poky/recipes-extended at 624da0cc25cd3fb352fa58ee69bb52d66aa0ad66 - poky

mirror of https://git.yoctoproject.org/poky synced 2026-04-26 09:32:14 +02:00

Files

Yi Zhao 0782f4fce2 wget: Security fix CVE-2017-6508

CVE-2017-6508: CRLF injection vulnerability in the url_parse function in
url.c in Wget through 1.19.1 allows remote attackers to inject arbitrary
HTTP headers via CRLF sequences in the host subcomponent of a URL.

External References:
https://nvd.nist.gov/vuln/detail/CVE-2017-6508

Patch from:
http://git.savannah.gnu.org/cgit/wget.git/commit/?id=4d729e322fae359a1aefaafec1144764a54e8ad4

(From OE-Core rev: 28404157e07a915d1445166df566c8838f2cce57)

Signed-off-by: Yi Zhao <yi.zhao@windriver.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>

2017-08-18 23:46:37 +01:00

acpica

acpitests: Remove as unmaintained

2017-07-17 14:01:37 +01:00

asciidoc

asciidoc: drop distutils inherit, not actually required

2017-05-16 14:08:29 +01:00

at: reduce local pending patches

2017-07-21 22:51:38 +01:00

bash

bash: 4.3.30 -> 4.4

2017-08-18 23:46:37 +01:00

bc: separate B and S

2015-01-16 23:08:25 +00:00

blktool

blktool: use snapshot.debian.org for SRC_URI

2016-08-01 11:47:14 +01:00

bzip2

openssl/fontconfig/bzip2: Use relative symlinks instead of absolute ones (using a new class)

2017-02-09 10:52:03 +00:00

chkconfig

chkconfig: replace fedorahosted.org SRC_URI with github.com source

2017-04-05 23:22:12 +01:00

cpio

recipes: Move out stale GPLv2 versions to a seperate layer

2017-03-07 20:05:31 +00:00

cracklib

cracklib: Apply patch to fix CVE-2016-6318

2016-09-24 07:30:10 +01:00

cronie

cronie: replace fedorahosted.org SRC_URI with github.com source

2017-04-05 23:22:12 +01:00

cups

cups: upgrade to 2.2.4

2017-07-27 22:36:53 +01:00

cwautomacros

cwautomacros: cleanup buildpath in autogen.sh

2015-10-01 07:43:34 +01:00

diffutils

diffutils: upgrade to 3.6

2017-07-27 22:36:53 +01:00

ed: update to 1.14.2

2017-05-23 17:45:36 +01:00

ethtool

ethtool: Upgrade to 4.11

2017-07-17 14:01:39 +01:00

findutils

meta: Drop remnants of uclibc support

2017-06-22 09:16:00 +01:00

foomatic

foomatic-filters: Security fixes CVE-2015-8327

2016-08-01 12:11:21 +01:00

gawk

recipes: Move out stale GPLv2 versions to a seperate layer

2017-03-07 20:05:31 +00:00

ghostscript

ghostscript: remove legacy patch png_mak.patch

2017-07-21 22:51:37 +01:00

go-examples

go: Add recipes for golang compilers and tools

2017-03-10 15:51:55 +00:00

gperf

gperf: upgrade to 3.1

2017-08-13 09:27:37 +01:00

grep

grep: upgrade to 3.1

2017-07-06 14:38:14 +01:00

groff

groff: replace "perl -w" with "use warnings"

2017-04-10 23:00:43 +01:00

gzip

gzip: add ptest

2017-06-12 15:08:30 +01:00

hdparm

hdparm: Upgrade to 9.52

2017-06-09 17:12:14 +01:00

images

core-image-lsb-sdk: Lower IMAGE_OVERHEAD_FACTOR

2017-03-01 23:27:11 +00:00

iptables

iptables: Apply 0001-fix-build-with-musl.patch unconditionally

2017-06-28 20:55:08 +01:00

iputils

iputils: do not build or install manpages

2016-10-28 16:15:19 +01:00

less

less: 481 -> 487

2016-12-08 10:31:29 +00:00

libaio

libaio: use snapshot.debian.org for SRC_URI

2016-08-01 11:47:14 +01:00

libarchive

libarchive: Remove xz packageconfig --with-lzmadec option

2017-08-17 00:21:15 +01:00

libidn

libidn: Fix hardened build with musl

2017-05-25 23:59:31 +01:00

libnsl

meta: Add/fix missing Upstream-Status to patches

2017-06-27 10:38:43 +01:00

libsolv

libsolv: upgrade to 0.6.28

2017-07-21 22:51:38 +01:00

libtirpc

libtirpc: upgrade to 1.0.2

2017-07-21 22:51:38 +01:00

libuser

libuser: replace fedorahosted.org SRC_URI with pagure.io source

2017-04-05 23:22:12 +01:00

lighttpd

meta: start to ignore the largefile distro feature

2017-03-08 11:52:56 +00:00

logrotate

logrotate: fix systemd service not found while multilib

2017-08-18 23:46:37 +01:00

lsb

selftest: fix distrodata.py to use per-recipe UPSTREAM_VERSION_UNKNOWN setting

2017-08-16 00:03:13 +01:00

lsof

lsof: update SRC_URI

2017-07-08 13:34:46 +01:00

ltp

ltp: Skip the filedependency scan

2017-08-18 10:40:26 +01:00

lzip

lzip: Upgrade 1.18 -> 1.19

2017-06-06 19:52:26 +01:00

man

meta: remove True option to getVar calls

2016-12-16 10:23:23 +00:00

man-pages

man-pages: Upgrade to 4.11

2017-06-09 17:12:14 +01:00

mc: unify curses initialization

2017-08-18 10:40:27 +01:00

mdadm

recipes: Replace "cp -a" with "cp -R --no-dereference --preserve=mode, links"

