]> git.ipfire.org Git - thirdparty/openembedded/openembedded-core-contrib.git/commit
projects / thirdparty / openembedded / openembedded-core-contrib.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 71035c8) | patch
ppp: patch CVE-2024-58250
authorPeter Marko <peter.marko@siemens.com>
Thu, 24 Apr 2025 17:40:29 +0000 (19:40 +0200)
committerSteve Sakoman <steve@sakoman.com>
Fri, 25 Apr 2025 15:05:42 +0000 (08:05 -0700)
commitd04a2b5f4899845429e1c5893535f5df1221fcbf
treeec65e65b757449fb8f9d0d39e33c8bd19e44f1a3tree
parent71035c8c5907f7103ce40b92490a10bd3dde7226commit | diff
ppp: patch CVE-2024-58250

Backport patch to remove vulnerable component.

This is a breaking change, but there will be no other fix for this CVE
as upstream did the deletion without providing a fix first.
If someone really needs this feature, which the commit message describes
as deprecated, bbappend with patch removal is possible.

License-Update: passprompt plugin removed

Signed-off-by: Peter Marko <peter.marko@siemens.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
meta/recipes-connectivity/ppp/ppp/CVE-2024-58250.patch [new file with mode: 0644] blob
meta/recipes-connectivity/ppp/ppp_2.4.9.bb diff | blob | blame | history
Mirror of git://git.openembedded.org/openembedded-core-contrib