<feed xmlns='http://www.w3.org/2005/Atom'>
<title>linux/meta-security.git, branch morty</title>
<subtitle>Mirror of git.yoctoproject.org/meta-security.git</subtitle>
<id>https://git.enea.com/cgit/linux/meta-security.git/atom?h=morty</id>
<link rel='self' href='https://git.enea.com/cgit/linux/meta-security.git/atom?h=morty'/>
<link rel='alternate' type='text/html' href='https://git.enea.com/cgit/linux/meta-security.git/'/>
<updated>2018-07-03T22:35:25+00:00</updated>
<entry>
<title>CVE-2018-11652 nikto: arbitray OS command injection via http server field.</title>
<updated>2018-07-03T22:35:25+00:00</updated>
<author>
<name>Nagalakshmi Veeramallu</name>
<email>nveeramallu@mvista.com</email>
</author>
<published>2018-06-29T10:08:25+00:00</published>
<link rel='alternate' type='text/html' href='https://git.enea.com/cgit/linux/meta-security.git/commit/?id=e5cdb6bcb6c17ad72d7a406ad5adc75aef0c2790'/>
<id>urn:sha1:e5cdb6bcb6c17ad72d7a406ad5adc75aef0c2790</id>
<content type='text'>
CSV Injection vulnerability in Nikto 2.1.6 and earlier allows remote attackers
to inject arbitrary OS commands via the Server field in an HTTP response header,
 which is directly injected into a CSV report.

Signed-off-by: Nagalakshmi Veeramallu &lt;nveeramallu@mvista.com&gt;
Reviewed-by: Jagadeesh Krishnanjanappa &lt;jkrishnanjanappa@mvista.com&gt;
Signed-off-by: Armin Kuster &lt;akuster@mvista.com&gt;
</content>
</entry>
<entry>
<title>tpm2.0-tss: Fix build issue with tpm2-abrmd recipe</title>
<updated>2017-05-19T14:40:49+00:00</updated>
<author>
<name>Jagadeesh Krishnanjanappa</name>
<email>jkrishnanjanappa@mvista.com</email>
</author>
<published>2017-05-12T12:54:51+00:00</published>
<link rel='alternate' type='text/html' href='https://git.enea.com/cgit/linux/meta-security.git/commit/?id=3d863f72641f930e10ed1b6211d66b2c3d04d306'/>
<id>urn:sha1:3d863f72641f930e10ed1b6211d66b2c3d04d306</id>
<content type='text'>
It solves tpm2-abrmd recipe build failure (as mentioned below) as
none of the tpm2.0-tss header files define MAX_LOADED_OBJECTS1 macro.
The macro name should be MAX_LOADED_OBJECTS.
-- snip --
|                  from ../tpm2-abrmd/src/include/tabrmd.h:31,
|                  from ../tpm2-abrmd/src/access-broker.c:31:
| ../tpm2-abrmd/src/access-broker.c: In function 'access_broker_get_trans_object_count':
| ../tpm2-abrmd/src/access-broker.c:549:34: error: 'MAX_LOADED_OBJECTS1' undeclared (first use in this function)
-- snip --

Signed-off-by: Jagadeesh Krishnanjanappa &lt;jkrishnanjanappa@mvista.com&gt;
Signed-off-by: Armin Kuster &lt;akuster808@gmail.com&gt;
</content>
</entry>
<entry>
<title>suricata: update package to 3.1.3</title>
<updated>2016-11-02T16:06:39+00:00</updated>
<author>
<name>Armin Kuster</name>
<email>akuster808@gmail.com</email>
</author>
<published>2016-11-01T15:50:56+00:00</published>
<link rel='alternate' type='text/html' href='https://git.enea.com/cgit/linux/meta-security.git/commit/?id=99a63fd09770526b29c570394b5636569ebdfdd9'/>
<id>urn:sha1:99a63fd09770526b29c570394b5636569ebdfdd9</id>
<content type='text'>
*Changes*

Bug #1861: Suricata with multi tenancy does not start in 3.1/3.1.1
Bug #1889: Suricata doesn't error on missing semicolon
Bug #1910: libhtp 0.5.23 (3.1.x)
Bug #1912: http.memcap reached condition can lead to dead lock
Bug #1913: af-packet fanout detection broken on Debian Jessie
Bug #1933: unix-command socket created with last character missing (3.1.x)
Bug #1934: make install-full does not install tls-events.rules (3.1.x)
Bug #1941: Can't set fast_pattern on tls_sni content (3.1.x)
Bug #1942: dns - back to back requests results in loss of response (3.1.x)
Bug #1943: Check redis reply in non pipeline mode (3.1.x)

Signed-off-by: Armin Kuster &lt;akuster808@gmail.com&gt;
</content>
</entry>
<entry>
<title>samhain: update to 4.2.0</title>
<updated>2016-11-02T16:06:39+00:00</updated>
<author>
<name>Armin Kuster</name>
<email>akuster808@gmail.com</email>
</author>
<published>2016-11-01T00:40:00+00:00</published>
<link rel='alternate' type='text/html' href='https://git.enea.com/cgit/linux/meta-security.git/commit/?id=5069b211fe0871b5835b99dc5104a85723c5cf33'/>
<id>urn:sha1:5069b211fe0871b5835b99dc5104a85723c5cf33</id>
<content type='text'>
* Changes:

  - New option 'SetAuditdFlags = r|w|x|a' to (re-)define the flags supplied
    to auditd.

  - New option 'PortCheckDevice = device' for the port check module, to monitor
    a device regardless of the address assigned to it.

  - Fix for the case sensitivity of the arguments to the Severity/Class options.

  - Compiler warnings with gcc 6.2 and a few minor bugs have been fixed.

Signed-off-by: Armin Kuster &lt;akuster808@gmail.com&gt;
</content>
</entry>
<entry>
<title>nmap: Upgrade package to 7.31</title>
<updated>2016-11-02T16:06:39+00:00</updated>
<author>
<name>Armin Kuster</name>
<email>akuster808@gmail.com</email>
</author>
<published>2016-10-31T18:02:43+00:00</published>
<link rel='alternate' type='text/html' href='https://git.enea.com/cgit/linux/meta-security.git/commit/?id=9476dde5f94891704b1dc20b291efcac61e1bb46'/>
<id>urn:sha1:9476dde5f94891704b1dc20b291efcac61e1bb46</id>
<content type='text'>
LIC_FILES_CHKSUM change do to yr going from 2015 to 2016 in file.
Added "no update" config option.

Signed-off-by: Armin Kuster &lt;akuster808@gmail.com&gt;
</content>
</entry>
<entry>
<title>smack: Add new package</title>
<updated>2016-11-02T16:06:39+00:00</updated>
<author>
<name>Armin Kuster</name>
<email>akuster808@gmail.com</email>
</author>
<published>2016-10-25T19:21:15+00:00</published>
<link rel='alternate' type='text/html' href='https://git.enea.com/cgit/linux/meta-security.git/commit/?id=742a99778b016f21e8f73a1b2ee013b265d9edd4'/>
<id>urn:sha1:742a99778b016f21e8f73a1b2ee013b265d9edd4</id>
<content type='text'>
V2:
Fix typo and add LDFLAG to makefile

Signed-off-by: Armin Kuster &lt;akuster808@gmail.com&gt;
</content>
</entry>
<entry>
<title>smack kernel: add smack kernel config fragments</title>
<updated>2016-11-02T16:06:39+00:00</updated>
<author>
<name>Armin Kuster</name>
<email>akuster808@gmail.com</email>
</author>
<published>2016-10-25T19:23:56+00:00</published>
<link rel='alternate' type='text/html' href='https://git.enea.com/cgit/linux/meta-security.git/commit/?id=ef20cdf6ea6131420a9b92d685372e311366fc82'/>
<id>urn:sha1:ef20cdf6ea6131420a9b92d685372e311366fc82</id>
<content type='text'>
Signed-off-by: Armin Kuster &lt;akuster808@gmail.com&gt;
</content>
</entry>
<entry>
<title>python-pycrypto: simplify to use pypi class</title>
<updated>2016-11-01T16:03:15+00:00</updated>
<author>
<name>Armin Kuster</name>
<email>akuster808@gmail.com</email>
</author>
<published>2016-10-17T23:52:41+00:00</published>
<link rel='alternate' type='text/html' href='https://git.enea.com/cgit/linux/meta-security.git/commit/?id=5d545800ba69e877b5ca93b6d32e6b2b085cc01f'/>
<id>urn:sha1:5d545800ba69e877b5ca93b6d32e6b2b085cc01f</id>
<content type='text'>
Signed-off-by: Armin Kuster &lt;akuster808@gmail.com&gt;
</content>
</entry>
<entry>
<title>suricata: update package to 3.1.2</title>
<updated>2016-11-01T16:03:15+00:00</updated>
<author>
<name>Armin Kuster</name>
<email>akuster808@gmail.com</email>
</author>
<published>2016-10-18T03:51:26+00:00</published>
<link rel='alternate' type='text/html' href='https://git.enea.com/cgit/linux/meta-security.git/commit/?id=b68613ae0671abb84eef50cae2639e22d6bfac47'/>
<id>urn:sha1:b68613ae0671abb84eef50cae2639e22d6bfac47</id>
<content type='text'>
v2:
rebased against master-next which has 3.1

Signed-off-by: Armin Kuster &lt;akuster808@gmail.com&gt;
</content>
</entry>
<entry>
<title>libnetaddr-ip-perl: remove package. not used by anyone in this layer</title>
<updated>2016-11-01T16:03:15+00:00</updated>
<author>
<name>Armin Kuster</name>
<email>akuster808@gmail.com</email>
</author>
<published>2016-10-17T23:30:38+00:00</published>
<link rel='alternate' type='text/html' href='https://git.enea.com/cgit/linux/meta-security.git/commit/?id=019ffeebb4aac654fce230f27ce0a1b96d57672c'/>
<id>urn:sha1:019ffeebb4aac654fce230f27ce0a1b96d57672c</id>
<content type='text'>
latest version does not build either

Signed-off-by: Armin Kuster &lt;akuster808@gmail.com&gt;
</content>
</entry>
</feed>
