]> code.ossystems Code Review - openembedded-core.git/commit
Code Review / openembedded-core.git / commit
? search:
summary | shortlog | log | commit | commitdiff | review | tree
(parent: 25a212d) | patch
screen: fix for Security Advisory CVE-2009-1215
authorYue Tao <Yue.Tao@windriver.com>
Mon, 14 Apr 2014 05:01:16 +0000 (13:01 +0800)
committerRichard Purdie <richard.purdie@linuxfoundation.org>
Wed, 21 May 2014 08:08:09 +0000 (09:08 +0100)
commitbe8693bf151987f59c9622b8fd8b659ee203cefc
tree2d260f14007a8198cd8e3bc0f9db2784c664be5dtree | snapshot
parent25a212d0154906e7a05075d015dbc1cfdfabb73acommit | diff
screen: fix for Security Advisory CVE-2009-1215

Race condition in GNU screen 4.0.3 allows local users to create or
overwrite arbitrary files via a symlink attack on the
/tmp/screen-exchange temporary file.

Signed-off-by: Yue Tao <Yue.Tao@windriver.com>
Signed-off-by: Roy Li <rongqing.li@windriver.com>
Signed-off-by: Saul Wold <sgw@linux.intel.com>
meta/recipes-extended/screen/screen-4.0.3/screen-4.0.2-CVE-2009-1215.patch [new file with mode: 0644] blob
meta/recipes-extended/screen/screen_4.0.3.bb diff | blob | history
Mirror of the official openembedded-core repository