linux/poky.git/meta/recipes-devtools/patch, branch mickledore

meta/meta-selftest/meta-skeleton: Update LICENSE variable to use SPDX license identifiers

2022-02-20T16:45:25+00:00

An automated conversion using scripts/contrib/convert-spdx-licenses.py to convert to use the standard SPDX license identifiers. Two recipes in meta-selftest were not converted as they're that way specifically for testing. A change in linux-firmware was also skipped and may need a more manual tweak. (From OE-Core rev: ceda3238cdbf1beb216ae9ddb242470d5dfc25e0) Signed-off-by: Richard Purdie

patches: correct whitespace/spelling for Upstream-Status tags

2021-11-21T11:05:02+00:00

(From OE-Core rev: c613ca14c35a5d1782c79a25b83875cbfa2b952b) Signed-off-by: Alexander Kanavin Signed-off-by: Richard Purdie

Convert to new override syntax

2021-08-02T14:44:10+00:00

This is the result of automated script conversion: scripts/contrib/convert-overrides.py converting the metadata to use ":" as the override character instead of "_". (From OE-Core rev: 42344347be29f0997cc2f7636d9603b1fe1875ae) Signed-off-by: Richard Purdie

patch: fix CVE-2019-20633

2021-01-01T23:15:13+00:00

* CVE detail: https://nvd.nist.gov/vuln/detail/CVE-2019-20633 * upstream tracking: https://savannah.gnu.org/bugs/index.php?56683 * Fixes potential for double free after incomplete fix for CVE-2018-6952 - src/pch.c (another_hunk): Avoid invalid memory access in context format diffs. (From OE-Core rev: be71dd2cc16a4c0d244a76a748f08ca0d9bfeba0) Signed-off-by: Scott Murray Signed-off-by: Richard Purdie

patch: Extend to native/nativesdk and depend upon

2020-02-06T12:16:34+00:00

There is a bug in patch 2.7.3 and earlier where index lines in patches can change file modes when they shouldn't: http://git.savannah.gnu.org/cgit/patch.git/patch/?id=82b800c9552a088a241457948219d25ce0a407a4 This leaks into debug sources in particular (e.g. tcp-wrappers where source files are read-only). Add the dependency to target recipes to avoid this problem until we can rely on 2.7.4 or later. We could try and remove all index lines from patch files but it will be a losing battle. We could try and identify all the recipes which change modes on files in patches but again, its a losing battle. Instead, compromise and have patch-native as a dependency for target recipes. We use patch-replacement-native since patch-native is in ASSUME_PROVIDED. Also add nativesdk-patch to buildtools-tarball. [YOCTO #13777] (From OE-Core rev: 5ed0840c93804488cd1c1aba6cb382b2434714a5) Signed-off-by: Richard Purdie

patch: the CVE-2019-13638 fix also handles CVE-2018-20969

2019-11-05T10:37:11+00:00

(From OE-Core rev: 10c3af7ad8b7bb369c84c60a717bcd1358861187) Signed-off-by: Ross Burton Signed-off-by: Richard Purdie

patch: add CVE tags to patches

2019-09-06T13:58:09+00:00

These patches improve CVE fixes but trip up patch status sanity checks, so add CVE tags to them. (From OE-Core rev: b30e060639d99849e27e5136c33c52d27e3288dc) Signed-off-by: Ross Burton Signed-off-by: Richard Purdie

patch: backport fixes

2019-08-22T21:48:26+00:00

The original fix for CVE-2018-1000156 was incomplete. Backport more fixes done later for a complete fix. Also see: https://savannah.gnu.org/bugs/index.php?53820 (From OE-Core rev: 9ea833b7d1655e042a513ea2225468c84f1c8bfb) Signed-off-by: Anuj Mittal Signed-off-by: Ross Burton Signed-off-by: Richard Purdie

patch: fix CVE-2019-13638

2019-08-13T08:37:37+00:00

(From OE-Core rev: b59b1222b3f73f982286222a583de09c661dc781) Signed-off-by: Trevor Gamblin Signed-off-by: Richard Purdie

patch: fix CVE-2019-13636

2019-07-31T22:03:01+00:00

(From OE-Core rev: f201b9db5d148cb9fe03b78ca085493a27f7e24c) Signed-off-by: Anuj Mittal Signed-off-by: Richard Purdie