[OE-core] [PATCH 00/25] Dizzy next for .3
Armin Kuster
akuster808 at gmail.com
Sat Jul 18 15:16:07 UTC 2015
Please consider these for the 1.7.3 release
The following changes since commit 5f0d25152bac2d3798663a4ebfdd2df24060f153:
openssl: upgrade to 1.0.1p (2015-07-15 15:25:43 +0100)
are available in the git repository at:
git://git.yoctoproject.org/poky-contrib akuster/dizzy-next
http://git.yoctoproject.org/cgit.cgi//log/?h=akuster/dizzy-nex
Andre McCurdy (1):
mesa: update --with-llvm-shared-libs configure option
Armin Kuster (3):
tzcode: update to 2015d
tzdata: update to 2015d
curl: add a few missing security fixes
Cristian Iorga (1):
neard: fix the install path in init scripts
Haris Okanovic (1):
glibc: CVE-2015-1781: resolv/nss_dns/dns-host.c buffer overflow
Jonathan Liu (1):
qt4: add patch for BMP denial-of-service vulnerability
Jussi Kukkonen (1):
dbus: CVE-2015-0245: prevent forged ActivationFailure
Kai Kang (2):
qemu: fix CVE-2015-3456
gpgme: fix CVE-2014-3564
Leonardo Sandoval (2):
rpm: Fix CVE-2014-8118
rpm: Fix CVE-2013-6435
Martin Jansa (3):
squashfs-tools: build and install unsquashfs as well
e2fsprogs: install populate-extfs.sh
test-dependencies.sh: strip only .bb suffix
Maxin B. John (1):
curl: several security fixes
Ng Wei Tee (1):
linux-firmware: Package Marvell pci8897 and usb8897 firmware
Robert Yang (2):
perf: add LIBNUMA_DEFINES
license.bbclass: set dirs for do_populate_lic_setscene
Roy Li (4):
ppp: Security Advisory - CVE-2015-3310
unzip: Security Advisory -CVE-2014-9636 and CVE-2015-1315
unzip: fix four CVE defects
unzip: drop 12-cve-2014-9636-test-compr-eb.patch
Yue Tao (2):
libsndfile: Security Advisory - libsndfile - CVE-2014-9496
libxml2: Security Advisory - libxml2 - CVE-2015-1819
meta/classes/license.bbclass | 2 +
meta/recipes-connectivity/neard/neard.inc | 2 +-
.../ppp/ppp/fix-CVE-2015-3310.patch | 29 ++
meta/recipes-connectivity/ppp/ppp_2.4.6.bb | 1 +
meta/recipes-core/dbus/dbus.inc | 1 +
...015-0245-prevent-forged-ActivationFailure.patch | 48 +++
...81-resolv-nss_dns-dns-host.c-buffer-overf.patch | 43 +++
meta/recipes-core/glibc/glibc_2.20.bb | 3 +
meta/recipes-core/libxml/libxml2.inc | 1 +
...19-Enforce-the-reader-to-run-in-constant-.patch | 181 +++++++++
.../recipes-devtools/e2fsprogs/e2fsprogs_1.42.9.bb | 2 +
.../qemu/qemu/qemu-CVE-2015-3456.patch | 92 +++++
meta/recipes-devtools/qemu/qemu_2.1.0.bb | 1 +
.../rpm/rpm/rpm-CVE-2013-6435.patch | 109 ++++++
.../rpm/rpm/rpm-CVE-2014-8118.patch | 43 +++
meta/recipes-devtools/rpm/rpm_4.11.2.bb | 2 +
.../squashfs-tools/squashfs-tools_4.3.bb | 3 +-
.../recipes-extended/tzcode/tzcode-native_2015d.bb | 11 +
meta/recipes-extended/tzdata/tzdata_2015d.bb | 6 +
.../06-unzip60-alt-iconv-utf8_CVE-2015-1315.patch | 402 ++++++++++++++++++++
.../unzip/09-cve-2014-8139-crc-overflow.patch | 52 +++
.../unzip/10-cve-2014-8140-test-compr-eb.patch | 33 ++
.../unzip/11-cve-2014-8141-getzip64data.patch | 144 +++++++
.../unzip/unzip/unzip-6.0_overflow3.diff | 45 +++
meta/recipes-extended/unzip/unzip_6.0.bb | 8 +-
meta/recipes-graphics/mesa/mesa.inc | 2 +-
.../linux-firmware/linux-firmware_git.bb | 19 +-
meta/recipes-kernel/perf/perf.bb | 4 +-
...src-sd2.c-Fix-segfault-in-SD2-RSRC-parser.patch | 211 +++++++++++
...c-Fix-two-potential-buffer-read-overflows.patch | 49 +++
.../libsndfile/libsndfile1_1.0.25.bb | 5 +-
meta/recipes-qt/qt4/qt4-4.8.6.inc | 1 +
...ion-by-zero-when-processing-malformed-BMP.patch | 44 +++
meta/recipes-support/curl/curl/CVE-2014-3707.patch | 416 +++++++++++++++++++++
meta/recipes-support/curl/curl/CVE-2014-8150.patch | 29 ++
meta/recipes-support/curl/curl/CVE-2015-3143.patch | 38 ++
meta/recipes-support/curl/curl/CVE-2015-3144.patch | 45 +++
meta/recipes-support/curl/curl/CVE-2015-3145.patch | 70 ++++
meta/recipes-support/curl/curl/CVE-2015-3153.patch | 90 +++++
meta/recipes-support/curl/curl_7.37.1.bb | 6 +
.../gpgme-1.4.3/gpgme-fix-CVE-2014-3564.patch | 56 +++
meta/recipes-support/gpgme/gpgme_1.4.3.bb | 4 +-
scripts/test-dependencies.sh | 4 +-
43 files changed, 2345 insertions(+), 12 deletions(-)
create mode 100644 meta/recipes-connectivity/ppp/ppp/fix-CVE-2015-3310.patch
create mode 100644 meta/recipes-core/dbus/dbus/CVE-2015-0245-prevent-forged-ActivationFailure.patch
create mode 100644 meta/recipes-core/glibc/glibc/CVE-2015-1781-resolv-nss_dns-dns-host.c-buffer-overf.patch
create mode 100644 meta/recipes-core/libxml/libxml2/0001-CVE-2015-1819-Enforce-the-reader-to-run-in-constant-.patch
create mode 100644 meta/recipes-devtools/qemu/qemu/qemu-CVE-2015-3456.patch
create mode 100644 meta/recipes-devtools/rpm/rpm/rpm-CVE-2013-6435.patch
create mode 100644 meta/recipes-devtools/rpm/rpm/rpm-CVE-2014-8118.patch
create mode 100644 meta/recipes-extended/tzcode/tzcode-native_2015d.bb
create mode 100644 meta/recipes-extended/tzdata/tzdata_2015d.bb
create mode 100644 meta/recipes-extended/unzip/unzip/06-unzip60-alt-iconv-utf8_CVE-2015-1315.patch
create mode 100644 meta/recipes-extended/unzip/unzip/09-cve-2014-8139-crc-overflow.patch
create mode 100644 meta/recipes-extended/unzip/unzip/10-cve-2014-8140-test-compr-eb.patch
create mode 100644 meta/recipes-extended/unzip/unzip/11-cve-2014-8141-getzip64data.patch
create mode 100644 meta/recipes-extended/unzip/unzip/unzip-6.0_overflow3.diff
create mode 100644 meta/recipes-multimedia/libsndfile/files/0001-src-sd2.c-Fix-segfault-in-SD2-RSRC-parser.patch
create mode 100644 meta/recipes-multimedia/libsndfile/files/0001-src-sd2.c-Fix-two-potential-buffer-read-overflows.patch
create mode 100644 meta/recipes-qt/qt4/qt4-4.8.6/0034-Fix-a-division-by-zero-when-processing-malformed-BMP.patch
create mode 100644 meta/recipes-support/curl/curl/CVE-2014-3707.patch
create mode 100644 meta/recipes-support/curl/curl/CVE-2014-8150.patch
create mode 100644 meta/recipes-support/curl/curl/CVE-2015-3143.patch
create mode 100644 meta/recipes-support/curl/curl/CVE-2015-3144.patch
create mode 100644 meta/recipes-support/curl/curl/CVE-2015-3145.patch
create mode 100644 meta/recipes-support/curl/curl/CVE-2015-3153.patch
create mode 100644 meta/recipes-support/gpgme/gpgme-1.4.3/gpgme-fix-CVE-2014-3564.patch
--
1.9.1
More information about the Openembedded-core
mailing list