Commit Graph

1092 Commits

Author SHA1 Message Date
Yi Zhao
1a73074d75 tiff: Security fixes
Fix CVE-2017-9147, CVE-2017-9936, CVE-2017-10668, CVE-2017-11335

References:
https://nvd.nist.gov/vuln/detail/CVE-2017-9147
https://nvd.nist.gov/vuln/detail/CVE-2017-9936
https://nvd.nist.gov/vuln/detail/CVE-2017-10668
https://nvd.nist.gov/vuln/detail/CVE-2017-11335

Patches from:
CVE-2017-9147:
4d4fa0b68a
CVE-2017-9936:
fe8d716595
CVE-2017-10688:
6173a57d39
CVE-2017-11355:
69bfeec247

(From OE-Core rev: 5c89539edb17d01ffe82a1b2e7d092816003ecf3)

Signed-off-by: Yi Zhao <yi.zhao@windriver.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
2017-08-23 08:47:03 +01:00
Dengke Du
4e3878a808 mpg123: upgrade to 1.25.6
(From OE-Core rev: 03abde044a6c7cf4a54a9d074189f192b331d650)

Signed-off-by: Dengke Du <dengke.du@windriver.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
2017-08-18 23:46:38 +01:00
Jackie Huang
3577a8277e libsndfile1: Fix CVE-2017-8363
Backport the patch to fix CVE-2017-8363:

The flac_buffer_copy function in flac.c in libsndfile 1.0.28 allows
remote attackers to cause a denial of service (heap-based buffer
over-read and application crash) via a crafted audio file.

Reference:
https://nvd.nist.gov/vuln/detail/CVE-2017-8363

(From OE-Core rev: 9cc9956c5ed09f9016cb23bd763652e5ab55f3cd)

Signed-off-by: Jackie Huang <jackie.huang@windriver.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
2017-08-18 23:46:38 +01:00
Jackie Huang
0bead40423 libsndfile1: Fix CVE-2017-8362
Backport the patch to fix CVE-2017-8362:

The flac_buffer_copy function in flac.c in libsndfile 1.0.28 allows
remote attackers to cause a denial of service (invalid read and
application crash) via a crafted audio file.

Reference:
https://nvd.nist.gov/vuln/detail/CVE-2017-8362

(From OE-Core rev: 0c8da3f6f85962196f2ad54fffd839239f5c2274)

Signed-off-by: Jackie Huang <jackie.huang@windriver.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
2017-08-18 23:46:38 +01:00
Jackie Huang
768cd2beff libsndfile1: Fix CVE-2017-8361 and CVE-2017-8365
Backport the patch to fix two CVEs:

CVE-2017-8361:
The flac_buffer_copy function in flac.c in libsndfile 1.0.28 allows
remote attackers to cause a denial of service (buffer overflow and
application crash) or possibly have unspecified other impact via a
crafted audio file.

CVE-2017-8365:
The i2les_array function in pcm.c in libsndfile 1.0.28 allows remote
attackers to cause a denial of service (buffer over-read and application
crash) via a crafted audio file.

Reference:
https://nvd.nist.gov/vuln/detail/CVE-2017-8361
https://nvd.nist.gov/vuln/detail/CVE-2017-8365

(From OE-Core rev: d92877ade8fd4dd9b548c6b664bf4357a1f9428a)

Signed-off-by: Jackie Huang <jackie.huang@windriver.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
2017-08-18 23:46:37 +01:00
Alexander Kanavin
867b88ae53 gstreamer1.0-plugins-bad: do not provide a fallback to openssl 1.0
This does not work as intended: enabling either of the alternatives
causes the other alternative to append a --disable-hls flag to
configure. Anyone needing openssl 1.0 should set it up manually
via EXTRA_OECONF_append or similar.

(From OE-Core rev: d2562cfe4517d85328e961f968db2c7cd3c6c6f2)

Signed-off-by: Alexander Kanavin <alexander.kanavin@linux.intel.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
2017-08-17 00:21:15 +01:00
Maxin B. John
afb2ba67fe gst-player: remove workaround which disable visualizations
As we upgrade to libva 1.8.3, we can remove the workaround patch
which disables visualizations in gst-player:
        1. 0001-gtk-play-Disable-visualizations.patch

Also remove the upstreamed patches:
        1. filechooser.patch
        2. Fix-pause-play.patch
        3. Add-error-signal-emission-for-missing-plugins.patch

Fixes [YOCTO #11437]

