aboutsummaryrefslogtreecommitdiffstats
AgeCommit message (Collapse)Author
2018-10-15iscsi-initiator-utils: CVE-2017-17840stable/rocko-nmutZhixiong Chi
Backport CVE patches from the github upstream: https://github.com/open-iscsi/open-iscsi commit as follows: e313bd648a4c8a9526421e270eb597a5de1e0c7f b9c33683bdc0aed28ffe31c3f3d50bf5cdf519ea be58eed849f5457bb49b79e94aa6a26971ba6deb 5504053cc08df38d8d85032fa1691e363dfcfb92 85f647c4300a888bb6cbc27f33138549cab617e3 a7a96131bd2ea342f6def0e46be514baf8037ae8 59ede2cf4eee8729a4221000a5d1ecdd312a31ac https://nvd.nist.gov/vuln/detail/CVE-2017-17840 A local attacker can cause the iscsiuio server to abort or potentially execute code by sending messages with incorrect lengths, which (due to lack of checking) can lead to buffer overflows, and result in aborts (with overflow checking enabled) or code execution. The process_iscsid_broadcast function in iscsiuio/src/unix/iscsid_ipc.c does not validate the payload length before a write operation Signed-off-by: Zhixiong Chi <zhixiong.chi@windriver.com> Signed-off-by: Armin Kuster <akuster808@gmail.com> Signed-off-by: Joe MacDonald <joe_macdonald@mentor.com> (cherry picked from commit fdd3c62df9f4cb4e263aca4ab426ae9f88b29912) Signed-off-by: Armin Kuster <akuster808@gmail.com>
2018-10-15iscsi-initiator-utils: remove the distro_features_checkJackie Huang
open-isns supports both systemd and sysvinit now, so remove the distro_features_check. Signed-off-by: Jackie Huang <jackie.huang@windriver.com> Signed-off-by: Armin Kuster <akuster808@gmail.com> Signed-off-by: Joe MacDonald <joe_macdonald@mentor.com> (cherry picked from commit a99be704e29ca2553541220e8b1db396dd2e5a34) Signed-off-by: Armin Kuster <akuster808@gmail.com>
2018-10-15iscsi-initiator-utils: check file existence before movingJackie Huang
Check the file existence before moving to avoid the error: | mv: cannot stat /<build_dir>/git/utils/fwparam_ibft/prom_lex.l: | No such file or directory Signed-off-by: Jackie Huang <jackie.huang@windriver.com> Signed-off-by: Armin Kuster <akuster808@gmail.com> Signed-off-by: Joe MacDonald <joe_macdonald@mentor.com> (cherry picked from commit 5bb19576671d57e61dcf788bb571306a8e402149) Signed-off-by: Armin Kuster <akuster808@gmail.com>
2018-09-05glm: update 0.9.8.5 -> 0.9.9-a2 to fix x86_64 (sse-simd) buildstable/rocko-nextjansa/rockoAndreas Müller
* Commit log shows many commints fixing sse e.g. [1-3]. Instead of creating a heavy patch series here let's move to the latest version tagged. * License file 'copying.txt' was removed in [4]. License information is now found in 'readme.md'. License is still MIT. [1] https://github.com/g-truc/glm/commit/8bcf9b5ae791fce37a86764b8acfd68424ac544b [2] https://github.com/g-truc/glm/commit/1bbf2dafb9f67b14507dc37e4ee885464c5ffc78 [3] https://github.com/g-truc/glm/commit/fdfd03ffaf0e312ce0bab604982f50790e71b09f [4] https://github.com/g-truc/glm/commit/a23911a5e9d8c631023c62be6f0cf0bf855ca482 Signed-off-by: Andreas Müller <schnitzeltony@gmail.com> Signed-off-by: Armin Kuster <akuster808@gmail.com> [Fixed rocko compile issues] Signed-off-by: Armin Kuster <akuster808@gmail.com>
2018-09-05python-evdev: Use target header to generate ecodes.cKhem Raj
ecodes.c is generated file and if we do not specify the linux input headers it happiliy defaults to /usr/include/ to look for these headers while emitting code for ecodes.c which can cause gripes when build systems kernel UAPI is different than the target kernel. Mysterious build errors or even worse runtime errors can start to appear. e.g. | evdev/ecodes.c:603:29: error: 'KEY_ROTATE_LOCK_TOGGLE' undeclared (first use in this function); did you mean 'KEY_ATTENDANT_TOGGLE'? Signed-off-by: Khem Raj <raj.khem@gmail.com> Signed-off-by: Armin Kuster <akuster808@gmail.com> [Handel applied for rocko context] Signed-off-by: Armin Kuster <akuster808@gmail.com>
2018-09-04lftp: CVE-2018-10916Jagadeesh Krishnanjanappa
Affects lftp <= 4.8.3 Signed-off-by: Jagadeesh Krishnanjanappa <jkrishnanjanappa@mvista.com> Signed-off-by: Armin Kuster <akuster808@gmail.com>
2018-09-04fuse: CVE-2018-10906Jagadeesh Krishnanjanappa
* CVE-2018-10906-1: fusermount: don't feed "escaped commas" into mount options The old code permits the following behavior: $ _FUSE_COMMFD=10000 priv_strace -etrace=mount -s200 fusermount -o 'foobar=\,allow_other' mount mount("/dev/fuse", ".", "fuse", MS_NOSUID|MS_NODEV, "foobar=\\,allow_other,fd=3,rootmode=40000,user_id=1000,group_id=1000") = -1 EINVAL (Invalid argument) However, backslashes do not have any special meaning for the kernel here. As it happens, you can't abuse this because there is no FUSE mount option that takes a string value that can contain backslashes; but this is very brittle. Don't interpret "escape characters" in places where they don't work. * CVE-2018-10906-2: fusermount: refuse unknown options Blacklists are notoriously fragile; especially if the kernel wishes to add some security-critical mount option at a later date, all existing systems with older versions of fusermount installed will suddenly have a security problem. Additionally, if the kernel's option parsing became a tiny bit laxer, the blacklist could probably be bypassed. Whitelist known-harmless flags instead, even if it's slightly more inconvenient. Affects fuse < 2.9.8 and fuse < 3.2.5 Signed-off-by: Jagadeesh Krishnanjanappa <jkrishnanjanappa@mvista.com> Signed-off-by: Armin Kuster <akuster808@gmail.com>
2018-09-04apache2: CVE-2018-1333Jagadeesh Krishnanjanappa
* fixes a race condition where aborting streams triggers an unnecessary timeout. Affects apache2 2.4.18 to 2.4.30 and apache2 2.4.33 Fixed in apache2 2.4.34 Signed-off-by: Jagadeesh Krishnanjanappa <jkrishnanjanappa@mvista.com> Signed-off-by: Armin Kuster <akuster808@gmail.com>
2018-09-04rarpd, sblim-sfcb, openct: inherit systemd unconditionallyMartin Jansa
* the inherit was controlled by VIRTUAL-RUNTIME_init_manager and the installation of .service files by DISTRO_FEATURES and systemd was in DISTRO_FEATURES but not in VIRTUAL-RUNTIME_init_manager it was causing QA issues about unpackaged .service files ERROR: rarpd-ss981107-r0 do_package: QA Issue: rarpd: Files/directories were installed but not shipped in any package: /lib /lib/systemd /lib/systemd/system /lib/systemd/system/rarpd.service ERROR: sblim-sfcb-1.4.9-r0 do_package: QA Issue: sblim-sfcb: Files/directories were installed but not shipped in any package: /lib /lib/systemd /lib/systemd/system /lib/systemd/system/sblim-sfcb.service ERROR: sblim-sfcb-1.4.9-r0 do_package: QA Issue: sblim-sfcb: Files/directories were installed but not shipped in any package: /lib /lib/systemd /lib/systemd/system /lib/systemd/system/sblim-sfcb.service * systemd.bbclass will take care of removing /lib/systemd when systemd isn't in DISTRO_FEATURES, so we can remove both conditions Signed-off-by: Martin Jansa <Martin.Jansa@gmail.com> Signed-off-by: Armin Kuster <akuster808@gmail.com>
2018-07-25wireshark: update to 2.2.16Armin Kuster
Bug fix only updates Include security fixes: 2.2.16: wnpa-sec-2018-06 RPKI-Router infinite loop. Bug 14414. CVE-2018-7325. wnpa-sec-2018-34 BGP dissector large loop. Bug 13741. CVE-2018-14342. wnpa-sec-2018-35 ISMP dissector crash. Bug 14672. CVE-2018-14344. wnpa-sec-2018-36 Multiple dissectors could crash. Bug 14675. CVE-2018-14340. wnpa-sec-2018-37 ASN.1 BER dissector crash. Bug 14682. CVE-2018-14343. wnpa-sec-2018-38 MMSE dissector infinite loop. Bug 14738. CVE-2018-14339. wnpa-sec-2018-39 DICOM dissector crash. Bug 14742. CVE-2018-14341. wnpa-sec-2018-40 Bazaar dissector infinite loop. Bug 14841. wnpa-sec-2018-41 HTTP2 dissector crash. Bug 14869. 2.2.15: wnpa-sec-2018-25 The LDSS dissector could crash. (Bug 14615) wnpa-sec-2018-28 Multiple dissectors could consume excessive memory. (Bug 14678) wnpa-sec-2018-29 The DNS dissector could crash. (Bug 14681) wnpa-sec-2018-30 The GSM A DTAP dissector could crash. (Bug 14688) wnpa-sec-2018-31 The Q.931 dissector could crash. (Bug 14689) wnpa-sec-2018-33 Multiple dissectors could crash. (Bug 14703) 2.2.14: wnpa-sec-2018-15 The MP4 dissector could crash. (Bug 13777) wnpa-sec-2018-16 The ADB dissector could crash. (Bug 14460) wnpa-sec-2018-17 The IEEE 802.15.4 dissector could crash. (Bug 14468) wnpa-sec-2018-18 The NBAP dissector could crash. (Bug 14471) wnpa-sec-2018-19 The VLAN dissector could crash. (Bug 14469) wnpa-sec-2018-20 The LWAPP dissector could crash. (Bug 14467) wnpa-sec-2018-23 The Kerberos dissector could crash. (Bug 14576) 2.2.13: wnpa-sec-2018-05 The IEEE 802.11 dissector could crash. Bug 14442, CVE-2018-7335 wnpa-sec-2018-06 Multiple dissectors could go into large infinite loops. All ASN.1 BER dissectors (Bug 14444), along with the DICOM (Bug 14411), DMP (Bug 14408), LLTD (Bug 14419), OpenFlow (Bug 14420), RELOAD (Bug 14445), RPCoRDMA (Bug 14449), RPKI-Router (Bug 14414), S7COMM (Bug 14423), SCCP (Bug 14413), Thread (Bug 14428), Thrift (Bug 14379), USB (Bug 14421), and WCCP (Bug 14412) dissectors were susceptible. wnpa-sec-2018-07 The UMTS MAC dissector could crash. Bug 14339, CVE-2018-7334 wnpa-sec-2018-09 The FCP dissector could crash. Bug 14374, CVE-2018-7336 wnpa-sec-2018-10 The SIGCOMP dissector could crash. Bug 14398, CVE-2018-7320 wnpa-sec-2018-11 The pcapng file parser could crash. Bug 14403, CVE-2018-7420 wnpa-sec-2018-12 The IPMI dissector could crash. Bug 14409, CVE-2018-7417 wnpa-sec-2018-13 The SIGCOMP dissector could crash. Bug 14410, CVE-2018-7418 wnpa-sec-2018-14 The NBAP disssector could crash. Bug 14443, CVE-2018-7419 Signed-off-by: Armin Kuster <akuster808@gmail.com>
2018-06-07protobuf: Fix fetcher failure for rocko.Philip Balister
The 3.4.x branch disappered from the github repo. Remviing the branch entry from SRC_URI allows the fetch to succeed. Rocko is the only release that has this issue. Sumo and later have 3.5.x. Signed-off-by: Philip Balister <philip@opensdr.com> Acked-by: Denys Dmytriyenko <denys@ti.com> Signed-off-by: Armin Kuster <akuster808@gmail.com>
2018-06-07python3-asn1crypto: add support for Python 3Ricardo Salveti
python-asn1crypto.inc already available and used by the Python 2 version. Signed-off-by: Ricardo Salveti <ricardo@opensourcefoundries.com> Signed-off-by: Martin Jansa <Martin.Jansa@gmail.com> Signed-off-by: Armin Kuster <akuster808@gmail.com>
2018-06-07wireshark: Update Package to 2.2.12Armin Kuster
Includes: wnpa-sec-2018-01, Multiple dissectors could crash. (Bug 14253) CVE-2018-5336 wnpa-sec-2018-02, The MRDISC dissector could crash. (Bug 14299, Bug 13707) CVE-2017-17997 wnpa-sec-2018-03, The IxVeriWave file parser could crash. (Bug 14297) CVE-2018-5334 wnpa-sec-2018-04, The WCP dissector could crash. (Bug 14251) CVE-2018-5335 Full release notes: https://www.wireshark.org/docs/relnotes/wireshark-2.2.12.html Signed-off-by: Armin Kuster <akuster808@gmail.com>
2018-06-07wireshark: Update to 2.2.11Armin Kuster
changed --with-ssh to --with-libssh=DIR includes: wnpa-sec-2017-47 : CVE-2017-17084 The IWARP_MPA dissector could crash. (Bug 14236) wnpa-sec-2017-48 : CVE-2017-17083 The NetBIOS dissector could crash. (Bug 14249) wnpa-sec-2017-49 : CVE-2017-17085 The CIP Safety dissector could crash. (Bug 14250) release notes: https://www.wireshark.org/docs/relnotes/wireshark-2.2.11.html Signed-off-by: Armin Kuster <akuster@mvista.com> Signed-off-by: Armin Kuster <akuster808@gmail.com> Signed-off-by: Joe MacDonald <joe_macdonald@mentor.com> Signed-off-by: Armin Kuster <akuster808@gmail.com>
2018-03-12python-automat: fix build dependencies to avoid download during do_compileDerek Straka
Add the correct version of python{3}-setuptools-scm-native Remove the dependency on m2r Signed-off-by: Derek Straka <derek@asterius.io> Signed-off-by: Armin Kuster <akuster808@gmail.com>
2018-03-12python-cryptography: fix dependenciesTomasz Meresiński
python-cryptography changed dependency from python-pyasn1 to python-asn1crypto (e6a129724b707ebf79149376251e85fad550414). This patch fixes it in RDEPENDS. It should be applied with d808282ff3ff9c91a11d3912843d8e40022b9d08 from master which adds python3-asn1crypto package. Signed-off-by: Tomasz Meresiński<tomasz.meresinski@comarch.com> Signed-off-by: Armin Kuster <akuster808@gmail.com>
2018-03-12glm: update 0.9.8.4 -> 0.9.8.5Andreas Müller
Extend to build native recipe - meta-office says thanks. Signed-off-by: Andreas Müller <schnitzeltony@gmail.com> Signed-off-by: Armin Kuster <akuster808@gmail.com> (cherry picked from commit 60e64f854d729b36360e6b671eb30c1e78ed2350) Signed-off-by: Armin Kuster <akuster808@gmail.com>
2018-03-12python-attrs: update to version 17.3.0Derek Straka
Signed-off-by: Derek Straka <derek@asterius.io> Signed-off-by: Armin Kuster <akuster808@gmail.com>
2018-03-12python-attrs: add an initial recipe for version 17.2.0Derek Straka
Signed-off-by: Derek Straka <derek@asterius.io> Signed-off-by: Armin Kuster <akuster808@gmail.com>
2018-03-12python-hyperlink: add a recipe for version 17.3.1Derek Straka
Signed-off-by: Derek Straka <derek@asterius.io> Signed-off-by: Armin Kuster <akuster808@gmail.com>
2018-03-12python-incremental: add an initial recipe for version 17.5.0Derek Straka
Signed-off-by: Derek Straka <derek@asterius.io> Signed-off-by: Armin Kuster <akuster808@gmail.com>
2018-03-12python-constantly: add a recipe for version 15.1.0Derek Straka
Signed-off-by: Derek Straka <derek@asterius.io> Signed-off-by: Armin Kuster <akuster808@gmail.com>
2018-03-12python-automat: add an initial recipe for version 0.6.0Derek Straka
Signed-off-by: Derek Straka <derek@asterius.io> Signed-off-by: Armin Kuster <akuster808@gmail.com>
2018-02-01uw-imap: update SRC_URIYi Zhao
Switch SRC_URI to fossies.org since the original site is not available. Signed-off-by: Yi Zhao <yi.zhao@windriver.com> Signed-off-by: Armin Kuster <akuster808@gmail.com> (cherry picked from commit 884e4ba5353dda109ec101bd7e6c588e41665807) Signed-off-by: Armin Kuster <akuster808@gmail.com>
2018-02-01dialog: update SRC_URIYi Zhao
Update the SRC_URI since the upstream server is changed from ftp://invisible-island.net to ftp://ftp.invisible-island.net Signed-off-by: Yi Zhao <yi.zhao@windriver.com> Signed-off-by: Armin Kuster <akuster808@gmail.com> (cherry picked from commit 550acd329584cb3fe9f167cd85e1efdace304e8a) Signed-off-by: Armin Kuster <akuster808@gmail.com>
2018-02-01networkmanager: add consolekit only when x11 is enabledJackie Huang
consolekit depends on virtual/libx11 then it requires x11 distro feature, so add consolekit option only when x11 is in DISTRO_FEATURES. Signed-off-by: Jackie Huang <jackie.huang@windriver.com> Signed-off-by: Armin Kuster <akuster808@gmail.com> Signed-off-by: Joe MacDonald <joe_macdonald@mentor.com> (cherry picked from commit b55738ef8d30d6aa92e2e644a50f4b06ec541204) Signed-off-by: Armin Kuster <akuster808@gmail.com>
2018-02-01stunnel: fix compile error when openssl disable des supportKai Kang
When openssl disable des support with configure option 'no-des', it doesn't provide des related header file and functions. That causes stunnel compile failed. Fix it by checking macro OPENSSL_NO_DES to use openssl des related library conditionaly. Signed-off-by: Kai Kang <kai.kang@windriver.com> Signed-off-by: Joe MacDonald <joe_macdonald@mentor.com> Signed-off-by: Armin Kuster <akuster808@gmail.com> Signed-off-by: Joe MacDonald <joe_macdonald@mentor.com> (cherry picked from commit f9a1fe6ab2dfb6a53e58fc8da3a1580e76954e5e) Signed-off-by: Armin Kuster <akuster808@gmail.com>
2018-02-01net-snmp: support openssl without 3desJackie Huang
net-snmp enables 3des support by default and fails to build with distro feature openssl-no-weak-ciphers: | ../../net-snmp-5.7.3/snmplib/scapi.c:82:25: fatal error: openssl/des.h: No such file or directory | #include <openssl/des.h> To fix the issue: * add a patch to include des.h only if it's found in openssl * disable des when openssl-no-weak-ciphers is enabled Signed-off-by: Jackie Huang <jackie.huang@windriver.com> Signed-off-by: Joe MacDonald <joe_macdonald@mentor.com> Signed-off-by: Armin Kuster <akuster808@gmail.com> Signed-off-by: Joe MacDonald <joe_macdonald@mentor.com> (cherry picked from commit d8e69bc9e9c183346a11eb31915c12558565f881) Signed-off-by: Armin Kuster <akuster808@gmail.com>
2018-02-01arptables: Fix do_install taskFabio Berton
We need to run oe_runmake install with DESTDIR variable to install all arptables files. Without this the only file installed in package is systemd unit. Signed-off-by: Fabio Berton <fabio.berton@ossystems.com.br> Signed-off-by: Armin Kuster <akuster808@gmail.com> Signed-off-by: Joe MacDonald <joe_macdonald@mentor.com> (cherry picked from commit f122ecd7171b2258452131cc75d809b02a1f4f02) Signed-off-by: Armin Kuster <akuster808@gmail.com>
2018-02-01dnsmasq: update SRC_URI for versions 2.69 and earlierAndre McCurdy
Versions 2.16 to 2.69 have now also moved into the archives folder. Signed-off-by: Andre McCurdy <armccurdy@gmail.com> Signed-off-by: Armin Kuster <akuster808@gmail.com> Signed-off-by: Joe MacDonald <joe_macdonald@mentor.com> (cherry picked from commit d338d219dfbcbbdd133c7d4364bc8a1b19835e0b) Signed-off-by: Armin Kuster <akuster808@gmail.com>
2018-02-01dovecot: Fix parallel buildKhem Raj
Signed-off-by: Khem Raj <raj.khem@gmail.com> Signed-off-by: Armin Kuster <akuster808@gmail.com> Signed-off-by: Joe MacDonald <joe_macdonald@mentor.com> (cherry picked from commit ff720f34e47638dd86f9671ab8073f27094d819f) Signed-off-by: Armin Kuster <akuster808@gmail.com>
2018-02-01open-isns: Fix build with muslKhem Raj
Signed-off-by: Khem Raj <raj.khem@gmail.com> Signed-off-by: Armin Kuster <akuster808@gmail.com> Signed-off-by: Joe MacDonald <joe_macdonald@mentor.com> (cherry picked from commit 43d2d966b957886bc54d7f15e6632211c41114c3) Signed-off-by: Armin Kuster <akuster808@gmail.com>
2018-02-01leveldb: fix checking for SSE flagYi Zhao
The build_detect_platform-Check-for-__SSE4_2__.patch tries to use fgrep with pipe to get the SSE flag. But actually it would fail with error: fgrep: /tmp/leveldb_build_detect_platform-cxx.25886: No such file or directory That means it can not get the correct SSE flag. We should make sure the fgrep command runs after g++ command has finished and redirect the stdout and stderr to /dev/null to avoid make error: Makefile:18: *** missing separator. Stop. Signed-off-by: Yi Zhao <yi.zhao@windriver.com> Signed-off-by: Armin Kuster <akuster808@gmail.com> (cherry picked from commit fa211625598c9cc2ef965bf95548d21930622aaa) Signed-off-by: Armin Kuster <akuster808@gmail.com>
2018-02-01hwloc: fix multilib problemQi.Chen@windriver.com
Use libhwloc instead of lib${PN} to fix problem in case of multilib. Otherwise, when installing lib32-hwloc into image, we would have the following error at do_rootfs. - nothing provides lib32-liblib32-hwloc = 1.11.5-r0 needed by lib32-hwloc-1.11.5-r0.corei7_32 Also, fix FILES variable for libhwloc to not contain .so link file. This would fix the QA issue, and the INSANE_SKIP line is no longer needed. Signed-off-by: Chen Qi <Qi.Chen@windriver.com> Signed-off-by: Armin Kuster <akuster808@gmail.com> (cherry picked from commit 303fd6d589250c4a2ef23342d639348464e1a593) Signed-off-by: Armin Kuster <akuster808@gmail.com>
2018-02-01Add FLTK to licenses to avoid warning when building fltk / fltk-nativeAndreas Müller
FLT is a LGPLv2 with exceptions Signed-off-by: Andreas Müller <schnitzeltony@gmail.com> Signed-off-by: Armin Kuster <akuster808@gmail.com> (cherry picked from commit 06ede871982d7d3954e24161ce9c7bf959c68f74) Signed-off-by: Armin Kuster <akuster808@gmail.com>
2018-02-01fltk: remove fltk-native from DEPENDSAndreas Müller
This depemdency is a pre recipe specific sysroot remnant. Signed-off-by: Andreas Müller <schnitzeltony@gmail.com> Signed-off-by: Armin Kuster <akuster808@gmail.com> (cherry picked from commit 5a7a0abb179d0418475ca0f491cd1250ac728e44) Signed-off-by: Armin Kuster <akuster808@gmail.com>
2018-02-01fltk-native: remove fltk-config from imageAndreas Müller
Make sure fltk-config will not be used accidentaly. Signed-off-by: Andreas Müller <schnitzeltony@gmail.com> Signed-off-by: Armin Kuster <akuster808@gmail.com> (cherry picked from commit 66601de45ff88a2a267d50f27553956611c8a174) Signed-off-by: Armin Kuster <akuster808@gmail.com>
2018-02-01Adding LUA to SDKRomain Forlot
A project could need to have LUA in SDK, an example is to compile LUA scripts which checks its syntax before embedded them into a project compiled by Yocto. Change-Id: I3c36acd58d45121c3344b5322244bdc0b12061b9 Signed-off-by: Romain Forlot <romain.forlot@iot.bzh> Signed-off-by: Armin Kuster <akuster808@gmail.com> (cherry picked from commit 13c84c645b6126f0cb3d768e8934992f594a82ab) Signed-off-by: Armin Kuster <akuster808@gmail.com>
2018-02-01phpmyadmin: update to version 4.7.6Derek Straka
Signed-off-by: Derek Straka <derek@asterius.io> Signed-off-by: Armin Kuster <akuster808@gmail.com> (cherry picked from commit c186045e8b753efb343b16518c907d5c97c90335) Signed-off-by: Armin Kuster <akuster808@gmail.com>
2018-02-01openldap: fix QA WarningQi Hou
While building openldap, there was a warning, like below: WARNING: QA Issue: openldap: Files/directories were installed but not shipped in any package: /usr/libexec Please set FILES such that these items are packaged. Alternatively if they are unneeded, avoid installing them or delete them within do_install. openldap: 1 installed and not shipped files. [installed-vs-shipped] This is because that after openldap all contents of /usr/libexec are split into subsets or moved into other directory and no one makes use of it. So, to fix this QA warning, delete /usr/libexec. Signed-off-by: Qi Hou <qi.hou@windriver.com> Signed-off-by: Armin Kuster <akuster808@gmail.com> (cherry picked from commit aaf496df4cef4703a6d4b380b3f5ddf738753406) Signed-off-by: Armin Kuster <akuster808@gmail.com>
2018-02-01passwdqc: add pam-passwdqc to RDEPENDSMingli Yu
Some basic function such as password change invoked by programs such as passwd depends on pam_passwdqc.so which is provided by subpackage pam-passwdqc. Add pam-passwdqc to RDEPENDS for passwdqc. Signed-off-by: Mingli Yu <Mingli.Yu@windriver.com> Signed-off-by: Armin Kuster <akuster808@gmail.com> (cherry picked from commit 1d943254ce7fb9a88e79ef175c8ec0d3d26dbbad) Signed-off-by: Armin Kuster <akuster808@gmail.com>
2018-02-01Move RDEPENDS on libasound-module to bluez4 since it has been removed from ↵Tobias Olausson
bluez5 See also: https://patchwork.openembedded.org/patch/139422/ Signed-off-by: Tobias Olausson <tobias.olausson@pelagicore.com> Signed-off-by: Armin Kuster <akuster808@gmail.com> (cherry picked from commit cf993a2c9e10dea286979850c4c5ecd751735ce8) Signed-off-by: Armin Kuster <akuster808@gmail.com>
2018-02-01dfu-utils-native: fix do_deploy sstate handlingStefan Müller-Klieser
We need to install to the sstate input dir and not the output dir, so sstate handling will work correctly. Signed-off-by: Stefan Müller-Klieser <s.mueller-klieser@phytec.de> Signed-off-by: Armin Kuster <akuster808@gmail.com> (cherry picked from commit 1ef92d2423d6d6546e4f0585478540212b26f3a0) Signed-off-by: Armin Kuster <akuster808@gmail.com>
2018-02-01postgresql: Update to 9.4.15George McCollister
Update to 9.4.15 to pickup "a variety of fixes" from 9.4.14. Included are fixes for CVE-2017-15098 and CVE-2017-12172. Upstream release notes: https://www.postgresql.org/docs/9.4/static/release-9-4-15.html Backporting all supported stable branches to this version should be considered. Signed-off-by: George McCollister <george.mccollister@gmail.com> Signed-off-by: Armin Kuster <akuster808@gmail.com> (cherry picked from commit 9fb1739a7accfd2e7126ed9dcea756663bf3df07) Signed-off-by: Armin Kuster <akuster808@gmail.com>
2018-02-01postgresql: Update to 9.4.14Huang Qiyu
1) Upgrade pcsc-lite from 9.4.13 to 9.4.14. Signed-off-by: Huang Qiyu <huangqy.fnst@cn.fujitsu.com> Signed-off-by: Martin Jansa <Martin.Jansa@gmail.com> (cherry picked from commit f6c74fba0d0f8883b8abea581780741a2a757c49) Signed-off-by: Armin Kuster <akuster808@gmail.com>
2018-02-01phpmyadmin: update to version 4.7.5Derek Straka
includes: 4.7.5 (2017-10-23) - issue #13615 Avoid problems with browsing unknown query types - issue #13612 Integrate tooltip into datetime pickers - issue #13628 Fixed javascript error in server monitor - issue #13444 Fixed server monitor on non Linux and Windows systems - issue #13633 Reload javscript messages when changing language - issue #13604 Fixed crash on invalid ordering data - issue #13639 Fixed error when browsing non SELECT results - issue #13533 Fixed saving column to display - issue #13647 Fixed export of tables with VIRTUAL columns - issue #13669 Fixed selecting multiple rows accidentally selects the next row too - issue #13513 Fixed edit index Column alignment issue - issue #13515 Fixed rendering of add index dialog - issue #13710 Fixed possible error in server advisor - issue #13477 Fixed setting input transformations - issue #13552 Fixed IPv4/IPv6 To Binary input transformation - issue #13686 Clicking on column name to trigger sort with an active search leads to logout - issue #13725 Fixed copying tables with specific PARTITION definition - issue #13761 Fixed listing of bookmarks for a database 4.7.4 (2017-08-23) - issue #13415 Remove shadow from the logo - issue #13507 Fixed per server theme feature - issue #13523 Missing newline in ALTER exports - issue #13414 Fixed several compatibility issues with PHP 7.2 - issue #13550 Fixed copy results to clipboard - issue #13562 Add limitation for user group length - issue #13561 Fixed edit variable link in advisor - issue #13579 Optimize table link should not be visible in print page - issue #13553 Improved error handling on corrupted tables - issue #13512 Fixed rendering of add index dialog - issue #13606 Fixed refreshing server variables Signed-off-by: Derek Straka <derek@asterius.io> Signed-off-by: Armin Kuster <akuster808@gmail.com> (cherry picked from commit 2de93541d924963e20d4cc4b1592cd89183d4be3) Signed-off-by: Armin Kuster <akuster808@gmail.com>
2018-02-01Allow native builds of python-asyn1cryptoJonathan Haigh
Add "native" to BBCLASSEXTEND to allow native builds. Signed-off-by: Jonathan Haigh <jonathan.haigh@arm.com> Signed-off-by: Armin Kuster <akuster808@gmail.com> (cherry picked from commit 89934c65922fca58a5e80e0e0ad9435cd457270c) Signed-off-by: Armin Kuster <akuster808@gmail.com>
2018-02-01php: Security Advisory - php - CVE-2017-16642Li Zhou
Porting the patch from <https://github.com/php/php-src/commit/ 5c0455bf2c8cd3c25401407f158e820aa3b239e1> to solve CVE-2017-16642. Signed-off-by: Li Zhou <li.zhou@windriver.com> Signed-off-by: Armin Kuster <akuster808@gmail.com> (cherry picked from commit 90f4b75fe7313ada0974df47912d1e3c57256ae3) Signed-off-by: Armin Kuster <akuster808@gmail.com>
2018-02-01xfce4-screenshooter: create src dir before buildCatalin Enache
In some case the output directory for xfce4-screenshooter.appdata.xml file doesn't exist. Create directory before build. Signed-off-by: Catalin Enache <catalin.enache@windriver.com> Signed-off-by: Jackie Huang <jackie.huang@windriver.com> Signed-off-by: Armin Kuster <akuster808@gmail.com> (cherry picked from commit 754754b53bbf4c72d7855e9209f1ccecce5cd8dd) Signed-off-by: Armin Kuster <akuster808@gmail.com>
2018-02-01hiredis: fix paths in pkgconfig conf fileAndrea Galbusera
Set PREFIX via EXTRA_OEMAKE instead of exporting it in do_install_prepend(): than ensuring the correct prefix gets into hiredis.pc, which is generated by upstream makefile at do_compile() time. Signed-off-by: Andrea Galbusera <gizero@gmail.com> Signed-off-by: Armin Kuster <akuster808@gmail.com> (cherry picked from commit 73ac0e419a6c78dfc68a34a0675c525bc6f01271) Signed-off-by: Armin Kuster <akuster808@gmail.com>