GPLV3 and BSD portions were originally placed in the same package.
The GPLv3 portion has been seperated into pcsc-lite-spy and
pcsc-lite-spy-dev so the package can be used with GPLv3 blacklisted.
Signed-off-by: Martin Jansa <Martin.Jansa@gmail.com>
(cherry picked from commit 54c7e784c7)
Signed-off-by: Michael Davis <michael.davis@essvote.com>
Signed-off-by: Armin Kuster <akuster808@gmail.com>
Remove various patches no longer referenced by SRC_URI.
Signed-off-by: Andre McCurdy <armccurdy@gmail.com>
Signed-off-by: Martin Jansa <Martin.Jansa@gmail.com>
Signed-off-by: Armin Kuster <akuster808@gmail.com>
Move variable expansion of @SBINDIR@, @LOCALSTATEDIR@, and @BASEBINDIR@
earlier during install, to before the systemd service file is installed
by an automake rule.
Signed-off-by: Ian Ray <ian.ray@ge.com>
Signed-off-by: Denys Dmytriyenko <denys@ti.com>
Signed-off-by: Armin Kuster <akuster808@gmail.com>
This allow the fetching of packages in a backward compatible way[1],
using un-hashed packages.
1. https://bitbucket.org/pypa/pypi/issues/438/backwards-compatible-un-hashed-package
A equivalent fix is available on master in commit 7edad4d (pypi:
update the base pypi url to use the package info without requiring the
hash) so this is really a backport but without unrelated changes.
Signed-off-by: Otavio Salvador <otavio@ossystems.com.br>
Acked-by: Tim Orling (Intel) <ticotimo@gmail.com>
Tested-by: Tim Orling (Intel) <ticotimo@gmail.com>
Acked-by: Armin Kuster <akuster808@gmail.com>
Signed-off-by: Martin Jansa <Martin.Jansa@gmail.com>
This version includes fix for CVE-2016-0787
and other changes, for details please see:
https://www.libssh2.org/changes.html
Signed-off-by: Jackie Huang <jackie.huang@windriver.com>
Signed-off-by: Martin Jansa <Martin.Jansa@gmail.com>
(cherry picked from commit df5141af8d)
Signed-off-by: Armin Kuster <akuster808@gmail.com>
Upgrade mariadb from 5.5.46 to 5.5.50.
* update runtime dependency of mariadb-setupdb which requires command install
[AK]
This update appears to be mostly bug fixes and is why is was merge from master.
plus the following securiy fixes
5.5.49:
CVE-2016-0647 CVE-2016-0648 CVE-2016-0666 CVE-2016-0643
CVE-2016-5444 CVE-2016-3452
5.5.48:
CVE-2016-0640 CVE-2016-0644 CVE-2016-0646 CVE-2016-0649
CVE-2016-0650 CVE-2016-0641
5.5.47:
CVE-2016-0546 CVE-2016-0505 CVE-2016-0596 CVE-2016-0597
CVE-2016-0616 CVE-2016-0598 CVE-2016-0600 CVE-2016-0606
CVE-2016-0608 CVE-2016-0609 CVE-2016-0642 CVE-2016-0651
CVE-2016-2047
Signed-off-by: Kai Kang <kai.kang@windriver.com>
Signed-off-by: Martin Jansa <Martin.Jansa@gmail.com>
(cherry picked from commit 6255219b93)
Signed-off-by: Armin Kuster <akuster808@gmail.com>
* Replace the usage of readdir_r() with readdir()
to address a compilation error under glibc 2.24
due to the deprecation of readdir_r
| ../../collectd-5.5.0/src/vserver.c: In function 'vserver_read':
| ../../collectd-5.5.0/src/vserver.c:167:3: error: 'readdir_r' is deprecated [-Werror=deprecated-declarations]
| status = readdir_r (proc, (struct dirent *) dirent_buffer, &dent);
| ^~~~~~
| In file included from /buildarea4/myu2/build/prj_test_20160722/bitbake_build/tmp/sysroots/qemux86/usr/include/features.h:368:0,
| from /buildarea4/myu2/build/prj_test_20160722/bitbake_build/tmp/sysroots/qemux86/usr/include/stdio.h:27,
| from ../../collectd-5.5.0/src/daemon/collectd.h:34,
| from ../../collectd-5.5.0/src/vserver.c:29:
| /buildarea4/myu2/build/prj_test_20160722/bitbake_build/tmp/sysroots/qemux86/usr/include/dirent.h:189:12: note: declared here
| extern int __REDIRECT (readdir_r,
| ^
[1]https://sourceware.org/git/gitweb.cgi?p=glibc.git;a=commitdiff;h=7584a3f96de88d5eefe5d6c634515278cbfbf052;hp=8d9c92017d85f23ba6a2b3614b2f2bcf1820d6f0
Signed-off-by: Mingli Yu <mingli.yu@windriver.com>
Signed-off-by: Martin Jansa <Martin.Jansa@gmail.com>
(cherry picked from commit 9bf3e362e7)
Signed-off-by: Armin Kuster <akuster808@gmail.com>
This update is mostly bug fixes.
Includes: CVE-2016-4979 and CVE-2016-5387 and is why I merged from master.
Signed-off-by: Derek Straka <derek@asterius.io>
Signed-off-by: Martin Jansa <Martin.Jansa@gmail.com>
(cherry picked from commit 7707dd5bc8)
Signed-off-by: Armin Kuster <akuster808@gmail.com>
Otherwise the dependency on intltool-dev is icluded
mistakenly to RRECOMMENDS of the libxfce4ui-dev package.
Signed-off-by: Dmitry Rozhkov <dmitry.rozhkov@linux.intel.com>
Signed-off-by: Martin Jansa <Martin.Jansa@gmail.com>
(cherry picked from commit e7aeb11f7c)
Signed-off-by: Armin Kuster <akuster808@gmail.com>
The net-snmp-server package is a meta-package requiring
net-snmp-server-snmpd and net-snmp-server-snmptrapd package.
The net-snmp-server-snmpd package provides the startup scripts
not the meta net-snmp-server package.
Signed-off-by: Anders Wallin <anders.wallin@windriver.com>
Signed-off-by: Li Wang <li.wang@windriver.com>
Signed-off-by: Jackie Huang <jackie.huang@windriver.com>
Signed-off-by: Martin Jansa <Martin.Jansa@gmail.com>
Signed-off-by: Joe MacDonald <joe_macdonald@mentor.com>
(cherry picked from commit 4fbb4d2371)
Signed-off-by: Armin Kuster <akuster808@gmail.com>
backport a patch to fixed snmpd crashing when an AgentX
subagent disconnect in the middle of processing of a request.
Signed-off-by: Zhu Yanjun <yanjun.zhu@windriver.com>
Signed-off-by: Jackie Huang <jackie.huang@windriver.com>
Signed-off-by: Martin Jansa <Martin.Jansa@gmail.com>
Signed-off-by: Joe MacDonald <joe_macdonald@mentor.com>
(cherry picked from commit 582eddb44e)
Signed-off-by: Armin Kuster <akuster808@gmail.com>
Some items now in DEPENDS are configuration options,
so we create PACKAGECONFIG[] entries for them.
We do not select pcsc-lite by default because it is
GPLv3.
Signed-off-by: Joe Slater <jslater@windriver.com>
Signed-off-by: Martin Jansa <Martin.Jansa@gmail.com>
Signed-off-by: Joe MacDonald <joe_macdonald@mentor.com>
(cherry picked from commit a27d4a75c5)
Signed-off-by: Armin Kuster <akuster808@gmail.com>
The installation and pkgconfig patches have to be reworked to consider
the install directories from OE.
Signed-off-by: Frederico Cadete <frederico.cadete@awtce.be>
Signed-off-by: Martin Jansa <Martin.Jansa@gmail.com>
(cherry picked from commit 377d67aa7c)
Signed-off-by: Armin Kuster <akuster808@gmail.com>
Using ${PN} in URL's will get messed up in multi-lib configs, where
that can be expanded to things like lib32-${BPN}.
