From: Armin Kuster <akus...@mvista.com>
Signed-off-by: Armin Kuster <akus...@mvista.com>
---
meta/recipes-kernel/linux/linux-yocto_4.1.bb | 4 +++-
meta/recipes-kernel/linux/linux-yocto_4.4.bb | 4 +++-
2 files changed, 6 insertions(+), 2 deletions(-)
diff --git a/meta/recipes-
Signed-off-by: Armin Kuster <akus...@mvista.com>
---
meta/conf/machine/qemuppc64.conf | 13 +
1 file changed, 13 insertions(+)
create mode 100644 meta/conf/machine/qemuppc64.conf
diff --git a/meta/conf/machine/qemuppc64.conf b/meta/conf/machine/qemuppc64.conf
new file mode
From: Armin Kuster <akus...@mvista.com>
Signed-off-by: Armin Kuster <akus...@mvista.com>
---
meta/recipes-devtools/qemu/qemu.inc | 2 +-
1 file changed, 1 insertion(+), 1 deletion(-)
diff --git a/meta/recipes-devtools/qemu/qemu.inc
b/meta/recipes-devtools/qemu/qemu.inc
index b865
From: Armin Kuster <akus...@mvista.com>
Signed-off-by: Armin Kuster <akus...@mvista.com>
---
scripts/runqemu | 9 ++---
scripts/runqemu-internal | 24 ++--
2 files changed, 24 insertions(+), 9 deletions(-)
diff --git a/scripts/runqemu b/scripts/r
From: Armin Kuster <akus...@mvista.com>
Signed-off-by: Armin Kuster <akus...@mvista.com>
---
meta-poky/conf/distro/poky.conf | 4 +++-
1 file changed, 3 insertions(+), 1 deletion(-)
diff --git a/meta-poky/conf/distro/poky.conf b/meta-poky/conf/distro/poky.conf
index 6cae44e..36
-4439
qemu: Security fix CVE-2016-4952
Armin Kuster (10):
tzcode-native: update to 2016h
tzdata: Update to 2016h
openssl: Security fix CVE-2016-8610
tzcode: update to 2016i
tzdata: update to 2016i
libpcre: update SRC_URI
libpng: update SRC_URI back to SF
libxslt: update SRC_URI
at:
http://git.yoctoproject.org/git/poky-contrib akuster/krogoth-next
http://git.yoctoproject.org/cgit.cgi/poky-contrib/log/?h=akuster/krogoth-next
Alejandro Hernandez (1):
initramfs-live-boot: Make sure we kill udev before switching root when
live booting
Armin Kuster (2):
tiff: Security
From: Armin Kuster <akus...@mvista.com>
Fixed several typos in the openssl commits.
This includes a fix for systemd
[Yocto # 10329]
The following changes since commit e6c1d03d3d161cbbda254a5dae7008ff7e37d874:
oeqa/buildiptables: Switch from netfilter.org to yoctoproject.org mirror
(2
From: Armin Kuster <akus...@mvista.com>
fixes checkuri AB failure.
V2] change to snaphot instead of ubuntu
ERROR: mklibs-native-0.1.41-r0 do_checkuri: Fetcher failure for URL:
'http://ftp.de.debian.org/debian/pool/main/m/mklibs/mklibs_0.1.41.tar.xz'. URL
http://ftp.de.debian.org/debia
From: Armin Kuster <akus...@mvista.com>
fixes checkuri AB failure.
ERROR: mklibs-native-0.1.41-r0 do_checkuri: Fetcher failure for URL:
'http://ftp.de.debian.org/debian/pool/main/m/mklibs/mklibs_0.1.41.tar.xz'. URL
http://ftp.de.debian.org/debian/pool/main/m/mklibs/mklibs_0.1.41.tar.xz d
From: Armin Kuster <akus...@mvista.com>
fixes checkuri AB failure.
ERROR: mklibs-native-0.1.41-r0 do_checkuri: Fetcher failure for URL:
'http://ftp.de.debian.org/debian/pool/main/m/mklibs/mklibs_0.1.41.tar.xz'. URL
http://ftp.de.debian.org/debian/pool/main/m/mklibs/mklibs_0.1.41.tar.xz d
From: Armin Kuster <akus...@mvista.com>
please consider these security and bug fixes for Jethro.
My krogoth-next stagging branch has a complimentary set for the security fixes.
http://git.yoctoproject.org/cgit/cgit.cgi/poky-contrib/log/?h=akuster/krogot
From: Armin Kuster <akus...@mvista.com>
please consider these changes for Jethro
Similar fixes for krogoth are in my staging branch
The following changes since commit 6f0350d1cbf5829bfbaa3a43227f8d564903743a:
wget: Security fix CVE-2016-4971 (2016-09-17 22:33:07 -0700)
are ava
live booting
Alexander Kanavin (2):
gobject-introspection.bbclass: disable introspection for -native and
-nativesdk recipes
arch-mips.inc: Disable QEMU usermode usage when building with n32 ABI
Armin Kuster (13):
tiff: Security fix CVE-2015-8781
tiff: Security fix CVE-2015-8784
From: Armin Kuster <akus...@mvista.com>
LICENSE md5sum changed do to rewording some text not released to the license.
see https://github.com/eggert/tz/commit/8c143a2b65fdfd43a7911be6fdb700c9c4553f58
Changes to future time stamps
Turkey switched from EET/EEST (+02/+03) to permane
From: Armin Kuster <akus...@mvista.com>
LICENSE file checksum changed do to a verbage change.
Changes to code
zic no longer generates binary files containing POSIX TZ-like
strings that disagree with the local time type after the last
explicit transition in the data. This
://git.openembedded.org/openembedded-core-contrib akuster/jethro-next
http://cgit.openembedded.org/cgit.cgi//log/?h=akuster/jethro-next
Armin Kuster (9):
openssl: Security fix CVE-2016-2180
openssl: Security fix CVE-2016-2181
openssl: Security fix CVE-2016-2182
openssl: Security fix CVE-2016-6302
/jethro-next
http://cgit.openembedded.org/cgit.cgi/openembedded-core-contrib/log/?h=akuster/jethro-next
Armin Kuster (9):
openssl: Security fix CVE-2016-2180
openssl: Security fix CVE-2016-8181
openssl: Security fix CVE-2016-2182
openssl: Security fix CVE-2016-6304
openssl: Security
From: Armin Kuster <akus...@mvista.com>
CVE-2016-8859: TRE & musl libc regex integer overflows in buffer size
computations
Affects musl <= 1.1.15
Signed-off-by: Armin Kuster <akus...@mvista.com>
---
meta/recipes-core/musl/files/CVE-2016-8859.patch | 79 +++
From: Armin Kuster <akus...@mvista.com>
Changes to code
zic no longer mishandles relativizing file names when creating
symbolic links like /etc/localtime, when these symbolic links
are outside the usual directory hierarchy. This fixes a bug
introduced in 2016g. (Problem reported by A
From: Armin Kuster <akus...@mvista.com>
Changes to future time stamps
Asia/Gaza and Asia/Hebron end DST on 2016-10-29 at 01:00, not
2016-10-21 at 00:00. (Thanks to Sharef Mustafa.) Predict that
future fall transitions will be on the last Saturday of October
at 01:00,
valgrind: update to 3.12.0
Andre McCurdy (1):
gdb: update 7.11+git1a982b689c -> 7.11.1
André Draszik (2):
boost: disable 'wave' in MIPS16e mode
bash_3.2.x: update recipe version to match what we're shipping
Armin Kuster (2):
tzcode-native: update to 2016h
tzdata: Update to 2016h
Chen Qi
er/krogoth-next
http://git.yoctoproject.org/cgit.cgi/poky-contrib/log/?h=akuster/krogoth-next
Adrian Dudau (2):
qemu: Security fix CVE-2016-4439
qemu: Security fix CVE-2016-4952
Armin Kuster (2):
tzcode-native: update to 2016h
tzdata: Update to 2016h
Daniel Díaz (1):
weston: Add no-in
ext
http://git.yoctoproject.org/cgit.cgi//log/?h=akuster/jethro-next
Armin Kuster (13):
gnutils: Security fix CVE-2016-7444
bind: Security fix CVE-2016-2775
bind: Security fix CVE-2016-2776
openssl: Security fix CVE-2016-2179
openssl: Security fix CVE-2016-8610
python-2.7: Security fi
/poky-contrib akuster/krogoth-next
http://git.yoctoproject.org/cgit.cgi/poky-contrib/log/?h=akuster/krogoth-next
Aníbal Limón (1):
bitbake: bb.event: fix infinite loop on print_ui_queue
Armin Kuster (2):
meta-linux-yocto: update to 4.1.33
meta-linux-yocto: update 4.4 to 4.4.26
Bruce Ashfield
These applied on top of 2016h I sent on 10-23
Armin Kuster (2):
tzcode: update to 2016i
tzdata: update to 2016i
.../tzcode/{tzcode-native_2016h.bb => tzcode-native_2016i.bb} | 8
meta/recipes-extended/tzdata/{tzdata_2016h.bb => tzdata_2016i.bb} | 4 ++--
2 files chan
the
1944-04-03 transition for Europe/Rome, as Rome was controlled by
Germany then.
The 1967-1970 and 1972-1974 fallback transitions were at 01:00,
not 00:00.
Signed-off-by: Armin Kuster <akuster...@gmail.com>
---
meta/recipes-extended/tzdata/{tzdata_20
Changes to code
The code should now be buildable on AmigaOS merely by setting the
appropriate Makefile variables. (From a patch by Carsten Larsen.)
Signed-off-by: Armin Kuster <akuster...@gmail.com>
---
.../tzcode/{tzcode-native_2016h.bb => tzcode-native_2016i.bb} | 8 ---
that are not identified in the changelog.
removed patches integrated into update.
more info: http://libtiff.maptools.org/v4.0.7.html
Signed-off-by: Armin Kuster <akuster...@gmail.com>
---
.../libtiff/files/CVE-2015-8665_8683.patch | 137 ---
.../libtiff/files/CVE-2015-8781
"Curaçao", and commentary now mentions
the names "Cabo Verde" and "Czechia". (Thanks to Jiří Boháč.)
Signed-off-by: Armin Kuster <akuster...@gmail.com>
---
.../tzcode/{tzcode-native_2016i.bb => tzcode-native_2016j.bb} | 8
1 file changed, 4 insertions(
;EEST", not "EET", to denote
summer time before 1948. The old use of "EET" was a typo.
Signed-off-by: Armin Kuster <akuster...@gmail.com>
---
meta/recipes-extended/tzdata/{tzdata_2016i.bb => tzdata_2016j.bb} | 4 ++--
1 file changed, 2 insertions(+), 2 deletions(
dline v5.2
openssl: fix bashism in c_rehash shell script
Aníbal Limón (1):
perl: Fix ptest update hash of ExtUtils/Liblist/Kid.pm in
customized.dat
Armin Kuster (2):
tzcode: update to 2016i
tzdata: update to 2016i
Bruce Ashfield (20):
linux-yocto/4.8: update to 4.8.6
linux-yoct
From: Armin Kuster <akus...@mvista.com>
Briefly: Haiti has resumed DST.
Changes to past and future time stamps
Haiti resumed observance of DST in 2017. (Thanks to Steffen Thorsen.)
Changes to past time stamps
Liberia changed from -004430 to +00 on 1972-01-07, not 1972
From: Armin Kuster <akus...@mvista.com>
Signed-off-by: Armin Kuster <akus...@mvista.com>
---
meta/recipes-extended/tzdata/{tzdata_2017a.bb => tzdata_2017b.bb} | 4 ++--
1 file changed, 2 insertions(+), 2 deletions(-)
rename meta/recipes-extended/tzdata/{tzdata_2017a.bb => tz
From: Armin Kuster <akus...@mvista.com>
v2: fix typos
Try another encoding if utf-8 fails in file read.
line 20 of irdadump.c contains: University of Tromsø
fixes:
WARNING: irda-utils-0.9.18-r0 do_populate_lic: Could not copy license file
/home/akuster/oss/maint/openembedded-core/bui
From: Armin Kuster <akus...@mvista.com>
Try another encoding if utf-8 fails in file read.
line 20 of irdadump.c contains: University of Tromsø
fixes:
WARNING: irda-utils-0.9.18-r0 do_populate_lic: Could not copy license file
/home/akuster/oss/maint/openembedded-core/build/tmp-glib
From: Armin Kuster <akus...@mvista.com>
add pkg-config support for libassuan and gpg-error
updated config options
Signed-off-by: Armin Kuster <akus...@mvista.com>
---
.../pinentry/pinentry-1.0.0/gpg-error_pkconf.patch | 100 ++
.../pinentry-1.0.0/libassuan_p
From: Armin Kuster <akus...@mvista.com>
Changes to code
zic no longer mishandles some transitions in January 2038 when it
attempts to work around Qt bug 53071. This fixes a bug affecting
Pacific/Tongatapu that was introduced in zic 2016e. localtime.c
now contains a work
From: Armin Kuster <akus...@mvista.com>
Briefly: Southern Chile moves from -04/-03 to -03, and Mongolia
discontinues DST.
Changes to future time stamps
Mongolia no longer observes DST. (Thanks to Ganbold Tsagaankhuu.)
Chile's Region of Magallanes moves from -04/-03 to -0
From: Armin Kuster <akus...@mvista.com>
update SRC_URI: as of 1.7.3, repo changed. same owner
Renamed recipe to reflect PV and added Epoch
Added ptest, tests added v1.7.3
updated LICENSE to be more accurate.
Signed-off-by: Armin Kuster <akus...@mvista.com>
---
meta/recipes-support/l
Signed-off-by: Armin Kuster <akuster...@gmail.com>
---
meta/conf/machine/include/arm/arch-armv8.inc | 25 +
1 file changed, 25 insertions(+)
diff --git a/meta/conf/machine/include/arm/arch-armv8.inc
b/meta/conf/machine/include/arm/arch-armv8.inc
index 5e832fa..d
This extends arch-armv8 support to enable armv8-a and crypto.
Add cortexa53 framework.
Boot tested on Odroid-c2 (cortexa53)
Armin Kuster (2):
armv8: update to use armv8-a tune
new tune: add base cortexa53 support
meta/conf/machine/include/arm/arch-armv8.inc | 25
---
meta/conf/machine/include/tune-cortexa53.inc | 18 ++
1 file changed, 18 insertions(+)
create mode 100644 meta/conf/machine/include/tune-cortexa53.inc
diff --git a/meta/conf/machine/include/tune-cortexa53.inc
b/meta/conf/machine/include/tune-cortexa53.inc
new file mode
Please consider these changes for the next Pyro merge.
Clean AB build ( thanks Ross).
Includes kernel updates, security fixes and misc bug fixes.
The following changes since commit 5686f4e1fe5229705b8c7d35895aa03827796d13:
tcf-agent: kill with USR2 in systemd stop (2017-07-20 11:00:23
(1):
busybox: Security fix CVE-2016-6301
Armin Kuster (4):
tzdata: update to 2016j
tzcode-native: update to 2016j
tzcode-native: update to 2017a
tzdata: update to 2017a
Bruce Ashfield (9):
linux-yocto/4.4: update to v4.4.41
linux-yocto/4.8: -stable update to v4.8.17
linux-yocto/4.1: upd
: Update genericx86* SRCREVs for linux-yocto 4.1
Alexander Kanavin (2):
package_rpm.bbclass: use multithreaded xz compression
package_rpm.bbclass: disable generation of .build-id links
Armin Kuster (3):
linuux-yocto/4.1: update to 4.1.43 plus bluetooth CVE-2017-1000251
meta-yocto-bsp: bump 4.1
://push.yoctoproject.org/poky-contrib akuster/morty-next
Alexander Kanavin (1):
v86d: take tarball from debian
Armin Kuster (7):
linux-yocto/4.1: update to 4.1.43 plus bluetooth CVE-2017-1000251
linux-yocto/4.4: update to 4.4.87 plus bluetooth: CVE-2017-1000251
lunux-yocto/4.8: update to 4.8.25 plus bluetooth
-by: Richard Purdie <richard.pur...@linuxfoundation.org>
Signed-off-by: Armin Kuster <akuster...@gmail.com>
---
...0001-Add-header-dependency-to-nciattach.o.patch | 35 ++
meta/recipes-connectivity/neard/neard_0.16.bb | 1 +
2 files changed, 36 insertions(+)
This is the last patch to get Morty to build cleanly in AB
Jussi Kukkonen (1):
neard: Fix parallel build issue
...0001-Add-header-dependency-to-nciattach.o.patch | 35 ++
meta/recipes-connectivity/neard/neard_0.16.bb | 1 +
2 files changed, 36 insertions(+)
create
Please consider these changes for Pryo.
Clean nightly AB build
cover letter only
The following changes since commit 2b11266d670aa992a7ddb12f7f869ce4ec017f99:
uninative: Update to 1.7 uninative release (2017-08-09 15:41:49 +0100)
are available in the git repository at:
From: Armin Kuster <akus...@mvista.com>
In the spirt of Yocto Compatable, We are submmiting these changes to the list.
You are welcome to them.
The following changes since commit b4b085b3c34172f2a6a1b7193ae377a4f7e498ac:
glibc: CVE-2017-15670 (2017-11-23 17:40:44 -0800)
are ava
Affects: <= 2.28
Signed-off-by: Armin Kuster <akuster...@gmail.com>
---
meta/recipes-devtools/binutils/binutils-2.28.inc | 1 +
.../binutils/binutils/CVE-2017-8421.patch | 52 ++
2 files changed, 53 insertions(+)
create mode 100644 meta/recipes-devtools
Affects: <= 2.28
Signed-off-by: Armin Kuster <akuster...@gmail.com>
---
meta/recipes-devtools/binutils/binutils-2.28.inc | 1 +
.../binutils/binutils/CVE-2017-9746.patch | 91 ++
2 files changed, 92 insertions(+)
create mode 100644 meta/recipes-devtools
Affects: <= 2.28
Signed-off-by: Armin Kuster <akuster...@gmail.com>
---
meta/recipes-devtools/binutils/binutils-2.28.inc | 1 +
.../binutils/binutils/CVE-2017-9039.patch | 61 ++
2 files changed, 62 insertions(+)
create mode 100644 meta/recipes-devtools
Signed-off-by: Armin Kuster <akuster...@gmail.com>
---
meta/recipes-devtools/binutils/binutils-2.28.inc | 1 +
.../binutils/binutils/CVE-2017-9038_9044.patch | 51 ++
2 files changed, 52 insertions(+)
create mode 100644
meta/recipes-devtools/binutils/binutils/CV
Affects: <= 2.28
Signed-off-by: Armin Kuster <akuster...@gmail.com>
---
meta/recipes-devtools/binutils/binutils-2.28.inc | 1 +
.../binutils/binutils/CVE-2017-9745.patch | 35 ++
2 files changed, 36 insertions(+)
create mode 100644 meta/recipes-devtools
Affects: <= 2.28
Signed-off-by: Armin Kuster <akuster...@gmail.com>
---
meta/recipes-devtools/binutils/binutils-2.28.inc | 1 +
.../binutils/binutils/CVE-2017-9040_9042.patch | 57 ++
2 files changed, 58 insertions(+)
create mode 100644
meta/recipes-devtools
Affects: <= 2.28
Signed-off-by: Armin Kuster <akuster...@gmail.com>
---
meta/recipes-devtools/binutils/binutils-2.28.inc | 1 +
.../binutils/binutils/CVE-2017-9752.patch | 208 +
2 files changed, 209 insertions(+)
create mode 100644 meta/recipes
Affects: <= 2.28
Signed-off-by: Armin Kuster <akuster...@gmail.com>
---
meta/recipes-devtools/binutils/binutils-2.28.inc | 1 +
.../binutils/binutils/CVE-2017-9747.patch | 43 ++
2 files changed, 44 insertions(+)
create mode 100644 meta/recipes-devtools
Affects: <= 2.28
Signed-off-by: Armin Kuster <akuster...@gmail.com>
---
meta/recipes-devtools/binutils/binutils-2.28.inc | 1 +
.../binutils/binutils/CVE-2017-9750.patch | 247 +
2 files changed, 248 insertions(+)
create mode 100644 meta/recipes
Affects: <= 2.28
Signed-off-by: Armin Kuster <akuster...@gmail.com>
---
meta/recipes-devtools/binutils/binutils-2.28.inc | 1 +
.../binutils/binutils/CVE-2017-9744.patch | 46 ++
2 files changed, 47 insertions(+)
create mode 100644 meta/recipes-devtools
Affects: <= 2.28
Signed-off-by: Armin Kuster <akuster...@gmail.com>
---
meta/recipes-devtools/binutils/binutils-2.28.inc | 1 +
.../binutils/binutils/CVE-2017-9742.patch | 45 ++
2 files changed, 46 insertions(+)
create mode 100644 meta/recipes-devtools
affects: <= 2.28
Signed-off-by: Armin Kuster <akuster...@gmail.com>
---
meta/recipes-devtools/binutils/binutils-2.28.inc | 1 +
.../binutils/binutils/CVE-2017-9748.patch | 46 ++
2 files changed, 47 insertions(+)
create mode 100644 meta/recipes-devtools
Affects: <= 2.28
Signed-off-by: Armin Kuster <akuster...@gmail.com>
---
meta/recipes-devtools/binutils/binutils-2.28.inc | 1 +
.../binutils/binutils/CVE-2017-9753.patch | 79 ++
2 files changed, 80 insertions(+)
create mode 100644 meta/recipes-devtools
Affects: <= 2.28
Signed-off-by: Armin Kuster <akuster...@gmail.com>
---
meta/recipes-devtools/binutils/binutils-2.28.inc | 1 +
.../binutils/binutils/CVE-2017-9756.patch | 50 ++
2 files changed, 51 insertions(+)
create mode 100644 meta/recipes-devtools
Affects: <= 2.28
Signed-off-by: Armin Kuster <akuster...@gmail.com>
---
meta/recipes-devtools/binutils/binutils-2.28.inc | 1 +
.../binutils/binutils/CVE-2017-9954.patch | 58 ++
2 files changed, 59 insertions(+)
create mode 100644 meta/recipes-devtools
Affects: <= 2.28
Signed-off-by: Armin Kuster <akuster...@gmail.com>
---
meta/recipes-devtools/binutils/binutils-2.28.inc | 1 +
.../binutils/binutils/CVE-2017-9755.patch | 63 ++
2 files changed, 64 insertions(+)
create mode 100644 meta/recipes-devtools
Affects: <= 2.28
Signed-off-by: Armin Kuster <akuster...@gmail.com>
---
meta/recipes-devtools/binutils/binutils-2.28.inc | 9 +
.../binutils/binutils/CVE-2017-9955_1.patch| 168 ++
.../binutils/binutils/CVE-2017-9955_2.patch| 122 +++
.../binutils/bin
Affects: <= 2.28
Signed-off-by: Armin Kuster <akuster...@gmail.com>
---
meta/recipes-devtools/binutils/binutils-2.28.inc |1 +
.../binutils/binutils/CVE-2017-9751.patch | 3748
2 files changed, 3749 insertions(+)
create mode 100644 meta/recipes
Affects: <= 2.28
Signed-off-by: Armin Kuster <akuster...@gmail.com>
---
meta/recipes-devtools/binutils/binutils-2.28.inc | 1 +
.../binutils/binutils/CVE-2017-8394.patch | 118 +
2 files changed, 119 insertions(+)
create mode 100644 meta/recipes
Affects: <= 2.28
Signed-off-by: Armin Kuster <akuster...@gmail.com>
---
meta/recipes-devtools/binutils/binutils-2.28.inc | 1 +
.../binutils/binutils/CVE-2017-8395.patch | 72 ++
2 files changed, 73 insertions(+)
create mode 100644 meta/recipes-devtools
Affects: <= 2.28
Signed-off-by: Armin Kuster <akuster...@gmail.com>
---
meta/recipes-devtools/binutils/binutils-2.28.inc | 1 +
.../binutils/binutils/CVE-2017-8396_8397.patch | 102 +
2 files changed, 103 insertions(+)
create mode 100644
meta/recipes
Affects: <= 2.28
Signed-off-by: Armin Kuster <akuster...@gmail.com>
---
meta/recipes-devtools/binutils/binutils-2.28.inc | 1 +
.../binutils/binutils/CVE-2017-8398.patch | 147 +
2 files changed, 148 insertions(+)
create mode 100644 meta/recipes
Affects <= 2.28
Signed-off-by: Armin Kuster <akuster...@gmail.com>
---
meta/recipes-devtools/binutils/binutils-2.28.inc | 1 +
.../binutils/binutils/CVE-2017-7223.patch | 52 ++
2 files changed, 53 insertions(+)
create mode 100644 meta/recipes-devtools
Affects: <= 2.28
Signed-off-by: Armin Kuster <akuster...@gmail.com>
---
meta/recipes-devtools/binutils/binutils-2.28.inc | 1 +
.../binutils/binutils/CVE-2017-7614.patch | 103 +
2 files changed, 104 insertions(+)
create mode 100644 meta/recipes
Affects: <= 2.28
Signed-off-by: Armin Kuster <akuster...@gmail.com>
---
meta/recipes-devtools/binutils/binutils-2.28.inc | 1 +
.../binutils/binutils/CVE-2017-8393.patch | 205 +
2 files changed, 206 insertions(+)
create mode 100644 meta/recipes
From: Armin Kuster <akus...@mvista.com>
The GNU C Library (aka glibc or libc6) before 2.27 contains an off-by-one error
leading to a heap-based buffer overflow in the glob function in glob.c, related
to the processing of home directories using the ~ operator followed by a long
string.
A
From: Armin Kuster <akus...@mvista.com>
The GNU C Library (aka glibc or libc6) before 2.27 contains an off-by-one error
leading to a heap-based buffer overflow in the glob function in glob.c, related
to the processing of home directories using the ~ operator followed by a long
string.
A
From: Armin Kuster <akus...@mvista.com>
The glob function in glob.c in the GNU C Library (aka glibc or libc6) before
2.27, when invoked with GLOB_TILDE, could skip freeing allocated memory when
processing the ~ operator with a long user name, potentially leading to a
denial of service (
The pending 2.27 update does not need these. Only apply if that update is
delayed too long.
affects glibc < 2.27
This will hit stable/Rocko-next shortly
Armin Kuster (3):
glibc: Security fix CVE-2017-15670
glibc: Security fix CVE-2017-15671
glibc: Security fix for CVE-2017-15804
m
From: Armin Kuster <akus...@mvista.com>
The glob function in glob.c in the GNU C Library (aka glibc or libc6) before
2.27 contains a buffer overflow during unescaping of user names with the ~
operator.
Affects: glibx < 2.27
Signed-off-by: Armin Kuster <akus...@mvista.com>
--
From: Armin Kuster <akus...@mvista.com>
Per Yocto Compatable: The following change was made to fix a build issue we are
seeing on
Centos 6. Not expecting this to be merge.
binutils-cross-canadian-arm-2.27-r0.47: task do_compile:
gprof' cc1: error: unrecognized command line option &q
From: Armin Kuster <akus...@mvista.com>
With out this patch, one can not login to a mips64 machine like qumumips64 or
Octeon mips64 when
systemd is enabled.
remove PACKAGECONFIG option too
affects: systemd < 2.3.2
Reviewed-by: Jeremy Puhlman <jpuhl...@mvista.com>
Signed-of
string need to free buffer on error [BZ #21461]
Affects: glibc < 2.25
Signed-off-by: Rajkumar Veer <rv...@mvista.com>
Reviewed-by: Armin Kuster <akus...@mvista.com>
Signed-off-by: Armin Kuster <akus...@mvista.com>
---
meta/recipes-core/glibc/glibc/CVE-2017-8804.patch | 232 +
glibc < 2.27
Signed-off-by: Thiruvadi Rajaraman <trajara...@mvista.com>
Reviewed-by: Armin Kuster <akus...@mvista.com>
Signed-off-by: Armin Kuster <akus...@mvista.com>
---
meta/recipes-core/glibc/glibc/CVE-2017-15670.patch | 38 ++
meta/recip
From: Armin Kuster <akus...@mvista.com>
Conver letter only
The following changes since commit cf5c44ac611c2c2657e6fd3c1f723bcb20b812dd:
python-scons: upgrade to v3.0.1; use pypi.bbclass (2017-12-13 13:59:46 +)
are available in the git repository at:
git://git.openembedd
From: Armin Kuster <akus...@mvista.com>
The following CA certificate was Re-Added. It was removed in NSS 3.34, but has
been re-added with only the Email trust bit set. (bug 1418678)
CN = Certum CA, O=Unizeto Sp. z o.o.
SHA-256 Fingerprint:
D8:E0:FE:BC:1D:B2:E3:8D:00:94:0F:37:D2:7D:41:34
From: Armin Kuster <akus...@mvista.com>
Signed-off-by: Armin Kuster <akus...@mvista.com>
---
.../{pinentry-1.0.0 => pinentry-1.1.0}/gpg-error_pkconf.patch | 0
.../{pinentry-1.0.0 => pinentry-1.1.0}/libassuan_pkgconf.patch| 0
.../recipes-support/pinentry/
From: Armin Kuster <akus...@mvista.com>
combine .inc with bb file
Signed-off-by: Armin Kuster <akus...@mvista.com>
---
meta/recipes-kernel/kexec/kexec-tools.inc | 38 --
...kexec-tools_2.0.15.bb => kexec-tools_2.0.16.bb} | 84 +++---
2 fi
From: Armin Kuster <akus...@mvista.com>
Includes CVE-2017-16611
Signed-off-by: Armin Kuster <akus...@mvista.com>
---
.../xorg-lib/{libxfont_1.5.3.bb => libxfont_1.5.4.bb} | 4 ++--
1 file changed, 2 insertions(+), 2 deletions(-)
rename meta/recipes-gr
From: Armin Kuster <akus...@mvista.com>
Signed-off-by: Armin Kuster <akus...@mvista.com>
---
.../libassuan/{libassuan_2.4.4.bb => libassuan_2.5.1.bb} | 4 ++--
1 file changed, 2 insertions(+), 2 deletions(-)
rename meta/recipes-support/libassuan/{lib
From: Armin Kuster <akus...@mvista.com>
This update includes:
CVE-2017-16612
and some clan warning fixes
Signed-off-by: Armin Kuster <akus...@mvista.com>
---
.../xorg-lib/{libxcursor_1.1.14.bb => libxcursor_1.1.15.bb} | 4 ++--
1 file changed, 2 insertions(+), 2 delet
From: Armin Kuster <akus...@mvista.com>
Includes:
Open files with O_NOFOLLOW. (CVE-2017-16611)
Signed-off-by: Armin Kuster <akus...@mvista.com>
---
.../xorg-lib/{libxfont2_2.0.2.bb => libxfont2_2.0.3.bb} | 4 ++--
1 file changed, 2 insertions(+), 2 deletions(
From: Armin Kuster <akus...@mvista.com>
New License (mpl-2.0) and LICESE file.
New features in bind 9.11
see: https://www.isc.org/wp-content/uploads/2016/09/BIND9.11NewFeatures.pdf
add zlib PACKAGECONF
Signed-off-by: Armin Kuster <akus...@mvista.com>
---
meta/recipes-connectivi
Built on AB, no issues do to upgrade found.
boot tested on arm64 target too
Planning on updating Rocko instead of backporting all 41 + commits
Armin Kuster (1):
binutils: update to 2.29.1
.../binutils/{binutils-2.29.inc => binutils-2.29.1.inc} | 2 +-
...inutils-cr
From: Armin Kuster <akus...@mvista.com>
update to 2.29.1 to fix the following missing CVE's
CVE-2017-15939, CVE-2017-15938, CVE-2017-15225, CVE-2017-15025,
CVE-2017-15024, CVE-2017-15023, CVE-2017-15022, CVE-2017-15021,
CVE-2017-15020, CVE-2017-14974, CVE-2017-14940, CVE-2017-14939,
CV
From: Armin Kuster <akus...@mvista.com>
merge .inc
forward ported two patches to work with 3.4
for more info see:
http://lists.gnu.org/archive/html/info-gnu/2017-11/msg7.html
Signed-off-by: Armin Kuster <akus...@mvista.com>
---
...d-target-to-only-build-tests-not-run-the
zlib configure.ac support removed in 3.6.1
drop patch
Signed-off-by: Armin Kuster <akuster...@gmail.com>
---
meta/recipes-support/gnutls/gnutls.inc| 3 +--
meta/recipes-support/gnutls/{gnutls_3.5.16.bb => gnutls_3.6.1.bb} | 5 ++---
2 files changed, 3 i
From: Armin Kuster <akus...@mvista.com>
I suspect curl may have conflicts if the changes in mut are applied.
The gnutls changes built with meta-oe world. boot tested on a few arm machines.
The following changes since commit a17f3ec910366e9e7551fa24fbc07929b9584341:
dhcp: fix build
From: Armin Kuster <akus...@mvista.com>
curlbuild.h removed from sources
includes:
CVE-2017-1000257
removed patches for the following cve fixs:
CVE-2017-1000254
CVE-2017-1000101
CVE-2017-1000100
CVE-2017-199
Signed-off-by: Armin Kuster <akus...@mvista.com>
---
meta/recipes-
501 - 600 of 2273 matches
Mail list logo