]> code.ossystems Code Review - openembedded-core.git/commit
Code Review / openembedded-core.git / commit
? search:
summary | shortlog | log | commit | commitdiff | review | tree
(parent: 16e80af) | patch
openssh: CVE-2015-6563 CVE-2015-6564 CVE-2015-6565
authorArmin Kuster <akuster@mvista.com>
Wed, 9 Sep 2015 00:22:26 +0000 (17:22 -0700)
committerRichard Purdie <richard.purdie@linuxfoundation.org>
Fri, 18 Sep 2015 18:21:44 +0000 (19:21 +0100)
commit259df232b513367a0a18b17e3e377260a770288f
tree56fc41bfc18c3fdac2d46b68fccc5001686bf9d3tree | snapshot
parent16e80afe187c173e00b734c757a05157855ed504commit | diff
openssh: CVE-2015-6563 CVE-2015-6564 CVE-2015-6565

three security fixes.

CVE-2015-6563 (Low) openssh: Privilege separation weakness related to PAM support
CVE-2015-6564 (medium)  openssh: Use-after-free bug related to PAM support
CVE-2015-6565 (High)  openssh: Incorrectly set TTYs to be world-writable

Signed-off-by: Armin Kuster <akuster@mvista.com>
meta/recipes-connectivity/openssh/openssh/CVE-2015-6563.patch [new file with mode: 0644] blob
meta/recipes-connectivity/openssh/openssh/CVE-2015-6564.patch [new file with mode: 0644] blob
meta/recipes-connectivity/openssh/openssh/CVE-2015-6565.patch [new file with mode: 0644] blob
meta/recipes-connectivity/openssh/openssh_6.7p1.bb diff | blob | history
Mirror of the official openembedded-core repository