| Commit message (Collapse) | Author | Age | Files | Lines |
|---|
| |
|
|
|
|
|
|
|
|
|
|
| |
(From OE-Core rev: 8652c95ceb505dd7386166842486c833ea5a7ee7)
(From OE-Core rev: 7a657beeb1ff65111481501e72092b8af021c3eb)
Signed-off-by: Alexander Kanavin <alex.kanavin@gmail.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
Signed-off-by: Adrian Bunk <bunk@stusta.de>
Signed-off-by: Anuj Mittal <anuj.mittal@intel.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
Drop patch from 81485be19b18 ("gnutls: don't use HOSTTOOLS_DIR/bash as a
shell on target") as upstream now honours POSIX_SHELL when set as the
primary target shell.
(From OE-Core rev: bc487ced3be40569157fb40c99bfa68871f74744)
(From OE-Core rev: f4f933297a77f99783f9a5fb571503e1f45ad259)
Signed-off-by: Alex Kiernan <alex.kiernan@gmail.com>
Signed-off-by: Ross Burton <ross.burton@intel.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
Signed-off-by: Adrian Bunk <bunk@stusta.de>
Signed-off-by: Anuj Mittal <anuj.mittal@intel.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
fix CVE-2020-7211 for qemu slirp submodule
see :
https://www.openwall.com/lists/oss-security/2020/01/17/2
https://gitlab.freedesktop.org/slirp/libslirp/commit/14ec36e107a8c9af7d0a80c3571fe39b291ff1d4
(From OE-Core rev: 31362d739834377ac4ab880029c3e3dda0cd7698)
(From OE-Core rev: c68323151b9bafb5f52dda6a4bd11712feff2e83)
Signed-off-by: Chee Yang Lee <chee.yang.lee@intel.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
Signed-off-by: Adrian Bunk <bunk@stusta.de>
Signed-off-by: Anuj Mittal <anuj.mittal@intel.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
|
| |
|
|
|
|
|
|
|
|
|
|
| |
(From OE-Core rev: 5ea3d9d83ed695827634e3216664c13fcff6d48a)
(From OE-Core rev: b7b96bd938cf4167b4abeebb68d35ba74ce0d3c6)
Signed-off-by: Changqing Li <changqing.li@windriver.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
Signed-off-by: Adrian Bunk <bunk@stusta.de>
Signed-off-by: Anuj Mittal <anuj.mittal@intel.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
|
| |
|
|
|
|
|
|
|
|
| |
LICENSE checksum changed due to 2019 -> 2020 update.
(From OE-Core rev: b15db3ce3af3460b7f9ae1e186e453a79a056511)
Signed-off-by: Adrian Bunk <bunk@stusta.de>
Signed-off-by: Anuj Mittal <anuj.mittal@intel.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
| |
(From OE-Core rev: 287de363f80a2f9919b942a1349f58575e8b91d8)
(From OE-Core rev: e0ca79be7d7a5574daea9866d20fdbc668defedc)
Signed-off-by: Wang Mingyu <wangmy@cn.fujitsu.com>
Signed-off-by: Ross Burton <ross.burton@intel.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
[ includes the fix for CVE-2019-14855 ]
Signed-off-by: Adrian Bunk <bunk@stusta.de>
Signed-off-by: Anuj Mittal <anuj.mittal@intel.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
|
| |
|
|
|
|
|
|
| |
(From OE-Core rev: b249fddf46b1e1ebeedf3c599acdadd93e6d046a)
Signed-off-by: Haiqing Bai <Haiqing.Bai@windriver.com>
Signed-off-by: Anuj Mittal <anuj.mittal@intel.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
when do_populate_cve_db forced stop at certain point, the
DB execution are stoped however the temporary database
file (DB-JOURNAL) are not removed. This db-journal file
indicates that DB is incomplete and set DB in readonly
mode. So when db-journal exist, remove both DB and the
db-journal and build the DB again from scratch.
[YOCTO #13682]
(From OE-Core rev: 70713df25b8ae27a21e53b0b9234567d7053800a)
(From OE-Core rev: 3f3bdb014cb6d87ee2e22db3c76b99ca6085787a)
Signed-off-by: Lee Chee Yang <chee.yang.lee@intel.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
Signed-off-by: Adrian Bunk <bunk@stusta.de>
Signed-off-by: Anuj Mittal <anuj.mittal@intel.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
Backport the 1st -- 9th patches listed by
<https://github.com/git/git/compare/v2.17.4...v2.17.5>
to solve CVE-2020-11008.
Also backport the 2nd -- 4th patches listed by
<https://github.com/git/git/compare/v2.17.3...v2.17.4>
for CVE-2020-5260 (not necessary, and only the 1st patch is necessary
for this CVE), because some of the above 9 patches are based on them.
(From OE-Core rev: 63c7f76912f097cdfb95296778c42887b7336925)
Signed-off-by: Li Zhou <li.zhou@windriver.com>
Signed-off-by: Anuj Mittal <anuj.mittal@intel.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
|
| |
|
|
|
|
|
|
|
|
|
| |
Backport patch from <https://github.com/git/git/commit/
9a6bbee8006c24b46a85d29e7b38cfa79e9ab21b> to solve CVE-2020-5260.
