[yocto-security] [OE-core CVE] branch master-next updated. uninative-2.1-254-gdcf230d
cve-notice at lists.openembedded.org
cve-notice at lists.openembedded.org
Tue Jul 3 16:06:00 PDT 2018
This is an automated email from the git hooks/post-receive script. It was
generated because a ref change was pushed to the repository containing
the project "".
The branch, master-next has been updated
discards 2c9616876cedd229d77edec5bc8e8c5ef27e0f04 (commit)
discards cd229868d5bb8aaec956882b66e18e79f831a4e8 (commit)
discards 946097c762f5e9066817c83d7957f09bf1cddae9 (commit)
via dcf230d2e49b0ed5f45e11fb207565b2170af743 (commit)
via 8f464edaa64de4d2b1fc5b96cf1afefa4c0aa66b (commit)
via 858483b6fa856b748bbfc0a4a771601be205032c (commit)
via 6585cb5ac21c6a753b75ed6521d74b642dfd9cb8 (commit)
via 1fd1564229a5054f13f862608cddad6702f1a319 (commit)
via ae23367c85d1a6c84c25736ac3c9a059acbc8dbe (commit)
via a2391723d1ca42583fd29822ea031094c1710009 (commit)
via ceda9fff8974b2d6db11b4996b24ba79fa912299 (commit)
via 6fc6665c027934c0875602c9aee62c9df9088845 (commit)
via c56b99a0ea54798f570537c5666d267c6626bcb8 (commit)
via f70812e296e6ef14143b63f021112ac7d2ab9f19 (commit)
via 967de57de4f0fd853463ea24963aef8516e3bce0 (commit)
via 49c55c7d92e208202cc19d5299ea960f53691ef7 (commit)
via 31291c25db8b8fb3994287e8ee124335d9af1788 (commit)
via 59a0a05235d80c86251cf45d7142bfc57f2e70d2 (commit)
via 8ae70703f68853a8714a4fb8fa5d959b5e21a02d (commit)
via c37207d0aca5ad1ec2b45813274931be458ee7ed (commit)
via 7cb42ae87ef929bf7e08c559f09dc224c6e3d314 (commit)
This update added new revisions after undoing existing revisions. That is
to say, the old revision is not a strict subset of the new revision. This
situation occurs when you --force push a change and generate a repository
containing something like this:
* -- * -- B -- O -- O -- O (2c9616876cedd229d77edec5bc8e8c5ef27e0f04)
\
N -- N -- N (dcf230d2e49b0ed5f45e11fb207565b2170af743)
When this happens we assume that you've already had alert emails for all
of the O revisions, and so we here report only the revisions in the N
branch from the common base, B.
Those revisions listed above that are new to this repository have
not appeared on any other notification email; so we list those
revisions in full, below.
- Log -----------------------------------------------------------------
commit dcf230d2e49b0ed5f45e11fb207565b2170af743
Author: Rasmus Villemoes <rasmus.villemoes at prevas.dk>
Date: Mon Jul 2 15:28:06 2018 +0200
util-linux: alternatify fstrim
I hit
update-alternatives: Error: not linking [...]/rootfs/sbin/fstrim to /bin/busybox.nosuid since [...]/rootfs/sbin/fstrim exists and is not a link
The solution seems to be to tell the alternatives system that util-linux
can also provide fstrim.
Signed-off-by: Rasmus Villemoes <rasmus.villemoes at prevas.dk>
Signed-off-by: Richard Purdie <richard.purdie at linuxfoundation.org>
commit 8f464edaa64de4d2b1fc5b96cf1afefa4c0aa66b
Author: Otavio Salvador <otavio at ossystems.com.br>
Date: Tue Jul 3 09:34:34 2018 -0300
go: Update 1.10.2 -> 1.10.3
go1.10.3 (released 2018/06/05) includes fixes to the go command, and
the crypto/tls, crypto/x509, and strings packages. In particular, it
adds minimal support to the go command for the vgo transition.
