mirrors/poky
1
0
Fork 0
mirror of https://git.yoctoproject.org/poky synced 2026-02-09 02:03:04 +01:00
Code Issues Packages Projects Releases Wiki Activity
66,971 Commits 38 Branches 617 Tags
4cc94de99230201c3c39b924219113157ff47006
Commit Graph

121 Commits

Author SHA1 Message Date
wangmy
175d133ed3 sqlite3: upgrade 3.38.5 -> 3.39.0 
(From OE-Core rev: 632bf7426a904322904af87c9083b22d6b3c1566)

Signed-off-by: Wang Mingyu <wangmy@fujitsu.com>
Signed-off-by: Alexandre Belloni <alexandre.belloni@bootlin.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
 2022-07-01 11:31:42 +01:00
Alexander Kanavin
0f09c786b4 sqlite3: upgrade 3.38.3 -> 3.38.5 
(From OE-Core rev: e1bd414792ae2576685b2a352a5cc93343f06985)

Signed-off-by: Alexander Kanavin <alex@linutronix.de>
Signed-off-by: Luca Ceresoli <luca.ceresoli@bootlin.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
 2022-05-20 22:52:23 +01:00
Alexander Kanavin
7b92062c84 sqlite3: upgrade 3.38.2 -> 3.38.3 
(From OE-Core rev: 1efd89a4572bb2f39728fd53a1d4db944b06ff38)

Signed-off-by: Alexander Kanavin <alex@linutronix.de>
Signed-off-by: Luca Ceresoli <luca.ceresoli@bootlin.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
 2022-05-05 21:17:38 +01:00
wangmy
c84efb8750 sqlite3: upgrade 3.38.1 -> 3.38.2 
(From OE-Core rev: a285f31f2ca2e8f71d5939862d09211b53adeefb)

Signed-off-by: Wang Mingyu <wangmy@fujitsu.com>
Signed-off-by: Alexandre Belloni <alexandre.belloni@bootlin.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
 2022-03-29 15:59:29 +01:00
Alexander Kanavin
1f46d65c46 sqlite3: upgrade 3.38.0 -> 3.38.1 
(From OE-Core rev: 84b70c7d2d76af72cb6df42e0ceda66dbea49d8a)

Signed-off-by: Alexander Kanavin <alex.kanavin@gmail.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
 2022-03-20 00:02:22 +00:00
wangmy
549c5046de sqlite3: upgrade 3.37.2 -> 3.38.0 
Remove invalid PACKAGECONFIG : json1

(From OE-Core rev: 3f665656e3c0134994015235c24240086d5324fc)

Signed-off-by: Wang Mingyu <wangmy@fujitsu.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
 2022-03-02 18:43:24 +00:00
Richard Purdie
71ef319193 meta/scripts: Automated conversion of OE renamed variables 
(From OE-Core rev: aa52af4518604b5bf13f3c5e885113bf868d6c81)

Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
 2022-02-21 23:37:27 +00:00
Alexander Kanavin
1039ad104e sqlite: update 3.37.1 -> 3.37.2 
(From OE-Core rev: e77c5d7ca59545f99d3bbacd0bac13df061b9a40)

Signed-off-by: Alexander Kanavin <alex@linutronix.de>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
 2022-01-20 11:57:29 +00:00
Otavio Salvador
c3a5948e45 sqlite3: upgrade 3.37.0 -> 3.37.1 
(From OE-Core rev: a4d1d878ddf57688535722ef330938b7e1c78066)

Signed-off-by: Otavio Salvador <otavio@ossystems.com.br>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
 2022-01-05 17:18:16 +00:00
wangmy
fb834580eb sqlite3: upgrade 3.36.0 -> 3.37.0 
Changelog:
1.STRICT tables provide a prescriptive style of data type management, for
  developers who prefer that kind of thing.
2.When adding columns that contain a CHECK constraint or a generated column
  containing a NOT NULL constraint, the ALTER TABLE ADD COLUMN now checks new
  constraints against preexisting rows in the database and will only proceed if
  no constraints are violated.
3.Added the PRAGMA table_list statement.
4.CLI enhancements:
  a.Add the .connection command, allowing the CLI to keep multiple database
    connections open at the same time.
  b.Add the --safe command-line option that disables dot-commands and SQL
    statements that might cause side-effects that extend beyond the single
    database file named on the command-line.
  c.Performance improvements when reading SQL statements that span many lines.
5.Added the sqlite3_autovacuum_pages() interface.
6.The sqlite3_deserialize() does not and has never worked for the TEMP database.
  That limitation is now noted in the documentation.
7.The query planner now omits ORDER BY clauses on subqueries and views if
  removing those clauses does not change the semantics of the query.
8.The generate_series table-valued function extension is modified so that the
  first parameter ("START") is now required. This is done as a way to
  demonstrate how to write table-valued functions with required parameters.
  The legacy behavior is available using the -DZERO_ARGUMENT_GENERATE_SERIES
  compile-time option.
9.Added new sqlite3_changes64() and sqlite3_total_changes64() interfaces.
10.Added the SQLITE_OPEN_EXRESCODE flag option to sqlite3_open_v2().
11.Use less memory to hold the database schema.

