diff options
author | Archana Polampalli <archana.polampalli@windriver.com> | 2025-10-09 08:43:11 +0530 |
---|---|---|
committer | Steve Sakoman <steve@sakoman.com> | 2025-10-13 12:42:58 -0700 |
commit | e085cf0d53faa7760cc2d43417bce2b28c79669d (patch) | |
tree | 9b0ed0993d796d1816fb4d61ad106796e46980d5 /scripts/lib/mic/plugins/backend/yumpkgmgr.py | |
parent | 8c8680d4c04f4cd8f4fd50bf8390343d438203d7 (diff) | |
download | poky-e085cf0d53faa7760cc2d43417bce2b28c79669d.tar.gz |
go: fix CVE-2025-47906
If the PATH environment variable contains paths which are executables
(rather than just directories), passing certain strings to LookPath
("", ".", and ".."), can result in the binaries listed in the PATH
being unexpectedly returned.
(From OE-Core rev: ed6df1883225ec08e637a0d7a15a6a5da4665d8d)
Signed-off-by: Archana Polampalli <archana.polampalli@windriver.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
Diffstat (limited to 'scripts/lib/mic/plugins/backend/yumpkgmgr.py')
0 files changed, 0 insertions, 0 deletions