summaryrefslogtreecommitdiffstats
diff options
context:
space:
mode:
Diffstat
-rw-r--r--meta/recipes-support/libcap/files/CVE-2025-1390.patch36
-rw-r--r--meta/recipes-support/libcap/libcap_2.66.bb1
2 files changed, 37 insertions, 0 deletions
diff --git a/meta/recipes-support/libcap/files/CVE-2025-1390.patch b/meta/recipes-support/libcap/files/CVE-2025-1390.patch
new file mode 100644
index 0000000000..339feaba92
--- /dev/null
+++ b/meta/recipes-support/libcap/files/CVE-2025-1390.patch
@@ -0,0 +1,36 @@
1From 1ad42b66c3567481cc5fa22fc1ba1556a316d878 Mon Sep 17 00:00:00 2001
2From: Tianjia Zhang <tianjia.zhang@linux.alibaba.com>
3Date: Mon, 17 Feb 2025 10:31:55 +0800
4Subject: pam_cap: Fix potential configuration parsing error
5
6The current configuration parsing does not actually skip user names
7that do not start with @, but instead treats the name as a group
8name for further parsing, which can result in matching unexpected
9capability sets and may trigger potential security issues. Only
10names starting with @ should be parsed as group names.
11
12Signed-off-by: Tianjia Zhang <tianjia.zhang@linux.alibaba.com>
13Signed-off-by: Andrew G. Morgan <morgan@kernel.org>
14
15Upstream-Status: Backport [https://git.kernel.org/pub/scm/libs/libcap/libcap.git/commit/?id=1ad42b66c3567481cc5fa22fc1ba1556a316d878]
16CVE: CVE-2025-1390
17Signed-off-by: Hitendra Prajapati <hprajapati@mvista.com>
18---
19 pam_cap/pam_cap.c | 1 +
20 1 file changed, 1 insertion(+)
21
22diff --git a/pam_cap/pam_cap.c b/pam_cap/pam_cap.c
23index 7e8cade..7b3d2d1 100644
24--- a/pam_cap/pam_cap.c
25+++ b/pam_cap/pam_cap.c
26@@ -143,6 +143,7 @@ static char *read_capabilities_for_user(const char *user, const char *source)
27
28 if (line[0] != '@') {
29 D(("user [%s] is not [%s] - skipping", user, line));
30+ continue;
31 }
32
33 int i;
34--
352.25.1
36
diff --git a/meta/recipes-support/libcap/libcap_2.66.bb b/meta/recipes-support/libcap/libcap_2.66.bb
index 7534063b7d..42dacb301e 100644
--- a/meta/recipes-support/libcap/libcap_2.66.bb
+++ b/meta/recipes-support/libcap/libcap_2.66.bb
@@ -18,6 +18,7 @@ SRC_URI = "${KERNELORG_MIRROR}/linux/libs/security/linux-privs/${BPN}2/${BPN}-${
18 file://0002-tests-do-not-run-target-executables.patch \ 18 file://0002-tests-do-not-run-target-executables.patch \
19 file://CVE-2023-2602.patch \ 19 file://CVE-2023-2602.patch \
20 file://CVE-2023-2603.patch \ 20 file://CVE-2023-2603.patch \
21 file://CVE-2025-1390.patch \
21 " 22 "
22SRC_URI:append:class-nativesdk = " \ 23SRC_URI:append:class-nativesdk = " \
23 file://0001-nativesdk-libcap-Raise-the-size-of-arrays-containing.patch \ 24 file://0001-nativesdk-libcap-Raise-the-size-of-arrays-containing.patch \
generated by cgit v1.2.3-54-g00ecf (git 2.39.0) at 2026-04-24 03:17:49 +0000