summaryrefslogtreecommitdiffstats
Commit message (Collapse)AuthorAgeFilesLines
* libiconv: fix linker failure under GCC 7Ross Burton2017-05-112-0/+37
| | | | | | | (From OE-Core rev: 7e646dd052c7013416d99d4c0201b4694fc1bbb6) Signed-off-by: Ross Burton <ross.burton@intel.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* diffutils: Fix build with gcc7Khem Raj2017-05-112-3/+231
| | | | | | | | (From OE-Core rev: 4e3aa0d6860788b984e50276540d684817e8ac4a) Signed-off-by: Khem Raj <raj.khem@gmail.com> Signed-off-by: Ross Burton <ross.burton@intel.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* ovmf: Fix build with gcc7Khem Raj2017-05-112-0/+46
| | | | | | | | | | backport a patch which fixing warnings with gcc7 (From OE-Core rev: 74fb6043f6d74b84f7efc282ac6cfc54fcb71882) Signed-off-by: Khem Raj <raj.khem@gmail.com> Signed-off-by: Ross Burton <ross.burton@intel.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* valgrind: Fix arm build with gcc7Khem Raj2017-05-112-1/+121
| | | | | | | | | | Add function to remove -mcpu compiler options on arm (From OE-Core rev: 6a053573dc4e6c7490e0e86fd043e425ea85f12c) Signed-off-by: Khem Raj <raj.khem@gmail.com> Signed-off-by: Ross Burton <ross.burton@intel.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* puzzles: Add -Wno-error=format-overflow if compiler supports itKhem Raj2017-05-112-1/+34
| | | | | | | | | | | | Fixes build with gcc7 in such a way that it keeps working with older compilers who dont support -Wno-error=format-overflow= option (From OE-Core rev: 4b159968d6181155c270e2547706933b9df4d80b) Signed-off-by: Khem Raj <raj.khem@gmail.com> Signed-off-by: Ross Burton <ross.burton@intel.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* gnu-efi: Fix build with gcc7Khem Raj2017-05-112-1/+36
| | | | | | | | (From OE-Core rev: 7f14d7de88da7e6e1b6934f9c608d67d80dc8398) Signed-off-by: Khem Raj <raj.khem@gmail.com> Signed-off-by: Ross Burton <ross.burton@intel.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* gstreamer1.0-libav: Fix build with gcc7Khem Raj2017-05-112-6/+41
| | | | | | | | (From OE-Core rev: 828a7dd0a7f2a02118a97ece49ae35d1b0bc4611) Signed-off-by: Khem Raj <raj.khem@gmail.com> Signed-off-by: Ross Burton <ross.burton@intel.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* mdadm: Backport and make fixes for building with gcc7Khem Raj2017-05-116-0/+337
| | | | | | | | (From OE-Core rev: c901af4574693ede5f1dcbccccc7c5a820b3d659) Signed-off-by: Khem Raj <raj.khem@gmail.com> Signed-off-by: Ross Burton <ross.burton@intel.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* aspell: Fix build with gcc7Khem Raj2017-05-112-1/+43
| | | | | | | | (From OE-Core rev: 4d417d0a9bb71d6bf068481c5ac0e3e3b2601d66) Signed-off-by: Khem Raj <raj.khem@gmail.com> Signed-off-by: Ross Burton <ross.burton@intel.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* pax: Fix build with gcc7Khem Raj2017-05-112-4/+43
| | | | | | | | (From OE-Core rev: 9c222c25e6a8b0414eee3e5f2e7c018b0c51ca4f) Signed-off-by: Khem Raj <raj.khem@gmail.com> Signed-off-by: Ross Burton <ross.burton@intel.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* libtirpc: Enable des APIs for muslKhem Raj2017-05-113-141/+33
| | | | | | | | | | | Use memset() API instead of __bzero() Drop the patch removing des_* functions for musl (From OE-Core rev: 2be873301420ec6ca2c70d899b7c49a7e2b0954d) Signed-off-by: Khem Raj <raj.khem@gmail.com> Signed-off-by: Ross Burton <ross.burton@intel.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* libtirpc: Expose key_secretkey_is_set APIKhem Raj2017-05-112-0/+25
| | | | | | | | | | libnsl needs this API (From OE-Core rev: 188fca2dec4b2da66c2f335bd92bfe874e3e7715) Signed-off-by: Khem Raj <raj.khem@gmail.com> Signed-off-by: Ross Burton <ross.burton@intel.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* libidn: Fix build with gcc7Khem Raj2017-05-113-156/+1004
| | | | | | | | | | | Replace a local patch for format warning with the one that got committed upstream (From OE-Core rev: 0f3e67a5d9bcd304fef0618f62f48fcf087d30c7) Signed-off-by: Khem Raj <raj.khem@gmail.com> Signed-off-by: Ross Burton <ross.burton@intel.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* rpcbind: Remove uneeded patchesKhem Raj2017-05-113-60/+0
| | | | | | | | | | | We were carrying patches which are no longer needed when building rpcbind for musl (From OE-Core rev: 56b3b440fa139c8f132b2b71dc6b8eb0ee974e7a) Signed-off-by: Khem Raj <raj.khem@gmail.com> Signed-off-by: Ross Burton <ross.burton@intel.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* libtirpc: Backport fixes from 1.0.2rc3Khem Raj2017-05-114-86/+762
| | | | | | | | | | These fixes are needed for it to work with gcc7 (From OE-Core rev: 7302d099f65215fe161f16593ad6f87e1944a8f7) Signed-off-by: Khem Raj <raj.khem@gmail.com> Signed-off-by: Ross Burton <ross.burton@intel.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* libsolv: switch on ENABLE_COMPLEX_DEPSAlexander Kanavin2017-05-111-1/+1
| | | | | | | | | | This is required by recent versions of libdnf. (From OE-Core rev: cb9596a822dc75319ce39b8f0a7133a1e58fec43) Signed-off-by: Alexander Kanavin <alexander.kanavin@linux.intel.com> Signed-off-by: Ross Burton <ross.burton@intel.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* GNU_MIRROR: switch from ftp to httpsMaxin B. John2017-05-111-1/+1
| | | | | | | | | | Based on the same reason behind DEBIAN's switch from ftp: https://www.debian.org/News/2017/20170425 (From OE-Core rev: ba119d836c0f4b20a39c92fa2e64abb0d5a55ad4) Signed-off-by: Maxin B. John <maxin.john@intel.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* DEBIAN_MIRROR: switch from ftp to httpMaxin B. John2017-05-112-19/+19
| | | | | | | | | | | | | | All public-facing debian.org FTP services will be shut down on November 1, 2017 The mirrors should just be accessed using HTTP instead. https://www.debian.org/News/2017/20170425 Fixes [YOCTO #11413] (From OE-Core rev: c2cdc4d9155d7a3b9cba60fa9cbb448cf64c62bd) Signed-off-by: Maxin B. John <maxin.john@intel.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* useradd: remove preinst script referring to recipe sysrootMaxin B. John2017-05-111-1/+1
| | | | | | | | | | | | | | | | Remove recipe-specific-sysroot details from the preinst scripts generated by useradd.bbclass. This was added to match the default from bitbake.conf. Unlike the default case, the dependencies used by useradd mean that a default passwd/group file is always present. This means we don't need the native sysroot fallback. Fixes [YOCTO #11460] (From OE-Core rev: dfc9323c1cd7814989766be5bd1861fbaa739d2d) Signed-off-by: Maxin B. John <maxin.john@intel.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* useradd.bbclass: Handle COMPONENTS_DIR when restoring statePeter Kjellerstedt2017-05-112-1/+6
| | | | | | | | | | | The export of PSEUDO in useradd_sysroot() contains references to ${COMPONENTS_DIR}. These need to be handled when restoring postinst-useradd-${PN} from the sstate cache. (From OE-Core rev: 097875bc9ab9d60a452b01ac6825775983684d68) Signed-off-by: Peter Kjellerstedt <peter.kjellerstedt@axis.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* bitbake.conf: Add COMPONENTS_DIR for ${STAGING_DIR}-componentsPeter Kjellerstedt2017-05-1112-17/+18
| | | | | | | | | | The path to where to install and find the sysroot components is used in many places. This warrants it to get its own variable. (From OE-Core rev: 70a84b525470f72339568409daf84845904e4cab) Signed-off-by: Peter Kjellerstedt <peter.kjellerstedt@axis.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* yocto-project-qs: Updated output for git clone of meta-intel.Scott Rifenbark2017-05-101-5/+5
| | | | | | | (From yocto-docs rev: 446ca716612ced4931b42abd769e0743a3413710) Signed-off-by: Scott Rifenbark <srifenbark@gmail.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* yocto-project-qs: Updated git clone output for pyro poky.Scott Rifenbark2017-05-101-5/+6
| | | | | | | (From yocto-docs rev: 50b2ca338312309dd434418e0c88e725c3791ee1) Signed-off-by: Scott Rifenbark <srifenbark@gmail.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* ref-manual: Removed section on checking for build-time dependencies.Scott Rifenbark2017-05-101-59/+0
| | | | | | | | | | This scheme has changed due to recipe-specific sysroots making it obsolete. Removed the entire section. (From yocto-docs rev: c52a896829212863402e5532dd8fb7fe4c247fca) Signed-off-by: Scott Rifenbark <srifenbark@gmail.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* ref-manual, dev-manual: replaced "depexp" with "taskexp"Scott Rifenbark2017-05-103-4/+4
| | | | | | | (From yocto-docs rev: 3d7a13357a12b70d0c46b8aafdaf2ace20dcb970) Signed-off-by: Scott Rifenbark <srifenbark@gmail.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* ref-manual: Removed text surrounding BB_SETSCENE_VERIFY_FUNCTION* varsScott Rifenbark2017-05-101-11/+0
| | | | | | | | | | | | The BB_SETSCENE_VERIFY_FUNCTION2 variable no longer exists. I removed a link to the BB manual to this variable description, which no longer exists. Also, removed a paragraph in the discussion around setscene that talked about the variable. (From yocto-docs rev: 1f8e3d53ee72c369cb1211332e074976737fd76b) Signed-off-by: Scott Rifenbark <srifenbark@gmail.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* dev-manual: Cleaned up "Gdbserver" termScott Rifenbark2017-05-101-16/+16
| | | | | | | | | This should be "gdbserver" when referred to generically. (From yocto-docs rev: 83b2be50e34b0c07cce1f27b55e595752b80b3ea) Signed-off-by: Scott Rifenbark <srifenbark@gmail.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* dev-manual: Updated a few occurrences of "dnf" to "DNF"Scott Rifenbark2017-05-101-3/+3
| | | | | | | | | | These depend on context. In general, "DNF" is the preferred terminology unless directly referring to an application or such. (From yocto-docs rev: 29012a8f8e21b964e1ea6d32841dffa8dae7df9f) Signed-off-by: Scott Rifenbark <srifenbark@gmail.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* dev-manual: Changed "Dnf" to "DNF" for consistencyScott Rifenbark2017-05-102-3/+3
| | | | | | | (From yocto-docs rev: 22ca6c591fd28995a5444635dc787c67f8af822a) Signed-off-by: Scott Rifenbark <srifenbark@gmail.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* ref-manual: Added links for variablesScott Rifenbark2017-05-101-5/+8
| | | | | | | | | Needed to add cross-links into the glossary for various variables. (From yocto-docs rev: 45acf78a2f99e8fda91042c2bee30094255e5a10) Signed-off-by: Scott Rifenbark <srifenbark@gmail.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* ref-manual: Added 4 DISTRO_FEATURES* variable descriptions.Scott Rifenbark2017-05-101-0/+77
| | | | | | | | | | | | | | | | Added the following: * DISTRO_FEATURES_NATIVE * DISTRO_FEATURES_NATIVESDK * DISTRO_FEATURES_FILTER_NATIVE * DISTRO_FEATURES_FILTER_NATIVESDK to the variables glossary. (From yocto-docs rev: ee68291c32cdbf8004c24295784c0f70f02c0a55) Signed-off-by: Scott Rifenbark <srifenbark@gmail.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* ref-manual, dev-manual: Completed first draft of 2.3 migration section.Scott Rifenbark2017-05-108-109/+538
| | | | | | | (From yocto-docs rev: 42ab9e34da640b46d39741c9c83648dc65518ec1) Signed-off-by: Scott Rifenbark <srifenbark@gmail.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* ref-manual: Applied 2.3 Migration review comments.Scott Rifenbark2017-05-101-49/+120
| | | | | | | (From yocto-docs rev: 08a077adea37d5b3eb3ac119b1a5981a6fef21a3) Signed-off-by: Scott Rifenbark <srifenbark@gmail.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* ref-manual: Added new glossary entries for HOSTTOOLS* variables.Scott Rifenbark2017-05-101-0/+47
| | | | | | | | | Entry added for HOSTTOOLS and HOSTTOOLS_NONFATAL. (From yocto-docs rev: c766920a13071c1bb46a195ea07be38962d2e12d) Signed-off-by: Scott Rifenbark <srifenbark@gmail.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* build-appliance-image: Update to master head revisionyocto-2.3pyro-17.0.0Richard Purdie2017-05-011-1/+1
| | | | | | (From OE-Core rev: 123962018251dfb1d6ca5aa5c0d02534007de3ab) Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* sstate.bbclass, staging.bbclass: Handle HOSTTOOLS_DIR when restoring statePeter Kjellerstedt2017-05-013-3/+3
| | | | | | | | | | | Paths to host tools that have been copied to ${HOSTTOOLS_DIR} may end up in the sstate cache. They thus need to be corrected when restoring from the sstate cache. (From OE-Core rev: f8671aecf05a286dd2b34b07bb5fbbe0c31e26d0) Signed-off-by: Peter Kjellerstedt <peter.kjellerstedt@axis.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* bitbake.conf: Add HOSTTOOLS_DIR for ${TMPDIR}/hosttoolsPeter Kjellerstedt2017-05-013-3/+6
| | | | | | | | | | | The path to where to install and find the tools copied from the host environment is already used in a couple of places. This warrants it to get its own variable. (From OE-Core rev: 8164c466943ffedff399009bf5547dba4f06d6c8) Signed-off-by: Peter Kjellerstedt <peter.kjellerstedt@axis.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* build-appliance-image: Update to master head revisionRichard Purdie2017-04-291-1/+1
| | | | | | (From OE-Core rev: 4fe59183dae7c556363bc885cfda11a38c0d2d47) Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* ref-manual: Added warning for nativesdk recipe naming conventionScott Rifenbark2017-04-291-0/+8
| | | | | | | | | | | | | | Fixes [YOCTO #11411] To help clear up the importance of the naming convention a user must follow when creating a nativesdk-myrecipe.bb recipe that inherits the nativesdk class, I placed a warning note at the end of the section for the "nativesdk.bbclass" section. (From yocto-docs rev: e6dc512aaeb0267c2c15c17a599c6950728b4547) Signed-off-by: Scott Rifenbark <srifenbark@gmail.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* poky.ent: Added "iputils-ping" to Ubuntu/Debian essential packagesScott Rifenbark2017-04-291-1/+1
| | | | | | | | | | | | Fixes [YOCTO #11310] Added the "iputils-ping" package to the list of essential host packages. (From yocto-docs rev: c6478419940405091d59312d22c45e3f32f9c94d) Signed-off-by: Scott Rifenbark <srifenbark@gmail.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* poky.ent: Added "python3-pexpect" to distrosScott Rifenbark2017-04-291-4/+4
| | | | | | | | | | | Fixes [YOCTO #11310] Added this package to Ubuntu/Debina, Fedora, and OpenSUSE. (From yocto-docs rev: e010d1abc083ed064c5340146bcac213286d973c) Signed-off-by: Scott Rifenbark <srifenbark@gmail.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* build-appliance-image: Update to master head revisionRichard Purdie2017-04-291-1/+1
| | | | | | (From OE-Core rev: 766bef5755521960e24ed7192214bf66bbee8354) Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* package_deb.bbclass: Avoid writing empty custom fieldsAndreas Oberritter2017-04-291-1/+1
| | | | | | | | | | Avoids parser errors if PACKAGE_ADD_METADATA_DEB is set to an empty value. (From OE-Core rev: f0959c0908dfb386d29f13fcd3e57b2b004c6c14) Signed-off-by: Andreas Oberritter <obi@opendreambox.org> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* package_deb.bbclass: Fix multi-line package descriptionsAndreas Oberritter2017-04-291-4/+1
| | | | | | | | | | | In deb control files, each line of a long description starts with a single space. Empty lines are represented by a single space followed by a single full stop character. (From OE-Core rev: f66278f471c0bf9421ce2c55a56a144a0f9332bf) Signed-off-by: Andreas Oberritter <obi@opendreambox.org> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* busybox: make bash a valid login shell if enabledAndreas Oberritter2017-04-291-0/+9
| | | | | | | | | | Add bash to /etc/shells if busybox is built with bash applet anabled to fix login via dropbear. (From OE-Core rev: 86a2db0b2997fd05882ae0119ef45b1ea5411d39) Signed-off-by: Andreas Oberritter <obi@opendreambox.org> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* gst-player: Disable visualizations as workaroundJussi Kukkonen2017-04-292-0/+60
| | | | | | | | | | | Audio playback in gtk-play is broken with vaapi because the visualizations do not work: disable visualizations as workaround. This should be reverted as soon as [YOCTO #11410] is fixed. (From OE-Core rev: 1092a8d4bc78a53f60ad0137aeb08b31853db9eb) Signed-off-by: Jussi Kukkonen <jussi.kukkonen@intel.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* libxml2: CVE-2016-9318Catalin Enache2017-04-292-0/+208
| | | | | | | | | | | | | | | | | | | | libxml2 2.9.4 and earlier, as used in XMLSec 1.2.23 and earlier and other products, does not offer a flag directly indicating that the current document may be read but other files may not be opened, which makes it easier for remote attackers to conduct XML External Entity (XXE) attacks via a crafted document. Reference: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2016-9318 Upstream patch: https://git.gnome.org/browse/libxml2/commit/?id=2304078555896cf1638c628f50326aeef6f0e0d0 (From OE-Core rev: 0dd44c00e3b2fbc3befc3f361624a3a60161d979) Signed-off-by: Catalin Enache <catalin.enache@windriver.com> Signed-off-by: Ross Burton <ross.burton@intel.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* ghostscript : CVE-2016-10219, CVE-2016-10220, CVE-2017-5951Catalin Enache2017-04-294-0/+151
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | The intersect function in base/gxfill.c in Artifex Software, Inc. Ghostscript 9.20 allows remote attackers to cause a denial of service (divide-by-zero error and application crash) via a crafted file. The gs_makewordimagedevice function in base/gsdevmem.c in Artifex Software, Inc. Ghostscript 9.20 allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via a crafted file that is mishandled in the PDF Transparency module. The mem_get_bits_rectangle function in base/gdevmem.c in Artifex Software, Inc. Ghostscript 9.20 allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via a crafted file. References: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2016-10219 http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2016-10220 http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2017-5951 Upstream patches: http://git.ghostscript.com/?p=ghostpdl.git;h=4bef1a1d32e29b68855616020dbff574b9cda08f http://git.ghostscript.com/?p=ghostpdl.git;h=daf85701dab05f17e924a48a81edc9195b4a04e8 http://git.ghostscript.com/?p=ghostpdl.git;h=bfa6b2ecbe48edc69a7d9d22a12419aed25960b8 (From OE-Core rev: 6679a4d4379f6f18554ed0042546cce94d5d0b19) Signed-off-by: Catalin Enache <catalin.enache@windriver.com> Signed-off-by: Ross Burton <ross.burton@intel.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* bind: Security fix CVE-2016-6170Yi Zhao2017-04-292-0/+1091
| | | | | | | | | | | | | | | | | | | | | | CVE-2016-6170: ISC BIND through 9.9.9-P1, 9.10.x through 9.10.4-P1, and 9.11.x through 9.11.0b1 allows primary DNS servers to cause a denial of service (secondary DNS server crash) via a large AXFR response, and possibly allows IXFR servers to cause a denial of service (IXFR client crash) via a large IXFR response and allows remote authenticated users to cause a denial of service (primary DNS server crash) via a large UPDATE message. External References: https://nvd.nist.gov/vuln/detail/CVE-2016-6170 Patch from: https://source.isc.org/cgi-bin/gitweb.cgi?p=bind9.git;a=commit;h=1bbcfe2fc84f57b1e4e075fb3bc2a1dd0a3a851f (From OE-Core rev: 14abd767349bc868ca59838f1af3aaf17dfe4350) Signed-off-by: Yi Zhao <yi.zhao@windriver.com> Signed-off-by: Ross Burton <ross.burton@intel.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* bind: Security fix CVE-2016-8864Yi Zhao2017-04-292-0/+220
| | | | | | | | | | | | | | | | | | | | CVE-2016-8864: named in ISC BIND 9.x before 9.9.9-P4, 9.10.x before 9.10.4-P4, and 9.11.x before 9.11.0-P1 allows remote attackers to cause a denial of service (assertion failure and daemon exit) via a DNAME record in the answer section of a response to a recursive query, related to db.c and resolver.c. External References: https://nvd.nist.gov/vuln/detail/CVE-2016-8864 Patch from: https://source.isc.org/cgi-bin/gitweb.cgi?p=bind9.git;a=commit;h=c1d0599a246f646d1c22018f8fa09459270a44b8 (From OE-Core rev: c06f3a5993c7d63d91840c2a4d5b621e946ef78f) Signed-off-by: Yi Zhao <yi.zhao@windriver.com> Signed-off-by: Ross Burton <ross.burton@intel.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>