bash: CVE-2016-0634 - openembedded-core-contrib - OpenEmbedded Core user contribution trees

diff options

author	Zhixiong Chi <zhixiong.chi@windriver.com>	2017-04-20 15:04:54 +0800
committer	Richard Purdie <richard.purdie@linuxfoundation.org>	2017-05-18 13:17:20 +0100
commit	a4b37b05140b549960baef49237ce3316e84a041 (patch)
tree	3ce250e8258be103f7d7cff772774bd767651845 /.templateconf
parent	e962e257f4c124869953d1fbb3da7dbf564f818a (diff)
download	openembedded-core-contrib-a4b37b05140b549960baef49237ce3316e84a041.tar.gz

bash: CVE-2016-0634

A vulnerability was found in a way bash expands the $HOSTNAME. Injecting the hostname with malicious code would cause it to run each time bash expanded \h in the prompt string. Porting patch from <https://ftp.gnu.org/gnu/bash/bash-4.3-patches/ bash43-047> to solve CVE-2016-0634 CVE: CVE-2016-0634 (From OE-Core rev: 7dd6aa1a4bf6e9fc8a1998cda6ac5397bb5cd5cb) Signed-off-by: Zhixiong Chi <zhixiong.chi@windriver.com> Signed-off-by: Ross Burton <ross.burton@intel.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>

Diffstat (limited to '.templateconf')

0 files changed, 0 insertions, 0 deletions


context:
space:
mode: