diff options
| author | Hitendra Prajapati <hprajapati@mvista.com> | 2024-01-16 10:16:18 +0530 |
|---|---|---|
| committer | Steve Sakoman <steve@sakoman.com> | 2024-01-21 08:50:38 -1000 |
| commit | 4a900fd8226f680cd88c582edac45d59dafc569a (patch) | |
| tree | 3e17f3eec7d100ce77dbb5b0e80588743e12dc71 | |
| parent | 4289397aaf66de03f1c377b43cb0d848a15ded33 (diff) | |
| download | poky-4a900fd8226f680cd88c582edac45d59dafc569a.tar.gz | |
systemd: fix CVE-2023-7008
Upstream-Status: Backport from https://github.com/systemd/systemd/commit/3b4cc1437b51fcc0b08da8cc3f5d1175eed25eb1
(From OE-Core rev: 545fc081f16a63e5b012d4636deee98a788753bb)
Signed-off-by: Hitendra Prajapati <hprajapati@mvista.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
| -rw-r--r-- | meta/recipes-core/systemd/systemd/CVE-2023-7008.patch | 40 | ||||
| -rw-r--r-- | meta/recipes-core/systemd/systemd_250.5.bb | 1 |
2 files changed, 41 insertions, 0 deletions
diff --git a/meta/recipes-core/systemd/systemd/CVE-2023-7008.patch b/meta/recipes-core/systemd/systemd/CVE-2023-7008.patch new file mode 100644 index 0000000000..e2296abc49 --- /dev/null +++ b/meta/recipes-core/systemd/systemd/CVE-2023-7008.patch | |||
| @@ -0,0 +1,40 @@ | |||
| 1 | From 3b4cc1437b51fcc0b08da8cc3f5d1175eed25eb1 Mon Sep 17 00:00:00 2001 | ||
| 2 | From: Michal Sekletar <msekleta@redhat.com> | ||
| 3 | Date: Wed, 20 Dec 2023 16:44:14 +0100 | ||
| 4 | Subject: [PATCH] resolved: actually check authenticated flag of SOA | ||
| 5 | transaction | ||
| 6 | |||
| 7 | Fixes #25676 | ||
| 8 | |||
| 9 | Upstream-Status: Backport [https://github.com/systemd/systemd/commit/3b4cc1437b51fcc0b08da8cc3f5d1175eed25eb1] | ||
| 10 | CVE: CVE-2023-7008 | ||
| 11 | Signed-off-by: Hitendra Prajapati <hprajapati@mvista.com> | ||
| 12 | --- | ||
| 13 | src/resolve/resolved-dns-transaction.c | 4 ++-- | ||
| 14 | 1 file changed, 2 insertions(+), 2 deletions(-) | ||
| 15 | |||
| 16 | diff --git a/src/resolve/resolved-dns-transaction.c b/src/resolve/resolved-dns-transaction.c | ||
| 17 | index f937f9f7b5..7deb598400 100644 | ||
| 18 | --- a/src/resolve/resolved-dns-transaction.c | ||
| 19 | +++ b/src/resolve/resolved-dns-transaction.c | ||
| 20 | @@ -2761,7 +2761,7 @@ static int dns_transaction_requires_rrsig(DnsTransaction *t, DnsResourceRecord * | ||
| 21 | if (r == 0) | ||
| 22 | continue; | ||
| 23 | |||
| 24 | - return FLAGS_SET(t->answer_query_flags, SD_RESOLVED_AUTHENTICATED); | ||
| 25 | + return FLAGS_SET(dt->answer_query_flags, SD_RESOLVED_AUTHENTICATED); | ||
| 26 | } | ||
| 27 | |||
| 28 | return true; | ||
| 29 | @@ -2788,7 +2788,7 @@ static int dns_transaction_requires_rrsig(DnsTransaction *t, DnsResourceRecord * | ||
| 30 | /* We found the transaction that was supposed to find the SOA RR for us. It was | ||
| 31 | * successful, but found no RR for us. This means we are not at a zone cut. In this | ||
| 32 | * case, we require authentication if the SOA lookup was authenticated too. */ | ||
| 33 | - return FLAGS_SET(t->answer_query_flags, SD_RESOLVED_AUTHENTICATED); | ||
| 34 | + return FLAGS_SET(dt->answer_query_flags, SD_RESOLVED_AUTHENTICATED); | ||
| 35 | } | ||
| 36 | |||
| 37 | return true; | ||
| 38 | -- | ||
| 39 | 2.25.1 | ||
| 40 | |||
diff --git a/meta/recipes-core/systemd/systemd_250.5.bb b/meta/recipes-core/systemd/systemd_250.5.bb index c35557471a..889473ee1f 100644 --- a/meta/recipes-core/systemd/systemd_250.5.bb +++ b/meta/recipes-core/systemd/systemd_250.5.bb | |||
| @@ -32,6 +32,7 @@ SRC_URI += "file://touchscreen.rules \ | |||
| 32 | file://CVE-2022-4415-2.patch \ | 32 | file://CVE-2022-4415-2.patch \ |
| 33 | file://0001-network-remove-only-managed-configs-on-reconfigure-o.patch \ | 33 | file://0001-network-remove-only-managed-configs-on-reconfigure-o.patch \ |
| 34 | file://0001-nspawn-make-sure-host-root-can-write-to-the-uidmappe.patch \ | 34 | file://0001-nspawn-make-sure-host-root-can-write-to-the-uidmappe.patch \ |
| 35 | file://CVE-2023-7008.patch \ | ||
| 35 | " | 36 | " |
| 36 | 37 | ||
| 37 | # patches needed by musl | 38 | # patches needed by musl |