zephyr

Author	SHA1	Message	Date
Flavio Ceolin	253e266fc5	doc: vuln: Disclose information about CVE-2023-5139 Information about CVE-2023-5139 Signed-off-by: Flavio Ceolin <flavio.ceolin@intel.com>	2023-10-27 10:52:26 +02:00
Flavio Ceolin	31a92fc5e3	doc: vuln: Add information about CVE-2023-5753 Information about CVE-2023-5753 Signed-off-by: Flavio Ceolin <flavio.ceolin@intel.com>	2023-10-24 23:49:59 +02:00
Flavio Ceolin	05fb54b090	doc: security: Update info about tools Since there are multiple static analysis tools being used now, it is better to change references for a particular one and just point to static analysis section in the documentation. JIRA is no longer used for tracking security issues. Update it to Github. Signed-off-by: Flavio Ceolin <flavio.ceolin@intel.com>	2023-10-20 15:11:01 +02:00
Flavio Ceolin	90b9809c6f	doc: security: cve-2023-4257 left embargo Disclose information about cve-2023-4257. Signed-off-by: Flavio Ceolin <flavio.ceolin@intel.com>	2023-10-14 18:43:49 +03:00
Flavio Ceolin	52cf7e6fdf	doc: vuln: Add information about CVE-2023-4263 Information about CVE-2023-4263 Signed-off-by: Flavio Ceolin <flavio.ceolin@intel.com>	2023-10-14 18:43:27 +03:00
Flavio Ceolin	49d4ad9315	doc: vuln: Add information about CVE-2023-5563 Information about CVE-2023-5563 Signed-off-by: Flavio Ceolin <flavio.ceolin@intel.com>	2023-10-13 20:19:51 +03:00
Flavio Ceolin	b1fdce6336	doc: vuln: Add information about CVE-2023-4259 Information about CVE-2023-4259 Signed-off-by: Flavio Ceolin <flavio.ceolin@intel.com>	2023-10-10 21:11:33 +03:00
Flavio Ceolin	29f6ea431d	doc: vuln: Add information about CVE-2023-3725 Information about CVE-2023-3725 Signed-off-by: Flavio Ceolin <flavio.ceolin@intel.com>	2023-10-09 10:16:53 +02:00
Benjamin Cabé	a601b43ef8	security: doc: add missing headings Add headings for 2022 and 2023 CVEs to make document navigation easier. Signed-off-by: Benjamin Cabé <benjamin@zephyrproject.org>	2023-10-06 13:58:51 +01:00
Flavio Ceolin	4667a0c07e	doc: vuln: Add information about CVE-2023-4260 Information about CVE-2023-4260 Signed-off-by: Flavio Ceolin <flavio.ceolin@intel.com>	2023-10-06 12:20:46 +01:00
Flavio Ceolin	66d76d4afa	doc: vuln: Add CVEs under embargo Add placeholders for CVEs under embargo. Signed-off-by: Flavio Ceolin <flavio.ceolin@intel.com>	2023-10-05 09:13:53 +01:00
Flavio Ceolin	078967671c	doc: vuln: Add information about CVE-2023-4264 Information about CVE-2023-4264 Signed-off-by: Flavio Ceolin <flavio.ceolin@intel.com>	2023-10-04 21:46:57 +03:00
Flavio Ceolin	e3dc860429	doc: vuln: Add information about CVE-2023-4262 Information about CVE-2023-4262 Signed-off-by: Flavio Ceolin <flavio.ceolin@intel.com>	2023-10-03 15:36:28 +01:00
Flavio Ceolin	390fcd9adf	doc: vuln: Add information about CVE-2023-5184 Information about CVE-2023-5184 Signed-off-by: Flavio Ceolin <flavio.ceolin@intel.com>	2023-10-02 16:58:21 +01:00
Flavio Ceolin	59c501c6df	doc: security: Add information about backports Clarify about how to proceed with backports for vulnerabilities. Signed-off-by: Flavio Ceolin <flavio.ceolin@intel.com>	2023-09-27 20:15:56 -04:00
Flavio Ceolin	f4baa2b094	doc: vuln: Add information about CVE-2023-4258 Information about CVE-2023-4258 Signed-off-by: Flavio Ceolin <flavio.ceolin@intel.com>	2023-09-26 08:39:16 +02:00
Flavio Ceolin	3c1394c17a	doc: vulnerabilities: Add information about CVE-2023-4265 Add information about CVE-2023-4265 Signed-off-by: Flavio Ceolin <flavio.ceolin@intel.com>	2023-08-16 15:05:35 +02:00
