- Feb 18, 2016
-
-
Peter Korsgaard authored
Signed-off-by:Peter Korsgaard <peter@korsgaard.com>
-
Max Filippov authored
Despite the documentation and the comment in xtensa_move_literals, in the presence of --text-section-literals and --auto-litpools literals are moved from the separate literal sections into .init and .fini, because the check in the xtensa_move_literals is incorrect. This fixes build errors seen with projects that have .init/.fini and use text-section-literals. Backported from: 4111950f363221c4641dc2f33bea61cc94f34906 Reported-by:
Waldemar Brodkorb <mail@waldemar-brodkorb.de> Signed-off-by:
Max Filippov <jcmvbkbc@gmail.com> Signed-off-by:
-
Gustavo Zacarias authored
Signed-off-by:
Gustavo Zacarias <gustavo@zacarias.com.ar> Signed-off-by:
-
Gustavo Zacarias authored
Signed-off-by:
-
Jörg Krause authored
Fixes security vulnerabilites [1]: - CVE-2016-2086 - CVE-2016-2216 Also switch to the xz compressed tar file now available for v0.10 builds from v0.10.42 onward. [1] https://nodejs.org/en/blog/vulnerability/february-2016-security-releases/ Signed-off-by:
Jörg Krause <joerg.krause@embedded.rocks> Signed-off-by:
-
- Feb 17, 2016
-
-
Peter Korsgaard authored
Signed-off-by: -
Peter Korsgaard authored
Signed-off-by: -
Romain Naour authored
Fixes Buildroot generated toolchains: http://autobuild.buildroot.net/results/89b/89b46f97e2736d9337f888c761259e7bc7cdd128 Upstream bug: https://sourceware.org/bugzilla/show_bug.cgi?id=19405 Signed-off-by:
Romain Naour <romain.naour@gmail.com> Signed-off-by:
-
Zoltan Gyarmati authored
The icu bug http://bugs.icu-project.org/trac/ticket/11959 also hit me, but oddly enough only when running build build server via Jenkins. This patch adds the upstream fix for the mentioned bug, so the patch most likely can be removed at the next version bump. Signed-off-by:
Zoltan Gyarmati <mr.zoltan.gyarmati@gmail.com> Signed-off-by:
-
Gustavo Zacarias authored
Otherwise it shows up for other architectures with minimal toolchains giving the impression that it's available/tested. Signed-off-by:
-
Gustavo Zacarias authored
Fixes: http://autobuild.buildroot.net/results/56d/56dd530d53489220d0080480310b8dc150cf1b2e/ Signed-off-by:
Bernd Kuhls <bernd.kuhls@t-online.de> Signed-off-by:
-
Angelo Compagnucci authored
This patch adds a minimal working configuration for Acmesystems Arietta g25. [Peter: fix whitespace, use same-as-kernel for kernel headers version] Signed-off-by:
Angelo Compagnucci <angelo.compagnucci@gmail.com> Signed-off-by:
-
Peter Korsgaard authored
This includes a fix for a security related bug related to the listener mount_point feature. The bug allows a client that is restricted to a mount_point to publish messages outside this hierarchy using the last will and testament feature. Signed-off-by: -
Gustavo Zacarias authored
Fix for 2.21 and 2.22: CVE-2015-7547 - glibc getaddrinfo stack-based buffer overflow. For 2.21: CVE-2014-8121 - Unexpected closing of nss_files databases after lookups causes denial of service. CVE-2015-1781 - buffer overflow in gethostbyname_r() and related functions with misaligned buffer. Signed-off-by:
-
- Feb 16, 2016
-
-
Bernd Kuhls authored
When libssh2 was compiled before, mc will use it as optional dependency: $ output/host/usr/bin/i586-buildroot-linux-uclibc-readelf -a output/target/usr/bin/mc | grep NEEDED 0x00000001 (NEEDED) Shared library: [libncurses.so.5] 0x00000001 (NEEDED) Shared library: [libssh2.so.1] 0x00000001 (NEEDED) Shared library: [libz.so.1] 0x00000001 (NEEDED) Shared library: [libgcrypt.so.20] 0x00000001 (NEEDED) Shared library: [libgpg-error.so.0] 0x00000001 (NEEDED) Shared library: [libglib-2.0.so.0] 0x00000001 (NEEDED) Shared library: [libpthread.so.1] 0x00000001 (NEEDED) Shared library: [libintl.so.8] 0x00000001 (NEEDED) Shared library: [libc.so.1] 0x00000001 (NEEDED) Shared library: [libiconv.so.2] Signed-off-by:
Thomas Petazzoni <thomas.petazzoni@free-electrons.com>
-
Bernd Kuhls authored
When xz was compiled before, tiff will use it as optional dependency: $ output/host/usr/bin/i586-buildroot-linux-uclibc-readelf -a output/target/usr/lib/libtiff.so.5.2.4 | grep NEEDED 0x00000001 (NEEDED) Shared library: [liblzma.so.5] 0x00000001 (NEEDED) Shared library: [libjpeg.so.9] 0x00000001 (NEEDED) Shared library: [libz.so.1] 0x00000001 (NEEDED) Shared library: [libm.so.1] 0x00000001 (NEEDED) Shared library: [libc.so.1] Signed-off-by:
-
Bernd Kuhls authored
When xz was compiled before, gdb will use it as optional dependency: $ output/host/usr/bin/i586-buildroot-linux-uclibc-readelf -a output/target/usr/bin/gdb | grep NEEDED 0x00000001 (NEEDED) Shared library: [libdl.so.1] 0x00000001 (NEEDED) Shared library: [libncurses.so.5] 0x00000001 (NEEDED) Shared library: [libz.so.1] 0x00000001 (NEEDED) Shared library: [libm.so.1] 0x00000001 (NEEDED) Shared library: [liblzma.so.5] 0x00000001 (NEEDED) Shared library: [libc.so.1] Signed-off-by:
Arnout Vandecappelle (Essensium/Mind) <arnout@mind.be> Signed-off-by:
-
Bernd Kuhls authored
When libpcap was compiled before, ulogd will use it as optional dependency: $ output/host/usr/bin/i586-buildroot-linux-uclibc-readelf -a output/target/usr/lib/ulogd/ulogd_output_PCAP.so | grep NEEDED 0x00000001 (NEEDED) Shared library: [libpcap.so.1] 0x00000001 (NEEDED) Shared library: [libc.so.1] Signed-off-by:
-
Bernd Kuhls authored
When jansson was compiled before, ulogd will use it as optional dependency: $ output/host/usr/bin/i586-buildroot-linux-uclibc-readelf -a output/target/usr/lib/ulogd/ulogd_output_JSON.so | grep NEEDED 0x00000001 (NEEDED) Shared library: [libjansson.so.4] 0x00000001 (NEEDED) Shared library: [libc.so.1] Signed-off-by:
-
Bernd Kuhls authored
When xz was compiled before, links will use it as optional dependency: $ output/host/usr/bin/i586-buildroot-linux-uclibc-readelf -a output/target/usr/bin/links | grep NEEDED 0x00000001 (NEEDED) Shared library: [liblzma.so.5] 0x00000001 (NEEDED) Shared library: [libbz2.so.1.0] 0x00000001 (NEEDED) Shared library: [libz.so.1] 0x00000001 (NEEDED) Shared library: [libevent-2.0.so.5] 0x00000001 (NEEDED) Shared library: [libc.so.1] Signed-off-by:
-
Bernd Kuhls authored
When libevent was compiled before, links will use it as optional dependency: $ output/host/usr/bin/i586-buildroot-linux-uclibc-readelf -a output/target/usr/bin/links | grep NEEDED 0x00000001 (NEEDED) Shared library: [liblzma.so.5] 0x00000001 (NEEDED) Shared library: [libbz2.so.1.0] 0x00000001 (NEEDED) Shared library: [libz.so.1] 0x00000001 (NEEDED) Shared library: [libevent-2.0.so.5] 0x00000001 (NEEDED) Shared library: [libc.so.1] (xz support will be added with the next patch of this series) Signed-off-by:
-
Bernd Kuhls authored
When lz4 was compiled before, dovecot will use it as optional dependency: $ output/host/usr/bin/i586-buildroot-linux-uclibc-readelf -a output/target/usr/lib/dovecot/lib30_imap_zlib_plugin.so | grep NEEDED 0x00000001 (NEEDED) Shared library: [libz.so.1] 0x00000001 (NEEDED) Shared library: [liblzma.so.5] 0x00000001 (NEEDED) Shared library: [liblz4.so.1] 0x00000001 (NEEDED) Shared library: [libc.so.1] Signed-off-by:
