Sanan,
On 09/21/2018 07:16 PM, Sinan Kaya wrote:
> * CVE-2017-15874
> busybox: Integer underflow in archival/libarchive/decompress_unlzma.c
>
> (cherry picked from 9ac42c500586fa5f10a1f6d22c3f797df11b1f6b)
>
> Affects busybox <= 1.27.2
this series in sumo-nmut
thanks,
Armin
> CVE: CVE-2017-1587
* CVE-2017-15874
busybox: Integer underflow in archival/libarchive/decompress_unlzma.c
(cherry picked from 9ac42c500586fa5f10a1f6d22c3f797df11b1f6b)
Affects busybox <= 1.27.2
CVE: CVE-2017-15874
Ref: https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2017-15874
Signed-off-by: Sinan Kaya
---
.../b
* CVE-2018-13785
In libpng 1.6.34, a wrong calculation of row_factor in the
png_check_chunk_length function (pngrutil.c) may trigger an
integer overflow and resultant divide-by-zero while processing
a crafted PNG file, leading to a denial of service.
(cherry picked from 8a05766cb74af05c04c53e6c9d6
* CVE-2018-8740
In SQLite through 3.22.0, databases whose schema is corrupted
using a CREATE TABLE AS statement could cause a NULL pointer dereference,
related to build.c and prepare.c.
Affects sqlite3 <= 3.22.0
CVE: CVE-2018-8740
Ref: https://access.redhat.com/security/cve/cve-2018-8740
Signed-o
== Series Details ==
Series: "[sumo,v2] busybox: CVE-2017-15..." and 2 more
Revision: 1
URL : https://patchwork.openembedded.org/series/14185/
State : failure
== Summary ==
Thank you for submitting this patch series to OpenEmbedded Core. This is
an automated response. Several tests have been
* CVE-2018-13785
In libpng 1.6.34, a wrong calculation of row_factor in the
png_check_chunk_length function (pngrutil.c) may trigger an
integer overflow and resultant divide-by-zero while processing
a crafted PNG file, leading to a denial of service.
(cherry picked from 8a05766cb74af05c04c53e6c9d6
* CVE-2018-8740
In SQLite through 3.22.0, databases whose schema is corrupted
using a CREATE TABLE AS statement could cause a NULL pointer dereference,
related to build.c and prepare.c.
Affects sqlite3 <= 3.22.0
CVE: CVE-2018-8740
Ref: https://access.redhat.com/security/cve/cve-2018-8740
Signed-o
* CVE-2017-15874
busybox: Integer underflow in archival/libarchive/decompress_unlzma.c
(cherry picked from 9ac42c500586fa5f10a1f6d22c3f797df11b1f6b)
Affects busybox <= 1.27.2
CVE: CVE-2017-15874
Ref: https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2017-15874
Signed-off-by: Sinan Kaya
---
.../b
On 9/21/2018 8:35 PM, Peter Kjellerstedt wrote:
the original patch doesn't have a signed-off. What's the policy?
You should add a Signed-off-by with your own name to the patches.
thanks, let me try this one more time.
--
___
Openembedded-core mailin
> -Original Message-
> From: openembedded-core-boun...@lists.openembedded.org core-boun...@lists.openembedded.org> On Behalf Of Sinan Kaya
> Sent: den 22 september 2018 00:53
> To: openembedded-core@lists.openembedded.org
> Subject: Re: [OE-core] ✗ patchtest: failure for "[v1] busybox: CVE
On 9/21/2018 6:33 PM, Patchwork wrote:
== Series Details ==
Series: "[v1] busybox: CVE-2017-15874..." and 2 more
Revision: 1
URL : https://patchwork.openembedded.org/series/14184/
State : failure
== Summary ==
Thank you for submitting this patch series to OpenEmbedded Core. This is
an autom
== Series Details ==
Series: "[v1] busybox: CVE-2017-15874..." and 2 more
Revision: 1
URL : https://patchwork.openembedded.org/series/14184/
State : failure
== Summary ==
Thank you for submitting this patch series to OpenEmbedded Core. This is
an automated response. Several tests have been ex
* CVE-2018-13785
In libpng 1.6.34, a wrong calculation of row_factor in the
png_check_chunk_length function (pngrutil.c) may trigger an
integer overflow and resultant divide-by-zero while processing
a crafted PNG file, leading to a denial of service.
(cherry picked from 8a05766cb74af05c04c53e6c9d6
* CVE-2018-8740
In SQLite through 3.22.0, databases whose schema is corrupted
using a CREATE TABLE AS statement could cause a NULL pointer dereference,
related to build.c and prepare.c.
Affects sqlite3 <= 3.22.0
Upstream-Status: Backport [
https://www.sqlite.org/cgi/src/vdiff?from=1774f1c3baf0bc
* CVE-2017-15874
busybox: Integer underflow in archival/libarchive/decompress_unlzma.c
(cherry picked from 9ac42c500586fa5f10a1f6d22c3f797df11b1f6b)
Affects busybox <= 1.27.2
Upstream-Status: Backport [
https://git.busybox.net/busybox/commit/?id=9ac42c500586fa5f10a1f6d22c3f797df11b1f6b]
CVE: CV
Looks good, thanks Ross!
Acked-by: Alejandro Enedino Hernandez Samaniego
On 9/21/2018 4:48 AM, Ross Burton wrote:
Instead of sorting the entire manifest when it is updated, use OrderedDict to
preserve the order of fields. This means that packages can be ordered in the
manifest to allow non-tr
> -Original Message-
> From: openembedded-core-boun...@lists.openembedded.org core-boun...@lists.openembedded.org> On Behalf Of Mikko Rapeli
> Sent: den 21 september 2018 18:02
> To: openembedded-core@lists.openembedded.org
> Cc: Michael Ho ; Thomas Witt
> Subject: [OE-core] [PATCH] opens
The configure script ended up creating Makefile with
LIBDIR=/lib
which got leaked into various places including all
pkg-config .pc files where lines like (note the
double slash //):
libdir=${exec_prefix}//lib
...
Libs: -L${libdir} -lcrypto
which causes pkg-config --libs to include the full abso
On 2018-09-21 11:34 AM, Bruce Ashfield wrote:
On 2018-09-21 11:33 AM, Andreas Müller wrote:
On Fri, Sep 21, 2018 at 4:39 PM, Andreas Müller
wrote:
On Fri, Sep 21, 2018 at 1:46 PM, Anuj Mittal
wrote:
Hi,
seems upstream has introduced changes 4.17 -> 4.18 - the patch does
not apply anymore. I
I just looked at this. Didn't we merge the old patch from April and
not this series?
Ross
On Wed, 19 Sep 2018 at 10:44, Hongzhi, Song wrote:
>
> Sorry for ping.
>
> The patch has been merged.
>
> --Hongzhi
>
>
> On 09/19/2018 05:37 PM, Hongzhi, Song wrote:
> > ping..
> >
> > --Hongzhi
> >
> >
>
On 2018-09-21 11:33 AM, Andreas Müller wrote:
On Fri, Sep 21, 2018 at 4:39 PM, Andreas Müller wrote:
On Fri, Sep 21, 2018 at 1:46 PM, Anuj Mittal wrote:
Hi,
seems upstream has introduced changes 4.17 -> 4.18 - the patch does
not apply anymore. Is this patch available for 4.18 somewhere?
A
On Fri, Sep 21, 2018 at 4:39 PM, Andreas Müller wrote:
> On Fri, Sep 21, 2018 at 1:46 PM, Anuj Mittal wrote:
>>> Hi,
>>>
>>> seems upstream has introduced changes 4.17 -> 4.18 - the patch does
>>> not apply anymore. Is this patch available for 4.18 somewhere?
>>>
>>
>> Are you looking for this:
>
Is there a good reason why shell=True is used in the first place?
Just change the cmd to a list, stop passing shell=True, and you don't
need to dance around process groups.
Ross
On Fri, 21 Sep 2018 at 03:30, Chen Qi wrote:
>
> The current handling of SIGTERM is incorrect as the process pid return
On Fri, Sep 21, 2018 at 1:46 PM, Anuj Mittal wrote:
>> Hi,
>>
>> seems upstream has introduced changes 4.17 -> 4.18 - the patch does
>> not apply anymore. Is this patch available for 4.18 somewhere?
>>
>
> Are you looking for this:
>
> https://git.yoctoproject.org/cgit/cgit.cgi/linux-yocto/commit?
The libitm is not supported on ARC, so disable it
Signed-off-by: Alexey Brodkin
---
No changes in v3.
No changes in v2.
meta/recipes-devtools/gcc/gcc-runtime.inc | 1 +
1 file changed, 1 insertion(+)
diff --git a/meta/recipes-devtools/gcc/gcc-runtime.inc
b/meta/recipes-devtools/gcc/gcc-runt
GCC's built-in spec for LD is missing a space after
"--eh-frame-hdr" thus with the next option merged together they
are not understood by LD and so LD fails.
Back-port from upstream GCC, see:
https://github.com/gcc-mirror/gcc/commit/892142379c6b99fe8c3ebdfe0b79e2a435228c1d
Signed-off-by: Alexey B
Signed-off-by: Alexey Brodkin
---
No changes in v3.
Changes v1 -> v2:
* Added upstream status
meta/recipes-devtools/binutils/binutils-2.31.inc | 4 +
...location-where-GOT-information-is-collect.patch | 201 +
...bustness.-Return-FALSE-in-case-of-NULL-po.patch | 38 +
Signed-off-by: Alexey Brodkin
---
No changes in v3.
Changes v1 -> v2:
* Added upstream status
.../icu/icu/0002-Add-ARC-support.patch | 27 ++
meta/recipes-support/icu/icu_62.1.bb | 1 +
2 files changed, 28 insertions(+)
create mode 100644 meta/
Signed-off-by: Alexey Brodkin
---
No changes in v3.
No changes in v2.
meta/recipes-connectivity/openssl/openssl10_1.0.2p.bb | 2 +-
meta/recipes-connectivity/openssl/openssl_1.1.1.bb| 2 +-
2 files changed, 2 insertions(+), 2 deletions(-)
diff --git a/meta/recipes-connectivity/openssl/ope
Signed-off-by: Alexey Brodkin
Cc: Ross Burton
Cc: Werner Koch
---
Changes v2 -> v3:
* Use proper [recently upstreamed] fix for ARC Glibc toolchain
* Fix compilation for x86_64 due to renamed header
Changes v1 -> v2:
* Added upstream status
...port-ARC-CPUs-and-simplify-aliasing-table.pat
Signed-off-by: Alexey Brodkin
---
No changes in v3.
No changes in v2.
meta/classes/kernel-arch.bbclass | 1 +
1 file changed, 1 insertion(+)
diff --git a/meta/classes/kernel-arch.bbclass b/meta/classes/kernel-arch.bbclass
index 09793fc9c2..2b52a63c64 100644
--- a/meta/classes/kernel-arch.bbcl
From: Antoine Tenart
[Alexey: Rebased on top of other patches like RiscV, NIOS2 etc]
Signed-off-by: Antoine Tenart
Signed-off-by: Alexey Brodkin
---
No changes in v3.
Changes v1 -> v2:
* Added upstream status
.../nspr/nspr/0004-Add-ARC-support.patch | 88 ++
DesignWare ARC Processors are a family of 32-bit CPUs from Synopsys.
This series introduces basic support for ARC architecture in
OpenEmbedded.
As of today latest upstream GCC and Binutils are perfectly usable
for building packages for ARC so we just need a couple of fixes.
Glibc for ARC is under
Signed-off-by: Alexey Brodkin
---
No changes in v3.
Changes v1 -> v2:
* Merged changes in meta/classes/siteinfo.bbclass &
meta/site/arc-common
meta/classes/siteinfo.bbclass | 2 ++
meta/site/arc-common | 11 +++
2 files changed, 13 insertions(+)
create mode 100644 meta/s
>> That's better than HTML!
Attached.