(From OE-Core rev: 50f1902cb44724aa4b030e4e42b115231217acc9)

Signed-off-by: Maxin B. John <maxin.john@intel.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
2017-08-17 00:21:15 +01:00
Carlos Rafael Giani
79483b0567 gstreamer1.0-python: upgrade to version 1.12.2
(From OE-Core rev: 084eb341281e396b25805bc88b0f09c03112c144)

Signed-off-by: Carlos Rafael Giani <dv@pseudoterminal.org>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
2017-08-16 00:03:14 +01:00
Carlos Rafael Giani
e2bf6f7586 gstreamer1.0-vaapi: upgrade to version 1.12.2
* Remove backported patch:
  1. vaapivideobufferpool-create-allocator-if-needed.patch

* Add PACKAGECONFIG_GL variable to make it possible for BSP layers to
  customize what should be the default, EGL or GLX

* Set virtual/egl instead of virtual/mesa as egl dependency in case
  platform specific drivers provide virtual/egl functionality

(From OE-Core rev: 42daac1ade210d873aa4761d89d2402fbe80f07b)

Signed-off-by: Carlos Rafael Giani <dv@pseudoterminal.org>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
2017-08-16 00:03:14 +01:00
Maxin John
19681739e0 gstreamer1.0-libav: upgrade to version 1.12.2
(From OE-Core rev: 7991a8a094f69a5777e21b17f130277e858acd24)

Signed-off-by: Carlos Rafael Giani <dv@pseudoterminal.org>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
2017-08-16 00:03:14 +01:00
Maxin John
cd0f99b826 gstreamer1.0-omx: upgrade to version 1.12.2
(From OE-Core rev: 01d7987786ff26eb56cc00712d77851f48659a3f)

Signed-off-by: Carlos Rafael Giani <dv@pseudoterminal.org>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
2017-08-16 00:03:14 +01:00
Maxin John
8ab7d9000c gstreamer1.0-rtsp-server: upgrade to version 1.12.2
(From OE-Core rev: bdcf49ddf9d0852a87fd5306f6fc0e6c5b716d1c)

Signed-off-by: Carlos Rafael Giani <dv@pseudoterminal.org>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
2017-08-16 00:03:14 +01:00
Maxin John
5938f43c9e gstreamer1.0-plugins-ugly: upgrade to version 1.12.2
* libmad plugin was removed in 1.12.0, since mad is GPLed,
  unmaintained, and both gst-libav & the mpg123 plugin are
  fully functional alternatives.

(From OE-Core rev: a963a2e38e246554b7083430710a2aba430df5e5)

Signed-off-by: Carlos Rafael Giani <dv@pseudoterminal.org>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
2017-08-16 00:03:14 +01:00
Carlos Rafael Giani
ae841c4371 gstreamer1.0-plugins-bad: upgrade to version 1.12.2
* Remove backported patches:
  1. 0001-smoothstreaming-implement-adaptivedemux-s-get_live_s.patch
  2. 0001-smoothstreaming-use-the-duration-from-the-list-of-fr.patch
  3. 0001-mssdemux-improved-live-playback-support.patch

* Refreshed the following patches:
  1. 0001-Makefile.am-don-t-hardcode-libtool-name-when-running.patch
     Extended patch to include fix for libgstallocators
  2. 0001-Prepend-PKG_CONFIG_SYSROOT_DIR-to-pkg-config-output.patch
     Updated to apply to 1.12.2
  3. gstreamer-gl.pc.in-don-t-append-GL_CFLAGS-to-CFLAGS.patch
     Updated to apply to 1.12.2

* Removed license checks in tta directory as it doesn't exist anymore.

* In 1.12.0, old unsupported plugins were removed. As a result, the
  list of unsupported plugins was removed.

(From OE-Core rev: 1fa8492e54dd71ce7d4d853e0cb7295c28fa5e76)

Signed-off-by: Carlos Rafael Giani <dv@pseudoterminal.org>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
2017-08-16 00:03:14 +01:00
Maxin John
71c2f1d047 gstreamer1.0-plugins-good: upgrade to version 1.12.2
* Remove backported patch:
  1. 0001-v4l2object-Also-add-videometa-if-there-is-padding-to.patch

* Added RPROVIDES to handle the renamed plugins (oss4 is not enabled):
  1. libgstpulse -> libgstpulseaudio
  2. libgstsouphttpsrc -> libgstsoup

