mirrors/poky
1
0
Fork 0
mirror of https://git.yoctoproject.org/poky synced 2026-03-07 07:49:40 +01:00
Code Issues Packages Projects Releases Wiki Activity
Files
485e244db8cc7d2c421e60a1ad3a2415a30852ee
poky/meta/recipes-devtools
History
Adrian Dudau 485e244db8 qemu: Security fix CVE-2016-4439 
affects qemu < 2.7.0

Quick Emulator(Qemu) built with the ESP/NCR53C9x controller emulation
support is vulnerable to an OOB write access issue. The controller uses
16-byte FIFO buffer for command and data transfer. The OOB write occurs
while writing to this command buffer in routine get_cmd().

A privileged user inside guest could use this flaw to crash the Qemu
process resulting in DoS.

References:
----------
http://www.openwall.com/lists/oss-security/2016/05/19/4
https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2016-4441

(From OE-Core rev: 1bc071172236ea020cac9db96e33de81950a15ff)

Signed-off-by: Adrian Dudau <adrian.dudau@enea.com>
Signed-off-by: Armin Kuster <akuster808@gmail.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
2017-05-18 13:14:20 +01:00
..
apt
apt: Add support for building for musl targets
2016-01-24 09:40:28 +00:00
autoconf
autoconf: add missing perl-module-file-find to RDEPENDS
2016-01-15 11:54:52 +00:00
autogen
autogen-native: 5.18.5 -> 5.18.6
2016-01-15 11:54:50 +00:00
automake
automake: don't delete .pyc files
2016-03-02 22:39:45 +00:00
binutils
binutils: apply RPATH fixes from our libtool patches
2017-05-18 13:14:19 +01:00
bison
bison/gettext: add --with-bisonlocaledir to assign BISON_LOCALEDIR
2016-02-28 11:32:58 +00:00
bootchart2
bootchart2: update to 0.14.8
2016-01-20 17:07:11 +00:00
btrfs-tools
btrfs-tools: Add libgcc to RDEPENDS
2016-03-07 00:11:39 +00:00
build-compare
build-compare: drop PATCHTOOL setting
2015-10-19 17:57:57 +01:00
ccache
ccache: update to 3.2.4
2016-02-28 11:33:04 +00:00
cdrtools
cdrtools-native: Explicitly set EXTRA_OEMAKE as required
2016-02-11 12:27:43 +00:00
chrpath
package_regex.inc: split the rest of the entries to their recipes
2015-12-08 10:20:52 +00:00
cmake
cmake: remove unused dont-run-cross-binaries.patch
2016-04-06 22:57:25 +01:00
desktop-file-utils
desktop-file-utils-native: disable emacs
2016-04-09 23:00:44 +01:00
devel-config
recipes: convert remaining SUMMARY/DESCRIPTION cosmetic issues
2014-02-17 15:28:59 +00:00
diffstat
diffstat: upgrade to 1.61
2016-02-19 01:01:24 +00:00
distcc
distcc: update SRC_URI to not use Google Code
2015-08-11 09:28:51 -07:00
dmidecode
dmidecode: Explicitly set EXTRA_OEMAKE as required
2016-02-10 16:06:24 +00:00
docbook-dsssl-stylesheets
package_regex.inc: split sourceforge related entries to their own recipes
2015-12-08 10:20:52 +00:00
docbook-sgml-dtd
package_regex.inc: split entries which blacklist specific versions to their recipes
2015-12-08 10:20:52 +00:00
docbook-utils
docbook-utils-native: Unbreak the build after source and build dir split
2013-03-25 20:51:19 +00:00
docbook-xml
docbook-xml-dtd4: use snapshot.debian.org for SRC_URI
2016-08-01 12:14:39 +01:00
dosfstools
dosfstools_2.11: fix build following removal of -e from EXTRA_OEMAKE
2016-02-28 11:33:06 +00:00
dpkg
dpkg: use snapshot.debian.org for SRC_URI
2016-08-01 12:14:39 +01:00
e2fsprogs
e2fsprogs: Fix missing check for permission denied.
2016-09-23 15:27:04 +01:00
elfutils
elfutils: Fix build for gcc-6
2016-07-27 08:33:37 +01:00
expect
meta: Drop now pointless manual -dbg packaging
2015-12-16 11:56:30 +00:00
fdisk
gptfdisk: Explicitly set EXTRA_OEMAKE as required
2016-02-10 16:06:24 +00:00
file
Revert "file: update SRCREV for 5.25 to fix fetch fail on missing commit"
2017-03-21 22:39:25 +00:00
flex
flex: update to 2.6.0
2015-12-22 16:08:51 +00:00
gcc
gcc-runtime.inc: Add CPP support for x86-64-x32 tune
2016-11-08 23:47:13 +00:00
gdb
gdb: Cache gnu gettext config vars for musl builds
2016-09-23 15:27:04 +01:00
git
meta: add comments to explain autotools-brokensep use
2016-06-29 19:35:55 +01:00
gnu-config
meta: rename perl-native-runtime
2016-01-11 23:26:31 +00:00
guile
guile: Fix nios2 support
2016-02-11 12:27:49 +00:00
guilt
guilt-native: set PV in the recipe to allow upstream version check
2015-08-01 07:34:08 +01:00
help2man
help2man-native: 1.47.1 -> 1.47.3
2016-01-15 11:54:49 +00:00
i2c-tools
i2c-tools: point SRC_URI at Yocto source mirrors
2016-02-04 23:39:02 +00:00
icecc-create-env
icecc-create-env-native: add SUMMARY and tweak DESCRIPTION
2014-01-02 12:50:23 +00:00
icon-naming-utils
icon-naming-utils: separate B and S
2015-01-16 23:08:27 +00:00
intltool
package_regex.inc: split the rest of the entries to their recipes
2015-12-08 10:20:52 +00:00
json-c
json-c: add manual upstream version check
2015-12-12 23:42:54 +00:00
kconfig-frontends
recipes: Delete superfluous assignments, S = ${WORKDIR}/${BP}
2015-02-24 17:41:44 +00:00
libtool
libtool: fix contaminated path to lt_truncate_bin
2016-04-06 22:57:26 +01:00
linuxdoc-tools
linuxdoc-tools: use snapshot.debian.org for SRC_URI
2016-08-01 12:14:39 +01:00
m4
m4: Drop unused/unreferenced patch
2015-12-18 12:18:19 +00:00
make
make, remake: make them properly exclude each other
2016-03-28 15:55:48 +01:00
makedevs
makedevs: set and handle S in a proper way
2015-01-23 11:36:27 +00:00
mkelfimage
mkelfimage: fix target cflags leaks to host
2016-01-31 13:29:48 +00:00
mklibs
meta: Fix Upstream-Status statements
2015-09-12 23:01:53 +01:00
mmc
mmc-utils: upgrade to latest git version
2016-02-14 11:42:19 +00:00
mtd
mtd-utils: update to 1.5.2
2015-12-16 12:12:17 +00:00
mtools
mtools: Drop GCONV_PATH manipulation
2016-03-07 12:41:38 +00:00
nasm
nasm: 2.11.06 -> 2.11.08
2015-05-30 22:26:12 +01:00
openjade
openjade-native: work around bug exposed by GCC 6
2016-07-27 08:33:38 +01:00
opensp
guile, mailx, gcc, opensp, gstreamer1.0-libav, libunwind: disable thumb where it fails for qemuarm
2015-12-01 21:32:06 +00:00
opkg
opkg: upgrade to v0.3.1
2015-12-22 16:08:51 +00:00
opkg-utils
opkg-utils: re-do find/ls code to not fail on filenames with spaces
2016-04-09 23:00:44 +01:00
orc
orc: update HOMEPAGE
2016-01-25 12:44:13 +00:00
ossp-uuid
ossp-uuid: use snapshot.debian.org for SRC_URI
2016-08-01 12:14:39 +01:00
packagegroups
packagegroup-*: add RREPLACES/RCONFLICTS
2012-09-04 18:03:18 +01:00
patch
meta: Fix Upstream-Status statements
2015-09-12 23:01:53 +01:00
patchelf
patchelf: Add patch to handle large files
2016-02-06 23:10:45 +00:00
pax-utils
pax-utils: update to 1.1.5
2016-02-28 11:33:05 +00:00
perl
perl: fix CVE-2016-1238
2016-10-06 08:51:30 +01:00
pkgconfig
pkgconfig: Fix build with gcc-6
2016-07-27 08:33:37 +01:00
postinst-intercept
postinst-intercept: rename recipe for nativesdk only
2014-11-20 14:08:14 +00:00
prelink
prelink: Fix various prelink issues on IA32, ARM, and MIPS.
2015-11-16 11:39:34 +00:00
pseudo
pseudo: remove rpath from libpseudo.so
2016-06-29 19:36:02 +01:00
python
python3: Security fix CVE-2016-1000110
2016-10-06 08:51:30 +01:00
qemu
qemu: Security fix CVE-2016-4439
2017-05-18 13:14:20 +01:00
quilt
quilt: run ptest as normal user
2016-03-28 15:55:48 +01:00
remake
make, remake: make them properly exclude each other
2016-03-28 15:55:48 +01:00
rpm
rpm: prevent race in tempdir creation
2016-11-08 23:47:13 +00:00
rsync
rsync: remove upstream's rebuild logic
2016-04-13 10:12:52 +01:00
ruby
ruby: break out ri-docs and rdoc into separate packages
2016-02-19 01:01:25 +00:00
run-postinsts
opkg: upgrade to v0.3.0
2015-09-03 12:43:14 +01:00
sgml-common
sgml-common-native: fix the generation of sgml-docbook.cat
2014-03-19 14:42:43 +00:00
sgmlspl
package_regex.inc: split GITTAGREGEX entries into recipe files
2015-12-08 10:20:51 +00:00
squashfs-tools
squashfs-tools: Define FNM_EXTMATCH if not defined
2015-12-12 23:42:55 +00:00
strace
strace: Backport fixes for compiling with clang
2016-03-09 16:58:12 +00:00
subversion
subversion: Upgrade 1.9.2 -> 1.9.3
2016-01-15 11:54:47 +00:00
swabber
Replace one-line DESCRIPTION with SUMMARY
2014-01-02 12:50:18 +00:00
swig
swig: upgrade to 3.0.8
2016-01-20 17:07:14 +00:00
syslinux
syslinux: remove LDFLAGS manipulation
2016-02-04 23:39:03 +00:00
tcf-agent
tcf-agent: Implement canonicalize_file_name() for musl as well
2016-01-24 09:40:29 +00:00
tcltk
tcl: remove unused fix-configure.patch
2016-04-06 22:57:25 +01:00
unfs3
unfs3: Depend on libtirpc when building on musl
2016-01-24 09:40:31 +00:00
unifdef
unifdef: upgrade to 2.11
2015-12-16 12:12:15 +00:00
vala
vala: enable the use of vapigen by packages with vala support
2016-03-12 22:11:44 +00:00
valgrind
valgrind: turn off the file level dependency
2016-04-22 16:28:57 +01:00
xmlto
xmlto: tell xmlto where cp is
2016-03-09 16:58:13 +00:00
yasm
yasm: 1.2.0 -> 1.3.0
2015-06-11 23:59:15 +01:00
zisofs-tools
Revert "zisofs-tools-native: Add missing dependency on zlib-native"
2014-03-31 23:04:35 +01:00