731c201426
Follow up bash42-049 to parse properly function definitions in the values of environment variables, to not allow remote attackers to execute arbitrary code or to cause a denial of service. See: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-6277 (From OE-Core daisy rev: 85961bcf81650992259cebb0ef1f1c6cdef3fefa) (From OE-Core rev: 5a802295d1f40af6f21dd3ed7e4549fe033f03a0) Signed-off-by: Catalin Popeanga <Catalin.Popeanga@enea.com> Signed-off-by: Paul Eggleton <paul.eggleton@linux.intel.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org> |
||
---|---|---|
.. | ||
Fix-for-bash-exported-function-namespace-change.patch | ||
build-tests.patch | ||
cve-2014-6271.patch | ||
cve-2014-6277.patch | ||
cve-2014-7169.patch | ||
cve-2014-7186_cve-2014-7187.patch | ||
execute_cmd.patch | ||
mkbuiltins_have_stringize.patch | ||
run-ptest | ||
test-output.patch |