Age | Commit message (Collapse) | Author |
|
CVE-2017-1449{1-6}
Signed-off-by: Zhang Xiao <xiao.zhang@windriver.com>
Signed-off-by: Joe Slater <joe.slater@windriver.com>
Signed-off-by: Armin Kuster <akuster808@gmail.com>
|
|
Includes:
wnpa-sec-2018-01, Multiple dissectors could crash. (Bug 14253) CVE-2018-5336
wnpa-sec-2018-02, The MRDISC dissector could crash. (Bug 14299, Bug 13707) CVE-2017-17997
wnpa-sec-2018-03, The IxVeriWave file parser could crash. (Bug 14297) CVE-2018-5334
wnpa-sec-2018-04, The WCP dissector could crash. (Bug 14251) CVE-2018-5335
Full release notes: https://www.wireshark.org/docs/relnotes/wireshark-2.2.12.html
Signed-off-by: Armin Kuster <akuster808@gmail.com>
|
|
changed --with-ssh to --with-libssh=DIR
includes:
wnpa-sec-2017-47 : CVE-2017-17084
The IWARP_MPA dissector could crash. (Bug 14236)
wnpa-sec-2017-48 : CVE-2017-17083
The NetBIOS dissector could crash. (Bug 14249)
wnpa-sec-2017-49 : CVE-2017-17085
The CIP Safety dissector could crash. (Bug 14250)
release notes:
https://www.wireshark.org/docs/relnotes/wireshark-2.2.11.html
Signed-off-by: Armin Kuster <akuster@mvista.com>
Signed-off-by: Armin Kuster <akuster808@gmail.com>
Signed-off-by: Joe MacDonald <joe_macdonald@mentor.com>
Signed-off-by: Armin Kuster <akuster808@gmail.com>
|
|
The following vulnerabilities have been fixed:
* [1]wnpa-sec-2017-42
BT ATT dissector crash ([2]Bug 14049) [3]CVE-2017-15192
* [4]wnpa-sec-2017-43
MBIM dissector crash ([5]Bug 14056) [6]CVE-2017-15193
* [7]wnpa-sec-2017-44
DMP dissector crash ([8]Bug 14068) [9]CVE-2017-15191
Signed-off-by: Armin Kuster <akuster808@gmail.com>
Signed-off-by: Martin Jansa <Martin.Jansa@gmail.com>
Signed-off-by: Joe MacDonald <joe_macdonald@mentor.com>
Signed-off-by: Armin Kuster <akuster808@gmail.com>
|
|
Change LIC_FILES_CHKSUM from README.linux to COPYING as COPYING contains the license info
2.2.9 security fixes:
wnpa-sec-2017-38
MSDP dissector infinite loop (Bug 13933) CVE-2017-13767
wnpa-sec-2017-39
Profinet I/O buffer overrun (Bug 13847) CVE-2017-13766
wnpa-sec-2017-41
IrCOMM dissector buffer overrun (Bug 13929) CVE-2017-13765
Signed-off-by: Armin Kuster <akuster808@gmail.com>
Signed-off-by: Martin Jansa <Martin.Jansa@gmail.com>
Signed-off-by: Joe MacDonald <joe_macdonald@mentor.com>
Signed-off-by: Armin Kuster <akuster808@gmail.com>
|
|
Signed-off-by: Kai Kang <kai.kang@windriver.com>
Signed-off-by: Martin Jansa <Martin.Jansa@gmail.com>
Signed-off-by: Joe MacDonald <joe_macdonald@mentor.com>
Signed-off-by: Armin Kuster <akuster808@gmail.com>
|
|
Upgrade wireshark from 2.2.6 to 2.2.7
Signed-off-by: Fan Xin <fan.xin@jp.fujitsu.com>
Signed-off-by: Martin Jansa <Martin.Jansa@gmail.com>
Signed-off-by: Joe MacDonald <joe_macdonald@mentor.com>
Signed-off-by: Armin Kuster <akuster808@gmail.com>
|
|
The following vulnerabilities have been fixed:
* [1]wnpa-sec-2017-12
IMAP dissector crash ([2]Bug 13466) [3]CVE-2017-7703
* [4]wnpa-sec-2017-13
WBMXL dissector infinite loop ([5]Bug 13477) [6]CVE-2017-7702
* [7]wnpa-sec-2017-14
NetScaler file parser infinite loop ([8]Bug 13478) [9]CVE-2017-7700
* [10]wnpa-sec-2017-15
RPCoRDMA dissector infinite loop ([11]Bug 13558) [12]CVE-2017-7705
* [13]wnpa-sec-2017-16
BGP dissector infinite loop ([14]Bug 13557) [15]CVE-2017-7701
* [16]wnpa-sec-2017-17
DOF dissector infinite loop ([17]Bug 13453) [18]CVE-2017-7704
* [19]wnpa-sec-2017-18
PacketBB dissector crash ([20]Bug 13559)
* [21]wnpa-sec-2017-19
SLSK dissector long loop ([22]Bug 13576)
* [23]wnpa-sec-2017-20
SIGCOMP dissector infinite loop ([24]Bug 13578)
* [25]wnpa-sec-2017-21
WSP dissector infinite loop ([26]Bug 13581)
Signed-off-by: Armin Kuster <akuster@mvista.com>
Signed-off-by: Martin Jansa <Martin.Jansa@gmail.com>
Signed-off-by: Joe MacDonald <joe_macdonald@mentor.com>
Signed-off-by: Armin Kuster <akuster808@gmail.com>
|
|
Signed-off-by: Oleksandr Kravchuk <oleksandr.kravchuk@pelagicore.com>
Signed-off-by: Martin Jansa <Martin.Jansa@gmail.com>
Signed-off-by: Joe MacDonald <joe_macdonald@mentor.com>
Signed-off-by: Armin Kuster <akuster808@gmail.com>
|
|
Note, hostapd and wpa_supplicant use the same sources. This commit uses the same
patch than OpenEmbedded-core commit 1d92cb1a20135cfffff9f94a6633ec0840518738 in
morty branch.
Signed-off-by: Isaac Hermida <isaac.hermida@digi.com>
Signed-off-by: Armin Kuster <akuster808@gmail.com>
|
|
musl has ucontext.h header but does not implement the APIs
Signed-off-by: Khem Raj <raj.khem@gmail.com>
(cherry picked from commit b545c0643d2b2a1f1a816e789ff67116c613de5b)
Signed-off-by: Andre McCurdy <armccurdy@gmail.com>
Signed-off-by: Armin Kuster <akuster808@gmail.com>
|
|
When cross compiling, the word size of the compiler set via HOST_CC
must match the word size of the target. That's achieved by appending
"-m32" to BUILD_CC_ARCH if the target word size is known to be 32bits.
Unfortunately the current list of over-rides (powerpc, x86 and arm)
does not cover all cases. Add mips and mipsel to the list too (which
is still not enough to cover all targets or corner cases such as x32,
but better than before).
Signed-off-by: Andre McCurdy <armccurdy@gmail.com>
Signed-off-by: Martin Jansa <Martin.Jansa@gmail.com>
(cherry picked from commit 18771a9c9946c04dcd3ec89559018c8bbb15201c)
Signed-off-by: Armin Kuster <akuster808@gmail.com>
|
|
Move the do_sysvinit_install contents to do_install_append.
Signed-off-by: Dengke Du <dengke.du@windriver.com>
Signed-off-by: Martin Jansa <Martin.Jansa@gmail.com>
Signed-off-by: Joe MacDonald <joe_macdonald@mentor.com>
Signed-off-by: Armin Kuster <akuster808@gmail.com>
|
|
Changed SRC_URI source to official web-site, which keeps tarballs with
old releases.
Cherry-picked from master, but without the upgrade to 4.7.5.
commit a2e075ba656a89da58ca4f849c2f08ec6d50a96f
Author: Oleksandr Kravchuk <oleksandr.kravchuk@pelagicore.com>
Date: Mon Jan 9 15:34:07 2017 +0100
lftp: update to 4.7.5 and change SRC_URI source
Updated lftp to version 4.7.5 and changed SRC_URI source to official
web-site, which keeps tarballs with old releases.
Signed-off-by: Oleksandr Kravchuk <oleksandr.kravchuk@pelagicore.com>
Signed-off-by: Martin Jansa <Martin.Jansa@gmail.com>
Signed-off-by: Joe MacDonald <joe_macdonald@mentor.com>
Signed-off-by: Martin Jansa <Martin.Jansa@gmail.com>
Signed-off-by: Armin Kuster <akuster808@gmail.com>
|
|
Before the path to the dependencies was hard coded into the generated
PocoConfig.cmake file. This causes issues with sstate.
This change overrides the libraries with just the library names and thus
let's the linker take care of finding them.
Signed-off-by: Pascal Bach <pascal.bach@siemens.com>
Signed-off-by: Martin Jansa <Martin.Jansa@gmail.com>
(cherry picked from commit 49ea5f4fa4a350f4e0c0e0ece855174274e5fcc1)
Signed-off-by: Armin Kuster <akuster808@gmail.com>
|
|
* --ignore-fail-on-non-empty works when the directory isn't empty, but still reports
failure when the directory doesn't exist at all, like in:
http://errors.yoctoproject.org/Errors/Details/138248/
Signed-off-by: Martin Jansa <Martin.Jansa@gmail.com>
(cherry picked from commit b8368598aed3e07cfb638b537e409bd0b3692df9)
Signed-off-by: Armin Kuster <akuster808@gmail.com>
|
|
The picocom complains about missing GNU_HASH from the binary during
QA stage, this is because the picocom Makefile overrides CPPFLAGS,
CFLAGS and LDFLAGS. Fix this by passing those as an argument to make.
Moreover, since picocom 1.7 now accepts VERSION variable and the
UUCP_LOCK_DIR is set to /var/lock by default, drop the CPPFLAGS
override altogether and replace it simply with passing VERSION
argument to make to precisely retain the original intention.
Signed-off-by: Marek Vasut <marex@denx.de>
Signed-off-by: Martin Jansa <Martin.Jansa@gmail.com>
(cherry picked from commit d77049facb76c9372101ccaa38e6f0523cf6c05d)
Signed-off-by: Armin Kuster <akuster808@gmail.com>
|
|
Signed-off-by: Khem Raj <raj.khem@gmail.com>
Signed-off-by: Martin Jansa <Martin.Jansa@gmail.com>
(cherry picked from commit 1250668972522b6f1552de23b7cfc4a93701c24b)
Signed-off-by: Armin Kuster <akuster808@gmail.com>
|
|
as well
Signed-off-by: Martin Jansa <Martin.Jansa@gmail.com>
(cherry picked from commit 1214d169f52301bf89b8b15339feb92d84306e2e)
Signed-off-by: Armin Kuster <akuster808@gmail.com>
|
|
Signed-off-by: Khem Raj <raj.khem@gmail.com>
Signed-off-by: Martin Jansa <Martin.Jansa@gmail.com>
(cherry picked from commit cafa3a45425108ecbae0ef9324a6228c145fc9f8)
Signed-off-by: Armin Kuster <akuster808@gmail.com>
|
|
With musl charset.alias is generated due to a gnu-config bug
Fixes
QA Issue: zile: Files/directories were installed but not shipped in any package:
/usr/lib
/usr/lib/charset.alias
Signed-off-by: Khem Raj <raj.khem@gmail.com>
Signed-off-by: Martin Jansa <Martin.Jansa@gmail.com>
(cherry picked from commit 64640f4e30d7756d80157d49342ae174db2fa065)
Signed-off-by: Armin Kuster <akuster808@gmail.com>
|
|
Signed-off-by: Khem Raj <raj.khem@gmail.com>
Signed-off-by: Martin Jansa <Martin.Jansa@gmail.com>
(cherry picked from commit 2e3645ea471c95f75aec2fd044950926e008959c)
Signed-off-by: Armin Kuster <akuster808@gmail.com>
|
|
Signed-off-by: Khem Raj <raj.khem@gmail.com>
Signed-off-by: Martin Jansa <Martin.Jansa@gmail.com>
(cherry picked from commit 738d386c8c361204fb43e4a7171c00163cdaed57)
Signed-off-by: Armin Kuster <akuster808@gmail.com>
|
|
Signed-off-by: Khem Raj <raj.khem@gmail.com>