(From OE-Core rev: e4c3adbaae41147f921dde638b25911d1f5422e1)
Signed-off-by: Li Zhou <li.zhou@windriver.com>
Signed-off-by: Anuj Mittal <anuj.mittal@intel.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
|
| |
|
|
|
|
|
|
|
|
|
|
| |
Backport the CVE patch from upstream:
git://sourceware.org/git/glibc.git
commit d93769405996dfc11d216ddbe415946617b5a494
(From OE-Core rev: 807d416cb8b01de4dbb96236653bb47447018ad0)
Signed-off-by: Zhixiong Chi <zhixiong.chi@windriver.com>
Signed-off-by: Anuj Mittal <anuj.mittal@intel.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
With --force-overwrite (implied by --force-all), dpkg will not abort
when a package overwrites files from different packages. As this can
also lead to "The following package disappeared from your system as
all files have been overwritten by other packages: <package>" and
subsequently broken dependencies, this makes the simple case of
conflicting files hard to debug.
Instead of finding all possibly required force options, only disable
overwrite for now.
(From OE-Core rev: b57b311cfaabbcd08ce51760abcd64cf23e1435b)
Signed-off-by: Jan Luebbe <jlu@pengutronix.de>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
Signed-off-by: Anuj Mittal <anuj.mittal@intel.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
* with Ubuntu 20.04 which is using python 3.8 I'm seeing a lot of errors like:
ERROR: libxml2-2.9.10-r0 do_package: Can NOT get PRAUTO, exception No module named '_sysconfigdata'
not sure what caused this from python 3.8, but this seems to work
* PRserv is enabled with:
PRSERV_HOST = "localhost:0"
(From OE-Core rev: 4b26eaf7152fb712aba47a0c746333578f58ee8d)
(From OE-Core rev: c314c6695acca9ea68e38359fb03a94afa37bb2b)
Signed-off-by: Martin Jansa <Martin.Jansa@gmail.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
(cherry picked from commit c23d6f77994698e71d9a011cddec1237158b15ca)
Signed-off-by: Anuj Mittal <anuj.mittal@intel.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
|
| |
|
|
|
|
|
|
|
| |
(From OE-Core rev: e69b89575e5ccec243658e09936908dd9e5d45ef)
Signed-off-by: Khem Raj <raj.khem@gmail.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
Signed-off-by: Anuj Mittal <anuj.mittal@intel.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
The specific issue here is rpc/rpc.h, but its likely more general.
/usr/include is searched for rpc/rpc.h and if it exists on the
system, it changes behavior. If you are using the extended buildtools
tarball on a machine that has /usr/include/rpc/rpc.h, it will decide
that is good enough and not continue to search. nis fails to build
because /usr/include and /usr/lib are not part of the include/link
paths for the buildtools tarball compiler(nor should they be).
This makes it so python3-native will not build if you are using the
extended buildtools tarball, but from a larger issue perspective it
is building in likely different ways depending on what machine it
is building on.
libtirpc is already a depend so we shouldn't need the hosts rpc/rcp.h.
(From OE-Core rev: f37dfc7907ae7bac08d40468ddde2e5b8bba030c)
(From OE-Core rev: db8bef336849570dd99900b173c44cc47b208058)
Signed-off-by: Jeremy A. Puhlman <jpuhlman@mvista.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
(cherry picked from commit 400743867de587579dee85388c30190f353f80c8)
Signed-off-by: Anuj Mittal <anuj.mittal@intel.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
| |
This also un-breaks python3 ptest which got broken
with 1.1.1e update.
(From OE-Core rev: bd3e0d724004a346921a25defa6d812d48d6108a)
Signed-off-by: Alexander Kanavin <alex.kanavin@gmail.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
(cherry picked from commit b4ddf5b9d8cd769b7026663f93c8bc69b55d8cbf)
[AK: bugfix only update]
Signed-off-by: Armin Kuster <akuster808@gmail.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
|
| |
|
|
|
|
|
|
|
|
|
|
|
| |
Backported patch removed.
(From OE-Core rev: 683818289ced6cd3c70860b5c97de2e89169096b)
Signed-off-by: Adrian Bunk <bunk@stusta.de>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
(cherry picked from commit 710bc0f8544f54750c8fb7b8affa243932927a24)
[AK: bug fix only update]
Signed-off-by: Armin Kuster <akuster808@gmail.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
|
| |
|
|
|
|
|
|
|
|
| |
(From OE-Core rev: 285957cba45a15c90ceb062a55c957e81486a031)
Signed-off-by: Denys Dmytriyenko <denys@ti.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
(cherry picked from commit 57fcf9b517fe95e871122946cb99fe7fa9fd2e26)
Signed-off-by: Armin Kuster <akuster808@gmail.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
Fix the following manpage conflicts:
* check_data_file_clashes: Package inetutils-doc wants to install file /usr/share/man/man1/tftp.1
But that file is already provided by package * tftp-hpa-doc
* check_data_file_clashes: Package inetutils-doc wants to install file /usr/share/man/man8/tftpd.8
But that file is already provided by package * tftp-hpa-doc
* check_data_file_clashes: Package netkit-telnet-doc wants to install file /usr/share/man/man8/telnetd.8
But that file is already provided by package * inetutils-doc
(From OE-Core rev: 1c2a1f29aa720d376bc7f88edfcb1ccecc35f6c2)
Signed-off-by: Ovidiu Panait <ovidiu.panait@windriver.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
(cherry picked from commit fc14bfd60ad86094f65ebefbd10dbddc112d2698)
Signed-off-by: Armin Kuster <akuster808@gmail.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
pseudo-native is special in that bitbake ends up executing it from the
sysroot-components directory before we have any workdirs for the bitbake
fakeroot worker. Since we switched to dynamically linking sqlite, it
means sqlite from the host system may be found, we really want the version
in sysroot-components. Trying to run tasks to create some special environment
for pseudo is hard and error prone. The simplest fix is to add an RPATH to
the binary so that it can correctly find the sqlite we want.
Unfortunately passing $ORIGIN into make doesn't work so well with shell
quoting so we have to fix that during do_install.
[YOCTO #13814]
(From OE-Core rev: 2cbb3a663a3d3b2dcf8c12c26843d6087789ded0)
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
(cherry picked from commit 3937ca9e2dfabb1ce9bce1d536b60b1e2a43739b)
Signed-off-by: Armin Kuster <akuster808@gmail.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
CPE version could be '-' to mean no version info.
Current cve_check treat it as not valid and does not report these
CVE but some of these could be a valid vulnerabilities.
Since non-valid CVE can be whitelisted, so treat '-' as all version
and report all these CVE to capture possible vulnerabilities.
Non-valid CVE to be whitelisted separately.
[YOCTO #13617]
(From OE-Core rev: 1e8e188514584f9f972c0eb733c10a61853ec3d0)
Signed-off-by: Lee Chee Yang <chee.yang.lee@intel.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
(cherry picked from commit c69ee3594079589d27c10db32bc288566ebde9ef)
Signed-off-by: Armin Kuster <akuster808@gmail.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
When the externalsrc class is used the tasks listed in
SRCTREECOVEREDTASKS are deleted to prevent them being executed. If
externalsrc is used for the kernel then this will include
virtual/kernel:do_patch.
We can depend on do_shared_workdir instead as this will survive when
externalsrc is used.
(From OE-Core rev: 5ac98c776f9b77804a0ee812f47f3ecf593e432f)
Signed-off-by: Paul Barker <pbarker@konsulko.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
(cherry picked from commit 2c17d35cc7b9c5e01fd5829858d2f0234e7ac8d6)
Signed-off-by: Anuj Mittal <anuj.mittal@intel.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
When the externalsrc class is used the tasks listed in
SRCTREECOVEREDTASKS are deleted to prevent them being executed. If
externalsrc is used for the kernel then this will include
virtual/kernel:do_patch.
We can depend on do_shared_workdir instead as this will survive when
externalsrc is used.
(From OE-Core rev: c30d6b98b739f1ee9c2ebb937e739453899b513d)
Signed-off-by: Paul Barker <pbarker@konsulko.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
(cherry picked from commit eab605bab94552046ec4adae5debe026cc03bb4c)
Signed-off-by: Anuj Mittal <anuj.mittal@intel.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
The merging of config fragments is performend in the do_kernel_configme
task and so config fragments will not be supported when this task is
removed from the dependency tree.
kernel-yocto adds additional tasks which may modify the source directory
to SRCTREECOVEREDTASKS so that they are removed when using externalsrc.
However, do_kernel_configme should be safe to use, the only modification
to the source tree is the potential creation of the '.kernel-meta'
directory and the '.metadir' file.
(From OE-Core rev: b7ae0fa668be008e46982190553d0738a5465efe)
Signed-off-by: Paul Barker <pbarker@konsulko.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
(cherry picked from commit 44f04c039a4d61dd18666e42b9b9865cbc3ada9e)
Signed-off-by: Anuj Mittal <anuj.mittal@intel.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
As opkglibdir starts with a /, os.path.join will ignore
self.target_rootfs, leading to an attempt to remove /var/lib/opkg.
This only fails if it exists on the host, explaining why this remained
undiscovered for long.
(From OE-Core rev: 71711f5f20fc3744be4c9188a75606f60d524ff9)
Signed-off-by: Jan Luebbe <jlu@pengutronix.de>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
(cherry picked from commit fc974977cea389f54e7fc7de7b1c8fd3d8bafe58)
Signed-off-by: Anuj Mittal <anuj.mittal@intel.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
If there already is a package providing (and conflicting against)
packages what should be installed, apt will try remove the conflicting
package (target-sdk-provides-dummy) and any that depend on it (like apt
and dpkg). This usually fails because of the protection of essential
packages. In that case, no -dev/-dbg packages are installed to the SDK.
Avoid this problem by checking which packages are already provided and
removing them from the list to be installed. Also sort the list to make
it easier to read when debugging.
(From OE-Core rev: 978eeeb7c975441e5b05253a63b9d954af2b903b)
Signed-off-by: Jan Luebbe <jlu@pengutronix.de>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
(cherry picked from commit 3ffb339dd55f8ca7c952fd3390608510f772e19f)
Signed-off-by: Anuj Mittal <anuj.mittal@intel.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
|
| |
|
|
|
|
|
|
|
|
|
|
|
| |
This is needed for a later change to avoid installing packages which are
already provided by an installed package.
(From OE-Core rev: 1bedfdf58d3ebd06126aa45c7bdc84e66c750725)
Signed-off-by: Jan Luebbe <jlu@pengutronix.de>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
(cherry picked from commit ad72dfaaa2caf2c39d033dc1682f0bbbbe45dbbd)
Signed-off-by: Anuj Mittal <anuj.mittal@intel.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
In commit 7d214b34e11dc57316ed5c1c7747c4601286f6d2, only the code in the
for loop was modified to store the pkgarch value. The code used if there
was no empty line at the end was not modified.
Instead of fixing the duplicated code, remove it and just make sure that
a final empty line is processed.
(From OE-Core rev: 7dba11373af742d4e4924e14e8fd386d53ffddbd)
Signed-off-by: Jan Luebbe <jlu@pengutronix.de>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
(cherry picked from commit a7b93c695b23d015607b179d98526b9b14c03d45)
Signed-off-by: Anuj Mittal <anuj.mittal@intel.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
apt install can decide to remove already installed packages if there are
conflicts. Avoid this by explicitly specifying --no-remove. This will
then cause a "E: Packages need to be removed but remove is disabled."
message.
