[oe-commits] [openembedded-core] branch sumo-next updated (b4738c5 -> 526ceab)
git at git.openembedded.org
git at git.openembedded.org
Thu Dec 6 10:51:31 UTC 2018
This is an automated email from the git hooks/post-receive script.
rpurdie pushed a change to branch sumo-next
in repository openembedded-core.
from b4738c5 multilib_header: recognize BPF as a target
add 1bd4851 bzip2: use Yocto Project mirror for SRC_URI
add 0b0409a libvorbis: CVE-2017-14160 CVE-2018-10393
add 10569df libvorbis: CVE-2018-10392
add a5db618 classes: sanity-check LIC_FILES_CHKSUM
add 6c3438a alsa-lib: Cleanup packaging
add ab3b009 wic/qemux86: don't pass ip parameter to kernel in wks
add a1a5b0f openssl: fix upstream version check for 1.0 version
add e90da34 openssl: disable ccache usage
add fcea508 openssl-nativesdk: Fix "can't open config file" warning
add 000da57 openssl_1.1: avoid using += with an over-ride
add 5da6681 openssl_1.1: minor recipe formatting tweaks etc
add 5b4ffcb openssl_1.0: merge openssl10.inc into the openssl_1.0.2o.bb recipe
add 67cde33 openssl_1.0: minor recipe formatting tweaks etc
add cf9f965 openssl_1.0: drop curly brackets from shell local variables
add 201f4a8 openssl_1.0: fix cryptodev-linux PACKAGECONFIG support
add 3936faf openssl_1.0: drop leading "-" from no-ssl3 config option
add 1aaca6b openssl_1.0: avoid running make twice for target do_compile()
add 7a5fd1c openssl: remove uclibc remnants
add ec24fcc openssl: support musl-x32 build
add 3e0290b openssl: minor indent fixes
add 4a136f8 openssl_1.0: drop obsolete ca.patch
add 8aa33c1 openssl_1.0: drop obsolete exporting of AS, EX_LIBS and DIRS
add ebe53ed openssl_1.0: drop unmaintained darwin support
add 061c17f openssl_1.0: add PACKAGECONFIG option to control manpages
add 0bda7fd openssl_1.0: squash whitespace in CC_INFO
add 33a9519 openssl: fix missing dependency on hostperl-runtime-native
add 74524ec openssl_1.0: drop unnecessary dependency on makedepend-native
add 1b0dcca openssl_1.0: drop unnecessary call to perlpath.pl from do_configure()
add 4524d1f openssl-1.1: fix c_rehash perl errors
add 8423355 openssl: update 1.0.2o -> 1.0.2p
add 784059d openssl: update 1.1.0h -> 1.1.0i
add 6123523 unzip: fix symlink problem
add 97a52df unzip: fix CVE-2018-1000035
add 058bdd0 nasm: fix CVE-2018-8883 & CVE-2018-8882 & CVE-2018-10316
add bca64ae flac: CVE-2017-6888
add 3e00059 libarchive: CVE-2017-14503
add 39b1dc8 libsndfile1: CVE-2017-14245 CVE-2017-14246
add 00da7ba libsndfile1: CVE-2017-14634
add a523bc6 coreutils: CVE-2017-18018
add e05c9b1 libgcrypt: CVE-2018-0495
add 229bb7c git: CVE-2018-11235
add f1c0da2 gnupg: CVE-2018-12020
add a875522 shadow: CVE-2018-7169
add 82d873a procps: CVE-2018-1124
add 4b6c84e python: CVE-2018-1000030
add 9f1d026 qemu: CVE-2018-7550
add a11c8ee qemu: CVE-2018-12617
add 4aaf09b perl: CVE-2018-6798
add 109ffd1 perl: CVE-2018-6797
add 0542779 perl: CVE-2018-6913
add ca005cd perl: CVE-2018-12015
add 100d7f1 patch: fix CVE-2018-6952
add 82b0189 swig: Remove superfluous python dependency
add a925096 util-linux: upgrade 2.32 -> 2.32.1
add 54b2675 blktrace: Security fix CVE-2018-10689
add df1cd90 busybox: handle syslog
add 996247b busybox: move init related configs to init.cfg
add 38f1648 busybox/mdev-mount.sh: Fix partition detect and cleanup mountpoint on fail
add 221e5fc libexif: patch for CVE-2017-7544
add cf3b59c squashfs-tools: patch for CVE-2015-4645(4646)
add 3abf793 libcroco: patch for CVE-2017-7960
add 86be219 libid3tag: patch for CVE-2004-2779
add b5fb3a7 xserver-xorg: config: fix NULL value detection for ID_INPUT being unset
add 4b4c663 taglib: Security fix CVE-2018-11439
add 52d3c4c libice: patch for CVE-2017-2626
add ffe1795 serf: Fix Sconstruct build with python 3.7
add 4e67fa9 os-release: fix to install in the expected location
add 96f69ae wpa-supplicant: fix CVE-2018-14526
add ab1bfa1 libarchive: CVE-2017-14501
add e3254b4 libcgroup: CVE-2018-14348
add a1c0135 binutils: Change the ARM assembler's ADR and ADRl pseudo-ops so that they will only set the bottom bit of imported thumb function symbols if the -mthumb-interwork option is active.
add 7680519 linux-yocto/4.12: update to v4.12.28
add e98edd9 linux-yocto/4.14: update to v4.14.62
add 42660b3 linux-yocto/4.14: update to v4.14.67
add 0a1ff2a lrzsz: fix CVE-2018-10195
add a8cb9b6 apr-util: fix ptest fail problem
add 1c6ae92 cve-check.bbclass: detect CVE IDs listed on multiple lines
add 2f84939 cve-check.bbclass: do not download the CVE DB in package-specific tasks
add c35a035 busybox: CVE-2017-15874
add 4cc1862 libpng: CVE-2018-13785
add 0469c07 sqlite3: CVE-2018-8740
add 361c40d glibc: fix CVE-2018-11237
add 502de6f security_flags: disable static PIE in glibc
add 80b6a08f libsdl2: Fix left rotated display for RaspPi/VC4/GLES2
add a702a5e mkefidisk: fix installation of kernel image
add 5f985f0 cmake: put cmake.m4 and toolchain file in PN
add a53026f qemux86-directdisk: remove mem= parameter
add af92083 gnupg: CVE-2018-9234
add 9b321cf libcroco: CVE-2017-7961
add 196659c initramfs-framework/udev: call settle before kill
add 759290e checklayer: avoid recursive loop in add_layer_dependencies
add 06d7f90 libxml2: CVE-2018-14404
add 1461bcc python3: CVE-2018-1061
add d145f60 git: CVE-2018-11233
add a6b6af8 recipes: Update git.gnome.org addresses after upstream changes
add 19138a2 nasm: fix CVE-2018-10016
add da7342a libsndfile1: CVE-2018-13139
add 221a023 x264: Disable asm on musl/x86
add 6681ba9 libtiff: fix CVE-2017-17095
add 05c2a59 runqemu: add SIGTERM handler to make sure things are cleaned up
add bc030c9 runqemu: exit gracefully with an error message if qemu system is not evaluated
add a2ee5c8 runqemu: fix handling of SIGTERM and the problem of line wrapping
add 6e03d1d rootfs: always update the opkg index
add 30b055d externalsrc.bbclass: Set BB_DONT_CACHE for non-target recipes
add 7157e78 perl: skip tests that are not useful
add 9f82bb4 valgrind: fix ptest compilation for PowerPC64
add 74308b2 valgrind: fix compile ptest failure on mips32
add ec5cc38 kernel: specify dependencies for compilation for config tasks
add f01153e yocto-uninative: Upgrade to verson 2.3 which includes glibc 2.28
add 667d5e7 cve-check: Allow multiple entries in CVE_PRODUCT
add 5df0d75 curl: extend CVE_PRODUCT
add a8f6437 tzcode-native: updatet to 2018e
add 2422775 tzdata: update to 2018e
add 9702041 tzcode: update to 2018f
add 7ac4ecb tzdata: update to 2018f
add 0362788 os-release: move to nonarch_libdir
add 26d5ceb base-files: change permissions on /sys and /proc
add ad44a13 kernel-yocto/cfg: configuration warning fixes
add 3b7e38b linux-yocto/4.14/4.18: address kernel configuration warnings
add 0c13f6b linux-yocto-rt: Add paravirt_kvm support for qemux86-64
add 73a4746 linux-yocto: configuration warning fixes
add 924ce56 linux-yocto: tweak RTC configuration
add d986ced linux-yocto/4.14: fix kernel configuration audit warnings
add 02f3fa2 linux-yocto/4.14: update to v4.14.71
add 76a51f2 linux-yocto: enable pci and CRYPTO_DEV_VIRTIO
add 1abca8b linux-yocto/4.14: fix beaglebone configuration warnings
add ff495ab linux-yocto-rt: fixup 4.14 merge issues
add 17434b9 linux-yocto/4.14: update to v4.14.76
add ab2dd15 python: update to version 2.7.15
add c464767 python: clean up ptest
add ceae3eb python: don't use runtime checks to identify float endianism
add 64d0cfb python: backport patch to fix CVE-2018-1000802
add c566c8d python: backport patch to fix CVE-2018-14647
add 4cbfd52 m4: Workaround gnulib's fseeko.c implementation
add 4de7f29 nasm: fix CVE-2018-1000667
add c7ec464 apt: update SRC_URI
add 4c51e82 curl: CVE-2018-14618
add 015f65b curl: Include the complete license information
add 40e0b62 oeqa/selftest/runtime_test: Ensure we build/use gnupg-native
add 17223b0 oeqa/selftest/wic: Use a subdir of builddir, not /var/
add cdc226b oeqa/selftest/wic: Ensure initramfs exists for test_iso_image
add d9ad083 selftest/wic: Improve error message for test_fixed_size
add ce18153 wic: isoimage-isohybrid: fix UEFI spec breakage
add 5667a43 unzip: fix for CVE-2018-18384
add b3e92c0 curl: fix for CVE-2018-16839/CVE-2018-16840/CVE-2018-16842
add 92609b0 common-licenses: Correct the FreeType license text
add f7883a0 apr: Trim license info extracted from apr_lib.h
add 6aebc3a apr-util: Trim license info extracted from apu_version.h
add e1c9d4d pixman: Trim license info extracted from pixman-matrix.c
add 7029175 crosssdk: Remove usage of host flags for cross-compilation
add 8105b63 meta: Use double colon for chown OWNER:GROUP
add f0eebea archiver: Drop unwanted directories
add 0808fe2 base.bbclass: avoid 'find -ignore_readdir_race -delete'
add d637eea oeqa/selftest/recipetool: Fix problems from changing upstream source
add 1a42e64 unzip: actually apply CVE-2018-18384
add b2ccfee curl: actually apply latest CVE patches
add 1c35c68 dhcp: allow for excluding the external bind
add ddaf41f gnupg: patch gnupg-native to allow path relocation
add caa0b85 socat: fix LICENSE
add 83214b8 shadow: improve reproducibility by hard-coding shell path
add 0f70da9 busybox: make busybox.links.{suid, nosuid} reproducible
add 33a5778 sanity: Add check for WSL
add 6637f40 build-appliance-image: Update to sumo head revision
new 1c61f30 scripts/runqemu: Replace subprocess.run() for compatibilty
new d3c052e scripts/runqemu: Tidy up lock handling code
new d3b3c55 scripts/runqemu: Improve lockfile handling for python with close_fd=True
new 65403bb oeqa/selftest/signing: Skip tests if gpg isn't found
new c5d68a2 oeqa/selftest/signing: Allow tests not to need gpg on the host
new 51989db oeqa/selftest/signing: Use do_populate_lic target instead of do_package
new e7c0d29 oeqa/selftest/case: Use bb.utils.remove() instead of shutil.remove()
new 60b58e9 oeqa/selftest/buildoptions: Improve ccache test failure output
new 0ea441a oeqa/utils/commands: Add extra qemu failure logging
new b8a9eec oeqa/utils/qemurunner: Fix python ResourceWarning for unclosed file
new 600e71e oeqa/utils/commands: Avoid log message duplication
new baa8313 oeqa/qemurunner: Remove resource python warnings
new b729a46 oeqa/selftest/buildoptions: Improve ccache test
new d5ce381 oeqa/selftest/buildoptions: Ensure diskmon tests run consistently
new edd2ecb oeqa/oelib/path: don't leak temporary directories
new 6f2bb2c oeqa/selftest/runqemu: Improve testcase failure handling
new 48979ff oeqa/utils/qemurunner: Avoid tracebacks on closed files
new d392523 oeqa: don't litter /tmp with temporary directories
new d936faa oeqa/selftest/esdk: run selftest inside workdir not /tmp
new f9ab10b oeqa/loader: Fix deprecation warning
new 682d7b2 oeqa/utils/commands: Avoid unclosed file warnings
new 351a7b7 oeqa/selftest/context: Replace deprecated imp module usage
new 7eb1f0b oeqa/utils/qemurunner.py: Fix python regex warnings
new 9c4c3c8 oeqa/selftest/context: Improve log file handling
new 4c53aac oeqa/core/runner: Improve test case comparision
new bcb2948 oeqa/runner: Ensure we don't print misleading results output
new bb9a85e oeqa/core/threaded: Remove in favour of using concurrenttests
new ab271b4 oeqa/runner: Simplify code
new 02449e8 oeqa: Remove xmlrunner
new bc44418 oeqa/core/runner: refactor for OEQA to write json testresult
new 0455114 oeqa/core/runner: write testresult to json files
new 526ceab oeqa/runtime/ptest: Inject results+logs into stored json results file
The 32 revisions listed above as "new" are entirely new to this
repository and will be described in separate emails. The revisions
listed as "add" were already present in the repository and have only
been added to this reference.
Summary of changes:
meta-selftest/recipes-test/delay/delay.bb | 12 +
meta/classes/archiver.bbclass | 10 +-
meta/classes/base.bbclass | 8 +-
meta/classes/clutter.bbclass | 2 +-
meta/classes/crosssdk.bbclass | 8 +-
meta/classes/cve-check.bbclass | 15 +-
meta/classes/externalsrc.bbclass | 4 +-
meta/classes/kernel-yocto.bbclass | 5 +-
meta/classes/kernel.bbclass | 2 +-
meta/classes/license.bbclass | 4 +-
meta/classes/mirrors.bbclass | 2 +-
meta/classes/sanity.bbclass | 11 +
meta/classes/testsdk.bbclass | 4 -
meta/conf/bitbake.conf | 2 +-
meta/conf/distro/include/security_flags.inc | 2 +-
meta/conf/distro/include/yocto-uninative.inc | 8 +-
meta/files/common-licenses/FreeType | 4 +-
meta/lib/oe/rootfs.py | 5 +-
meta/lib/oeqa/core/context.py | 1 -
meta/lib/oeqa/core/decorator/depends.py | 9 +-
meta/lib/oeqa/core/decorator/oetimeout.py | 40 +--
meta/lib/oeqa/core/loader.py | 2 +-
meta/lib/oeqa/core/runner.py | 176 ++++++-------
.../core/tests/cases/loader/threaded/threaded.py | 12 -
.../tests/cases/loader/threaded/threaded_alone.py | 8 -
.../cases/loader/threaded/threaded_depends.py | 10 -
.../tests/cases/loader/threaded/threaded_module.py | 12 -
meta/lib/oeqa/core/tests/common.py | 10 -
meta/lib/oeqa/core/tests/test_data.py | 4 +-
meta/lib/oeqa/core/tests/test_decorators.py | 12 -
meta/lib/oeqa/core/tests/test_loader.py | 30 +--
meta/lib/oeqa/core/threaded.py | 275 --------------------
meta/lib/oeqa/runtime/cases/ptest.py | 21 +-
meta/lib/oeqa/sdk/context.py | 5 +-
meta/lib/oeqa/selftest/case.py | 4 +-
meta/lib/oeqa/selftest/cases/buildoptions.py | 12 +-
meta/lib/oeqa/selftest/cases/eSDK.py | 13 +-
meta/lib/oeqa/selftest/cases/oelib/path.py | 10 +-
meta/lib/oeqa/selftest/cases/recipetool.py | 4 +-
meta/lib/oeqa/selftest/cases/runqemu.py | 32 ++-
meta/lib/oeqa/selftest/cases/runtime_test.py | 4 +-
meta/lib/oeqa/selftest/cases/signing.py | 80 ++++--
meta/lib/oeqa/selftest/cases/wic.py | 6 +-
meta/lib/oeqa/selftest/context.py | 18 +-
meta/lib/oeqa/utils/buildproject.py | 3 +-
meta/lib/oeqa/utils/commands.py | 11 +-
meta/lib/oeqa/utils/qemurunner.py | 26 +-
meta/lib/oeqa/utils/targetbuild.py | 5 +-
.../lrzsz/lrzsz-0.12.20/cve-2018-10195.patch | 28 ++
meta/recipes-bsp/lrzsz/lrzsz_0.12.20.bb | 1 +
meta/recipes-connectivity/dhcp/dhcp.inc | 3 +-
.../dhcp/0008-tweak-to-support-external-bind.patch | 69 +++--
.../dhcp/dhcp/0010-build-shared-libs.patch | 83 +++---
meta/recipes-connectivity/dhcp/dhcp_4.3.6.bb | 17 +-
.../mobile-broadband-provider-info_git.bb | 3 +-
.../openssl/openssl-1.0.2o/debian/ca.patch | 22 --
.../openssl/openssl-1.0.2o/find.pl | 54 ----
.../openssl-util-perlpath.pl-cwd.patch | 34 ---
...build-with-clang-using-external-assembler.patch | 0
.../0001-allow-manpages-to-be-disabled.patch | 31 +++
...penssl-force-soft-link-to-avoid-rare-race.patch | 0
.../Makefiles-ptest.patch | 18 +-
.../Use-SHA256-not-MD5-as-default-digest.patch | 0
.../configure-musl-target.patch | 0
.../configure-targets.patch | 0
.../debian/c_rehash-compat.patch | 0
.../debian/debian-targets.patch | 0
.../debian/man-dir.patch | 0
.../debian/man-section.patch | 0
.../debian/no-rpath.patch | 0
.../debian/no-symbolic.patch | 0
.../debian/pic.patch | 0
.../debian1.0.2/block_digicert_malaysia.patch | 0
.../debian1.0.2/block_diginotar.patch | 0
.../debian1.0.2/soname.patch | 0
.../debian1.0.2/version-script.patch | 0
.../engines-install-in-libdir-ssl.patch | 0
.../oe-ldflags.patch | 0
.../openssl-c_rehash.sh | 0
.../openssl-fix-des.pod-error.patch | 0
.../openssl_fix_for_x32.patch | 0
.../parallel.patch | 40 ++-
.../ptest-deps.patch | 0
.../ptest_makefile_deps.patch | 0
.../reproducible-cflags.patch | 0
.../reproducible-mkbuildinf.patch | 0
.../{openssl-1.0.2o => openssl-1.0.2p}/run-ptest | 0
.../shared-libs.patch | 0
.../openssl/openssl/environment.d-openssl.sh | 1 +
.../recipes-connectivity/openssl/openssl_1.0.2o.bb | 64 -----
.../openssl/{openssl10.inc => openssl_1.0.2p.bb} | 191 +++++++++-----
.../{openssl_1.1.0h.bb => openssl_1.1.0i.bb} | 123 +++++----
meta/recipes-connectivity/socat/socat_1.7.3.2.bb | 2 +-
.../wpa_supplicant-CVE-2018-14526.patch | 44 ++++
.../wpa-supplicant/wpa-supplicant_2.6.bb | 1 +
meta/recipes-core/base-files/base-files_3.0.14.bb | 8 +-
meta/recipes-core/busybox/busybox.inc | 17 +-
.../busybox/busybox/CVE-2017-15874.patch | 30 +++
meta/recipes-core/busybox/busybox/defconfig | 12 +-
meta/recipes-core/busybox/busybox/init.cfg | 7 +-
meta/recipes-core/busybox/busybox_1.27.2.bb | 1 +
meta/recipes-core/busybox/files/mdev-mount.sh | 4 +-
.../coreutils/coreutils/CVE-2017-18018-1.patch | 40 +++
.../coreutils/coreutils/CVE-2017-18018-2.patch | 83 ++++++
meta/recipes-core/coreutils/coreutils_8.29.bb | 2 +
.../glib-networking/glib-networking_2.54.1.bb | 2 +-
meta/recipes-core/glibc/glibc/CVE-2018-11237.patch | 82 ++++++
meta/recipes-core/glibc/glibc_2.27.bb | 1 +
.../images/build-appliance-image_15.0.0.bb | 8 +-
.../initrdscripts/initramfs-framework/udev | 1 +
.../initscripts-1.0/populate-volatile.sh | 4 +-
.../libcgroup/libcgroup/CVE-2018-14348.patch | 37 +++
meta/recipes-core/libcgroup/libcgroup_0.41.bb | 3 +-
.../libxml/libxml2/CVE-2018-14404.patch | 58 +++++
meta/recipes-core/libxml/libxml2_2.9.7.bb | 1 +
meta/recipes-core/os-release/os-release.bb | 9 +-
meta/recipes-core/sysvinit/sysvinit_2.88dsf.bb | 2 +-
.../{util-linux_2.32.bb => util-linux_2.32.1.bb} | 4 +-
meta/recipes-devtools/apt/apt.inc | 2 +-
meta/recipes-devtools/binutils/binutils-2.30.inc | 1 +
...ARM-assembler-s-ADR-and-ADRl-pseudo-ops-s.patch | 176 +++++++++++++
meta/recipes-devtools/cmake/cmake_3.10.3.bb | 3 +-
.../git/files/CVE-2018-11233.patch | 44 ++++
.../git/files/CVE-2018-11235.patch | 288 +++++++++++++++++++++
meta/recipes-devtools/git/git.inc | 4 +-
meta/recipes-devtools/m4/m4-1.4.18.inc | 1 +
.../m4/m4/m4-1.4.18-glibc-change-work-around.patch | 129 +++++++++
...t-we-are-not-reading-past-end-of-a-buffer.patch | 65 +++++
.../0001-assemble-Check-global-line-limit.patch | 50 ++++
.../0001-eval-Eliminate-division-by-zero.patch | 40 +++
.../nasm/nasm/0001-fix-CVE-2018-8882.patch | 30 +++
...proc-parse_size-Check-for-string-provided.patch | 37 +++
meta/recipes-devtools/nasm/nasm_2.13.03.bb | 5 +
.../0001-Fix-swapping-fake-lines-in-pch_swap.patch | 36 +++
meta/recipes-devtools/patch/patch_2.7.6.bb | 1 +
...ious-tests-if-PERL_BUILD_PACKAGING-is-set.patch | 126 +++++++++
.../perl/perl/CVE-2018-12015.patch | 48 ++++
.../recipes-devtools/perl/perl/CVE-2018-6797.patch | 45 ++++
.../perl/perl/CVE-2018-6798-1.patch | 130 ++++++++++
.../perl/perl/CVE-2018-6798-2.patch | 37 +++
.../recipes-devtools/perl/perl/CVE-2018-6913.patch | 153 +++++++++++
.../perl/perl/perl-test-customized.patch | 86 ------
meta/recipes-devtools/perl/perl/run-ptest | 2 +-
meta/recipes-devtools/perl/perl_5.24.1.bb | 7 +-
...on-native_2.7.14.bb => python-native_2.7.15.bb} | 1 -
meta/recipes-devtools/python/python.inc | 6 +-
...23-Use-XML_SetHashSalt-in-_elementtree-GH.patch | 98 +++++++
...34540-Convert-shutil._call_external_zip-t.patch | 69 +++++
.../python/python/fix-gc-alignment.patch | 43 ---
.../python/python/fix-makefile-for-ptest.patch | 34 ---
.../python/python/float-endian.patch | 216 ++++++++++++++++
meta/recipes-devtools/python/python/run-ptest | 4 +-
.../python/python3/CVE-2018-1061.patch | 165 ++++++++++++
meta/recipes-devtools/python/python3_3.5.5.bb | 1 +
.../python/{python_2.7.14.bb => python_2.7.15.bb} | 29 +--
.../qemu/qemu/CVE-2018-12617.patch | 53 ++++
.../recipes-devtools/qemu/qemu/CVE-2018-7550.patch | 62 +++++
meta/recipes-devtools/qemu/qemu_2.11.1.bb | 2 +
...-squashfs-tools-patch-for-CVE-2015-4645-6.patch | 47 ++++
.../squashfs-tools/squashfs-tools_git.bb | 1 +
meta/recipes-devtools/swig/swig.inc | 2 +-
...-fix-opcode-not-supported-on-mips32-linux.patch | 82 ++++++
...roken-inline-asm-in-tests-on-mips32-linux.patch | 47 ++++
.../valgrind/valgrind/ppc-headers.patch | 78 ++++++
meta/recipes-devtools/valgrind/valgrind_3.13.0.bb | 3 +-
meta/recipes-extended/bzip2/bzip2_1.0.6.bb | 6 +-
.../libarchive/libarchive/CVE-2017-14501.patch | 79 ++++++
.../libarchive/libarchive/CVE-2017-14503.patch | 33 +++
.../libarchive/libarchive_3.3.2.bb | 2 +
.../procps/procps/CVE-2018-1124.patch | 176 +++++++++++++
meta/recipes-extended/procps/procps_3.3.12.bb | 1 +
.../shadow/files/CVE-2018-7169.patch | 186 +++++++++++++
meta/recipes-extended/shadow/shadow.inc | 3 +
...code-native_2018d.bb => tzcode-native_2018f.bb} | 8 +-
.../tzdata/{tzdata_2018d.bb => tzdata_2018f.bb} | 4 +-
.../unzip/0001-unzip-fix-CVE-2018-1000035.patch | 48 ++++
.../unzip/unzip/CVE-2018-18384.patch | 39 +++
meta/recipes-extended/unzip/unzip/symlink.patch | 26 ++
meta/recipes-extended/unzip/unzip_6.0.bb | 3 +
.../cantarell-fonts/cantarell-fonts_git.bb | 4 +-
...01-GLES2-Get-sin-cos-out-of-vertex-shader.patch | 141 ++++++++++
meta/recipes-graphics/libsdl2/libsdl2_2.0.8.bb | 1 +
.../xorg-lib/libice/CVE-2017-2626.patch | 149 +++++++++++
meta/recipes-graphics/xorg-lib/libice_1.0.9.bb | 2 +
meta/recipes-graphics/xorg-lib/pixman_0.34.0.bb | 2 +-
...NULL-value-detection-for-ID_INPUT-being-u.patch | 40 +++
.../xorg-xserver/xserver-xorg_1.19.6.bb | 1 +
.../blktrace/blktrace/CVE-2018-10689.patch | 150 +++++++++++
meta/recipes-kernel/blktrace/blktrace_git.bb | 1 +
meta/recipes-kernel/linux/linux-yocto-rt_4.12.bb | 6 +-
meta/recipes-kernel/linux/linux-yocto-rt_4.14.bb | 8 +-
meta/recipes-kernel/linux/linux-yocto-tiny_4.12.bb | 6 +-
meta/recipes-kernel/linux/linux-yocto-tiny_4.14.bb | 6 +-
meta/recipes-kernel/linux/linux-yocto_4.12.bb | 20 +-
meta/recipes-kernel/linux/linux-yocto_4.14.bb | 20 +-
meta/recipes-multimedia/alsa/alsa-lib_1.1.5.bb | 13 +-
.../flac/files/CVE-2017-6888.patch | 31 +++
meta/recipes-multimedia/flac/flac_1.3.2.bb | 3 +-
.../libid3tag/libid3tag/10_utf16.dpatch | 33 +++
.../libid3tag/libid3tag_0.15.1b.bb | 1 +
.../libpng/files/CVE-2018-13785.patch | 37 +++
meta/recipes-multimedia/libpng/libpng_1.6.34.bb | 4 +-
.../libsndfile1/CVE-2017-14245-14246.patch | 121 +++++++++
.../libsndfile/libsndfile1/CVE-2017-14634.patch | 42 +++
.../libsndfile/libsndfile1/CVE-2018-13139.patch | 35 +++
.../libsndfile/libsndfile1_1.0.28.bb | 3 +
.../libtiff/files/CVE-2017-17095.patch | 46 ++++
meta/recipes-multimedia/libtiff/tiff_4.0.9.bb | 1 +
.../libvorbis/libvorbis/CVE-2017-14160.patch | 33 +++
.../libvorbis/libvorbis/CVE-2018-10392.patch | 29 +++
.../libvorbis/libvorbis_1.3.5.bb | 3 +
meta/recipes-multimedia/x264/x264_git.bb | 1 +
.../apr-util/0001-Fix-error-handling-in-gdbm.patch | 135 ++++++++++
meta/recipes-support/apr/apr-util_1.6.1.bb | 3 +-
meta/recipes-support/apr/apr_1.6.3.bb | 2 +-
.../recipes-support/curl/curl/CVE-2018-14618.patch | 37 +++
.../recipes-support/curl/curl/CVE-2018-16839.patch | 35 +++
.../recipes-support/curl/curl/CVE-2018-16840.patch | 43 +++
.../recipes-support/curl/curl/CVE-2018-16842.patch | 35 +++
meta/recipes-support/curl/curl_7.61.0.bb | 8 +-
.../update-output-syntax.patch | 2 +-
.../gnupg/gnupg/CVE-2018-12020.patch | 47 ++++
.../gnupg/gnupg/CVE-2018-9234.patch | 28 ++
meta/recipes-support/gnupg/gnupg/relocate.patch | 81 ++++++
meta/recipes-support/gnupg/gnupg_2.2.4.bb | 9 +-
.../libcroco/libcroco/CVE-2017-7960.patch | 56 ++++
.../libcroco/libcroco/CVE-2017-7961.patch | 46 ++++
meta/recipes-support/libcroco/libcroco_0.6.12.bb | 3 +
.../libexif/libexif/CVE-2017-7544.patch | 40 +++
meta/recipes-support/libexif/libexif_0.6.21.bb | 3 +-
.../libgcrypt/files/CVE-2018-0495.patch | 76 ++++++
meta/recipes-support/libgcrypt/libgcrypt_1.8.2.bb | 1 +
...of-a-print-in-the-scons-file-to-unbreak-b.patch | 29 +++
...truct-Fix-path-quoting-for-.def-generator.patch | 27 ++
meta/recipes-support/serf/serf/0003-gen_def.patch | 22 ++
...o-r1811083-fix-building-with-scons-3.0.0-.patch | 29 +++
meta/recipes-support/serf/serf_1.3.9.bb | 7 +-
.../sqlite/files/CVE-2018-8740.patch | 47 ++++
meta/recipes-support/sqlite/sqlite3_3.22.0.bb | 1 +
.../taglib/taglib/CVE-2018-11439.patch | 51 ++++
meta/recipes-support/taglib/taglib_1.11.1.bb | 1 +
scripts/contrib/mkefidisk.sh | 12 +-
scripts/lib/checklayer/__init__.py | 4 +
scripts/lib/wic/canned-wks/qemux86-directdisk.wks | 2 +-
.../lib/wic/plugins/source/isoimage-isohybrid.py | 10 +-
scripts/runqemu | 61 ++++-
246 files changed, 6046 insertions(+), 1351 deletions(-)
create mode 100644 meta-selftest/recipes-test/delay/delay.bb
delete mode 100644 meta/lib/oeqa/core/tests/cases/loader/threaded/threaded.py
delete mode 100644 meta/lib/oeqa/core/tests/cases/loader/threaded/threaded_alone.py
delete mode 100644 meta/lib/oeqa/core/tests/cases/loader/threaded/threaded_depends.py
delete mode 100644 meta/lib/oeqa/core/tests/cases/loader/threaded/threaded_module.py
delete mode 100644 meta/lib/oeqa/core/threaded.py
create mode 100644 meta/recipes-bsp/lrzsz/lrzsz-0.12.20/cve-2018-10195.patch
delete mode 100644 meta/recipes-connectivity/openssl/openssl-1.0.2o/debian/ca.patch
delete mode 100644 meta/recipes-connectivity/openssl/openssl-1.0.2o/find.pl
delete mode 100644 meta/recipes-connectivity/openssl/openssl-1.0.2o/openssl-util-perlpath.pl-cwd.patch
rename meta/recipes-connectivity/openssl/{openssl-1.0.2o => openssl-1.0.2p}/0001-Fix-build-with-clang-using-external-assembler.patch (100%)
create mode 100644 meta/recipes-connectivity/openssl/openssl-1.0.2p/0001-allow-manpages-to-be-disabled.patch
rename meta/recipes-connectivity/openssl/{openssl-1.0.2o => openssl-1.0.2p}/0001-openssl-force-soft-link-to-avoid-rare-race.patch (100%)
rename meta/recipes-connectivity/openssl/{openssl-1.0.2o => openssl-1.0.2p}/Makefiles-ptest.patch (87%)
rename meta/recipes-connectivity/openssl/{openssl-1.0.2o => openssl-1.0.2p}/Use-SHA256-not-MD5-as-default-digest.patch (100%)
rename meta/recipes-connectivity/openssl/{openssl-1.0.2o => openssl-1.0.2p}/configure-musl-target.patch (100%)
rename meta/recipes-connectivity/openssl/{openssl-1.0.2o => openssl-1.0.2p}/configure-targets.patch (100%)
rename meta/recipes-connectivity/openssl/{openssl-1.0.2o => openssl-1.0.2p}/debian/c_rehash-compat.patch (100%)
rename meta/recipes-connectivity/openssl/{openssl-1.0.2o => openssl-1.0.2p}/debian/debian-targets.patch (100%)
rename meta/recipes-connectivity/openssl/{openssl-1.0.2o => openssl-1.0.2p}/debian/man-dir.patch (100%)
rename meta/recipes-connectivity/openssl/{openssl-1.0.2o => openssl-1.0.2p}/debian/man-section.patch (100%)
rename meta/recipes-connectivity/openssl/{openssl-1.0.2o => openssl-1.0.2p}/debian/no-rpath.patch (100%)
rename meta/recipes-connectivity/openssl/{openssl-1.0.2o => openssl-1.0.2p}/debian/no-symbolic.patch (100%)
rename meta/recipes-connectivity/openssl/{openssl-1.0.2o => openssl-1.0.2p}/debian/pic.patch (100%)
rename meta/recipes-connectivity/openssl/{openssl-1.0.2o => openssl-1.0.2p}/debian1.0.2/block_digicert_malaysia.patch (100%)
rename meta/recipes-connectivity/openssl/{openssl-1.0.2o => openssl-1.0.2p}/debian1.0.2/block_diginotar.patch (100%)
rename meta/recipes-connectivity/openssl/{openssl-1.0.2o => openssl-1.0.2p}/debian1.0.2/soname.patch (100%)
rename meta/recipes-connectivity/openssl/{openssl-1.0.2o => openssl-1.0.2p}/debian1.0.2/version-script.patch (100%)
rename meta/recipes-connectivity/openssl/{openssl-1.0.2o => openssl-1.0.2p}/engines-install-in-libdir-ssl.patch (100%)
rename meta/recipes-connectivity/openssl/{openssl-1.0.2o => openssl-1.0.2p}/oe-ldflags.patch (100%)
rename meta/recipes-connectivity/openssl/{openssl-1.0.2o => openssl-1.0.2p}/openssl-c_rehash.sh (100%)
rename meta/recipes-connectivity/openssl/{openssl-1.0.2o => openssl-1.0.2p}/openssl-fix-des.pod-error.patch (100%)
rename meta/recipes-connectivity/openssl/{openssl-1.0.2o => openssl-1.0.2p}/openssl_fix_for_x32.patch (100%)
rename meta/recipes-connectivity/openssl/{openssl-1.0.2o => openssl-1.0.2p}/parallel.patch (92%)
rename meta/recipes-connectivity/openssl/{openssl-1.0.2o => openssl-1.0.2p}/ptest-deps.patch (100%)
rename meta/recipes-connectivity/openssl/{openssl-1.0.2o => openssl-1.0.2p}/ptest_makefile_deps.patch (100%)
rename meta/recipes-connectivity/openssl/{openssl-1.0.2o => openssl-1.0.2p}/reproducible-cflags.patch (100%)
rename meta/recipes-connectivity/openssl/{openssl-1.0.2o => openssl-1.0.2p}/reproducible-mkbuildinf.patch (100%)
rename meta/recipes-connectivity/openssl/{openssl-1.0.2o => openssl-1.0.2p}/run-ptest (100%)
rename meta/recipes-connectivity/openssl/{openssl-1.0.2o => openssl-1.0.2p}/shared-libs.patch (100%)
create mode 100644 meta/recipes-connectivity/openssl/openssl/environment.d-openssl.sh
delete mode 100644 meta/recipes-connectivity/openssl/openssl_1.0.2o.bb
rename meta/recipes-connectivity/openssl/{openssl10.inc => openssl_1.0.2p.bb} (62%)
rename meta/recipes-connectivity/openssl/{openssl_1.1.0h.bb => openssl_1.1.0i.bb} (52%)
create mode 100644 meta/recipes-connectivity/wpa-supplicant/wpa-supplicant/wpa_supplicant-CVE-2018-14526.patch
create mode 100644 meta/recipes-core/busybox/busybox/CVE-2017-15874.patch
create mode 100644 meta/recipes-core/coreutils/coreutils/CVE-2017-18018-1.patch
create mode 100644 meta/recipes-core/coreutils/coreutils/CVE-2017-18018-2.patch
create mode 100644 meta/recipes-core/glibc/glibc/CVE-2018-11237.patch
create mode 100644 meta/recipes-core/libcgroup/libcgroup/CVE-2018-14348.patch
create mode 100644 meta/recipes-core/libxml/libxml2/CVE-2018-14404.patch
rename meta/recipes-core/util-linux/{util-linux_2.32.bb => util-linux_2.32.1.bb} (86%)
create mode 100644 meta/recipes-devtools/binutils/binutils/0001-Change-the-ARM-assembler-s-ADR-and-ADRl-pseudo-ops-s.patch
create mode 100644 meta/recipes-devtools/git/files/CVE-2018-11233.patch
create mode 100644 meta/recipes-devtools/git/files/CVE-2018-11235.patch
create mode 100644 meta/recipes-devtools/m4/m4/m4-1.4.18-glibc-change-work-around.patch
create mode 100644 meta/recipes-devtools/nasm/nasm/0001-Verify-that-we-are-not-reading-past-end-of-a-buffer.patch
create mode 100644 meta/recipes-devtools/nasm/nasm/0001-assemble-Check-global-line-limit.patch
create mode 100644 meta/recipes-devtools/nasm/nasm/0001-eval-Eliminate-division-by-zero.patch
create mode 100644 meta/recipes-devtools/nasm/nasm/0001-fix-CVE-2018-8882.patch
create mode 100644 meta/recipes-devtools/nasm/nasm/0001-preproc-parse_size-Check-for-string-provided.patch
create mode 100644 meta/recipes-devtools/patch/patch/0001-Fix-swapping-fake-lines-in-pch_swap.patch
create mode 100644 meta/recipes-devtools/perl/perl/0001-Skip-various-tests-if-PERL_BUILD_PACKAGING-is-set.patch
create mode 100644 meta/recipes-devtools/perl/perl/CVE-2018-12015.patch
create mode 100644 meta/recipes-devtools/perl/perl/CVE-2018-6797.patch
create mode 100644 meta/recipes-devtools/perl/perl/CVE-2018-6798-1.patch
create mode 100644 meta/recipes-devtools/perl/perl/CVE-2018-6798-2.patch
create mode 100644 meta/recipes-devtools/perl/perl/CVE-2018-6913.patch
delete mode 100644 meta/recipes-devtools/perl/perl/perl-test-customized.patch
rename meta/recipes-devtools/python/{python-native_2.7.14.bb => python-native_2.7.15.bb} (98%)
create mode 100644 meta/recipes-devtools/python/python/0001-2.7-bpo-34623-Use-XML_SetHashSalt-in-_elementtree-GH.patch
create mode 100644 meta/recipes-devtools/python/python/0001-closes-bpo-34540-Convert-shutil._call_external_zip-t.patch
delete mode 100644 meta/recipes-devtools/python/python/fix-gc-alignment.patch
delete mode 100644 meta/recipes-devtools/python/python/fix-makefile-for-ptest.patch
create mode 100644 meta/recipes-devtools/python/python/float-endian.patch
create mode 100644 meta/recipes-devtools/python/python3/CVE-2018-1061.patch
rename meta/recipes-devtools/python/{python_2.7.14.bb => python_2.7.15.bb} (91%)
create mode 100644 meta/recipes-devtools/qemu/qemu/CVE-2018-12617.patch
create mode 100644 meta/recipes-devtools/qemu/qemu/CVE-2018-7550.patch
create mode 100644 meta/recipes-devtools/squashfs-tools/squashfs-tools/0001-squashfs-tools-patch-for-CVE-2015-4645-6.patch
create mode 100644 meta/recipes-devtools/valgrind/valgrind/0001-fix-opcode-not-supported-on-mips32-linux.patch
create mode 100644 meta/recipes-devtools/valgrind/valgrind/0002-fix-broken-inline-asm-in-tests-on-mips32-linux.patch
create mode 100644 meta/recipes-extended/libarchive/libarchive/CVE-2017-14501.patch
create mode 100644 meta/recipes-extended/libarchive/libarchive/CVE-2017-14503.patch
create mode 100644 meta/recipes-extended/procps/procps/CVE-2018-1124.patch
create mode 100644 meta/recipes-extended/shadow/files/CVE-2018-7169.patch
rename meta/recipes-extended/tzcode/{tzcode-native_2018d.bb => tzcode-native_2018f.bb} (70%)
rename meta/recipes-extended/tzdata/{tzdata_2018d.bb => tzdata_2018f.bb} (98%)
create mode 100644 meta/recipes-extended/unzip/unzip/0001-unzip-fix-CVE-2018-1000035.patch
create mode 100644 meta/recipes-extended/unzip/unzip/CVE-2018-18384.patch
create mode 100644 meta/recipes-extended/unzip/unzip/symlink.patch
create mode 100644 meta/recipes-graphics/libsdl2/libsdl2/0001-GLES2-Get-sin-cos-out-of-vertex-shader.patch
create mode 100644 meta/recipes-graphics/xorg-lib/libice/CVE-2017-2626.patch
create mode 100644 meta/recipes-graphics/xorg-xserver/xserver-xorg/0001-config-fix-NULL-value-detection-for-ID_INPUT-being-u.patch
create mode 100644 meta/recipes-kernel/blktrace/blktrace/CVE-2018-10689.patch
create mode 100644 meta/recipes-multimedia/flac/files/CVE-2017-6888.patch
create mode 100644 meta/recipes-multimedia/libid3tag/libid3tag/10_utf16.dpatch
create mode 100644 meta/recipes-multimedia/libpng/files/CVE-2018-13785.patch
create mode 100644 meta/recipes-multimedia/libsndfile/libsndfile1/CVE-2017-14245-14246.patch
create mode 100644 meta/recipes-multimedia/libsndfile/libsndfile1/CVE-2017-14634.patch
create mode 100644 meta/recipes-multimedia/libsndfile/libsndfile1/CVE-2018-13139.patch
create mode 100644 meta/recipes-multimedia/libtiff/files/CVE-2017-17095.patch
create mode 100644 meta/recipes-multimedia/libvorbis/libvorbis/CVE-2017-14160.patch
create mode 100644 meta/recipes-multimedia/libvorbis/libvorbis/CVE-2018-10392.patch
create mode 100644 meta/recipes-support/apr/apr-util/0001-Fix-error-handling-in-gdbm.patch
create mode 100644 meta/recipes-support/curl/curl/CVE-2018-14618.patch
create mode 100644 meta/recipes-support/curl/curl/CVE-2018-16839.patch
create mode 100644 meta/recipes-support/curl/curl/CVE-2018-16840.patch
create mode 100644 meta/recipes-support/curl/curl/CVE-2018-16842.patch
create mode 100644 meta/recipes-support/gnupg/gnupg/CVE-2018-12020.patch
create mode 100644 meta/recipes-support/gnupg/gnupg/CVE-2018-9234.patch
create mode 100644 meta/recipes-support/gnupg/gnupg/relocate.patch
create mode 100644 meta/recipes-support/libcroco/libcroco/CVE-2017-7960.patch
create mode 100644 meta/recipes-support/libcroco/libcroco/CVE-2017-7961.patch
create mode 100644 meta/recipes-support/libexif/libexif/CVE-2017-7544.patch
create mode 100644 meta/recipes-support/libgcrypt/files/CVE-2018-0495.patch
create mode 100644 meta/recipes-support/serf/serf/0001-Fix-syntax-of-a-print-in-the-scons-file-to-unbreak-b.patch
create mode 100644 meta/recipes-support/serf/serf/0002-SConstruct-Fix-path-quoting-for-.def-generator.patch
create mode 100644 meta/recipes-support/serf/serf/0003-gen_def.patch
create mode 100644 meta/recipes-support/serf/serf/0004-Follow-up-to-r1811083-fix-building-with-scons-3.0.0-.patch
create mode 100644 meta/recipes-support/sqlite/files/CVE-2018-8740.patch
create mode 100644 meta/recipes-support/taglib/taglib/CVE-2018-11439.patch
--
To stop receiving notification emails like this one, please contact
the administrator of this repository.
More information about the Openembedded-commits
mailing list