Mirror of git.yoctoproject.org/poky https://git.enea.com/cgit/linux/poky.git/atom?h=python3 2016-05-14T22:05:12+00:00 2016-05-14T22:05:12+00:00 Maxin B. John maxin.john@intel.com 2016-05-12T13:16:52+00:00 urn:sha1:ad03e92c79496e82818c4fd0a9c000b5d46b5762 Removed following upstreamed/backported patches: a) 0001-Detect-backtrace-API-availability-before-using-it.patch b) 0001-iptables-Add-missing-function-item-of-xtables-to-mat.patch Rearranged musl related patches. (From OE-Core rev: 5d1b1d9cc20ee69832e8d95579dcfa99419dfed5) Signed-off-by: Maxin B. John <maxin.john@intel.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org> 2016-05-11T09:33:39+00:00 Armin Kuster akuster@mvista.com 2016-05-03T23:46:05+00:00 urn:sha1:5ae5fc7e7b632717be02d1db2fbb9a7cf6ba4f12 CVE-2016-2105 CVE-2016-2106 CVE-2016-2109 CVE-2016-2176 https://www.openssl.org/news/secadv/20160503.txt fixup openssl-avoid-NULL-pointer-dereference-in-EVP_DigestInit_ex.patch drop crypto_use_bigint_in_x86-64_perl.patch as that fix is in latest. (From OE-Core rev: c693f34f54257a8eca9fe8c5a9eee5647b7eeb0c) Signed-off-by: Armin Kuster <akuster@mvista.com> Signed-off-by: Ross Burton <ross.burton@intel.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org> 2016-05-11T09:33:39+00:00 Maxin B. John maxin.john@intel.com 2016-05-04T08:20:24+00:00 urn:sha1:8c1932e05ed44d975beeb517e469f9a8d15ecfc1 4.4.0 -> 4.5.0 Refreshed iproute2 musl build fix patch for 4.5.0 Remove backported patch: iproute2-fix-building-with-musl.patch (From OE-Core rev: 9d3d76a43d27c95aac8d7a840c9c38c686b166ec) Signed-off-by: Maxin B. John <maxin.john@intel.com> Signed-off-by: Ross Burton <ross.burton@intel.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org> 2016-05-11T09:33:38+00:00 Maxin B. John maxin.john@intel.com 2016-05-04T08:20:19+00:00 urn:sha1:548e55c3340f5e073277d4e397b15ab9d87e4037 5.37 -> 5.39 (From OE-Core rev: 53048d65402211e0caa9a7c8b90e3d9711a5262a) Signed-off-by: Maxin B. John <maxin.john@intel.com> Signed-off-by: Ross Burton <ross.burton@intel.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org> 2016-04-29T06:58:45+00:00 Ross Burton ross.burton@intel.com 2016-04-22T15:16:06+00:00 urn:sha1:05797191f04222df69e90711f0ea6a78648dc323 A patch is needed to fix a race in out-of-tree builds, and the install-ptest logic can be simplified. (From OE-Core rev: 471fdafb340e90a4ab2e31854f69d5204e9380bf) Signed-off-by: Ross Burton <ross.burton@intel.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org> 2016-04-29T06:41:43+00:00 Armin Kuster akuster@mvista.com 2016-04-28T00:47:20+00:00 urn:sha1:3c6ead9129d35b71c6067c7d46ab3a8d12a121de opehssh <= 7.2 (From OE-Core rev: 7d6abd0b7b89f28343741c2188da22c6d1c6c8ea) Signed-off-by: Armin Kuster <akuster@mvista.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org> 2016-04-29T06:41:43+00:00 Jussi Kukkonen jussi.kukkonen@intel.com 2016-04-21T12:50:39+00:00 urn:sha1:567483faa9e5e3afbcd5cc91d3762963089918fc This is required for dbus-binding-tool. (From OE-Core rev: 513515fef1a5dac197b260613af8205bea96bcfc) Signed-off-by: Jussi Kukkonen <jussi.kukkonen@intel.com> Signed-off-by: Ross Burton <ross.burton@intel.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org> 2016-04-18T15:28:22+00:00 Catalin Enache catalin.enache@windriver.com 2016-04-18T12:52:16+00:00 urn:sha1:4946ecfb42d71c35c1421061479731a4ea88f762 ISC DHCP 4.1.x before 4.1-ESV-R13 and 4.2.x and 4.3.x before 4.3.4 does not restrict the number of concurrent TCP sessions, which allows remote attackers to cause a denial of service (INSIST assertion failure or request-processing outage) by establishing many sessions. http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2016-2774 (From OE-Core rev: 2fc84114c6323bf1e3d3598af52dd1523168c9fc) Signed-off-by: Catalin Enache <catalin.enache@windriver.com> Signed-off-by: Ross Burton <ross.burton@intel.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org> 2016-04-18T15:28:22+00:00 Jussi Kukkonen jussi.kukkonen@intel.com 2016-04-15T12:03:17+00:00 urn:sha1:74ab080d3475cfbf4ad0f6e747601c71709f2e44 Duplicate EDNS COOKIE options in a response could trigger an assertion failure: Fix with a backport. bind as built with the oe-core recipe is not at risk: Only servers which are built with DNS cookie support (--enable-sit) are vulnerable to denial of service. Fixes [YOCTO #9438] (From OE-Core rev: da38a9840b32e80464e2938395db5c9167729f7e) Signed-off-by: Jussi Kukkonen <jussi.kukkonen@intel.com> Signed-off-by: Ross Burton <ross.burton@intel.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org> 2016-04-15T05:59:43+00:00 Fabio Berton fabio.berton@ossystems.com.br 2016-04-14T12:51:06+00:00 urn:sha1:bb40b5e77a53cf66c6b6f7a22f1b6147c6f2aec3 do_install_append function installs init scripts but to enable this service we need to inherit update-rc.d class and set INITSCRIPT name and params. (From OE-Core rev: 854523f173ba9784f1e2a00804c0f5ef16e8cf85) Signed-off-by: Fabio Berton <fabio.berton@ossystems.com.br> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>