[CONSOLIDATED PULL 00/24] Updated with CVE set

Openembedded Core Discussions
 help / color / mirror / Atom feed

From: Saul Wold <sgw@linux.intel.com>
To: openembedded-core@lists.openembedded.org
Subject: [CONSOLIDATED PULL 00/24] Updated with CVE set
Date: Tue, 20 May 2014 10:37:39 -0700	[thread overview]
Message-ID: <cover.1400607302.git.sgw@linux.intel.com> (raw)

Richard,

This contains the set from yesterday, plus additional updates
and the first load of CVE patches (most will be back ported to 
daisy).

Sau!

The following changes since commit be0327b6a900be5434b6b1f08277faf2f65d5da8:

  initrdscripts: fix for /run/media (2014-05-20 14:53:00 +0100)

are available in the git repository at:

  git://git.openembedded.org/openembedded-core-contrib sgw/stage
  http://cgit.openembedded.org/cgit.cgi/openembedded-core-contrib/log/?h=sgw/stage

Chen Qi (1):
  runqemu-internal: add "console=ttyS0" to ramfs image kernel parameters

Chong Lu (2):
  libpcre: Update to 8.35 version
  quilt: Update to 0.63 version

Cristian Iorga (1):
  harfbuzz: upgrade to 0.9.28

João Henrique Ferreira de Freitas (2):
  wic: add support to look in all layers and get .wks file
  wic: add support to look in all layers and get plugins

Khem Raj (1):
  tcmode-default.inc: Default to using gcc 4.9

Koen Kooi (1):
  curl: work around RRECOMMENDS problems in -native* recipes

Li Wang (2):
  nss: CVE-2014-1492
  nss: CVE-2013-1740

Martin Jansa (1):
  lttng-modules: Fix build with older kernels

Paul Eggleton (2):
  libav: upgrade 0.8.x version to 0.8.11
  libav: upgrade 9.x version to 9.13

Saul Wold (1):
  cups: fix for cups not building without avahi

Yue Tao (10):
  Screen: fix for Security Advisory CVE-2009-1214
  screen: fix for Security Advisory CVE-2009-1215
  subversion: fix for Security Advisory CVE-2013-1849
  subversion: fix for Security Advisory CVE-2013-4505
  subversion: fix for Security Advisory CVE-2013-4131
  subversion: fix for Security Advisory CVE-2013-1845
  subversion: fix for Security Advisory CVE-2013-1847 and CVE-2013-1846
  subversion: fix for Security Advisory CVE-2013-4277
  tiff: fix for Security Advisory CVE-2013-4231
  openssl: fix for CVE-2010-5298

 meta/conf/distro/include/tcmode-default.inc        |   2 +-
 .../openssl-1.0.1e/openssl-CVE-2010-5298.patch     |  24 +
 .../quilt/{quilt-0.61.inc => quilt-0.63.inc}       |   5 +-
 .../{quilt-native_0.61.bb => quilt-native_0.63.bb} |   0
 .../quilt/{quilt_0.61.bb => quilt_0.63.bb}         |   0
 .../subversion-CVE-2013-4131.patch                 |  42 +
 .../subversion-CVE-2013-4277.patch                 |  15 +
 .../subversion-CVE-2013-4505.patch                 | 130 +++
 .../subversion/subversion-CVE-2013-1845.patch      | 171 ++++
 .../subversion-CVE-2013-1847-CVE-2013-1846.patch   |  53 ++
 .../subversion/subversion-CVE-2013-1849.patch      |  25 +
 .../subversion/subversion-CVE-2013-4277.patch      |  15 +
 .../subversion/subversion-CVE-2013-4505.patch      | 127 +++
 .../subversion/subversion_1.6.15.bb                |   6 +-
 .../subversion/subversion_1.7.10.bb                |   3 +
 meta/recipes-extended/cups/cups/cups-str4402.patch | 190 +++++
 .../screen-4.0.3/screen-4.0.2-CVE-2009-1215.patch  |  27 +
 .../screen-4.0.3/screen-4.0.3-CVE-2009-1214.patch  |  86 ++
 meta/recipes-extended/screen/screen_4.0.3.bb       |   2 +
 .../{harfbuzz_0.9.27.bb => harfbuzz_0.9.28.bb}     |   8 +-
 .../lttng/lttng-modules/bio-bvec-iter.patch        | 156 ++++
 .../lttng/lttng-modules/fixup_block_driver.patch   | 122 ---
 meta/recipes-kernel/lttng/lttng-modules_2.3.3.bb   |   2 +-
 .../libav/{libav_0.8.9.bb => libav_0.8.11.bb}      |   4 +-
 .../libav/{libav_9.10.bb => libav_9.13.bb}         |   4 +-
 .../libtiff/files/libtiff-CVE-2013-4231.patch      |  44 +
 meta/recipes-multimedia/libtiff/tiff_4.0.3.bb      |   3 +-
 meta/recipes-support/curl/curl_7.36.0.bb           |   7 +-
 .../libpcre/{libpcre_8.34.bb => libpcre_8.35.bb}   |   6 +-
 .../nss/files/nss-CVE-2013-1740.patch              | 916 +++++++++++++++++++++
 .../nss/files/nss-CVE-2014-1492.patch              |  68 ++
 meta/recipes-support/nss/nss.inc                   |   2 +
 scripts/lib/image/engine.py                        |  72 +-
 scripts/lib/mic/plugin.py                          |  28 +-
 scripts/runqemu-internal                           |   2 +-
 scripts/wic                                        |   6 +
 36 files changed, 2196 insertions(+), 177 deletions(-)
 create mode 100644 meta/recipes-connectivity/openssl/openssl-1.0.1e/openssl-CVE-2010-5298.patch
 rename meta/recipes-devtools/quilt/{quilt-0.61.inc => quilt-0.63.inc} (89%)
 rename meta/recipes-devtools/quilt/{quilt-native_0.61.bb => quilt-native_0.63.bb} (100%)
 rename meta/recipes-devtools/quilt/{quilt_0.61.bb => quilt_0.63.bb} (100%)
 create mode 100644 meta/recipes-devtools/subversion/subversion-1.7.10/subversion-CVE-2013-4131.patch
 create mode 100644 meta/recipes-devtools/subversion/subversion-1.7.10/subversion-CVE-2013-4277.patch
 create mode 100644 meta/recipes-devtools/subversion/subversion-1.7.10/subversion-CVE-2013-4505.patch
 create mode 100644 meta/recipes-devtools/subversion/subversion/subversion-CVE-2013-1845.patch
 create mode 100644 meta/recipes-devtools/subversion/subversion/subversion-CVE-2013-1847-CVE-2013-1846.patch
 create mode 100644 meta/recipes-devtools/subversion/subversion/subversion-CVE-2013-1849.patch
 create mode 100644 meta/recipes-devtools/subversion/subversion/subversion-CVE-2013-4277.patch
 create mode 100644 meta/recipes-devtools/subversion/subversion/subversion-CVE-2013-4505.patch
 create mode 100644 meta/recipes-extended/cups/cups/cups-str4402.patch
 create mode 100644 meta/recipes-extended/screen/screen-4.0.3/screen-4.0.2-CVE-2009-1215.patch
 create mode 100644 meta/recipes-extended/screen/screen-4.0.3/screen-4.0.3-CVE-2009-1214.patch
 rename meta/recipes-graphics/harfbuzz/{harfbuzz_0.9.27.bb => harfbuzz_0.9.28.bb} (87%)
 create mode 100644 meta/recipes-kernel/lttng/lttng-modules/bio-bvec-iter.patch
 delete mode 100644 meta/recipes-kernel/lttng/lttng-modules/fixup_block_driver.patch
 rename meta/recipes-multimedia/libav/{libav_0.8.9.bb => libav_0.8.11.bb} (79%)
 rename meta/recipes-multimedia/libav/{libav_9.10.bb => libav_9.13.bb} (74%)
 create mode 100644 meta/recipes-multimedia/libtiff/files/libtiff-CVE-2013-4231.patch
 rename meta/recipes-support/libpcre/{libpcre_8.34.bb => libpcre_8.35.bb} (91%)
 create mode 100644 meta/recipes-support/nss/files/nss-CVE-2013-1740.patch
 create mode 100644 meta/recipes-support/nss/files/nss-CVE-2014-1492.patch

-- 
1.8.3.1

next             reply	other threads:[~2014-05-20 17:39 UTC|newest]

Thread overview: 2+ messages / expand[flat|nested]  mbox.gz  Atom feed  top
2014-05-20 17:37 Saul Wold [this message]
2014-05-20 17:41 ` [CONSOLIDATED PULL 00/24] Updated with CVE set Saul Wold

Reply instructions:

You may reply publicly to this message via plain-text email
using any one of the following methods:

* Save the following mbox file, import it into your mail client,
  and reply-to-all from there: mbox

  Avoid top-posting and favor interleaved quoting:
  https://en.wikipedia.org/wiki/Posting_style#Interleaved_style

* Reply using the --to, --cc, and --in-reply-to
  switches of git-send-email(1):

  git send-email \
    --in-reply-to=cover.1400607302.git.sgw@linux.intel.com \
    --to=sgw@linux.intel.com \
    --cc=openembedded-core@lists.openembedded.org \
    /path/to/YOUR_REPLY

  https://kernel.org/pub/software/scm/git/docs/git-send-email.html

* If your mail client supports setting the In-Reply-To header
  via mailto: links, try the mailto: link

Be sure your reply has a Subject: header at the top and a blank line before the message body.

This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox