3099 Commits

Author SHA1 Message Date
Gyorgy Sarvari
360720faba mtr: patch CVE-2025-49809
Details: https://nvd.nist.gov/vuln/detail/CVE-2025-49809

Pick the patch mentioned in the NVD report.

Signed-off-by: Gyorgy Sarvari <skandigraun@gmail.com>
2025-12-25 13:56:58 +01:00
Gyorgy Sarvari
8611f92c20 proftpd: patch CVE-2024-48651
Details: https://nvd.nist.gov/vuln/detail/CVE-2024-48651

Backport the patch mentioned in the NVD report.

Signed-off-by: Gyorgy Sarvari <skandigraun@gmail.com>
2025-12-17 15:38:00 +01:00
Hitendra Prajapati
ea388c67e4 wireshark: fix CVE-2025-13499
Upstream-Status: Backport from e180152d3d

Signed-off-by: Hitendra Prajapati <hprajapati@mvista.com>
Signed-off-by: Gyorgy Sarvari <skandigraun@gmail.com>
2025-12-16 08:41:05 +01:00
Kai Kang
b1e0fadb72 mbedtls: fix CVE-2025-47917
CVE-2025-47917 is that the function mbedtls_x509_string_to_names() takes
a head argument and performs a deep free() on it.

Backport patch to fix CVE-2025-47917 and drop the modification in doc
file and comment in header file which lack of context.

Signed-off-by: Kai Kang <kai.kang@windriver.com>
Signed-off-by: Gyorgy Sarvari <skandigraun@gmail.com>
2025-12-16 08:39:06 +01:00
Gyorgy Sarvari
4437919060 znc: patch CVE-2024-39844
Details: https://nvd.nist.gov/vuln/detail/CVE-2024-39844

Pick the patch that is mentioned in the oss-security[1] advisory

[1]: https://www.openwall.com/lists/oss-security/2024/07/03/9

Signed-off-by: Gyorgy Sarvari <skandigraun@gmail.com>
2025-12-14 16:18:46 +01:00
Gyorgy Sarvari
bc55ba3d8c babeld: fix installation with usrmerge
In case usrmerge DISTRO_FEATURE is enabled, the recipe installed
the application to /bin folder, which is however a symlink to /usr/bin,
so the installation ultimately failed.

To fix this, set the correct prefix for the installation.

This is a partial backport of f91983f1f3e897d25ab477fdfb5baed89ccc0daf

Signed-off-by: Gyorgy Sarvari <skandigraun@gmail.com>
2025-12-02 13:54:02 +01:00
Gyorgy Sarvari
b5a19849c5 usbredir: patch CVE-2021-3700
Details: https://nvd.nist.gov/vuln/detail/CVE-2021-3700

Pick the patch mentioned in the nvd report.

Signed-off-by: Gyorgy Sarvari <skandigraun@gmail.com>
2025-11-30 15:13:57 +01:00
Gyorgy Sarvari
eeda504ce9 usrsctp: patch CVE-2019-20503
Details: https://nvd.nist.gov/vuln/detail/CVE-2019-20503

Pick the patch mentioned in the nvd report.

Signed-off-by: Gyorgy Sarvari <skandigraun@gmail.com>
2025-11-30 15:13:57 +01:00
Gyorgy Sarvari
665e1cad14 spice: correct SRC_URI
The previous repository was moved to freedesktop's gitlab instance

Signed-off-by: Gyorgy Sarvari <skandigraun@gmail.com>
2025-11-17 09:08:37 +01:00
Gyorgy Sarvari
b8506b722c nng: Rename default branch of github.com:nanomsg/nng.git
Default branch is renamed from `master` to `main`. Commitshas are the
same.

Signed-off-by: Jeroen Knoops <jeroen.knoops@philips.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
(cherry picked from commit 58679b6a515b51d28c480836ad598fca6f0cc655)
Signed-off-by: Gyorgy Sarvari <skandigraun@gmail.com>
2025-11-17 09:08:35 +01:00
Gyorgy Sarvari
c90f715444 netsniff-ng: update SRC_URI branch
master branch was renamed to main

Signed-off-by: Gyorgy Sarvari <skandigraun@gmail.com>
2025-11-17 09:08:28 +01:00
Gyorgy Sarvari
9b1be4d915 ncftp: correct SRC_URI
The original xz-compressed tarball isn't available at the download
location anymore - switch to the gz tarball which is still there.

Signed-off-by: Gyorgy Sarvari <skandigraun@gmail.com>
2025-11-17 09:08:27 +01:00
Gyorgy Sarvari
77b9cc908f usbredir: update SRC_URI
The previous git repositoy was moved to freedesktop's gitlab instance.

Signed-off-by: Gyorgy Sarvari <skandigraun@gmail.com>
2025-11-17 09:08:26 +01:00
Gyorgy Sarvari
51b503c1a1 http-parser: fix SRC_URI branch
master was renamed to main

Signed-off-by: Gyorgy Sarvari <skandigraun@gmail.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
(cherry picked from commit 8fb37f0f954e234d132468adba2072a70812a818)
2025-11-17 09:08:22 +01:00
Yi Zhao
edccf97374 mbedtls: upgrade 2.28.9 -> 2.28.10
ChangeLog
https://github.com/Mbed-TLS/mbedtls/releases/tag/mbedtls-2.28.10

Signed-off-by: Yi Zhao <yi.zhao@windriver.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
(cherry picked from commit ca08c742230b758f6ebb428901d51169f1e6044a)
Signed-off-by: Haixiao Yan <haixiao.yan.cn@windriver.com>
Signed-off-by: Gyorgy Sarvari <skandigraun@gmail.com>
2025-11-05 16:42:50 +01:00
Chen Qi
f9577ae033 frr: add CVE_PRODUCT
The CVE_PRODUCT is frrouting in NVD database.

Signed-off-by: Chen Qi <Qi.Chen@windriver.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
(cherry picked from commit 10c7793832ec492da50c89889c5cdd114962b7a5)
Signed-off-by: Gyorgy Sarvari <skandigraun@gmail.com>
2025-11-03 16:35:26 +01:00
Gyorgy Sarvari
da6b309429 net-snmp: fix ptests
Add missing dependencies.

Signed-off-by: Gyorgy Sarvari <skandigraun@gmail.com>
2025-10-29 17:05:14 +01:00
Khem Raj
3f4f321d04 openl2tp: Fix ptests
- Detect active network interface to use, instead of asking user, this needs
  to run in automation
- Find the location of ppp_null.so with find instead of rpm, rpm is a distro choice
  it can be assumed to be always there.
- Add missing runtime deps for ptests
- Kill openl2tpd started by run-ptest script before exiting, otherwise
  ptest runner hangs forever.

Signed-off-by: Khem Raj <raj.khem@gmail.com>
(cherry picked from commit d30427f475f273ab8c5dd83b2c076bb4fc8a9a82)
Signed-off-by: Gyorgy Sarvari <skandigraun@gmail.com>
2025-10-29 16:59:58 +01:00
Zhang Peng
50c69deb2c frr: fix CVE-2024-31949
CVE-2024-31949:
In FRRouting (FRR) through 9.1, an infinite loop can occur when receiving a MP/GR capability
as a dynamic capability because malformed data results in a pointer not advancing.

Reference:
[https://nvd.nist.gov/vuln/detail/CVE-2024-31949]
[https://salsa.debian.org/lts-team/packages/frr/-/blob/debian/7.5.1-1.1+deb10u4/debian/patches/CVE-2024-31949.patch?ref_type=tags]

Upstream patches:
[30a332dad8]

Signed-off-by: Zhang Peng <peng.zhang1.cn@windriver.com>
Signed-off-by: Gyorgy Sarvari <skandigraun@gmail.com>
2025-10-29 16:59:21 +01:00
Gyorgy Sarvari
d2da8450c0 freediameter: fix run-ptest reporting
Add PASS/FAIL printout at the end of the execution.

Signed-off-by: Gyorgy Sarvari <skandigraun@gmail.com>
2025-10-27 21:13:20 +01:00
Gyorgy Sarvari
c71d61037e python3-scapy: fix ptests
1. Enable network access during tests by setting a nameserver
2. Add missing tshark dependency
3. Install missing test files

Signed-off-by: Gyorgy Sarvari <skandigraun@gmail.com>
2025-10-27 21:13:18 +01:00
Gyorgy Sarvari
0d9619b1bc keepalived: patch CVE-2021-44225
Details: https://nvd.nist.gov/vuln/detail/CVE-2021-44225

Pick patch mentioned in the nvd report.