Signed-off-by: Martin Jansa <Martin.Jansa@gmail.com>
(cherry picked from commit ff5d50b43f9729fce33360fa0e9e7ff6a51ac7cf)
Signed-off-by: Armin Kuster <akuster808@gmail.com>
|
|
Signed-off-by: Khem Raj <raj.khem@gmail.com>
Signed-off-by: Martin Jansa <Martin.Jansa@gmail.com>
(cherry picked from commit e961adf6cb5db90d4220412fa5a91eb9146909a0)
Signed-off-by: Armin Kuster <akuster808@gmail.com>
|
|
Signed-off-by: Khem Raj <raj.khem@gmail.com>
Signed-off-by: Martin Jansa <Martin.Jansa@gmail.com>
(cherry picked from commit df3d2beaf9e5d4cfc31b2b1e209dc1d8e3956fd3)
Signed-off-by: Armin Kuster <akuster808@gmail.com>
|
|
Fixes QA errors about missing GNU_HASH
Signed-off-by: Khem Raj <raj.khem@gmail.com>
(cherry picked from commit e562c3adeb230bd5c99ff3d9d47eb84af99f509b)
Signed-off-by: Armin Kuster <akuster808@gmail.com>
|
|
pass correct LDFLAGS to build
Signed-off-by: Khem Raj <raj.khem@gmail.com>
Signed-off-by: Martin Jansa <Martin.Jansa@gmail.com>
(cherry picked from commit 040036aba62ffc8707e599d19c32c66b27dd85b4)
Signed-off-by: Armin Kuster <akuster808@gmail.com>
|
|
* fixes:
No GNU_HASH in the elf binary:
'/tmp/work/armv5te-oe-linux-gnueabi/pngcheck/2.3.0-r0/packages-split/pngcheck/usr/bin/pngcheck'
[ldflags]
Signed-off-by: Martin Jansa <Martin.Jansa@gmail.com>
(cherry picked from commit 9097d4a3fbc57d9c77d18e6a96620241c76c5b77)
Signed-off-by: Armin Kuster <akuster808@gmail.com>
|
|
Signed-off-by: Khem Raj <raj.khem@gmail.com>
Signed-off-by: Martin Jansa <Martin.Jansa@gmail.com>
Signed-off-by: Armin Kuster <akuster808@gmail.com>
|
|
`inherit externalsrc gitver` is a very useful combo to get development trees
in your workspace having a ${PN}_git.bb with PV=${GITVER} coexisting with a regular
${PN}_${PV}.bb
but not everyone wants to checkout all developments sources and managinging different
layers for each options is quite troublesome.
making `gitver` skip the .bb instead of panic()ing every time EXTERNALSRC is missing
allows people to have a single development layer where packages get enabled if
the right sources are present or falling back to the last release if not
Signed-off-by: Alejandro Mery <amery@hanoverdisplays.com>
Signed-off-by: Martin Jansa <Martin.Jansa@gmail.com>
Signed-off-by: Armin Kuster <akuster808@gmail.com>
|
|
v2:
* use git rev-parse instead of rev-list for consistency with get_git_pv
* fix getVar() to pass `expand` as required by morty's bitbake
Signed-off-by: Alejandro Mery <amery@hanoverdisplays.com>
Signed-off-by: Martin Jansa <Martin.Jansa@gmail.com>
Signed-off-by: Armin Kuster <akuster808@gmail.com>
|
|
Signed-off-by: Alejandro Mery <amery@hanoverdisplays.com>
Signed-off-by: Martin Jansa <Martin.Jansa@gmail.com>
Signed-off-by: Armin Kuster <akuster808@gmail.com>
|
|
https://www.python.org/dev/peps/pep-3110/
It's backward compatible with 2.6+
Signed-off-by: Alejandro Mery <amery@hanoverdisplays.com>
Signed-off-by: Martin Jansa <Martin.Jansa@gmail.com>
Signed-off-by: Armin Kuster <akuster808@gmail.com>
|
|
The newly resurrected devmem2.c file besides having a new location, also
updates its header, producing different checksums, which would conflict
with any previously cached or mirrored instances. To avoid such conflicts,
use a different filename in fetch(). Rename it back to original name at
unpack() for devmem2-fixups-2.patch to succeed w/o modifications.
WARNING: devmem2-1.0-r7 do_fetch: Fetcher failure for URL: 'http://www.free-electrons.com/pub/mirror/devmem2.c'. Checksum mismatch!
File: '/OE/master/downloads/devmem2.c' has md5 checksum be12c0132a1ae118cbf5e79d98427c1d when e23f236e94be4c429aa1ceac0f01544b was expected
File: '/OE/master/downloads/devmem2.c' has sha256 checksum ec382c90af3ef2f49695ff14a4d6521e58ac482c4e29d6c9ebca8768f699c191 when 3b15515693bae1ebd14d914e46d388edfec2175829ea1576a7a0c8606ebbe639 was expected
If this change is expected (e.g. you have upgraded to a new version without updating the checksums) then you can use these lines within the recipe:
SRC_URI[md5sum] = "be12c0132a1ae118cbf5e79d98427c1d"
SRC_URI[sha256sum] = "ec382c90af3ef2f49695ff14a4d6521e58ac482c4e29d6c9ebca8768f699c191"
Otherwise you should retry the download and/or check with upstream to determine if the file has become corrupted or otherwise unexpectedly modified.
WARNING: devmem2-1.0-r7 do_fetch: Renaming /OE/sources/devmem2.c to /OE/sources/devmem2.c_bad-checksum_be12c0132a1ae118cbf5e79d98427c1d
Signed-off-by: Denys Dmytriyenko <denys@ti.com>
Signed-off-by: Armin Kuster <akuster808@gmail.com>
|
|
Change URL due to connexion error on the original page.
As the header of the new devmem2.c source file has changed, change the
signature and the LIC_FILES_CHKSUM specificaiton.
Signed-off-by: Nicolas Ferre <nicolas.ferre@microchip.com>
Signed-off-by: Armin Kuster <akuster808@gmail.com>
|
|
always available
Signed-off-by: Derek Straka <derek@asterius.io>
Signed-off-by: Martin Jansa <Martin.Jansa@gmail.com>
Signed-off-by: Piotr Lewicki <piotr.lewicki@elfin.de>
Signed-off-by: Armin Kuster <akuster808@gmail.com>
|
|
* fedorahosted is retired
https://fedoraproject.org/wiki/Infrastructure/Fedorahosted-retirement
Signed-off-by: Martin Jansa <Martin.Jansa@gmail.com>
Signed-off-by: Armin Kuster <akuster808@gmail.com>
|
|
* https://fedoraproject.org/wiki/Infrastructure/Fedorahosted-retirement
Signed-off-by: Martin Jansa <Martin.Jansa@gmail.com>
Signed-off-by: Armin Kuster <akuster808@gmail.com>
|
|
* otherwise build fails with:
http://errors.yoctoproject.org/Errors/Details/138387/
make[2]: *** No rule to make target 'auto_check_header_qbconfig.c', needed by 'auto_check_header_qbconfig.o'. Stop.
Signed-off-by: Martin Jansa <Martin.Jansa@gmail.com>
Signed-off-by: Armin Kuster <akuster808@gmail.com>
|
|
* https://fedoraproject.org/wiki/Infrastructure/Fedorahosted-retirement
Signed-off-by: Martin Jansa <Martin.Jansa@gmail.com>
Signed-off-by: Armin Kuster <akuster808@gmail.com>
|
|
* https://fedoraproject.org/wiki/Infrastructure/Fedorahosted-retirement
Signed-off-by: Martin Jansa <Martin.Jansa@gmail.com>
Signed-off-by: Armin Kuster <akuster808@gmail.com>
|
|
www.thedigitalmachine.net has disappeared
* cherry picked from master:
commit a02ec57e144b768c8d5e383622a83f87d86425b5
Author: Khem Raj <raj.khem@gmail.com>
Date: Wed Mar 22 11:45:33 2017 -0700
alsa-equal: Update SRC_URI to something valid
Signed-off-by: Khem Raj <raj.khem@gmail.com>
Signed-off-by: Martin Jansa <Martin.Jansa@gmail.com>
Signed-off-by: Armin Kuster <akuster808@gmail.com>
|
|
Eliminate references to syscalls not available
for ARM_EABI. Also add a dependency on libseccomp
which is needed for scfilter to work.
Set PACKAGECONFIG to not enable scfilter, since
kernel CONFIG_SECCOMP is unlikely to be set. This
aligns the usage of libseccomp with that of other packages.
Signed-off-by: Joe Slater <jslater@windriver.com>
Signed-off-by: Armin Kuster <akuster808@gmail.com>
|
|
ERROR: libdnet-1.12-r0 do_fetch: Fetcher failure for URL: 'https://github.com/dugsong/libdnet/archive/libdnet-1.12.tar.gz'. Checksum mismatch!
File: '/home/akuster/oss/downloads/libdnet-1.12.tar.gz' has md5 checksum d2f1b72eac2a1070959667e9e61dcf20 when 9253ef6de1b5e28e9c9a62b882e44cc9 was expected
File: '/home/akuster/oss/downloads/libdnet-1.12.tar.gz' has sha256 checksum b6360659c93fa2e3cde9e0a1fc9c07bc4111f3448c5de856e095eb98315dd424 when 83b33039787cf99990e977cef7f18a5d5e7aaffc4505548a83d31bd3515eb026 was expected
use Gentoo url instead of github
Signed-off-by: Armin Kuster <akuster808@gmail.com>
|
|
Error was not caused by RSS but upstream package path renaming without version
bump - tse tse...
Signed-off-by: Andreas Müller <schnitzeltony@googlemail.com>
(cherry picked from commit 3a9e21d928199a5c8943857b13114f26dc6defd2)
Signed-off-by: Armin Kuster <akuster808@gmail.com>
|
|
ERROR: exfat-utils-1.2.3-r0 do_checkuri: Fetcher failure for URL: 'ftp://ftp.debian.org/debian/pool/main/e/exfat-utils/exfat-utils_1.2.3.orig.tar.gz'. URL ftp://ftp.debian.org/debian/pool/main/e/exfat-utils/exfat-utils_1.2.3.orig.tar.gz doesn't work
ERROR: exfat-utils-1.2.3-r0 do_checkuri: Function failed: do_checkuri
Signed-off-by: Armin Kuster <akuster808@gmail.com>
|
|
RROR: lmsensors-3.4.0-r0 do_checkuri: Fetcher failure for URL: 'http://dl.lm-sensors.org/lm-sensors/releases/lm_sensors-3.4.0.tar.bz2'. URL http://dl.lm-sensors.org/lm-sensors/releases/lm_sensors-3.4.0.tar.bz2 doesn't work
ERROR: lmsensors-3.4.0-r0 do_checkuri: Function failed: do_checkur
The project moved to google.
Signed-off-by: Armin Kuster <akuster808@gmail.com>
|
|
ERROR: python-sqlalchemy-0.7.9-r0 do_checkuri: Fetcher failure for URL: 'http://downloads.sourceforge.net/sqlalchemy/SQLAlchemy-0.7.9.tar.gz'. URL http://downloads.sourceforge.net/sqlalchemy/SQLAlchemy-0.7.9.tar.gz doesn't work
ERROR: python-sqlalchemy-0.7.9-r0 do_checkuri: Function failed: do_checkuri
use pypi
Signed-off-by: Armin Kuster <akuster808@gmail.com>
|
|
ERROR: libdnet-1.12-r0 do_checkuri: Fetcher failure for URL: 'http://libdnet.googlecode.com/files/libdnet-1.12.tgz'. URL http://libdnet.googlecode.com/files/libdnet-1.12.tgz doesn't work
Signed-off-by: Armin Kuster <akuster808@gmail.com>
|