[OE-core] [PATCH 0/4][jethro] Secuirty Fixes pull request

Fri Feb 5 14:53:19 UTC 2016

From: Armin Kuster <akuster at mvista.com>

please consider these changes for Jethro next.

foomatic-filters: Security fixes CVE-2015-8327 is version 2 as the recipe was not updated.

The following changes since commit ae1df825062fc841130622b8e154c6ed0f83f375:

  foomatic-filters: Security fix CVE-2015-8560 (2016-02-04 20:41:33 -0800)

are available in the git repository at:

  git://git.yoctoproject.org/poky-contrib akuster/jethro_cve_fixes
  http://git.yoctoproject.org/cgit.cgi/poky-contrib/log/?h=akuster/jethro_cve_fixes

Armin Kuster (4):
  foomatic-filters: Security fixes CVE-2015-8327
  libpng: Security fix CVE-2015-8126
  libpng: Security fix CVE-2015-8472
  socat: Security fix CVE-2016-2217

 .../socat/socat/CVE-2016-2217.patch                | 372 +++++++++++++++++++++
 meta/recipes-connectivity/socat/socat_1.7.3.0.bb   |   1 +
 .../foomatic-filters-4.0.17/CVE-2015-8327.patch    |  23 ++
 .../foomatic/foomatic-filters_4.0.17.bb            |   1 +
 .../libpng/libpng-1.6.17/CVE-2015-8126_1.patch     |  91 +++++
 .../libpng/libpng-1.6.17/CVE-2015-8126_2.patch     | 134 ++++++++
 .../libpng/libpng-1.6.17/CVE-2015-8126_3.patch     |  79 +++++
 .../libpng/libpng-1.6.17/CVE-2015-8126_4.patch     |  48 +++
 .../libpng/libpng-1.6.17/CVE-2015-8472.patch       |  29 ++
 meta/recipes-multimedia/libpng/libpng_1.6.17.bb    |   8 +
 10 files changed, 786 insertions(+)
 create mode 100644 meta/recipes-connectivity/socat/socat/CVE-2016-2217.patch
 create mode 100644 meta/recipes-extended/foomatic/foomatic-filters-4.0.17/CVE-2015-8327.patch
 create mode 100644 meta/recipes-multimedia/libpng/libpng-1.6.17/CVE-2015-8126_1.patch
 create mode 100644 meta/recipes-multimedia/libpng/libpng-1.6.17/CVE-2015-8126_2.patch
 create mode 100644 meta/recipes-multimedia/libpng/libpng-1.6.17/CVE-2015-8126_3.patch
 create mode 100644 meta/recipes-multimedia/libpng/libpng-1.6.17/CVE-2015-8126_4.patch
 create mode 100644 meta/recipes-multimedia/libpng/libpng-1.6.17/CVE-2015-8472.patch

-- 
2.3.5