Mirror of git.yoctoproject.org/poky https://git.enea.com/cgit/linux/poky.git/atom?h=dora 2014-06-24T10:05:31+00:00 2014-06-24T10:05:31+00:00 Jonathan Liu net147@gmail.com 2014-05-27T02:15:14+00:00 urn:sha1:c60886f9f5ce046da9259a2b2a9b907351dfc259 console-kit-log-system-start.service fails to to start if the /var/log/ConsoleKit directory does not exist. Normally it is created automatically but as we mount a tmpfs at /var/log, we need to add a tmpfiles.d entry to create it. (From OE-Core master rev: 2a9a14bf400fe0c263c58aa85b02aba7311b1328) (From OE-Core rev: 305da37a4dc0fba2b8f3219cfae47a1d4228f244) Signed-off-by: Jonathan Liu <net147@gmail.com> Signed-off-by: Saul Wold <sgw@linux.intel.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org> Signed-off-by: Robert Yang <liezhi.yang@windriver.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org> 2014-06-06T09:27:51+00:00 Valentin Popa valentin.popa@intel.com 2014-06-05T13:08:31+00:00 urn:sha1:ad2c79b0fd8c9cf5d68c158ebe83e5a0b09656c7 Backported patch for CVE-2014-3466. This patch is for dora. (From OE-Core rev: 68da848e0f7f026bf18707d8d59143177ff66f9b) Signed-off-by: Valentin Popa <valentin.popa@intel.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org> 2014-03-06T10:32:42+00:00 Paul Eggleton paul.eggleton@linux.intel.com 2014-03-06T10:17:08+00:00 urn:sha1:d0e55dd0ef92fef31976edfb920a021c313fa14e Add a Debian patch to fix a load of errors building the documentation within do_compile e.g.: | ./x509-api.texi:15: misplaced { | ./x509-api.texi:15: misplaced } (From OE-Core master rev: b09a9a5f298596795f17243e5ffcf7dab295a8e6) (From OE-Core rev: 18f34944696a8098daf33a94bc2f532deb217d0a) Signed-off-by: Paul Eggleton <paul.eggleton@linux.intel.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org> 2014-03-05T12:40:14+00:00 Karl Hiramoto karl@hiramoto.org 2014-03-05T10:59:29+00:00 urn:sha1:0ce26e16d1c02be5daa451e7d88041ee524f068a This patch is for the OE-Core dora branch - it comes from upstream: >From 467478d8ff08a3cb4be3034ff04c9d08a0ceba3e From: Nikos Mavrogiannopoulos <nmav@redhat.com> Date: Wed, 12 Feb 2014 16:41:33 +0100 For more info see: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-1959 http://www.gnutls.org/security.html#GNUTLS-SA-2014-1 https://www.gitorious.org/gnutls/gnutls/commit/467478d8ff08a3cb4be3034ff04c9d08a0ceba3e (From OE-Core rev: 74bcafd4949b3505bff4c38de6e68ad62f0fe5f6) Signed-off-by: Karl Hiramoto <karl@hiramoto.org> Signed-off-by: Paul Eggleton <paul.eggleton@linux.intel.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org> 2014-03-05T12:40:14+00:00 Karl Hiramoto karl@hiramoto.org 2014-03-05T10:59:28+00:00 urn:sha1:9f4ebcf2f95d8c9f9e40226a34cd7877bdc07584 This patch is for the OE-Core dora branch - it comes from upstream: git://gitorious.org/gnutls/gnutls.git branch: gnutls_2_12_x commit: 6aa26f78150ccbdf0aec1878a41c17c41d358a3b Author: Nikos Mavrogiannopoulos <nmav@gnutls.org> Date: Thu Feb 27 19:42:26 2014 +0100 For more info see: http://www.gnutls.org/security.html#GNUTLS-SA-2014-2 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-0092 https://www.gitorious.org/gnutls/gnutls/commit/6aa26f78150ccbdf0aec1878a41c17c41d358a3b (From OE-Core rev: d9a5578da93d79c8edfaf773bdb56018046046ea) Signed-off-by: Karl Hiramoto <karl@hiramoto.org> Signed-off-by: Paul Eggleton <paul.eggleton@linux.intel.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org> 2014-02-09T11:04:16+00:00 Phil Blundell pb@pbcl.net 2014-01-09T11:16:10+00:00 urn:sha1:abc38c0259be59d0a94c4db21cc584fa601fc38f Although libsoup did use to support direct usage of libproxy, it hasn't done so for some time. Worse, if libsoup depends on libproxy then it is impossible to build libproxy against webkit since webkit itself depends on libsoup in some configurations. Fix this by removing the extraneous entry from DEPENDS. (From OE-Core master rev: e588ba009402be27c643f2596acea0f178d4e42f) (From OE-Core rev: 18b0c51668a8da50d679c6e9a55ccd3c0595c011) Signed-off-by: Phil Blundell <pb@pbcl.net> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org> Signed-off-by: Robert Yang <liezhi.yang@windriver.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org> 2014-02-09T11:04:14+00:00 Yue Tao Yue.Tao@windriver.com 2013-12-05T23:52:19+00:00 urn:sha1:6757c59442169d274ab6057f543e3ea45bfb4fcd Use-after-free vulnerability in International Components for Unicode (ICU), as used in Google Chrome before 30.0.1599.66 and other products, allows remote attackers to cause a denial of service or possibly have unspecified other impact via unknown vectors. http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2013-2924 (From OE-Core master rev: 36e2981687acc5b7a74f08718d4578f92af4dc8b) (From OE-Core rev: ab2d452fd9e177017c57d411ebb61728845f97bf) Signed-off-by: Yue Tao <Yue.Tao@windriver.com> Signed-off-by: Robert Yang <liezhi.yang@windriver.com> Signed-off-by: Mark Hatle <mark.hatle@windriver.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org> Signed-off-by: Robert Yang <liezhi.yang@windriver.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org> 2013-12-20T09:29:05+00:00 Paul Eggleton paul.eggleton@linux.intel.com 2013-12-19T11:46:35+00:00 urn:sha1:3cf2d232529c4fd6b58f87ddbf3df9d805e4180f The configure script looks for this; most of the time dependency chains ensure this is present but we need to be explicit or failures can occur. Reported by Nicolas Dechesne <nicolas.dechesne@linaro.org> (From OE-Core master rev: 22e45ed7d74ceb4a719e7b5889400c20ed4a0783) (From OE-Core rev: e86622a932bbd0acdea67ecfb15c8b06c27353d8) Signed-off-by: Paul Eggleton <paul.eggleton@linux.intel.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org> 2013-12-12T17:00:18+00:00 Phil Blundell pb@pbcl.net 2013-11-14T14:41:21+00:00 urn:sha1:a8008ea07b8d852a3b67fd2a4059669b56cb8e2a Boost::thread uses functions from boost::atomic but doesn't actually link with libboost_atomic. This works fine on platforms where BOOST_ATOMIC_FLAG_LOCK_FREE is true but will lead to undefined symbol references otherwise. Fix this by applying a patch from the upstream bug tracker to add the missing library linkage. (From OE-Core master rev: 1ffc27173576589191b037d111ecb59d94631de0) (From OE-Core rev: 306fd06c7687340a0d4eb90e9aba9dc8669db07c) Signed-off-by: Phil Blundell <pb@pbcl.net> Signed-off-by: Saul Wold <sgw@linux.intel.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org> Signed-off-by: Robert Yang <liezhi.yang@windriver.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org> 2013-12-12T17:00:15+00:00 Khem Raj raj.khem@gmail.com 2013-11-12T04:15:53+00:00 urn:sha1:75cf26a02f72357533c42ceddbb24daa1d45185f This is a backport from upstream fixes a severe problem w.r.t memory management, where it would result in random segfaults in applications depending on libnl (From OE-Core rev: c3fb18aac0de49dc3113296699d95be298d98140) Signed-off-by: Khem Raj <raj.khem@gmail.com> Signed-off-by: Robert Yang <liezhi.yang@windriver.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>