[CONSOLIDATED PULL 00/24] Updated with CVE set

Openembedded Core Discussions
 help / color / mirror / Atom feed

* [CONSOLIDATED PULL 00/24] Updated with CVE set
@ 2014-05-20 17:37 Saul Wold
  2014-05-20 17:41 ` Saul Wold
  0 siblings, 1 reply; 2+ messages in thread
From: Saul Wold @ 2014-05-20 17:37 UTC (permalink / raw)
  To: openembedded-core

Richard,

This contains the set from yesterday, plus additional updates
and the first load of CVE patches (most will be back ported to 
daisy).

Sau!

The following changes since commit be0327b6a900be5434b6b1f08277faf2f65d5da8:

  initrdscripts: fix for /run/media (2014-05-20 14:53:00 +0100)

are available in the git repository at:

  git://git.openembedded.org/openembedded-core-contrib sgw/stage
  http://cgit.openembedded.org/cgit.cgi/openembedded-core-contrib/log/?h=sgw/stage

Chen Qi (1):
  runqemu-internal: add "console=ttyS0" to ramfs image kernel parameters

Chong Lu (2):
  libpcre: Update to 8.35 version
  quilt: Update to 0.63 version

Cristian Iorga (1):
  harfbuzz: upgrade to 0.9.28

João Henrique Ferreira de Freitas (2):
  wic: add support to look in all layers and get .wks file
  wic: add support to look in all layers and get plugins

Khem Raj (1):
  tcmode-default.inc: Default to using gcc 4.9

Koen Kooi (1):
  curl: work around RRECOMMENDS problems in -native* recipes

Li Wang (2):
  nss: CVE-2014-1492
  nss: CVE-2013-1740

Martin Jansa (1):
  lttng-modules: Fix build with older kernels

Paul Eggleton (2):
  libav: upgrade 0.8.x version to 0.8.11
  libav: upgrade 9.x version to 9.13

Saul Wold (1):
  cups: fix for cups not building without avahi

Yue Tao (10):
  Screen: fix for Security Advisory CVE-2009-1214
  screen: fix for Security Advisory CVE-2009-1215
  subversion: fix for Security Advisory CVE-2013-1849
  subversion: fix for Security Advisory CVE-2013-4505
  subversion: fix for Security Advisory CVE-2013-4131
  subversion: fix for Security Advisory CVE-2013-1845
  subversion: fix for Security Advisory CVE-2013-1847 and CVE-2013-1846
  subversion: fix for Security Advisory CVE-2013-4277
  tiff: fix for Security Advisory CVE-2013-4231
  openssl: fix for CVE-2010-5298

 meta/conf/distro/include/tcmode-default.inc        |   2 +-
 .../openssl-1.0.1e/openssl-CVE-2010-5298.patch     |  24 +
 .../quilt/{quilt-0.61.inc => quilt-0.63.inc}       |   5 +-
 .../{quilt-native_0.61.bb => quilt-native_0.63.bb} |   0
 .../quilt/{quilt_0.61.bb => quilt_0.63.bb}         |   0
 .../subversion-CVE-2013-4131.patch                 |  42 +
 .../subversion-CVE-2013-4277.patch                 |  15 +
 .../subversion-CVE-2013-4505.patch                 | 130 +++
 .../subversion/subversion-CVE-2013-1845.patch      | 171 ++++
 .../subversion-CVE-2013-1847-CVE-2013-1846.patch   |  53 ++
 .../subversion/subversion-CVE-2013-1849.patch      |  25 +
 .../subversion/subversion-CVE-2013-4277.patch      |  15 +
 .../subversion/subversion-CVE-2013-4505.patch      | 127 +++
 .../subversion/subversion_1.6.15.bb                |   6 +-
 .../subversion/subversion_1.7.10.bb                |   3 +
 meta/recipes-extended/cups/cups/cups-str4402.patch | 190 +++++
 .../screen-4.0.3/screen-4.0.2-CVE-2009-1215.patch  |  27 +
 .../screen-4.0.3/screen-4.0.3-CVE-2009-1214.patch  |  86 ++
 meta/recipes-extended/screen/screen_4.0.3.bb       |   2 +
 .../{harfbuzz_0.9.27.bb => harfbuzz_0.9.28.bb}     |   8 +-
 .../lttng/lttng-modules/bio-bvec-iter.patch        | 156 ++++
 .../lttng/lttng-modules/fixup_block_driver.patch   | 122 ---
 meta/recipes-kernel/lttng/lttng-modules_2.3.3.bb   |   2 +-
 .../libav/{libav_0.8.9.bb => libav_0.8.11.bb}      |   4 +-
 .../libav/{libav_9.10.bb => libav_9.13.bb}         |   4 +-
 .../libtiff/files/libtiff-CVE-2013-4231.patch      |  44 +
 meta/recipes-multimedia/libtiff/tiff_4.0.3.bb      |   3 +-
 meta/recipes-support/curl/curl_7.36.0.bb           |   7 +-
 .../libpcre/{libpcre_8.34.bb => libpcre_8.35.bb}   |   6 +-
 .../nss/files/nss-CVE-2013-1740.patch              | 916 +++++++++++++++++++++
 .../nss/files/nss-CVE-2014-1492.patch              |  68 ++
 meta/recipes-support/nss/nss.inc                   |   2 +
 scripts/lib/image/engine.py                        |  72 +-
 scripts/lib/mic/plugin.py                          |  28 +-
 scripts/runqemu-internal                           |   2 +-
 scripts/wic                                        |   6 +
 36 files changed, 2196 insertions(+), 177 deletions(-)
 create mode 100644 meta/recipes-connectivity/openssl/openssl-1.0.1e/openssl-CVE-2010-5298.patch
 rename meta/recipes-devtools/quilt/{quilt-0.61.inc => quilt-0.63.inc} (89%)
 rename meta/recipes-devtools/quilt/{quilt-native_0.61.bb => quilt-native_0.63.bb} (100%)
 rename meta/recipes-devtools/quilt/{quilt_0.61.bb => quilt_0.63.bb} (100%)
 create mode 100644 meta/recipes-devtools/subversion/subversion-1.7.10/subversion-CVE-2013-4131.patch
 create mode 100644 meta/recipes-devtools/subversion/subversion-1.7.10/subversion-CVE-2013-4277.patch
 create mode 100644 meta/recipes-devtools/subversion/subversion-1.7.10/subversion-CVE-2013-4505.patch
 create mode 100644 meta/recipes-devtools/subversion/subversion/subversion-CVE-2013-1845.patch
 create mode 100644 meta/recipes-devtools/subversion/subversion/subversion-CVE-2013-1847-CVE-2013-1846.patch
 create mode 100644 meta/recipes-devtools/subversion/subversion/subversion-CVE-2013-1849.patch
 create mode 100644 meta/recipes-devtools/subversion/subversion/subversion-CVE-2013-4277.patch
 create mode 100644 meta/recipes-devtools/subversion/subversion/subversion-CVE-2013-4505.patch
 create mode 100644 meta/recipes-extended/cups/cups/cups-str4402.patch
 create mode 100644 meta/recipes-extended/screen/screen-4.0.3/screen-4.0.2-CVE-2009-1215.patch
 create mode 100644 meta/recipes-extended/screen/screen-4.0.3/screen-4.0.3-CVE-2009-1214.patch
 rename meta/recipes-graphics/harfbuzz/{harfbuzz_0.9.27.bb => harfbuzz_0.9.28.bb} (87%)
 create mode 100644 meta/recipes-kernel/lttng/lttng-modules/bio-bvec-iter.patch
 delete mode 100644 meta/recipes-kernel/lttng/lttng-modules/fixup_block_driver.patch
 rename meta/recipes-multimedia/libav/{libav_0.8.9.bb => libav_0.8.11.bb} (79%)
 rename meta/recipes-multimedia/libav/{libav_9.10.bb => libav_9.13.bb} (74%)
 create mode 100644 meta/recipes-multimedia/libtiff/files/libtiff-CVE-2013-4231.patch
 rename meta/recipes-support/libpcre/{libpcre_8.34.bb => libpcre_8.35.bb} (91%)
 create mode 100644 meta/recipes-support/nss/files/nss-CVE-2013-1740.patch
 create mode 100644 meta/recipes-support/nss/files/nss-CVE-2014-1492.patch

-- 
1.8.3.1



^ permalink raw reply	[flat|nested] 2+ messages in thread

* Re: [CONSOLIDATED PULL 00/24] Updated with CVE set
  2014-05-20 17:37 [CONSOLIDATED PULL 00/24] Updated with CVE set Saul Wold
@ 2014-05-20 17:41 ` Saul Wold
  0 siblings, 0 replies; 2+ messages in thread
From: Saul Wold @ 2014-05-20 17:41 UTC (permalink / raw)
  To: openembedded-core

On 05/20/2014 10:37 AM, Saul Wold wrote:
> Richard,
>
> This contains the set from yesterday, plus additional updates
> and the first load of CVE patches (most will be back ported to
> daisy).
>
> Sau!
>
> The following changes since commit be0327b6a900be5434b6b1f08277faf2f65d5da8:
>
>    initrdscripts: fix for /run/media (2014-05-20 14:53:00 +0100)
>
> are available in the git repository at:
>
>    git://git.openembedded.org/openembedded-core-contrib sgw/stage
>    http://cgit.openembedded.org/cgit.cgi/openembedded-core-contrib/log/?h=sgw/stage
>
> Chen Qi (1):
>    runqemu-internal: add "console=ttyS0" to ramfs image kernel parameters
>
> Chong Lu (2):
>    libpcre: Update to 8.35 version
>    quilt: Update to 0.63 version
>
> Cristian Iorga (1):
>    harfbuzz: upgrade to 0.9.28
>
> João Henrique Ferreira de Freitas (2):
>    wic: add support to look in all layers and get .wks file
>    wic: add support to look in all layers and get plugins
>
> Khem Raj (1):
>    tcmode-default.inc: Default to using gcc 4.9
>
Oops, this one slipped past me, I have removed it from the 
oe-contrib/sgw/stage branch.

We are still testing with it, but waiting for the PPC issue to be 
resolved before enabling it in master.

Sau!


> Koen Kooi (1):
>    curl: work around RRECOMMENDS problems in -native* recipes
>
> Li Wang (2):
>    nss: CVE-2014-1492
>    nss: CVE-2013-1740
>
> Martin Jansa (1):
>    lttng-modules: Fix build with older kernels
>
> Paul Eggleton (2):
>    libav: upgrade 0.8.x version to 0.8.11
>    libav: upgrade 9.x version to 9.13
>
> Saul Wold (1):
>    cups: fix for cups not building without avahi
>
> Yue Tao (10):
>    Screen: fix for Security Advisory CVE-2009-1214
>    screen: fix for Security Advisory CVE-2009-1215
>    subversion: fix for Security Advisory CVE-2013-1849
>    subversion: fix for Security Advisory CVE-2013-4505
>    subversion: fix for Security Advisory CVE-2013-4131
>    subversion: fix for Security Advisory CVE-2013-1845
>    subversion: fix for Security Advisory CVE-2013-1847 and CVE-2013-1846
>    subversion: fix for Security Advisory CVE-2013-4277
>    tiff: fix for Security Advisory CVE-2013-4231
>    openssl: fix for CVE-2010-5298
>
>   meta/conf/distro/include/tcmode-default.inc        |   2 +-
>   .../openssl-1.0.1e/openssl-CVE-2010-5298.patch     |  24 +
>   .../quilt/{quilt-0.61.inc => quilt-0.63.inc}       |   5 +-
>   .../{quilt-native_0.61.bb => quilt-native_0.63.bb} |   0
>   .../quilt/{quilt_0.61.bb => quilt_0.63.bb}         |   0
>   .../subversion-CVE-2013-4131.patch                 |  42 +
>   .../subversion-CVE-2013-4277.patch                 |  15 +
>   .../subversion-CVE-2013-4505.patch                 | 130 +++
>   .../subversion/subversion-CVE-2013-1845.patch      | 171 ++++
>   .../subversion-CVE-2013-1847-CVE-2013-1846.patch   |  53 ++
>   .../subversion/subversion-CVE-2013-1849.patch      |  25 +
>   .../subversion/subversion-CVE-2013-4277.patch      |  15 +
>   .../subversion/subversion-CVE-2013-4505.patch      | 127 +++
>   .../subversion/subversion_1.6.15.bb                |   6 +-
>   .../subversion/subversion_1.7.10.bb                |   3 +
>   meta/recipes-extended/cups/cups/cups-str4402.patch | 190 +++++
>   .../screen-4.0.3/screen-4.0.2-CVE-2009-1215.patch  |  27 +
>   .../screen-4.0.3/screen-4.0.3-CVE-2009-1214.patch  |  86 ++
>   meta/recipes-extended/screen/screen_4.0.3.bb       |   2 +
>   .../{harfbuzz_0.9.27.bb => harfbuzz_0.9.28.bb}     |   8 +-
>   .../lttng/lttng-modules/bio-bvec-iter.patch        | 156 ++++
>   .../lttng/lttng-modules/fixup_block_driver.patch   | 122 ---
>   meta/recipes-kernel/lttng/lttng-modules_2.3.3.bb   |   2 +-
>   .../libav/{libav_0.8.9.bb => libav_0.8.11.bb}      |   4 +-
>   .../libav/{libav_9.10.bb => libav_9.13.bb}         |   4 +-
>   .../libtiff/files/libtiff-CVE-2013-4231.patch      |  44 +
>   meta/recipes-multimedia/libtiff/tiff_4.0.3.bb      |   3 +-
>   meta/recipes-support/curl/curl_7.36.0.bb           |   7 +-
>   .../libpcre/{libpcre_8.34.bb => libpcre_8.35.bb}   |   6 +-
>   .../nss/files/nss-CVE-2013-1740.patch              | 916 +++++++++++++++++++++
>   .../nss/files/nss-CVE-2014-1492.patch              |  68 ++
>   meta/recipes-support/nss/nss.inc                   |   2 +
>   scripts/lib/image/engine.py                        |  72 +-
>   scripts/lib/mic/plugin.py                          |  28 +-
>   scripts/runqemu-internal                           |   2 +-
>   scripts/wic                                        |   6 +
>   36 files changed, 2196 insertions(+), 177 deletions(-)
>   create mode 100644 meta/recipes-connectivity/openssl/openssl-1.0.1e/openssl-CVE-2010-5298.patch
>   rename meta/recipes-devtools/quilt/{quilt-0.61.inc => quilt-0.63.inc} (89%)
>   rename meta/recipes-devtools/quilt/{quilt-native_0.61.bb => quilt-native_0.63.bb} (100%)
>   rename meta/recipes-devtools/quilt/{quilt_0.61.bb => quilt_0.63.bb} (100%)
>   create mode 100644 meta/recipes-devtools/subversion/subversion-1.7.10/subversion-CVE-2013-4131.patch
>   create mode 100644 meta/recipes-devtools/subversion/subversion-1.7.10/subversion-CVE-2013-4277.patch
>   create mode 100644 meta/recipes-devtools/subversion/subversion-1.7.10/subversion-CVE-2013-4505.patch
>   create mode 100644 meta/recipes-devtools/subversion/subversion/subversion-CVE-2013-1845.patch
>   create mode 100644 meta/recipes-devtools/subversion/subversion/subversion-CVE-2013-1847-CVE-2013-1846.patch
>   create mode 100644 meta/recipes-devtools/subversion/subversion/subversion-CVE-2013-1849.patch
>   create mode 100644 meta/recipes-devtools/subversion/subversion/subversion-CVE-2013-4277.patch
>   create mode 100644 meta/recipes-devtools/subversion/subversion/subversion-CVE-2013-4505.patch
>   create mode 100644 meta/recipes-extended/cups/cups/cups-str4402.patch
>   create mode 100644 meta/recipes-extended/screen/screen-4.0.3/screen-4.0.2-CVE-2009-1215.patch
>   create mode 100644 meta/recipes-extended/screen/screen-4.0.3/screen-4.0.3-CVE-2009-1214.patch
>   rename meta/recipes-graphics/harfbuzz/{harfbuzz_0.9.27.bb => harfbuzz_0.9.28.bb} (87%)
>   create mode 100644 meta/recipes-kernel/lttng/lttng-modules/bio-bvec-iter.patch
>   delete mode 100644 meta/recipes-kernel/lttng/lttng-modules/fixup_block_driver.patch
>   rename meta/recipes-multimedia/libav/{libav_0.8.9.bb => libav_0.8.11.bb} (79%)
>   rename meta/recipes-multimedia/libav/{libav_9.10.bb => libav_9.13.bb} (74%)
>   create mode 100644 meta/recipes-multimedia/libtiff/files/libtiff-CVE-2013-4231.patch
>   rename meta/recipes-support/libpcre/{libpcre_8.34.bb => libpcre_8.35.bb} (91%)
>   create mode 100644 meta/recipes-support/nss/files/nss-CVE-2013-1740.patch
>   create mode 100644 meta/recipes-support/nss/files/nss-CVE-2014-1492.patch
>


^ permalink raw reply	[flat|nested] 2+ messages in thread

end of thread, other threads:[~2014-05-20 17:41 UTC | newest]

Thread overview: 2+ messages (download: mbox.gz follow: Atom feed
-- links below jump to the message on this page --
2014-05-20 17:37 [CONSOLIDATED PULL 00/24] Updated with CVE set Saul Wold
2014-05-20 17:41 ` Saul Wold

This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox