| Age | Commit message (Collapse) | Author | |
|---|---|---|---|
| 2016-01-11 | Add "CVE:" tag to current patches in OE-core |   Mariano Lopez | |
| The currnet patches in OE-core doesn't have the "CVE:" tag, now part of the policy of the patches. This is patch add this tag to several patches. There might be patches that I miss; the tag can be added in the future. Signed-off-by: Mariano Lopez <mariano.lopez@linux.intel.com> Signed-off-by: Ross Burton <ross.burton@intel.com> | |||
| 2014-03-26 | gnupg: CVE-2013-4351 |   Ming Liu | |
| GnuPG 1.4.x, 2.0.x, and 2.1.x treats a key flags subpacket with all bits cleared (no usage permitted) as if it has all bits set (all usage permitted), which might allow remote attackers to bypass intended cryptographic protection mechanisms by leveraging the subkey. Signed-off-by: Ming Liu <ming.liu@windriver.com> Signed-off-by: Jackie Huang <jackie.huang@windriver.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org> | |||
 |
index : openembedded-core-contrib | |
| OpenEmbedded Core user contribution trees | Grokmirror user |
| aboutsummaryrefslogtreecommitdiffstats |