[oe-commits] Catalin Popeanga : bash: Fix for CVE-2014-7186 and CVE-2014-7187
git at git.openembedded.org
git at git.openembedded.org
Fri Oct 10 17:07:57 UTC 2014
Module: openembedded-core.git
Branch: daisy
Commit: 153d1125659df9e5c09e35a58bd51be184cb13c1
URL: http://git.openembedded.org/?p=openembedded-core.git&a=commit;h=153d1125659df9e5c09e35a58bd51be184cb13c1
Author: Catalin Popeanga <Catalin.Popeanga at enea.com>
Date: Thu Oct 9 14:24:29 2014 +0200
bash: Fix for CVE-2014-7186 and CVE-2014-7187
This is a followup patch to incomplete CVE-2014-6271 fix code execution via
specially-crafted environment
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-7186
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-7187
Signed-off-by: Sona Sarmadi <sona.sarmadi at enea.com>
---
.../bash-3.2.48/cve-2014-7186_cve-2014-7187.patch | 99 ++
.../bash/bash/cve-2014-7186_cve-2014-7187.patch | 1315 ++++++++++++++++++++
meta/recipes-extended/bash/bash_3.2.48.bb | 1 +
meta/recipes-extended/bash/bash_4.3.bb | 1 +
4 files changed, 1416 insertions(+)
Diff: http://git.openembedded.org/?p=openembedded-core.git/?a=commitdiff;h=153d1125659df9e5c09e35a58bd51be184cb13c1
More information about the Openembedded-commits
mailing list