Patchwork [00/15] denzil pull request 5

login
register
mail settings
Submitter Scott Garman
Date Dec. 28, 2012, 9:41 p.m.
Message ID <cover.1356730817.git.scott.a.garman@intel.com>
Download mbox
Permalink /patch/41757/
State New
Headers show

Pull-request

git://git.openembedded.org/openembedded-core-contrib sgarman/denzil-next-pull5

Comments

Scott Garman - Dec. 28, 2012, 9:41 p.m.
This is a pull request for denzil, it includes a number of security
fixes and a few important bugfixes. The poky-based tree has been run
through the autobuilder as follows:

nightly-x86: Green
http://autobuilder.yoctoproject.org:8010/builders/nightly-x86/builds/853

nightly-x86-lsb: Green
http://autobuilder.yoctoproject.org:8010/builders/nightly-x86-lsb/builds/182

nightly-x86-64: Green
http://autobuilder.yoctoproject.org:8010/builders/nightly-x86-64/builds/776

nightly-x86-64-lsb: Green
http://autobuilder.yoctoproject.org:8010/builders/nightly-x86-64-lsb/builds/177

nightly-arm: Green
http://autobuilder.yoctoproject.org:8010/builders/nightly-arm/builds/782

nightly-arm-lsb: Green
http://autobuilder.yoctoproject.org:8010/builders/nightly-arm-lsb/builds/175

nightly-mips: Green
http://autobuilder.yoctoproject.org:8010/builders/nightly-mips/builds/755

nightly-mips-lsb: Green
http://autobuilder.yoctoproject.org:8010/builders/nightly-mips-lsb/builds/182

nightly-ppc: Green
http://autobuilder.yoctoproject.org:8010/builders/nightly-ppc/builds/733

nightly-ppc-lsb: Green
http://autobuilder.yoctoproject.org:8010/builders/nightly-ppc-lsb/builds/185

nightly-non-gpl3: Green
http://autobuilder.yoctoproject.org:8010/builders/nightly-non-gpl3/builds/412

nightly-multilib: Green
http://autobuilder.yoctoproject.org:8010/builders/nightly-multilib/builds/408

nightly-tiny: Green
http://autobuilder.yoctoproject.org:8010/builders/nightly-tiny/builds/389

build-appliance: Green
http://autobuilder.yoctoproject.org:8010/builders/build-appliance/builds/188

eclipse-plugin: Failed
http://autobuilder.yoctoproject.org:8010/builders/eclipse-plugin/builds/717

This appears to be due to some issue on the autobuilder, it failed to
find the branch I sumbmitted. I've notified Beth so she can look into
this.

crownbay: Green
http://autobuilder.yoctoproject.org:8010/builders/crownbay/builds/251

crownbay-noemgd: Green
http://autobuilder.yoctoproject.org:8010/builders/crownbay-noemgd/builds/252

emenlow: Green
http://autobuilder.yoctoproject.org:8010/builders/emenlow/builds/235

n450: Green
http://autobuilder.yoctoproject.org:8010/builders/n450/builds/239

jasperforest: Green
http://autobuilder.yoctoproject.org:8010/builders/jasperforest/builds/234

sugarbay: Green
http://autobuilder.yoctoproject.org:8010/builders/sugarbay/builds/245

fri2-noemgd: Green
http://autobuilder.yoctoproject.org:8010/builders/fri2-noemgd/builds/247

fri2: Green
http://autobuilder.yoctoproject.org:8010/builders/fri2/builds/262

romley: Green
http://autobuilder.yoctoproject.org:8010/builders/romley/builds/209

cedartrail: Green
http://autobuilder.yoctoproject.org:8010/builders/cedartrail/builds/214

sys940x: Failed
http://autobuilder.yoctoproject.org:8010/builders/sys940x/builds/109

Failure during do_rootfs:

| error: Failed dependencies:
| 	libva.so.1 is needed by libegl1-1.10-r0.core2
| 	libva-tpi.so.1 is needed by libegl1-1.10-r0.core2
| 	libva-x11.so.1 is needed by libegl1-1.10-r0.core2

Filed as bug #3659:
https://bugzilla.yoctoproject.org/show_bug.cgi?id=3659

sys940x-noemgd: Green
http://autobuilder.yoctoproject.org:8010/builders/sys940x-noemgd/builds/108

cheifriver: Green
http://autobuilder.yoctoproject.org:8010/builders/chiefriver/builds/92

p1022ds: Green
http://autobuilder.yoctoproject.org:8010/builders/p1022ds/builds/185



The following changes since commit d35560f33f257bd12a07c7c0be770319086d6ad9:

  squashfs: fix for CVE-2012-4024 (2012-11-30 14:51:10 -0800)

are available in the git repository at:

  git://git.openembedded.org/openembedded-core-contrib sgarman/denzil-next-pull5
  http://cgit.openembedded.org/cgit.cgi/openembedded-core-contrib/log/?h=sgarman/denzil-next-pull5

Khem Raj (5):
  coreutils: Fix build with eglibc 2.16
  diffutils: Fix build with eglibc 2.16
  gettext,m4,augeas,gnutls: Account for removal of gets in eglibc 2.16
  bison: Fix for gets being removed from eglibc 2.16
  grub,guile,cpio,tar,wget: Fix gnulib for absense of gets in eglibc

Li Wang (1):
  librsvg: CVE-2011-3146

Mihai Lindner (1):
  sysklogd: removed tabs from syslog.conf

Richard Purdie (1):
  boot-directdisk: Fix kernel location after STAGING_KERNEL_DIR change

Scott Garman (6):
  psplash: new patch to fix segfault
  build-appliance-image: Allow SRCREV to be overriden
  gitignore: add generated doc files to ignore list
  libxml2: patch for CVE-2012-2871
  freetype: patches for CVE-2012-5668, 5669, and 5670
  cups: patch for CVE-2011-2896

yanjun.zhu (1):
  squashfs: fix CVE-2012-4025

 .gitignore                                         |   24 +-
 meta/classes/boot-directdisk.bbclass               |    2 +-
 meta/recipes-bsp/grub/grub-1.99/remove-gets.patch  |   20 +
 meta/recipes-bsp/grub/grub_1.99.bb                 |    3 +-
 .../coreutils/coreutils-8.14/remove-gets.patch     |   23 +
 meta/recipes-core/coreutils/coreutils_8.14.bb      |    3 +-
 .../gettext/gettext-0.18.1.1/remove_gets.patch     |   58 ++
 meta/recipes-core/gettext/gettext_0.18.1.1.bb      |    3 +-
 meta/recipes-core/images/build-appliance-image.bb  |    2 +-
 .../libxml/libxml2/libxml2-CVE-2012-2871.patch     |   36 +
 meta/recipes-core/libxml/libxml2_2.8.0.bb          |    4 +-
 .../files/psplash_fix_bad_arg_segfault.patch       |   22 +
 meta/recipes-core/psplash/psplash_git.bb           |    3 +-
 .../recipes-devtools/bison/bison/remove-gets.patch |   20 +
 meta/recipes-devtools/bison/bison_2.5.bb           |    6 +-
 .../recipes-devtools/guile/files/remove-gets.patch |   25 +
 meta/recipes-devtools/guile/guile_2.0.3.bb         |    3 +-
 meta/recipes-devtools/m4/m4-1.4.16.inc             |    6 +-
 meta/recipes-devtools/m4/m4/remove-gets.patch      |   21 +
 .../patches/squashfs-4.2-fix-CVE-2012-4025.patch   |  190 ++++
 ...dd-a-commment-and-fix-some-other-comments.patch |   38 +
 .../patches/squashfs-fix-open-file-limit.patch     |  215 ++++
 .../squashfs-tools/squashfs-tools_4.2.bb           |    5 +-
 .../augeas/augeas/remove-gets.patch                |   20 +
 meta/recipes-extended/augeas/augeas_0.10.0.bb      |    4 +-
 .../cpio/cpio-2.11/remove-gets.patch               |   20 +
 meta/recipes-extended/cpio/cpio_2.11.bb            |    5 +-
 .../cups/cups-1.4.6/cups-CVE-2011-2896.patch       |  140 +++
 meta/recipes-extended/cups/cups_1.4.6.bb           |    3 +-
 .../diffutils/diffutils-3.2/remove-gets.patch      |   22 +
 meta/recipes-extended/diffutils/diffutils_3.2.bb   |    6 +-
 meta/recipes-extended/sysklogd/files/syslog.conf   |   23 +-
 meta/recipes-extended/sysklogd/sysklogd_1.5.bb     |    2 +-
 .../tar/tar-1.26/remove-gets.patch                 |   20 +
 meta/recipes-extended/tar/tar_1.26.bb              |    5 +-
 .../wget/wget-1.13.4/remove-gets.patch             |   23 +
 meta/recipes-extended/wget/wget_1.13.4.bb          |    3 +-
 .../librsvg-2.32.1/librsvg-CVE-2011-3146.patch     | 1088 ++++++++++++++++++++
 meta/recipes-gnome/librsvg/librsvg_2.32.1.bb       |    6 +-
 .../freetype/freetype-2.4.9/CVE-2012-5668.patch    |   31 +
 .../freetype/freetype-2.4.9/CVE-2012-5669.patch    |   31 +
 .../freetype/freetype-2.4.9/CVE-2012-5670.patch    |   29 +
 meta/recipes-graphics/freetype/freetype_2.4.9.bb   |    7 +-
 .../gnutls/gnutls/remove-gets.patch                |   42 +
 meta/recipes-support/gnutls/gnutls_2.12.17.bb      |    3 +-
 45 files changed, 2226 insertions(+), 39 deletions(-)
 create mode 100644 meta/recipes-bsp/grub/grub-1.99/remove-gets.patch
 create mode 100644 meta/recipes-core/coreutils/coreutils-8.14/remove-gets.patch
 create mode 100644 meta/recipes-core/gettext/gettext-0.18.1.1/remove_gets.patch
 create mode 100644 meta/recipes-core/libxml/libxml2/libxml2-CVE-2012-2871.patch
 create mode 100644 meta/recipes-core/psplash/files/psplash_fix_bad_arg_segfault.patch
 create mode 100644 meta/recipes-devtools/bison/bison/remove-gets.patch
 create mode 100644 meta/recipes-devtools/guile/files/remove-gets.patch
 create mode 100644 meta/recipes-devtools/m4/m4/remove-gets.patch
 create mode 100644 meta/recipes-devtools/squashfs-tools/patches/squashfs-4.2-fix-CVE-2012-4025.patch
 create mode 100644 meta/recipes-devtools/squashfs-tools/patches/squashfs-add-a-commment-and-fix-some-other-comments.patch
 create mode 100644 meta/recipes-devtools/squashfs-tools/patches/squashfs-fix-open-file-limit.patch
 create mode 100644 meta/recipes-extended/augeas/augeas/remove-gets.patch
 create mode 100644 meta/recipes-extended/cpio/cpio-2.11/remove-gets.patch
 create mode 100644 meta/recipes-extended/cups/cups-1.4.6/cups-CVE-2011-2896.patch
 create mode 100644 meta/recipes-extended/diffutils/diffutils-3.2/remove-gets.patch
 create mode 100644 meta/recipes-extended/tar/tar-1.26/remove-gets.patch
 create mode 100644 meta/recipes-extended/wget/wget-1.13.4/remove-gets.patch
 create mode 100644 meta/recipes-gnome/librsvg/librsvg-2.32.1/librsvg-CVE-2011-3146.patch
 create mode 100644 meta/recipes-graphics/freetype/freetype-2.4.9/CVE-2012-5668.patch
 create mode 100644 meta/recipes-graphics/freetype/freetype-2.4.9/CVE-2012-5669.patch
 create mode 100644 meta/recipes-graphics/freetype/freetype-2.4.9/CVE-2012-5670.patch
 create mode 100644 meta/recipes-support/gnutls/gnutls/remove-gets.patch
Richard Purdie - Jan. 3, 2013, 12:41 p.m.
On Fri, 2012-12-28 at 13:41 -0800, Scott Garman wrote:
> This is a pull request for denzil, it includes a number of security
> fixes and a few important bugfixes. The poky-based tree has been run
> through the autobuilder as follows:
[...]
> The following changes since commit d35560f33f257bd12a07c7c0be770319086d6ad9:
> 
>   squashfs: fix for CVE-2012-4024 (2012-11-30 14:51:10 -0800)
> 
> are available in the git repository at:
> 
>   git://git.openembedded.org/openembedded-core-contrib sgarman/denzil-next-pull5
>   http://cgit.openembedded.org/cgit.cgi/openembedded-core-contrib/log/?h=sgarman/denzil-next-pull5
> 
> Khem Raj (5):
>   coreutils: Fix build with eglibc 2.16
>   diffutils: Fix build with eglibc 2.16
>   gettext,m4,augeas,gnutls: Account for removal of gets in eglibc 2.16
>   bison: Fix for gets being removed from eglibc 2.16
>   grub,guile,cpio,tar,wget: Fix gnulib for absense of gets in eglibc
> 
> Li Wang (1):
>   librsvg: CVE-2011-3146
> 
> Mihai Lindner (1):
>   sysklogd: removed tabs from syslog.conf
> 
> Richard Purdie (1):
>   boot-directdisk: Fix kernel location after STAGING_KERNEL_DIR change
> 
> Scott Garman (6):
>   psplash: new patch to fix segfault
>   build-appliance-image: Allow SRCREV to be overriden
>   gitignore: add generated doc files to ignore list
>   libxml2: patch for CVE-2012-2871
>   freetype: patches for CVE-2012-5668, 5669, and 5670
>   cups: patch for CVE-2011-2896
> 
> yanjun.zhu (1):
>   squashfs: fix CVE-2012-4025

Merged into denzil, thanks.

Richard