Signed-off-by: Otavio Salvador <otavio at ossystems.com.br>
Signed-off-by: Richard Purdie <richard.purdie at linuxfoundation.org>
commit 858483b6fa856b748bbfc0a4a771601be205032c
Author: Otavio Salvador <otavio at ossystems.com.br>
Date: Tue Jul 3 09:34:33 2018 -0300
go: Update 1.9.6 -> 1.9.7
go1.9.7 (released 2018/06/05) includes fixes to the go command, and
the crypto/x509, and strings packages. In particular, it adds minimal
support to the go command for the vgo transition.
Signed-off-by: Otavio Salvador <otavio at ossystems.com.br>
Signed-off-by: Richard Purdie <richard.purdie at linuxfoundation.org>
commit 6585cb5ac21c6a753b75ed6521d74b642dfd9cb8
Author: Olof Johansson <olof.johansson at axis.com>
Date: Tue Jul 3 14:00:08 2018 +0200
rpm: Avoid leaking temporary scriplet files
RPM writes each package scriptlet (post-/preinstall) to
/var/tmp/rpm-tmp.XXXXXX --- a lot of files potentially gets created.
When debugging is enabled, these temporary scriptlet files aren't
cleaned up at all and after a while this results in the filesystem
resources are eaten up (like running out of available inodes).
Normally, the temporary files would have been written to the tmp
directory of the target sysroot (which we can easily clean up), but in
this tree, you can't necessarily run the scriptlets.
Fixes [YOCTO #12792]
Signed-off-by: Olof Johansson <olofjn at axis.com>
Signed-off-by: Richard Purdie <richard.purdie at linuxfoundation.org>
commit 1fd1564229a5054f13f862608cddad6702f1a319
Author: Ross Burton <ross.burton at intel.com>
Date: Tue Jul 3 14:29:47 2018 +0100
fstests: remove
These tests are very old and there are better benchmarking systems available
now.
Signed-off-by: Ross Burton <ross.burton at intel.com>
Signed-off-by: Richard Purdie <richard.purdie at linuxfoundation.org>
commit ae23367c85d1a6c84c25736ac3c9a059acbc8dbe
Author: Fabio Berton <fabio.berton at ossystems.com.br>
Date: Tue Jul 3 16:26:00 2018 -0300
busybox: Add patch to ignore -c on umount command
Fix error when umounting filesystem on shutdown with a systemd distro.
See more datails here: [https://github.com/systemd/systemd/issues/7786]
Signed-off-by: Fabio Berton <fabio.berton at ossystems.com.br>
Signed-off-by: Richard Purdie <richard.purdie at linuxfoundation.org>
commit a2391723d1ca42583fd29822ea031094c1710009
Author: Robert Yang <liezhi.yang at windriver.com>
Date: Tue Jul 3 12:11:57 2018 +0800
ccache: 3.3.5 -> 3.4.2
* The license file is changed to LICENSE.adoc, it is still GPLv3+.
* Removed Revert-Create-man-page-in-the-make-install-from-git-.patch, it was
used for fixing a build failure of no asciidoc, but now there is no such a
failure, so remove it.