* Updated gstreamer1.0-meta-base to include this change:
  1.gstsouphttpsrc plugin was renamed to gstsoup

(From OE-Core rev: 142d9e3d68147cdad18a3a60eaa22c33c418ffec)

Signed-off-by: Maxin B. John <maxin.john@intel.com>
Signed-off-by: Carlos Rafael Giani <dv@pseudoterminal.org>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
2017-08-16 00:03:14 +01:00
Maxin John
58a7c2bd37 gstreamer1.0-plugins-base: upgrade to version 1.12.2
* Remove upstreamed patch:
  1. encodebin-Need-more-buffers-in-output-queue-for-bett.patch

(From OE-Core rev: 10d509f69fcdcb4d2c07d3c4cc403c74956fb1a8)

Signed-off-by: Carlos Rafael Giani <dv@pseudoterminal.org>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
2017-08-16 00:03:13 +01:00
Carlos Rafael Giani
4f64854dff gstreamer1.0: upgrade to version 1.12.2
* Version 1.12 introduces support for libdw (provided by elfutils).
  libdw adds source lines & numbers to backtraces. A new "dw"
  packageconfig added for enabling/disabling this feature.
  In addition, the old patch for deterministic unwind configuration
  was replaced with one that also allows the same for the dw
  configuration. This new patch was also submitted to bugzilla.

* Leftover docbook cruft was removed, meaning that the
  "--disable-docbook" configure switch is gone.

(From OE-Core rev: a6c12ff35c97f4225a6b2f226ae4483d7bacdfb9)

Signed-off-by: Carlos Rafael Giani <dv@pseudoterminal.org>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
2017-08-16 00:03:13 +01:00
Alexander Kanavin
5813f1f764 selftest: fix distrodata.py to use per-recipe UPSTREAM_VERSION_UNKNOWN setting
... instead of a global exception list which was problematic.

[YOCTO #11896]

(From OE-Core rev: 89dfede4ca795ba085f1ee7290c6dede573c11db)

Signed-off-by: Alexander Kanavin <alexander.kanavin@linux.intel.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
2017-08-16 00:03:13 +01:00
Alexander Kanavin
43d52e785b gstreamer-plugins-bad: replace openssl dependency with nettle for hls plugin
It has not been ported to openssl 1.1 (and there's nothing in upstream git),
but it's possible to use nettle or gcrypt intead.

Also, provide a fallback option to use openssl 1.0 when necessary.

(From OE-Core rev: 624aed5d450664b0f0a36b14d658248202f864ed)

Signed-off-by: Alexander Kanavin <alexander.kanavin@linux.intel.com>
Signed-off-by: Ross Burton <ross.burton@intel.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
2017-08-13 09:27:38 +01:00
Alexander Kanavin
214363ce7c ffmpeg: update to 3.3.3
(From OE-Core rev: e545ebf7b0381a0cdb30807708b92fe7da2434f7)

Signed-off-by: Alexander Kanavin <alexander.kanavin@linux.intel.com>
Signed-off-by: Ross Burton <ross.burton@intel.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
2017-08-13 09:27:37 +01:00
Alexander Kanavin
42ffbda124 libid3tag: fix build with gperf 3.1
(From OE-Core rev: 15ef4a6de2a61b958484b9291fe67dbeeebf3cfa)

Signed-off-by: Alexander Kanavin <alexander.kanavin@linux.intel.com>
Signed-off-by: Ross Burton <ross.burton@intel.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
2017-08-13 09:27:37 +01:00
Maxin B. John
5bb613a0e2 libpng: upgrade to 1.6.31
1.6.31 fixes pngpriv.h to work around failure to compile
arm/filter_neon.S.This bug was introduced in libpng-1.6.30beta01

No changes in License.The license checksums changed because of
update in Copyright dates in LICENSE and png.h files.

(From OE-Core rev: 8319dce16210ebe2d89cd1e0926ad937909bc9ea)

Signed-off-by: Maxin B. John <maxin.john@intel.com>
Signed-off-by: Ross Burton <ross.burton@intel.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
2017-08-09 09:24:16 +01:00
Ross Burton
4f9918ccfa libpng: fix MIRRORS usage
MIRRORS needs to be pairs of values for the original URL to match and the
location find it on the mirror.

(From OE-Core rev: a649f3da630e8ca2d3ca58b610f3918720dd5229)

Signed-off-by: Ross Burton <ross.burton@intel.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
2017-07-31 14:23:44 +01:00
Alexander Kanavin
11d07f067d mpg123: update to 1.25.4
(From OE-Core rev: 97a4e2d564807caba5e527d95871972464c261c6)

Signed-off-by: Alexander Kanavin <alexander.kanavin@linux.intel.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
2017-07-27 22:36:53 +01:00
Ross Burton
e97acdcc94 libpng: use SourceForge mirror
The Gentoo mirror also deletes old versions when they're not used, so revert
back to the canonical SourceForge site, adding /older-releases/ to MIRRORS to
handle new releases moving the version we want.

Original idea by Maxin B. John <maxin.john@intel.com>.

(From OE-Core rev: 791a3493c88c9c249f21f6d893b2061e1d8a0af6)

Signed-off-by: Ross Burton <ross.burton@intel.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
2017-07-25 15:59:13 +01:00
Martin Kelly
a2cf84afff gstreamer1.0-python: add new recipe
Previously, we had a gst-python recipe, but it supported only GStreamer
0.1. After GStreamer switched the Python bindings to use GObject
introspection, we were no longer able to build the bindings, and they
were dropped in this patch:

https://patchwork.openembedded.org/patch/93793/

However, at this point, we have a gobject-introspection class, so we can
use the bindings again, this time with GStreamer 1.0.

(From OE-Core rev: 6650bd1b9c770b01525356f9a1fabd758360ee8f)

Signed-off-by: Martin Kelly <mkelly@xevo.com>
Signed-off-by: Ross Burton <ross.burton@intel.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
2017-07-24 09:13:32 +01:00
Nicolas Dechesne
9d6b0c508b ffmpeg: fix pkg-config utilization
in config.log we can see:
WARNING: aarch64-linaro-linux-pkg-config not found, library detection may fail.

ffmpeg configure script is not looking for pkg-config at the rigt place since it
is assuming cross compilation. let's force its value in the recipe.

This patches 'fixes' library detection, so it also adds:

--disable-libxcb
--disable-libxcb-shm
--disable-libxcb-xfixes
--disable-libxcb-shape

Which were dangling configure options, which started to be enabled after the
pkg-config fix, so they need now to be explicitely disabled. Follow up patch
will enable these options when DISTRO_FEATURES has x11.

(From OE-Core rev: 3d5f11f0a1fd036e28a1d3f0c3169d8e21cc1358)

Signed-off-by: Nicolas Dechesne <nicolas.dechesne@linaro.org>
Signed-off-by: Ross Burton <ross.burton@intel.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
2017-07-24 09:13:32 +01:00
Nicolas Dechesne
9a7ddbe10c ffmpeg: add PACKAGECONFIG for sdl2
Enabling sdl2 will bring ffplay applications, which can be handy when working
with ffmpeg.

(From OE-Core rev: 5c880eb08ec29e169b9f6b7d6f2e0598a0395d30)

Signed-off-by: Nicolas Dechesne <nicolas.dechesne@linaro.org>
Signed-off-by: Ross Burton <ross.burton@intel.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
2017-07-24 09:13:31 +01:00
Mikko Rapeli
e1e79e946e libsndfile1_1.0.28.bb: set CVE_PRODUCT to libsndfile
It is used in NVD to CVE's like:

https://nvd.nist.gov/vuln/detail/CVE-2017-6892

(From OE-Core rev: adfb1c7fe28a6ef2bcf698f7415fd86b01bdc489)

Signed-off-by: Mikko Rapeli <mikko.rapeli@bmw.de>
Signed-off-by: Ross Burton <ross.burton@intel.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
2017-07-24 09:13:31 +01:00
Mikko Rapeli
0160ec630e libsamplerate0_0.1.9.bb: set CVE_PRODUCT to libsamplerate
It is used in NVD for CVE's like:

https://nvd.nist.gov/vuln/detail/CVE-2017-7697

(From OE-Core rev: baafa21919082a8b61af3345c35922d205b254c6)

Signed-off-by: Mikko Rapeli <mikko.rapeli@bmw.de>
Signed-off-by: Ross Burton <ross.burton@intel.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
2017-07-24 09:13:31 +01:00
Mikko Rapeli
1b8e31afcc flac_1.3.1.bb: set CVE_PRODUCT to libflac
NVD uses product name libflac for CVE's like:

https://nvd.nist.gov/vuln/detail/CVE-2014-8962

(From OE-Core rev: e09bd27059b26affddf466f4e55a7f4c719c3b17)

Signed-off-by: Mikko Rapeli <mikko.rapeli@bmw.de>
Signed-off-by: Ross Burton <ross.burton@intel.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
2017-07-24 09:13:31 +01:00
Khem Raj
0a672a7408 mpeg2dec: Fix textrels QA errors on arm
Fixes
WARNING: mpeg2dec-0.5.1-r0 do_package_qa: QA Issue: ELF binary '/mnt/a/oe/build/tmp/work/armv5te-bec-linux-musleabi/mpeg2dec/0.5.1-r0/packages-split/libmpeg2/usr/lib/libmpeg2.so.0.1.0' has relocations in .text [textrel]

(From OE-Core rev: bbcc5322d3d0eb9e87e78ec47e71e29860af39d7)

Signed-off-by: Khem Raj <raj.khem@gmail.com>
Signed-off-by: Ross Burton <ross.burton@intel.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
2017-07-11 15:57:08 +01:00
Jussi Kukkonen
5da100c4eb mesa, gstreamer: Add "vulkan" DISTRO_FEATURE
It doesn't do much but does make enabling vulkan a little less fiddly.

(From OE-Core rev: a5ed54e5253006ce3a5a74c1243c949a42642ff7)

Signed-off-by: Jussi Kukkonen <jussi.kukkonen@intel.com>
Signed-off-by: Ross Burton <ross.burton@intel.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
2017-07-08 13:34:46 +01:00
Jussi Kukkonen
4a51d254cf gstreamer1.0-plugins-bad: Add vulkan PACKAGECONFIG
This adds a Vulkan video sink (using xcb and/or wayland).

Add a few patches to fix the build.

(From OE-Core rev: a80a0b3981d129a945ddd775690963cefa15376a)

Signed-off-by: Jussi Kukkonen <jussi.kukkonen@intel.com>
Signed-off-by: Ross Burton <ross.burton@intel.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
2017-07-08 13:34:46 +01:00
Khem Raj
f2eb3d8068 gstreamer1.0-plugins-bad: Fix missing library with bcm egl
userland graphics driver provided libegl for rpi depends upon
symbols from vchostif library, therefore add it to linker cmdline

helps with loadng gst-gl plugins on rpi

(From OE-Core rev: c32dbe73f2089177a071ba81a9de82dac7741e44)

Signed-off-by: Khem Raj <raj.khem@gmail.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
2017-07-08 13:34:45 +01:00
Ross Burton
53abb9fba8 speex: update SRC_URI
The US download mirror appears to be down, so use the main host instead.

(From OE-Core rev: 8766a93c2c9774e53bb7950f8407243ece4ac682)

Signed-off-by: Ross Burton <ross.burton@intel.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
2017-07-06 14:38:15 +01:00
Fan Xin
d5e18f4a1a libsndfile1: Fix CVE-2017-6892
Backport upstream patch to fix CVE-2017-6892.

CVE: CVE-2017-6892

(From OE-Core rev: cc9b8d0afe64b83f585843f3aff1c077f69fd656)

Signed-off-by: Fan Xin <fan.xin@jp.fujitsu.com>
Signed-off-by: Ross Burton <ross.burton@intel.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
2017-06-28 15:52:18 +01:00
Alexander Kanavin
6b19b16272 libid3tag: fix upstream version check
(From OE-Core rev: cf4e2fad08227613ee2ba8d3935ddc23dc399467)

Signed-off-by: Alexander Kanavin <alexander.kanavin@linux.intel.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
2017-06-28 15:52:17 +01:00
Alexander Kanavin
5e4cdeddd0 speex: fix upstream version check
(From OE-Core rev: 2488c95a0840a0c1867fb2d629bdb0582c4b9bad)

Signed-off-by: Alexander Kanavin <alexander.kanavin@linux.intel.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
2017-06-28 15:52:17 +01:00
Khem Raj
f930cbc521 ffmpeg: Upgrade to 3.3.2 stable
* Fix mips/mips64 along the way, it was broken in 3.3 as well

(From OE-Core rev: ace103370746b7d8ae38701d2ef472f53a68edfb)

Signed-off-by: Khem Raj <raj.khem@gmail.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
2017-06-23 11:44:14 +01:00
Richard Purdie
eb40fcf627 meta: Drop remnants of uclibc support
uclibc support was removed a while ago and musl works much better. Start to
remove the various overrides and patches related to uclibc which are no longer
needed.

uclibc support in a layer would still be possible. I have strong reasons to
believe nobody is still using uclibc since patches are missing and I doubt
the metadata even parses anymore.

