helium-3rd-party/meta-openembedded
1
0
Fork 0
mirror of git://git.openembedded.org/meta-openembedded synced 2026-04-02 02:49:12 +00:00
Code Issues Packages Projects Releases Wiki Activity
37,143 Commits 63 Branches 0 Tags
Go to file
Clone
Open with VS Code Open with VSCodium Open with Intellij IDEA
Download ZIP Download TAR.GZ Download BUNDLE
Gyorgy Sarvari 1f70d339eb
minidlna: ignore CVE-2024-51442 
Details: https://nvd.nist.gov/vuln/detail/CVE-2024-51442

The description of the vulnerability says "attacker [...] execute arbitrary
OS commands via a specially crafted minidlna.conf configuration file".

There is no official fix for this CVE, and upstream seems to be inactive
for the past 3 years.

The reason for ignoring this CVE is that the referenced minidlna.conf
file is in the /etc folder, and the file is not world-writable. Which
means that this vulnerability can be exploited only when someone is
root - but if the attacker is already root, they don't need to resort
to minidlna config-file modifications to execute any command they want.

Signed-off-by: Gyorgy Sarvari <skandigraun@gmail.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
2026-02-24 22:30:28 -08:00
contrib
contrib: oe-stylize: Use Python3 explicitly
2023-06-04 22:29:46 -07:00
meta-filesystems
gpiod-sysfs-proxy: update to v0.1.4
2026-02-20 23:34:19 -08:00
meta-gnome
gnome-shell: ignore CVE-2021-3982
2026-02-24 22:30:27 -08:00
meta-initramfs
initramfs-kexecboot-image: Allow supported architectures
2025-12-31 08:28:50 -08:00
meta-multimedia
minidlna: ignore CVE-2024-51442
2026-02-24 22:30:28 -08:00
meta-networking
open62541: update to v1.4.16
2026-02-20 23:34:20 -08:00
meta-oe
libcdio: mark CVE-2024-36600 fixed
2026-02-24 22:30:27 -08:00
meta-perl
libio-compress-perl: upgrade 2.214 -> 2.217
2026-02-06 10:06:22 -08:00
meta-python
python3-gunicorn: Upgrade 24.1.1 -> 25.1.0
2026-02-24 22:30:27 -08:00
meta-webserver
webmin: upgrade 2.501 -> 2.520
2026-02-24 22:30:26 -08:00
meta-xfce
thunar: upgrade 4.20.5 -> 4.20.7
2026-02-17 22:42:40 -08:00
.b4-config
Add toplevel b4 config file
2025-04-10 08:31:06 -07:00
.gitignore
.gitignore: add *.pyc and *.pyo
2019-06-15 16:45:33 -07:00
COPYING.MIT
add README and license for this layer
2011-02-13 16:47:32 +01:00
README.md
layers: Move READMEs to markdown format
2023-06-17 08:30:01 -07:00

README.md

Collection of layers for the OE-core universe

Main layer maintainer: Khem Raj raj.khem@gmail.com

This repository is a collection of layers to suppliment OE-Core with additional packages, Each layer have designated maintainer Please see the respective READMEs in the layer subdirectories

Description
Collection of OpenEmbedded layers
https://openembedded.org/
Readme 94 MiB
Languages
BitBake 84.9%
Shell 6.3%
C 3%
Roff 2.2%
NASL 1.9%
Other 1.5%