ez-ipupdate: patch CVE-2003-0887 - linux/meta-openembedded.git - Mirror of git.openembedded.org/meta-openembedded

diff options

author	Gyorgy Sarvari <skandigraun@gmail.com>	2026-02-02 22:14:00 +0100
committer	Anuj Mittal <anuj.mittal@oss.qualcomm.com>	2026-02-03 08:07:28 +0530
commit	0080dd79731efa1cca150730c5ac39bad82f7095 (patch)
tree	73805b402111612c61c9b29e4ad8d57f3c258ce7 /meta-python
parent	bbbc6c50d4a584614bd8ef6157dc2d10e2a44c95 (diff)
download	meta-openembedded-0080dd79731efa1cca150730c5ac39bad82f7095.tar.gz

ez-ipupdate: patch CVE-2003-0887

Details: https://nvd.nist.gov/vuln/detail/CVE-2003-0887 The vulnerability is about the default (example) configurations, which place cache files into the /tmp folder, that is world-writeable. The recommendation would be to place them to a more secure folder. The recipe however does not install these example configurations, and as such it is not vulnerable either. Just to make sure, patch these folders to a non-tmp folder (and also install that folder, empty). Some more discussion about the vulnerability: https://bugzilla.suse.com/show_bug.cgi?id=48161 Signed-off-by: Gyorgy Sarvari <skandigraun@gmail.com> Signed-off-by: Anuj Mittal <anuj.mittal@oss.qualcomm.com>

Diffstat (limited to 'meta-python')

0 files changed, 0 insertions, 0 deletions


context:
space:
mode: