[OE-core] [PATCH] systemd: fix CVE-2019-6454

The original fix was deleted when systemd was bumped from v239 to v241, however not all of the patches have made it into the latest version. Refactor the original patch to contain the missing changes. Signed-off-by: Marcus Cooper --- .../systemd/systemd/CVE-2019-6454.patch| 216

[OE-core] [PATCH 2/3] systemd: Security fix CVE-2018-16865

Affects < v240 Signed-off-by: Marcus Cooper --- ...ld-set-a-limit-on-the-number-of-fields-1k.patch | 56 +++ ...ote-set-a-limit-on-the-number-of-fields-i.patch | 84 ++ meta/recipes-core/systemd/systemd_239.bb | 2 + 3 files changed, 142 inserti

[OE-core] [PATCH 3/3] systemd: Security fix CVE-2018-16866

Affects < v240 Signed-off-by: Marcus Cooper --- .../0027-journal-fix-syslog_parse_identifier.patch | 77 ...not-remove-multiple-spaces-after-identifi.patch | 84 ++ meta/recipes-core/systemd/systemd_239.bb | 2 + 3 files changed,

[OE-core] [PATCH 1/3] systemd: Security fix CVE-2018-16864

Affects < v240 Signed-off-by: Marcus Cooper --- ...-not-store-the-iovec-entry-for-process-co.patch | 204 + meta/recipes-core/systemd/systemd_239.bb | 1 + 2 files changed, 205 insertions(+) create mode 100644 meta/recipes-core/systemd/systemd/0024-journald

[OE-core] [PATCH v2 1/3] systemd: Security fix CVE-2018-16864

Affects < v240 Signed-off-by: Marcus Cooper --- ...-not-store-the-iovec-entry-for-process-co.patch | 208 + meta/recipes-core/systemd/systemd_239.bb | 1 + 2 files changed, 209 insertions(+) create mode 100644 meta/recipes-core/systemd/systemd/0024-journald

[OE-core] [PATCH v2 2/3] systemd: Security fix CVE-2018-16865

Affects < v240 Signed-off-by: Marcus Cooper --- ...rnald-set-a-limit-on-the-number-of-fields.patch | 139 + meta/recipes-core/systemd/systemd_239.bb | 1 + 2 files changed, 140 insertions(+) create mode 100644 meta/recipes-core/systemd/systemd/0025-journald-

[OE-core] [PATCH v2 0/3] systemd: Fixes Security fix CVE-2018-16864 - CVE-2018-16866

Changed in v2: - Added CVE tag, Upstream-Status tag and Sign-off-by tags. - removed the verification of the entry length in the header - squashed CVE-2018-16865 patches into one - CVE-2018-16866 patch now taken from systemd-stable and includes an additional heap buffer overflow fix. Marcus

[OE-core] [PATCH v2 3/3] systemd: Security fix CVE-2018-16866

Affects < v240 Signed-off-by: Marcus Cooper --- ...nal-fix-out-of-bounds-read-CVE-2018-16866.patch | 49 ++ meta/recipes-core/systemd/systemd_239.bb | 1 + 2 files changed, 50 insertions(+) create mode 100644 meta/recipes-core/systemd/systemd/0026-journal-