(From OE-Core rev: 15790fa224f405652e8ccc93c01dee04a7259246)
Signed-off-by: Jan Luebbe <jlu@pengutronix.de>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
(cherry picked from commit 9605a488b55042add012e9aeef13ab3f4e70e6e5)
Signed-off-by: Anuj Mittal <anuj.mittal@intel.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
During a busybox upgrade on a ipk based system, it is possible
that busybox is the only shell in the system. During the uninstall
the alternative for /bin/sh is removed and everything after that
goes down hill.
* Add a check to verify if busybox is the shell, and save it to
the busyboxrm directory created in tmp. Then add an alternative
for /bin/sh that points to that busybox at the lowest priority.
* Add PATH to the busyboxrm directory using shell(as during an upgrade
busybox and its links are missing).
* When install over remove extra busybox if present.
deb and rpm are uneffected by the bug because they both drag in bash,
however neither upgrade seemed to have issue with the changes.
[YOCTO 13850]
(From OE-Core rev: 443d1c8c7fb5a69c03c813f3e90758e0add7df4b)
Signed-off-by: Jeremy A. Puhlman <jpuhlman@mvista.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
(cherry picked from commit a9d2af8f5b3da8239cf00a52883ca596a19ea23a)
Signed-off-by: Anuj Mittal <anuj.mittal@intel.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
GSocketClient in GNOME GLib through 2.62.4 may occasionally connect directly
to a target address instead of connecting via a proxy server when configured
to do so, because the proxy_addr field is mishandled. This bug is timing-dependent
and may occur only sporadically depending on network delays. The greatest security
relevance is in use cases where a proxy is used to help with privacy/anonymity,
even though there is no technical barrier to a direct connection.
(From OE-Core rev: 29ed9fc7341cc3db716115aef1a6910fdb893145)
Signed-off-by: Haiqing Bai <Haiqing.Bai@windriver.com>
Signed-off-by: Anuj Mittal <anuj.mittal@intel.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
Upgrade to version 2.10.14 in order to fix some build errors
with latest 5.4 kernel.
- conflicting types for 'trace_rcu_dyntick'
Reproductible on kernel greater than v5.4.22, starting with commit
6cf539a87a ("rcu: Fix data-race due to atomic_t copy-by-value")
Also drop patches which are no longer required.
(From OE-Core rev: 88cce1d9d06ed4c5a7b58a31d75cfd1503605df9)
Signed-off-by: Marek Vasut <marex@denx.de>
Cc: Armin Kuster <akuster808@gmail.com>
Cc: Daniel Dragomir <Daniel.Dragomir@windriver.com>
Cc: Richard Purdie <richard.purdie@linuxfoundation.org>
Signed-off-by: Anuj Mittal <anuj.mittal@intel.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
|
| |
|
|
|
|
|
|
|
|
| |
(From OE-Core rev: 7b4f6a4c7c5bcb4479c7e2e7eca733065cb40464)
Signed-off-by: Marek Vasut <marex@denx.de>
Cc: Richard Purdie <richard.purdie@linuxfoundation.org>
Cc: Ross Burton <ross.burton@intel.com>
Signed-off-by: Anuj Mittal <anuj.mittal@intel.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
Spilts out the inc file for u-boot-tools so that BSPs can include it for
their forked version of the tools, just like u-boot.inc.
As an example, this recipe [1] builds mkimage u-boot as part of the
u-boot recipe itself. This is incorrect because u-boot is a target
recipe, which means that the uninative loader transformations do not get
applied when the recipe is restored from sstate, breaking the mkimage
command breaks. The correct solution is to have a u-boot-tools-imx
recipe that pulls in their custom u-boot source; this inc file makes
that much easier to maintain.
[1]: https://github.com/Freescale/meta-freescale/blob/aa27fc62095cfd6c147c8f6865296ddc29bf0fa6/recipes-bsp/u-boot/u-boot-imx_2019.04.bb
(From OE-Core rev: 2e15642ada8b5403ac933072a581b9af9a359122)
Signed-off-by: Joshua Watt <JPEWhacker@gmail.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
(cherry picked from commit 2f3bd198d9b1e85f17f7a587b1690ab196ab0300)
Signed-off-by: Anuj Mittal <anuj.mittal@intel.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
Updating linux-yocto/4.19 to the latest korg -stable release that comprises
the following commits:
16ae5406361a crypto: CVE-2019-18808
a083db76118d Linux 4.19.107
cfc30449bbc5 Revert "char/random: silence a lockdep splat with printk()"
8541452acba5 s390/mm: Explicitly compare PAGE_DEFAULT_KEY against zero in storage_key_init_range
fee87e931cc5 xen: Enable interrupts when calling _cond_resched()
28a73a946a46 ata: ahci: Add shutdown to freeze hardware resources of ahci
43cac315bec1 rxrpc: Fix call RCU cleanup using non-bh-safe locks
acbc5071f073 netfilter: xt_hashlimit: limit the max size of hashtable
5a2972600a2f ALSA: seq: Fix concurrent access to queue current tick/time
b105447809b1 ALSA: seq: Avoid concurrent access to queue flags
63495d1e1c7c ALSA: rawmidi: Avoid bit fields for state flags
bf3043d27755 bpf, offload: Replace bitwise AND by logical AND in bpf_prog_offload_info_fill