BR,
Awais
From: Burton, Ross
Sent: Thursday, September 20, 2018 7:46 PM
To: Belal, Awais
Cc: OE-core
Subject: Re: [OE-core] [PATCH] glibc-package.inc: correct intention for
deleting /usr/lib as needed
That's better
Yes, that fixes it.
Ross
On Fri, 21 Sep 2018 at 14:08, Alexey Brodkin
wrote:
>
> Hi Ross,
>
> On Fri, 2018-09-21 at 13:53 +0100, Burton, Ross wrote:
> > Can you check that v3 works with x86-64 targets?
> >
> > ERROR: libgpg-error-1.32-r0 do_compile: Function failed: do_compile
> > (log file is lo
Hi Ross,
On Fri, 2018-09-21 at 13:53 +0100, Burton, Ross wrote:
> Can you check that v3 works with x86-64 targets?
>
> ERROR: libgpg-error-1.32-r0 do_compile: Function failed: do_compile
> (log file is located at
> /data/poky-tmp/master/work/corei7-64-poky-linux/libgpg-error/1.32-r0/temp/log.do_c
Can you check that v3 works with x86-64 targets?
ERROR: libgpg-error-1.32-r0 do_compile: Function failed: do_compile
(log file is located at
/data/poky-tmp/master/work/corei7-64-poky-linux/libgpg-error/1.32-r0/temp/log.do_compile.13345)
ERROR: Logfile of failure stored in:
/data/poky-tmp/master/wo
Hi Ross,
On Fri, 2018-09-21 at 14:31 +0300, Alexey Brodkin wrote:
> Hi Ross,
>
> On Fri, 2018-09-21 at 11:43 +0100, Burton, Ross wrote:
> > On Thu, 20 Sep 2018 at 21:44, Alexey Brodkin
> > wrote:
> >
> > > case ${TARGET_ARCH} in
> > > aarch64_be) TUPLE=aarch64-unknown-linux-gn
On Fri, 21 Sep 2018 at 13:33, Bruce Ashfield
wrote:
> > FYI, the poky-lsb builds for meta-yocto-bsp BSPs are all emitting this
> > warning:
> >
> > WARNING: linux-yocto-4.14.48+gitAUTOINC+9beb3a2873_04043b48eb-r0
> > do_kernel_configcheck: [kernel config]: This BSP sets config options
> > that ar
On Fri, Sep 21, 2018 at 7:49 AM, Mikko Rapeli wrote:
> This change enables kernel recipes to share files with other
> recipes. Firmware, modules and kernel-depmod are still not shared
> since according to git history they cause problems with multiarch,
> but all others are allowed. Examples of sha
On 2018-09-21 7:21 AM, Burton, Ross wrote:
FYI, the poky-lsb builds for meta-yocto-bsp BSPs are all emitting this warning:
WARNING: linux-yocto-4.14.48+gitAUTOINC+9beb3a2873_04043b48eb-r0
do_kernel_configcheck: [kernel config]: This BSP sets config options
that are not offered anywhere within th
On 2018-09-21 7:46 AM, Anuj Mittal wrote:
On 09/21/2018 06:04 PM, Andreas Müller wrote:
On Fri, Apr 13, 2018 at 12:12 AM, Andreas Müller
wrote:
On Thu, Apr 12, 2018 at 11:46 PM, Andreas Müller
wrote:
On Thu, Apr 12, 2018 at 11:38 PM, Cal Sullivan
wrote:
If you're using a non-linux-yocto ke
On Fri, 2018-09-21 at 16:09 +0800, Hongxu Jia wrote:
> On 2018年09月21日 11:47, richard.pur...@linuxfoundation.org wrote:
> > The problem I really want to fix is the hang as openssh-server
> > starts.
> > Without the defconfig options above, openssh server hangs at key
> > generation. With the changes
On Fri, 2018-09-21 at 17:08 +0800, Hongxu Jia wrote:
> On 2018年09月21日 01:54, richard.pur...@linuxfoundation.org wrote:
> > We do not want to revert those commits. I think the right solution
> > is
> > to enabled:
> >
> > CONFIG_CRYPTO_DEV_VIRTIO=y
> > CONFIG_PCI=y
> > CONFIG_PCI_HOST_GENERIC=y
>
This change enables kernel recipes to share files with other
recipes. Firmware, modules and kernel-depmod are still not shared
since according to git history they cause problems with multiarch,
but all others are allowed. Examples of shared files are
kernel version and recipe specific headers and s
Instead of sorting the entire manifest when it is updated, use OrderedDict to
preserve the order of fields. This means that packages can be ordered in the
manifest to allow non-trivial FILES assignments (such as a package that picks up
pieces of other packages)
The manifest has been regenerated w
This package doesn't exist anymore so the manifest tool doesn't need to handle
it specially.
Signed-off-by: Ross Burton
---
meta/recipes-devtools/python/python3/create_manifest3.py | 2 +-
1 file changed, 1 insertion(+), 1 deletion(-)
diff --git a/meta/recipes-devtools/python/python3/create_man
Currently the bulk of the tests in python3-tests, some more in
python3-sqlite3-tests, and others in their parent module (such as
python3-ctypes). This is pointless space usage if we're not planning on running
the tests, so consolidate all the tests into python3-tests.
Signed-off-by: Ross Burton
Don't sort the manifest when using it to generate packaging rules, so ordering
can be used to have complex packaging rules.
Signed-off-by: Ross Burton
---
meta/recipes-devtools/python/python3_3.5.6.bb | 6 ++
1 file changed, 2 insertions(+), 4 deletions(-)
diff --git a/meta/recipes-devtools
This incorporates two fixes for large inodes, which hopefully solves some of the
rare mysterious behaviour.
Signed-off-by: Ross Burton
---
meta/recipes-devtools/pseudo/pseudo_git.bb | 2 +-
1 file changed, 1 insertion(+), 1 deletion(-)
diff --git a/meta/recipes-devtools/pseudo/pseudo_git.bb
b/
On 09/21/2018 06:04 PM, Andreas Müller wrote:
> On Fri, Apr 13, 2018 at 12:12 AM, Andreas Müller
> wrote:
>> On Thu, Apr 12, 2018 at 11:46 PM, Andreas Müller
>> wrote:
>>> On Thu, Apr 12, 2018 at 11:38 PM, Cal Sullivan
>>> wrote:
If you're using a non-linux-yocto kernel you likely need to a
That's good to know, thanks.
Ross
On Fri, 21 Sep 2018 at 12:41, Alexey Brodkin
wrote:
>
> Hi Ross,
>
> On Fri, 2018-09-21 at 11:55 +0100, Burton, Ross wrote:
> > I don't like accumulating pending patches for something as key as
> > binutils, are these actually working their way upstream now?
>
>
Hi Ross,
On Fri, 2018-09-21 at 11:55 +0100, Burton, Ross wrote:
> I don't like accumulating pending patches for something as key as
> binutils, are these actually working their way upstream now?
Sure they are!
Our team development is very upstream targeted, i.e. we try to
submit all our changes
Hi Ross,
On Fri, 2018-09-21 at 11:43 +0100, Burton, Ross wrote:
> On Thu, 20 Sep 2018 at 21:44, Alexey Brodkin
> wrote:
>
> > case ${TARGET_ARCH} in
> > aarch64_be) TUPLE=aarch64-unknown-linux-gnu ;;
> > + arc)TUPLE=i686-unknown-linux-gnu ;;
> > arm)
FYI, the poky-lsb builds for meta-yocto-bsp BSPs are all emitting this warning:
WARNING: linux-yocto-4.14.48+gitAUTOINC+9beb3a2873_04043b48eb-r0
do_kernel_configcheck: [kernel config]: This BSP sets config options
that are not offered anywhere within this kernel:
CONFIG_USB_OCTEON2_COMMON
Is this
I don't like accumulating pending patches for something as key as
binutils, are these actually working their way upstream now?