Signed-off-by: Gyorgy Sarvari <skandigraun@gmail.com>
2025-10-27 18:08:19 +01:00
Vijay Anusuri
d342d283b3 unbound: Fix CVE-2022-3204
Upstream-Status: Backport from 137719522a

Signed-off-by: Vijay Anusuri <vanusuri@mvista.com>
Signed-off-by: Gyorgy Sarvari <skandigraun@gmail.com>
2025-10-27 11:17:35 +01:00
Vijay Anusuri
0bf05b6de8 unbound: Fix for CVE-2022-30698 and CVE-2022-30699
Upstream-Status: Backport from f6753a0f10

Signed-off-by: Vijay Anusuri <vanusuri@mvista.com>
Signed-off-by: Gyorgy Sarvari <skandigraun@gmail.com>
2025-10-27 11:17:35 +01:00
Gyorgy Sarvari
88be6af76b squid: fix esi PACKAGECONFIG
libxml has derecated the "xmlSetFeature" call, and hid is behind a special
config flag (--with-legacy), which is not used by default in oe-core.

This makes compilation fail, when "esi" PACKAGECONFIG is enabled:

Libxml2Parser.cc:94:5: error: 'xmlSetFeature' was not declared in this scope; did you mean 'xmlHasFeature'?

This backported patch fixes this.

Signed-off-by: Gyorgy Sarvari <skandigraun@gmail.com>
2025-10-27 11:17:33 +01:00
Gyorgy Sarvari
efbc247121 squid: patch CVE-2025-59362
Details: https://nvd.nist.gov/vuln/detail/CVE-2025-59362

Pick the PR content that's referenced in the nvd report.

Signed-off-by: Gyorgy Sarvari <skandigraun@gmail.com>
2025-10-27 11:17:30 +01:00
Gyorgy Sarvari
bb7620585c squid: patch CVE-2023-46724
Details: https://nvd.nist.gov/vuln/detail/CVE-2023-46724

Pick the patch from the details of the nvd report.

Signed-off-by: Gyorgy Sarvari <skandigraun@gmail.com>
2025-10-27 11:17:28 +01:00
Gyorgy Sarvari
4c30475f5d squid: patch CVE-2022-41318
Details: https://nvd.nist.gov/vuln/detail/CVE-2022-41318

Pick the v4 patch referenced in the nvd report.

Signed-off-by: Gyorgy Sarvari <skandigraun@gmail.com>
2025-10-27 11:17:25 +01:00
Gyorgy Sarvari
3183e67999 squid: patch CVE-2022-41317
Details: https://nvd.nist.gov/vuln/detail/CVE-2022-41317

Pick the v4 patch referenced in the nvd report.

Signed-off-by: Gyorgy Sarvari <skandigraun@gmail.com>
2025-10-27 11:17:22 +01:00
Gyorgy Sarvari
ccfa20cea9 squid: patch CVE-2021-46784
Details: https://nvd.nist.gov/vuln/detail/CVE-2021-46784

Pick the backported patch from v4 branch, that referenced the same PR[1]
that the patch[2] from the nvd report refers to.

[1]: https://github.com/squid-cache/squid/pull/1022
[2]: 5e2ea2b13b

Signed-off-by: Gyorgy Sarvari <skandigraun@gmail.com>
2025-10-27 11:17:18 +01:00
Gyorgy Sarvari
c7a33c2d5a netkit-telnet: patch CVE-2022-39028
Details: https://nvd.nist.gov/vuln/detail/CVE-2022-39028

Pick the patch mentioned in the nvd report.

Signed-off-by: Gyorgy Sarvari <skandigraun@gmail.com>
2025-10-27 11:17:13 +01:00
Vijay Anusuri
6c8ae54fc3 proftpd: Fix CVE-2023-48795
Upstream-Status: Backport from bcec15efe6

Signed-off-by: Vijay Anusuri <vanusuri@mvista.com>
Signed-off-by: Gyorgy Sarvari <skandigraun@gmail.com>
2025-10-20 11:59:36 +02:00
Peter Marko
5bb71a5f0f squid: mark CVE-2025-54574 as patched
Per [1] CVE-2025-54574 is fixed in patch for CVE-2023-5824.
That was a composite patch from more commits.
When checking it, it really contains also commit [2] which is mentioned
as fix for CVE-2025-54574.

[1] https://security-tracker.debian.org/tracker/CVE-2025-54574
[2] a27bf4b84d

Signed-off-by: Peter Marko <peter.marko@siemens.com>
Signed-off-by: Gyorgy Sarvari <skandigraun@gmail.com>
2025-10-17 10:51:27 +02:00
Rajeshkumar Ramasamy
7eadf76d76 open-vm-tools: fix CVE-2025-41244
VMware Aria Operations and VMware Tools contain a local privilege
escalation vulnerability. A malicious local actor with non-administrative
privileges having access to a VM with VMware Tools installed and managed
by Aria Operations with SDMP enabled may exploit this vulnerability
to escalate privileges to root on the same VM.

