[oe-commits] [openembedded-core] branch warrior updated (952bfcc -> 8c87e78)
git at git.openembedded.org
git at git.openembedded.org
Mon Sep 30 15:45:03 UTC 2019
This is an automated email from the git hooks/post-receive script.
rpurdie pushed a change to branch warrior
in repository openembedded-core.
from 952bfcc curl: fix CVE-2019-5435 CVE-2019-5436
new 9422bf4 binutils: fix CVE-2019-12972 CVE-2019-9071
new 789be0b binutils: CVE-2019-9070 is same as CVE-2019-9071
new feb8ba6 python: fix CVE-2019-9740
new 7a3b5f2 libxslt: fix CVE-2019-13117 CVE-2019-13118
new 408950d glibc: CVE-2018-20796 is same as CVE-2019-9169
new 9be3480 libid3tag: handle unknown encodings (CVE-2017-11550)
new 2034398 libid3tag: CVE-2017-11551 is the same as CVE-2004-2779
new c4fcc2d tiff: fix CVE-2019-6128
new 3c036ee tiff: fix CVE-2019-7663
new 522ac5f libsdl: CVE fixes
new 5071352 gstreamer1.0-vaapi: backport jpeg encode/decode fixes
new bbbd16f package: Improve determinism
new 78193d3 patch: fix CVE-2019-13636
new 8662617 python3: fix CVE-2019-9740
new 4f60878 ghostscript: fix CVE-2019-3839
new b6daf8a rng-tools: fix very long shutdown delay with systemd
new 423115b psmisc: Fix dependency for USE_NLS=no
new fe6546a package.bbclass: fix directories setuid and setgid bits
new a898245 qemu: add a patch fixing the native build on newer kernels
new 6387d3a mesa: Update 19.0.1 -> 19.0.8
new 0b73e48 qemu: fix CVE-2018-20815
new cd6de42 linux-yocto/4.19: update to 4.19.57 and -rt22
new e199538 linux-yocto/4.19: update to v4.19.61
new 219befc boost: Fix build and enable context and coroutines on aarch64
new 93ce131 rsync: fix CVEs for included zlib
new 87106ff patch: fix CVE-2019-13638
new 1a35272 patch: backport fixes
new 51fb102 dpkg: Use less as pager
new 612a4c4 icecc.bbclass: catch subprocess.CalledProcessError
new 0ccf907 meson: backport fix for builds with -Werror=return-type
new efd32b0 powertop: import a fix from buildroot
new 41579d5 binutils: fix CVE-2019-14250 CVE-2019-14444
new d2ce91d pango: fix CVE-2019-1010238
new b7bc9c1 glib-2.0: fix CVE-2019-13012
new 7edf572 gcc: reduce the variables in symtab
new a3b083f gcc: CVE-2018-12886
new 21c5945 binutils: Fix mips patch which changes default emulation
new 2735718 glibc: Fix multilibs + usrmerge builds
new f7a5812 glibc-locale: Fix build error with PACKAGE_NO_GCONV = "1"
new 36c223e glibc/glibc-locale: Fix do_stash_locale to work with usrmerge and multilibs
new 7e62ca2 glibc / glibc-locale: Fix stash_locale determinism problems
new 125c77b gcc-8.3: Security fix for CVE-2019-14250
new 6b4c4fb kernel-fitimage: uboot-sign: fix missing signature
new ef7a387 kernel-devsrc: tweak for v5.3+
new 9a271cf libxcrypt: Fix the build with -Os
new 4e110b7 libgpg-error: Fix build with gawk 5.x
new d2e5558 Curl: Security fix for CVE-2019-5482
new a579b11 gcc: Security fix for CVE-2019-15847
new 5173092 multilib.bbclass: Reduce ALTERNATIVE_PRIORITY for extended recipes
new 441a2b8 useradd: Fix build architecture corruption of sstate artefacts
new 7f98309 useradd: Ensure do_populate_sysroot has dependency on useradd variables
new 933a85e uboot: fixes to uboot-extlinux-config attribute values
new 91c42f9 kernel-uboot: compress arm64 kernels
new 8c87e78 cve-check: backport rewrite from master
The 54 revisions listed above as "new" are entirely new to this
repository and will be described in separate emails. The revisions
listed as "add" were already present in the repository and have only
been added to this reference.
Summary of changes:
meta/classes/cve-check.bbclass | 142 ++--
meta/classes/icecc.bbclass | 6 +-
meta/classes/kernel-uboot.bbclass | 4 -
meta/classes/multilib.bbclass | 47 ++
meta/classes/package.bbclass | 5 +-
meta/classes/staging.bbclass | 2 +-
meta/classes/uboot-extlinux-config.bbclass | 13 +-
meta/classes/uboot-sign.bbclass | 4 +-
meta/classes/useradd.bbclass | 7 +-
meta/conf/distro/include/maintainers.inc | 1 +
meta/lib/oe/package.py | 2 +-
.../glib-2.0/glib-2.0/CVE-2019-13012.patch | 40 +
meta/recipes-core/glib-2.0/glib-2.0_2.58.3.bb | 1 +
meta/recipes-core/glibc/glibc-locale.inc | 6 +
meta/recipes-core/glibc/glibc-mtrace.inc | 3 +
meta/recipes-core/glibc/glibc-package.inc | 61 +-
meta/recipes-core/glibc/glibc-scripts.inc | 3 +
meta/recipes-core/glibc/glibc/CVE-2019-9169.patch | 1 +
meta/recipes-core/glibc/glibc_2.29.bb | 1 -
meta/recipes-core/libxcrypt/libxcrypt.bb | 4 +-
meta/recipes-core/meta/cve-update-db-native.bb | 195 +++++
meta/recipes-devtools/binutils/binutils-2.32.inc | 4 +
...Change-default-emulation-for-mips64-linux.patch | 9 +-
.../binutils/binutils/CVE-2019-12972.patch | 51 ++
.../binutils/binutils/CVE-2019-14250.patch | 33 +
.../binutils/binutils/CVE-2019-14444.patch | 28 +
.../binutils/binutils/CVE-2019-9071.patch | 165 +++++
.../cve-check-tool/cve-check-tool_5.6.4.bb | 62 --
...01-Fix-freeing-memory-allocated-by-sqlite.patch | 50 --
...ow-overriding-default-CA-certificate-file.patch | 215 ------
...ogress-in-percent-when-downloading-CVE-db.patch | 135 ----
...are-computed-vs-expected-sha256-digit-str.patch | 52 --
.../check-for-malloc_trim-before-using-it.patch | 51 --
meta/recipes-devtools/dpkg/dpkg/pager.patch | 21 +
meta/recipes-devtools/dpkg/dpkg_1.19.4.bb | 1 +
meta/recipes-devtools/gcc/gcc-8.3.inc | 6 +
.../gcc/gcc-8.3/0042-PR-debug-86964.patch | 94 +++
...vent-spilling-of-stack-protector-guard-s-.patch | 813 +++++++++++++++++++++
.../gcc/gcc-8.3/CVE-2019-14250.patch | 44 ++
.../gcc/gcc-8.3/CVE-2019-15847_p1.patch | 521 +++++++++++++
.../gcc/gcc-8.3/CVE-2019-15847_p2.patch | 77 ++
.../gcc/gcc-8.3/CVE-2019-15847_p3.patch | 45 ++
meta/recipes-devtools/meson/meson.inc | 1 +
...-return-statements-that-are-seen-with-Wer.patch | 84 +++
...k-temporary-file-on-failed-ed-style-patch.patch | 93 +++
...ak-temporary-file-on-failed-multi-file-ed.patch | 80 ++
...ke-ed-directly-instead-of-using-the-shell.patch | 44 ++
.../patch/patch/CVE-2019-13636.patch | 113 +++
meta/recipes-devtools/patch/patch_2.7.6.bb | 4 +
.../python/python/CVE-2019-9740.patch | 215 ++++++
.../python/python3/CVE-2019-9740.patch | 151 ++++
meta/recipes-devtools/python/python3_3.7.2.bb | 1 +
meta/recipes-devtools/python/python_2.7.16.bb | 1 +
meta/recipes-devtools/qemu/qemu.inc | 2 +
...fix-to-handle-variably-sized-SIOCGSTAMP-w.patch | 339 +++++++++
.../qemu/qemu/CVE-2018-20815.patch | 38 +
.../rsync/files/CVE-2016-9840.patch | 75 ++
.../rsync/files/CVE-2016-9841.patch | 228 ++++++
.../rsync/files/CVE-2016-9842.patch | 33 +
.../rsync/files/CVE-2016-9843.patch | 53 ++
meta/recipes-devtools/rsync/rsync_3.1.3.bb | 4 +
.../ghostscript/CVE-2019-3839-0008.patch | 440 +++++++++++
.../ghostscript/ghostscript_9.26.bb | 1 +
meta/recipes-extended/psmisc/psmisc.inc | 2 +-
.../libsdl/libsdl-1.2.15/CVE-2019-7572.patch | 114 +++
.../libsdl/libsdl-1.2.15/CVE-2019-7574.patch | 68 ++
.../libsdl/libsdl-1.2.15/CVE-2019-7575.patch | 81 ++
.../libsdl/libsdl-1.2.15/CVE-2019-7576.patch | 80 ++
.../libsdl/libsdl-1.2.15/CVE-2019-7577.patch | 123 ++++
.../libsdl/libsdl-1.2.15/CVE-2019-7578.patch | 64 ++
.../libsdl/libsdl-1.2.15/CVE-2019-7635.patch | 63 ++
.../libsdl/libsdl-1.2.15/CVE-2019-7637.patch | 192 +++++
.../libsdl/libsdl-1.2.15/CVE-2019-7638.patch | 38 +
meta/recipes-graphics/libsdl/libsdl_1.2.15.bb | 9 +
.../mesa/{mesa-gl_19.0.1.bb => mesa-gl_19.0.8.bb} | 0
.../mesa/{mesa_19.0.1.bb => mesa_19.0.8.bb} | 4 +-
.../pango/pango/CVE-2019-1010238.patch | 38 +
meta/recipes-graphics/pango/pango_1.42.4.bb | 4 +-
meta/recipes-kernel/linux/kernel-devsrc.bb | 4 +-
meta/recipes-kernel/linux/linux-yocto-rt_4.19.bb | 6 +-
meta/recipes-kernel/linux/linux-yocto-tiny_4.19.bb | 8 +-
meta/recipes-kernel/linux/linux-yocto_4.19.bb | 20 +-
.../0001-wakeup_xxx.h-include-limits.h.patch | 55 ++
meta/recipes-kernel/powertop/powertop_2.10.bb | 1 +
...der-release-VA-buffers-after-vaEndPicture.patch | 45 ++
...ibs-encoder-jpeg-set-component-id-and-Tqi.patch | 65 ++
.../gstreamer/gstreamer1.0-vaapi_1.14.4.bb | 2 +
.../libid3tag/libid3tag/10_utf16.patch | 1 +
.../libid3tag/libid3tag/unknown-encoding.patch | 39 +
.../libid3tag/libid3tag_0.15.1b.bb | 1 +
.../libtiff/tiff/CVE-2019-6128.patch | 52 ++
.../libtiff/tiff/CVE-2019-7663.patch | 77 ++
meta/recipes-multimedia/libtiff/tiff_4.0.10.bb | 3 +-
meta/recipes-support/boost/boost.inc | 2 +
meta/recipes-support/curl/curl/CVE-2019-5482.patch | 65 ++
meta/recipes-support/curl/curl_7.64.1.bb | 1 +
.../libgpg-error-1.35-gawk5-support.patch | 161 ++++
.../libgpg-error/libgpg-error_1.35.bb | 1 +
.../libxslt/files/CVE-2019-13117.patch | 33 +
.../libxslt/files/CVE-2019-13118.patch | 76 ++
meta/recipes-support/libxslt/libxslt_1.1.33.bb | 2 +
.../rng-tools/rng-tools/rngd.service | 3 +-
102 files changed, 5934 insertions(+), 694 deletions(-)
create mode 100644 meta/recipes-core/glib-2.0/glib-2.0/CVE-2019-13012.patch
create mode 100644 meta/recipes-core/meta/cve-update-db-native.bb
create mode 100644 meta/recipes-devtools/binutils/binutils/CVE-2019-12972.patch
create mode 100644 meta/recipes-devtools/binutils/binutils/CVE-2019-14250.patch
create mode 100644 meta/recipes-devtools/binutils/binutils/CVE-2019-14444.patch
create mode 100644 meta/recipes-devtools/binutils/binutils/CVE-2019-9071.patch
delete mode 100644 meta/recipes-devtools/cve-check-tool/cve-check-tool_5.6.4.bb
delete mode 100644 meta/recipes-devtools/cve-check-tool/files/0001-Fix-freeing-memory-allocated-by-sqlite.patch
delete mode 100644 meta/recipes-devtools/cve-check-tool/files/0001-curl-allow-overriding-default-CA-certificate-file.patch
delete mode 100644 meta/recipes-devtools/cve-check-tool/files/0001-print-progress-in-percent-when-downloading-CVE-db.patch
delete mode 100644 meta/recipes-devtools/cve-check-tool/files/0001-update-Compare-computed-vs-expected-sha256-digit-str.patch
delete mode 100644 meta/recipes-devtools/cve-check-tool/files/check-for-malloc_trim-before-using-it.patch
create mode 100644 meta/recipes-devtools/dpkg/dpkg/pager.patch
create mode 100644 meta/recipes-devtools/gcc/gcc-8.3/0042-PR-debug-86964.patch
create mode 100644 meta/recipes-devtools/gcc/gcc-8.3/0043-PR85434-Prevent-spilling-of-stack-protector-guard-s-.patch
create mode 100644 meta/recipes-devtools/gcc/gcc-8.3/CVE-2019-14250.patch
create mode 100644 meta/recipes-devtools/gcc/gcc-8.3/CVE-2019-15847_p1.patch
create mode 100644 meta/recipes-devtools/gcc/gcc-8.3/CVE-2019-15847_p2.patch
create mode 100644 meta/recipes-devtools/gcc/gcc-8.3/CVE-2019-15847_p3.patch
create mode 100644 meta/recipes-devtools/meson/meson/0001-Fix-missing-return-statements-that-are-seen-with-Wer.patch
create mode 100644 meta/recipes-devtools/patch/patch/0001-Don-t-leak-temporary-file-on-failed-ed-style-patch.patch
create mode 100644 meta/recipes-devtools/patch/patch/0001-Don-t-leak-temporary-file-on-failed-multi-file-ed.patch
create mode 100644 meta/recipes-devtools/patch/patch/0001-Invoke-ed-directly-instead-of-using-the-shell.patch
create mode 100644 meta/recipes-devtools/patch/patch/CVE-2019-13636.patch
create mode 100644 meta/recipes-devtools/python/python/CVE-2019-9740.patch
create mode 100644 meta/recipes-devtools/python/python3/CVE-2019-9740.patch
create mode 100644 meta/recipes-devtools/qemu/qemu/0014-linux-user-fix-to-handle-variably-sized-SIOCGSTAMP-w.patch
create mode 100644 meta/recipes-devtools/qemu/qemu/CVE-2018-20815.patch
create mode 100644 meta/recipes-devtools/rsync/files/CVE-2016-9840.patch
create mode 100644 meta/recipes-devtools/rsync/files/CVE-2016-9841.patch
create mode 100644 meta/recipes-devtools/rsync/files/CVE-2016-9842.patch
create mode 100644 meta/recipes-devtools/rsync/files/CVE-2016-9843.patch
create mode 100644 meta/recipes-extended/ghostscript/ghostscript/CVE-2019-3839-0008.patch
create mode 100644 meta/recipes-graphics/libsdl/libsdl-1.2.15/CVE-2019-7572.patch
create mode 100644 meta/recipes-graphics/libsdl/libsdl-1.2.15/CVE-2019-7574.patch
create mode 100644 meta/recipes-graphics/libsdl/libsdl-1.2.15/CVE-2019-7575.patch
create mode 100644 meta/recipes-graphics/libsdl/libsdl-1.2.15/CVE-2019-7576.patch
create mode 100644 meta/recipes-graphics/libsdl/libsdl-1.2.15/CVE-2019-7577.patch
create mode 100644 meta/recipes-graphics/libsdl/libsdl-1.2.15/CVE-2019-7578.patch
create mode 100644 meta/recipes-graphics/libsdl/libsdl-1.2.15/CVE-2019-7635.patch
create mode 100644 meta/recipes-graphics/libsdl/libsdl-1.2.15/CVE-2019-7637.patch
create mode 100644 meta/recipes-graphics/libsdl/libsdl-1.2.15/CVE-2019-7638.patch
rename meta/recipes-graphics/mesa/{mesa-gl_19.0.1.bb => mesa-gl_19.0.8.bb} (100%)
rename meta/recipes-graphics/mesa/{mesa_19.0.1.bb => mesa_19.0.8.bb} (85%)
create mode 100644 meta/recipes-graphics/pango/pango/CVE-2019-1010238.patch
create mode 100644 meta/recipes-kernel/powertop/powertop/0001-wakeup_xxx.h-include-limits.h.patch
create mode 100644 meta/recipes-multimedia/gstreamer/gstreamer1.0-vaapi/0001-libs-decoder-release-VA-buffers-after-vaEndPicture.patch
create mode 100644 meta/recipes-multimedia/gstreamer/gstreamer1.0-vaapi/0001-libs-encoder-jpeg-set-component-id-and-Tqi.patch
create mode 100644 meta/recipes-multimedia/libid3tag/libid3tag/unknown-encoding.patch
create mode 100644 meta/recipes-multimedia/libtiff/tiff/CVE-2019-6128.patch
create mode 100644 meta/recipes-multimedia/libtiff/tiff/CVE-2019-7663.patch
create mode 100644 meta/recipes-support/curl/curl/CVE-2019-5482.patch
create mode 100644 meta/recipes-support/libgpg-error/libgpg-error/libgpg-error-1.35-gawk5-support.patch
create mode 100644 meta/recipes-support/libxslt/files/CVE-2019-13117.patch
create mode 100644 meta/recipes-support/libxslt/files/CVE-2019-13118.patch
--
To stop receiving notification emails like this one, please contact
the administrator of this repository.
More information about the Openembedded-commits
mailing list