3132696dd748 genirq/proc: Reject invalid affinity masks (again)
ba2c07dfa0d8 iommu/vt-d: Fix compile warning from intel-svm.h
c0965be4b28b ecryptfs: replace BUG_ON with error handling code
1bae8f424c84 staging: greybus: use after free in gb_audio_manager_remove_all()
568991c91849 staging: rtl8723bs: fix copy of overlapping memory
f8e6a3412dc6 usb: dwc2: Fix in ISOC request length checking
de8dbb7b02fa usb: gadget: composite: Fix bMaxPower for SuperSpeedPlus
1cad1a6497ec scsi: Revert "target: iscsi: Wait for all commands to finish before freeing a session"
c66b2b571211 scsi: Revert "RDMA/isert: Fix a recently introduced regression related to logout"
b046c6fec04e Revert "dmaengine: imx-sdma: Fix memory leak"
cd26d53a27d6 Btrfs: fix btrfs_wait_ordered_range() so that it waits for all ordered extents
4d886f91ca13 btrfs: do not check delayed items are empty for single transaction cleanup
68b7db197bf8 btrfs: reset fs_root to NULL on error in open_ctree
0ba8e5f347b2 btrfs: fix bytes_may_use underflow in prealloc error condtition
e541982a6e5f KVM: apic: avoid calculating pending eoi from an uninitialized val
267eec2d216d KVM: nVMX: handle nested posted interrupts when apicv is disabled for L1
85dd0eb771e8 KVM: nVMX: Check IO instruction VM-exit conditions
e5c0857bd5cc KVM: nVMX: Refactor IO bitmap checks into helper function
8cf20fb73e73 ext4: fix race between writepages and enabling EXT4_EXTENTS_FL
48fdbe2a818d ext4: rename s_journal_flag_rwsem to s_writepages_rwsem
b7dc081c24db ext4: fix mount failure with quota configured as module
50017cec3dbb ext4: fix potential race between s_flex_groups online resizing and access
7720966a68c8 ext4: fix potential race between s_group_info online resizing and access
cc9948abe47b ext4: fix potential race between online resizing and write operations
38884609b8b5 ext4: add cond_resched() to __ext4_find_entry()
9b6e90918bc0 ext4: fix a data race in EXT4_I(inode)->i_disksize
0e3a6e86d43b drm/nouveau/kms/gv100-: Re-set LUT after clearing for modesets
da3418ad747f lib/stackdepot.c: fix global out-of-bounds in stack_slabs
56ad5b4b7405 tty: serial: qcom_geni_serial: Fix RX cancel command failure
e6ebad85883d tty: serial: qcom_geni_serial: Remove xfer_mode variable
4e438733f727 tty: serial: qcom_geni_serial: Remove set_rfr_wm() and related variables
1cc8834773b2 tty: serial: qcom_geni_serial: Remove use of *_relaxed() and mb()
4d1a94fa6d14 tty: serial: qcom_geni_serial: Remove interrupt storm
0a38fd9326fd tty: serial: qcom_geni_serial: Fix UART hang
fe1cfc645845 KVM: x86: don't notify userspace IOAPIC on edge-triggered interrupt EOI
ed9e97c35b45 KVM: nVMX: Don't emulate instructions in guest mode
6ca274be314b xhci: apply XHCI_PME_STUCK_QUIRK to Intel Comet Lake platforms
8300ed5a2175 drm/amdgpu/soc15: fix xclk for raven
837ba4829b9f mm/vmscan.c: don't round up scan size for online memory cgroup
ea2a11561d01 genirq/irqdomain: Make sure all irq domain flags are distinct
576c04cbbef2 nvme-multipath: Fix memory leak with ana_log_buf
e75d2de90b86 mm/memcontrol.c: lost css_put in memcg_expand_shrinker_maps()
cf85f00f87db Revert "ipc,sem: remove uneeded sem_undo_list lock usage in exit_sem()"
af4693daff1b MAINTAINERS: Update drm/i915 bug filing URL
c9ca2010202b serdev: ttyport: restore client ops on deregistration
463a3db812d9 tty: serial: imx: setup the correct sg entry for tx dma
6807593e8edc tty/serial: atmel: manage shutdown in case of RS485 or ISO7816 mode
f4e6d51f3f40 serial: 8250: Check UPF_IRQ_SHARED in advance
f28ec250579c x86/cpu/amd: Enable the fixed Instructions Retired counter IRPERF
5e5b443ae6cc x86/mce/amd: Fix kobject lifetime
0a3aca3a0f41 x86/mce/amd: Publish the bank pointer only after setup has succeeded
4512119ac90a jbd2: fix ocfs2 corrupt when clearing block group bits
72e2df70fb52 powerpc/tm: Fix clearing MSR[TS] in current when reclaiming on signal delivery
e34182fb8a2f staging: rtl8723bs: Fix potential overuse of kernel memory
e4770de3ae41 staging: rtl8723bs: Fix potential security hole
b4eab56d96f1 staging: rtl8188eu: Fix potential overuse of kernel memory
2a50bd9e2a69 staging: rtl8188eu: Fix potential security hole
d59f6a6e35b7 usb: dwc3: gadget: Check for IOC/LST bit in TRB->ctrl fields
c787444891a4 usb: dwc2: Fix SET/CLEAR_FEATURE and GET_STATUS flows
8cfda0c9c966 USB: hub: Fix the broken detection of USB3 device in SMSC hub
37d2eb43b64c USB: hub: Don't record a connect-change event during reset-resume
babaa26b7c1c USB: Fix novation SourceControl XL after suspend
2debc1717cf2 usb: uas: fix a plug & unplug racing
4db4761cfe15 USB: quirks: blacklist duplicate ep on Sound Devices USBPre2
63d176ed148a USB: core: add endpoint-blacklist quirk
d74d5d042d42 usb: host: xhci: update event ring dequeue pointer on purpose
2a2582dc62e9 xhci: Fix memory leak when caching protocol extended capability PSI tables - take 2
7c8cde41a0c3 xhci: fix runtime pm enabling for quirky Intel hosts
dce60e7efa97 xhci: Force Maximum Packet size for Full-speed bulk devices to valid range.
<snip>
c7f81d70d7ae ubifs: Fix default compression selection in ubifs
3331e61b23b1 nvme: fix kernel paging oops
2f99d478ddbd xfs: require both realtime inodes to mount
b2d84967f076 bcache: do not mark writeback_running too early
6f48e23888b9 bcache: do not check if debug dentry is ERR or NULL explicitly on remove
c318f88411a8 rtl818x: fix potential use after free
7cf86c89d7e4 brcmfmac: set SDIO F1 MesBusyCtrl for CYW4373
38b73129c113 brcmfmac: set F2 watermark to 256 for 4373
6138e4b132cd mwifiex: debugfs: correct histogram spacing, formatting
1450ff720076 mwifiex: fix potential NULL dereference and use after free
4912b454e029 arm64: dts: renesas: draak: Fix CVBS input
48d37cc42390 crypto: user - support incremental algorithm dumps
43cd68d7002b s390/zcrypt: make sysfs reset attribute trigger queue reset
5ac0da68eae1 nvme: provide fallback for discard alloc failure
d702d7bc7eb4 scsi: qla2xxx: Fix for FC-NVMe discovery for NPIV port
78777dd6174e scsi: qla2xxx: Fix NPIV handling for FC-NVMe
58ab95b03497 scsi: lpfc: Enable Management features for IF_TYPE=6
e772949a3fd6 ACPI / LPSS: Ignore acpi_device_fix_up_power() return value
d411bd858447 ARM: ks8695: fix section mismatch warning
22227437ca68 xfs: zero length symlinks are not valid
4d54a7969524 PM / AVS: SmartReflex: NULL check before some freeing functions is not needed
d2e3e3c3c14b RDMA/vmw_pvrdma: Use atomic memory allocation in create AH
64694b276d74 arm64: preempt: Fix big-endian when checking preempt count in assembly
2ec103458855 RDMA/hns: Fix the bug while use multi-hop of pbl
60da6da4b511 ARM: OMAP1: fix USB configuration for device-only setups
0086d127f90d platform/x86: mlx-platform: Fix LED configuration
08d8ab9615c5 bus: ti-sysc: Check for no-reset and no-idle flags at the child level
4b40393b5240 arm64: smp: Handle errors reported by the firmware
e3d27b94111b arm64: mm: Prevent mismatched 52-bit VA support
57f3359cdabe ARM: dts: Fix hsi gdd range for omap4
9b1f6bde17d6 parisc: Fix HP SDC hpa address output
d18f228f504e parisc: Fix serio address output
72a50a1e1c65 ARM: dts: imx53-voipac-dmm-668: Fix memory node duplication
bf39f5b323eb ARM: dts: imx25: Fix memory node duplication
d2eb50e57a5c ARM: dts: imx27: Fix memory node duplication
54750b6f6671 ARM: dts: imx1: Fix memory node duplication
6aeb6bd0eda6 ARM: dts: imx23: Fix memory node duplication
1694780bd4ca ARM: dts: imx50: Fix memory node duplication
2442b4c0f30a ARM: dts: imx6sl: Fix memory node duplication
bae011f4c9a4 ARM: dts: imx6sx: Fix memory node duplication
0990926c9395 ARM: dts: imx6ul: Fix memory node duplication
e021f0ccc4fa ARM: dts: imx7: Fix memory node duplication
a90469345b26 ARM: dts: imx35: Fix memory node duplication
6bc1e695b4be ARM: dts: imx31: Fix memory node duplication
ca02e14bdd7f ARM: dts: imx53: Fix memory node duplication
5a1e6f95733c ARM: dts: imx51: Fix memory node duplication
8c0c8c2a80b2 ARM: debug-imx: only define DEBUG_IMX_UART_PORT if needed
dee3f7703207 tracing: Lock event_mutex before synth_event_mutex
67547b9b4660 ARM: dts: Fix up SQ201 flash access
ee6d2bedb400 scsi: lpfc: Fix dif and first burst use in write commands
20feb7333049 scsi: lpfc: Fix kernel Oops due to null pring pointers
a8c0f6334e56 scsi: target/tcmu: Fix queue_cmd_ring() declaration
480233f89d42 pwm: bcm-iproc: Prevent unloading the driver module while in use
27d22db4ccf1 block: drbd: remove a stray unlock in __drbd_send_protocol()
51a564498cfb mac80211: fix station inactive_time shortly after boot
b707e0da2791 net/fq_impl: Switch to kvmalloc() for memory allocation
a8a61f82cc9f ceph: return -EINVAL if given fsc mount option on kernel w/o support
0f716cda304b net: mscc: ocelot: fix __ocelot_rmw_ix prototype
a30c6e424fdd net: bcmgenet: reapply manual settings to the PHY
acd6a29134f0 net: bcmgenet: use RGMII loopback for MAC reset
ff3f7465ee98 scripts/gdb: fix debugging modules compiled with hot/cold partitioning
22f4892950b2 ASoC: stm32: sai: add restriction on mmap support
3f034e6889e7 watchdog: meson: Fix the wrong value of left time
7302e7b10855 can: mcp251x: mcp251x_restart_work_handler(): Fix potential force_quit race condition
24e10fc2e0db can: flexcan: increase error counters if skb enqueueing via can_rx_offload_queue_sorted() fails
ee7981538293 can: rx-offload: can_rx_offload_irq_offload_fifo(): continue on error
5c8f5485614c can: rx-offload: can_rx_offload_irq_offload_timestamp(): continue on error
eca4b786f3bb can: rx-offload: can_rx_offload_offload_one(): use ERR_PTR() to propagate error value in case of errors
a85ce0107d6b can: rx-offload: can_rx_offload_offload_one(): increment rx_fifo_errors on queue overflow or OOM
b83d4e4899d6 can: rx-offload: can_rx_offload_offload_one(): do not increase the skb_queue beyond skb_queue_len_max
77f94f0d7f52 can: rx-offload: can_rx_offload_queue_tail(): fix error handling, avoid skb mem leak
66e21b7b9251 can: c_can: D_CAN: c_can_chip_config(): perform a sofware reset on open
7559e68ca91f can: peak_usb: report bus recovery as well
c5b0bbef4367 bridge: ebtables: don't crash when using dnat target in output chains
2070b33ee987 net: fec: add missed clk_disable_unprepare in remove
28f34294442b clk: ti: clkctrl: Fix failed to enable error with double udelay timeout
cb5a4049608c clk: ti: dra7-atl-clock: Remove ti_clk_add_alias call
1677a0e54937 x86/resctrl: Prevent NULL pointer dereference when reading mondata
8ef58b82d1e4 idr: Fix idr_alloc_u32 on 32-bit systems
88358c7610cc idr: Fix integer overflow in idr_for_each_entry
a6359d5e2d98 powerpc/bpf: Fix tail call implementation
4665759af735 samples/bpf: fix build by setting HAVE_ATTR_TEST to zero
40c3b8fc47b3 ARM: dts: sun8i-a83t-tbs-a711: Fix WiFi resume from suspend
40017db20bfa clk: sunxi-ng: a80: fix the zero'ing of bits 16 and 18
49ade064ea4b clk: sunxi: Fix operator precedence in sunxi_divs_clk_setup
15fc2f3c64e7 clk: at91: avoid sleeping early
8885552a061b reset: fix reset_control_ops kerneldoc comment
a94913c0c8cf ARM: dts: imx6qdl-sabreauto: Fix storm of accelerometer interrupts
5b15b1bf5428 pinctrl: cherryview: Allocate IRQ chip dynamic
a0554203bc12 clk: samsung: exynos5420: Preserve PLL configuration during suspend/resume
80e28fa256c9 ASoC: kirkwood: fix device remove ordering
6a7472add344 ASoC: kirkwood: fix external clock probe defer
a2c2cf16b059 clk: samsung: exynos5433: Fix error paths
9a5933aa1242 reset: Fix memory leak in reset_control_array_put()
e8eb6233be9a ASoC: compress: fix unsigned integer overflow check
7971b7fd5623 ASoC: msm8916-wcd-analog: Fix RX1 selection in RDAC2 MUX
daa2c4030510 clocksource/drivers/mediatek: Fix error handling
9c65bb9518ea clk: meson: gxbb: let sar_adc_clk_div set the parent clock rate
(From OE-Core rev: 5a2500a81914bab7fd107d4c4b439c01d8fbd736)
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
Signed-off-by: Anuj Mittal <anuj.mittal@intel.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
The security flags were missing from the SDK toolchain
because they were added specifically to class-target.
Add them to class-cross-canadian as well (since the SDK environment
file is created from cross-canadian target flags).
(From OE-Core rev: d6df153991c91a1a14b561b3af52dcf96b73e6d7)
Signed-off-by: Tom Hochstein <tom.hochstein@nxp.com>
Signed-off-by: Antoine Manache <a.manache@gmail.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
Signed-off-by: Anuj Mittal <anuj.mittal@intel.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
Fixes a bug wherein a use after free could potentially be used to run
malicious code if a user can be tricked into running e2fsck on a
maliciously crafted file system.
Also see:
https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=948517
(From OE-Core rev: 23c1b157362609bd8d85c7d35e6c7f0f60c32c88)
(From OE-Core rev: bc3c82e82e6d2dce025e84b8f398379f4fc6f249)
Signed-off-by: Anuj Mittal <anuj.mittal@intel.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
Signed-off-by: Adrian Bunk <bunk@stusta.de>
Signed-off-by: Anuj Mittal <anuj.mittal@intel.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
Also see:
https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=948508
(From OE-Core rev: 09bdcef183d885025da6aa87a7c2bf7e8268774e)
(From OE-Core rev: b3fcf13e332d8830e759ef4161161f0e54591700)
Signed-off-by: Anuj Mittal <anuj.mittal@intel.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
Signed-off-by: Adrian Bunk <bunk@stusta.de>
Signed-off-by: Anuj Mittal <anuj.mittal@intel.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
nfs-utils 2.4.1, moves from "stat" to "statx
with AT_STATX_DONT_SYNC" in parts of the code.
statx is supported in Linux kernel v4.11 and above.
For all older kernels glibc emulates statx, and it
doesn't support AT_STATX_DONT_SYNC and will return
EINVAL.
When server uses nfs-utils 2.4.1 on kernel v4.10
and older, mount.nfs4 would fail with error
"reason given by server: No such file or directory".
Since Linux v4.4 and v4.9 are LTS, its more likely
that people would use above combination.
This issue has been fixed in nfs-utils 2.4.3 and
above. Backporting fix to 2.4.1.
