Details of vulnerabilities are available below:
CVE-2014-3613: http://curl.haxx.se/docs/adv_20140910A.html
CVE-2014-3620: http://curl.haxx.se/docs/adv_20140910B.html
Signed-off-by: Maxin B. John
---
meta/recipes-support/curl/curl/CVE-2014-3613.patch | 214 +
meta/recipes
Hi Ross,
On Thu, Sep 25, 2014 at 04:08:23PM +0100, Burton, Ross wrote:
> On 25 September 2014 12:36, Maxin B. John wrote:
> > Details of vulnerabilities are available below:
> > CVE-2014-3613: http://curl.haxx.se/docs/adv_20140910A.html
> > CVE-2014-3620: htt
Details of vulnerabilities are available below:
CVE-2014-3613: http://curl.haxx.se/docs/adv_20140910A.html
CVE-2014-3620: http://curl.haxx.se/docs/adv_20140910B.html
Signed-off-by: Maxin B. John
---
meta/recipes-support/curl/curl/CVE-2014-3613.patch | 269 +
meta/recipes
Hi Ross,
On Wed, Sep 24, 2014 at 11:27:57PM +0100, Burton, Ross wrote:
> On 10 September 2014 15:43, Maxin B. John wrote:
> > Fixes two HTTP cookie related security bugs:
> > 1. CVE-2014-3613
> > 2. CVE-2014-3620
>
> Can these be backported instead to 7.37.1
Fixes two HTTP cookie related security bugs:
1. CVE-2014-3613
2. CVE-2014-3620
Changelog:
http://curl.haxx.se/changes.html#7_38_0
Signed-off-by: Maxin B. John
---
meta/recipes-support/curl/{curl_7.37.1.bb => curl_7.38.0.bb} | 4 ++--
1 file changed, 2 insertions(+), 2 deleti
Upgrade to *August 2014* release
Removed "automake-foreign.patch" as it has been merged
Signed-off-by: Maxin B. John
---
meta/recipes-extended/ltp/ltp/automake-foreign.patch | 20
.../ltp/{ltp_20140422.bb => ltp_20140828.bb} | 3 +--
2 files changed
Hi,
Wrong one. Please ignore this patch.
On Thu, Sep 04, 2014 at 06:33:55PM +0200, Maxin B. John wrote:
> Bump to *August 2014* release
>
> Signed-off-by: Maxin B. John
> ---
> meta/recipes-extended/ltp/{ltp_20140422.bb => ltp_20140828.bb} | 0
> 1 file changed, 0 inser
Bump to *August 2014* release
Signed-off-by: Maxin B. John
---
meta/recipes-extended/ltp/{ltp_20140422.bb => ltp_20140828.bb} | 0
1 file changed, 0 insertions(+), 0 deletions(-)
rename meta/recipes-extended/ltp/{ltp_20140422.bb => ltp_20140828.bb} (100%)
diff --git a/meta/recipes-ex
Fix build error:
...
unknown command `colophon'
unknown command `cygnus'
Signed-off-by: Maxin B. John
---
...ve-errors-about-colophon-and-cygnus-comma.patch | 39 ++
meta/recipes-devtools/remake/remake_git.bb | 4 ++-
2 files changed, 42 insertions(+),
as published by
the Free Software Foundation; either version 2 of the License, or
(at your option) any later version."
Signed-off-by: Maxin B. John
---
.../i2c-tools/{i2c-tools-3.1.0 => i2c-tools-3.1.1}/Module.mk | 0
.../i2c-tools/{i2c-tools_3.1.0.bb => i2c-tools_3.1.1.bb
Hi Khem,
On Tue, Jul 29, 2014 at 10:55:06PM -0700, Khem Raj wrote:
> On Tue, Jul 29, 2014 at 4:27 AM, Maxin B. John wrote:
> > +SRC_URI = "http://dl.lm-sensors.org/i2c-tools/releases/${PN}-${PV}.tar.bz2
> > \
>
> use BP instead of PN-PV
Thanks for the review. I wi
as published by
the Free Software Foundation; either version 2 of the License, or
(at your option) any later version."
