<feed xmlns='http://www.w3.org/2005/Atom'>
<title>linux/meta-openembedded.git/meta-networking, branch fido</title>
<subtitle>Mirror of git.openembedded.org/meta-openembedded</subtitle>
<id>https://git.enea.com/cgit/linux/meta-openembedded.git/atom?h=fido</id>
<link rel='self' href='https://git.enea.com/cgit/linux/meta-openembedded.git/atom?h=fido'/>
<link rel='alternate' type='text/html' href='https://git.enea.com/cgit/linux/meta-openembedded.git/'/>
<updated>2016-02-08T13:13:39+00:00</updated>
<entry>
<title>ntp: upgrade 4.2.8p3 -&gt; 4.2.8p4</title>
<updated>2016-02-08T13:13:39+00:00</updated>
<author>
<name>Wenzong Fan</name>
<email>wenzong.fan@windriver.com</email>
</author>
<published>2015-10-23T09:45:25+00:00</published>
<link rel='alternate' type='text/html' href='https://git.enea.com/cgit/linux/meta-openembedded.git/commit/?id=c2107a12ab666117607507ce74ac6e89804ce69c'/>
<id>urn:sha1:c2107a12ab666117607507ce74ac6e89804ce69c</id>
<content type='text'>
4.2.8p4 fixed following 13 low- and medium-severity vulnerabilities:

  * Bug 2941 CVE-2015-7871
  * Bug 2922 CVE-2015-7855
  * Bug 2921 CVE-2015-7854
  * Bug 2920 CVE-2015-7853
  * Bug 2919 CVE-2015-7852
  * Bug 2918 CVE-2015-7851
  * Bug 2917 CVE-2015-7850
  * Bug 2916 CVE-2015-7849
  * Bug 2913 CVE-2015-7848
  * Bug 2909 CVE-2015-7701
  * Bug 2902 CVE-2015-7703
  * Bug 2901 CVE-2015-7704, CVE-2015-7705
  * Bug 2899 CVE-2015-7691, CVE-2015-7692, CVE-2015-7702

And three bugs: Bug 2382, 1774, 1593

Details at:
  http://support.ntp.org/bin/view/Main/SecurityNotice#Recent_Vulnerabilities

Signed-off-by: Wenzong Fan &lt;wenzong.fan@windriver.com&gt;
Signed-off-by: Martin Jansa &lt;Martin.Jansa@gmail.com&gt;
Signed-off-by: Armin Kuster &lt;akuster808@gmail.com&gt;
</content>
</entry>
<entry>
<title>ntp: fix rpath QA issue</title>
<updated>2016-02-08T13:13:39+00:00</updated>
<author>
<name>Qi.Chen@windriver.com</name>
<email>Qi.Chen@windriver.com</email>
</author>
<published>2015-10-16T07:05:32+00:00</published>
<link rel='alternate' type='text/html' href='https://git.enea.com/cgit/linux/meta-openembedded.git/commit/?id=989721ec10ca4329292f779fa5a6ea79435a687a'/>
<id>urn:sha1:989721ec10ca4329292f779fa5a6ea79435a687a</id>
<content type='text'>
When ntp could be correctly built with openssh and libcrypto, we would meet
the following QA issue.

WARNING: QA Issue: package ntp contains bad RPATH ... [rpath]

Fix this problem by adding '--disable-rpath' to EXTRA_OECONF.

Signed-off-by: Chen Qi &lt;Qi.Chen@windriver.com&gt;
Signed-off-by: Martin Jansa &lt;Martin.Jansa@gmail.com&gt;
Signed-off-by: Joe MacDonald &lt;joe_macdonald@mentor.com&gt;
Signed-off-by: Armin Kuster &lt;akuster808@gmail.com&gt;
</content>
</entry>
<entry>
<title>squid: serveral missing security fixes</title>
<updated>2016-02-08T13:13:39+00:00</updated>
<author>
<name>Armin Kuster</name>
<email>akuster@mvista.com</email>
</author>
<published>2015-10-26T23:31:22+00:00</published>
<link rel='alternate' type='text/html' href='https://git.enea.com/cgit/linux/meta-openembedded.git/commit/?id=5b2e937448371626cf71b761e3bfb06ffb60a7ee'/>
<id>urn:sha1:5b2e937448371626cf71b761e3bfb06ffb60a7ee</id>
<content type='text'>
SQUID-2015:2 - Does not affect Squid-3.4 and older versions are not vulnerable.
CVE-2015-5400
CVE-2015-3455
CVE-2014-7142
CVE-2014-7141
CVE-2014-6270

see http://www.squid-cache.org/Advisories/

Signed-off-by: Armin Kuster &lt;akuster@mvista.com&gt;
Signed-off-by: Armin Kuster &lt;akuster808@gmail.com&gt;
</content>
</entry>
<entry>
<title>tcpslice: fix do_install</title>
<updated>2016-01-04T13:50:23+00:00</updated>
<author>
<name>Roy Li</name>
<email>rongqing.li@windriver.com</email>
</author>
<published>2015-07-28T01:59:38+00:00</published>
<link rel='alternate' type='text/html' href='https://git.enea.com/cgit/linux/meta-openembedded.git/commit/?id=e8a8e0be8e39dbb949bf0f0df90abe1c4e3f6470'/>
<id>urn:sha1:e8a8e0be8e39dbb949bf0f0df90abe1c4e3f6470</id>
<content type='text'>
replace to run "make install" with directly calling install command,
since "make install" asks "bin" user and group, and maybe fail when
system has not;

Signed-off-by: Roy Li &lt;rongqing.li@windriver.com&gt;
Signed-off-by: Martin Jansa &lt;Martin.Jansa@gmail.com&gt;
Signed-off-by: Joe MacDonald &lt;joe_macdonald@mentor.com&gt;
</content>
</entry>
<entry>
<title>ntp: upgrade 4.2.8p2 -&gt; 4.2.8p3</title>
<updated>2015-10-26T20:43:09+00:00</updated>
<author>
<name>Li xin</name>
<email>lixin.fnst@cn.fujitsu.com</email>
</author>
<published>2015-07-24T04:13:00+00:00</published>
<link rel='alternate' type='text/html' href='https://git.enea.com/cgit/linux/meta-openembedded.git/commit/?id=220b31d536cf15e68c11980e0c721a7050313db1'/>
<id>urn:sha1:220b31d536cf15e68c11980e0c721a7050313db1</id>
<content type='text'>
4.2.8p3 fixed CVE-2015-5146 and Bugs.

Signed-off-by: Li Xin &lt;lixin.fnst@cn.fujitsu.com&gt;
Signed-off-by: Martin Jansa &lt;Martin.Jansa@gmail.com&gt;
Signed-off-by: Joe MacDonald &lt;joe_macdonald@mentor.com&gt;
Signed-off-by: Armin Kuster &lt;akuster808@gmail.com&gt;
</content>
</entry>
<entry>
<title>ntp: uprev to 4.2.8p2</title>
<updated>2015-10-26T20:43:09+00:00</updated>
<author>
<name>Roy Li</name>
<email>rongqing.li@windriver.com</email>
</author>
<published>2015-04-23T05:11:14+00:00</published>
<link rel='alternate' type='text/html' href='https://git.enea.com/cgit/linux/meta-openembedded.git/commit/?id=692b646456ec508a1004fe56f3b6c0d2b42cd65b'/>
<id>urn:sha1:692b646456ec508a1004fe56f3b6c0d2b42cd65b</id>
<content type='text'>
ntp 4.2.8p2 has more CVE fixes, like CVE-2015-1799, CVE-2015-1798;
and remove ntp-4.2.8-ntp-keygen-no-openssl.patch which 4.2.8p2 has integrated

4.2.8.p1 included CVE-2014-9297, CVE-2014-9298 (ak).

Signed-off-by: Roy Li &lt;rongqing.li@windriver.com&gt;
Signed-off-by: Martin Jansa &lt;Martin.Jansa@gmail.com&gt;
Signed-off-by: Joe MacDonald &lt;joe_macdonald@mentor.com&gt;
Signed-off-by: Armin Kuster &lt;akuster808@gmail.com&gt;
</content>
</entry>
<entry>
<title>ipsec-tools: Security Advisory - CVE-2015-4047</title>
<updated>2015-10-26T20:43:08+00:00</updated>
<author>
<name>Roy Li</name>
<email>rongqing.li@windriver.com</email>
</author>
<published>2015-06-05T05:23:28+00:00</published>
<link rel='alternate' type='text/html' href='https://git.enea.com/cgit/linux/meta-openembedded.git/commit/?id=dd407add556dcee973477c4544ff1e165f21310f'/>
<id>urn:sha1:dd407add556dcee973477c4544ff1e165f21310f</id>
<content type='text'>
This fixed the CVE-2015-4047:
https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2015-4047

Signed-off-by: Roy Li &lt;rongqing.li@windriver.com&gt;
Signed-off-by: Martin Jansa &lt;Martin.Jansa@gmail.com&gt;
Signed-off-by: Joe MacDonald &lt;joe_macdonald@mentor.com&gt;
Signed-off-by: Armin Kuster &lt;akuster808@gmail.com&gt;
</content>
</entry>
<entry>
<title>tcpdump: add PACKAGECONFIG for smi</title>
<updated>2015-10-13T11:48:19+00:00</updated>
<author>
<name>Martin Jansa</name>
<email>Martin.Jansa@gmail.com</email>
</author>
<published>2015-08-24T17:22:00+00:00</published>
<link rel='alternate' type='text/html' href='https://git.enea.com/cgit/linux/meta-openembedded.git/commit/?id=c689a311349f476be30adc8129c457ec92e8e10b'/>
<id>urn:sha1:c689a311349f476be30adc8129c457ec92e8e10b</id>
<content type='text'>
* libsmi is autodetected in configure, but in most cases disabled because of
  cross-compilation so keep it explicitly disabled
* resolves following difference in builds with and without libsmi built
  before tcpdump:
  4.7.4-r0-with/temp/log.do_configure:checking smi.h usability... yes
  4.7.4-r0-with/temp/log.do_configure:checking smi.h presence... yes
  4.7.4-r0-with/temp/log.do_configure:checking for smi.h... yes
  4.7.4-r0-with/temp/log.do_configure:checking for smiInit in -lsmi... yes
  4.7.4-r0-with/temp/log.do_configure:checking whether to enable libsmi... not when cross-compiling

  4.7.4-r0-without/temp/log.do_configure:checking smi.h usability... no
  4.7.4-r0-without/temp/log.do_configure:checking smi.h presence... no
  4.7.4-r0-without/temp/log.do_configure:checking for smi.h... no

Signed-off-by: Martin Jansa &lt;Martin.Jansa@gmail.com&gt;
</content>
</entry>
<entry>
<title>opensaf: RDEPENDS on python and bash</title>
<updated>2015-08-03T16:06:59+00:00</updated>
<author>
<name>Robert Yang</name>
<email>liezhi.yang@windriver.com</email>
</author>
<published>2015-04-28T06:04:59+00:00</published>
<link rel='alternate' type='text/html' href='https://git.enea.com/cgit/linux/meta-openembedded.git/commit/?id=4ab3ee5bc1a8196d271a0702b163a6b07aa0ffea'/>
<id>urn:sha1:4ab3ee5bc1a8196d271a0702b163a6b07aa0ffea</id>
<content type='text'>
python:
opensaf/usr/share/opensaf/samples/immsv/immom_python/immom.py

bash:
opensaf/usr/share/opensaf/immxml/verify.sh
opensaf/usr/share/opensaf/immxml/immxml-modify-config
opensaf/usr/share/opensaf/immxml/immxml-configure
opensaf/usr/share/opensaf/immxml/immxml-clustersize
opensaf/usr/share/opensaf/immxml/immxml-nodegen
opensaf/usr/share/opensaf/samples/INSTALL
opensaf/usr/share/opensaf/samples/smfsv/campaigns/smf-verify
opensaf/usr/lib/opensaf/configure_tipc

Signed-off-by: Robert Yang &lt;liezhi.yang@windriver.com&gt;
Signed-off-by: Martin Jansa &lt;Martin.Jansa@gmail.com&gt;
Signed-off-by: Joe MacDonald &lt;joe_macdonald@mentor.com&gt;
Signed-off-by: Armin Kuster &lt;akuster808@gmail.com&gt;
</content>
</entry>
<entry>
<title>daq: move recipe to meta-networking</title>
<updated>2015-08-03T16:06:59+00:00</updated>
<author>
<name>Armin Kuster</name>
<email>akuster808@gmail.com</email>
</author>
<published>2015-04-04T18:42:09+00:00</published>
<link rel='alternate' type='text/html' href='https://git.enea.com/cgit/linux/meta-openembedded.git/commit/?id=f5b38dba0fe6ac7f28b91152d3a0916c27ebec07'/>
<id>urn:sha1:f5b38dba0fe6ac7f28b91152d3a0916c27ebec07</id>
<content type='text'>
ERROR: Nothing PROVIDES 'libdnet' (but /home/akuster/oss/clean/meta-openembedded/meta-oe/recipes-connectivity/daq/daq_2.0.2.bb DEPENDS on or otherwise requires it). Close matches:
 libnet
 libnewt
 libidn
ERROR: Required build target 'daq' has no buildable providers.
Missing or unbuildable dependency chain was: ['daq', 'libdnet']

world build fails for meta-oe.

move daq to meta-networking where snort and libdnet both reside.

Signed-off-by: Armin Kuster &lt;akuster808@gmail.com&gt;
</content>
</entry>
</feed>