Flavio Ceolin	675726f7c0	doc: vulnerabilities: Add information about CVE-2023-1902 Add information about CVE-2023-1902 Signed-off-by: Flavio Ceolin <flavio.ceolin@intel.com>	2023-08-04 22:53:21 +00:00
Flavio Ceolin	5e4789bceb	doc: vulnerabilities: Add information about CVE-2023-1901 Add information about CVE-2023-1901 Signed-off-by: Flavio Ceolin <flavio.ceolin@intel.com>	2023-08-04 22:53:21 +00:00
Flavio Ceolin	b7f35a8f29	doc: vulnerabilities: Add information about new vulnerabilities Add a placeholder for CVE-2023-1901 and CVE-2023-1902. Signed-off-by: Flavio Ceolin <flavio.ceolin@intel.com>	2023-06-15 13:55:07 -04:00
Flavio Ceolin	40312a8578	doc: vulnerabilities: Add information about CVE-2023-0779 Add information about CVE-2023-0779 Signed-off-by: Flavio Ceolin <flavio.ceolin@intel.com>	2023-06-02 18:59:27 -04:00
Flavio Ceolin	d3193eae33	doc: vulnerabilities: Add information about CVE-2023-0397 Add information about CVE-2023-0397 Signed-off-by: Flavio Ceolin <flavio.ceolin@intel.com>	2023-06-02 18:59:27 -04:00
Benjamin Cabé	5e36dc52ec	doc: security: Refresh hardening tool doc page Improved the wording of the Hardening tool documentation to better reflect that it does suggestions for both options that could be enabled for improved security, as well as options that should be disabled for they may expose to vulnerabilities. Also fixed the "Usage" section which was stale. Signed-off-by: Benjamin Cabé <benjamin@zephyrproject.org>	2023-05-22 12:21:19 +02:00
Christian Schlotter	951a37d5a0	doc: security: Unify style Unify style in Zephyr Security Overview. Signed-off-by: Christian Schlotter <christian.schlotter@zeiss.com>	2023-04-21 16:33:16 +02:00
Flavio Ceolin	68d421e73c	docs: security: Add published CVEs information Add information about 3 CVEs recently published. Signed-off-by: Flavio Ceolin <flavio.ceolin@intel.com>	2023-02-15 19:22:24 +09:00
Flavio Ceolin	05d3b57851	doc: security: Disclose CVE information Add information about CVE-2022-2993 Signed-off-by: Flavio Ceolin <flavio.ceolin@intel.com>	2023-01-07 21:34:33 +01:00
Flavio Ceolin	a61ca79041	doc: vulnerabilities: Add information about CVE-2022-2741 Add information for published CVE. Signed-off-by: Flavio Ceolin <flavio.ceolin@intel.com>	2022-11-01 12:01:00 +01:00
Flavio Ceolin	ea8c6dbc03	doc: vulnerabilities: Add information about CVE-2022-1041 Add information for published CVE. Signed-off-by: Flavio Ceolin <flavio.ceolin@intel.com>	2022-11-01 12:01:00 +01:00
Flavio Ceolin	d170982947	doc: vulnerabilities: Add information about CVE-2022-1042 Add information for published CVE. Signed-off-by: Flavio Ceolin <flavio.ceolin@intel.com>	2022-11-01 12:01:00 +01:00
Flavio Ceolin	01a02e6a29	doc: vulnerabilities: Add information about CVE-2022-1841 Add information for published CVE. Signed-off-by: Flavio Ceolin <flavio.ceolin@intel.com>	2022-11-01 12:01:00 +01:00
Stephanos Ioannidis	8a7eb68c0f	doc: security: Fix outdated link This commit updates the outdated link to "OWASP Top Ten Project". Signed-off-by: Stephanos Ioannidis <stephanos.ioannidis@nordicsemi.no>	2022-09-29 12:20:14 +02:00
Flavio Ceolin	b26ea8b428	vulnerabilities: Add CVE information Add information about CVE-2022-0553. Signed-off-by: Flavio Ceolin <flavio.ceolin@intel.com>	2022-06-06 17:59:28 +02:00
Flavio Ceolin	5b8cc4f6f3	vulnerabilities: Add vulnerabilities under embargo Add entries for vulnerabilities under embargo. Signed-off-by: Flavio Ceolin <flavio.ceolin@intel.com>	2022-05-25 13:34:52 -07:00
