linux/meta-el-common.git, branch pyro-nfvaccess Commmon distro layer for Enea Linux https://git.enea.com/cgit/linux/meta-el-common.git/atom?h=pyro-nfvaccess 2017-12-06T10:40:45+00:00 run-postinsts: don't call update-rc.d if systemd is present 2017-12-06T10:40:45+00:00 Gabriel Ionescu gabriel.ionescu@enea.com 2017-12-05T14:08:13+00:00 urn:sha1:3864dfb7366dad8a823f417f920882b5896903dd This patch removes the call to update-rc.d in order to fix the console login issue for the Cavium board. Signed-off-by: Gabriel Ionescu <gabriel.ionescu@enea.com> Signed-off-by: Adrian Dudau <adrian.dudau@enea.com> enea mirror: add distro name to mirror path 2017-11-24T09:36:59+00:00 Adrian Calianu adrian.calianu@enea.com 2017-11-23T07:46:38+00:00 urn:sha1:0df8e030c3028584d32c3d25ec3d1430553b5deb Since we have multiple distributions now we need to have a mirror for each distro name and distro version. Signed-off-by: Adrian Calianu <adrian.calianu@enea.com> Signed-off-by: Adrian Dudau <adrian.dudau@enea.com> run-postinsts: Disable dpkg --configure for debs to fix boot lockup 2017-11-22T10:46:21+00:00 Gabriel Ionescu gabriel.ionescu@enea.com 2017-11-20T18:03:25+00:00 urn:sha1:2c80876ac2a42928167ed5567dc803179485c815 When a board boots for the first time, it executes run-postinsts.service and dpkg-configure.service. Since both services run dpkg --configure, it sometimes results in locking up the login service. This patch disables the execution of dpkg --configure from run-postinsts by removing the deb keyword from the list of scanned packet types. Signed-off-by: Gabriel Ionescu <gabriel.ionescu@enea.com> Signed-off-by: Adrian Dudau <adrian.dudau@enea.com> Revert "enea distro: increase wget timeout" 2017-11-13T12:59:53+00:00 Adrian Dudau adrian.dudau@enea.com 2017-11-13T12:59:53+00:00 urn:sha1:3f946c2e7ecd26f401b2c7de6d0937bc22872c19 This reverts commit eb6fe9f31ec566dd16d1120e4ed6d91e43d77545. This patch dinn't fix ther fetch issues, the only solution is to establish our own source mirros. Signed-off-by: Adrian Dudau <adrian.dudau@enea.com> enea distro: increase wget timeout 2017-11-10T15:45:51+00:00 Adrian Calianu adrian.calianu@enea.com 2017-11-10T15:43:27+00:00 urn:sha1:eb6fe9f31ec566dd16d1120e4ed6d91e43d77545 to allow some slow downloads to finish, like openjre. Signed-off-by: Adrian Calianu <adrian.calianu@enea.com> Signed-off-by: Adrian Dudau <adrian.dudau@enea.com> dnsmasq: CVE-2017-14495 2017-10-04T13:28:01+00:00 Sona Sarmadi sona.sarmadi@enea.com 2017-10-04T10:34:30+00:00 urn:sha1:cff1dc0bf1d330b828a93083228c40dd1bda4f4c Lack of free() here. References: https://cve.mitre.org/cgi-bin/cvename.cgi?name=2017-14495 https://security.googleblog.com/2017/10/behind-masq-yet-more-dns-and-dhcp.html Signed-off-by: Sona Sarmadi <sona.sarmadi@enea.com> Signed-off-by: Adrian Dudau <adrian.dudau@enea.com> dnsmasq: CVE-2017-14496 2017-10-04T13:28:01+00:00 Sona Sarmadi sona.sarmadi@enea.com 2017-10-04T10:34:29+00:00 urn:sha1:c65b24cdfd9edbc25796ba7db9a9ca68513324e9 Invalid boundary checks here. Integer underflow leading to a huge memcpy. References: https://cve.mitre.org/cgi-bin/cvename.cgi?name=2017-14496 https://security.googleblog.com/2017/10/behind-masq-yet-more-dns-and-dhcp.html Signed-off-by: Sona Sarmadi <sona.sarmadi@enea.com> Signed-off-by: Adrian Dudau <adrian.dudau@enea.com> dnsmasq: CVE-2017-14494 2017-10-04T13:28:01+00:00 Sona Sarmadi sona.sarmadi@enea.com 2017-10-04T10:34:28+00:00 urn:sha1:91b02ae7ac707984cd5182bb39c2fe8086a1696f Can help bypass ASLR. References: https://cve.mitre.org/cgi-bin/cvename.cgi?name=2017-14494 https://security.googleblog.com/2017/10/behind-masq-yet-more-dns-and-dhcp.html Signed-off-by: Sona Sarmadi <sona.sarmadi@enea.com> Signed-off-by: Adrian Dudau <adrian.dudau@enea.com> dnsmasq: CVE-2017-14493 2017-10-04T13:28:01+00:00 Sona Sarmadi sona.sarmadi@enea.com 2017-10-04T10:34:27+00:00 urn:sha1:0c3826bac4ae83e563b4d050ffaf01e70ae8ad9b Stack Based overflow. References: https://cve.mitre.org/cgi-bin/cvename.cgi?name=2017-14493 https://security.googleblog.com/2017/10/behind-masq-yet-more-dns-and-dhcp.html Signed-off-by: Sona Sarmadi <sona.sarmadi@enea.com> Signed-off-by: Adrian Dudau <adrian.dudau@enea.com> dnsmasq: CVE-2017-14492 2017-10-04T13:28:01+00:00 Sona Sarmadi sona.sarmadi@enea.com 2017-10-04T10:34:26+00:00 urn:sha1:d5422e563facc33881763a587b37dd29012e160b Heap based overflow. References: https://cve.mitre.org/cgi-bin/cvename.cgi?name=2017-14492 https://security.googleblog.com/2017/10/behind-masq-yet-more-dns-and-dhcp.html Signed-off-by: Sona Sarmadi <sona.sarmadi@enea.com> Signed-off-by: Adrian Dudau <adrian.dudau@enea.com>