shadow: Fix for CVE-2023-4641

shadow-utils: possible password leak during passwd(1) change CVE: CVE-2023-4641 Upstream-Status: Backport [https://github.com/shadow-maint/shadow/commit/65c88a43a23c2391dcc90c0abda3e839e9c57904] Signed-off-by: Xiangyu Chen <xiangyu.chen@windriver.com> Signed-off-by: Alexandre Belloni <alexandre.belloni@bootlin.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
author: Xiangyu Chen <xiangyu.chen@windriver.com> 2023-11-30 17:27:51 +0800
committer: Richard Purdie <richard.purdie@linuxfoundation.org> 2023-12-04 11:23:33 +0000
commit: 7942df17d9dfcf690106b8b86506d496e6251327 (patch)
tree: f84f4999f861ff1cafe0315332d400c976233914 /meta/recipes-extended/shadow/shadow.inc
parent: 2e0f552cac05c2b9f5a80ac396374a7987238a34 (diff)
download: openembedded-core-7942df17d9dfcf690106b8b86506d496e6251327.tar.gz
1 files changed, 1 insertions, 0 deletions
diff --git a/meta/recipes-extended/shadow/shadow.inc b/meta/recipes-extended/shadow/shadow.inc
index 83e1a84769..ce3ce62715 100644
--- a/meta/recipes-extended/shadow/shadow.inc
+++ b/meta/recipes-extended/shadow/shadow.inc
@@ -17,6 +17,7 @@ SRC_URI = "${GITHUB_BASE_URI}/download/${PV}/${BP}.tar.gz \
 	   file://0001-Fix-can-not-print-full-login.patch \
            file://CVE-2023-29383.patch \
            file://0001-Overhaul-valid_field.patch \
+           file://CVE-2023-4641.patch \
            "
 
 SRC_URI:append:class-target = " \
author	Xiangyu Chen <xiangyu.chen@windriver.com>	2023-11-30 17:27:51 +0800
committer	Richard Purdie <richard.purdie@linuxfoundation.org>	2023-12-04 11:23:33 +0000
commit	7942df17d9dfcf690106b8b86506d496e6251327 (patch)
tree	f84f4999f861ff1cafe0315332d400c976233914 /meta/recipes-extended/shadow/shadow.inc
parent	2e0f552cac05c2b9f5a80ac396374a7987238a34 (diff)
download	openembedded-core-7942df17d9dfcf690106b8b86506d496e6251327.tar.gz