aboutsummaryrefslogtreecommitdiffstats
Commit message (Collapse)AuthorAgeFilesLines
* wireshark: Update Package to 2.2.12stable/pyro-nextArmin Kuster2018-02-091-2/+2
| | | | | | | | | | | | | | | Includes: wnpa-sec-2018-01, Multiple dissectors could crash. (Bug 14253) CVE-2018-5336 wnpa-sec-2018-02, The MRDISC dissector could crash. (Bug 14299, Bug 13707) CVE-2017-17997 wnpa-sec-2018-03, The IxVeriWave file parser could crash. (Bug 14297) CVE-2018-5334 wnpa-sec-2018-04, The WCP dissector could crash. (Bug 14251) CVE-2018-5335 Full release notes: https://www.wireshark.org/docs/relnotes/wireshark-2.2.12.html Signed-off-by: Armin Kuster <akuster808@gmail.com>
* wireshark: Update to 2.2.11Armin Kuster2018-02-091-3/+3
| | | | | | | | | | | | | | | | | | | | | | | changed --with-ssh to --with-libssh=DIR includes: wnpa-sec-2017-47 : CVE-2017-17084 The IWARP_MPA dissector could crash. (Bug 14236) wnpa-sec-2017-48 : CVE-2017-17083 The NetBIOS dissector could crash. (Bug 14249) wnpa-sec-2017-49 : CVE-2017-17085 The CIP Safety dissector could crash. (Bug 14250) release notes: https://www.wireshark.org/docs/relnotes/wireshark-2.2.11.html Signed-off-by: Armin Kuster <akuster@mvista.com> Signed-off-by: Armin Kuster <akuster808@gmail.com> Signed-off-by: Joe MacDonald <joe_macdonald@mentor.com> Signed-off-by: Armin Kuster <akuster808@gmail.com>
* wireshark: update to 2.2.10Armin Kuster2018-02-091-2/+2
| | | | | | | | | | | | | | | The following vulnerabilities have been fixed: * [1]wnpa-sec-2017-42 BT ATT dissector crash ([2]Bug 14049) [3]CVE-2017-15192 * [4]wnpa-sec-2017-43 MBIM dissector crash ([5]Bug 14056) [6]CVE-2017-15193 * [7]wnpa-sec-2017-44 DMP dissector crash ([8]Bug 14068) [9]CVE-2017-15191 Signed-off-by: Armin Kuster <akuster808@gmail.com> Signed-off-by: Martin Jansa <Martin.Jansa@gmail.com> Signed-off-by: Joe MacDonald <joe_macdonald@mentor.com> Signed-off-by: Armin Kuster <akuster808@gmail.com>
* dnsmasq: update SRC_URI for versions 2.69 and earlierAndre McCurdy2018-02-091-2/+2
| | | | | | | | | | Versions 2.16 to 2.69 have now also moved into the archives folder. Signed-off-by: Andre McCurdy <armccurdy@gmail.com> Signed-off-by: Armin Kuster <akuster808@gmail.com> Signed-off-by: Joe MacDonald <joe_macdonald@mentor.com> (cherry picked from commit d338d219dfbcbbdd133c7d4364bc8a1b19835e0b) Signed-off-by: Armin Kuster <akuster808@gmail.com>
* dnsmasq: upgrade to 2.78Paul Eggleton2018-02-093-17/+18
| | | | | | | | | | | | | | | | | | | | | | This update fixes a number of bugs including the following vulnerabilities: CVE-2017-13704 CVE-2017-14491 CVE-2017-14492 CVE-2017-14493 CVE-2017-14494 CVE-2017-14495 CVE-2017-14496 Further details can be found in the changelog here: http://www.thekelleys.org.uk/dnsmasq/CHANGELOG Signed-off-by: Paul Eggleton <paul.eggleton@linux.intel.com> Signed-off-by: Martin Jansa <Martin.Jansa@gmail.com> Signed-off-by: Joe MacDonald <joe_macdonald@mentor.com> Signed-off-by: Armin Kuster <akuster808@gmail.com>
* opencv: fix runtime dependencies.Ismo Puustinen2017-10-271-1/+1
| | | | | | | | | | The newly split "libopencv-ts" package is empty (and thus not created), because all ts files are installed in the development package. So, do not add a runtime dependency to libopencv-ts. Signed-off-by: Ismo Puustinen <ismo.puustinen@intel.com> Signed-off-by: Martin Jansa <Martin.Jansa@gmail.com> Signed-off-by: Armin Kuster <akuster808@gmail.com>
* sip: update recipe to 4.19.2.Philip Balister2017-10-161-2/+2
| | | | | | | | | * Needed for PyQt-5.8.2, a recipe I am looking at again. Signed-off-by: Philip Balister <philip@balister.org> Signed-off-by: Martin Jansa <Martin.Jansa@gmail.com> (cherry picked from commit 229f824568406df354bc857b31989a7777d778bb) Signed-off-by: Armin Kuster <akuster808@gmail.com>
* hostapd: fix WPA2 key replay security bugMark Hatle2017-10-162-0/+985
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Note, hostapd and wpa_supplicant use the same sources. This commit is based on Ross Burton's change to OpenEmbedded-core. Below is Ross's commit message from OpenEmbedded-Core. WPA2 is vulnerable to replay attacks which result in unauthenticated users having access to the network. * CVE-2017-13077: reinstallation of the pairwise key in the Four-way handshake * CVE-2017-13078: reinstallation of the group key in the Four-way handshake * CVE-2017-13079: reinstallation of the integrity group key in the Four-way handshake * CVE-2017-13080: reinstallation of the group key in the Group Key handshake * CVE-2017-13081: reinstallation of the integrity group key in the Group Key handshake * CVE-2017-13082: accepting a retransmitted Fast BSS Transition Reassociation Request and reinstalling the pairwise key while processing it * CVE-2017-13086: reinstallation of the Tunneled Direct-Link Setup (TDLS) PeerKey (TPK) key in the TDLS handshake * CVE-2017-13087: reinstallation of the group key (GTK) when processing a Wireless Network Management (WNM) Sleep Mode Response frame * CVE-2017-13088: reinstallation of the integrity group key (IGTK) when processing a Wireless Network Management (WNM) Sleep Mode Response frame Backport patches from upstream to resolve these CVEs. Signed-off-by: Ross Burton <ross.burton@intel.com> The hunk: [PATCH 7/8] WNM: Ignore WNM-Sleep Mode Response without pending request does not apply to hostapd and was removed from the patch. Signed-off-by: Mark Hatle <mark.hatle@windriver.com> Signed-off-by: Martin Jansa <Martin.Jansa@gmail.com> (cherry picked from commit ed6b5da8740034faf599010c12e3dc77e5490cd4) Signed-off-by: Armin Kuster <akuster808@gmail.com>
* wireshark: update to 2.2.9Armin Kuster2017-09-181-3/+3
| | | | | | | | | | | | | | | | | | | | Change LIC_FILES_CHKSUM from README.linux to COPYING as COPYING contains the license info 2.2.9 security fixes: wnpa-sec-2017-38 MSDP dissector infinite loop (Bug 13933) CVE-2017-13767 wnpa-sec-2017-39 Profinet I/O buffer overrun (Bug 13847) CVE-2017-13766 wnpa-sec-2017-41 IrCOMM dissector buffer overrun (Bug 13929) CVE-2017-13765 Signed-off-by: Armin Kuster <akuster808@gmail.com> Signed-off-by: Martin Jansa <Martin.Jansa@gmail.com> Signed-off-by: Joe MacDonald <joe_macdonald@mentor.com> (cherry picked from commit c6928f15d93a1546c47116b3244893b9f813e6e1) Signed-off-by: Armin Kuster <akuster808@gmail.com>
* wireshark: 2.2.7 -> 2.2.8Kai Kang2017-09-181-2/+2
| | | | | | | | | | | | | | | | | | | | | | | | | | | | Signed-off-by: Kai Kang <kai.kang@windriver.com> Signed-off-by: Martin Jansa <Martin.Jansa@gmail.com> Signed-off-by: Joe MacDonald <joe_macdonald@mentor.com> (cherry picked from commit 3ca10e7d924d94d85783dc7440096a7dab72b978) Bug fix only: Including these security fixes: wnpa-sec-2017-13 WBMXL dissector infinite loop (Bug 13477, Bug 13796) CVE-2017-7702, CVE-2017-11410 Note: This is an update for a fix in Wireshark 2.2.6 and 2.0.12. wnpa-sec-2017-28 openSAFETY dissector memory exhaustion (Bug 13649, Bug 13755) CVE-2017-9350, CVE-2017-11411 Note: This is an update for a fix in Wireshark 2.2.7. wnpa-sec-2017-34 AMQP dissector crash. (Bug 13780) CVE-2017-11408 wnpa-sec-2017-35 MQ dissector crash. (Bug 13792) CVE-2017-11407 wnpa-sec-2017-36 DOCSIS infinite loop. (Bug 13797) CVE-2017-11406 Signed-off-by: Armin Kuster <akuster808@gmail.com>
* tcpdump: update to 4.9.2 to fix CVEsWenzong Fan2017-09-181-2/+2
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Refer to http://www.tcpdump.org/tcpdump-changes.txt: Fix buffer overflow vulnerabilities: CVE-2017-11543 (SLIP) CVE-2017-13011 (bittok2str_internal) Fix infinite loop vulnerabilities: CVE-2017-12989 (RESP) CVE-2017-12990 (ISAKMP) CVE-2017-12995 (DNS) CVE-2017-12997 (LLDP) Fix buffer over-read vulnerabilities: CVE-2017-11541 (safeputs) CVE-2017-11542 (PIMv1) CVE-2017-12893 (SMB/CIFS) CVE-2017-12894 (lookup_bytestring) CVE-2017-12895 (ICMP) CVE-2017-12896 (ISAKMP) CVE-2017-12897 (ISO CLNS) CVE-2017-12898 (NFS) CVE-2017-12899 (DECnet) CVE-2017-12900 (tok2strbuf) CVE-2017-12901 (EIGRP) CVE-2017-12902 (Zephyr) CVE-2017-12985 (IPv6) CVE-2017-12986 (IPv6 routing headers) CVE-2017-12987 (IEEE 802.11) CVE-2017-12988 (telnet) CVE-2017-12991 (BGP) CVE-2017-12992 (RIPng) CVE-2017-12993 (Juniper) CVE-2017-11542 (PIMv1) CVE-2017-11541 (safeputs) CVE-2017-12994 (BGP) CVE-2017-12996 (PIMv2) CVE-2017-12998 (ISO IS-IS) CVE-2017-12999 (ISO IS-IS) CVE-2017-13000 (IEEE 802.15.4) CVE-2017-13001 (NFS) CVE-2017-13002 (AODV) CVE-2017-13003 (LMP) CVE-2017-13004 (Juniper) CVE-2017-13005 (NFS) CVE-2017-13006 (L2TP) CVE-2017-13007 (Apple PKTAP) CVE-2017-13008 (IEEE 802.11) CVE-2017-13009 (IPv6 mobility) CVE-2017-13010 (BEEP) CVE-2017-13012 (ICMP) CVE-2017-13013 (ARP) CVE-2017-13014 (White Board) CVE-2017-13015 (EAP) CVE-2017-11543 (SLIP) CVE-2017-13016 (ISO ES-IS) CVE-2017-13017 (DHCPv6) CVE-2017-13018 (PGM) CVE-2017-13019 (PGM) CVE-2017-13020 (VTP) CVE-2017-13021 (ICMPv6) CVE-2017-13022 (IP) CVE-2017-13023 (IPv6 mobility) CVE-2017-13024 (IPv6 mobility) CVE-2017-13025 (IPv6 mobility) CVE-2017-13026 (ISO IS-IS) CVE-2017-13027 (LLDP) CVE-2017-13028 (BOOTP) CVE-2017-13029 (PPP) CVE-2017-13030 (PIM) CVE-2017-13031 (IPv6 fragmentation header) CVE-2017-13032 (RADIUS) CVE-2017-13033 (VTP) CVE-2017-13034 (PGM) CVE-2017-13035 (ISO IS-IS) CVE-2017-13036 (OSPFv3) CVE-2017-13037 (IP) CVE-2017-13038 (PPP) CVE-2017-13039 (ISAKMP) CVE-2017-13040 (MPTCP) CVE-2017-13041 (ICMPv6) CVE-2017-13042 (HNCP) CVE-2017-13043 (BGP) CVE-2017-13044 (HNCP) CVE-2017-13045 (VQP) CVE-2017-13046 (BGP) CVE-2017-13047 (ISO ES-IS) CVE-2017-13048 (RSVP) CVE-2017-13049 (Rx) CVE-2017-13050 (RPKI-Router) CVE-2017-13051 (RSVP) CVE-2017-13052 (CFM) CVE-2017-13053 (BGP) CVE-2017-13054 (LLDP) CVE-2017-13055 (ISO IS-IS) CVE-2017-13687 (Cisco HDLC) CVE-2017-13688 (OLSR) CVE-2017-13689 (IKEv1) CVE-2017-13690 (IKEv2) CVE-2017-13725 (IPv6 routing headers) Signed-off-by: Wenzong Fan <wenzong.fan@windriver.com> Signed-off-by: Martin Jansa <Martin.Jansa@gmail.com> (cherry picked from commit b5c46e9f8e078e98d4888d5ce8749ca126bbd1cc) Signed-off-by: Armin Kuster <akuster808@gmail.com>
* tcpdump: update to 4.9.1 to fix CVE-2017-11108Wenzong Fan2017-09-181-2/+2
| | | | | | | | | | | | | | | | | Summary for 4.9.1 tcpdump release CVE-2017-11108/Fix bounds checking for STP. Make assorted documentation updates and fix a few typos in tcpdump output. Fixup -C for file size >2GB (GH #488). Show AddressSanitizer presence in version output. Fix a bug in test scripts (exposed in GH #613). On FreeBSD adjust Capsicum capabilities for netmap. On Linux fix a use-after-free when the requested interface does not exist. Signed-off-by: Wenzong Fan <wenzong.fan@windriver.com> Signed-off-by: Martin Jansa <Martin.Jansa@gmail.com> Signed-off-by: Joe MacDonald <joe_macdonald@mentor.com> (cherry picked from commit 60b416317225d76e9374cb63807f1e1831f9f671) Signed-off-by: Armin Kuster <akuster808@gmail.com>
* tbb: fix compile issueArmin Kuster2017-09-171-0/+1
| | | | | | | | /ld: error: pipeline.o: requires dynamic R_X86_64_PC32 reloc against '_ZTVN3tbb8pipelineE' which may overflow at runtime; recompile with -fPIC idea taken from Master Signed-off-by: Armin Kuster <akuster808@gmail.com>
* synergy: update SRC_URIArmin Kuster2017-09-171-1/+1
| | | | | | | | repo moved and got renamed WARNING: synergy-1.7.3+1.7.4-rc8+AUTOINC+588fb4b805-r0 do_fetch: Failed to fetch URL git://github.com/synergy/synergy.git;protocol=http, attempting MIRRORS if available Signed-off-by: Armin Kuster <akuster808@gmail.com>
* netkit-rpc: Link libtirpc on muslKhem Raj2017-09-171-0/+4
| | | | | | | | Signed-off-by: Khem Raj <raj.khem@gmail.com> Signed-off-by: Martin Jansa <Martin.Jansa@gmail.com> Signed-off-by: Joe MacDonald <joe_macdonald@mentor.com> (cherry picked from commit 58db2c981b8cea7f0b4a47a2cd4bb3251cc33e37) Signed-off-by: Armin Kuster <akuster808@gmail.com>
* netkit-ftp: Include sys/types.h for u_long definitionKhem Raj2017-09-172-3/+34
| | | | | | | | Signed-off-by: Khem Raj <raj.khem@gmail.com> Signed-off-by: Martin Jansa <Martin.Jansa@gmail.com> Signed-off-by: Joe MacDonald <joe_macdonald@mentor.com> (cherry picked from commit 431120f77cc6fe4b092f8a750363acbf8cf58396) Signed-off-by: Armin Kuster <akuster808@gmail.com>
* openflow: Fix build with muslKhem Raj2017-09-134-2/+129
| | | | | | | | | | Regenerate configure before running oe_runconf Signed-off-by: Khem Raj <raj.khem@gmail.com> Signed-off-by: Martin Jansa <Martin.Jansa@gmail.com> Signed-off-by: Joe MacDonald <joe_macdonald@mentor.com> (cherry picked from commit a669e44708e985f717b6af876fe5e5e24e9afa17) Signed-off-by: Armin Kuster <akuster808@gmail.com>
* zeroconf: Fix build with muslKhem Raj2017-09-132-1/+72
| | | | | | | | Signed-off-by: Khem Raj <raj.khem@gmail.com> Signed-off-by: Martin Jansa <Martin.Jansa@gmail.com> Signed-off-by: Joe MacDonald <joe_macdonald@mentor.com> (cherry picked from commit 48bce13c9b47ddd149f690b81606248dc6c47fc4) Signed-off-by: Armin Kuster <akuster808@gmail.com>
* netkit-telnet: Fix build with hardeningKhem Raj2017-09-132-5/+72
| | | | | | | | Signed-off-by: Khem Raj <raj.khem@gmail.com> Signed-off-by: Martin Jansa <Martin.Jansa@gmail.com> Signed-off-by: Joe MacDonald <joe_macdonald@mentor.com> (cherry picked from commit 6b0fb999ac3bacb0e52b03b1198e2ead6ae95ec8) Signed-off-by: Armin Kuster <akuster808@gmail.com>
* netkit-rpc: Fix build with hardening flagsKhem Raj2017-09-132-1/+54
| | | | | | | | Signed-off-by: Khem Raj <raj.khem@gmail.com> Signed-off-by: Martin Jansa <Martin.Jansa@gmail.com> Signed-off-by: Joe MacDonald <joe_macdonald@mentor.com> (cherry picked from commit e244c28893e4e2e635a14f729616d1a975b21ab9) Signed-off-by: Armin Kuster <akuster808@gmail.com>
* netkit-tftp: Fix build with muslKhem Raj2017-09-132-3/+31
| | | | | | | | Signed-off-by: Khem Raj <raj.khem@gmail.com> Signed-off-by: Martin Jansa <Martin.Jansa@gmail.com> Signed-off-by: Joe MacDonald <joe_macdonald@mentor.com> (cherry picked from commit 0ede604e78bc88c654b596e825b2bca1e687c398) Signed-off-by: Armin Kuster <akuster808@gmail.com>
* netkit-rwho: Fix build with muslKhem Raj2017-09-133-1/+120
| | | | | | | | Signed-off-by: Khem Raj <raj.khem@gmail.com> Signed-off-by: Martin Jansa <Martin.Jansa@gmail.com> Signed-off-by: Joe MacDonald <joe_macdonald@mentor.com> (cherry picked from commit 3f8e49845026ad14aabba76685540e40b8e57b70) Signed-off-by: Armin Kuster <akuster808@gmail.com>
* gitver: skip packages instead of panic()ing if ${GITVER} fails to expandAlejandro Mery2017-09-131-13/+10
| | | | | | | | | | | | | | | | | `inherit externalsrc gitver` is a very useful combo to get development trees in your workspace having a ${PN}_git.bb with PV=${GITVER} coexisting with a regular ${PN}_${PV}.bb but not everyone wants to checkout all developments sources and managinging different layers for each options is quite troublesome. making `gitver` skip the .bb instead of panic()ing every time EXTERNALSRC is missing allows people to have a single development layer where packages get enabled if the right sources are present or falling back to the last release if not Signed-off-by: Alejandro Mery <amery@hanoverdisplays.com> Signed-off-by: Martin Jansa <Martin.Jansa@gmail.com> Signed-off-by: Armin Kuster <akuster808@gmail.com>
* gitver: fix broken ${GITSHA} and recursion in S when PV="${GITVER}"Alejandro Mery2017-09-131-4/+14
| | | | | | | Signed-off-by: Alejandro Mery <amery@hanoverdisplays.com> Signed-off-by: Martin Jansa <Martin.Jansa@gmail.com> (cherry picked from commit 0ce424ded8c28a0122cbcde1836b341bca53e8dd) Signed-off-by: Armin Kuster <akuster808@gmail.com>
* gitver: extend class to use EXTERNALSRC if setAlejandro Mery2017-09-131-2/+4
| | | | | | | Signed-off-by: Alejandro Mery <amery@hanoverdisplays.com> Signed-off-by: Martin Jansa <Martin.Jansa@gmail.com> (cherry picked from commit c4731b2a5a8af54d78ce2735c1c488e5b8183863) Signed-off-by: Armin Kuster <akuster808@gmail.com>
* krb5: fix CVE-2017-11368Kai Kang2017-09-132-0/+117
| | | | | | | | | Backport patch to fix CVE-2017-11368 for krb5. Signed-off-by: Kai Kang <kai.kang@windriver.com> Signed-off-by: Martin Jansa <Martin.Jansa@gmail.com> (cherry picked from commit d9f7ef40d74659a0348248841efadaf120d52c30) Signed-off-by: Armin Kuster <akuster808@gmail.com>
* corosync: Fix build with muslKhem Raj2017-09-132-1/+31
| | | | | | | Signed-off-by: Khem Raj <raj.khem@gmail.com> Signed-off-by: Martin Jansa <Martin.Jansa@gmail.com> (cherry picked from commit 2756ef68c92db20c093ef44460ff0ff7047006ec) Signed-off-by: Armin Kuster <akuster808@gmail.com>
* sblim-sfcb: Fix build with muslKhem Raj2017-09-132-0/+125
| | | | | | | Signed-off-by: Khem Raj <raj.khem@gmail.com> Signed-off-by: Martin Jansa <Martin.Jansa@gmail.com> (cherry picked from commit e67ac72d077a6d01577d15c08898f54bc5f568a2) Signed-off-by: Armin Kuster <akuster808@gmail.com>
* sblim-sfcb: Add stdint.h for 'UINT16_MAX'Khem Raj2017-09-132-1/+32
| | | | | | | Signed-off-by: Khem Raj <raj.khem@gmail.com> Signed-off-by: Martin Jansa <Martin.Jansa@gmail.com> (cherry picked from commit c0d763a6e604647f6dad25119eed5820195c2280) Signed-off-by: Armin Kuster <akuster808@gmail.com>
* corosync: fixes for sysvinit and systemdJackie Huang2017-09-131-13/+11
| | | | | | | | | | | | | | | | | | | | | * Replace ${systemd_unitdir}/system with ${systemd_system_unitdir} * Remove the upstar settings and don't install upstar config files * Add volatile for sysvinit and tmpfiles for systemd * Set the correct bash path for init scripts to avoid QA issue: | corosync-2.4.2: /usr/share/corosync/corosync contained in package corosync requires /tmp/hosttools/bash, but no providers found in RDEPENDS_corosync? [file-rdeps] * The systemd services are intalled properly by "make install", no need to install manually. Signed-off-by: Jackie Huang <jackie.huang@windriver.com> Signed-off-by: Martin Jansa <Martin.Jansa@gmail.com> (cherry picked from commit 8ca8ec9be39ea04c3b89831e6cafa4a67f015f55) Signed-off-by: Armin Kuster <akuster808@gmail.com>
* freerdp: Fix build on mipsKhem Raj2017-09-132-0/+46
| | | | | | | Signed-off-by: Khem Raj <raj.khem@gmail.com> Signed-off-by: Martin Jansa <Martin.Jansa@gmail.com> (cherry picked from commit b8deb419369f5d59b77eb73ddea8dbf7b53eec47) Signed-off-by: Armin Kuster <akuster808@gmail.com>
* glade: Fix format string warnings with clangKhem Raj2017-09-132-5/+67
| | | | | | | Signed-off-by: Khem Raj <raj.khem@gmail.com> Signed-off-by: Martin Jansa <Martin.Jansa@gmail.com> (cherry picked from commit 059b3b24747e96c2220e13f3078b3fd93e96e468) Signed-off-by: Armin Kuster <akuster808@gmail.com>
* libbonoboui: Fix with with hardening and clangKhem Raj2017-09-132-1/+52
| | | | | | | Signed-off-by: Khem Raj <raj.khem@gmail.com> Signed-off-by: Martin Jansa <Martin.Jansa@gmail.com> (cherry picked from commit e5555619f9315ab06a77fb7d569360a01a1efe96) Signed-off-by: Armin Kuster <akuster808@gmail.com>
* gedit: Fix with with hardening flags and clangKhem Raj2017-09-132-0/+32
| | | | | | | Signed-off-by: Khem Raj <raj.khem@gmail.com> Signed-off-by: Martin Jansa <Martin.Jansa@gmail.com> (cherry picked from commit 163aa96562955c38f5bcd9ebcb0151a0b87c1c40) Signed-off-by: Armin Kuster <akuster808@gmail.com>
* wvstreams: Fix parallel buildKhem Raj2017-09-133-2/+107
| | | | | | | Signed-off-by: Khem Raj <raj.khem@gmail.com> Signed-off-by: Martin Jansa <Martin.Jansa@gmail.com> (cherry picked from commit 2b1e724cbbb2260f41466a295aa01215164ec8b4) Signed-off-by: Armin Kuster <akuster808@gmail.com>
* wvstreams: Fix build with muslKhem Raj2017-09-137-1/+291
| | | | | | | Signed-off-by: Khem Raj <raj.khem@gmail.com> Signed-off-by: Martin Jansa <Martin.Jansa@gmail.com> (cherry picked from commit 68b2dec5d43904c5e76fb54740b1ed84007335bd) Signed-off-by: Armin Kuster <akuster808@gmail.com>
* libbonobo: Pass PERL_PATH to do_configureKhem Raj2017-09-131-0/+1
| | | | | | | | | | | Fixes wrong perl interpreter getting into target perl scripts QA Issue: /usr/bin/bonobo-slay contained in package libbonobo-bin requires / mnt/a/oe/build/tmp/hosttools/perl Signed-off-by: Khem Raj <raj.khem@gmail.com> Signed-off-by: Martin Jansa <Martin.Jansa@gmail.com> (cherry picked from commit 20a5597cc0d241da5af91fa5689959d0ea2392ae) Signed-off-by: Armin Kuster <akuster808@gmail.com>
* openldap: fix native LDFLAGS build errorIoan-Adrian Ratiu2017-09-131-1/+1
| | | | | | | | | | | | | | | | LDFLAGS += "-pthread" adds the flag both for native and target builds, however the openldap-native build overwrites the variable inside native.bbclass causing "undefined reference to `pthread_getspecific'" and other linker errors. Change the append to happen after parsing by using the override syntax and thus make sure it executes after native.bbclass (bitbake -e reports pre-expansion value "${BUILD_LDFLAGS} -pthread"). Signed-off-by: Ioan-Adrian Ratiu <adrian.ratiu@ni.com> Signed-off-by: Martin Jansa <Martin.Jansa@gmail.com> (cherry picked from commit 9d06ee2622bf2a7496b3e63a355f849e8496cacb) Signed-off-by: Armin Kuster <akuster808@gmail.com>
* python-pycrypto: Security fix CVE-2013-7459Yi Zhao2017-09-132-1/+101
| | | | | | | | | | | | | | | | | | CVE-2013-7459: Heap-based buffer overflow in the ALGnew function in block_templace.c in Python Cryptography Toolkit (aka pycrypto) allows remote attackers to execute arbitrary code as demonstrated by a crafted iv parameter to cryptmsg.py. Reference: https://nvd.nist.gov/vuln/detail/CVE-2013-7459 Patch from: https://github.com/dlitz/pycrypto/commit/8dbe0dc3eea5c689d4f76b37b93fe216cf1f00d4 Signed-off-by: Yi Zhao <yi.zhao@windriver.com> Signed-off-by: Martin Jansa <Martin.Jansa@gmail.com> (cherry picked from commit e4af9cf961c70bb4a96eaafd995d0ff2c264cb8e) Signed-off-by: Armin Kuster <akuster808@gmail.com>
* gflags: add runtime dependency on bashJackie Huang2017-09-131-1/+1
| | | | | | | | | | | | | * add runtime dependency on bash to fix QA issue: | ERROR: gflags-2.2.0-r0 do_package_qa: QA Issue: | /usr/bin/gflags_completions.sh contained in package | gflags-bash-completion requires /bin/bash, but | no providers found in RDEPENDS_gflags-bash-completion? [file-rdeps] Signed-off-by: Jackie Huang <jackie.huang@windriver.com> Signed-off-by: Martin Jansa <Martin.Jansa@gmail.com> (cherry picked from commit 8530df3ff6e1b3609926035677b6422da9445d22) Signed-off-by: Armin Kuster <akuster808@gmail.com>
* adduser: use get_perl_version instead of PERLVERSIONJackie Huang2017-09-131-2/+1
| | | | | | | | | | | | | | | Immediate expansion for PERLVERSION(in perl-version.bbclass) is too early, it will result in 'None' before perl is built, then the module file is installed incorrectly: $ rpm -ql adduser|grep Common /usr/lib/perl/None/Debian/AdduserCommon.pm So use get_perl_version directly instead of PERLVERSION. Signed-off-by: Jackie Huang <jackie.huang@windriver.com> Signed-off-by: Martin Jansa <Martin.Jansa@gmail.com> Signed-off-by: Armin Kuster <akuster808@gmail.com>
* json-spirit: Add -latomic to LDFLAGSMing Liu2017-09-131-0/+2
| | | | | | | | | | | | | This fixes following errors when compiling with clang: | ../json_spirit/libjson_spirit.so.4.0.8: error: undefined reference to '__atomic_load_4' | ../json_spirit/libjson_spirit.so.4.0.8: error: undefined reference to '__atomic_compare_exchange_4' | ../json_spirit/libjson_spirit.so.4.0.8: error: undefined reference to '__atomic_fetch_sub_4' | ../json_spirit/libjson_spirit.so.4.0.8: error: undefined reference to '__atomic_fetch_add_4' Signed-off-by: Ming Liu <peter.x.liu@external.atlascopco.com> Signed-off-by: Martin Jansa <Martin.Jansa@gmail.com> (cherry picked from commit ac2a6d2b5d69937577effcb8bb2149651bac0176) Signed-off-by: Armin Kuster <akuster808@gmail.com>
* fbida: Fix build with libjpeg-turboKhem Raj2017-09-134-1/+1885
| | | | | | | | | Dont hardcode cpp to point to gcc collection, helps compiling with clang Signed-off-by: Khem Raj <raj.khem@gmail.com> Signed-off-by: Martin Jansa <Martin.Jansa@gmail.com> Signed-off-by: Armin Kuster <akuster808@gmail.com>
* php7: upgrade to 7.1.7Khem Raj2017-09-134-14/+78
| | | | | | | | | | | | | License checksum changed due to opyright year changed to 2017 Fix build with clang/hardening ak] 7.1.x updates are bug or security fixes only. no new functions. Per PHP policy. so update makes sence IMHO Signed-off-by: Khem Raj <raj.khem@gmail.com> Signed-off-by: Martin Jansa <Martin.Jansa@gmail.com> (cherry picked from commit ad9df2b36a57d5a2760dc5924e8fa91201916bc0) Signed-off-by: Armin Kuster <akuster808@gmail.com>
* uim: Modified the order of package definition.Yusuke Mitsuki2017-09-131-1/+1
| | | | | | | | | | The uim-anthy package is created that empty. To avoid this problem by defining a packages with a rough PATH list after the uim-anthy package. Signed-off-by: Yusuke Mitsuki <mickey.happygolucky@gmail.com> Signed-off-by: Martin Jansa <Martin.Jansa@gmail.com> (cherry picked from commit f1d6a486846862bda3874fe8b1b02885a0a8dc23) Signed-off-by: Armin Kuster <akuster808@gmail.com>
* kodi: fix build with latest gccAndreas Müller2017-09-132-0/+97
| | | | | | Signed-off-by: Andreas Müller <schnitzeltony@googlemail.com> Signed-off-by: Martin Jansa <Martin.Jansa@gmail.com> Signed-off-by: Armin Kuster <akuster808@gmail.com>
* krb5_1.15.1.bb: set CVE_PRODUCT to kerberosMikko Rapeli2017-09-131-0/+2
| | | | | | | | | | | It is used in NVD database for CVE's like: https://nvd.nist.gov/vuln/detail/CVE-2016-3120 Signed-off-by: Mikko Rapeli <mikko.rapeli@bmw.de> Signed-off-by: Martin Jansa <Martin.Jansa@gmail.com> (cherry picked from commit 236ca5e37c5368cdaf95e02d395f6e2479cd98b3) Signed-off-by: Armin Kuster <akuster808@gmail.com>
* fribidi_0.19.7.bb: set CVE_PRODUCT to gnu_fribidiMikko Rapeli2017-09-131-0/+2
| | | | | | | | | | | gnu_fribidi is used in NVD for CVE's like: https://nvd.nist.gov/vuln/detail/CVE-2010-3444 Signed-off-by: Mikko Rapeli <mikko.rapeli@bmw.de> Signed-off-by: Martin Jansa <Martin.Jansa@gmail.com> (cherry picked from commit 854b98c05acb416f46846428425c97b53e87d987) Signed-off-by: Armin Kuster <akuster808@gmail.com>
* udisks2_2.1.8.bb: set CVE_PRODUCT to udisksMikko Rapeli2017-09-131-0/+2
| | | | | | | | | | | It is used in NVD for CVE's like: https://nvd.nist.gov/vuln/detail/CVE-2014-0004 Signed-off-by: Mikko Rapeli <mikko.rapeli@bmw.de> Signed-off-by: Martin Jansa <Martin.Jansa@gmail.com> (cherry picked from commit 57fac9d8ac44a6f9dce38b47224aba639eec3b8d) Signed-off-by: Armin Kuster <akuster808@gmail.com>
* a2jmidid: Link with libexecinfo on muslKhem Raj2017-09-131-0/+3
| | | | | | | Signed-off-by: Khem Raj <raj.khem@gmail.com> Signed-off-by: Martin Jansa <Martin.Jansa@gmail.com> (cherry picked from commit 567e48cc76d0f383d95dfde55c9ce0a05a44993a) Signed-off-by: Armin Kuster <akuster808@gmail.com>