sysmo-bts
/
generic-poky
9
0
Fork 0
Code Pull Requests Releases Activity
generic-poky/meta/recipes-core/systemd/systemd
History
Ross Burton b7e7b5e294 systemd: refuse to load units with errors (CVE-2017-1000082) 
If a unit has a statement such as User=0day where the username exists but is
strictly speaking invalid, the unit will be started as the root user instead.

Backport a patch from upstream to mitigate this by refusing to start units such
as this.

(From OE-Core rev: a6eaef0f179a341c0b96bb30aaec2d80862a11d6)

Signed-off-by: Ross Burton <ross.burton@intel.com>
Signed-off-by: Armin Kuster <akuster808@gmail.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
 		2017-07-27 22:36:44 +01:00
..
00-create-volatile.conf systemd: correct permission mode of /var/volatile/tmp 2015-03-10 10:47:48 +00:00
0001-core-device.c-Change-the-default-device-timeout-to-2.patch systemd: Upgrade to 232 2016-12-08 10:31:29 +00:00
0001-core-load-fragment-refuse-units-with-errors-in-certa.patch systemd: refuse to load units with errors (CVE-2017-1000082) 2017-07-27 22:36:44 +01:00
0002-units-Prefer-getty-to-agetty-in-console-setup-system.patch systemd: Upgrade to 232 2016-12-08 10:31:29 +00:00
0003-define-exp10-if-missing.patch systemd: Upgrade to 232 2016-12-08 10:31:29 +00:00
0004-Use-getenv-when-secure-versions-are-not-available.patch systemd: Upgrade to 232 2016-12-08 10:31:29 +00:00
0005-binfmt-Don-t-install-dependency-links-at-install-tim.patch systemd: Upgrade to 232 2016-12-08 10:31:29 +00:00
0006-configure-Check-for-additional-features-that-uclibc-.patch systemd: Upgrade to 232 2016-12-08 10:31:29 +00:00
0007-use-lnr-wrapper-instead-of-looking-for-relative-opti.patch systemd: Upgrade to 232 2016-12-08 10:31:29 +00:00
0008-nspawn-Use-execvpe-only-when-libc-supports-it.patch systemd: Upgrade to 232 2016-12-08 10:31:29 +00:00
0009-util-bypass-unimplemented-_SC_PHYS_PAGES-system-conf.patch systemd: Upgrade to 232 2016-12-08 10:31:29 +00:00
0010-implment-systemd-sysv-install-for-OE.patch systemd: Upgrade to 232 2016-12-08 10:31:29 +00:00
0011-nss-mymachines-Build-conditionally-when-HAVE_MYHOSTN.patch systemd: Upgrade to 232 2016-12-08 10:31:29 +00:00
0012-rules-whitelist-hd-devices.patch systemd: Upgrade to 232 2016-12-08 10:31:29 +00:00
0013-Make-root-s-home-directory-configurable.patch systemd: Upgrade to 232 2016-12-08 10:31:29 +00:00
0014-Revert-rules-remove-firmware-loading-rules.patch systemd: Upgrade to 232 2016-12-08 10:31:29 +00:00
0015-Revert-udev-remove-userspace-firmware-loading-suppor.patch systemd: Upgrade to 232 2016-12-08 10:31:29 +00:00
0016-make-test-dir-configurable.patch systemd: Upgrade to 232 2016-12-08 10:31:29 +00:00
0017-remove-duplicate-include-uchar.h.patch systemd: Upgrade to 232 2016-12-08 10:31:29 +00:00
0018-check-for-uchar.h-in-configure.patch systemd: Upgrade to 232 2016-12-08 10:31:29 +00:00
0019-socket-util-don-t-fail-if-libc-doesn-t-support-IDN.patch systemd: Upgrade to 232 2016-12-08 10:31:29 +00:00
0020-back-port-233-don-t-use-the-unified-hierarchy-for-the-systemd.patch systemd: Backport cgroup fix from 233 to 232 2016-12-13 22:55:21 +00:00
init systemd: Ensure that we mount devtmpfs 2013-06-28 09:14:07 +01:00
run-ptest systemd: Fix and expand ptests 2016-03-20 23:12:27 +00:00
touchscreen.rules systemd: add systemd recipes 2013-01-20 12:58:55 +00:00