[OE-core] [PATCH 00/26] Krogoth-next: stagged changes

Armin Kuster akuster808 at gmail.com
Thu Sep 8 15:55:44 UTC 2016 

The following changes are being considered for krogoth-next.
If I am missing something, please let me know.

The following changes since commit aad7166704021d82ad3a5ec468552f8f10360d41:

  curl: security fix for CVE-2016-5421 (2016-09-02 08:48:29 +0100)

are available in the git repository at:

  http://git.yoctoproject.org/git/poky-contrib akuster/krogoth-next
  http://git.yoctoproject.org/cgit.cgi/poky-contrib/log/?h=akuster/krogoth-next

Alejandro Hernandez (1):
  initramfs-live-boot: Make sure we kill udev before switching root when
    live booting

Armin Kuster (2):
  tiff: Security fix CVE-2015-8781
  tiff: Security fix CVE-2015-8784

Henry Bruce (1):
  npm: npm.bbclass now adds nodejs to RDEPENDS

Jackie Huang (1):
  e2fsprogs: Fix missing check for permission denied.

Jacob Kroon (1):
  bitbake.conf/toolchain-scripts.bbclass: Remove debug prefix mappings
    in SDK

Jeremy Puhlman (2):
  Fix random python backtrace in mutlilib handling code.
  bitbake.conf: set READELF for cross compilation

Jonathan Liu (1):
  meta/classes: fix bb.build.FuncFailed typos

Khem Raj (3):
  python{3}-numpy: Predefine of sizeof off_t on mips/mipsel/ppc
  systemd: Create missing sysusers offline
  gdb: Cache gnu gettext config vars for musl builds

Markus Lehtonen (1):
  base.bbclass wipe ${S} before unpacking source

Pascal Bach (1):
  gcc, qemuppc: Explicitly disable forcing SPE flags for 4.9

Reinette Chatre (1):
  binutils: advance SRCREV to obtain versioned symbols

Richard Purdie (2):
  busybox: Backport makefile fix from upstream
  busybox: Add parallel make fix

Ross Burton (1):
  cml1: fix tasks after default [dirs] changed

Sona Sarmadi (2):
  sudo: CVE-2015-8239
  curl: security fix for CVE-2016-7141

Stefan Agner (1):
  busybox: Fix busybox-init on non-tty consoles

Stephano Cetola (1):
  systemd: allow add users as a rootfs postprocess cmd

Tanu Kaskinen (1):
  pulseaudio: fix crash when disconnecting bluetooth devices

Yi Zhao (3):
  tiff: Security fix CVE-2016-3186
  tiff: Security fix CVE-2016-5321
  tiff: Security fix CVE-2016-5323

 meta/classes/base.bbclass                          |  18 +-
 meta/classes/cml1.bbclass                          |   2 +
 meta/classes/grub-efi.bbclass                      |   2 +-
 meta/classes/gummiboot.bbclass                     |   4 +-
 meta/classes/multilib_global.bbclass               |   3 +-
 meta/classes/npm.bbclass                           |   1 +
 meta/classes/rootfs-postcommands.bbclass           |  43 +-
 meta/classes/syslinux.bbclass                      |   2 +-
 meta/classes/toolchain-scripts.bbclass             |   3 +
 meta/conf/bitbake.conf                             |   9 +-
 meta/recipes-core/busybox/busybox.inc              |   4 +-
 .../busybox/busybox/makefile-fix-backport.patch    |  40 ++
 .../busybox/busybox/parallel-make-fix.patch        |  65 ++
 meta/recipes-core/busybox/busybox_1.24.1.bb        |   2 +
 meta/recipes-core/initrdscripts/files/init-live.sh |   4 +-
 meta/recipes-core/systemd/systemd_229.bb           |   8 +-
 meta/recipes-devtools/binutils/binutils-2.26.inc   |   2 +-
 ...s-fix-missing-check-for-permission-denied.patch |  32 +
 meta/recipes-devtools/e2fsprogs/e2fsprogs_git.bb   |   3 +
 ...AltiVec-generation-on-powepc-linux-target.patch |  11 +
 meta/recipes-devtools/gdb/gdb_7.10.1.bb            |   5 +
 .../python/python-numpy/arm/numpyconfig.h          |   1 +
 .../python/python-numpy/mips/_numpyconfig.h        |   1 +
 .../python/python-numpy/powerpc/_numpyconfig.h     |   1 +
 .../sudo/sudo/CVE-2015-8239-1.patch                | 699 +++++++++++++++++++++
 .../sudo/sudo/CVE-2015-8239-2.patch                |  45 ++
 meta/recipes-extended/sudo/sudo_1.8.15.bb          |   2 +
 .../libtiff/files/CVE-2015-8781.patch              | 195 ++++++
 .../libtiff/files/CVE-2015-8784.patch              |  73 +++
 .../libtiff/files/CVE-2016-3186.patch              |  24 +
 .../libtiff/files/CVE-2016-5321.patch              |  49 ++
 .../libtiff/files/CVE-2016-5323.patch              | 107 ++++
 meta/recipes-multimedia/libtiff/tiff_4.0.6.bb      |   5 +
 ...th-don-t-create-the-HSP-HFP-profile-twice.patch | 343 ++++++++++
 .../pulseaudio/pulseaudio_8.0.bb                   |   1 +
 meta/recipes-support/curl/curl/CVE-2016-7141.patch |  50 ++
 meta/recipes-support/curl/curl_7.47.1.bb           |   1 +
 37 files changed, 1813 insertions(+), 47 deletions(-)
 create mode 100644 meta/recipes-core/busybox/busybox/makefile-fix-backport.patch
 create mode 100644 meta/recipes-core/busybox/busybox/parallel-make-fix.patch
 create mode 100644 meta/recipes-devtools/e2fsprogs/e2fsprogs/e2fsprogs-fix-missing-check-for-permission-denied.patch
 create mode 100644 meta/recipes-extended/sudo/sudo/CVE-2015-8239-1.patch
 create mode 100644 meta/recipes-extended/sudo/sudo/CVE-2015-8239-2.patch
 create mode 100644 meta/recipes-multimedia/libtiff/files/CVE-2015-8781.patch
 create mode 100644 meta/recipes-multimedia/libtiff/files/CVE-2015-8784.patch
 create mode 100644 meta/recipes-multimedia/libtiff/files/CVE-2016-3186.patch
 create mode 100644 meta/recipes-multimedia/libtiff/files/CVE-2016-5321.patch
 create mode 100644 meta/recipes-multimedia/libtiff/files/CVE-2016-5323.patch
 create mode 100644 meta/recipes-multimedia/pulseaudio/pulseaudio/0001-bluetooth-don-t-create-the-HSP-HFP-profile-twice.patch
 create mode 100644 meta/recipes-support/curl/curl/CVE-2016-7141.patch

-- 
2.7.4

More information about the Openembedded-core mailing list