linux/meta-openembedded.git/meta-networking/recipes-support, branch sumo

wireshark: 2.4.8 src moved to all-versions

2018-11-26T15:48:11+00:00

update SRC_URI Signed-off-by: Armin Kuster

dnsmasq: CVE-2017-15107

2018-09-27T01:51:17+00:00

* CVE-2017-15107 A vulnerability was found in Dnsmasq's implementation of DNSSEC. Wildcard synthesized NSEC records could be improperly interpreted to prove the non-existence of hostnames that actually exist. Affects dnsmasq <= 2.78 CVE: CVE-2017-15107 Ref: https://access.redhat.com/security/cve/cve-2017-15107 Signed-off-by: Sinan Kaya Signed-off-by: Armin Kuster

wireshark: update to 2.4.8

2018-08-19T14:34:23+00:00

Bug fix update only includes security fixes: wnpa-sec-2018-25 The LDSS dissector could crash. (Bug 14615) wnpa-sec-2018-28 Multiple dissectors could consume excessive memory. (Bug 14678) wnpa-sec-2018-29 The DNS dissector could crash. (Bug 14681) wnpa-sec-2018-30 The GSM A DTAP dissector could crash. (Bug 14688) wnpa-sec-2018-31 The Q.931 dissector could crash. (Bug 14689) wnpa-sec-2018-33 Multiple dissectors could crash. (Bug 14703) Signed-off-by: Armin Kuster

wireshark: update to 2.4.7

2018-07-08T21:58:53+00:00

Bug fix update only includes: wnpa-sec-2018-25 The LDSS dissector could crash. (Bug 14615) wnpa-sec-2018-28 Multiple dissectors could consume excessive memory. (Bug 14678) wnpa-sec-2018-29 The DNS dissector could crash. (Bug 14681) wnpa-sec-2018-30 The GSM A DTAP dissector could crash. (Bug 14688) wnpa-sec-2018-31 The Q.931 dissector could crash. (Bug 14689) wnpa-sec-2018-33 Multiple dissectors could crash. (Bug 14703) Signed-off-by: Armin Kuster

geoip-perl: switch away from github archive

2018-06-15T03:10:15+00:00

Since we know that github archives which are automatically generated have a tendency to change their checksums[1], switch to using a git clone. [1] http://lists.openembedded.org/pipermail/openembedded-devel/2017-September/114916.html Signed-off-by: Trevor Woerner Signed-off-by: Armin Kuster (cherry picked from commit fed506befd558e93e53c737ce555b124487417a2) Signed-off-by: Armin Kuster

ipcalc: switch away from github archive

2018-06-15T03:09:57+00:00

Since we know that github archives which are automatically generated have a tendency to change their checksums[1], switch to using a git clone. [1] http://lists.openembedded.org/pipermail/openembedded-devel/2017-September/114916.html Signed-off-by: Trevor Woerner Signed-off-by: Armin Kuster (cherry picked from commit 216652c73b56f8227fab84208ea00cd87381f560) Signed-off-by: Armin Kuster

ntp: update to 4.2.8.p11

2018-06-15T03:04:24+00:00

This release addresses five security issues in ntpd: LOW/MEDIUM: Sec 3012 / CVE-2016-1549 / VU#961909: Sybil vulnerability: ephemeral association attack INFO/MEDIUM: Sec 3412 / CVE-2018-7182 / VU#961909: ctl_getitem(): buffer read overrun leads to undefined behavior and information leak LOW: Sec 3415 / CVE-2018-7170 / VU#961909: Multiple authenticated ephemeral associations LOW: Sec 3453 / CVE-2018-7184 / VU#961909: Interleaved symmetric mode cannot recover from bad state LOW/MEDIUM: Sec 3454 / CVE-2018-7185 / VU#961909: Unauthenticated packet can reset authenticated interleaved association one security issue in ntpq: MEDIUM: Sec 3414 / CVE-2018-7183 / VU#961909: ntpq:decodearr() can write beyond its buffer limit Signed-off-by: Armin Kuster (cherry picked from commit 18b4b0ec545488be913b35ea9243292b578ca35f) Signed-off-by: Armin Kuster

libtevent: refresh patch

2018-06-15T02:30:57+00:00

WARNING: libtevent-0.9.36-r0 do_patch: Some of the context lines in patches were ignored. This can lead to incorrectly applied patches. The context lines in the patches can be updated with devtool: devtool modify devtool finish --force-patch-refresh Then the updated patches and the source tree (in devtool's workspace) should be reviewed to make sure the patches apply in the correct place and don't introduce duplicate lines (which can, and does happen when some of the context is ignored). Further information: http://lists.openembedded.org/pipermail/openembedded-core/2018-March/148675.html https://bugzilla.yoctoproject.org/show_bug.cgi?id=10450 Details: Applying patch avoid-attr-unless-wanted.patch patching file lib/replace/wscript Hunk #1 succeeded at 793 with fuzz 2 (offset 175 lines). Hunk #2 succeeded at 806 with fuzz 2 (offset 178 lines). Now at patch avoid-attr-unless-wanted.patch Signed-off-by: Hains van den Bosch Signed-off-by: Khem Raj (cherry picked from commit d2760faf828b16d65805f1eae8794c4af62eb01f) Signed-off-by: Armin Kuster

libtevent: add libtirpc to DEPENDS

2018-05-02T01:15:44+00:00

musl build fails with: | Checking for header rpc/rpc.h : no | Checking for header rpc/nettype.h : no | Checking for libtirpc headers : not found | Checking for libntirpc headers : not found | ERROR: No rpc/rpc.h header found, tirpc or libntirpc missing? Signed-off-by: Andreas Müller Signed-off-by: Armin Kuster

drbd: BLACKLIST recipe

2018-05-02T01:12:49+00:00

[v2] Wrong version sent to list. forgot to refresh fails do to new kernel headers. | ../drbd/9.0.8-1-r0/drbd-9.0.8-1/drbd/drbd_receiver.c:1479:7: error: 'struct bio' has no member named 'bi_bdev'; did you mean 'bi_iter'? | bio->bi_bdev = device->ldev->backing_bdev; | ^~~~~~~ | bi_iter | .../drbd/9.0.8-1-r0/drbd-9.0.8-1/drbd/drbd_receiver.c:1484:17: error: assignment from incompatible pointer type [-Werror=incompatible-pointer-types] | bio->bi_end_io = drbd_peer_request_endio; Signed-off-by: Armin Kuster