-
Bernd Kuhls authored
When xz was compiled before, dovecot will use it as optional dependency: $ output/host/usr/bin/i586-buildroot-linux-uclibc-readelf -a output/target/usr/lib/dovecot/lib30_imap_zlib_plugin.so | grep NEEDED 0x00000001 (NEEDED) Shared library: [libz.so.1] 0x00000001 (NEEDED) Shared library: [liblzma.so.5] 0x00000001 (NEEDED) Shared library: [liblz4.so.1] 0x00000001 (NEEDED) Shared library: [libc.so.1] (lz4 support will be added with the next patch of this series) Signed-off-by:
-
Bernd Kuhls authored
The next patch of this series will add optional xz and lz4 support, to avoid adding new options for these compression packages simplify the configuration of dovecot by removing the options handling optional compression support. Signed-off-by:
-
Romain Naour authored
Fixes: http://autobuild.buildroot.net/results/993/9935cd0522d4f978ba2e788a690f66790686b76b Signed-off-by:
-
Gustavo Zacarias authored
Point to the official/proper one. Signed-off-by:
-
Gustavo Zacarias authored
Fixes: SQUID-2016:1 - Remote Denial of service issue in SSL/TLS processing. CVE-2016-2390 assigned. Signed-off-by:
-
Gustavo Zacarias authored
Fixes: CVE-2016-0766 - privilege escalation issue for users of PL/Java. CVE-2016-0773 - issue with regular expression (regex) parsing. Prior code allowed users to pass in expressions which included out-of-range Unicode characters, triggering a backend crash. This issue is critical for PostgreSQL systems with untrusted users or which generate regexes based on user input. Signed-off-by:
-
Martin Bark authored
Update 0003-Use-a-python-variable-instead-of-hardcoding-Python.patch for v5.5.0 to include the js2c.py tool. Fixes: http://autobuild.buildroot.net/results/87e9bbbb36f7fe4868d238ef6a7b72eb8cca7052/ http://autobuild.buildroot.net/results/f748c0956f71a7857d5cc9ae7bfe3c14357a078a/ Signed-off-by:
Martin Bark <martin@barkynet.com> Signed-off-by:
-
- Feb 15, 2016
-
-
Gustavo Zacarias authored
Fixes: CVE-2016-1521 - An exploitable out-of-bounds read vulnerability exists in the opcode handling functionality of Libgraphite. A specially crafted font can cause an out-of-bounds read resulting in arbitrary code execution. An attacker can provide a malicious font to trigger this vulnerability. CVE-2016-1522 - An exploitable NULL pointer dereference exists in the bidirectional font handling functionality of Libgraphite. A specially crafted font can cause a NULL pointer dereference resulting in a crash. An attacker can provide a malicious font to trigger this vulnerability. CVE-2016-1523 - An exploitable heap-based buffer overflow exists in the context item handling functionality of Libgraphite. A specially crafted font can cause a buffer overflow resulting in potential code execution. An attacker can provide a malicious font to trigger this vulnerability. Signed-off-by:
-
- Feb 14, 2016
-
-
Gabe Evans authored
* --with-dbuspolicydir, --with-dbussessionservicedir, and --with-dbussystemservicedir are no longer needed since these are defaults in recent releases. * --disable-dbus has no effect when combined with --disable-tests. The option itself only applies to tests, not the runtime. Signed-off-by:
Gabe Evans <gabe@hashrabbit.co> Acked-by:
-
Gabe Evans authored
Various DBus activated services fail to start with errors similar to: Unit dbus-org.freedesktop.hostname1.service failed to load: File exists. The message itself is rather vague and can be seen as a warning in systemd-networkd logs. Meanwhile, tools like hostnamectl don't work at all. The post-install target hook SYSTEMD_SANITIZE_PATH_IN_UNITS was replacing symlinks with duplicate files. The find command could have used -type f to avoid this but I instead chose to remove the hook since this fix doesn't seem to be needed anymore. Signed-off-by:
