poky/recipes-devtools at c2b6a93e14033cbabc728293f7baab210c40449b - poky

mirror of https://git.yoctoproject.org/poky synced 2026-03-02 21:39:40 +01:00

Files

Thiruvadi Rajaraman c2b6a93e14 binutils: CVE-2017-12451

Source: git://sourceware.org/git/binutils-gdb.git
MR: 73840
Type: Security Fix
Disposition: Backport from binutils-2_29-branch
ChangeID: 582c686f18c059d665189a6a09df3a8cc4a3b093
Description:

Fix address violation when attempting to read a corrupt field in a COFF archive header structure.

PR 21786
* coff-rs6000.c (_bfd_strntol): New function.
  (_bfd_strntoll): New function.
  (GET_VALUE_IN_FIELD): New macro.
  (EQ_VALUE_IN_FIELD): new macro.
  (_bfd_xcoff_slurp_armap): Use new macros.
  (_bfd_xcoff_archive_p): Likewise.
  (_bfd_xcoff_read_ar_hdr): Likewise.
  (_bfd_xcoff_openr_next_archived_file): Likewise.
  (_bfd_xcoff_stat_arch_elt): Likewise.

Extend previous fix to coff-rs6000.c to coff64-rs6000.c

PR 21786
* coff64-rs6000.c (_bfd_strntol): New function.
  (_bfd_strntoll): New function.
  (GET_VALUE_IN_FIELD): New macro.
  (xcoff64_slurp_armap): Use new macros.

Affects: <= 2.29
(From OE-Core rev: 62eeac8e4684c129af6f36aa7c2b91270a5dacde)

Signed-off-by: Thiruvadi Rajaraman <trajaraman@mvista.com>
Reviewed-by: Armin Kuster <akuster@mvista.com>
Signed-off-by: Armin Kuster <akuster@mvista.com>
Signed-off-by: Armin Kuster <akuster808@gmail.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>

2018-01-07 17:10:07 +00:00

apt

meta: cleanup d.getVar(var, 1)

2016-09-14 22:22:07 +01:00

autoconf

autoconf: remove upstreamed patch

2016-09-08 00:32:43 +01:00

autogen

autogen-native: fix script error when processing libguile

2016-07-08 09:57:24 +01:00

automake

automake: Backport perl 5.22 fix

2017-08-29 16:50:53 +01:00

binutils

binutils: CVE-2017-12451

2018-01-07 17:10:07 +00:00

bison

bison/gettext: add --with-bisonlocaledir to assign BISON_LOCALEDIR

2016-02-28 11:32:58 +00:00

bootchart2

bootchart2: Allocate space on heap for collector chunks

2016-10-01 21:45:55 +01:00

btrfs-tools

btrfs-tools: update to 4.7.1

2016-09-03 09:58:37 +01:00

build-compare

build-compare: improve deb and ipk checking

2016-07-26 08:56:28 +01:00

ccache

ccache: 3.2.4 -> 3.2.5

2016-07-26 08:56:26 +01:00

cdrtools

cdrtools-native: Explicitly set EXTRA_OEMAKE as required

2016-02-11 12:27:43 +00:00

chrpath

package_regex.inc: split the rest of the entries to their recipes

2015-12-08 10:20:52 +00:00

cmake

cmake: improve CMAKE_SYSTEM_PROCESSOR assignment in nativesdk

2016-10-15 10:01:42 +01:00

cve-check-tool

cve-check-tool: report progress when downloading CVE database

2016-09-30 16:51:15 +01:00

desktop-file-utils

desktop-file-utils-native: update to 0.23

2016-07-20 10:28:46 +01:00

devel-config

recipes: convert remaining SUMMARY/DESCRIPTION cosmetic issues

2014-02-17 15:28:59 +00:00

diffstat

diffstat: use HTTP mirror for SRC_URI

2017-10-10 17:30:53 +01:00

distcc

distcc: Disable GTK UI by default

2016-06-12 23:47:18 +01:00

dmidecode

dmidecode: Explicitly set EXTRA_OEMAKE as required

2016-02-10 16:06:24 +00:00

docbook-dsssl-stylesheets

package_regex.inc: split sourceforge related entries to their own recipes

2015-12-08 10:20:52 +00:00

docbook-sgml-dtd

package_regex.inc: split entries which blacklist specific versions to their recipes

2015-12-08 10:20:52 +00:00

docbook-utils

docbook-utils: update SRC_URI from fedora to osl

2017-08-29 16:50:53 +01:00

docbook-xml

docbook-xml-dtd4: use snapshot.debian.org for SRC_URI

2016-08-01 11:47:14 +01:00

dosfstools

dosfstools: Upgrade 3.0.28 -> 4.0

2016-06-03 13:13:30 +01:00

dpkg

dpkg: Only set DEB_HOST_ARCH in target case

2016-09-28 10:16:04 +01:00

e2fsprogs

e2fsprogs: Fix wrong error code after optimization

2017-08-29 16:50:52 +01:00

elfutils

elfutils: fix building elfutils-native with GCC7

2017-08-29 16:50:53 +01:00

expect

meta: Drop now pointless manual -dbg packaging

2015-12-16 11:56:30 +00:00

fdisk

gptfdisk: Explicitly set EXTRA_OEMAKE as required

2016-02-10 16:06:24 +00:00

file

Revert "file: update SRCREV for 5.28 to fix fetch fail on missing commit"

2017-03-21 22:39:46 +00:00

flex

flex: Backport buffer overflow fix

2016-10-11 08:27:27 +01:00

gcc

gcc-6.2: backport fix of check for empty string in ubsan.c

2017-08-29 16:50:52 +01:00

gdb

gdb-cross-canadian: Depend on nativesdk-python3-importlib

2017-03-14 15:20:12 +00:00

git

git: 2.9.2 -> 2.9.3

2016-08-25 23:03:45 +01:00

gnu-config

meta: rename perl-native-runtime

2016-01-11 23:26:31 +00:00

guile

guile: remove dangling patch

2016-08-10 10:46:29 +01:00

guilt

guilt-native: set PV in the recipe to allow upstream version check

2015-08-01 07:34:08 +01:00

help2man

help2man-native: upgrade to 1.47.4

2016-06-15 08:35:02 +01:00

i2c-tools

i2c-tools: point SRC_URI at Yocto source mirrors

2016-02-04 23:39:02 +00:00

icecc-create-env

icecc-create-env-native: add SUMMARY and tweak DESCRIPTION

2014-01-02 12:50:23 +00:00

icon-naming-utils

icon-naming-utils: separate B and S

2015-01-16 23:08:27 +00:00

intltool

intltool: bump serial for aclocal --install

2016-08-10 10:46:28 +01:00

json-c

json-c: add BBCLASSEXTEND for native and nativesdk

2016-10-05 10:10:10 +01:00

kconfig-frontends

meta: cleanup d.getVar(var, 1)

2016-09-14 22:22:07 +01:00

libtool

libtool: Use SYSROOT_DIRS_BLACKLIST to exclude dirs from the sysroot

2016-05-13 13:41:28 +01:00

linuxdoc-tools

linuxdoc-tools: use snapshot.debian.org for SRC_URI

2016-08-01 11:47:14 +01:00

m4: Drop unused/unreferenced patch

2015-12-18 12:18:19 +00:00

make

meta: update patch metadata

2016-07-08 09:57:24 +01:00

makedevs

makedevs: don't restrict device node paths to 40 characters

2016-09-16 15:24:02 +01:00

mkelfimage

mkelfimage: fix compile issues

2016-05-25 07:50:17 +01:00

mklibs

mklibs-native: update broken SRC_URI

2016-10-09 12:31:40 +01:00

mmc

mmc-utils: update to latest git version

2016-05-14 23:05:12 +01:00

mtd

mtd-utils: build also for nativesdk

2016-07-12 23:10:14 +01:00

mtools

mtools: Patch out a useless sanity check

2016-06-03 13:13:30 +01:00

nasm

nasm: 2.11.08 -> 2.12.02

2016-08-25 23:03:45 +01:00

openjade

openjade/sgml-common: Add sstate postrm commands

2016-09-16 15:24:02 +01:00

opensp

guile, mailx, gcc, opensp, gstreamer1.0-libav, libunwind: disable thumb where it fails for qemuarm

2015-12-01 21:32:06 +00:00

opkg

opkg: fix conffile errors in 'opkg status' calls

2017-11-21 14:43:55 +00:00

opkg-utils

opkg-utils: update SRCREV

2016-06-07 15:22:37 +01:00

orc

orc: enable gtk-doc

2016-09-09 12:12:22 +01:00

ossp-uuid

ossp-uuid: use snapshot.debian.org for SRC_URI

2016-08-01 11:47:14 +01:00

packagegroups

packagegroup-core-device-devel: add binutils-symlinks

2016-06-16 11:11:40 +01:00

patch

meta: Fix Upstream-Status statements

2015-09-12 23:01:53 +01:00

patchelf

patchelf: Update to version 0.9

2016-09-15 12:15:07 +01:00

pax-utils

pax-utils: upgrade to 1.1.6

2016-06-15 08:35:03 +01:00

perl

perl: Fix ptest update hash of ExtUtils/Liblist/Kid.pm in customized.dat

2017-01-11 17:21:43 +00:00

pkgconfig

pkgconfig: Update AM_GLIB_GNU_GETTEXT macro

2016-05-17 21:19:30 +01:00

postinst-intercept

postinst-intercept: rename recipe for nativesdk only

2014-11-20 14:08:14 +00:00

prelink

prelink: Manipulate library paths to match the target system library setup

2016-09-28 10:16:03 +01:00

pseudo

pseudo: include fix for xattr corruption

2017-01-11 17:21:43 +00:00

python

python3: do not hardcode "lib" into site-packages search path

2017-12-09 14:34:35 +00:00

python-numpy

python-numpy: Fix issues with recent glibc versions

2017-09-06 16:53:39 +01:00

qemu

qemu: Backport a patch for recent glibc versions

2017-09-06 16:53:39 +01:00

quilt

quilt/acl/attc/sed: Fix use of tar's --exclude option for tar >= 1.29

2016-08-10 10:46:31 +01:00

remake

make, remake: make them properly exclude each other

2016-03-28 15:55:48 +01:00

rpm

rpm: support customizing gpg command line

2017-03-14 15:21:07 +00:00

rsync

rsync: control ipv6 support based on DISTRO_FEATURES

2016-09-03 23:45:53 +01:00

ruby

ruby: Security fix for CVE-2017-14064

2017-11-21 14:43:55 +00:00

run-postinsts

run-postinsts: Correct comment misspelling, "rpm-posinsts".

2016-07-08 09:57:24 +01:00

sgml-common

sgml-common: update SRC_URI from fedora to OSL

2017-08-29 16:50:53 +01:00

sgmlspl

package_regex.inc: split GITTAGREGEX entries into recipe files

2015-12-08 10:20:51 +00:00

squashfs-tools

squashfs-tools: Define FNM_EXTMATCH if not defined

2015-12-12 23:42:55 +00:00

strace

strace: Fix build with mips/mips64 on musl

2016-08-10 10:46:32 +01:00

subversion

subversion: Fix issues in LDFLAGS sed manipulation

2017-01-11 17:21:44 +00:00

swig

swig: move to Python 3

2016-06-03 13:13:27 +01:00

syslinux

syslinux: remove LDFLAGS manipulation

2016-02-04 23:39:03 +00:00

systemd-bootchart

systemd: upgrade to 230

2016-07-01 16:22:43 +01:00

tcf-agent

tcf-agent: Fix daemon termination

2017-11-21 14:43:55 +00:00

tcltk

tcl: 8.6.5 -> 8.6.6

2016-08-04 15:22:23 +01:00

unfs3

unfs3: Simplify simultaneous usage of "_append" and "+="

2016-08-25 23:03:48 +01:00

unifdef

unifdef: upgrade to 2.11

2015-12-16 12:12:15 +00:00

vala

meta: cleanup d.getVar(var, 1)

2016-09-14 22:22:07 +01:00

valgrind

valgrind: make ld-XXX.so strlen intercept optional

2017-01-11 17:21:46 +00:00

xmlto

xmlto: replace fedorahosted.org SRC_URI with pagure.io source

2017-06-05 18:00:02 +01:00

yasm

yasm: 1.2.0 -> 1.3.0

2015-06-11 23:59:15 +01:00

zisofs-tools

Revert "zisofs-tools-native: Add missing dependency on zlib-native"

2014-03-31 23:04:35 +01:00