(From OE-Core rev: 8cbd6f6f7f10c57b27a1388883a6dc5715610600)
Signed-off-by: Julius Hemanth Pitti <jpitti@cisco.com>
Signed-off-by: Anuj Mittal <anuj.mittal@intel.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
MJ: icu in master doesn't need distutils anymore, because icu 65.1 currently in
dunfell/master doesn't depend on python3-distutils anymore since:
https://github.com/unicode-org/icu/commit/b4d41b0561b6e8de38b99850ce0e4be8ef536bb1
but the icu-64.2 in zeus and openembedded-core/meta/recipes-core/ovmf/ovmf_git.bb
still need python3-distutils as described in:
http://lists.openembedded.org/pipermail/openembedded-core/2020-March/293984.html
(From OE-Core rev: da2df0251098c46a1476983db379cf33010e3035)
Signed-off-by: Ross Burton <ross.burton@intel.com>
Signed-off-by: Anuj Mittal <anuj.mittal@intel.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
|
| |
|
|
|
|
|
| |
(From OE-Core rev: 6d79a4d7545bc78ac759e575f6d15d7b23fad638)
Signed-off-by: Anuj Mittal <anuj.mittal@intel.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
|
| |
|
|
|
|
|
| |
(From OE-Core rev: 76f53b383b17f0cc568201843e8dac8690791495)
Signed-off-by: Anuj Mittal <anuj.mittal@intel.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
It was discovered that BlueZ's HID and HOGP profiles implementations
don't specifically require bonding between the device and the host.
This creates an opportunity for an malicious device to connect to a
target host to either impersonate an existing HID device without
security or to cause an SDP or GATT service discovery to take place
which would allow HID reports to be injected to the input subsystem from
a non-bonded source.
(From OE-Core rev: d598f8eee0741148416e8660e10c716654205cb5)
(From OE-Core rev: c940e4b858d6be28b198770768117ecc098fa0d3)
Signed-off-by: Anuj Mittal <anuj.mittal@intel.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
(cherry picked from commit bed169a07b04a7dc003958fa309e6ff761f85a72)
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
|
| |
|
|
|
|
|
|
|
|
| |
Fix CVE-2020-9308
(From OE-Core rev: 878817358eb7c25ffa48d10dde9475299674a96c)
Signed-off-by: Wenlin Kang <wenlin.kang@windriver.com>
Signed-off-by: Anuj Mittal <anuj.mittal@intel.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
|
| |
|
|
|
|
|
|
|
|
|
| |
THE LICENSE checksum changed in this update due to copyright notice
added for 2020.
(From OE-Core rev: 3c40cfe7433999272e1698e2c914d6d190f76b63)
Signed-off-by: Adrian Bunk <bunk@stusta.de>
Signed-off-by: Anuj Mittal <anuj.mittal@intel.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
libaspell.a in GNU Aspell before 0.60.8 has a buffer over-read for a string
ending with a single '\0' byte, if the encoding is set to ucs-2 or ucs-4
outside of the application, as demonstrated by the ASPELL_CONF environment
variable.
References:
https://nvd.nist.gov/vuln/detail/CVE-2019-20433
Upstream patches:
https://github.com/GNUAspell/aspell/commit/de29341638833ba7717bd6b5e6850998454b044b
https://github.com/GNUAspell/aspell/commit/cefd447e5528b08bb0cd6656bc52b4255692cefc
(From OE-Core rev: 07dc85604baf696cccf784c909dbad67275ad7b3)
Signed-off-by: Stefan Ghinea <stefan.ghinea@windriver.com>
Signed-off-by: Anuj Mittal <anuj.mittal@intel.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
Fix the following CVEs:
- CVE-2019-19244
- CVE-2019-19923
- CVE-2019-19924
- CVE-2019-19925
- CVE-2019-19926
- CVE-2019-19959
- CVE-2019-20218
(From OE-Core rev: feb8982ac6670af3bcb1243b51054bba9b027c83)
Signed-off-by: Ross Burton <ross.burton@intel.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
[ removed the CVE-2019-19880 fix that did not apply cleanly ]
Signed-off-by: Adrian Bunk <bunk@stusta.de>
Signed-off-by: Anuj Mittal <anuj.mittal@intel.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
|
| |
|
|
|
|
|
|
| |
(From OE-Core rev: 8ec7a51da26f07fd43b5e6787b15c8636009b183)
Signed-off-by: Lee Chee Yang <chee.yang.lee@intel.com>
Signed-off-by: Anuj Mittal <anuj.mittal@intel.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
|
| |
|
|
|
|
|
|
| |
(From OE-Core rev: dac4545cdf0ab848086da96eac123d0c640cd8b2)
Signed-off-by: Lee Chee Yang <chee.yang.lee@intel.com>
Signed-off-by: Anuj Mittal <anuj.mittal@intel.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
fix below error for whitelisted recipe and recipe skip cve check.
Error:
The stack trace of python calls that resulted in this exception/failure was:
File: 'exec_python_func() autogenerated', lineno: 2, function: <module>
0001:
*** 0002:do_cve_check(d)
0003:
File: '/poky-master/meta/classes/cve-check.bbclass', lineno: 59, function: do_cve_check
0055: try:
0056: patched_cves = get_patches_cves(d)
0057: except FileNotFoundError:
0058: bb.fatal("Failure in searching patches")
*** 0059: whitelisted, patched, unpatched = check_cves(d, patched_cves)
0060: if patched or unpatched:
0061: cve_data = get_cve_info(d, patched + unpatched)
0062: cve_write_data(d, patched, unpatched, whitelisted, cve_data)
0063: else:
Exception: ValueError: not enough values to unpack (expected 3, got 2)
(From OE-Core rev: d8cfc309f9dd0dc8904ab18e5898770502ee2540)
Signed-off-by: Chee Yang Lee <chee.yang.lee@intel.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
(cherry picked from commit 64a362bd2dd0b4f3165d5162adbc600826af66f8)
Signed-off-by: Armin Kuster <akuster808@gmail.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
|
