- Nov 29, 2016
-
-
Vicente Olivert Riera authored
Fixed CVEs: - CVE-2016-9387 - CVE-2016-9388 - CVE-2016-9389 - CVE-2016-9390 - CVE-2016-9391 - CVE-2016-9392 - CVE-2016-9393 - CVE-2016-9394 - CVE-2016-9395 - CVE-2016-9396 - CVE-2016-9397 - CVE-2016-9398 - CVE-2016-9399 - CVE-2016-9557 - CVE-2016-9560 Changes to jasper.mk: - Switched site method to GitHub. 1.900.31 is not released as a tarball in the official website. - Autoreconf necessary since there isn't any configure script. We need to generate it. Signed-off-by:
Vicente Olivert Riera <Vincent.Riera@imgtec.com> Signed-off-by:
Peter Korsgaard <peter@korsgaard.com>
-
Baruch Siach authored
Avoid a redirect. Signed-off-by:
Baruch Siach <baruch@tkos.co.il> Signed-off-by:
-
- Nov 28, 2016
-
-
Peter Korsgaard authored
Signed-off-by: -
Peter Korsgaard authored
As detailed by Chris Evans, the vmnc decoder contains an integer overflow which can be exploited: https://scarybeastsecurity.blogspot.be/2016/11/0day-poc-risky-design-decisions-in.html Fixes CVE-2016-9445 and CVE-2016-9446. Signed-off-by:
-
Peter Korsgaard authored
Backport 2 patches from upstream (from 3.18-rc1) for gcc 5.x support and a patch from Marco Franceschetti (https://github.com/vonfritz/kernel/ ) to fix gcc 5.x compat issues in the bsp wifi drivers. Signed-off-by:
-
Jérôme Pouiller authored
ntpq and ntpdc may depends on libedit and libcap. $ arm-linux-readelf -d ./usr/bin/ntpdc | grep NEEDED 0x00000001 (NEEDED) Shared library: [libcap.so.2] 0x00000001 (NEEDED) Shared library: [libm.so.6] 0x00000001 (NEEDED) Shared library: [libedit.so.0] 0x00000001 (NEEDED) Shared library: [libncursesw.so.6] 0x00000001 (NEEDED) Shared library: [libssl.so.1.0.0] 0x00000001 (NEEDED) Shared library: [libcrypto.so.1.0.0] 0x00000001 (NEEDED) Shared library: [libpthread.so.0] 0x00000001 (NEEDED) Shared library: [libc.so.6] However, build order with these libraries is not defined. In order to keep things simple, we enforce build order even if ntpq/ntpdc are not selected. Signed-off-by:
Jérôme Pouiller <jezz@sysmic.org> [Thomas: use --without-lineeditlibs.] Signed-off-by:
Thomas Petazzoni <thomas.petazzoni@free-electrons.com>
-
Waldemar Brodkorb authored
Fixes: http://autobuild.buildroot.net/results/08a458572a2e9c599dd32b837b1e5c02a6721973 Signed-off-by:
Waldemar Brodkorb <wbx@openadk.org> Signed-off-by:
-
Peter Seiderer authored
Supplementary change the pgac_cv_snprintf_long_long_int_modifier from complete format '%lld' to modifier 'll' version only (forgotten in commit 02c43157 ([1])). Fixes Bug 9451 ([2]). [1] https://git.buildroot.net/buildroot/commit/?id=02c43157ab09f6fe4078fd1145fc9d403d66c089 [2] https://bugs.busybox.net/show_bug.cgi?id=9451 Reported-by:
Daniel <dde@innovaphone.com> Signed-off-by:
Peter Seiderer <ps.report@gmx.net> Signed-off-by:
-
Peter Korsgaard authored
As detailed by Chris Evans, the flic decoder contains a buffer overflow which can be exploited to cause arbitrary code execution as the user running gstreamer: https://scarybeastsecurity.blogspot.be/2016/11/0day-exploit-advancing-exploitation.html Fixes CVE-2016-9634, CVE-2016-9635 and CVE-2016-9636. add the upstream patches to fix this issue. Signed-off-by:
-
- Nov 27, 2016
-
-
Peter Korsgaard authored
Fixes CVE-2016-9556 (Heap buffer overflow in IsPixelGray). Signed-off-by:
-
Waldemar Brodkorb authored
Tested with a boot in Qemu (g3beige). Signed-off-by:
-
Waldemar Brodkorb authored
Fixes: http://autobuild.buildroot.net/results/6f296139633df24031b20d8bd5191e0f5928ec68 Signed-off-by:
-
Fabio Estevam authored
Kernel 4.8.11 brings commit 5f95e68daae397 ("clk: imx: fix integer overflow in AV PLL round rate"), which fixes a PLL calculation bug, so bump to this version. Signed-off-by:Fabio Estevam <festevam@gmail.com> Signed-off-by:
-
Peter Korsgaard authored
This reverts commit 8035ceb5. Moving to pseudo brought a number of issues (and longer compilation time), so lets stick with fakeroot now that the reported ubi issue has been worked around. Signed-off-by:
-
Peter Korsgaard authored
This reverts commit 71584038. Signed-off-by:
-
Peter Korsgaard authored
This reverts commit 325cff36. Signed-off-by:
-
Peter Korsgaard authored
This reverts commit c85cd189. Signed-off-by:
-
Peter Korsgaard authored
This reverts commit a1d602a7. Signed-off-by:
-
Peter Korsgaard authored
This reverts commit 74a3e75b. Signed-off-by:
-
Peter Korsgaard authored
This reverts commit 499f28fc. Signed-off-by:
-
Peter Korsgaard authored
Fixes #9386 GNU sed -i misbehaves on systems with SELinux enabled, as it tries to copy to the SELinux security context (xattr) from the source file to to the new destination file, which fails under fakeroot and leaves the file with 000 permissions, causing ubinize to fail when it cannot read to configuration file. So as a workaround, combine the install and tweak steps in a single sed with a redirect to the destination file instead. Signed-off-by:
-
- Nov 26, 2016
-
-
Fabio Estevam authored
Signed-off-by:
-
Fabio Estevam authored
Signed-off-by:
-
Arnout Vandecappelle authored
gcc 4.7 introduced the sync_8 builtin functions for ARM. For ARM < v7, this requires calling into the kernel. However, the failure path of that call reports an error with the __write() function, which is a glibc internal function. Therefore, it fails to link with uClibc or musl. This was fixed in gcc 5.2.0, by replacing the __write() with a plain write(). For sync_8 itself we have solved this with the conditions on BR2_TOOLCHAIN_ARM_HAS_SYNC_8. However, the same function is also used for the implementation of atomics. For the internal toolchain, we can fix this by backporting the patch to 4.9.4 and 4.8.5. Fixes: http://autobuild.buildroot.net/results/1db64b4830f499621e44523e0ef68191505e2ce9 Signed-off-by:
Arnout Vandecappelle (Essensium/Mind) <arnout@mind.be> Signed-off-by:
-
Waldemar Brodkorb authored
Signed-off-by:
-
James Knight authored
Chrony has the ability to support PPS. Its enablement is determined primarily from the existence of `sys/timepps.h`. This file is provided from the pps-tools package. Adjusting Chrony's Makefile to depend on the pps-tools package if a developer has included pps-tools as part of a build. Relates to 2cfc966f. Signed-off-by:
James Knight <james.knight@rockwellcollins.com> Signed-off-by:
-
- Nov 25, 2016
-
-
Thomas Petazzoni authored
libuuid depends on libintl in specific scenarios, but since taskd wasn't using pkg-config to detect libuuid, this dependency on libintl was not taken into account. This commit adds a patch to taskd that uses pkg-config to detect libuuid. Fixes: http://autobuild.buildroot.net/results/cb5ea871812651025722d42508d4f37702088800/ Signed-off-by:
-
Nicolas Cavallari authored
host-python3 currently detect if there is an usable OpenSSL installation and conditionnaly compiles the 'ssl', '_ssl' and '_hashlib' modules. This may break compilation if the system's OpenSSL has been updated to 1.1.0 because of a bug in python, see https://bugs.python.org/issue26470 for details. Unlike Python 2.7, Python 3 unconditionnaly compiles fallbacks for common hash algorithm, so disabling OpenSSL will still leave Python 3 with implementations of common hash algorithm. This adds a patch to configure.ac patch to implement a --disable-openssl option. Signed-off-by:
Nicolas Cavallari <nicolas.cavallari@green-communications.fr> Tested-by:
-
-
Sam bobroff authored
Fixes next commit d634d9dd, which itself fixes: http://autobuild.buildroot.net/results/f58ec73d906a5da49a88ed78492e3b5bf8cecdd4/ Signed-off-by:
Sam Bobroff <sam.bobroff@au1.ibm.com> Signed-off-by:
-
Sam bobroff authored
Needed to fix: http://autobuild.buildroot.net/results/f58ec73d906a5da49a88ed78492e3b5bf8cecdd4/ Signed-off-by:
-
Thomas Petazzoni authored
Fixes bug #9431. Reported-by:
xichaoli <xichao@sina.cn> Signed-off-by:
-
Jörg Krause authored
OLAs RDM test option needs NumPy. Note that we need to pass `ac_cv_have_pymod_numpy=yes` as NumPy builds some shared libraries and ola checks for NumPy using a host Python test program which fails with 'wrong ELF class'. Fixes: http://autobuild.buildroot.net/results/750/750c9bcc753e2c1b7b05d6c43fabf4c405e15f04/ http://autobuild.buildroot.net/results/24a/24ada1e0ec695cb12028048728a9d1e2bcf75a03/ http://autobuild.buildroot.net/results/111/111c5f3eed6a5931de27a1b0b02be6e2114198e6/ .. and more. Signed-off-by:
Jörg Krause <joerg.krause@embedded.rocks> Signed-off-by:
-
Arnout Vandecappelle authored
Instead of creating our own .pc file with a patch, just tell qmake to do it by adding create_pc to CONFIG. This corrects the .pc file for Qt5. Previously, the include directory was set to /usr/include, while for Qt5 it should be /usr/include/qt5. This hasn't caused any autobuild failures since no other package uses qextserialport. Note, however, that the package is now called Qt5ExtSerialPort in Qt5, while before it was qextserialport like in the Qt4 case. Signed-off-by:
-
Arnout Vandecappelle authored
Instead of manually copying the QExtSerialPort header introduced in patch 0002, update the patch to include this header in the qmake project file so it gets properly installed. While we're at it, convert to a git-formatted patch. Fixes: http://autobuild.buildroot.net/results/818b564a6e23bcecf4afc7e53811227b08e5f4eb http://autobuild.buildroot.net/results/0b6c2d7c63329f5e790f02ccd29f14a317eadc71 http://autobuild.buildroot.net/results/ac552b63c6fb099a136066cda421f68e639808fa Signed-off-by:
-
Alexey Brodkin authored
When building C++ parts of gpsd (for example Qt bindings) with gcc 6.x following failure happens, see [1]: ------------------------------>8------------------------------- <command-line>:0:0: warning: "_LARGEFILE_SOURCE" redefined <command-line>:0:0: note: this is the location of the previous definition In file included from clock_gettime.c:10:0: compiler.h: In function 'void memory_barrier()': compiler.h:93:25: error: 'memory_order_seq_cst' was not declared in this scope atomic_thread_fence(memory_order_seq_cst); ^~~~~~~~~~~~~~~~~~~~ compiler.h:93:25: note: suggested alternative: In file included from .../output/host/usr/arc-buildroot-linux-uclibc/include/c++/6.2.1/atomic:41:0, from compiler.h:75, from clock_gettime.c:10: .../output/host/usr/arc-buildroot-linux-uclibc/include/c++/6.2.1/bits/atomic_base.h:62:7: note: 'memory_order_seq_cst' memory_order_seq_cst ^~~~~~~~~~~~~~~~~~~~ In file included from clock_gettime.c:10:0: compiler.h:93:45: error: 'atomic_thread_fence' was not declared in this scope atomic_thread_fence(memory_order_seq_cst); ^ compiler.h:93:45: note: suggested alternative: In file included