openssh: fix for CVE-2014-2532 - openembedded-core-contrib - OpenEmbedded Core user contribution trees

diff options

author	Chen Qi <Qi.Chen@windriver.com>	2014-05-13 15:46:26 +0800
committer	Richard Purdie <richard.purdie@linuxfoundation.org>	2014-05-29 13:42:10 +0100
commit	e5786afbfa79e1288d1df2401684c4c151c60406 (patch)
tree	e5f8fbfeb622abd0c923034ea406e15bc5ad8398 /meta/recipes-extended/screen/screen_4.0.3.bb
parent	1a965b2ecca07d231a8058e453cbeafacc5b6c69 (diff)
download	openembedded-core-contrib-e5786afbfa79e1288d1df2401684c4c151c60406.tar.gz

openssh: fix for CVE-2014-2532

sshd in OpenSSH before 6.6 does not properly support wildcards on AcceptEnv lines in sshd_config, which allows remote attackers to bypass intended environment restrictions by using a substring located before a wildcard character. (From OE-Core rev: a8d3b8979c27a8dc87971b66a1d9d9282f660596) Signed-off-by: Chen Qi <Qi.Chen@windriver.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org> Conflicts: meta/recipes-connectivity/openssh/openssh_6.5p1.bb

Diffstat (limited to 'meta/recipes-extended/screen/screen_4.0.3.bb')

0 files changed, 0 insertions, 0 deletions


context:
space:
mode: