From: Saul Wold <sgw@linux.intel.com>
To: openembedded-core@lists.openembedded.org
Subject: Re: [CONSOLIDATED PULL 00/24] Updated with CVE set
Date: Tue, 20 May 2014 10:41:27 -0700 [thread overview]
Message-ID: <537B93C7.5080407@linux.intel.com> (raw)
In-Reply-To: <cover.1400607302.git.sgw@linux.intel.com>
On 05/20/2014 10:37 AM, Saul Wold wrote:
> Richard,
>
> This contains the set from yesterday, plus additional updates
> and the first load of CVE patches (most will be back ported to
> daisy).
>
> Sau!
>
> The following changes since commit be0327b6a900be5434b6b1f08277faf2f65d5da8:
>
> initrdscripts: fix for /run/media (2014-05-20 14:53:00 +0100)
>
> are available in the git repository at:
>
> git://git.openembedded.org/openembedded-core-contrib sgw/stage
> http://cgit.openembedded.org/cgit.cgi/openembedded-core-contrib/log/?h=sgw/stage
>
> Chen Qi (1):
> runqemu-internal: add "console=ttyS0" to ramfs image kernel parameters
>
> Chong Lu (2):
> libpcre: Update to 8.35 version
> quilt: Update to 0.63 version
>
> Cristian Iorga (1):
> harfbuzz: upgrade to 0.9.28
>
> João Henrique Ferreira de Freitas (2):
> wic: add support to look in all layers and get .wks file
> wic: add support to look in all layers and get plugins
>
> Khem Raj (1):
> tcmode-default.inc: Default to using gcc 4.9
>
Oops, this one slipped past me, I have removed it from the
oe-contrib/sgw/stage branch.
We are still testing with it, but waiting for the PPC issue to be
resolved before enabling it in master.
Sau!
> Koen Kooi (1):
> curl: work around RRECOMMENDS problems in -native* recipes
>
> Li Wang (2):
> nss: CVE-2014-1492
> nss: CVE-2013-1740
>
> Martin Jansa (1):
> lttng-modules: Fix build with older kernels
>
> Paul Eggleton (2):
> libav: upgrade 0.8.x version to 0.8.11
> libav: upgrade 9.x version to 9.13
>
> Saul Wold (1):
> cups: fix for cups not building without avahi
>
> Yue Tao (10):
> Screen: fix for Security Advisory CVE-2009-1214
> screen: fix for Security Advisory CVE-2009-1215
> subversion: fix for Security Advisory CVE-2013-1849
> subversion: fix for Security Advisory CVE-2013-4505
> subversion: fix for Security Advisory CVE-2013-4131
> subversion: fix for Security Advisory CVE-2013-1845
> subversion: fix for Security Advisory CVE-2013-1847 and CVE-2013-1846
> subversion: fix for Security Advisory CVE-2013-4277
> tiff: fix for Security Advisory CVE-2013-4231
> openssl: fix for CVE-2010-5298
>
> meta/conf/distro/include/tcmode-default.inc | 2 +-
> .../openssl-1.0.1e/openssl-CVE-2010-5298.patch | 24 +
> .../quilt/{quilt-0.61.inc => quilt-0.63.inc} | 5 +-
> .../{quilt-native_0.61.bb => quilt-native_0.63.bb} | 0
> .../quilt/{quilt_0.61.bb => quilt_0.63.bb} | 0
> .../subversion-CVE-2013-4131.patch | 42 +
> .../subversion-CVE-2013-4277.patch | 15 +
> .../subversion-CVE-2013-4505.patch | 130 +++
> .../subversion/subversion-CVE-2013-1845.patch | 171 ++++
> .../subversion-CVE-2013-1847-CVE-2013-1846.patch | 53 ++
> .../subversion/subversion-CVE-2013-1849.patch | 25 +
> .../subversion/subversion-CVE-2013-4277.patch | 15 +
> .../subversion/subversion-CVE-2013-4505.patch | 127 +++
> .../subversion/subversion_1.6.15.bb | 6 +-
> .../subversion/subversion_1.7.10.bb | 3 +
> meta/recipes-extended/cups/cups/cups-str4402.patch | 190 +++++
> .../screen-4.0.3/screen-4.0.2-CVE-2009-1215.patch | 27 +
> .../screen-4.0.3/screen-4.0.3-CVE-2009-1214.patch | 86 ++
> meta/recipes-extended/screen/screen_4.0.3.bb | 2 +
> .../{harfbuzz_0.9.27.bb => harfbuzz_0.9.28.bb} | 8 +-
> .../lttng/lttng-modules/bio-bvec-iter.patch | 156 ++++
> .../lttng/lttng-modules/fixup_block_driver.patch | 122 ---
> meta/recipes-kernel/lttng/lttng-modules_2.3.3.bb | 2 +-
> .../libav/{libav_0.8.9.bb => libav_0.8.11.bb} | 4 +-
> .../libav/{libav_9.10.bb => libav_9.13.bb} | 4 +-
> .../libtiff/files/libtiff-CVE-2013-4231.patch | 44 +
> meta/recipes-multimedia/libtiff/tiff_4.0.3.bb | 3 +-
> meta/recipes-support/curl/curl_7.36.0.bb | 7 +-
> .../libpcre/{libpcre_8.34.bb => libpcre_8.35.bb} | 6 +-
> .../nss/files/nss-CVE-2013-1740.patch | 916 +++++++++++++++++++++
> .../nss/files/nss-CVE-2014-1492.patch | 68 ++
> meta/recipes-support/nss/nss.inc | 2 +
> scripts/lib/image/engine.py | 72 +-
> scripts/lib/mic/plugin.py | 28 +-
> scripts/runqemu-internal | 2 +-
> scripts/wic | 6 +
> 36 files changed, 2196 insertions(+), 177 deletions(-)
> create mode 100644 meta/recipes-connectivity/openssl/openssl-1.0.1e/openssl-CVE-2010-5298.patch
> rename meta/recipes-devtools/quilt/{quilt-0.61.inc => quilt-0.63.inc} (89%)
> rename meta/recipes-devtools/quilt/{quilt-native_0.61.bb => quilt-native_0.63.bb} (100%)
> rename meta/recipes-devtools/quilt/{quilt_0.61.bb => quilt_0.63.bb} (100%)
> create mode 100644 meta/recipes-devtools/subversion/subversion-1.7.10/subversion-CVE-2013-4131.patch
> create mode 100644 meta/recipes-devtools/subversion/subversion-1.7.10/subversion-CVE-2013-4277.patch
> create mode 100644 meta/recipes-devtools/subversion/subversion-1.7.10/subversion-CVE-2013-4505.patch
> create mode 100644 meta/recipes-devtools/subversion/subversion/subversion-CVE-2013-1845.patch
> create mode 100644 meta/recipes-devtools/subversion/subversion/subversion-CVE-2013-1847-CVE-2013-1846.patch
> create mode 100644 meta/recipes-devtools/subversion/subversion/subversion-CVE-2013-1849.patch
> create mode 100644 meta/recipes-devtools/subversion/subversion/subversion-CVE-2013-4277.patch
> create mode 100644 meta/recipes-devtools/subversion/subversion/subversion-CVE-2013-4505.patch
> create mode 100644 meta/recipes-extended/cups/cups/cups-str4402.patch
> create mode 100644 meta/recipes-extended/screen/screen-4.0.3/screen-4.0.2-CVE-2009-1215.patch
> create mode 100644 meta/recipes-extended/screen/screen-4.0.3/screen-4.0.3-CVE-2009-1214.patch
> rename meta/recipes-graphics/harfbuzz/{harfbuzz_0.9.27.bb => harfbuzz_0.9.28.bb} (87%)
> create mode 100644 meta/recipes-kernel/lttng/lttng-modules/bio-bvec-iter.patch
> delete mode 100644 meta/recipes-kernel/lttng/lttng-modules/fixup_block_driver.patch
> rename meta/recipes-multimedia/libav/{libav_0.8.9.bb => libav_0.8.11.bb} (79%)
> rename meta/recipes-multimedia/libav/{libav_9.10.bb => libav_9.13.bb} (74%)
> create mode 100644 meta/recipes-multimedia/libtiff/files/libtiff-CVE-2013-4231.patch
> rename meta/recipes-support/libpcre/{libpcre_8.34.bb => libpcre_8.35.bb} (91%)
> create mode 100644 meta/recipes-support/nss/files/nss-CVE-2013-1740.patch
> create mode 100644 meta/recipes-support/nss/files/nss-CVE-2014-1492.patch
>
prev parent reply other threads:[~2014-05-20 17:41 UTC|newest]
Thread overview: 2+ messages / expand[flat|nested] mbox.gz Atom feed top
2014-05-20 17:37 [CONSOLIDATED PULL 00/24] Updated with CVE set Saul Wold
2014-05-20 17:41 ` Saul Wold [this message]
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=537B93C7.5080407@linux.intel.com \
--to=sgw@linux.intel.com \
--cc=openembedded-core@lists.openembedded.org \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.