from .../output/host/usr/arc-buildroot-linux-uclibc/include/c++/6.2.1/atomic:41:0, from compiler.h:75, from clock_gettime.c:10: .../output/host/usr/arc-buildroot-linux-uclibc/include/c++/6.2.1/bits/atomic_base.h:101:3: note: 'std::atomic_thread_fence' atomic_thread_fence(memory_order __m) noexcept ^~~~~~~~~~~~~~~~~~~ scons: *** [qt-clock_gettime.os] Error 1 scons: building terminated because of errors. ------------------------------>8------------------------------- As discussed on gpsd mailng list here [2] the only work-around as of today is to add "-std=gnu++98" to both CFLAGS and CXXFLAGS which we implement here. Fixes: http://autobuild.buildroot.net/results/e8593a8ebf2f05cc93235a8129a2ba8b839d6d90 http://autobuild.buildroot.net/results/ff766f4f514c9cb4891873167f4e9b7870051883 http://autobuild.buildroot.net/results/1a4/1a4dbd9ee5e0c7255843228731beab030ca005ca http://autobuild.buildroot.net/results/1a4/1a4dbd9ee5e0c7255843228731beab030ca005ca and many others, see http://autobuild.buildroot.net/?reason=gpsd-3.16 [1] http://autobuild.buildroot.net/results/e85/e8593a8ebf2f05cc93235a8129a2ba8b839d6d90/build-end.log [2] http://lists.nongnu.org/archive/html/gpsd-dev/2016-09/msg00082.html Signed-off-by:Alexey Brodkin <abrodkin@synopsys.com> Cc: Thomas Petazzoni <thomas.petazzoni@free-electrons.com> Cc: Bernd Kuhls <bernd.kuhls@t-online.de> Cc: Sergio Prado <sergio.prado@e-labworks.com> Cc: James Knight <james.knight@rockwellcollins.com> Signed-off-by:
-
- Nov 23, 2016
-
-
Yann E. MORIN authored
Currently, the br2-external script uses bash-4's associative arrays. However, some oldish enterprise-class distros like RHEL5 still use bash-3.1 which lacks associative arrays. We restore compatibility with those oldish distros using 'eval' to emulate associative arrays, as suggested by Arnout. Reported-by:
Ricardo Martincoski <ricardo.martincoski@gmail.com> Signed-off-by:
"Yann E. MORIN" <yann.morin.1998@free.fr> Cc: Ricardo Martincoski <ricardo.martincoski@gmail.com> Cc: Thomas De Schampheleire <patrickdepinguin@gmail.com> Cc: Arnout Vandecappelle <arnout@mind.be> Cc: Max Filippov <jcmvbkbc@gmail.com> Reviewed-by:
-
Zakharov Vlad authored
Compact casesi patterns don't have a reload version. This causes build failures of "trousers" package for ARC. Current patch disables compact casesi patterns for ARCv1 (750D and 770D) via passing "-mno-compact-casesi" option when compiling "trousers". This change is a temporary workaround and the feature is going to be fixed in the next ARC toolchain release version. Fixes: http://autobuild.buildroot.org/results/d2c/d2c16d8ba022b070c4dbeba5e7ea41f14d706691// Signed-off-by:
Vlad Zakharov <vzakhar@synopsys.com> Signed-off-by:
-
Danomi Manchego authored
The distclean target no longer removes the "output" directory for in-tree builds, because $(O) is no longer just "output" in that case. Change the test to be against "$(CURDIR)/output", to match the O setting, and a similar test elsewhere in the same Makefile. Signed-off-by:
Danomi Manchego <danomimanchego123@gmail.com> Signed-off-by:
-
- Nov 22, 2016
-
-
Gwenhael Goavec-Merou authored
gr-fec needs gsl. Without this dependency cmake search gsl in the host system. This issue produce errors like : arm-buildroot-linux-uclibcgnueabihf-gcc: ERROR: unsafe header/library path used in cross-compilation: '-I/usr/include' make[3]: *** [gr-fec/lib/CMakeFiles/gnuradio-fec.dir/reed-solomon/encode_rs.c.o] Error 1 Signed-off-by:
Gwenhael Goavec-Merou <gwenhael.goavec-merou@trabucayre.com> Signed-off-by:
-