* Refreshed 0002-dev.mk.in-fix-file-name-too-long.patch
Signed-off-by: Robert Yang <liezhi.yang at windriver.com>
Signed-off-by: Richard Purdie <richard.purdie at linuxfoundation.org>
commit ceda9fff8974b2d6db11b4996b24ba79fa912299
Author: Robert Yang <liezhi.yang at windriver.com>
Date: Tue Jul 3 12:11:54 2018 +0800
e2fsprogs: 1.43.8 -> 1.44.2
- Rebased Revert-mke2fs-enable-the-metadata_csum-and-64bit-fea.patch
- Removed backport patch 0001-libext2fs-fix-build-failure-in-swapfs.c-on-big-endia.patch
- The LIC_FILES_CHKSUM changed because it updated the address, others are the same
Signed-off-by: Robert Yang <liezhi.yang at windriver.com>
Signed-off-by: Richard Purdie <richard.purdie at linuxfoundation.org>
commit 6fc6665c027934c0875602c9aee62c9df9088845
Author: Robert Yang <liezhi.yang at windriver.com>
Date: Tue Jul 3 12:11:53 2018 +0800
automake: 1.15.1 -> 1.16.1
* Refreshed the following patches:
- 0001-automake-Add-default-libtool_tag-to-cppasm.patch
- automake-replace-w-option-in-shebangs-with-modern-use-warnings.patch
- buildtest.patch
- new_rt_path_for_test-driver.patch
- performance.patch
- python-libdir.patch
Signed-off-by: Robert Yang <liezhi.yang at windriver.com>
Signed-off-by: Richard Purdie <richard.purdie at linuxfoundation.org>
commit c56b99a0ea54798f570537c5666d267c6626bcb8
Author: Ross Burton <ross.burton at intel.com>
Date: Tue Jul 3 14:27:21 2018 +0100
mesa: enable surfaceless platform
This platform is enabled by default but as we override the platform list doesn't
get enabled.
Signed-off-by: Ross Burton <ross.burton at intel.com>
Signed-off-by: Richard Purdie <richard.purdie at linuxfoundation.org>
commit f70812e296e6ef14143b63f021112ac7d2ab9f19
Author: Ross Burton <ross.burton at intel.com>
Date: Tue Jul 3 14:04:12 2018 +0100
libdrm: port to Meson
Drop the patch to install tests as the Meson build allows this.
Drop the patch to disable cunit as this predates recipe-specific-sysroots and
isn't required anymore.
As Meson always builds the test suite (instead of building before running it),
add a patch to fix compilation with musl.
Signed-off-by: Ross Burton <ross.burton at intel.com>
Signed-off-by: Richard Purdie <richard.purdie at linuxfoundation.org>
commit 967de57de4f0fd853463ea24963aef8516e3bce0
Author: Ross Burton <ross.burton at intel.com>
Date: Tue Jul 3 14:04:11 2018 +0100
meson: validate cpu_family
Meson has a defined list of known CPU families but these are not currently
validated, so mistakes in cross files or new architectures are not noticed.
Backport a patch from upstream which warns on unknown architectures, but tweak
it to fatally error instead. When we upgrade to Meson 0.47 the first half of
this patch can be dropped.
Signed-off-by: Ross Burton <ross.burton at intel.com>
Signed-off-by: Richard Purdie <richard.purdie at linuxfoundation.org>
commit 49c55c7d92e208202cc19d5299ea960f53691ef7
Author: Ross Burton <ross.burton at intel.com>
Date: Tue Jul 3 14:04:10 2018 +0100
meson: map architecture to correct values in cross file
The cross file specifies the host/target cpu_family, which should be one of a
defined set of values[1] but if it isn't Meson won't complain and instead
recipes may behave unexpectedly.
[1] http://mesonbuild.com/Reference-tables.html#cpu-families
Signed-off-by: Ross Burton <ross.burton at intel.com>
Signed-off-by: Richard Purdie <richard.purdie at linuxfoundation.org>
commit 31291c25db8b8fb3994287e8ee124335d9af1788
Author: Ross Burton <ross.burton at intel.com>
Date: Tue Jul 3 14:04:09 2018 +0100
meson: various class improvements
- Ensure that the PACKAGECONFIG arguments are always in EXTRA_OEMESON
- Log the arguments that are being passed in do_configure.
