Detecting and Fixing CVE Security Issues in Yocto-Based Embedded Linux Distributions - Mikko Rapeli

Detecting and Fixing CVE Security Issues in Yocto-Based Embedded Linux Distributions - Mikko Rapeli

Yocto Project via YouTube Direct link

Intro

1 of 26

1 of 26

Intro

Class Central Classrooms beta

YouTube videos curated by Class Central.

Classroom Contents

Detecting and Fixing CVE Security Issues in Yocto-Based Embedded Linux Distributions - Mikko Rapeli

Automatically move to the next video in the Classroom when playback concludes

  1. 1 Intro
  2. 2 Motivation
  3. 3 poky reference distribution
  4. 4 Layered architecture
  5. 5 Differences between Debian/Ubuntu and yocto?
  6. 6 Bitbake recipe is the source package
  7. 7 What is a CVE security issue?
  8. 8 CVE data fields
  9. 9 Example CVE
  10. 10 CPE: Common Platform Enumeration
  11. 11 CVE data is buggy
  12. 12 Linux distro users?
  13. 13 What yocto CVE check does?
  14. 14 CVE check output for busybox
  15. 15 Yocto community maintenance
  16. 16 Update or patch?
  17. 17 Update minor version
  18. 18 Full distro version updates
  19. 19 Problems and limitations in yocto CVE scanning and patching, and CVE scanning in general
  20. 20 Fix name matching with CVE_PRODUCT
  21. 21 Fix version matching with CVE_VERSION
  22. 22 Emedded source code in open source
  23. 23 Embedded open source SW inside binaries
  24. 24 Bad CVE data
  25. 25 Incomplete CVE data
  26. 26 Too complex patches

Never Stop Learning.

Get personalized course recommendations, track subjects and courses with reminders, and more.

Someone learning on their laptop while sitting on the floor.