(From OE-Core rev: b1c6e95d075531998de5b73e7ec7073647d5a2d2)

Signed-off-by: Wang Mingyu <wangmy@fujitsu.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
 2021-12-01 16:23:45 +00:00
Richard Purdie
e899b2e25b sqlite3: Exclude CVE-2021-36690 from cve checks 
Issue is in an experimental extension we don't have/use. Could also
be windows only.

(From OE-Core rev: 6f5770b49f06168e3d6914bd92f0594bd05f1f8f)

Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
 2021-09-21 23:44:08 +01:00
Richard Purdie
bb6ddc3691 Convert to new override syntax 
This is the result of automated script conversion:

scripts/contrib/convert-overrides.py <oe-core directory>

converting the metadata to use ":" as the override character instead of "_".

(From OE-Core rev: 42344347be29f0997cc2f7636d9603b1fe1875ae)

Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
 2021-08-02 15:44:10 +01:00
Alexander Kanavin
73546784a2 sqlite3: upgrade 3.35.5 -> 3.36.0 
(From OE-Core rev: 118564912d65135e971778eac16667a40fd062b4)

(From OE-Core rev: 70da06a05972af2953ce57042aaa605281685030)

Signed-off-by: Alexander Kanavin <alex.kanavin@gmail.com>
Signed-off-by: Alexandre Belloni <alexandre.belloni@bootlin.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
 2021-06-26 11:27:16 +01:00
Richard Purdie
16e8c05a63 sqlite3: upgrade 3.35.3 -> 3.35.5 
(From OE-Core rev: a7480b206848df56fb64d9bfec9d4cdffa16efea)

Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
 2021-05-18 12:43:00 +01:00
Randy MacLeod
0b16b83dff sqlite3: upgrade 3.35.0 -> 3.35.3 
(From OE-Core rev: 7d511f9b2b1f739e0c96a063d85428b3ab5767b3)

Signed-off-by: Randy MacLeod <Randy.MacLeod@windriver.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
 2021-04-18 11:37:24 +01:00
Richard Purdie
40cade73ad sqlite3: upgrade 3.34.1 -> 3.35.0 
(From OE-Core rev: fd2263bb82fb8a3d0bf74d41777ff55ac14b9447)

Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
 2021-03-16 17:52:21 +00:00
Meh Mbeh Ida Delphine
c8075ed8f1 recipes-support: Add missing HOMEPAGE and DESCRIPTION for recipes 
Fixes: [YOCTO #13471]

(From OE-Core rev: 6db24928d62aeb093a0e6da6619713eaca57a96f)

Signed-off-by: Ida Delphine <idadelm@gmail.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
 2021-03-02 20:39:36 +00:00
zhengruoqin
6131fb0e1b sqlite3: upgrade 3.34.0 -> 3.34.1 
(From OE-Core rev: d26f5601d0cfe15cf9ef953e33e5e36e1b58e915)

Signed-off-by: Zheng Ruoqin <zhengrq.fnst@cn.fujitsu.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
 2021-02-08 14:47:16 +00:00
Alexander Kanavin
5949ae2dad sqlite3: upgrade 3.33.0 -> 3.34.0 
(From OE-Core rev: 12c8b9c2700b5cc69be3e966ad0bd6d6859f82bc)

Signed-off-by: Alexander Kanavin <alex.kanavin@gmail.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
 2020-12-30 14:01:06 +00:00
Ross Burton
dab763c0a0 sqlite3: add CVE-2015-3717 to whitelist 
As per https://groups.google.com/g/sqlite-dev/c/U7OjAbZO6LA this issue
is believed to be either iOS specific, or fixed in 3.8.9.

(From OE-Core rev: b781058267bd86bd979c50f4dfe8168c58dfa5a9)

Signed-off-by: Ross Burton <ross.burton@arm.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
 2020-11-24 10:27:45 +00:00
Anuj Mittal
073ef419d5 sqlite3: upgrade 3.32.3 -> 3.33.0 
(From OE-Core rev: ef27d18d3b91d0545cb1e4ef3cb8bd002ea73b47)

Signed-off-by: Anuj Mittal <anuj.mittal@intel.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
 2020-08-19 10:57:44 +01:00
Andreas Müller
a0504d17b2 sqlite3: upgrade 3.32.2 -> 3.32.3 
(From OE-Core rev: 0facc5fb49ab08c97fae3cb721c990de77d461c7)

Signed-off-by: Andreas Müller <schnitzeltony@gmail.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
 2020-06-24 18:06:43 +01:00
Andreas Müller
71b50a4310 sqlite3: upgrade 3.32.1 -> 3.32.2 
(From OE-Core rev: 0f686fabd33d933330b9c6e9b14fff25ae8e7642)

Signed-off-by: Andreas Müller <schnitzeltony@gmail.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
 2020-06-09 13:13:59 +01:00
Wang Mingyu
c15d342e45 sqlite: upgrade 3.31.1 -> 3.32.1 
CVE-2020-11655.patch
CVE-2020-11656.patch
CVE-2020-9327.patch
removed since they are included in 3.32.1

(From OE-Core rev: 7ee8501146ceccdbd07104903694a435b75c0606)

Signed-off-by: Wang Mingyu <wangmy@cn.fujitsu.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
 2020-06-04 13:27:32 +01:00
Sakib Sajal
b3f5f7f10a sqlite: backport CVE fixes 
Fixes CVE-2020-11655 and CVE-2020-11656

(From OE-Core rev: 3b06a6c73f4e49c6d00f758423c2e8865ec2de00)

Signed-off-by: Sakib Sajal <sakib.sajal@windriver.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
 2020-05-03 15:41:40 +01:00
Anuj Mittal
0a9ce59fda sqlite3: fix CVE-2020-9327 
(From OE-Core rev: 6acb9746744536019d5c04ce482a873916aac99f)

Signed-off-by: Anuj Mittal <anuj.mittal@intel.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
 2020-03-10 23:20:33 +00:00
Anuj Mittal
73333dd4b8 sqlite3: upgrade 3.30.1 -> 3.31.1 
(From OE-Core rev: 621ea68239763ce8740731e745c5002c956d4c67)

Signed-off-by: Anuj Mittal <anuj.mittal@intel.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
 2020-02-05 12:00:34 +00:00
Ross Burton
8dd90ff82e sqlite: fix numerous CVEs 
Fix the following CVEs:

- CVE-2019-19244
- CVE-2019-19880
- CVE-2019-19923
- CVE-2019-19924
- CVE-2019-19925
- CVE-2019-19926
- CVE-2019-19959
- CVE-2019-20218

(From OE-Core rev: f3ebf3f8dd0b4d144db451a8fcb352762f7fbd75)

Signed-off-by: Ross Burton <ross.burton@intel.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
 2020-01-16 22:33:09 +00:00
Anuj Mittal
70621ca8c9 sqlite3: upgrade 3.30.0 -> 3.30.1 
(From OE-Core rev: 81c7ac8a206f50d045d4cbeeb50e9b4e14c47259)

Signed-off-by: Anuj Mittal <anuj.mittal@intel.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
 2019-11-21 23:08:20 +00:00
Richard Purdie
176b25bdc8 sqlite3: Drop pic as we no longer need the sqlite3 static lib 
This was added in:
https://git.openembedded.org/openembedded-core/commit/?id=6a58e12d19c539deac9e90679a68438497a42fa4
but is no longer needed now pseudo doesn't use sqlite's static lib.

(From OE-Core rev: 5f614a24ed3b6e4da34beb9a3cede07004134503)

Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
 2019-11-14 13:20:59 +00:00
Zang Ruochen
bef9a115ca sqlite3:upgrade 3.29 -> 3.30 
(From OE-Core rev: a1b798c5b1c62921eb3439e9fe859f90258cba3b)

Signed-off-by: Zang Ruochen <zangrc.fnst@cn.fujitsu.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
 2019-10-15 14:16:11 +01:00
Andre McCurdy
082e31ce2f sqlite3: explicitly set target endian-ness 
Unless SQLITE_BYTEORDER is predefined, the code falls back to build
time huristics - which are not always correct (e.g. in sqlite 3.28.0
big-endian ARM is mis-detected).

(From OE-Core rev: c0fc43c228acd44499d9a1c257ec5e4cf42ed050)

Signed-off-by: Andre McCurdy <armccurdy@gmail.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
 2019-08-28 11:31:22 +01:00
Andre McCurdy
429f2e933e sqlite3: make CFLAGS consistent across native, nativesdk and target cases 
The previous simplification:

  https://git.openembedded.org/openembedded-core/commit/?id=604777acfc54d285f315b622bd147ed02d55d6fd

looked OK but didn't actually work as expected. The native and
nativesdk classes re-set CFLAGS after the += has been applied and
so any modifications made via += are lost. Use _append instead.

(From OE-Core rev: b02d83f7ffc72b96799a7964a90709eef02aa29d)

Signed-off-by: Andre McCurdy <armccurdy@gmail.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
 2019-08-28 11:31:22 +01:00
Jason Wessel
3338776f11 sqlite3: Fix zlib determinism problem 
sqlite3-native in particular was finding zlib from the host if zlib-devel
was installed. This could lead to races where pseudo-native may or may not
fail to build.

We don't need/use compressed page support with sqlite so disable the dependency
(it doesn't have a configure option so use a autoconf cache variable).

The target binaries were not previously building with zlib, so we will
leave the default being zlib turned off, while the host binaries were
building with it "occasionally", but not for anything at runtime.

(From OE-Core rev: 0af2c6af0d5c060666f7ee6f2ef428c1a414cb86)

Signed-off-by: Jason Wessel <jason.wessel@windriver.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
 2019-08-07 16:08:15 +01:00
Zang Ruochen
b8390996e6 sqlite3: Upgrade 3.28.0 -> 3.29.0 
Upgrade from sqlite3_3.28.0.bb to sqlite3_3.29.0.bb.

(From OE-Core rev: 184d574b35be9229c50331ad48c38cd444f53a60)

Signed-off-by: Zang Ruochen <zangrc.fnst@cn.fujitsu.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
 2019-07-15 09:29:59 +01:00
Oleksandr Kravchuk
fe5b1ceb41 sqlite3: update to 3.28.0 
(From OE-Core rev: 9be07e8c8eea8565df73405775ec2ffb60659118)

Signed-off-by: Oleksandr Kravchuk <open.source@oleksandr-kravchuk.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
 2019-05-08 23:00:32 +01:00
Ross Burton
f7db0478d2 sqlite3: fix CVE-2019-9936 and CVE-2019-9937 
(From OE-Core rev: 4ec161ea684b305b303f32e96ce23f472c82e1a1)

Signed-off-by: Ross Burton <ross.burton@intel.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
 2019-04-01 14:48:44 +01:00
Adrian Bunk
caf4767116 sqlite3: Upgrade 3.26.0 -> 3.27.2 
(From OE-Core rev: eb12c672c8f9a0d85a38e84cf0f6aa000bb1cf9f)

Signed-off-by: Adrian Bunk <bunk@stusta.de>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
 2019-03-07 21:55:29 +00:00
Anuj Mittal
841ace3d53 sqlite3: upgrade 3.25.3 -> 3.26.0 
For changes, see:

https://www.sqlite.org/releaselog/3_26_0.html

(From OE-Core rev: 8286e9d79dde1c951e92ac1c55bbf0b9798d9dbf)

Signed-off-by: Anuj Mittal <anuj.mittal@intel.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
 2018-12-20 14:53:55 +00:00
Jens Rehsack
e234be1bef sqlite3: Update 3.25.2 -> 3.25.3 
Update SQLite3 from 3.25.2 to 3.25.3 to fix following issues:

* Disallow the use of window functions in the recursive part of a CTE.
* Fix the behavior of typeof() and length() on virtual tables.
* Strengthen defenses against deliberately corrupted database files.
* Fix a problem in the query planner that results when a row-value
  expression is used with a PRIMARY KEY with redundant columns.
* Fix the query planner so that it works correctly for IS NOT NULL
  operators in the ON clause of a LEFT JOIN with the
  SQLITE_ENABLE_STAT4 compile-time option.

Also introduce PACKAGECONFIG tunables to enable/disable e.g. index
and search functions to allow shrinking the library for very small
targets.

(From OE-Core rev: d533ad9b93383a8d721b72b4030b112a3799d559)

Signed-off-by: Jens Rehsack <sno@netbsd.org>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
 2018-11-20 10:32:16 +00:00
Jens Rehsack
3f959b5dbd sqlite3_3: Update to 3.25.2 
Update SQLite3 from 3.23.1 to 3.25.2 for UPSERT, window
functions and improved ALTER TABLE support.

For a detailed list of changes since 3.23.1, see
* https://www.sqlite.org/releaselog/3_25_2.html
* https://www.sqlite.org/releaselog/3_24_0.html

(From OE-Core rev: eea7b16e762ab971d2ccea728e0019304325aed7)

Signed-off-by: Jens Rehsack <sno@netbsd.org>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
 2018-11-14 11:14:39 +00:00
Richard Purdie
44b185581d sqlite3: Merge/simplify CFLAGS 
An earlier version of a change was merged from S. Lockwood-Childs
<sjl@vctlabs.com> which made the CFLAGS consistent across native,
nativesdk and target cases. This syncs with a later verison of the
patch to remove duplicate CFLAGS settings and simplify the recipe.

(From OE-Core rev: 604777acfc54d285f315b622bd147ed02d55d6fd)

Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
 2018-06-18 11:07:57 +01:00
S. Lockwood-Childs
086610faf0 sqlite3: consistent set of features for nativesdk 
Enable use of pread() and enable column metadata API for nativesdk builds.
This brings nativesdk in line with target and native builds.

(From OE-Core rev: 7c8b85e1c3d852975cd5961a297aa939bf4c7fe7)

Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
 2018-06-15 17:56:24 +01:00
Marko, Peter
865e34547a sqlite3: upgrade 3.23.0 -> 3.23.1 
(From OE-Core rev: 6a90852e7e8fd6d17308d78966e700f17f567898)

Signed-off-by: Marko Peter <peter.marko@siemens.com>
Signed-off-by: Ross Burton <ross.burton@intel.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
 2018-05-22 13:13:32 +01:00
Maxin B. John
a6646df0ca sqlite3: upgrade to version 3.23.0 
3.22.0 -> 3.23.0

Includes optimizations and fixes for issues detected by OSSFuzz

(From OE-Core rev: b478af4cd9c1cb0cab35b0160f7df3f31ca7358b)

Signed-off-by: Maxin B. John <maxin.john@intel.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
 2018-05-04 13:28:03 +01:00
Maxin B. John
71c405068c sqlite3: upgrade to version 3.22.0 
Update SRC_URI for releases in 2018.

(From OE-Core rev: fff2409587e8a253c1f79a3d3c78907440402188)

Signed-off-by: Maxin B. John <maxin.john@intel.com>
Signed-off-by: Ross Burton <ross.burton@intel.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
 2018-01-26 13:09:10 +00:00
Maxin B. John
266694886e sqlite3: upgrade to 3.21.0 
Remove upstreamed patch:
        1. sqlite3-fix-CVE-2017-13685.patch

(From OE-Core rev: 483711e676cd063a873179bdb2daedf56de0aa75)

Signed-off-by: Maxin B. John <maxin.john@intel.com>
Signed-off-by: Ross Burton <ross.burton@intel.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
 2017-11-21 13:06:11 +00:00
Wenzong Fan
55db269ae9 sqlite3: fix CVE-2017-13685 
The dump_callback function in SQLite 3.20.0 allows remote attackers to
cause a denial of service (EXC_BAD_ACCESS and application crash) via a
crafted file.

Backport patch to fix the issue. Some references:
https://sqlite.org/src/info/02f0f4c54f2819b3
http://www.mail-archive.com/sqlite-users%40mailinglists.sqlite.org/msg105314.html

(From OE-Core rev: 9b9f566d2042f2b393de88506d2da964bc4d17b0)

Signed-off-by: Wenzong Fan <wenzong.fan@windriver.com>
Signed-off-by: Ross Burton <ross.burton@intel.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
 2017-10-16 23:52:44 +01:00
Wenzong Fan
3ff394411e sqlite3: upgrade to 3.2.0 
* Uprev from 3.19.3 to 3.2.0 for fixing CVE-2017-10989:

The getNodeSize function in ext/rtree/rtree.c in SQLite through 3.19.3,
as used in GDAL and other products, mishandles undersized RTree blobs
in a crafted database, leading to a heap-based buffer over-read or
possibly unspecified other impact.

https://nvd.nist.gov/vuln/detail/CVE-2017-10989

* LIC_FILES_CHKSUM updated for below changes:

  -** 2001 September 15
  +** 2001-09-15

(From OE-Core rev: 95b802bfe74ac6a3f6dc05edb52c87ef90600f40)

Signed-off-by: Wenzong Fan <wenzong.fan@windriver.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
 2017-08-18 10:40:27 +01:00
Mikko Rapeli
b134fda353 sqlite3.inc: set CVE_PRODUCT to sqlite 
It is used in NVD for CVE's like:

https://nvd.nist.gov/vuln/detail/CVE-2016-6153

(From OE-Core rev: cec6f26f4d2f16c9a58fac5a6344e3d43b36ed09)

Signed-off-by: Mikko Rapeli <mikko.rapeli@bmw.de>
Signed-off-by: Ross Burton <ross.burton@intel.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
 2017-07-24 09:13:31 +01:00