- Do verbose builds so the compile logs are useful for debugging build problems
Signed-off-by: Ross Burton <ross.burton at intel.com>
Signed-off-by: Richard Purdie <richard.purdie at linuxfoundation.org>
-----------------------------------------------------------------------
Summary of changes:
meta/classes/meson.bbclass | 23 +++-
meta/classes/multilib.bbclass | 2 +
meta/conf/distro/include/distro_alias.inc | 1 -
meta/conf/distro/include/maintainers.inc | 1 -
.../busybox/busybox/umount-ignore-c.patch | 37 +++++++
meta/recipes-core/busybox/busybox_1.27.2.bb | 1 +
.../packagegroup-core-tools-testapps.bb | 1 -
meta/recipes-core/util-linux/util-linux.inc | 5 +-
...utomake-Add-default-libtool_tag-to-cppasm.patch | 18 ++--
...tion-in-shebangs-with-modern-use-warnings.patch | 68 +++---------
.../automake/automake/buildtest.patch | 20 +++-
.../automake/new_rt_path_for_test-driver.patch | 22 +++-
.../automake/automake/performance.patch | 19 +++-
.../automake/automake/python-libdir.patch | 19 ++--
.../{automake_1.15.1.bb => automake_1.16.1.bb} | 4 +-
meta/recipes-devtools/ccache/ccache_3.3.5.bb | 12 ---
meta/recipes-devtools/ccache/ccache_3.4.2.bb | 11 ++
.../0002-dev.mk.in-fix-file-name-too-long.patch | 15 +--
...te-man-page-in-the-make-install-from-git-.patch | 33 ------
meta/recipes-devtools/e2fsprogs/e2fsprogs.inc | 2 +-
...ix-build-failure-in-swapfs.c-on-big-endia.patch | 40 -------
...fs-enable-the-metadata_csum-and-64bit-fea.patch | 12 +--
.../{e2fsprogs_1.43.8.bb => e2fsprogs_1.44.2.bb} | 3 +-
meta/recipes-devtools/go/go-1.10.inc | 6 +-
meta/recipes-devtools/go/go-1.9.inc | 6 +-
meta/recipes-devtools/meson/meson.inc | 1 +
.../meson/meson/validate-cpu.patch | 118 +++++++++++++++++++++
...installing-execute-package-scriptlets-wit.patch | 35 +++++-
...ac-Allow-explicit-enabling-of-cunit-tests.patch | 53 ---------
.../recipes-graphics/drm/libdrm/installtests.patch | 25 -----
meta/recipes-graphics/drm/libdrm/musl-ioctl.patch | 35 ++++++
meta/recipes-graphics/drm/libdrm_2.4.92.bb | 22 ++--
meta/recipes-graphics/fstests/fstests_git.bb | 19 ----
meta/recipes-graphics/mesa/mesa.inc | 3 +-
34 files changed, 372 insertions(+), 320 deletions(-)
create mode 100644 meta/recipes-core/busybox/busybox/umount-ignore-c.patch
rename meta/recipes-devtools/automake/{automake_1.15.1.bb => automake_1.16.1.bb} (89%)
delete mode 100644 meta/recipes-devtools/ccache/ccache_3.3.5.bb
create mode 100644 meta/recipes-devtools/ccache/ccache_3.4.2.bb
delete mode 100644 meta/recipes-devtools/ccache/files/Revert-Create-man-page-in-the-make-install-from-git-.patch
delete mode 100644 meta/recipes-devtools/e2fsprogs/e2fsprogs/0001-libext2fs-fix-build-failure-in-swapfs.c-on-big-endia.patch
rename meta/recipes-devtools/e2fsprogs/{e2fsprogs_1.43.8.bb => e2fsprogs_1.44.2.bb} (97%)
create mode 100644 meta/recipes-devtools/meson/meson/validate-cpu.patch
delete mode 100644 meta/recipes-graphics/drm/libdrm/0001-configure.ac-Allow-explicit-enabling-of-cunit-tests.patch
delete mode 100644 meta/recipes-graphics/drm/libdrm/installtests.patch
create mode 100644 meta/recipes-graphics/drm/libdrm/musl-ioctl.patch
delete mode 100644 meta/recipes-graphics/fstests/fstests_git.bb
hooks/post-receive
--
More information about the yocto-security
mailing list