Anas Nashif	0e727cf5a9	doc: get rid of reference section Move last remaining items from reference section to the appropriate new section in the new structure. Signed-off-by: Anas Nashif <anas.nashif@intel.com>	2022-04-07 16:35:19 +02:00
Nazar Kazakov	f483b1bc4c	everywhere: fix typos Fix a lot of typos Signed-off-by: Nazar Kazakov <nazar.kazakov.work@gmail.com>	2022-03-18 13:24:08 -04:00
Flavio Ceolin	e14d07a869	security: docs: Add CVE-2021-3966 Add information about CVE-2021-3966 Signed-off-by: Flavio Ceolin <flavio.ceolin@intel.com>	2022-02-17 19:05:08 -05:00
Flavio Ceolin	ead018cb12	security: docs: Add CVE-2021-3861 Add information about CVE-2021-3861 Signed-off-by: Flavio Ceolin <flavio.ceolin@intel.com>	2022-02-08 07:02:36 -05:00
Flavio Ceolin	2a0ae5edac	security: docs: Add CVE-2021-3835 Add information about CVE 2021-3835 Signed-off-by: Flavio Ceolin <flavio.ceolin@intel.com>	2022-02-08 07:02:36 -05:00
Flavio Ceolin	449c37808a	doc: security: Fix one vulnerability report The issue was properly fixed but this document was not updated. Signed-off-by: Flavio Ceolin <flavio.ceolin@intel.com>	2022-01-13 18:34:15 -05:00
Flavio Ceolin	31a911ecc2	doc: security: Remove unused image zephyr-workflow is no longer used. Signed-off-by: Flavio Ceolin <flavio.ceolin@intel.com>	2021-12-01 05:03:59 -05:00
Flavio Ceolin	d21bfcae2e	docs: security: s/JIRA/GitHub Update vulnerability report / tracking information. Zephyr is no longer using JIRA. Signed-off-by: Flavio Ceolin <flavio.ceolin@intel.com>	2021-12-01 05:03:59 -05:00
Flavio Ceolin	f7b320a7c3	doc: security: Update information about CVE-2021-3436 Update old CVE the proper information. Signed-off-by: Flavio Ceolin <flavio.ceolin@intel.com>	2021-10-06 18:18:06 -04:00
Flavio Ceolin	6c488c8556	doc: security: Update information about CVE-2021-3510 Update old CVE the proper information. Signed-off-by: Flavio Ceolin <flavio.ceolin@intel.com>	2021-10-06 18:18:06 -04:00
Flavio Ceolin	613b38c24b	doc: security: Update information about CVE-2021-3625 Update CVE that left embargo with the proper information. Signed-off-by: Flavio Ceolin <flavio.ceolin@intel.com>	2021-10-06 18:18:06 -04:00
Flavio Ceolin	879438a424	doc: security: Update information about CVE-2021-3319 Update old CVE the proper information. Signed-off-by: Flavio Ceolin <flavio.ceolin@intel.com>	2021-10-06 18:18:06 -04:00
Flavio Ceolin	bb5b5fe544	doc: security: Update information about CVE-2021-3581 Update CVE that left embargo with the proper information. Signed-off-by: Flavio Ceolin <flavio.ceolin@intel.com>	2021-10-06 18:18:06 -04:00
Flavio Ceolin	6cc84412df	security: Update vulnerabilities document Add information about recent published vulnerabilities. Signed-off-by: Flavio Ceolin <flavio.ceolin@intel.com>	2021-06-23 06:18:59 -04:00
David Brown	f6b22ecc74	doc: security: Add CVE-2021-3581 to docs Update release notes for 2.6, and the vulnerabilities page to mention CVE-2021-3581. This CVE is under embargo until Sept 4, 2021. Signed-off-by: David Brown <david.brown@linaro.org>	2021-06-04 13:57:40 -05:00
David Brown	0b2798fdfe	doc: security: Change 'master' to 'main' Fix up a handful of references to 'master' in the security documentation to refer to the new 'main' branch. Signed-off-by: David Brown <david.brown@linaro.org>	2021-05-28 10:13:39 -05:00
Flavio Ceolin	2b3e6166d9	doc: security: Publish CVE-2020-3323 info CVE was previously under embargo. Signed-off-by: Flavio Ceolin <flavio.ceolin@intel.com>	2021-05-18 14:55:38 -04:00

1 2

94 Commits