summaryrefslogtreecommitdiffstats
path: root/recipes-scanners
Commit message (Collapse)AuthorAgeFilesLines
* clamav: Fix for CVE-2024-20328kirkstone-nextVijay Anusuri2024-07-172-0/+154
| | | | | | | Upstream-Status: Backport [https://github.com/Cisco-Talos/clamav/commit/fe7638287bb11419474ea314652404e7e9b314b2] Signed-off-by: Vijay Anusuri <vanusuri@mvista.com> Signed-off-by: Armin Kuster <akuster808@gmail.com>
* clamav: make install owner match the added user nameJeremy A. Puhlman2022-07-211-1/+1
| | | | | | | | | | | USERADD_PARAM:${PN}-freshclam = "--system -g ${CLAMAV_GID} --home-dir \ ${localstatedir}/lib/${BPN} \ --no-create-home --shell /sbin/nologin ${PN}" The username added to the passwd file is ${PN}. When ${PN} is multilibized, it no longer matches CLAMAV_UID. Make the two match. Signed-off-by: Jeremy A. Puhlman <jpuhlman@mvista.com>
* LICENSE: update to SPDX standard namesJoe Slater2022-04-132-2/+2
| | | | | | | Use convert-spdx-licenses.py to update LICENSE in recipes. Signed-off-by: Joe Slater <joe.slater@windriver.com> Signed-off-by: Armin Kuster <akuster808@gmail.com>
* clamav: add COMPATIBLE_HOST to fix build errorDavide Gardenal2022-04-071-0/+2
| | | | | | | | Add COMPATIBLE_HOST to match what is found in glibc to avoid build error when using musl Signed-off-by: Davide Gardenal <davide.gardenal@huawei.com> Signed-off-by: Armin Kuster <akuster808@gmail.com>
* meta-security : Use SPDX style licensing formatAshish Sharma2022-04-021-1/+1
| | | | | | | | | | | | | | WARNING: selinux-sandbox-3.3-r0 do_package_qa: QA Issue: Recipe LICENSE includes obsolete licenses GPLv2+ [obsolete-license] \ WARNING: selinux-gui-3.3-r0 do_package_qa: QA Issue: Recipe LICENSE includes obsolete licenses GPLv2+ [obsolete-license] \ WARNING: semodule-utils-3.3-r0.1 do_package_qa: QA Issue: Recipe LICENSE includes obsolete licenses GPLv2+ [obsolete-license] \ WARNING: selinux-dbus-3.3-r0 do_package_qa: QA Issue: Recipe LICENSE includes obsolete licenses GPLv2+ [obsolete-license] \ WARNING: libwhisker2-perl-2.5-r0 do_package_qa: QA Issue: Recipe LICENSE includes obsolete licenses GPL-1.0+ [obsolete-license] \ WARNING: lib-perl-0.63-r0 do_package_qa: QA Issue: Recipe LICENSE includes obsolete licenses GPL-1.0+ [obsolete-license] \ WARNING: libhtp-0.5.39-r0 do_package_qa: QA Issue: Recipe LICENSE includes obsolete licenses GPLv2 [obsolete-license] \ ... Signed-off-by: Ashish Sharma <asharma@mvista.com> Signed-off-by: Armin Kuster <akuster808@gmail.com>
* clamav: fix useradd warningArmin Kuster2021-12-251-4/+4
| | | | | | | | | | WARNING: security-build-image-1.0-r0 do_rootfs: [log_check] security-build-image: found 2 warning messages in the logfile: [log_check] warning: user clamav does not exist - using root [log_check] warning: group clamav does not exist - using root clamav-freshclam is the package needing to have its user/group set. Signed-off-by: Armin Kuster <akuster808@gmail.com>
* recipes: Update SRC_URI branch and protocolsArmin Kuster2021-11-042-2/+2
| | | | | | | | This patch updates SRC_URIs using git to include branch=master if no branch is set and also to use protocol=https for github urls as generated by the conversion script in OE-Core. Signed-off-by: Armin Kuster <akuster808@gmail.com>
* clamav: Set clamav:clamav ownership on /var/lib/clamav in do_installZoltán Böszörményi2021-09-281-4/+5
| | | | | | | | | | | | | | | | | | | | | | | | | | | | Also, rearrange the runtime-dependencies a little so clamav-freshclam is installed later than clamav. The issue is that clamav-freshclam ships /var/lib/clamav and the main clamav package uses chown in pkg_postinst to set the ownership of this directory. But pkg_postinst is not marked as "ontarget" so this chown only took effect when upgrading or reinstalling the package. So when clamav is part of an OS image out of the box, freshclamd cannot populate this directory since it's running under the clamav user. Fix this by creating /var/lib/clamav with the proper ownership in do_install and rearrange runtime-dependencies, so clamav-freshclam RDEPENDS on clamav and clamav relaxes its runtime-dependency into RRECOMMENDS so clamav-freshclam is installed later than clamav, avoiding these warnings: Installing : clamav-freshclam-... 487/1954 warning: user clamav does not exist - using root warning: group clamav does not exist - using root Signed-off-by: Zoltán Böszörményi <zboszor@gmail.com> Signed-off-by: Armin Kuster <akuster808@gmail.com>
* chkrootkit: update to 0.55Armin Kuster2021-09-281-2/+1
| | | | | | | | | | changes: Umbreon Linux Rootkit detection Kinsing.A Backdoor RotaJakito Backdoor Minor bug fixes Signed-off-by: Armin Kuster <akuster808@gmail.com>
* checksec: set precise BSD licenseArmin Kuster2021-09-151-1/+1
| | | | | | "BSD" is ambiguous, use the precise licenses BSD-3-Clause Signed-off-by: Armin Kuster <akuster808@gmail.com>
* meta-security: Convert to new override syntaxArmin Kuster2021-08-017-28/+174
| | | | Signed-off-by: Armin Kuster <akuster808@gmail.com>
* clamav: fix branch name and updateArmin Kuster2021-07-284-10/+10
| | | | | | | They dropped the dev branch for rel. Update to tip. Refresh patches Signed-off-by: Armin Kuster <akuster808@gmail.com>
* clamav: upgrade to latest revisionUpgrade Helper2021-06-051-2/+2
| | | | Signed-off-by: Armin Kuster <akuster808@gmail.com>
* clamav: fix systemd startupArmin Kuster2021-05-162-21/+48
| | | | | | cleanup recipe Signed-off-by: Armin Kuster <akuster808@gmail.com>
* clamav: update to tip.Armin Kuster2021-05-161-1/+4
| | | | | | Add UPSTEAM_CHECK Signed-off-by: Armin Kuster <akuster808@gmail.com>
* clamav: remove rest of mirror.dat refArmin Kuster2021-04-141-4/+2
| | | | Signed-off-by: Armin Kuster <akuster808@gmail.com>
* clamav: fix systemd service installArmin Kuster2021-04-021-1/+4
| | | | | | | | ERROR: clamav-0.104.0-r0 do_package: QA Issue: clamav: Files/directories were installed but not shipped in any package: /lib/systemd/system/clamav-daemon.service /lib/systemd/system/clamav-clamonacc.service Signed-off-by: Armin Kuster <akuster808@gmail.com>
* clamav: upgrade 104.0Armin Kuster2021-04-023-64/+134
| | | | | | | | | | | | | | | convert to cmake and general cleanup include on oe env patch and glibc 2.33 header fixup if running w/in qemu, need to add qemuparams="-m 2048" to allow freshclam not to oom Signed-off-by: Armin Kuster <akuster808@gmail.com> --- V2] Bump PV to match what is being d/l
* checksec: upgrade 2.1.0 -> 2.4.0Armin Kuster2021-03-021-2/+2
| | | | LIC_FILES_CHKSUM update do to yr change
* arpwatch: upgrade 3.0 -> 3.1Armin Kuster2021-03-021-2/+2
| | | | LIC_FILES_CHKSUM update do to yr change
* nikito: Update common-licenses references to match new namesArmin Kuster2021-02-232-2/+2
| | | | Signed-off-by: Armin Kuster <akuster808@gmail.com>
* clamav: unify volatiles file nameYi Zhao2020-11-031-1/+1
| | | | | | | Make the volatiles file name starts with digital. Signed-off-by: Yi Zhao <yi.zhao@windriver.com> Signed-off-by: Armin Kuster <akuster808@gmail.com>
* clamav: update SO_VER to 9.0.4Charlie Davies2020-09-131-1/+1
| | | | | Signed-off-by: Charlie Davies <charles.davies@whitetree.xyz> Signed-off-by: Armin Kuster <akuster808@gmail.com>
* clamav: add INSTALL_CLAMAV_CVD flag to do_installCharlie Davies2020-08-041-1/+3
| | | | | | | | | Recipe provides INSTALL_CLAMAV_CVD flag to bypass clamav cvd db creation. During do_install this flag should be used to conditionally skip install of cvd db if needed. Signed-off-by: Charlie Davies <charles.davies@whitetree.xyz> Signed-off-by: Armin Kuster <akuster808@gmail.com>
* clamav: resolve multilib issuesJeremy Puhlman2020-06-191-1/+4
| | | | | Signed-off-by: Jeremy Puhlman <jpuhlman@mvista.com> Signed-off-by: Armin Kuster <akuster808@gmail.com>
* buck-security: fix runtime issue with missing per moduleArmin Kuster2020-05-151-2/+2
| | | | Signed-off-by: Armin Kuster <akuster808@gmail.com>
* arpwatch: add new recipeArmin Kuster2020-03-276-0/+344
| | | | Signed-off-by: Armin Kuster <akuster808@gmail.com>
* buck-security: move to recipes-scannersArmin Kuster2020-03-271-0/+45
| | | | Signed-off-by: Armin Kuster <akuster808@gmail.com>
* checksecurity: move to recipes-scannersArmin Kuster2020-03-273-0/+96
| | | | Signed-off-by: Armin Kuster <akuster808@gmail.com>
* checksec: move to recipe-scannersArmin Kuster2020-03-271-0/+19
| | | | Signed-off-by: Armin Kuster <akuster808@gmail.com>
* clamav: move to recipes-scannersArmin Kuster2020-03-279-0/+1540
| | | | Signed-off-by: Armin Kuster <akuster808@gmail.com>
* chkrootkit: add rootkit recipeArmin Kuster2020-03-271-0/+48
Signed-off-by: Armin Kuster <akuster808@gmail.com>
generated by cgit v1.2.3-54-g00ecf (git 2.39.0) at 2025-07-24 19:31:49 +0000