We should use ${BPN} instead.
Signed-off-by: Frederico Cadete <frederico.cadete@awtce.be>
Signed-off-by: Martin Jansa <Martin.Jansa@gmail.com>
(cherry picked from commit 0e10dc716a)
Signed-off-by: Armin Kuster <akuster808@gmail.com>
We need to obey LDFLAGS to get the correct hash style for external toolchains,
and passing vars explicitly is better than relying on implicitly overriding
everything blindly from the environment.
Signed-off-by: Christopher Larson <chris_larson@mentor.com>
Signed-off-by: Martin Jansa <Martin.Jansa@gmail.com>
(cherry picked from commit 64d874f768)
Signed-off-by: Armin Kuster <akuster808@gmail.com>
We need to obey LDFLAGS to get the correct hash style for external toolchains.
Signed-off-by: Christopher Larson <chris_larson@mentor.com>
Signed-off-by: Martin Jansa <Martin.Jansa@gmail.com>
(cherry picked from commit cff7a47919)
Signed-off-by: Armin Kuster <akuster808@gmail.com>
The following vulnerabilities have been fixed:
* [1]wnpa-sec-2016-29
The SPOOLS dissector could go into an infinite loop. Discovered by
the CESG.
* [2]wnpa-sec-2016-30
The IEEE 802.11 dissector could crash. ([3]Bug 11585)
* [4]wnpa-sec-2016-31
The IEEE 802.11 dissector could crash. Discovered by Mateusz
Jurczyk. ([5]Bug 12175)
* [6]wnpa-sec-2016-32
The UMTS FP dissector could crash. ([7]Bug 12191)
* [8]wnpa-sec-2016-33
Some USB dissectors could crash. Discovered by Mateusz Jurczyk.
([9]Bug 12356)
* [10]wnpa-sec-2016-34
The Toshiba file parser could crash. Discovered by iDefense Labs.
([11]Bug 12394)
* [12]wnpa-sec-2016-35
The CoSine file parser could crash. Discovered by iDefense Labs.
([13]Bug 12395)
* [14]wnpa-sec-2016-36
The NetScreen file parser could crash. Discovered by iDefense Labs.
([15]Bug 12396)
* [16]wnpa-sec-2016-37
The Ethernet dissector could crash. ([17]Bug 12440)
Signed-off-by: Armin Kuster <akuster808@gmail.com>
Signed-off-by: Martin Jansa <Martin.Jansa@gmail.com>
Signed-off-by: Joe MacDonald <joe_macdonald@mentor.com>
(cherry picked from commit f316c4a326)
Signed-off-by: Armin Kuster <akuster808@gmail.com>
No CVE's assigned.
The following vulnerabilities have been fixed:
* [1]wnpa-sec-2016-19
The NCP dissector could crash. ([2]Bug 11591)
* [3]wnpa-sec-2016-20
TShark could crash due to a packet reassembly bug. ([4]Bug 11799)
* [5]wnpa-sec-2016-21
The IEEE 802.11 dissector could crash. ([6]Bug 11824, [7]Bug 12187)
* [8]wnpa-sec-2016-22
The PKTC dissector could crash. ([9]Bug 12206)
* [10]wnpa-sec-2016-23
The PKTC dissector could crash. ([11]Bug 12242)
* [12]wnpa-sec-2016-24
The IAX2 dissector could go into an infinite loop. ([13]Bug 12260)
* [14]wnpa-sec-2016-25
Wireshark and TShark could exhaust the stack. ([15]Bug 12268)
* [16]wnpa-sec-2016-26
The GSM CBCH dissector could crash. ([17]Bug 12278)
* [18]wnpa-sec-2016-27
MS-WSP dissector crash. ([19]Bug 12341)
Signed-off-by: Armin Kuster <akuster808@gmail.com>
Signed-off-by: Martin Jansa <Martin.Jansa@gmail.com>
Signed-off-by: Joe MacDonald <joe_macdonald@mentor.com>
(cherry picked from commit 7a9c626092)
Signed-off-by: Armin Kuster <akuster808@gmail.com>
CVE-2016-4957
CVE-2016-4953
CVE-2016-4954
CVE-2016-4955
CVE-2016-4956
For more info to see:
http://support.ntp.org/bin/view/Main/SecurityNotice#June_2016_ntp_4_2_8p8_NTP_Securi
Signed-off-by: Fan Xin <fan.xin@jp.fujitsu.com>
Signed-off-by: Martin Jansa <Martin.Jansa@gmail.com>
Signed-off-by: Joe MacDonald <joe_macdonald@mentor.com>
(cherry picked from commit 13db3c65f5)
Signed-off-by: Armin Kuster <akuster808@gmail.com>
Nano recipe has incorrectly stated GPLv2 license where actually it is GPLv3.
Signed-off-by: Vesa Jääskeläinen <dachaac@gmail.com>
Signed-off-by: Martin Jansa <Martin.Jansa@gmail.com>
(cherry picked from commit e5f01cae38)
Signed-off-by: Armin Kuster <akuster808@gmail.com>
Add a 'initrd' PACKAGECONFIG to disable emission of the plymouth-initrd
package which includes initramfs files for use by dracut. Disabling this will
avoid the runtime dependency on dracut, which is useful if one doesn't need or
want dracut and doesn't want to pull in meta-initramfs.
Signed-off-by: Christopher Larson <chris_larson@mentor.com>
Signed-off-by: Martin Jansa <Martin.Jansa@gmail.com>
(cherry picked from commit 240e2ebe43)
Signed-off-by: Armin Kuster <akuster808@gmail.com>
Rework how variables are passed in to ensure that more of our flag vars are
obeyed, make it obey more of our target path vars, and use fewer of its
hardcoded flags. Also add verbosity to the compile output for debugging.
Without this, errors were seen for us:
| In file included from .../lib/gcc/i686-pc-linux-gnu/5.2.0/include-fixed/64/sgxx-glibc/syslimits.h:7:0,
| from .../lib/gcc/i686-pc-linux-gnu/5.2.0/include-fixed/64/sgxx-glibc/limits.h:34,
| from luaconf.h:12,
| from lua.h:16,
| from lj_arch.h:9:
| .../lib/gcc/i686-pc-linux-gnu/5.2.0/include-fixed/64/sgxx-glibc/limits.h:168:61: fatal error: limits.h: No such file or directory
| compilation terminated.
| Makefile:233: *** Unsupported target architecture. Stop.
| make[1]: Leaving directory '.../luajit/2.0.4-r0/LuaJIT-2.0.4/src'
Signed-off-by: Christopher Larson <chris_larson@mentor.com>
Signed-off-by: Martin Jansa <Martin.Jansa@gmail.com>
(cherry picked from commit 852cd67b91)
Signed-off-by: Armin Kuster <akuster808@gmail.com>
Example:
WARNING: dvb-apps-1.1.1-r0 do_package_qa: QA Issue: /usr/bin/dvbdate contained in package dvbdate requires libucsi.so, but no providers found in RDEPENDS_dvbdate? [file-rdeps]
WARNING: dvb-apps-1.1.1-r0 do_package_qa: QA Issue: /usr/bin/dvbtraffic contained in package dvbtraffic requires libdvbapi.so, but no providers found in RDEPENDS_dvbtraffic? [file-rdeps]
WARNING: dvb-apps-1.1.1-r0 do_package_qa: QA Issue: /usr/bin/dvbscan contained in package dvb-scan requires libdvbapi.so, but no providers found in RDEPENDS_dvb-scan? [file-rdeps]
WARNING: dvb-apps-1.1.1-r0 do_package_qa: QA Issue: /usr/bin/gotox contained in package dvb-apps requires libdvbapi.so, but no providers found in RDEPENDS_dvb-apps? [file-rdeps]
WARNING: dvb-apps-1.1.1-r0 do_package_qa: QA Issue: /usr/bin/femon contained in package dvb-femon requires libdvbapi.so, but no providers found in RDEPENDS_dvb-femon? [file-rdeps]
WARNING: dvb-apps-1.1.1-r0 do_package_qa: QA Issue: /usr/bin/dvbnet contained in package dvbnet requires libdvbapi.so, but no providers found in RDEPENDS_dvbnet? [file-rdeps]
and
WARNING: dvb-apps-1.1.1-r0 do_package_qa: QA Issue: /usr/bin/dvbscan contained in package dvb-scan requires libdvbcfg.so, but no providers found in RDEPENDS_dvb-scan? [file-rdeps]
WARNING: dvb-apps-1.1.1-r0 do_package_qa: QA Issue: /usr/bin/gotox contained in package dvb-apps requires libdvbapi.so, but no providers found in RDEPENDS_dvb-apps? [file-rdeps]
Signed-off-by: Armin Kuster <akuster808@gmail.com>
Signed-off-by: Martin Jansa <Martin.Jansa@gmail.com>
(cherry picked from commit 350bd0bee4)
Signed-off-by: Armin Kuster <akuster808@gmail.com>
Signed-off-by: Jonathan Liu <net147@gmail.com>
Signed-off-by: Martin Jansa <Martin.Jansa@gmail.com>
Signed-off-by: Joe MacDonald <joe_macdonald@mentor.com>
(cherry picked from commit 7be16bce81)
Signed-off-by: Armin Kuster <akuster808@gmail.com>
Signed-off-by: Jonathan Liu <net147@gmail.com>
Signed-off-by: Martin Jansa <Martin.Jansa@gmail.com>
Signed-off-by: Joe MacDonald <joe_macdonald@mentor.com>
(cherry picked from commit 126e48c2a0)
Signed-off-by: Armin Kuster <akuster808@gmail.com>
Signed-off-by: Jonathan Liu <net147@gmail.com>
Signed-off-by: Martin Jansa <Martin.Jansa@gmail.com>
Signed-off-by: Joe MacDonald <joe_macdonald@mentor.com>
(cherry picked from commit 81f3fb09de)
Signed-off-by: Armin Kuster <akuster808@gmail.com>
Fixes the following compile error:
| [ 6/27] Compiling lib/replace/test/testsuite.c
| In file included from ../lib/replace/test/testsuite.c:49:0:
| ../lib/replace/system/aio.h:29:20: fatal error: libaio.h: No such file or directory
| compilation terminated.
Signed-off-by: Jonathan Liu <net147@gmail.com>
Signed-off-by: Martin Jansa <Martin.Jansa@gmail.com>
Signed-off-by: Joe MacDonald <joe_macdonald@mentor.com>
(cherry picked from commit 18a1d69f86)
Signed-off-by: Armin Kuster <akuster808@gmail.com>
Add PACKAGECONFIG for cifsacl and update PACKAGECONFIG for cifsidmap
to make samba a conditional dependency. It is nice to be able to
get mount.cifs without needing to build samba.
Signed-off-by: S. Lockwood-Childs <sjl@vctlabs.com>
Signed-off-by: Martin Jansa <Martin.Jansa@gmail.com>
Signed-off-by: Joe MacDonald <joe_macdonald@mentor.com>
(cherry picked from commit a6a36710a1)
Signed-off-by: Armin Kuster <akuster808@gmail.com>
fix for QA Warning: No GNU_HASH in elf binary, it won't obey the default
LDFLAGS which results in QA Warning while building with external toolchain,
so adding the default LDFLAGS.
WARNING: netcat-openbsd-1.105-r0 do_package_qa:QA Issue: No GNU_HASH in the
elf binary:..nc.netcat-openbsd' [ldflags]
Signed-off-by: Shrikant Bobade <shrikant_bobade@mentor.com>
Signed-off-by: Martin Jansa <Martin.Jansa@gmail.com>
Signed-off-by: Joe MacDonald <joe_macdonald@mentor.com>
(cherry picked from commit d765990dd2)
Signed-off-by: Armin Kuster <akuster808@gmail.com>
1) error: file /usr/share/man/man1/mailq.1 from install of postfix-doc
conflicts with file from package esmtp-doc
2) error: file /usr/share/man/man1/newaliases.1 from install of postfix-doc
conflicts with file from package esmtp-doc
3) error: file /usr/share/man/man1/sendmail.1 from install of postfix-doc
conflicts with file from package esmtp-doc
Signed-off-by: Dai Caiyun <daicy.fnst@cn.fujitsu.com>
Signed-off-by: Martin Jansa <Martin.Jansa@gmail.com>
Signed-off-by: Joe MacDonald <joe_macdonald@mentor.com>
(cherry picked from commit a2256bb3bd)
Signed-off-by: Armin Kuster <akuster808@gmail.com>
1) error: file /usr/share/man/man1/mailq.1 from install of postfix-doc
conflicts with file from package esmtp-doc
2) error: file /usr/share/man/man1/newaliases.1 from install of postfix-doc
conflicts with file from package esmtp-doc
3) error: file /usr/share/man/man1/sendmail.1 from install of postfix-doc
conflicts with file from package esmtp-doc
Signed-off-by: Dai Caiyun <daicy.fnst@cn.fujitsu.com>
Signed-off-by: Martin Jansa <Martin.Jansa@gmail.com>
Signed-off-by: Joe MacDonald <joe_macdonald@mentor.com>
(cherry picked from commit 7832c67350)
Signed-off-by: Armin Kuster <akuster808@gmail.com>
glibc deprecate union wait and remove support from wait functions
https://sourceware.org/ml/libc-alpha/2016-02/msg00342.html
change rlogin.c accordingly
Signed-off-by: Armin Kuster <akuster808@gmail.com>
Signed-off-by: Martin Jansa <Martin.Jansa@gmail.com>
Signed-off-by: Joe MacDonald <joe_macdonald@mentor.com>
(cherry picked from commit 62e3df2ddb)
Signed-off-by: Armin Kuster <akuster808@gmail.com>
client_side.cc in Squid before 3.5.18 and 4.x before 4.0.10
does not properly ignore the Host header when absolute-URI
is provided, which allows remote attackers to conduct
cache-poisoning attacks via an HTTP request.
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2016-4553
Backported upstream patch:
http://www.squid-cache.org/Versions/v3/3.5/changesets/squid-3.5-14039.patch
Signed-off-by: Catalin Enache <catalin.enache@windriver.com>
Signed-off-by: Martin Jansa <Martin.Jansa@gmail.com>
Signed-off-by: Joe MacDonald <joe_macdonald@mentor.com>
(cherry picked from commit d46c89ae44)
Signed-off-by: Armin Kuster <akuster808@gmail.com>
An mdns package is provided by meta-intel-iot-middleware.
Signed-off-by: Andre McCurdy <armccurdy@gmail.com>
Signed-off-by: Martin Jansa <Martin.Jansa@gmail.com>
Signed-off-by: Joe MacDonald <joe_macdonald@mentor.com>
(cherry picked from commit 9a13040d7b)
Signed-off-by: Armin Kuster <akuster808@gmail.com>
To fix error as following:
file /var/run from install of openct-0.6.20-r0
conflicts with file from package base-files-3.0.14
Signed-off-by: Dai Caiyun <daicy.fnst@cn.fujitsu.com>
Signed-off-by: Martin Jansa <Martin.Jansa@gmail.com>
(cherry picked from commit 387824f176)
Signed-off-by: Armin Kuster <akuster808@gmail.com>
fix errors as following:
file /var/run from install of iptraf-3.0.0-r0.x86_64
conflicts with file from package base-files-3.0.14-r89.ubinux_x86_64
Signed-off-by: Dai Caiyun <daicy.fnst@cn.fujitsu.com>
Signed-off-by: Martin Jansa <Martin.Jansa@gmail.com>
(cherry picked from commit e49c2c2ba0)
Signed-off-by: Armin Kuster <akuster808@gmail.com>
