Commit 68aaca0f authored Mar 26, 2015 by Robert Yang Committed by Richard Purdie Apr 17, 2015

cpio: fix CVE-2015-1197

Additional directory traversal vulnerability via symlinks
cpio CVE-2015-1197

Initial report:
https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=774669
Upstream report:
https://lists.gnu.org/archive/html/bug-cpio/2015-01/msg00000.html



And fix the indent in SRC_URI.

[YOCTO #7182]

(From OE-Core rev: af18ce07)

Signed-off-by: Robert Yang <liezhi.yang@windriver.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
Signed-off-by: Armin Kuster <akuster808@gmail.com>

parent e2032c57

Hide whitespace changes

Inline Side-by-side

Please register or to comment