(From OE-Core rev: 653704e9cf325cb494eb23facca19e9f05132ffd)

Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
2017-06-22 09:16:00 +01:00
Maxin B. John
537ff6caaa libid3tag: switch from ftp to http
For the same reasons as Debian:
https://www.debian.org/News/2017/20170425

(From OE-Core rev: 134151fbf3ade16f1175002c76028adeb2426354)

Signed-off-by: Maxin B. John <maxin.john@intel.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
2017-06-14 14:53:57 +01:00
Khem Raj
3f18281a4c mpg123: Upgrade to 1.25.0
No need to skip textrel QA for x86 as it has
been fixed in 1.25.0

(From OE-Core rev: f635c097d0d43c88b00a00073b93712f1cc90fe0)

Signed-off-by: Khem Raj <raj.khem@gmail.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
2017-06-13 10:46:34 +01:00
Tanu Kaskinen
637744d48d alsa-lib: 1.1.3 -> 1.1.4.1
Changelogs:
http://alsa-project.org/main/index.php/Changes_v1.1.3_v1.1.4
http://alsa-project.org/main/index.php/Changes_v1.1.4_v1.1.4.1

Dropped backported patch 0001-ucm-parser-needs-limits.h.patch.

(From OE-Core rev: e2ede4f9080e8a01504067347eb69051dc04b6ed)

Signed-off-by: Tanu Kaskinen <tanuk@iki.fi>
Signed-off-by: Ross Burton <ross.burton@intel.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
2017-06-12 15:08:31 +01:00
Tanu Kaskinen
c8897fecbd alsa-utils: 1.1.3 -> 1.1.4
Changelog: http://alsa-project.org/main/index.php/Changes_v1.1.3_v1.1.4

(From OE-Core rev: ae7e5f6ddfcc5637064b52d59ff517c2f94b9e86)

Signed-off-by: Tanu Kaskinen <tanuk@iki.fi>
Signed-off-by: Ross Burton <ross.burton@intel.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
2017-06-12 15:08:31 +01:00
Tanu Kaskinen
cb4b40af5c alsa-plugins: 1.1.1 -> 1.1.4
Changelog: http://alsa-project.org/main/index.php/Changes_v1.1.3_v1.1.4

(From OE-Core rev: df76886a40d665439f21cf743dcc36e01b86f685)

Signed-off-by: Tanu Kaskinen <tanuk@iki.fi>
Signed-off-by: Ross Burton <ross.burton@intel.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
2017-06-12 15:08:30 +01:00
Fan Xin
68e25dfade libtiff: Upgrade to 4.0.8
1. Upgrade libtiff from 4.0.7 to 4.0.8

2. Delete the following patch file due to CVE-2017-5225 has been fixed in 4.0.8
     libtiff-CVE-2017-5225.patch

(From OE-Core rev: 825927e85933322e6f195f0d937359017a9a9b97)

Signed-off-by: Fan Xin <fan.xin@jp.fujitsu.com>
Signed-off-by: Ross Burton <ross.burton@intel.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
2017-06-09 17:12:14 +01:00
Ross Burton
8f1663c457 gstreamer1.0-omx: delete broken m4 files
These m4 files need to be deleted so that the versions in the sysroot that we've
patched are used.  Specifically, building documentation fails as the gtk-doc
checks fail.

(From OE-Core rev: 4292886ee3b2311902af2b5aaa5f53c5b36c6bee)

Signed-off-by: Ross Burton <ross.burton@intel.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
2017-05-29 15:15:20 +01:00
Huang Qiyu
f0ff93c2a5 libsndfile1: 1.0.27 -> 1.0.28
Upgrade libsndfile1 from 1.0.27 to 1.0.28.

(From OE-Core rev: 86009f82c8c8206cc79f68d14d68c7c0b3ffe491)

Signed-off-by: Huang Qiyu <huangqy.fnst@cn.fujitsu.com>
Signed-off-by: Ross Burton <ross.burton@intel.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
2017-05-23 17:45:36 +01:00
Alexander Kanavin
74f6169150 mpg123: update to 1.24.0
--with-module-suffix has been removed upstream.

(From OE-Core rev: ac5847fac825f3b4d88523a115ff12bc75542196)

Signed-off-by: Alexander Kanavin <alexander.kanavin@linux.intel.com>
Signed-off-by: Ross Burton <ross.burton@intel.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
2017-05-23 17:45:36 +01:00