]> code.ossystems Code Review - openembedded-core.git/commit
Code Review / openembedded-core.git / commit
? search:
summary | shortlog | log | commit | commitdiff | review | tree
(parent: 2d35281) | patch
sudo: CVE-2015-8239
authorSona Sarmadi <sona.sarmadi@enea.com>
Tue, 9 Aug 2016 11:04:41 +0000 (13:04 +0200)
committerRichard Purdie <richard.purdie@linuxfoundation.org>
Fri, 23 Sep 2016 14:26:08 +0000 (15:26 +0100)
commit3564999bd987b08188e2e0eead59a49bebbc5e32
tree48db0f1d68f5e7fa5097a0a3ef5addb1a6f5d7e3tree | snapshot
parent2d35281de8eeeb23343478aa2c87ea0f2aa7ba06commit | diff
sudo: CVE-2015-8239

Fixes race condition when checking digests in sudoers.

Reference:
http://seclists.org/oss-sec/2015/q4/327

Reference to upstream fixes:
https://www.sudo.ws/repos/sudo/raw-rev/397722cdd7ec
https://www.sudo.ws/repos/sudo/raw-rev/0cd3cc8fa195

Signed-off-by: Sona Sarmadi <sona.sarmadi@enea.com>
Signed-off-by: Armin Kuster <akuster808@gmail.com>
meta/recipes-extended/sudo/sudo/CVE-2015-8239-1.patch [new file with mode: 0644] blob
meta/recipes-extended/sudo/sudo/CVE-2015-8239-2.patch [new file with mode: 0644] blob
meta/recipes-extended/sudo/sudo_1.8.15.bb diff | blob | history
Mirror of the official openembedded-core repository