- Jul 16, 2015
-
-
Jian Liu authored
the snmp_pdu_parse() function could leave incompletely parsed varBind variables in the list of variables in case the parsing of the SNMP PDU failed. If later processing tries to operate on the stale and incompletely processed varBind (e.g. when printing the variables), this can lead to e.g. crashes or, possibly, execution of arbitrary code. The snmp_pdu_parse() function stores varBind variables in a list of netsnmp_variable_list structures. Each time the function parses a new varBind, a new netsnmp_variable_list item is allocated on the heap and linked to the list of variables. The problem is that this item is not removed from the list, even if snmp_pdu_parse() fails to complete the parsing. The "type" member of the stale netsnmp_variable_list is not properly initialized in case snmp_pdu_parse() returns early from the parsing. However, the "type" member is used to determine later code paths, which is why we see crashes in a variety of functions, although the root cause for all of these is the same. This patch come from http://sourceforge.net/p/net-snmp/code/ci/f23bcd3ac6ddee5d0a48f9703007ccc738914791/ Written-by: Robert Story Signed-off-by:
Jian Liu <jian.liu@windriver.com> Signed-off-by:
Martin Jansa <Martin.Jansa@gmail.com> Signed-off-by:
Joe MacDonald <joe_macdonald@mentor.com>
-
- Jul 15, 2015
-
-
Armin Kuster authored
Signed-off-by:
Armin Kuster <akuster@mvista.com> Signed-off-by:
-
Li Wang authored
move daemon servers from bin to sbin directory: tftpd, telnetd, rshd, rexecd and rlogind Signed-off-by:
Li Wang <li.wang@windriver.com> Signed-off-by:
-
Richard Purdie authored
Bitbake is likely to require this parameter in future, add the default value. Patch generated with the command: sed -e 's:\(getVar([^,()]*\)\s*):\1, False):g' -i `grep -ril getVar *` Signed-off-by:
Richard Purdie <richard.purdie@linuxfoundation.org> Signed-off-by:
-
- Jul 06, 2015
-
-
Joe Slater authored
The named packages explicitly install some items under /lib, but the recipes assume they are in base_libdir. We change the recipes. Signed-off-by:
Joe Slater <jslater@windriver.com> Signed-off-by:
-
Kang Kai authored
daemon_directory is set to /usr/lib/postfix which causes daemon postfix fails to start on 64 bits target if enable multilib. Set daemon_directory with libexecdir to fix it. Signed-off-by:
Kai Kang <kai.kang@windriver.com> Signed-off-by:
-
Armin Kuster authored
include a security fixes but no CVE # The following vulnerabilities have been fixed. * [1]wnpa-sec-2015-19 WCCP dissector crash. ([2]Bug 11153) * [3]wnpa-sec-2015-20 GSM DTAP dissector crash. ([4]Bug 11201) Signed-off-by:
Armin Kuster <akuster808@gmail.com> Signed-off-by:
-
Li xin authored
The bug is: after the service stopped,the pid file still exists. So modidy the service files. Signed-off-by:
Li Xin <lixin.fnst@cn.fujitsu.com> Signed-off-by:
-
Roy Li authored
1. 1.3.5a includes the fix for CVE-2015-3306: https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2015-3306 2. replace the proftpd generated libtool with the native libtool which support the sysroot Signed-off-by:
Roy Li <rongqing.li@windriver.com> Signed-off-by:
-
- Jun 23, 2015
-
-
Li xin authored
Signed-off-by:
-
Armin Kuster authored
This includes CVE-2015-4335. LICENSE checksum changed do to copyright update. Signed-off-by:
-
Andre McCurdy authored
