From: Armin Kuster <akuster808@gmail.com>
To: openembedded-core@lists.openembedded.org
Subject: [PATCH 00/20] Dizzy-next pull request 2016-1
Date: Sat, 9 Jan 2016 16:30:26 -0800 [thread overview]
Message-ID: <cover.1452385571.git.akuster808@gmail.com> (raw)
Please consider these changes for dizzy-next community support.
The following changes since commit 6d34267e0a13e10ab91b60590b27a2b5ba3b7da6:
documentation: Changed some 'intro' tags to resolve multiple mega-manual warnings. (2015-11-18 16:44:05 +0000)
are available in the git repository at:
git://git.yoctoproject.org/poky-contrib akuster/dizzy-next
http://git.yoctoproject.org/cgit.cgi//log/?h=akuster/dizzy-next
Armin Kuster (2):
openssh: CVE-2015-6563 CVE-2015-6564 CVE-2015-6565
Fixes a heap buffer overflow in glibc wscanf.
Belal, Awais (1):
grub2: Fix CVE-2015-8370
Chen Qi (1):
image.bbclass: don't let do_rootfs depend on BUILDNAME
Martin Jansa (3):
fontcache: allow to pass extra parameters and environment to fc-cache
texinfo: don't create dependency on INHERIT variable
linux-dtb.inc: drop unused DTB_NAME variable from do_install
Mike Crowe (1):
allarch: Force TARGET_*FLAGS variable values
Richard Purdie (2):
layer.conf: Add several allarch dependency exclusions
layer.conf: Add missing dependency for allarch package
initramfs-framework
Sergiy Kibrik (1):
rsync: backport libattr checking patch
Sona Sarmadi (7):
libtasn1: CVE-2015-3622
grep2.19: CVE-2015-1345
libxml2: CVE-2015-7942
libxml2: CVE-2015-8035
openssl: CVE-2015-3194, CVE-2015-3195
libxml2: CVE-2015-8241
bind: CVE-2015-8000
Tudor Florea (2):
glibc: use patch for CVE-2015-1781
unzip: CVE-2015-7696, CVE-2015-7697
meta/classes/allarch.bbclass | 4 +
meta/classes/fontcache.bbclass | 19 +-
meta/classes/image.bbclass | 2 +-
meta/conf/layer.conf | 11 ++
...E-2015-8370-Grub2-user-pass-vulnerability.patch | 50 ++++++
meta/recipes-bsp/grub/grub-efi_2.00.bb | 1 +
meta/recipes-bsp/grub/grub_2.00.bb | 1 +
.../bind/bind/CVE-2015-8000.patch | 194 +++++++++++++++++++++
meta/recipes-connectivity/bind/bind_9.9.5.bb | 1 +
.../openssh/openssh/CVE-2015-6563.patch | 36 ++++
.../openssh/openssh/CVE-2015-6564.patch | 34 ++++
.../openssh/openssh/CVE-2015-6565.patch | 35 ++++
meta/recipes-connectivity/openssh/openssh_6.6p1.bb | 5 +-
.../CVE-2015-3194-Add-PSS-parameter-check.patch | 37 ++++
...CVE-2015-3195-Fix-leak-with-ASN.1-combine.patch | 61 +++++++
.../recipes-connectivity/openssl/openssl_1.0.1p.bb | 2 +
...5-1472-wscanf-allocates-too-little-memory.patch | 108 ++++++++++++
meta/recipes-core/glibc/glibc_2.20.bb | 5 +-
meta/recipes-core/libxml/libxml2.inc | 3 +
.../libxml/libxml2/CVE-2015-7942.patch | 58 ++++++
.../libxml/libxml2/CVE-2015-8035.patch | 35 ++++
.../libxml/libxml2/CVE-2015-8241.patch | 41 +++++
.../rsync/files/check_libattr.patch | 33 ++++
meta/recipes-devtools/rsync/rsync_3.1.0.bb | 3 +-
.../grep/grep-2.19/grep2.19-CVE-2015-1345.patch | 129 ++++++++++++++
meta/recipes-extended/grep/grep_2.19.bb | 4 +-
meta/recipes-extended/texinfo/texinfo_5.2.bb | 2 +-
.../unzip/unzip/CVE-2015-7696.patch | 38 ++++
.../unzip/unzip/CVE-2015-7697.patch | 31 ++++
meta/recipes-extended/unzip/unzip_6.0.bb | 2 +
meta/recipes-kernel/linux/linux-dtb.inc | 1 -
.../gnutls/libtasn1/libtasn1-CVE-2015-3622.patch | 44 +++++
meta/recipes-support/gnutls/libtasn1_4.0.bb | 1 +
scripts/postinst-intercepts/update_font_cache | 4 +-
34 files changed, 1020 insertions(+), 15 deletions(-)
create mode 100644 meta/recipes-bsp/grub/files/0001-Fix-CVE-2015-8370-Grub2-user-pass-vulnerability.patch
create mode 100644 meta/recipes-connectivity/bind/bind/CVE-2015-8000.patch
create mode 100644 meta/recipes-connectivity/openssh/openssh/CVE-2015-6563.patch
create mode 100644 meta/recipes-connectivity/openssh/openssh/CVE-2015-6564.patch
create mode 100644 meta/recipes-connectivity/openssh/openssh/CVE-2015-6565.patch
create mode 100644 meta/recipes-connectivity/openssl/openssl/CVE-2015-3194-Add-PSS-parameter-check.patch
create mode 100644 meta/recipes-connectivity/openssl/openssl/CVE-2015-3195-Fix-leak-with-ASN.1-combine.patch
create mode 100644 meta/recipes-core/glibc/glibc/CVE-2015-1472-wscanf-allocates-too-little-memory.patch
create mode 100644 meta/recipes-core/libxml/libxml2/CVE-2015-7942.patch
create mode 100644 meta/recipes-core/libxml/libxml2/CVE-2015-8035.patch
create mode 100644 meta/recipes-core/libxml/libxml2/CVE-2015-8241.patch
create mode 100644 meta/recipes-devtools/rsync/files/check_libattr.patch
create mode 100644 meta/recipes-extended/grep/grep-2.19/grep2.19-CVE-2015-1345.patch
create mode 100644 meta/recipes-extended/unzip/unzip/CVE-2015-7696.patch
create mode 100644 meta/recipes-extended/unzip/unzip/CVE-2015-7697.patch
create mode 100644 meta/recipes-support/gnutls/libtasn1/libtasn1-CVE-2015-3622.patch
--
1.9.1
next reply other threads:[~2016-01-10 0:30 UTC|newest]
Thread overview: 27+ messages / expand[flat|nested] mbox.gz Atom feed top
2016-01-10 0:30 Armin Kuster [this message]
2016-01-10 0:30 ` [PATCH 01/20] libtasn1: CVE-2015-3622 Armin Kuster
2016-01-10 0:30 ` [PATCH 02/20] grep2.19: CVE-2015-1345 Armin Kuster
2016-01-10 0:30 ` [PATCH 03/20] rsync: backport libattr checking patch Armin Kuster
2016-01-10 0:30 ` [PATCH 04/20] openssh: CVE-2015-6563 CVE-2015-6564 CVE-2015-6565 Armin Kuster
2016-01-10 0:30 ` [PATCH 05/20] fontcache: allow to pass extra parameters and environment to fc-cache Armin Kuster
2016-01-10 0:30 ` [PATCH 06/20] image.bbclass: don't let do_rootfs depend on BUILDNAME Armin Kuster
2016-01-10 0:30 ` [PATCH 07/20] layer.conf: Add several allarch dependency exclusions Armin Kuster
2016-01-10 0:30 ` [PATCH 08/20] layer.conf: Add missing dependency for allarch package initramfs-framework Armin Kuster
2016-01-10 0:30 ` [PATCH 09/20] allarch: Force TARGET_*FLAGS variable values Armin Kuster
2016-01-10 0:30 ` [PATCH 10/20] texinfo: don't create dependency on INHERIT variable Armin Kuster
2016-01-10 0:30 ` [PATCH 11/20] linux-dtb.inc: drop unused DTB_NAME variable from do_install Armin Kuster
2016-01-10 0:30 ` [PATCH 12/20] glibc: use patch for CVE-2015-1781 Armin Kuster
2016-01-10 0:30 ` [PATCH 13/20] libxml2: CVE-2015-7942 Armin Kuster
2016-01-10 0:30 ` [PATCH 14/20] unzip: CVE-2015-7696, CVE-2015-7697 Armin Kuster
2016-01-10 0:30 ` [PATCH 15/20] libxml2: CVE-2015-8035 Armin Kuster
2016-01-10 0:30 ` [PATCH 16/20] openssl: CVE-2015-3194, CVE-2015-3195 Armin Kuster
2016-01-10 0:30 ` [PATCH 17/20] libxml2: CVE-2015-8241 Armin Kuster
2016-01-10 0:30 ` [PATCH 18/20] Fixes a heap buffer overflow in glibc wscanf Armin Kuster
2016-01-10 0:30 ` [PATCH 19/20] grub2: Fix CVE-2015-8370 Armin Kuster
2016-01-10 0:30 ` [PATCH 20/20] bind: CVE-2015-8000 Armin Kuster
2016-01-21 11:57 ` [PATCH 00/20] Dizzy-next pull request 2016-1 Martin Jansa
2016-01-27 11:33 ` Martin Jansa
2016-01-30 2:44 ` akuster808
2016-01-30 9:08 ` Martin Jansa
2016-01-30 12:06 ` Richard Purdie
2016-01-30 12:37 ` Martin Jansa
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=cover.1452385571.git.akuster808@gmail.com \
--to=akuster808@gmail.com \
--cc=openembedded-core@lists.openembedded.org \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.