-pytest-unordered_0.7.0.bb')

0 files changed, 0 insertions, 0 deletions


context:
space:
mode: