[OE-core] [CONSOLIDATED PULL 00/24] Updated with CVE set
Saul Wold
sgw at linux.intel.com
Tue May 20 17:41:27 UTC 2014
On 05/20/2014 10:37 AM, Saul Wold wrote:
> Richard,
>
> This contains the set from yesterday, plus additional updates
> and the first load of CVE patches (most will be back ported to
> daisy).
>
> Sau!
>
> The following changes since commit be0327b6a900be5434b6b1f08277faf2f65d5da8:
>
> initrdscripts: fix for /run/media (2014-05-20 14:53:00 +0100)
>
> are available in the git repository at:
>
> git://git.openembedded.org/openembedded-core-contrib sgw/stage
> http://cgit.openembedded.org/cgit.cgi/openembedded-core-contrib/log/?h=sgw/stage
>
> Chen Qi (1):
> runqemu-internal: add "console=ttyS0" to ramfs image kernel parameters
>
> Chong Lu (2):
> libpcre: Update to 8.35 version
> quilt: Update to 0.63 version
>
> Cristian Iorga (1):
> harfbuzz: upgrade to 0.9.28
>
> João Henrique Ferreira de Freitas (2):
> wic: add support to look in all layers and get .wks file
> wic: add support to look in all layers and get plugins
>
> Khem Raj (1):
> tcmode-default.inc: Default to using gcc 4.9
>
Oops, this one slipped past me, I have removed it from the
oe-contrib/sgw/stage branch.
We are still testing with it, but waiting for the PPC issue to be
resolved before enabling it in master.
Sau!
> Koen Kooi (1):
> curl: work around RRECOMMENDS problems in -native* recipes
>
> Li Wang (2):
> nss: CVE-2014-1492
> nss: CVE-2013-1740
>
> Martin Jansa (1):
> lttng-modules: Fix build with older kernels
>
> Paul Eggleton (2):
> libav: upgrade 0.8.x version to 0.8.11
> libav: upgrade 9.x version to 9.13
>
> Saul Wold (1):
> cups: fix for cups not building without avahi
>
> Yue Tao (10):
> Screen: fix for Security Advisory CVE-2009-1214
> screen: fix for Security Advisory CVE-2009-1215
> subversion: fix for Security Advisory CVE-2013-1849
> subversion: fix for Security Advisory CVE-2013-4505
> subversion: fix for Security Advisory CVE-2013-4131
> subversion: fix for Security Advisory CVE-2013-1845
> subversion: fix for Security Advisory CVE-2013-1847 and CVE-2013-1846
> subversion: fix for Security Advisory CVE-2013-4277
> tiff: fix for Security Advisory CVE-2013-4231
> openssl: fix for CVE-2010-5298
>
> meta/conf/distro/include/tcmode-default.inc | 2 +-
> .../openssl-1.0.1e/openssl-CVE-2010-5298.patch | 24 +
> .../quilt/{quilt-0.61.inc => quilt-0.63.inc} | 5 +-
> .../{quilt-native_0.61.bb => quilt-native_0.63.bb} | 0
> .../quilt/{quilt_0.61.bb => quilt_0.63.bb} | 0
> .../subversion-CVE-2013-4131.patch | 42 +
> .../subversion-CVE-2013-4277.patch | 15 +
> .../subversion-CVE-2013-4505.patch | 130 +++
> .../subversion/subversion-CVE-2013-1845.patch | 171 ++++
> .../subversion-CVE-2013-1847-CVE-2013-1846.patch | 53 ++
> .../subversion/subversion-CVE-2013-1849.patch | 25 +
> .../subversion/subversion-CVE-2013-4277.patch | 15 +
> .../subversion/subversion-CVE-2013-4505.patch | 127 +++
> .../subversion/subversion_1.6.15.bb | 6 +-
> .../subversion/subversion_1.7.10.bb | 3 +
> meta/recipes-extended/cups/cups/cups-str4402.patch | 190 +++++
> .../screen-4.0.3/screen-4.0.2-CVE-2009-1215.patch | 27 +
> .../screen-4.0.3/screen-4.0.3-CVE-2009-1214.patch | 86 ++
> meta/recipes-extended/screen/screen_4.0.3.bb | 2 +
> .../{harfbuzz_0.9.27.bb => harfbuzz_0.9.28.bb} | 8 +-
> .../lttng/lttng-modules/bio-bvec-iter.patch | 156 ++++
> .../lttng/lttng-modules/fixup_block_driver.patch | 122 ---
> meta/recipes-kernel/lttng/lttng-modules_2.3.3.bb | 2 +-
> .../libav/{libav_0.8.9.bb => libav_0.8.11.bb} | 4 +-
> .../libav/{libav_9.10.bb => libav_9.13.bb} | 4 +-
> .../libtiff/files/libtiff-CVE-2013-4231.patch | 44 +
> meta/recipes-multimedia/libtiff/tiff_4.0.3.bb | 3 +-
> meta/recipes-support/curl/curl_7.36.0.bb | 7 +-
> .../libpcre/{libpcre_8.34.bb => libpcre_8.35.bb} | 6 +-
> .../nss/files/nss-CVE-2013-1740.patch | 916 +++++++++++++++++++++
> .../nss/files/nss-CVE-2014-1492.patch | 68 ++
> meta/recipes-support/nss/nss.inc | 2 +
> scripts/lib/image/engine.py | 72 +-
> scripts/lib/mic/plugin.py | 28 +-
> scripts/runqemu-internal | 2 +-
> scripts/wic | 6 +
> 36 files changed, 2196 insertions(+), 177 deletions(-)
> create mode 100644 meta/recipes-connectivity/openssl/openssl-1.0.1e/openssl-CVE-2010-5298.patch
> rename meta/recipes-devtools/quilt/{quilt-0.61.inc => quilt-0.63.inc} (89%)
> rename meta/recipes-devtools/quilt/{quilt-native_0.61.bb => quilt-native_0.63.bb} (100%)
> rename meta/recipes-devtools/quilt/{quilt_0.61.bb => quilt_0.63.bb} (100%)
> create mode 100644 meta/recipes-devtools/subversion/subversion-1.7.10/subversion-CVE-2013-4131.patch
> create mode 100644 meta/recipes-devtools/subversion/subversion-1.7.10/subversion-CVE-2013-4277.patch
> create mode 100644 meta/recipes-devtools/subversion/subversion-1.7.10/subversion-CVE-2013-4505.patch
> create mode 100644 meta/recipes-devtools/subversion/subversion/subversion-CVE-2013-1845.patch
> create mode 100644 meta/recipes-devtools/subversion/subversion/subversion-CVE-2013-1847-CVE-2013-1846.patch
> create mode 100644 meta/recipes-devtools/subversion/subversion/subversion-CVE-2013-1849.patch
> create mode 100644 meta/recipes-devtools/subversion/subversion/subversion-CVE-2013-4277.patch
> create mode 100644 meta/recipes-devtools/subversion/subversion/subversion-CVE-2013-4505.patch
> create mode 100644 meta/recipes-extended/cups/cups/cups-str4402.patch
> create mode 100644 meta/recipes-extended/screen/screen-4.0.3/screen-4.0.2-CVE-2009-1215.patch
> create mode 100644 meta/recipes-extended/screen/screen-4.0.3/screen-4.0.3-CVE-2009-1214.patch
> rename meta/recipes-graphics/harfbuzz/{harfbuzz_0.9.27.bb => harfbuzz_0.9.28.bb} (87%)
> create mode 100644 meta/recipes-kernel/lttng/lttng-modules/bio-bvec-iter.patch
> delete mode 100644 meta/recipes-kernel/lttng/lttng-modules/fixup_block_driver.patch
> rename meta/recipes-multimedia/libav/{libav_0.8.9.bb => libav_0.8.11.bb} (79%)
> rename meta/recipes-multimedia/libav/{libav_9.10.bb => libav_9.13.bb} (74%)
> create mode 100644 meta/recipes-multimedia/libtiff/files/libtiff-CVE-2013-4231.patch
> rename meta/recipes-support/libpcre/{libpcre_8.34.bb => libpcre_8.35.bb} (91%)
> create mode 100644 meta/recipes-support/nss/files/nss-CVE-2013-1740.patch
> create mode 100644 meta/recipes-support/nss/files/nss-CVE-2014-1492.patch
>
More information about the Openembedded-core
mailing list