kumquat-buildroot

NetCube-Systems-Austria/kumquat-buildroot

Go to file

Fabrice Fontaine 026f35d9e7 package/libopenssl: security bump to version 1.1.1p The c_rehash script allows command injection (CVE-2022-2068) ============================================================ Severity: Moderate In addition to the c_rehash shell command injection identified in CVE-2022-1292, further circumstances where the c_rehash script does not properly sanitise shell metacharacters to prevent command injection were found by code review. When the CVE-2022-1292 was fixed it was not discovered that there are other places in the script where the file names of certificates being hashed were possibly passed to a command executed through the shell. This script is distributed by some operating systems in a manner where it is automatically executed. On such operating systems, an attacker could execute arbitrary commands with the privileges of the script. Use of the c_rehash script is considered obsolete and should be replaced by the OpenSSL rehash command line tool. https://www.openssl.org/news/secadv/20220621.txt Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com> Signed-off-by: Yann E. MORIN <yann.morin.1998@free.fr>		2022-07-04 18:53:11 +02:00
arch	Remove support for the NDS32 architecture	2022-06-19 18:30:45 +02:00
board	configs/zynqmp_kria_xxx_defconfig: uboot dp pll patch	2022-07-01 17:02:15 +02:00
boot	boot/optee-os: fix typo in help message of BR2_TARGET_OPTEE_OS_CUSTOM_TARBALL	2022-07-04 17:41:00 +02:00
configs	configs/zynqmp_kria_xxx_defconfig: uboot dp pll patch	2022-07-01 17:02:15 +02:00
docs	docs/manual: fix configurations listing command	2022-06-22 22:09:26 +02:00
fs	fs/squashfs: fix BR2_TARGET_ROOTFS_SQUASHFS_BS_8K	2022-05-29 22:28:21 +02:00
linux	support/scripts/br2-external: add kernel extensions	2022-06-22 22:22:30 +02:00
package	package/libopenssl: security bump to version 1.1.1p	2022-07-04 18:53:11 +02:00
support	support/scripts/br2-external: add kernel extensions	2022-06-22 22:22:30 +02:00
system	package/systemd: add setting for systemd default.target	2022-05-02 22:58:44 +02:00
toolchain	toolchain/toolchain-external/toolchain-external-andes-nds32: remove package	2022-06-19 18:26:44 +02:00
utils	Remove support for the NDS32 architecture	2022-06-19 18:30:45 +02:00
.clang-format	.clang-format: initial import from Linux 5.15.6	2022-01-01 15:01:13 +01:00
.defconfig
.flake8
.gitignore
.gitlab-ci.yml	utils/checkpackagelib/lib_sysv: run shellcheck	2022-02-06 18:27:03 +01:00
CHANGES	Update for 2022.02.3	2022-06-19 12:53:35 +02:00
Config.in	Config.in: only allow BR2_STATIC_LIBS on supported libc/arch	2022-06-06 15:14:05 +02:00
Config.in.legacy	package/rtl8723bs: drop package	2022-06-20 21:36:54 +02:00
COPYING
DEVELOPERS	DEVELOPERS: drop Gaël Portay	2022-07-04 09:50:43 +02:00
Makefile	Kickoff 2022.08 cycle	2022-06-07 21:06:39 +02:00
Makefile.legacy
README

README

Buildroot is a simple, efficient and easy-to-use tool to generate embedded
Linux systems through cross-compilation.

The documentation can be found in docs/manual. You can generate a text
document with 'make manual-text' and read output/docs/manual/manual.text.
Online documentation can be found at http://buildroot.org/docs.html

To build and use the buildroot stuff, do the following:

1) run 'make menuconfig'
2) select the target architecture and the packages you wish to compile
3) run 'make'
4) wait while it compiles
5) find the kernel, bootloader, root filesystem, etc. in output/images

You do not need to be root to build or run buildroot.  Have fun!

Buildroot comes with a basic configuration for a number of boards. Run
'make list-defconfigs' to view the list of provided configurations.

Please feed suggestions, bug reports, insults, and bribes back to the
buildroot mailing list: buildroot@buildroot.org
You can also find us on #buildroot on OFTC IRC.

If you would like to contribute patches, please read
https://buildroot.org/manual.html#submitting-patches