-
James Knight authored
Add the findfs utility option for util-linux package. Signed-off-by:
James Knight <james.knight@rockwellcollins.com> Cc: Zheng Yi <yzheng@techyauld.com> [Thomas: respect alphabetic ordering.] Signed-off-by:
-
James Knight authored
The e2fsprogs package's findfs option provides no capabilities. When the option is selected, a symbolic link is generated from findfs to e2label; however, e2label will not handle findfs since the respective code is explicitly disabled when `--disable-libblkid` is passed in. At this time, the e2fsprogs package only supports findfs capabilities when building its "private blkid library". Note that the `--disable-libblkid` configuration argument must remain to prevent conflicts with util-linux's libblkid and an e2fsprogs- generated variant (see e1ffc2f7). Since e2fsprogs cannot provide findfs capabilities, the option is being removed in this change. A following change will be introduced to include util-linux's findfs utility. Signed-off-by:
-
Romain Naour authored
The O3 optimization triggers a compiler bug with this toolchain, change it with 02. Fixes: http://autobuild.buildroot.net/results/2fb/2fb94ecfdc32761a09da35e6fcbdd512847ec911 Signed-off-by:
-
Thomas Petazzoni authored
CLOCK_MONOTONIC_RAW is a fairly recent addition, which may not be available in old C libraries/kernels. This commit adds a libraw1394 patch that makes the use of CLOCK_MONOTONIC_RAW optional. The patch has been submitted upstream. Fixes: http://autobuild.buildroot.net/results/198149e80be3e62eaf9f4731442031a1aa93409c/ Signed-off-by:
-
Thomas Petazzoni authored
This Byte order mark is not recognized by gcc < 4.4, which is the case on Blackfin where gcc 4.3.x is used. Since this BOM is not useful anyway, we simply remove it. The patch has been submitted upstream. Fixes: http://autobuild.buildroot.net/results/143c4c2a1d8527c97362ce11507e8b5a79dd0d6b/ Signed-off-by:
-
- Feb 13, 2016
-
-
Thomas Petazzoni authored
Otherwise, it fails to autoreconf with a weird error message: configure.ac:15: error: possibly undefined macro: AC_SUBST If this token and others are legitimate, please use m4_pattern_allow. See the Autoconf documentation. configure.ac:40: error: possibly undefined macro: AC_MSG_WARN Indeed, the configure.ac uses PKG_CHECK_MODULES(), so we need to have the corresponding m4 file installed by host-pkgconf. Signed-off-by: -
Peter Seiderer authored
Add musl libc detection (based on suggestions by Romain Naour and Arnout Vandecappelle) and add some tweaks for musl support (based on OpenWRT patch [1]). Fixes ([2]): checking the glibc version... unsupported version configure: error: Valgrind requires glibc version 2.2 or later Patch suggested upstream (see [3]). [1] https://dev.openwrt.org/browser/trunk/package/devel/valgrind/patches/200-musl_fix.patch?rev=46302 [2] http://autobuild.buildroot.org/results/7b0/7b048ba58918f0a08498c61327fcf35a85a84837 [3] https://bugs.kde.org/show_bug.cgi?id=359202 Signed-off-by:
Peter Seiderer <ps.report@gmx.net> Reviewed-by:
-
Gustavo Zacarias authored
libbsd uses clock_gettime() but doesn't check for it in librt. This causes breakage on old glibc versions (< 2.17). Fixes: http://autobuild.buildroot.net/results/a5b/a5b837d6d02ec96ac53c5b1c531a0c8e7eafeb9a/ Signed-off-by:
-