Reference:
https://nvd.nist.gov/vuln/detail/CVE-2025-41244

Upstream-patch:
7ed196cf01

Signed-off-by: Rajeshkumar Ramasamy <rajeshkumar.ramasamy@windriver.com>
Signed-off-by: Gyorgy Sarvari <skandigraun@gmail.com>
2025-10-17 10:51:26 +02:00
Archana Polampalli
b6c9eb2ce5 tcpreplay: fix CVE-2025-51006
Within tcpreplay's tcprewrite, a double free vulnerability has been identified
in the dlt_linuxsll2_cleanup() function in plugins/dlt_linuxsll2/linuxsll2.c.
This vulnerability is triggered when tcpedit_dlt_cleanup() indirectly
invokes the cleanup routine multiple times on the same memory region.
By supplying a specifically crafted pcap file to the tcprewrite binary,
a local attacker can exploit this flaw to cause a Denial of Service (DoS) via memory corruption.

Signed-off-by: Archana Polampalli <archana.polampalli@windriver.com>
Signed-off-by: Gyorgy Sarvari <skandigraun@gmail.com>
2025-10-17 10:51:26 +02:00
Archana Polampalli
0538af085a tcpreplay: fix CVE-2025-9157
A vulnerability was determined in appneta tcpreplay up to 4.5.2-beta2.
The impacted element is the function untrunc_packet of the file
src/tcpedit/edit_packet.c of the component tcprewrite. Executing
manipulation can lead to use after free. It is possible to launch
the attack on the local host. The exploit has been publicly disclosed
and may be utilized. This patch is called 73008f261f1cdf7a1087dc8759115242696d35da.
Applying a patch is advised to resolve this issue.

Signed-off-by: Archana Polampalli <archana.polampalli@windriver.com>
Signed-off-by: Gyorgy Sarvari <skandigraun@gmail.com>
2025-10-17 10:51:26 +02:00
Gyorgy Sarvari
bf9fc50ccc dovecot: patch CVE-2021-33515
Details: https://nvd.nist.gov/vuln/detail/CVE-2021-33515

Backport the relevant patch.

Signed-off-by: Gyorgy Sarvari <skandigraun@gmail.com>
2025-10-12 13:08:38 +02:00
Gyorgy Sarvari
91a9a3d61f dovecot: patch CVE-2022-30550
Details: https://nvd.nist.gov/vuln/detail/CVE-2022-30550

Pick the commit referenced in https://www.openwall.com/lists/oss-security/2022/07/08/1

Signed-off-by: Gyorgy Sarvari <skandigraun@gmail.com>
2025-10-12 13:08:33 +02:00
Gyorgy Sarvari
b157fa0412 civetweb: patch CVE-2020-27304
Details: https://nvd.nist.gov/vuln/detail/CVE-2020-27304

Take the patches referenced in
https://jfrog.com/blog/cve-2020-27304-rce-via-directory-traversal-in-civetweb-http-server/
(which URL is also referenced by NIST)

Signed-off-by: Gyorgy Sarvari <skandigraun@gmail.com>
2025-10-12 13:08:29 +02:00
Peter Kjellerstedt
e8be179802 recipes: Remove double protocol= from SRC_URIs
With the exception of paho-mqtt-cpp, the double protocol= attributes
were added to the SRC_URIs when protocol=https was added to all SRC_URIs
fetching from github.com in commit b402a3076f (recipes: Update SRC_URI
branch and protocols).

Signed-off-by: Peter Kjellerstedt <peter.kjellerstedt@axis.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
(cherry picked from commit 2e0a581bee7fc15a78f6e19ba1e596930edee414)
Signed-off-by: Gyorgy Sarvari <skandigraun@gmail.com>
2025-09-29 20:15:32 +02:00
Wang Mingyu
23d9cf882f uftp: upgrade 5.0.2 -> 5.0.3
Changelog:
===========
-A memory leak fix in the prior version wasn't applied correctly, resulting
 in an invalid memory access causing a crash.