Separating compile and link steps avoids build errors when security_flags.inc is used: | DEBUG: Executing shell function do_compile | ../sysdeps/i386/start.S:98: error: undefined reference to 'main' | collect2: error: ld returned 1 exit status Signed-off-by:
Andre McCurdy <armccurdy@gmail.com> Signed-off-by:
-
Andre McCurdy authored
Error is cosmetic, but distracting. Backport upstream fix. | .../build-vbox32/tmp/work/core2-32-rdk-linux-musl/llvm3.3/3.3-r0/llvm-3.3.src/configure: line 1990: -O2: command not found | .../build-vbox32/tmp/work/core2-32-rdk-linux-musl/llvm3.3/3.3-r0/llvm-3.3.src/configure: line 1991: -O2: command not found Signed-off-by:
-
Bian Naimeng authored
NOTE: Executing RunQueue Tasks WARNING: QA Issue: Symlink /lib/libmpathpersist.so in multipath-tools-dev points to TMPDIR [symlink-to-sysroot] NOTE: Tasks Summary: Attempted 1604 tasks of which 1591 didn't need to be rerun and all succeeded. Signed-off-by:
Bian Naimeng <biannm@cn.fujitsu.com> Signed-off-by:
-
Andre McCurdy authored
Signed-off-by:
-
Bian Naimeng authored
imsettings is a delivery framework for general input-method configuration Signed-off-by:
-
Andrea Adami authored
The recipe was originally placed under /recipes-support by commit: 9b05b3eb Signed-off-by:
Andrea Adami <andrea.adami@gmail.com> Signed-off-by:
-
Adam YH Lee authored
Unless we inherit gsettings class, glib schema does not get installed and users cannot launch nm-applet: GLib-GIO-ERROR **: Settings schema 'org.gnome.nm-applet' is not installed Signed-off-by:
Adam YH Lee <adam.yh.lee@gmail.com> Signed-off-by:
-
Martin Jansa authored
* announcement: https://phab.enlightenment.org/phame/live/3/post/efl_and_elementary_1_14_1_release/ Signed-off-by:
-
Kang Kai authored
Upgrade php from 5.5.24 to 5.5.26. Remove part 2 of phar-makefile.patch which is useless. Signed-off-by:
-
Roy Li authored
the native php is used to install the target pear, and native php has hard-code path, so make wrapper to override the hard-code path the configuration format of pear.conf for native php is like: "type:path length:path", path will be replaced when populate sysroot setscene, but the path length is not changed, and make php unable to work, add a task to SSTATEPOSTINSTFUNCS to fix the path length Signed-off-by:
-
Roy Li authored
upgrade to include CVE fixes: CVE-2015-3903 CVE-2015-3902 Signed-off-by:
-
Yi Zhao authored
When enable multilib, some packages try to install udev rules and related files into /lib64/udev/ directory. But these files should be installed in /lib/udev/ directory even on multilib. Use ${nonarch_base_libdir} instead of ${base_libdir} to fix it. Signed-off-by:Yi Zhao <yi.zhao@windriver.com>
-
Andre McCurdy authored
http://pupnp.sourceforge.net/ Signed-off-by:
-
Roy Li authored
1. remove Backport patches 2. Update the checksume, include CopyRight file, since date in it is changed 3. remove --without-krb5 configure options, since it become useless 4. Update remove.autoconf.version.check.patch 5. skip to check libperl Signed-off-by:
-
Jackie Huang authored
- GStreamer 0.10 has been removed meta-openembedded/meta-multimedia and 1.0 left in oe-core, so upgrade libcanberra to the version that support GStreamer 1.0 - GStreamer and gtk support for libcanberra are optional, add PACKAGECONFIG for them, and use x11 DISTRO_FEATURES to decide if gtk is needed, gstreamer is not enabled by default. Signed-off-by:
Jackie Huang <jackie.huang@windriver.com> Signed-off-by:
-
- Jun 17, 2015
-
-
Ross Burton authored
The ${base_contains...} calls were missing their trailing }. Signed-off-by:Ross Burton <ross.burton@intel.com> Signed-off-by:
-
Kang Kai authored
Backport patch from debian to fix CVE-2015-0797. https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=784220 https://sources.debian.net/data/main/g/gst-plugins-bad0.10/0.10.23-7.1+deb7u2/debian/patches/buffer-overflow-mp4.patch Signed-off-by:
-
Yi Zhao authored
When build luajit-native: /buildarea2/build/tmp/sysroots/x86_64-linux/usr ==== | rmdir: failed to remove '/buildarea2/build/tmp/work/x86_64-linux/luajit-native/2.0.3-r0/image/buildarea2/build/tmp/sysroots/x86_64-linux/usr/lib/lua/5.*': No such file or directory | rmdir: failed to remove '/buildarea2/build/tmp/work/x86_64-linux/luajit-native/2.0.3-r0/image/buildarea2/build/tmp/sysroots/x86_64-linux/usr/lib/lua': No such file or directory | WARNING: exit code 1 from a shell command. Use ${baselib} instead of ${base_libdir} for variable MULTILIB in Makefile. Otherwise the INSTALL_LIB would extend to wrong path. Signed-off-by: -
Roy Li authored
Mariadb depends on openssl, openssl conditionally depends on krb5 by checking if OPENSSL_NO_KRB5 is defined, but cmake can not handle "ifndef" and always ask krb5.h if krb5.h exist when cmake make_depend; Faking a kssl.h if krb5 is not in PACKAGECONF, which does not include krb5 related declaration, install the faked kssl.h into build dir to be searched firstly Signed-off-by:
-
Yi Zhao authored
The ${S} is not set in the recipe cause the QA warning: WARNING: tesseract-lang-eng: the directory ${WORKDIR}/${BP} (/buildarea2/build/tmp/work/all-poky-linux/tesseract-lang-eng/3.02-r0/tesseract-lang-eng-3.02) pointed to by the S variable doesn't exist - please set S within the recipe to point to where the source has been unpacked to Signed-off-by: -
Yi Zhao authored
When MACHINE=qemux86-64 and enable multilib: ERROR: QA Issue: xdotool: Files/directories were installed but not shipped in any package: /usr/lib /usr/lib/libxdo.so /usr/lib/libxdo.so.1 /usr/lib/.debug /usr/lib/.debug/libxdo.so.1 Please set FILES such that these items are packaged. Alternatively if they are unneeded, avoid installing them or delete them within do_install. [installed-vs-shipped] Pass the correct libdir to make, otherwise it assumes $prefix/lib even on multilib. Signed-off-by: -
Yi Zhao authored
When MACHINE=qemux86-64 and enable multilib: ERROR: QA Issue: openjpeg: Files/directories were installed but not shipped in any package: /usr/lib /usr/lib/libopenjp2.so /usr/lib/libopenjp2.so.2.1.0 /usr/lib/libopenjp2.so.7 /usr/lib/.debug /usr/lib/pkgconfig /usr/lib/.debug/libopenjp2.so.2.1.0 /usr/lib/pkgconfig/libopenjp2.pc Please set FILES such that these items are packaged. Alternatively if they are unneeded, avoid installing them or delete them within do_install. [installed-vs-shipped] Pass the correct libdir configuration option to cmake. Signed-off-by: -
Yi Zhao authored
Signed-off-by: -
Yi Zhao authored
Signed-off-by: -
Yi Zhao authored
Signed-off-by: -
Yi Zhao authored
Signed-off-by: -
Yi Zhao authored
Signed-off-by:
-
- Jun 08, 2015
-
-
Khem Raj authored
Currently it produces duplicated .so files for .so.0 and .so.0.0.0 this is also noticed by opkg upgrade Configuring libxcb-randr0. /sbin/ldconfig: /usr/lib/libcpufreq.so.0 is not a symbolic link Additionally helps in some code size savings Signed-off-by:
Khem Raj <raj.khem@gmail.com> Signed-off-by:
-
Armin Kuster authored
add depends for git. Signed-off-by:
-
