<feed xmlns='http://www.w3.org/2005/Atom'>
<title>linux/meta-security.git/recipes-security/nikto, branch pyro</title>
<subtitle>Mirror of git.yoctoproject.org/meta-security.git</subtitle>
<id>https://git.enea.com/cgit/linux/meta-security.git/atom?h=pyro</id>
<link rel='self' href='https://git.enea.com/cgit/linux/meta-security.git/atom?h=pyro'/>
<link rel='alternate' type='text/html' href='https://git.enea.com/cgit/linux/meta-security.git/'/>
<updated>2018-07-03T22:35:17+00:00</updated>
<entry>
<title>CVE-2018-11652 nikto: arbitray OS command injection via http server field.</title>
<updated>2018-07-03T22:35:17+00:00</updated>
<author>
<name>Nagalakshmi Veeramallu</name>
<email>nveeramallu@mvista.com</email>
</author>
<published>2018-06-29T10:08:25+00:00</published>
<link rel='alternate' type='text/html' href='https://git.enea.com/cgit/linux/meta-security.git/commit/?id=ca3fbcd57d0f66ef710c2c0b78a1d416d4aec653'/>
<id>urn:sha1:ca3fbcd57d0f66ef710c2c0b78a1d416d4aec653</id>
<content type='text'>
CSV Injection vulnerability in Nikto 2.1.6 and earlier allows remote attackers
to inject arbitrary OS commands via the Server field in an HTTP response header,
 which is directly injected into a CSV report.

Signed-off-by: Nagalakshmi Veeramallu &lt;nveeramallu@mvista.com&gt;
Reviewed-by: Jagadeesh Krishnanjanappa &lt;jkrishnanjanappa@mvista.com&gt;
Signed-off-by: Armin Kuster &lt;akuster@mvista.com&gt;
</content>
</entry>
<entry>
<title>nikto: fix SRC_URI for multilib</title>
<updated>2015-01-13T20:10:48+00:00</updated>
<author>
<name>Paul Eggleton</name>
<email>paul.eggleton@linux.intel.com</email>
</author>
<published>2015-01-13T09:25:30+00:00</published>
<link rel='alternate' type='text/html' href='https://git.enea.com/cgit/linux/meta-security.git/commit/?id=ea8f4661f40613cbe8cebdb2d2586f99cffbd9d6'/>
<id>urn:sha1:ea8f4661f40613cbe8cebdb2d2586f99cffbd9d6</id>
<content type='text'>
${BPN} should be used instead of ${PN} where you want the name without
any prefix (and ${BP} is short for ${BPN}-${PV}).

Signed-off-by: Paul Eggleton &lt;paul.eggleton@linux.intel.com&gt;
Signed-off-by: Armin Kuster &lt;akuster808@gmail.com&gt;
</content>
</entry>
<entry>
<title>nikto: fix launching errors</title>
<updated>2015-01-04T05:21:53+00:00</updated>
<author>
<name>Armin Kuster</name>
<email>akuster808@gmail.com</email>
</author>
<published>2015-01-01T21:49:21+00:00</published>
<link rel='alternate' type='text/html' href='https://git.enea.com/cgit/linux/meta-security.git/commit/?id=75d2b6620d21ea798ee51c47e1c0cc2507e52b80'/>
<id>urn:sha1:75d2b6620d21ea798ee51c47e1c0cc2507e52b80</id>
<content type='text'>
add several missing perl package depends so app can launch

Signed-off-by: Armin Kuster &lt;akuster808@gmail.com&gt;
</content>
</entry>
<entry>
<title>nikto: fix depends</title>
<updated>2015-01-04T05:21:32+00:00</updated>
<author>
<name>Armin Kuster</name>
<email>akuster808@gmail.com</email>
</author>
<published>2014-12-27T02:46:44+00:00</published>
<link rel='alternate' type='text/html' href='https://git.enea.com/cgit/linux/meta-security.git/commit/?id=397b35c028ce69e315fef0ebcdf790c9056ebe42'/>
<id>urn:sha1:397b35c028ce69e315fef0ebcdf790c9056ebe42</id>
<content type='text'>
Signed-off-by: Armin Kuster &lt;akuster808@gmail.com&gt;
</content>
</entry>
<entry>
<title>meta-security-1.0-final</title>
<updated>2013-07-11T14:37:43+00:00</updated>
<author>
<name>Andrei Dinu</name>
<email>andrei.adrianx.dinu@intel.com</email>
</author>
<published>2013-07-11T14:37:43+00:00</published>
<link rel='alternate' type='text/html' href='https://git.enea.com/cgit/linux/meta-security.git/commit/?id=2d0c61a39f5608fbe2180ccfd067d0858aa12092'/>
<id>urn:sha1:2d0c61a39f5608fbe2180ccfd067d0858aa12092</id>
<content type='text'>
Signed-off-by: Andrei Dinu &lt;andrei.adrianx.dinu@intel.com&gt;
</content>
</entry>
<entry>
<title>Security layer version 1.0</title>
<updated>2013-07-10T13:41:44+00:00</updated>
<author>
<name>Andrei Dinu</name>
<email>andrei.adrianx.dinu@intel.com</email>
</author>
<published>2013-07-10T13:41:44+00:00</published>
<link rel='alternate' type='text/html' href='https://git.enea.com/cgit/linux/meta-security.git/commit/?id=d54c9d7dadfddcd60ca11be23c5a2946f8a1b385'/>
<id>urn:sha1:d54c9d7dadfddcd60ca11be23c5a2946f8a1b385</id>
<content type='text'>
Signed-off-by: Andrei Dinu &lt;andrei.adrianx.dinu@intel.com&gt;
</content>
</entry>
</feed>