Signed-off-by: Wang Mingyu <wangmy@fujitsu.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
(cherry picked from commit 5d050f078afcb24d0532367592b074ae0787b06f)
Signed-off-by: Gyorgy Sarvari <skandigraun@gmail.com>
2025-09-29 20:15:31 +02:00
Wang Mingyu
975368a20e uftp: upgrade 5.0.1 -> 5.0.2
Changelog:
=========
-Fixed bug that caused crash when a CLIENT_KEY arrived out of order
-Fixed option handling on Windows when an argument is missing

Signed-off-by: Wang Mingyu <wangmy@fujitsu.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
(cherry picked from commit 93a5628ae660bf6aa3cfdc9e0032088e4df8a0c5)
Signed-off-by: Gyorgy Sarvari <skandigraun@gmail.com>
2025-09-29 20:15:31 +02:00
Wang Mingyu
76de61ab0a uftp: upgrade 5.0 -> 5.0.1
Changelog:
==========
-On very low speed transfers (<10Kbps) sessions would time out due to a very
  large interpacket transmission interval.  Fixed by putting a lower limit
  on the advertised GRTT of of the interpacket transmission interval.
-Sending of ABORT messages on early shutdown would sometimes fail due to
  OpenSSL cleanup functions running before application cleanup.  Changed the
  ordering of atexit() handlers to ensure OpenSSL cleanup happens last.
-Fixed missing timestamp update when clients read CONG_CTRL messages
-Fix to GRTT handling on server to ensure it doesn't fall below minumim.
-Fixed bypassed checking of existing files on client for backup
-Various logging fixes

Signed-off-by: Wang Mingyu <wangmy@fujitsu.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
(cherry picked from commit 0a58426ed073d48533276688445df3777776886b)
Signed-off-by: Gyorgy Sarvari <skandigraun@gmail.com>
2025-09-29 20:15:31 +02:00
Yi Zhao
68c66db375 libtdb: upgrade 1.4.3 -> 1.4.7
* Refresh patches
* Add a patch to skip checking PYTHONHASHSEED

Signed-off-by: Yi Zhao <yi.zhao@windriver.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
(cherry picked from commit cf53340f000b770faba44560e81a3d1e15138805)
Signed-off-by: Gyorgy Sarvari <skandigraun@gmail.com>
2025-09-29 20:15:31 +02:00
wangmy
8426871255 cifs-utils: upgrade 6.14 -> 6.15
Signed-off-by: Wang Mingyu <wangmy@fujitsu.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
(cherry picked from commit 88ea7fc012f3edcb7ee7b22330826d285f0319b7)

Adapted to Kirkstone.

Signed-off-by: Gyorgy Sarvari <skandigraun@gmail.com>
2025-09-29 20:15:31 +02:00
Randy MacLeod
d42bb883dd tnftp: switch the SRC_URI to https
Signed-off-by: Randy MacLeod <Randy.MacLeod@windriver.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
(cherry picked from commit 8f4dc754cf2a01905211a89980f7a492c33b71a8)
Signed-off-by: Gyorgy Sarvari <skandigraun@gmail.com>
2025-09-29 20:15:31 +02:00
Khem Raj
bb12695af8 ssmping: Use debian mirror for SRC_URI
Original URI is not accessible anymore
Drop md5sum

Signed-off-by: Khem Raj <raj.khem@gmail.com>
(cherry picked from commit ceb91603415c6e059d866666574dd1be5b93867a)
Signed-off-by: Gyorgy Sarvari <skandigraun@gmail.com>
2025-09-29 20:15:31 +02:00
Randy MacLeod
790b431538 pimd: switch SRC_URI to https
Switch SRC_URI to https (yes, the URI still has ftp in the path!).
Also drop the obsolete SRC_URI[md5sum].

Signed-off-by: Randy MacLeod <Randy.MacLeod@windriver.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
(cherry picked from commit 9221eaa8d6d4279f4477a30bc3112d32af04b976)
Signed-off-by: Gyorgy Sarvari <skandigraun@gmail.com>
2025-09-29 20:15:31 +02:00
Wang Mingyu
a88c4f592f ndisc6: upgrade 1.0.7 -> 1.0.8
Changelog
============
Fix potential garbage whilst prining an advertised prefix.

Signed-off-by: Wang Mingyu <wangmy@fujitsu.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
(cherry picked from commit 3fe7c5fae8576b41dbe546491649e9bdb4ed5096)
Signed-off-by: Gyorgy Sarvari <skandigraun@gmail.com>
2025-09-29 20:15:31 +02:00
Wang Mingyu
b2dbbd49ca ndisc6: upgrade 1.0.6 -> 1.0.7
Changelog:
=========
# Do not ignore multicast advertisements when discovery was sent as unicast
  (fix regression from 1.0.5).

Signed-off-by: Wang Mingyu <wangmy@fujitsu.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
(cherry picked from commit a014528ede30caf2e1ac340bc09222428c4f5870)
Signed-off-by: Gyorgy Sarvari <skandigraun@gmail.com>
2025-09-29 20:15:31 +02:00