2017-06-06 19:02:43 +01:00

mingetty

mingetty: fix SRC_URI

2015-02-03 14:53:52 +00:00

minicom

minicom: upgrade to 2.7.1

2017-05-18 14:01:47 +01:00

mktemp

mktemp: Move installed files only when needed

2017-03-22 11:35:20 +00:00

msmtp

msmtp: update to 1.6.6

2016-11-30 15:48:09 +00:00

net-tools

meta: Drop remnants of uclibc support

2017-06-22 09:16:00 +01:00

newt

libnewt: 0.52.19 -> 0.52.20

2017-06-23 11:44:13 +01:00

packagegroups

mailx: remove the recipe

2017-06-28 15:52:17 +01:00

pam

meta: Drop remnants of uclibc support

2017-06-22 09:16:00 +01:00

parted

meta: Drop remnants of uclibc support

2017-06-22 09:16:00 +01:00

pax

pax: Fix build with gcc7

2017-05-11 16:59:18 +01:00

pbzip2

pbzip2: fix LIC_FILES_CHKSUM following 1.1.12 -> 1.1.13 upgrade

2016-04-14 10:58:34 +01:00

perl

libxml-namespacesupport-perl: Upgrade 1.11 -> 1.12

2017-06-06 19:52:26 +01:00

pigz

pigz: set downloadfilename

2017-02-23 12:49:51 -08:00

pixz

pixz: enable optional building of manpages

2016-10-28 16:15:20 +01:00

procps

procps: fix ALTERNATIVE_PRIORITY to avoid conflict

2017-03-17 16:53:05 +00:00

psmisc

recipes: Make use of the new bb.utils.filter() function

2017-03-01 11:17:45 +00:00

quota

quota_4.03.bb: set CVE_PRODUCT to linux_diskquota

2017-07-24 09:13:31 +01:00

rpcbind

rpcbind: Fix CVE-2017-8779

2017-05-25 23:59:32 +01:00

screen

screen: upgrade to 4.6.1

2017-08-18 10:40:26 +01:00

sed

sed: changes to support merged /usr

2017-06-14 10:18:30 +01:00

shadow

shadow: fix CVE-2017-12424

2017-08-18 10:40:26 +01:00

slang

slang: fix terminfo related problems

2017-08-13 09:27:37 +01:00

stat

stat: fix security issues

2016-05-19 09:05:20 +01:00

stress

meta: Add/fix missing Upstream-Status to patches

2017-06-27 10:38:43 +01:00

sudo

sudo: upgrade to 1.8.20p2

2017-07-27 22:36:53 +01:00

sysklogd

sysklogd: Improve build and fix runtime crash

2017-07-08 13:34:45 +01:00

sysstat

sysstat: fix creating configuration file for /var/log/sa

2017-08-16 00:03:14 +01:00

tar

recipes: Move out stale GPLv2 versions to a seperate layer

2017-03-07 20:05:31 +00:00

tcp-wrappers

meta: Drop remnants of uclibc support

2017-06-22 09:16:00 +01:00

texi2html

texi2html: Add a dependency on perl

2017-06-23 11:44:14 +01:00

texinfo

texinfo: Avoid a problem with a dependency on perl(Locale::gettext_xs)

2017-08-17 00:21:14 +01:00

texinfo-dummy-native

texinfo-dummy-native: set SUMMARY instead of DESCRIPTION

2015-11-16 11:39:38 +00:00

time

time: BBCLASSEXTEND to native and nativesdk

2017-01-19 22:47:22 +00:00

tzcode

tzcode-native: quote ${CC}

2017-06-28 20:55:08 +01:00

tzdata

tzdata: Install zone1970.tab

2017-06-23 11:44:13 +01:00

unzip

selftest: fix distrodata.py to use per-recipe UPSTREAM_VERSION_UNKNOWN setting

2017-08-16 00:03:13 +01:00

watchdog

watchdog: Add RCONFLICTS to watchdog-keepalive and split RDEPENDS

2017-02-15 20:06:42 -08:00

wget

wget: Security fix CVE-2017-6508

2017-08-18 23:46:37 +01:00

which

which: fix it so the manpage will respect alternatives

2017-03-17 16:53:04 +00:00

xdg-utils

meta: add comments to explain autotools-brokensep use

2016-04-29 07:58:45 +01:00

xinetd

selftest: fix distrodata.py to use per-recipe UPSTREAM_VERSION_UNKNOWN setting

2017-08-16 00:03:13 +01:00

xz: upgrade to 5.2.3

2017-02-15 20:06:41 -08:00

zip

selftest: fix distrodata.py to use per-recipe UPSTREAM_VERSION_UNKNOWN setting

2017-08-16 00:03:13 +01:00