[OE-core] [PATCH 3/3] git: update to 2.8.1
Paul Eggleton
paul.eggleton at linux.intel.com
Tue Apr 19 02:44:15 UTC 2016
On the other hand, AFAICT we are currently still vulnerable to a remote code
execution issue:
https://ma.ttias.be/remote-code-execution-git-versions-client-server-2-7-1-cve-2016-2324-cve-2016-2315/
Given we provide git for native use in the buildtools as well as on target
I think we really ought to be addressing this before release. Whether we
should do that by upgrading to 2.7.4 or attempting to apply patches I'm
not sure.
Cheers,
Paul
On Tue, 12 Apr 2016 13:48:26 Dan McGregor wrote:
> Works for me. I'm not in a hurry.
>
> On 12 April 2016 at 13:41, Burton, Ross <ross.burton at intel.com> wrote:
> > Far too late for master/krogoth, this can be merged after they've
> > branched.
> >
> > Ross
> >
> > On 12 April 2016 at 19:25, Dan McGregor <danismostlikely at gmail.com> wrote:
> >> From: Dan McGregor <dan.mcgregor at usask.ca>
> >>
> >> Signed-off-by: Dan McGregor <dan.mcgregor at usask.ca>
> >> ---
> >>
> >> meta/recipes-devtools/git/git_2.7.2.bb | 11 -----------
> >> meta/recipes-devtools/git/git_2.8.1.bb | 11 +++++++++++
> >> 2 files changed, 11 insertions(+), 11 deletions(-)
> >> delete mode 100644 meta/recipes-devtools/git/git_2.7.2.bb
> >> create mode 100644 meta/recipes-devtools/git/git_2.8.1.bb
> >>
> >> diff --git a/meta/recipes-devtools/git/git_2.7.2.bb
> >> b/meta/recipes-devtools/git/git_2.7.2.bb
> >> deleted file mode 100644
> >> index 3fd7151..0000000
> >> --- a/meta/recipes-devtools/git/git_2.7.2.bb
> >> +++ /dev/null
> >> @@ -1,11 +0,0 @@
> >> -require git.inc
> >> -
> >> -EXTRA_OECONF += "ac_cv_snprintf_returns_bogus=no \
> >> -
> >> ac_cv_fread_reads_directories=${ac_cv_fread_reads_directories=yes} \
> >> - "
> >> -EXTRA_OEMAKE += "NO_GETTEXT=1"
> >> -
> >> -SRC_URI[tarball.md5sum] = "162ddc6c9b243899ad67ebd6b1c166b1"
> >> -SRC_URI[tarball.sha256sum] =
> >> "58959e3ef3046403216a157dfc683c4d7f0dd83365463b8dd87063ded940a0df"
> >> -SRC_URI[manpages.md5sum] = "7bb067d6363f537b92c3b8b813ff9ed6"
> >> -SRC_URI[manpages.sha256sum] =
> >> "e6b5481fd6e24a1d1b155ef17363b313d47025bf6da880737fa872ab78e24f15"
> >> diff --git a/meta/recipes-devtools/git/git_2.8.1.bb
> >> b/meta/recipes-devtools/git/git_2.8.1.bb
> >> new file mode 100644
> >> index 0000000..8978b72
> >> --- /dev/null
> >> +++ b/meta/recipes-devtools/git/git_2.8.1.bb
> >> @@ -0,0 +1,11 @@
> >> +require git.inc
> >> +
> >> +EXTRA_OECONF += "ac_cv_snprintf_returns_bogus=no \
> >> +
> >> ac_cv_fread_reads_directories=${ac_cv_fread_reads_directories=yes} \
> >> + "
> >> +EXTRA_OEMAKE += "NO_GETTEXT=1"
> >> +
> >> +SRC_URI[tarball.md5sum] = "1a12555182c1e9f781bc30a5c5f9515e"
> >> +SRC_URI[tarball.sha256sum] =
> >> "cfc66324179b9ed62ee02833f29d39935f4ab66874125a3ab9d5bb9055c0cb67"
> >> +SRC_URI[manpages.md5sum] = "60552f15a90b9fcdc1b92b222e2d2379"
> >> +SRC_URI[manpages.sha256sum] =
> >> "df46de0c172049f935cc3736361b263c5ff289b77077c73053e63ae83fcf43f4"
> >> --
> >> 2.8.1
> >>
> >> --
> >> _______________________________________________
> >> Openembedded-core mailing list
> >> Openembedded-core at lists.openembedded.org
> >> http://lists.openembedded.org/mailman/listinfo/openembedded-core
--
Paul Eggleton
Intel Open Source Technology Centre
More information about the Openembedded-core
mailing list