code.ossystems Code Review - openembedded-core.git/commit

]> code.ossystems Code Review - openembedded-core.git/commit

Code Review / openembedded-core.git / commit

author	Yue Tao <Yue.Tao@windriver.com>
	Mon, 14 Apr 2014 04:41:17 +0000 (12:41 +0800)
committer	Richard Purdie <richard.purdie@linuxfoundation.org>
	Thu, 29 May 2014 12:42:10 +0000 (13:42 +0100)
commit	f61238b9431e6470d7e76f8c37c51cebe069514a
tree	d6cbe32bb082a3b602bce9cfd8b4fd2d46576b9f	tree \| snapshot
parent	6a8a9903de24cc7e1f27b1f7202bd4157719327c	commit \| diff

Screen: fix for Security Advisory CVE-2009-1214

GNU screen 4.0.3 creates the /tmp/screen-exchange temporary file with
world-readable permissions, which might allow local users to obtain
sensitive session information.

(From OE-Core rev: 25a212d0154906e7a05075d015dbc1cfdfabb73a)

Signed-off-by: Yue Tao <Yue.Tao@windriver.com>
Signed-off-by: Roy Li <rongqing.li@windriver.com>
Signed-off-by: Saul Wold <sgw@linux.intel.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
Conflicts:
meta/recipes-extended/screen/screen_4.0.3.bb

meta/recipes-extended/screen/screen-4.0.3/screen-4.0.3-CVE-2009-1214.patch	[new file with mode: 0644]	blob
meta/recipes-extended/screen/screen_4.0.3.bb		diff \| blob \| history

Mirror of the official openembedded-core repository

RSS Atom