Mirror of git.openembedded.org/meta-openembedded https://git.enea.com/cgit/linux/meta-openembedded.git/atom?h=master-next 2015-01-08T11:04:27+00:00 2015-01-08T11:04:27+00:00 Paul Eggleton paul.eggleton@linux.intel.com 2015-01-01T23:19:16+00:00 urn:sha1:1601beb5a5867b0cf5cc8b54f3be31c607ef40a4 Drop patches merged upstream. Signed-off-by: Paul Eggleton <paul.eggleton@linux.intel.com> 2014-12-19T19:10:56+00:00 Wenzong Fan wenzong.fan@windriver.com 2014-12-15T09:36:00+00:00 urn:sha1:a64536fe90e84c79b319759fab5ec36265273c7f Don't install local patch files to target. Signed-off-by: Wenzong Fan <wenzong.fan@windriver.com> Signed-off-by: Martin Jansa <Martin.Jansa@gmail.com> 2014-10-31T11:35:25+00:00 Roy Li rongqing.li@windriver.com 2014-10-30T05:37:27+00:00 urn:sha1:6b530d936fcbf48bfe4a621d0ad2b3e61e728945 Multiple cross-site scripting (XSS) vulnerabilities in phpMyAdmin 4.0.x before 4.0.10.4, 4.1.x before 4.1.14.5, and 4.2.x before 4.2.9.1 allow remote authenticated users to inject arbitrary web script or HTML via a crafted ENUM value that is improperly handled during rendering of the (1) table search or (2) table structure page, related to libraries/TableSearch.class.php and libraries/Util.class.php. http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2014-7217 Signed-off-by: Roy Li <rongqing.li@windriver.com> 2014-10-31T11:35:25+00:00 Roy Li rongqing.li@windriver.com 2014-10-30T05:37:26+00:00 urn:sha1:7edda3d9267cc3561151a5611a2d215848824423 Cross-site scripting (XSS) vulnerability in the view operations page in phpMyAdmin 4.1.x before 4.1.14.3 and 4.2.x before 4.2.7.1 allows remote authenticated users to inject arbitrary web script or HTML via a crafted view name, related to js/functions.js. http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2014-5274 Signed-off-by: Roy Li <rongqing.li@windriver.com> 2014-10-31T11:35:25+00:00 Roy Li rongqing.li@windriver.com 2014-10-30T05:37:25+00:00 urn:sha1:780fb7c811b03ea5ae614cfa228f2f74d884f900 Multiple cross-site scripting (XSS) vulnerabilities in phpMyAdmin 4.0.x before 4.0.10.2, 4.1.x before 4.1.14.3, and 4.2.x before 4.2.7.1 allow remote authenticated users to inject arbitrary web script or HTML via the (1) browse table page, related to js/sql.js; (2) ENUM editor page, related to js/functions.js; (3) monitor page, related to js/server_status_monitor.js; (4) query charts page, related to js/tbl_chart.js; or (5) table relations page, related to libraries/tbl_relation.lib.php. http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2014-5273 Signed-off-by: Roy Li <rongqing.li@windriver.com> 2014-09-26T03:41:51+00:00 Robert Yang liezhi.yang@windriver.com 2014-09-01T06:55:19+00:00 urn:sha1:054cef3654905b5d6e287117332c446ecedffb6d Bashism: possible bashism in plugins/transformations/generator_plugin.sh line 16 (echo -e): echo -e "Usage: ./generator_plugin.sh MIMEType MIMESubtype TransformationName [Description]\n" possible bashism in plugins/transformations/generator_plugin.sh line 28 (${parm,[,][pat]} or ${parm^[^][pat]}): MT="${MT^}" possible bashism in plugins/transformations/generator_plugin.sh line 29 (${parm,[,][pat]} or ${parm^[^][pat]}): MS="${MS^}" possible bashism in plugins/transformations/generator_plugin.sh line 30 (${parm,[,][pat]} or ${parm^[^][pat]}): TN="${TN^}" possible bashism in plugins/transformations/generator_plugin.sh line 51 (should be 'b = a'): if [ "$4" == "--generate_only_main_class" ]; then Signed-off-by: Robert Yang <liezhi.yang@windriver.com> 2014-08-10T16:15:22+00:00 Paul Eggleton paul.eggleton@linux.intel.com 2014-07-15T08:35:48+00:00 urn:sha1:eb45d8b6c716c43f4acbc9f35a8c916eefbe72e5 Note that this now requires MariaDB/MySQL 5.5+. Signed-off-by: Paul Eggleton <paul.eggleton@linux.intel.com>