Signed-off-by: Maxin B. John
---
.../i2c-tools/{i2c-tools-3.1.0 => i2c-tools-3.1.1}/Module.mk | 0
.../i2c-tools/{i2c-tools_3.1.0.bb => i2c-tools_3.1.1.bb
Hi,
On Fri, Jul 04, 2014 at 11:49:50AM +0100, Richard Purdie wrote:
> To quote "Maxin B. John" :
>
> git version 1.7.8 added the --list option to git-branch. Since we depend on
> this
> option in git.py, the minimum requiremnt for git should be updated to Git
&g
Bump version to 3.3.5
Signed-off-by: Maxin B. John
---
meta/recipes-support/gnutls/gnutls_3.2.15.bb | 7 ---
meta/recipes-support/gnutls/gnutls_3.3.5.bb | 7 +++
2 files changed, 7 insertions(+), 7 deletions(-)
delete mode 100644 meta/recipes-support/gnutls/gnutls_3.2.15.bb
create
Bump version to 4.0
Signed-off-by: Maxin B. John
---
meta/recipes-support/gnutls/{libtasn1_3.5.bb => libtasn1_4.0.bb} | 4 ++--
1 file changed, 2 insertions(+), 2 deletions(-)
rename meta/recipes-support/gnutls/{libtasn1_3.5.bb => libtasn1_4.0.bb} (82%)
diff --git a/meta/recipes-s
Hi Tom,
On Thu, Jun 26, 2014 at 08:27:00AM -0400, Tom Rini wrote:
> On Wed, Jun 25, 2014 at 11:13:59AM +0200, Maxin B. John wrote:
> > From: "Maxin B. John"
> >
> > + install -m 0644 ${S}/tools/env/fw_env.config
> > ${D}${sysconfdir}/fw_env.
From: "Maxin B. John"
The on-target fw_printenv and fw_setenv needs configuration file
(fw_env.config) to be present in the target.
Signed-off-by: Maxin B. John
---
meta/recipes-bsp/u-boot/u-boot-fw-utils_2013.07.bb |2 ++
1 file changed, 2 insertions(+)
diff --git a/meta/rec
ping.
On Mon, May 05, 2014 at 10:42:22PM +0200, Maxin B. John wrote:
> From: "Maxin B. John"
>
> This patch fixes the bzip2 ptest execution failure:
>
> root@qemux86:/usr/lib/bzip2/ptest# ./run-ptest
> make: *** No rule to make target 'runtest'.
>
&g
From: "Maxin B. John"
It was discovered that libxml2, a library providing support to read,
modify and write XML files, incorrectly performs entity substituton in
the doctype prolog, even if the application using libxml2 disabled any
entity substitution. A remote attacker could
From: "Maxin B. John"
Add "sed" in the ptest runtime package dependency list
[YOCTO #6260]
Signed-off-by: Maxin B. John
---
meta/recipes-devtools/perl/perl-ptest.inc |2 +-
1 file changed, 1 insertion(+), 1 deletion(-)
diff --git a/meta/recipes-devtools/perl/pe
From: "Maxin B. John"
A null pointer dereference bug was discovered in do_ssl3_write().
An attacker could possibly use this to cause OpenSSL to crash, resulting
in a denial of service.
https://access.redhat.com/security/cve/CVE-2014-0198
Signed-off-by: Maxin B. John
---
.../opens
From: "Maxin B. John"
This patch fixes the bzip2 ptest execution failure:
root@qemux86:/usr/lib/bzip2/ptest# ./run-ptest
make: *** No rule to make target 'runtest'.
(This is also applicable for daisy branch)
Signed-off-by: Maxin B. John
---
meta/recipes-extended/bzip2/b
From: "Maxin B. John"
Install gdbm test-suite and run it as ptest
Signed-off-by: Maxin B. John
---
meta/recipes-support/gdbm/files/ptest.patch | 36 +++
meta/recipes-support/gdbm/files/run-ptest |7 ++
meta/recipes-support/gdbm/gdbm_1.11.bb
ping ..
On Thu, Apr 24, 2014 at 07:28:25PM +0200, Maxin B. John wrote:
> From: "Maxin B. John"
>
> Install openssl test suite and run it as ptest.
>
> Signed-off-by: Maxin B. John
> ---
> meta/recipes-connectivity/openssl/openssl.inc | 19 -
&
From: "Maxin B. John"
Update ltp version to 20140422
Removed two patches that already exist in the current version:
1. regen-makefile.patch
2. ffsb-remove-hardcoded-configure.patch
Signed-off-by: Maxin B. John
---
.../ltp/ltp/ffsb-remove-hardcoded-configure.patch | 15 -
From: "Maxin B. John"
Install openssl test suite and run it as ptest.
Signed-off-by: Maxin B. John
---
meta/recipes-connectivity/openssl/openssl.inc | 19 -
.../openssl/openssl/Makefiles-ptest.patch | 75
.../recipes-connectivity/openssl/o
From: "Maxin B. John"
Install openssh test-suite and run it as ptest.
Signed-off-by: Maxin B. John
---
.../openssh/add-test-support-for-busybox.patch | 61
.../recipes-connectivity/openssh/openssh/run-ptest |7 +++
meta/recipes-connectivity/openssh/ope
From: "Maxin B. John"
1. Fixes CVE-2014-0333
2. There are changes in License checksums. This is due to new
contributor names being added to LICENSE and png.h file
contains version of the new release.So, license remains the same.
Signed-off-by: Maxin B. John
---
.../libpng/{li
From: "Maxin B. John"
A remote user can send specially crafted data to trigger a buffer overflow
in socket.recvfrom_into() and execute arbitrary code on the target system.
The code will run with the privileges of the target service.
This back-ported patch fixes CVE-2014-1912
Sig
From: "Maxin B. John"
This back ported patch fixes CVE-2013-1752 for smtplib
Signed-off-by: Maxin B. John
Reviewed-by: Sona Sarmadi
---
.../python-2.7.3-CVE-2013-1752-smtplib-fix.patch | 101
meta/recipes-devtools/python/python_2.7.3.bb |1 +
2 fil
Hi Paul,
On Mon, Oct 28, 2013 at 11:27:01AM +, Paul Eggleton wrote:
> Hi Maxin,
>
> On Monday 21 October 2013 17:36:42 maxin.j...@enea.com wrote:
> > From: "Maxin B. John"
> >
> > update to latest version 2013.60
> > Update 0006-dropbear-configura
Hi,
On Tue, Sep 03, 2013 at 08:42:17AM -0700, Saul Wold wrote:
> On 09/02/2013 04:36 AM, maxin.j...@enea.com wrote:
> >From: "Maxin B. John"
> >
> >Upgrade to latest version 3.8.0.1
> >
>
> Is there something special about this update?
Apart from
ptest enabled packages will "inherit ptest". So, we can use grep to
find the list of ptest enabled packages.
eg:
# cd poky
# grep -ir --include=*.{bb,inc} "inherit" |grep "ptest"
meta/recipes-extended/bash/bash.inc:inherit autotools gettext
update-alternatives ptest
meta/recipes-core/glib-2.0/g
On Mon, Mar 18, 2013 at 10:25:05AM -0700, Flanagan, Elizabeth wrote:
> On Mon, Mar 18, 2013 at 3:24 AM, wrote:
> > From: "Maxin B. John"
> >
> > harfbuzz is using the 'Modern Variants' of MIT License:
> > https://fedoraproject.org/wiki
Hi Richard,
On Fri, Jan 04, 2013 at 02:27:42PM +, Richard Purdie wrote:
> On Fri, 2013-01-04 at 12:30 +0100, Maxin B. John wrote:
> > From: "Maxin B. John"
> >
> > Latencytop needs superuser privileges. The latencytop plugin in
> > eclipse invokes it as &
From: "Maxin B. John"
Latencytop needs superuser privileges. The latencytop plugin in
eclipse invokes it as 'sudo latencytop'. So, it will be good to
include sudo as a runtime dependency.
Signed-off-by: Maxin B. John
---
meta/recipes-kernel/latencytop/latencytop_0.5.bb
801 - 836 of 836 matches
Mail list logo