Ross
On Thu, 20 Sep 2018 at 21:44, Alexey Brodkin
wrote:
>
> Signed-off-by: Alexey Brodkin
> ---
>
> Changes v1 -> v2:
>
> * Added upstream status
>
> meta/recipes-dev
On Thu, 20 Sep 2018 at 21:44, Alexey Brodkin
wrote:
> case ${TARGET_ARCH} in
> aarch64_be) TUPLE=aarch64-unknown-linux-gnu ;;
> + arc)TUPLE=i686-unknown-linux-gnu ;;
> arm)TUPLE=arm-unknown-linux-gnueabi ;;
> armeb) TUPLE=arm-unkn
On Fri, Apr 13, 2018 at 12:12 AM, Andreas Müller
wrote:
> On Thu, Apr 12, 2018 at 11:46 PM, Andreas Müller
> wrote:
>> On Thu, Apr 12, 2018 at 11:38 PM, Cal Sullivan
>> wrote:
>>> If you're using a non-linux-yocto kernel you likely need to apply this patch
>>> to your kernel as well:
>>>
>>> htt
Sorry, those 3 resubmissions were on the wrong list. I'll resend to
oe-devel.
How I wish it were easier to submit code to OE. I feel that this
archaic way of juggling with patch emails wastes everyone's time.
--
___
Openembedded-core mailing list
Open
On 2018年09月21日 01:54, richard.pur...@linuxfoundation.org wrote:
We do not want to revert those commits. I think the right solution is
to enabled:
CONFIG_CRYPTO_DEV_VIRTIO=y
CONFIG_PCI=y
CONFIG_PCI_HOST_GENERIC=y
It should add
CONFIG_VIRTIO_PCI=y
Then sshd will hung a short time (50s)
After
== Series Details ==
Series: mpd: make lots of plugins optional
Revision: 1
URL : https://patchwork.openembedded.org/series/14174/
State : failure
== Summary ==
Thank you for submitting this patch series to OpenEmbedded Core. This is
an automated response. Several tests have been executed on
From: Max Kellermann
The new options are enabled by default to avoid breaking existing
configurations.
Signed-off-by: Max Kellermann
---
.../recipes-multimedia/musicpd/mpd_0.20.21.bb | 44 +--
1 file changed, 22 insertions(+), 22 deletions(-)
diff --git a/meta-multimedia/recip
From: Max Kellermann
Signed-off-by: Max Kellermann
---
.../recipes-multimedia/musicpd/mpc_0.30.bb | 16
1 file changed, 16 insertions(+)
create mode 100644 meta-multimedia/recipes-multimedia/musicpd/mpc_0.30.bb
diff --git a/meta-multimedia/recipes-multimedia/musicpd/mpc
From: Max Kellermann
Signed-off-by: Max Kellermann
---
.../recipes-multimedia/musicpd/libmpdclient_2.15.bb | 12
1 file changed, 12 insertions(+)
create mode 100644
meta-multimedia/recipes-multimedia/musicpd/libmpdclient_2.15.bb
diff --git a/meta-multimedia/recipes-multimedia/m
gcc-cross-canadian.inc contains:
EXTRA_OECONF += "\
--with-mpfr=${STAGING_DIR_HOST}${layout_exec_prefix} \
--with-mpc=${STAGING_DIR_HOST}${layout_exec_prefix} \
"
This appears to be the only mention of ${layout_exec_prefix} in the whole
tree, so this ends up just passing ${STAGING_DIR
On 2018年09月21日 11:47, richard.pur...@linuxfoundation.org wrote:
The problem I really want to fix is the hang as openssh-server starts.
Without the defconfig options above, openssh server hangs at key
generation. With the changes I've mentioned applied, key generation
proceeds, the server starts a
Since the commit `43838a2 random: fix crng_ready() test' and
`dc12baa random: use a different mixing algorithm for
add_device_randomness()' applied in kernel, the getrandom
hung on qemuarm64. It caused openssl 1.1.x could not work
correctly. In this situation, the openssh also hung at init.
Depend
2018-09-20 23:10 GMT+02:00 Andreas Oberritter :
>> That's what "git show" does, which I used to generate the patch file.
>> I'll resend without indent, thanks.
>
> Try "git format-patch" instead.
git send-email is even more direct :)
Alex
--
___
Openem
69 matches
Mail list logo
