Hi Hari, Regarding format only nothing specific to review of fix,
I saw many developers has contributed to samba package fixes. I would be great if we can keep common format inside .patch file as following. ---------------------------------------------- CVE: CVE-2022-41916 Upstream-Status: Backport [https://github.com/heimdal/heimdal/commit/eb87af0c2d18] Signed-off-by: Archana Polampalli <archana.polampa...@windriver.com> ---------------------------------------------- Thanks, Sanjay -----Original Message----- From: openembedded-devel@lists.openembedded.org <openembedded-devel@lists.openembedded.org> On Behalf Of Polampalli, Archana via lists.openembedded.org Sent: Thursday, June 15, 2023 3:37 PM To: openembedded-devel@lists.openembedded.org Cc: hari.gpil...@windriver.com Subject: [oe][meta-networking][kirkstone][PATCH 1/1] samba: fix CVE-2022-41916 Heimdal is an implementation of ASN.1/DER, PKIX, and Kerberos. Versions prior to 7.7.1 are vulnerable to a denial of service vulnerability in Heimdal's PKI certificate validation library, affecting the KDC (via PKINIT) and kinit (via PKINIT), as well as any third-party applications using Heimdal's libhx509. Users should upgrade to Heimdal 7.7.1 or 7.8. There are no known workarounds for this issue. References: https://nvd.nist.gov/vuln/detail/CVE-2022-41916 Upstream patches: https://github.com/heimdal/heimdal/commit/eb87af0c2d189c25294c7daf483a47b03af80c2c Signed-off-by: Archana Polampalli <archana.polampa...@windriver.com> ---
-=-=-=-=-=-=-=-=-=-=-=- Links: You receive all messages sent to this group. View/Reply Online (#103297): https://lists.openembedded.org/g/openembedded-devel/message/103297 Mute This Topic: https://lists.openembedded.org/mt/99545598/21656 Group Owner: openembedded-devel+ow...@lists.openembedded.org Unsubscribe: https://lists.openembedded.org/g/openembedded-devel/unsub [arch...@mail-archive.com] -=-=-=-=-=-=-=-=-=-=-=-
