Mirror of git.openembedded.org/meta-openembedded https://git.enea.com/cgit/linux/meta-openembedded.git/atom?h=morty-next 2018-05-29T02:08:25+00:00 2018-05-29T02:08:25+00:00 Zhang Xiao xiao.zhang@windriver.com 2018-05-04T22:04:33+00:00 urn:sha1:997caf9146cd3797cd054e2adebd1fbb4df91911 CVE-2017-1449{1-6} Signed-off-by: Zhang Xiao <xiao.zhang@windriver.com> Signed-off-by: Joe Slater <joe.slater@windriver.com> Signed-off-by: Armin Kuster <akuster808@gmail.com> 2018-05-29T02:07:19+00:00 Armin Kuster akuster808@gmail.com 2018-02-06T07:18:35+00:00 urn:sha1:2628a2ccacc3bb0256df97ef4b0245f685485c78 Includes: wnpa-sec-2018-01, Multiple dissectors could crash. (Bug 14253) CVE-2018-5336 wnpa-sec-2018-02, The MRDISC dissector could crash. (Bug 14299, Bug 13707) CVE-2017-17997 wnpa-sec-2018-03, The IxVeriWave file parser could crash. (Bug 14297) CVE-2018-5334 wnpa-sec-2018-04, The WCP dissector could crash. (Bug 14251) CVE-2018-5335 Full release notes: https://www.wireshark.org/docs/relnotes/wireshark-2.2.12.html Signed-off-by: Armin Kuster <akuster808@gmail.com> 2018-05-29T02:07:19+00:00 Armin Kuster akuster@mvista.com 2017-12-19T15:38:46+00:00 urn:sha1:b6a6853f677c466b9560c8c823671d3731e665dc changed --with-ssh to --with-libssh=DIR includes: wnpa-sec-2017-47 : CVE-2017-17084 The IWARP_MPA dissector could crash. (Bug 14236) wnpa-sec-2017-48 : CVE-2017-17083 The NetBIOS dissector could crash. (Bug 14249) wnpa-sec-2017-49 : CVE-2017-17085 The CIP Safety dissector could crash. (Bug 14250) release notes: https://www.wireshark.org/docs/relnotes/wireshark-2.2.11.html Signed-off-by: Armin Kuster <akuster@mvista.com> Signed-off-by: Armin Kuster <akuster808@gmail.com> Signed-off-by: Joe MacDonald <joe_macdonald@mentor.com> Signed-off-by: Armin Kuster <akuster808@gmail.com> 2018-05-29T02:07:19+00:00 Armin Kuster akuster808@gmail.com 2017-10-11T01:43:09+00:00 urn:sha1:59c7c0111c3d8dc17f2289849ad1bfa228cec113 The following vulnerabilities have been fixed: * [1]wnpa-sec-2017-42 BT ATT dissector crash ([2]Bug 14049) [3]CVE-2017-15192 * [4]wnpa-sec-2017-43 MBIM dissector crash ([5]Bug 14056) [6]CVE-2017-15193 * [7]wnpa-sec-2017-44 DMP dissector crash ([8]Bug 14068) [9]CVE-2017-15191 Signed-off-by: Armin Kuster <akuster808@gmail.com> Signed-off-by: Martin Jansa <Martin.Jansa@gmail.com> Signed-off-by: Joe MacDonald <joe_macdonald@mentor.com> Signed-off-by: Armin Kuster <akuster808@gmail.com> 2018-05-29T02:07:19+00:00 Armin Kuster akuster808@gmail.com 2017-09-01T13:56:34+00:00 urn:sha1:d9461528840cfafd04b10af28d73879deb0b9b09 Change LIC_FILES_CHKSUM from README.linux to COPYING as COPYING contains the license info 2.2.9 security fixes: wnpa-sec-2017-38 MSDP dissector infinite loop (Bug 13933) CVE-2017-13767 wnpa-sec-2017-39 Profinet I/O buffer overrun (Bug 13847) CVE-2017-13766 wnpa-sec-2017-41 IrCOMM dissector buffer overrun (Bug 13929) CVE-2017-13765 Signed-off-by: Armin Kuster <akuster808@gmail.com> Signed-off-by: Martin Jansa <Martin.Jansa@gmail.com> Signed-off-by: Joe MacDonald <joe_macdonald@mentor.com> Signed-off-by: Armin Kuster <akuster808@gmail.com> 2018-05-29T02:07:19+00:00 Kai Kang kai.kang@windriver.com 2017-08-16T09:41:06+00:00 urn:sha1:7f7fdd5e516946ced60b2e20d5f5ca2ce9a27fee Signed-off-by: Kai Kang <kai.kang@windriver.com> Signed-off-by: Martin Jansa <Martin.Jansa@gmail.com> Signed-off-by: Joe MacDonald <joe_macdonald@mentor.com> Signed-off-by: Armin Kuster <akuster808@gmail.com> 2018-05-29T02:07:19+00:00 fan.xin fan.xin@jp.fujitsu.com 2017-06-07T03:09:57+00:00 urn:sha1:dd6339447729b5919a0b7a54db6ffb7a3fd78e97 Upgrade wireshark from 2.2.6 to 2.2.7 Signed-off-by: Fan Xin <fan.xin@jp.fujitsu.com> Signed-off-by: Martin Jansa <Martin.Jansa@gmail.com> Signed-off-by: Joe MacDonald <joe_macdonald@mentor.com> Signed-off-by: Armin Kuster <akuster808@gmail.com> 2018-05-29T02:07:19+00:00 Armin Kuster akuster@mvista.com 2017-04-13T15:08:22+00:00 urn:sha1:b400424d90fc9215631e0d6fe80727138e3c3046 The following vulnerabilities have been fixed: * [1]wnpa-sec-2017-12 IMAP dissector crash ([2]Bug 13466) [3]CVE-2017-7703 * [4]wnpa-sec-2017-13 WBMXL dissector infinite loop ([5]Bug 13477) [6]CVE-2017-7702 * [7]wnpa-sec-2017-14 NetScaler file parser infinite loop ([8]Bug 13478) [9]CVE-2017-7700 * [10]wnpa-sec-2017-15 RPCoRDMA dissector infinite loop ([11]Bug 13558) [12]CVE-2017-7705 * [13]wnpa-sec-2017-16 BGP dissector infinite loop ([14]Bug 13557) [15]CVE-2017-7701 * [16]wnpa-sec-2017-17 DOF dissector infinite loop ([17]Bug 13453) [18]CVE-2017-7704 * [19]wnpa-sec-2017-18 PacketBB dissector crash ([20]Bug 13559) * [21]wnpa-sec-2017-19 SLSK dissector long loop ([22]Bug 13576) * [23]wnpa-sec-2017-20 SIGCOMP dissector infinite loop ([24]Bug 13578) * [25]wnpa-sec-2017-21 WSP dissector infinite loop ([26]Bug 13581) Signed-off-by: Armin Kuster <akuster@mvista.com> Signed-off-by: Martin Jansa <Martin.Jansa@gmail.com> Signed-off-by: Joe MacDonald <joe_macdonald@mentor.com> Signed-off-by: Armin Kuster <akuster808@gmail.com> 2018-05-29T02:07:19+00:00 Oleksandr Kravchuk oleksandr.kravchuk@pelagicore.com 2017-03-06T09:23:45+00:00 urn:sha1:8869e7cf7c517b8e8ec1ee0a8b1b603d7362c7b1 Signed-off-by: Oleksandr Kravchuk <oleksandr.kravchuk@pelagicore.com> Signed-off-by: Martin Jansa <Martin.Jansa@gmail.com> Signed-off-by: Joe MacDonald <joe_macdonald@mentor.com> Signed-off-by: Armin Kuster <akuster808@gmail.com> 2017-11-16T00:02:11+00:00 Isaac Hermida isaac.hermida@digi.com 2017-11-02T12:58:50+00:00 urn:sha1:5361ddf67b513d3cc76c77043ff9aa086d60b0a1 Note, hostapd and wpa_supplicant use the same sources. This commit uses the same patch than OpenEmbedded-core commit 1d92cb1a20135cfffff9f94a6633ec0840518738 in morty branch. Signed-off-by: Isaac Hermida <isaac.hermida@digi.com> Signed-off-by: Armin Kuster <akuster808@gmail.com>