[yocto-security] [OE-core CVE] branch master-next updated. uninative-2.6-986-gbd79839

cve-notice at lists.openembedded.org cve-notice at lists.openembedded.org
Wed Oct 2 02:10:41 PDT 2019


This is an automated email from the git hooks/post-receive script. It was
generated because a ref change was pushed to the repository containing
the project "".

The branch, master-next has been updated
       via  bd798394436f4a240dc300540c42d01c14651cdf (commit)
       via  402eef252385b391d1b60fc77d758cc4c8de1b3c (commit)
       via  6ff71dd308b1611df7a8ea811a79b7cb884c99e9 (commit)
       via  b1afaccdba31341cace4b8d84d118ca76098587e (commit)
       via  90dbe9019c81e25923ed450df80b4401d16287b4 (commit)
       via  f5bb06129391b62f7dff400f10a0b4d2934625d2 (commit)
       via  49c4febcbf66587b01559d208873ca1d563ed3e0 (commit)
       via  3bde502f612f17b6ed928b04cf5c4ba9ad54d598 (commit)
       via  6792307a41c71786841f8fa6224af81be201688e (commit)
       via  a37aafc691ea89e326352e360bfd97ad473f4287 (commit)
       via  37eabe25d1e6dffee8e96675c42c25c64dd3bc70 (commit)
       via  7472bdb6ed1039b7f38afc728c034a13d0bbee0e (commit)
       via  eba857d3e52f83d426e95fa8373799da058f9484 (commit)
       via  b57304c1afb73a698a1c40a017d433e4d81a8df2 (commit)
       via  ebc974be12c3e83e961c99c24fde267d6c8e8bfc (commit)
       via  f78248a2380bbbbf271b5bb02c762f5bc7a3a92e (commit)
       via  8adf98e63fefeaf2c841a038a4497f9845bc7b04 (commit)
       via  14cca8246423c3af8b8478e391daf49a908d696c (commit)
      from  9973f89dafdf9d21f4021f59f1f4669f4ac13aff (commit)

Those revisions listed above that are new to this repository have
not appeared on any other notification email; so we list those
revisions in full, below.

- Log -----------------------------------------------------------------
commit bd798394436f4a240dc300540c42d01c14651cdf
Author: Khem Raj <raj.khem at gmail.com>
Date:   Sat Sep 28 16:16:16 2019 -0700

    core-image-sato-sdk-ptest: Remove valgrind ptests for riscv
    
    valgrind is not yet ported to riscv
    
    Signed-off-by: Khem Raj <raj.khem at gmail.com>
    Signed-off-by: Ross Burton <ross.burton at intel.com>

-----------------------------------------------------------------------

Summary of changes:
 .../bluez5/bluez5/CVE-2018-10910.patch             | 726 ++++++++-------------
 .../initrdscripts/initramfs-framework/rootfs       |   5 +
 ...ainer-for-riscv-floating-point-state-to-_.patch |  67 ++
 meta/recipes-core/musl/musl_git.bb                 |   1 +
 meta/recipes-devtools/opkg/opkg_0.4.1.bb           |   4 +-
 .../python/python3/python3-manifest.json           |  16 +-
 meta/recipes-devtools/python/python3_3.7.4.bb      |   2 +-
 meta/recipes-devtools/python/python_2.7.16.bb      |   2 +-
 ...c-check-finite-isinf-isnan-as-macros-firs.patch | 101 +++
 .../ruby/ruby/ruby-CVE-2017-9226.patch             |  32 -
 .../ruby/ruby/ruby-CVE-2017-9228.patch             |  34 -
 meta/recipes-devtools/ruby/ruby_2.5.5.bb           |  10 +-
 ...-2017-17052-Avoid-unsafe-exits-in-threads.patch |  64 ++
 meta/recipes-extended/ltp/ltp_20190517.bb          |   1 +
 meta/recipes-extended/shadow/shadow.inc            |   2 +-
 meta/recipes-graphics/mesa/mesa.inc                |   2 +
 ...001-Skip-thai-break-tests-without-libthai.patch |  36 +
 meta/recipes-graphics/pango/pango_1.44.6.bb        |   3 +-
 ...gust-Makefile.am-Add-install-lib-to-setup.patch |   2 +-
 meta/recipes-multimedia/ffmpeg/ffmpeg_4.2.1.bb     |   2 +
 .../libtiff/tiff/CVE-2019-14973.patch              | 415 ++++++++++++
 meta/recipes-multimedia/libtiff/tiff_4.0.10.bb     |   4 +-
 .../images/core-image-sato-sdk-ptest.bb            |   2 +
 23 files changed, 974 insertions(+), 559 deletions(-)
 create mode 100644 meta/recipes-core/musl/musl/0001-Change-container-for-riscv-floating-point-state-to-_.patch
 create mode 100644 meta/recipes-devtools/ruby/ruby/0001-configure.ac-check-finite-isinf-isnan-as-macros-firs.patch
 delete mode 100644 meta/recipes-devtools/ruby/ruby/ruby-CVE-2017-9226.patch
 delete mode 100644 meta/recipes-devtools/ruby/ruby/ruby-CVE-2017-9228.patch
 create mode 100644 meta/recipes-extended/ltp/ltp/0001-cve-2017-17052-Avoid-unsafe-exits-in-threads.patch
 create mode 100644 meta/recipes-graphics/pango/pango/0001-Skip-thai-break-tests-without-libthai.patch
 create mode 100644 meta/recipes-multimedia/libtiff/tiff/CVE-2019-14973.patch


hooks/post-receive
-- 



More information about the yocto-security mailing list