diff options
| author |   Andrej Valek <andrej.valek@siemens.com> | 2017-10-03 17:38:52 +0200 |
|---|---|---|
| committer |   Richard Purdie <richard.purdie@linuxfoundation.org> | 2017-11-05 13:44:54 +0000 |
| commit | 55740077a1f3bed5956fe02ef17ba1d99176ea24 (patch) | |
| tree | 3afb442bdb1bf343fb393b521d40eff02d26108b /meta/recipes-core/busybox/busybox/CVE-2016-6301.patch | |
| parent | a0d2427bb86668215d7c9e1be07cb9a2d86f6755 (diff) | |
| download | openembedded-core-contrib-55740077a1f3bed5956fe02ef17ba1d99176ea24.tar.gz | |
busybox: 1.24.1 -> 1.27.2
- fixed link creation to shell
- reported bug with suid shells [https://bugs.busybox.net/show_bug.cgi?id=10346]
- removed and modified already merged patches
- updated defconfig regarding to new version
Signed-off-by: Andrej Valek <andrej.valek@siemens.com>
Signed-off-by: Radovan Scasny <radovan.scasny@siemens.com>
Signed-off-by: Ross Burton <ross.burton@intel.com>
Diffstat (limited to 'meta/recipes-core/busybox/busybox/CVE-2016-6301.patch')
| -rw-r--r-- | meta/recipes-core/busybox/busybox/CVE-2016-6301.patch | 37 |
1 files changed, 0 insertions, 37 deletions
diff --git a/meta/recipes-core/busybox/busybox/CVE-2016-6301.patch b/meta/recipes-core/busybox/busybox/CVE-2016-6301.patch deleted file mode 100644 index 851bc20f79..0000000000 --- a/meta/recipes-core/busybox/busybox/CVE-2016-6301.patch +++ /dev/null @@ -1,37 +0,0 @@ -busybox1.24.1: Fix CVE-2016-6301 - -[No upstream tracking] -- https://bugzilla.redhat.com/show_bug.cgi?id=1363710 - -ntpd: NTP server denial of service flaw - -The busybox NTP implementation doesn't check the NTP mode of packets -received on the server port and responds to any packet with the right -size. This includes responses from another NTP server. An attacker can -send a packet with a spoofed source address in order to create an -infinite loop of responses between two busybox NTP servers. Adding -more packets to the loop increases the traffic between the servers -until one of them has a fully loaded CPU and/or network. - -Upstream-Status: Backport [https://git.busybox.net/busybox/commit/?id=150dc7a2b483b8338a3e185c478b4b23ee884e71] -CVE: CVE-2016-6301 -Signed-off-by: Andrej Valek <andrej.valek@siemens.com> -Signed-off-by: Pascal Bach <pascal.bach@siemens.com> - -diff --git a/networking/ntpd.c b/networking/ntpd.c -index 9732c9b..0f6a55f 100644 ---- a/networking/ntpd.c -+++ b/networking/ntpd.c -@@ -1985,6 +1985,13 @@ recv_and_process_client_pkt(void /*int fd*/) - goto bail; - } - -+ /* Respond only to client and symmetric active packets */ -+ if ((msg.m_status & MODE_MASK) != MODE_CLIENT -+ && (msg.m_status & MODE_MASK) != MODE_SYM_ACT -+ ) { -+ goto bail; -+ } -+ - query_status = msg.m_status; - query_xmttime = msg.m_xmttime; - |