NetCube-Systems-Austria/kumquat-buildroot
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
62,417 Commits 5 Branches 387 Tags 141 MiB
Makefile 64%
Python 15.3%
C 9.2%
Shell 6%
PHP 2.8%
Other 2.4%
bf2e459bb9
Go to file
Fabrice Fontaine bf2e459bb9 package/nbd: security bump to version 3.24 
Fix CVE-2022-26495: In nbd-server in nbd before 3.24, there is an
integer overflow with a resultant heap-based buffer overflow. A value of
0xffffffff in the name length field will cause a zero-sized buffer to be
allocated for the name, resulting in a write to a dangling pointer. This
issue exists for the NBD_OPT_INFO, NBD_OPT_GO, and NBD_OPT_EXPORT_NAME
messages.

Fix CVE-2022-26496: In nbd-server in nbd before 3.24, there is a
stack-based buffer overflow. An attacker can cause a buffer overflow in
the parsing of the name field by sending a crafted NBD_OPT_INFO or
NBD_OPT_GO message with an large value as the length of the name.

https://github.com/NetworkBlockDevice/nbd/compare/nbd-3.21...nbd-3.24

Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
Signed-off-by: Arnout Vandecappelle (Essensium/Mind) <arnout@mind.be>
2022-03-23 21:23:45 +01:00
arch core: introduce NORMALIZED_ARCH as non-kernel replacement for KERNEL_ARCH 2022-02-08 21:20:23 +01:00
board configs/octavo_osd32mp1_red: new defconfig 2022-03-20 18:08:55 +01:00
boot boot/optee-os: bump to version 3.16.0 2022-03-18 23:39:45 +01:00
configs configs/octavo_osd32mp1_red: new defconfig 2022-03-20 18:08:55 +01:00
docs docs/manual: Remove link to emdebian and replace with debian port page 2022-03-15 22:28:01 +01:00
fs fs/common.mk: use find instead of shell glob patterns 2022-03-12 17:45:21 +01:00
linux linux: bump CIP-RT kernel to version 5.10.104-cip3-rt3 2022-03-22 08:56:04 +01:00
package package/nbd: security bump to version 3.24 2022-03-23 21:23:45 +01:00
support support/dependencies: requires cmake >= 3.18 2022-03-21 22:04:16 +01:00
system system/skeleton: provide run/lock directory 2022-01-12 20:38:09 +01:00
toolchain toolchain/toolchain-external/toolchain-external-bootlin: update with new s390x toolchain 2022-03-10 22:09:26 +01:00
utils utils/scanpypi: support alternative Homepage format 2022-03-13 19:24:23 +01:00
.clang-format .clang-format: initial import from Linux 5.15.6 2022-01-01 15:01:13 +01:00
.defconfig
.flake8
.gitignore
.gitlab-ci.yml utils/checkpackagelib/lib_sysv: run shellcheck 2022-02-06 18:27:03 +01:00
CHANGES Update for 2022.02 2022-03-08 23:08:11 +01:00
Config.in support/download: Add SFTP support 2022-01-06 09:34:05 +01:00
Config.in.legacy package/python-pycli: drop package 2022-03-07 22:57:18 +01:00
COPYING
DEVELOPERS DEVELOPERS: update email address 2022-03-23 18:01:29 +01:00
Makefile support/scripts/graph-build-time: add support for timeline graphing 2022-03-20 23:52:24 +01:00
Makefile.legacy
README

README 

Buildroot is a simple, efficient and easy-to-use tool to generate embedded
Linux systems through cross-compilation.

The documentation can be found in docs/manual. You can generate a text
document with 'make manual-text' and read output/docs/manual/manual.text.
Online documentation can be found at http://buildroot.org/docs.html

To build and use the buildroot stuff, do the following:

1) run 'make menuconfig'
2) select the target architecture and the packages you wish to compile
3) run 'make'
4) wait while it compiles
5) find the kernel, bootloader, root filesystem, etc. in output/images

You do not need to be root to build or run buildroot.  Have fun!

Buildroot comes with a basic configuration for a number of boards. Run
'make list-defconfigs' to view the list of provided configurations.

Please feed suggestions, bug reports, insults, and bribes back to the
buildroot mailing list: buildroot@buildroot.org
You can also find us on #buildroot on OFTC IRC.

If you would like to contribute patches, please read
https://buildroot.org/manual.html#submitting-patches