busybox: apply patch for CVE-2023-39810 - linux/poky.git - Mirror of git.yoctoproject.org/poky

diff options

author	Peter Marko <peter.marko@siemens.com>	2025-07-12 18:08:27 +0200
committer	Steve Sakoman <steve@sakoman.com>	2025-07-21 09:07:21 -0700
commit	ef6f8d5f462eea3921baad31982e8fa3fac56286 (patch)
tree	a4d5234ebc9be63e0c9dd7b4c7339de5bba102df /scripts/lib/recipetool/create_npm.py
parent	ae35f06bb16d4fb9d2cb99451bed0e7bda645476 (diff)
download	poky-ef6f8d5f462eea3921baad31982e8fa3fac56286.tar.gz

busybox: apply patch for CVE-2023-39810

Backport patch referencing this CVE. Note that the hardening is not activated by default, it adds defconfig option to enable it. Since it introduces a breaking change, it shouldn't be enabled in LTS release by default. This patch makes busybox cpio equivalent in this release to what is currently in master and in kirkstone. Also note that gnu cpio also does not have this hardening, but the CVE is created only against busybox. (From OE-Core rev: 3f2b235526d135094408e3895c01bff7b5b938fb) Signed-off-by: Peter Marko <peter.marko@siemens.com> Signed-off-by: Steve Sakoman <steve@sakoman.com>

Diffstat (limited to 'scripts/lib/recipetool/create_npm.py')

0 files changed, 0 insertions, 0 deletions


context:
space:
mode: