From: Roy Li
It is correct behaviours to output help and version information,
and should return 0;
When input parameter is invalid, print help information and exit.
Signed-off-by: Roy Li
---
meta/recipes-devtools/makedevs/makedevs-1.0.0/makedevs.c |9 ++---
1 file changed, 6 insertions
From: Roy Li
The default value of SFTPSERVER_PATH is "/usr/libexec/sftp-server" defined in
dropbear-2013.58/option.h, but after commit 406bd38b423[bitbake.conf: change
libexecdir to ${libdir}/${BPN}], sftp-server is provided by openssh package,
and is installed into ${libdir}/openssh, so we pass
From: "Roy.Li"
It seems strange that runlevel always returns 1, The comment says it is
related to sysvinit, but if we enable systemd, sysvinit will not be
installed. and we have created a link for runlevel to systemctl if
systemd is installed.
Signed-off-by: Roy.Li
---
meta/recipes-core/syst
From: Ming Liu
1. Introduce bind-chroot package, contains files/directories used as jail.
2. Add hooks to init script for setting up named to run chroot.
3. Setting ROOTDIR in /etc/default/bind9 is needed to run chroot.
These components mainly come from:
ftp://ftp.redhat.com/pub/redhat/linux/ent
From: Roy Li
Otherwise system will hang since nfs is not disconnected
and remove the judgement of initscript DISTRO_FEATURE when install init
script connman, because inherit systemd will remove init script
Signed-off-by: Roy Li
---
meta/recipes-connectivity/connman/connman.inc | 12 +++
From: Roy Li
[YOCTO #5287]
tar failed and reported that file changed as we read it, now
we workaround it
Signed-off-by: Roy Li
---
meta/classes/populate_sdk_base.bbclass | 16 +++-
1 file changed, 15 insertions(+), 1 deletion(-)
diff --git a/meta/classes/populate_sdk_base.bbcla
From: Roy Li
Otherwise system will hang since nfs is not disconnected
and remove the judgement of initscript DISTRO_FEATURE when install init
script connman, because inherit systemd will remove init script
Signed-off-by: Roy Li
---
meta/recipes-connectivity/connman/connman.inc | 13 +++
From: Roy Li
Create connmand-nfs.service, which will run a script to ignore the
networking device when root is nfs.
Connmand-nfs.service will be run only when root is not nfs
Signed-off-by: Roy Li
---
meta/recipes-connectivity/connman/connman.inc | 17 +---
.../connman/connman/connm
From: Roy Li
Create connman-evn.service, which will run a script to compute the networking
device when nfs root is on, and pass the result to connman.service
Copy Connmand.service from source code, add ExecStartPre into it to release
do_configure_append work, use the options which is passed by c
From: Roy Li
Create connman-evn.service, which will run a script to compute the networking
device when nfs root is on, and pass the result to connman.service
Copy Connmand.service from source code, add ExecStartPre into it to release
do_configure_append work, use the options which is passed by c
From: Roy Li
libudev is asked by enable-gbm, not enable_dri, and enable-gbm always is yes;
We can find the dependency from configure.ac codes:
if test "x$enable_gbm" = xyes; then
SRC_DIRS="$SRC_DIRS gbm"
PKG_CHECK_MODULES([LIBUDEV], [libudev], [],
From: Roy Li
Create connman-evn.service, which will run a script to compute the networking
device when nfs root is on, and pass the result to connman.service
Copy Connmand.service from source code, add ExecStartPre into it to release
do_configure_append work, use the options which is passed by c
From: Roy Li
Signed-off-by: Roy Li
---
meta/recipes-support/libcap/libcap.inc |3 +-
.../libcap/libcap/fix-CAP_LAST_CAP.patch | 39
2 files changed, 41 insertions(+), 1 deletion(-)
create mode 100644 meta/recipes-support/libcap/libcap/fix-CAP_LA
From: "Roy Li"
Signed-off-by: Roy Li
---
meta/recipes-devtools/opkg/opkg.inc |1 +
1 file changed, 1 insertion(+)
diff --git a/meta/recipes-devtools/opkg/opkg.inc
b/meta/recipes-devtools/opkg/opkg.inc
index 3d56886..ec07716 100644
--- a/meta/recipes-devtools/opkg/opkg.inc
+++ b/meta/recip
From: Roy Li
libpseudo.so is always installed into ${prefix}/lib/, not ${libdir},
so fix these paths; and skip libdir WARN_QA checking to ignore the
warning in 64bit and multilib enabled system
Signed-off-by: Roy Li
---
meta/recipes-devtools/pseudo/pseudo.inc |7 +--
1 file changed, 5
From: "Roy.Li"
The paths of executable files in test cases are the source code path,
need to fix to make them work on target
Signed-off-by: Roy.Li
---
meta/recipes-kernel/lttng/lttng-tools_2.3.0.bb | 19 +++
1 file changed, 19 insertions(+)
diff --git a/meta/recipes-kernel/l
From: Roy Li
We have two version bluez, declare virtual/bluez to switch them easily,
and set the preferred provider for bluez as bluez4
Signed-off-by: Roy Li
---
meta/conf/distro/include/default-providers.inc|4 +---
meta/recipes-connectivity/bluez/bluez4.inc
From: Roy Li
Create connman-evn.service, which will run a script to compute the networking
device when nfs root is on, and pass the result to connman.service
Copy Connmand.service from source code, add ExecStartPre into it to release
do_configure_append work, use the options which is passed by c
From: Roy Li
This will kill the not shipped Error:
ERROR: QA Issue: eglibc-locale: Files/directories were installed but not
shipped
/usr/lib/locale
Signed-off-by: Roy Li
---
meta/recipes-core/eglibc/eglibc-locale.inc |3 ++-
1 file changed, 2 insertions(+), 1 deletion(-)
diff
From: Roy Li
We have two version bluez, declare virtual/bluez and VIRTUAL-RUNTIME_bluez
to switch them easily, and set the preferred provider for bluez as bluez4
Signed-off-by: Roy Li
---
meta/conf/distro/include/default-providers.inc|5 ++---
meta/recipes-connectivity/
From: Roy Li
[YOCTO #5283]
eu-objdump does not work on mips, arm and ppc, so remove it from these
unsupported architectures
Signed-off-by: Roy Li
---
meta/recipes-devtools/elfutils/elfutils_0.155.bb |6 ++
1 file changed, 6 insertions(+)
diff --git a/meta/recipes-devtools/elfutils/el
From: Roy Li
Create connman-evn.service, which will run a script to compute the networking
device when nfs root is on, and pass the result to connman.service
Connmand.service add ExecStartPre into Connmand.service to release
do_configure_append work, use the options which is passed by connman-ev
From: Roy.Li
The following changes since commit b53ea6687b6201c8c5ab5cb0d2a845ef7e7b2abe:
sstate: Bump version number to deal with layout fixes (2012-11-14 23:37:26
+)
are available in the git repository at:
git://git.pokylinux.org/poky-contrib roy/change-applets-dir
http://git.pokyl
From: Roy.Li
Change some applets dirs to make them FHS and LSB compliance by backporting
patch dac8e79a190fcfe (Move several applets to different install dir) and
adjusting alternatives in several bb files, the result is below:
ip: /bin/-->/sbin/
adduser deluser addgroup delgroup:
From: Roy.Li
The following changes since commit b53ea6687b6201c8c5ab5cb0d2a845ef7e7b2abe:
sstate: Bump version number to deal with layout fixes (2012-11-14 23:37:26
+)
are available in the git repository at:
git://git.pokylinux.org/poky-contrib roy/bind
http://git.pokylinux.org/cgit.
From: Roy Li
Add some configurations, make rndc command be able to controls
the named daemon.
Signed-off-by: Roy Li
---
.../bind/bind-9.8.1/conf.patch | 15 +--
.../bind-9.8.1/make-etc-initd-bind-stop-work.patch | 42
meta/recipes-connectivity/b
From: "Roy.Li"
The flag ac_cv_o_nonblock_inherited is always set to yes in cross compiling
environment. This flag is intended to think the socket, returned from
accept(), inherit file status flags such as O_NONBLOCK from the listening
socket, but socket never inherits file status from the listeni
From: "Roy.Li"
The following changes since commit 99f003356be43bb361634359a5d3c520f72f0a08:
local.conf.sample: Enable disk space monitoring by default (2012-11-28
15:25:14 +)
are available in the git repository at:
git://git.pokylinux.org/poky-contrib roy/apr
http://git.pokylinux.org
From: "Roy.Li"
When compiling apr for no-powerpc arch, the flag ac_cv_o_nonblock_inherited
is always set to yes in cross compiling environment. This flag is intended to
think the socket, returned from accept(), inherit file status flags such as
O_NONBLOCK from the listening socket, but socket nev
From: "Roy.Li"
The following changes since commit 99f003356be43bb361634359a5d3c520f72f0a08:
local.conf.sample: Enable disk space monitoring by default (2012-11-28
15:25:14 +)
are available in the git repository at:
git://git.pokylinux.org/poky-contrib roy/common-linux
http://git.poky
From: "Roy.Li"
*** BLURB HERE ***
The following changes since commit 26bf8f6a047ccc0f73eaa40093afddabfce8ea1b:
gst-openmax: fix build with newer GLib (2012-12-17 17:53:33 +)
are available in the git repository at:
git://git.pokylinux.org/poky-contrib roy/rpcbind
http://git.pokylinux.
From: "Roy.Li"
Rpcbind has more features, like ipv6 support and nfs4 support;
Redhat, Fedora, debian, Ubuntu are using rpcbind by default.
Signed-off-by: Roy.Li
---
meta/recipes-connectivity/nfs-utils/nfs-utils_1.2.3.bb |2 +-
.../initscripts/initscripts-1.0/mountnfs.sh| 16 +
From: Roy Li
enable TLD, and other releases always enable it
Signed-off-by: Roy Li
---
meta/recipes-extended/libidn/libidn_0.6.14.bb |2 --
meta/recipes-extended/libidn/libidn_1.28.bb |2 --
2 files changed, 4 deletions(-)
diff --git a/meta/recipes-extended/libidn/libidn_0.6.14.bb
From: Roy Li
webkit can not be built on mips64 with n32 ABI, but can be built on mips64
n64 and o32 ABI whose TARGET_SYS's name is mips-*-linux
Signed-off-by: Roy Li
---
meta/recipes-sato/midori/midori_0.5.5.bb |4 ++--
meta/recipes-sato/webkit/webkit-gtk_1.8.3.bb |4 ++--
2 files
From: Roy Li
"grep -q" does not write anything to standard output, the result is same as
a empty string, The second test becomes [!""] which is a fixed true value
Signed-off-by: Roy Li
---
meta/recipes-devtools/elfutils/elfutils_0.155.bb |2 +-
1 file changed, 1 insertion(+), 1 deletion(
From: Roy Li
no user uses these two patches
Signed-off-by: Roy Li
---
meta/recipes-devtools/file/file/ge-le.patch| 72
.../file/file/stringb-compat.patch | 31 -
2 files changed, 103 deletions(-)
delete mode 100644 meta/recipes-devtools
From: Roy Li
To mips64 libn32, The HOST_SYS is mips64-*-linux-gnun32, the COMPATIBLE_HOST
is mips64.*-linux, the regular expression matching both will return true. so
append the ending position word into COMPATIBLE_HOST to make match failure
Signed-off-by: Roy Li
---
meta/recipes-sato/webkit/w
From: Roy Li
To mips64 libn32, The HOST_SYS is mips64-*-linux-gnun32, the COMPATIBLE_HOST
is mips64.*-linux, the regular expression matching both will return true. so
append the ending position word into COMPATIBLE_HOST to make match failure
Signed-off-by: Roy Li
---
meta/recipes-sato/midori/m
From: Roy Li
After 1b8e4abd2d9c0 [bitbake.conf/package: Collapse PKGDATA_DIR into
a single machine specific directory], oe-pkgdata-util does not use
target_suffix parameter, so do not need to loop the vendor
Signed-off-by: Roy Li
---
meta/classes/buildhistory.bbclass | 10 --
meta/cl
From: Roy Li
If we don't do this, systemd.bbclase will complain to unable to find multilib
packages since PACKAGES is expand with mlprefix, but SYSTEMD_PACKAGES is not,
like in ntp.inc:
$grep PACKAGES meta-oe/meta-networking/recipes-support/ntp/ntp.inc
PACKAGES += "ntpdate sntp ${PN}-tic
From: Roy Li
define failure/success/warning/pass functions, some packages' initscript
need them, and /etc/core-lsb/lsb_log_message from lsb needs them too.
Signed-off-by: Roy Li
---
.../initscripts/initscripts-1.0/functions | 31
1 file changed, 31 insertions(+)
From: Roy Li
Read kernel version from ${STAGING_KERNEL_DIR}/kernel-abiversion, to avoid
to use the hardcode kernel version.
Signed-off-by: Roy Li
---
meta/recipes-support/nss/nss.inc |6 +++---
1 file changed, 3 insertions(+), 3 deletions(-)
diff --git a/meta/recipes-support/nss/nss.inc b
From: Roy Li
Read kernel version from ${STAGING_KERNEL_DIR}/kernel-abiversion, to avoid
to use the hardcode kernel version.
Signed-off-by: Roy Li
---
meta/recipes-support/nss/nss.inc |6 +++---
1 file changed, 3 insertions(+), 3 deletions(-)
diff --git a/meta/recipes-support/nss/nss.inc b
From: Roy Li
Linux kernel 3.10 is used currently
Signed-off-by: Roy Li
---
meta/recipes-support/nss/nss.inc |4 ++--
1 file changed, 2 insertions(+), 2 deletions(-)
diff --git a/meta/recipes-support/nss/nss.inc b/meta/recipes-support/nss/nss.inc
index a6aeed8..e0840c4 100644
--- a/meta/re
From: Roy Li
Once send_negotiate_unix_fd failed, this failure will happen, since
auth->guid_from_server has been set to some value before
send_negotiate_unix_fd. send_negotiate_unix_fd failure will lead to
this auth be handled by process_ok again, but this auth->guid_from_server
is not zero.
Sig
From: "Roy.Li"
*** BLURB HERE ***
The following changes since commit 98f17da7ccc1bf79fc5894f90e52769bdbcf89df:
update-rc.d: fix failure on target (2013-01-17 20:16:38 +)
are available in the git repository at:
git://git.pokylinux.org/poky-contrib roy/enable_tcp_wrapper_xinetd
http:/
From: "Roy.Li"
Signed-off-by: Roy.Li
---
meta/recipes-extended/xinetd/xinetd_2.3.15.bb |5 -
1 file changed, 4 insertions(+), 1 deletion(-)
diff --git a/meta/recipes-extended/xinetd/xinetd_2.3.15.bb
b/meta/recipes-extended/xinetd/xinetd_2.3.15.bb
index 3bde512..9278cc2 100644
--- a/me
From: "Roy.Li"
tcp-wrappers DISTRO_FEATURES only is used in xinetd currently, but other
packages maybe need it to enable tcp-wrapper support, like vsftpd.
Signed-off-by: Roy.Li
---
meta/conf/distro/include/default-distrovars.inc |3 ++-
1 file changed, 2 insertions(+), 1 deletion(-)
diff
From: "Roy.Li"
*** BLURB HERE ***
The following changes since commit 5892db9a34c188b8a9bdaa86e19ba62a7f4793b5:
oprofile: set correct kernel path (2013-01-20 13:13:54 +)
are available in the git repository at:
git://git.pokylinux.org/poky-contrib enable_tcp_wrapper_for_xinetd
http://
From: "Roy.Li"
tcp-wrappers DISTRO_FEATURES only is used in xinetd currently, but other
packages maybe need it to enable tcp-wrapper support, like vsftpd.
Signed-off-by: Roy.Li
---
meta/conf/bitbake.conf |2 +-
1 file changed, 1 insertion(+), 1 deletion(-)
diff --git a/meta/conf/bitbake.c
From: "Roy.Li"
Signed-off-by: Roy.Li
---
meta/recipes-extended/xinetd/xinetd_2.3.15.bb |5 -
1 file changed, 4 insertions(+), 1 deletion(-)
diff --git a/meta/recipes-extended/xinetd/xinetd_2.3.15.bb
b/meta/recipes-extended/xinetd/xinetd_2.3.15.bb
index 3bde512..0c0079b 100644
--- a/me
From: "Roy.Li"
*** BLURB HERE ***
The following changes since commit ab692ed618f83df2ce452769165314e70b867345:
gettext: Fix build with uclibc remove upstreamed patches (2013-01-27 13:52:49
+)
are available in the git repository at:
git://git.pokylinux.org/poky-contrib roy/xinetd-enabl
From: "Roy.Li"
Signed-off-by: Roy.Li
---
meta/recipes-extended/xinetd/xinetd_2.3.15.bb |5 -
1 file changed, 4 insertions(+), 1 deletion(-)
diff --git a/meta/recipes-extended/xinetd/xinetd_2.3.15.bb
b/meta/recipes-extended/xinetd/xinetd_2.3.15.bb
index 3bde512..87ea2b1 100644
--- a/me
From: "Roy.Li"
Some armv7a cpu does not support neon, like SPEAr1310,
so we should check against "neon" in TUNE_FEATURES.
Signed-off-by: Roy.Li
---
meta/recipes-qt/qt4/qt4-embedded_4.8.4.bb |4 ++--
meta/recipes-qt/qt4/qt4-x11-free_4.8.4.bb |4 ++--
2 files changed, 4 insertions(+), 4
From: "Roy.Li"
*** BLURB HERE ***
The following changes since commit ab692ed618f83df2ce452769165314e70b867345:
gettext: Fix build with uclibc remove upstreamed patches (2013-01-27 13:52:49
+)
are available in the git repository at:
git://git.pokylinux.org/poky-contrib qt4-check-neon-a
From: "Roy.Li"
1. it introduces bug in 64bit big endian process with __GLIBC__, At that
condition, size_t is 8byte, and the third parameter of getpeername is
socklen_t which is 4 byte. As a result, getpeername sees third parameter
is always 0, and can not return right value.
The similar program
From: "Roy.Li"
The following changes since commit 82602d2c55f5d233bd8351e95a84a65b792786e5:
qt4: Add space for _appends (2013-02-01 22:49:27 +)
are available in the git repository at:
git://git.pokylinux.org/poky-contrib tcp_wrapper_remove_size_t_patch
http://git.pokylinux.org/cgit.
The following changes since commit a5362de60c0051f16b88a40bd9cb41915bee0b0f:
rootfs_ipkg: fix BAD_RECOMMENDATIONS handling (2013-02-19 14:37:44 -0800)
are available in the git repository at:
git://git.pokylinux.org/poky-contrib gcc_search_build_dir_firstly
http://git.pokylinux.org/cgit.cg
If libunwind is compiled firstly, unwind.h from libunwind
is installed into sysroot, compiling gcc will fail since
it use wrong unwind.h, it should always use unwind.h under
build directory.
Signed-off-by: Roy.Li
---
meta/recipes-devtools/gcc/gcc-4.7.inc |2 +-
meta/recipes-devtools/gcc/gcc_
From: Roy Li
fix the bootlogd init script header, to make chkconfig be able to work
on bootlogd
Signed-off-by: Roy Li
---
meta/recipes-core/sysvinit/sysvinit/bootlogd.init | 18 +++---
1 file changed, 11 insertions(+), 7 deletions(-)
diff --git a/meta/recipes-core/sysvinit/sysvi
From: Yue Tao
The msrle_decode_frame function in libavcodec/msrle.c in FFmpeg before
2.1.4 does not properly calculate line sizes, which allows remote
attackers to cause a denial of service (out-of-bounds array access) or
possibly have unspecified other impact via crafted Microsoft RLE video
data
From: Yue Tao
The decode_slice_header function in libavcodec/h264.c in FFmpeg before
1.1 allows remote attackers to have an unspecified impact via crafted
H.264 data, which triggers an out-of-bounds array access.
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2013-0850
Signed-off-by: Yue T
From: Roy Li
The following changes since commit 58417093d7ce83c8a2f683a356fddc23aaee5e8e:
wic: Extend indirect string connection to support image names and rootfs
(2014-05-13 19:35:06 +0100)
are available in the git repository at:
git://git.pokylinux.org/poky-contrib roy/ffmpeg-1
http:/
From: Yue Tao
The lpc_prediction function in libavcodec/alac.c in FFmpeg before 1.1
allows remote attackers to have an unspecified impact via crafted Apple
Lossless Audio Codec (ALAC) data, related to a large nb_samples value.
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2013-0856
Signed
From: Yue Tao
libavcodec/alsdec.c in FFmpeg before 1.0.4 allows remote attackers to
have an unspecified impact via a crafted block length, which triggers an
out-of-bounds write.
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2013-0845
Signed-off-by: Yue Tao
Signed-off-by: Roy Li
---
...
From: Yue Tao
The mpegts_write_pmt function in the MPEG2 transport stream (aka DVB)
muxer (libavformat/mpegtsenc.c) in FFmpeg, possibly 2.1 and earlier,
allows remote attackers to have unspecified impact and vectors, which
trigger an out-of-bounds write.
http://web.nvd.nist.gov/view/vuln/detail?
From: Yue Tao
The atrac3_decode_init function in libavcodec/atrac3.c in FFmpeg before
1.0.4 allows remote attackers to have an unspecified impact via ATRAC3
data with the joint stereo coding mode set and fewer than two channels.
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2013-0858
Sign
From: Yue Tao
libavcodec/huffyuvdec.c in FFmpeg before 1.1.2 allows remote attackers
to have an unspecified impact via crafted Huffyuv data, related to an
out-of-bounds write and (1) unchecked return codes from the init_vlc
function and (2) len==0 cases.
http://web.nvd.nist.gov/view/vuln/detail?
From: Yue Tao
The decode_frame function in libavcodec/eamad.c in FFmpeg before 1.1
allows remote attackers to have an unspecified impact via crafted
Electronic Arts Madcow video data, which triggers an out-of-bounds array
access.
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2013-0851
Sig
From: Yue Tao
The vqa_decode_chunk function in libavcodec/vqavideo.c in FFmpeg before
1.0.4 and 1.1.x before 1.1.2 allows remote attackers to have an
unspecified impact via a large (1) cbp0 or (2) cbpz chunk in Westwood
Studios VQA Video file, which triggers an out-of-bounds write.
http://web.nv
From: Yue Tao
The mjpeg_decode_scan_progressive_ac function in libavcodec/mjpegdec.c
in FFmpeg before 1.1 allows remote attackers to have an unspecified
impact via crafted MJPEG data.
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2013-0854
Signed-off-by: Yue Tao
Signed-off-by: Roy Li
--
From: Yue Tao
The parse_picture_segment function in libavcodec/pgssubdec.c in FFmpeg
before 1.1 allows remote attackers to have an unspecified impact via
crafted RLE data, which triggers an out-of-bounds array access.
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2013-0852
Signed-off-by:
From: Yue Tao
The roq_decode_init function in libavcodec/roqvideodec.c in FFmpeg
before 1.1 allows remote attackers to have an unspecified impact via a
crafted (1) width or (2) height dimension that is not a multiple of
sixteen in id RoQ video data.
http://web.nvd.nist.gov/view/vuln/detail?vulnI
From: "yanjun.zhu"
The Perl_reg_numbered_buff_fetch function in Perl 5.10.0, 5.12.0,
5.14.0, and other versions, when running with debugging enabled,
allows context-dependent attackers to cause a denial of service
(assertion failure and application exit) via crafted input that
is not properly han
From: Li Wang
the patch comes from:
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2014-1492
https://bugzilla.mozilla.org/show_bug.cgi?id=903885
changeset: 11063:709d4e597979
user:Kai Engert
date:Wed Mar 05 18:38:55 2014 +0100
summary: Bug 903885, address requests to
From: Roy Li
The following changes since commit 03ece04bb1379adc5729fd0857e5287dfcae0e3a:
perl-5.14.3:fix CVE-2010-4777 (2014-05-15 11:10:52 +0800)
are available in the git repository at:
git://git.pokylinux.org/poky-contrib roy/nss
http://git.pokylinux.org/cgit.cgi/poky-contrib/log/?h=r
From: Li Wang
the patch comes from:
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2013-1740
https://bugzilla.mozilla.org/show_bug.cgi?id=919877
https://bugzilla.mozilla.org/show_bug.cgi?id=713933
changeset: 10946:f28426e944ae
user:Wan-Teh Chang
date:Tue Nov 26 16:44:39 2
From: Roy Li
Diff with V1: use ffmpeg as prefix of commit header
The following changes since commit e273301efa0037a13c3a60b4414140364d9c9873:
gstreamer/lame: Better gcc 4.9 fix (2014-05-15 23:27:41 +0100)
are available in the git repository at:
git://git.pokylinux.org/poky-contrib roy/ff
From: Yue Tao
The mpegts_write_pmt function in the MPEG2 transport stream (aka DVB)
muxer (libavformat/mpegtsenc.c) in FFmpeg, possibly 2.1 and earlier,
allows remote attackers to have unspecified impact and vectors, which
trigger an out-of-bounds write.
http://web.nvd.nist.gov/view/vuln/detail?
From: Yue Tao
The msrle_decode_frame function in libavcodec/msrle.c in FFmpeg before
2.1.4 does not properly calculate line sizes, which allows remote
attackers to cause a denial of service (out-of-bounds array access) or
possibly have unspecified other impact via crafted Microsoft RLE video
data
From: Yue Tao
The vqa_decode_chunk function in libavcodec/vqavideo.c in FFmpeg before
1.0.4 and 1.1.x before 1.1.2 allows remote attackers to have an
unspecified impact via a large (1) cbp0 or (2) cbpz chunk in Westwood
Studios VQA Video file, which triggers an out-of-bounds write.
http://web.nv
From: Yue Tao
libavcodec/huffyuvdec.c in FFmpeg before 1.1.2 allows remote attackers
to have an unspecified impact via crafted Huffyuv data, related to an
out-of-bounds write and (1) unchecked return codes from the init_vlc
function and (2) len==0 cases.
http://web.nvd.nist.gov/view/vuln/detail?
From: Yue Tao
The parse_picture_segment function in libavcodec/pgssubdec.c in FFmpeg
before 1.1 allows remote attackers to have an unspecified impact via
crafted RLE data, which triggers an out-of-bounds array access.
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2013-0852
Signed-off-by:
From: Yue Tao
libavcodec/alsdec.c in FFmpeg before 1.0.4 allows remote attackers to
have an unspecified impact via a crafted block length, which triggers an
out-of-bounds write.
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2013-0845
Signed-off-by: Yue Tao
Signed-off-by: Roy Li
---
...
From: Yue Tao
The atrac3_decode_init function in libavcodec/atrac3.c in FFmpeg before
1.0.4 allows remote attackers to have an unspecified impact via ATRAC3
data with the joint stereo coding mode set and fewer than two channels.
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2013-0858
Sign
From: Yue Tao
The decode_frame function in libavcodec/eamad.c in FFmpeg before 1.1
allows remote attackers to have an unspecified impact via crafted
Electronic Arts Madcow video data, which triggers an out-of-bounds array
access.
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2013-0851
Sig
From: Yue Tao
The lpc_prediction function in libavcodec/alac.c in FFmpeg before 1.1
allows remote attackers to have an unspecified impact via crafted Apple
Lossless Audio Codec (ALAC) data, related to a large nb_samples value.
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2013-0856
Signed
From: Yue Tao
The mjpeg_decode_scan_progressive_ac function in libavcodec/mjpegdec.c
in FFmpeg before 1.1 allows remote attackers to have an unspecified
impact via crafted MJPEG data.
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2013-0854
Signed-off-by: Yue Tao
Signed-off-by: Roy Li
--
From: Yue Tao
The decode_slice_header function in libavcodec/h264.c in FFmpeg before
1.1 allows remote attackers to have an unspecified impact via crafted
H.264 data, which triggers an out-of-bounds array access.
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2013-0850
Signed-off-by: Yue T
From: Yue Tao
The roq_decode_init function in libavcodec/roqvideodec.c in FFmpeg
before 1.1 allows remote attackers to have an unspecified impact via a
crafted (1) width or (2) height dimension that is not a multiple of
sixteen in id RoQ video data.
http://web.nvd.nist.gov/view/vuln/detail?vulnI
From: Yue Tao
Reject operations on getcontentlength and getcontenttype properties
if the resource is an activity.
Signed-off-by: Yue Tao
Signed-off-by: Roy Li
---
.../subversion/subversion-CVE-2013-1849.patch | 25
.../subversion/subversion_1.6.15.bb
From: Yue Tao
The mod_dav_svn Apache HTTPD server module in Subversion 1.6.x before
1.6.21 and 1.7.0 through 1.7.8 allows remote authenticated users to
cause a denial of service (memory consumption) by (1) setting or (2)
deleting a large number of properties for a file or directory.
http://web.n
From: Yue Tao
The is_this_legal function in mod_dontdothat for Apache Subversion 1.4.0
through 1.7.13 and 1.8.0 through 1.8.4 allows remote attackers to bypass
intended access restrictions and possibly cause a denial of service
(resource consumption) via a relative URL in a REPORT request.
http:
From: Roy Li
The following changes since commit e273301efa0037a13c3a60b4414140364d9c9873:
gstreamer/lame: Better gcc 4.9 fix (2014-05-15 23:27:41 +0100)
are available in the git repository at:
git://git.pokylinux.org/poky-contrib roy/subversion-1
http://git.pokylinux.org/cgit.cgi/poky-co
From: Yue Tao
Svnserve in Apache Subversion 1.4.0 through 1.7.12 and 1.8.0 through
1.8.1 allows local users to overwrite arbitrary files or kill arbitrary
processes via a symlink attack on the file specified by the --pid-file
option.
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2013-4277
From: Yue Tao
The mod_dav_svn Apache HTTPD server module in Subversion 1.6.x before 1.6.21
and 1.7.0 through 1.7.8 allows remote authenticated users to cause a denial of
service (NULL pointer dereference and crash) via a LOCK on an activity URL.
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE
From: Yue Tao
The mod_dav_svn Apache HTTPD server module in Subversion 1.7.0 through
1.7.10 and 1.8.x before 1.8.1 allows remote authenticated users to cause
a denial of service (assertion failure or out-of-bounds read) via a
certain (1) COPY, (2) DELETE, or (3) MOVE request against a revision
ro
From: Yue Tao
GNU screen 4.0.3 creates the /tmp/screen-exchange temporary file with
world-readable permissions, which might allow local users to obtain
sensitive session information.
Signed-off-by: Yue Tao
Signed-off-by: Roy Li
---
.../screen-4.0.3/screen-4.0.3-CVE-2009-1214.patch | 86 +++
From: Yue Tao
Race condition in GNU screen 4.0.3 allows local users to create or
overwrite arbitrary files via a symlink attack on the
/tmp/screen-exchange temporary file.
Signed-off-by: Yue Tao
Signed-off-by: Roy Li
---
.../screen-4.0.3/screen-4.0.2-CVE-2009-1215.patch | 27 ++
From: Roy Li
The following changes since commit 7db1f38607829ca34e21cd328613706a56f7ee98:
subversion: fix for Security Advisory CVE-2013-4277 (2014-05-16 13:43:06
+0800)
are available in the git repository at:
git://git.pokylinux.org/poky-contrib roy/screen
http://git.pokylinux.org/cgit
101 - 200 of 425 matches
Mail list logo