mirrors/poky
1
0
Fork 0
mirror of https://git.yoctoproject.org/poky synced 2026-02-07 09:16:36 +01:00
Code Issues Packages Projects Releases Wiki Activity
56,883 Commits 38 Branches 617 Tags
2ed5d927ca9b88d3964ada990ef46cdd38ec4b1e
Commit Graph

4 Commits

Author SHA1 Message Date
Adrian Bunk
a1784da704 python/python3: Whitelist CVE-2019-18348 
This is not exploitable when glibc has CVE-2016-10739 fixed,
which is fixed in the upstream version since warrior.

(From OE-Core rev: 0da6e0a232019fe7eccfbdf33a13c1fe0a35cddd)

Signed-off-by: Adrian Bunk <bunk@stusta.de>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
 2020-01-03 22:35:48 +00:00
Richard Purdie
0224fe0f52 python3: Update to apply libgcc fix to libpython, glibc only 
Update to account for review feedback on list.

(From OE-Core rev: ec788594f3f6a47687c6eb321437f2d2b58b1518)

Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
 2020-01-02 16:39:13 +00:00
Joshua Watt
9ba369d463 python3: RDEPEND on libgcc 
=help>
List-Subscribe:
 <http://lists.openembedded.org/mailman/listinfo/openembedded-core>,
 <mailto:openembedded-core-request@lists.openembedded.org?subject=subscribe>
Content-Type: text/plain; charset="us-ascii"
Sender: openembedded-core-bounces@lists.openembedded.org
Errors-To: openembedded-core-bounces@lists.openembedded.org
X-Virus-Scanned: clamav-milter 0.101.4 at dan
X-Virus-Status: Clean
X-Evolution-Source: 1525863794.3857.16@hex
Content-Transfer-Encoding: 8bit

Python uses features of glibc that require it to dynamically load (i.e.
dlopen()) libgcc_s at runtime. However, since this isn't a link time
dependency, it doesn't get picked up automatically by bitbake so
manually add it to RDEPENDS.

There is an outstanding bug in Python to make it explicitly link against
libgcc at link time which would remove the need for this. See:
https://bugs.python.org/issue37395

(From OE-Core rev: df107f3a149b1e88d9f869e7ff87950ccf5aaee0)

Signed-off-by: Joshua Watt <JPEWhacker@gmail.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
 2020-01-01 10:46:16 +00:00
Adrian Bunk
fc2ba05725 python3: Upgrade 3.7.5 -> 3.7.6 
(From OE-Core rev: aee9beb12226abf7a195b8ee801ea488920b2fdb)

Signed-off-by: Adrian Bunk <bunk@stusta.de>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
 2020-01-01 10:46:16 +00:00