summaryrefslogtreecommitdiffstats
Commit message (Collapse)AuthorAgeFilesLines
...
* qemu: CVE-2017-8309Sona Sarmadi2017-08-292-0/+43
| | | | | | | | | | | | | | | | | | Qemu built with the Audio subsystem support is vulnerable to a host memory leakage issue. It could occur if a guest user was to repeatedly start and stop audio capture. A privileged user inside guest could use this flaw to exhaust host memory, resulting in DoS. Reference: ========== https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2017-8309 Upstream patch: https://lists.gnu.org/archive/html/qemu-devel/2017-04/msg05587.html Signed-off-by: Sona Sarmadi <sona.sarmadi@enea.com> Signed-off-by: Adrian Dudau <adrian.dudau@enea.com>
* qemu: CVE-2017-6505Sona Sarmadi2017-08-292-0/+57
| | | | | | | | | | | | | | | | | Quick Emulator built with the USB OHCI Emulation support is vulnerable to an infinite loop issue. It could occur while processing an endpoint list descriptor in ohci_service_ed_list(). A guest user/process could use this flaw to crash Qemu process resulting in DoS. References: ========== https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2017-6505 Upstream patch: http://git.qemu-project.org/?p=qemu.git;a=commitdiff;h=95ed56939eb2eaa4e2f349fe6dcd13ca4edfd8fb Signed-off-by: Sona Sarmadi <sona.sarmadi@enea.com> Signed-off-by: Adrian Dudau <adrian.dudau@enea.com>
* qemu: CVE-2017-7471Sona Sarmadi2017-08-292-0/+71
| | | | | | | | | | | | | | | | | | Qemu built with the VirtFS, host directory sharing via Plan 9 File System(9pfs) support, is vulnerable to an improper access control issue. It could occur while accessing files on a shared host directory. A privileged user inside guest could use this flaw to access host file system beyond the shared folder and potentially escalating their privileges on a host. References: ========== https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2017-7471 Upstream patch: http://git.qemu-project.org/?p=qemu.git;a=commitdiff;h=96bae145e27d4df62671b4eebd6c735f412016cf Signed-off-by: Sona Sarmadi <sona.sarmadi@enea.com> Signed-off-by: Adrian Dudau <adrian.dudau@enea.com>
* qemu: CVE-2017-2620Sona Sarmadi2017-08-293-0/+138
| | | | | | | | | | | | | | | QEMU built with the Cirrus CLGD 54xx VGA Emulator support is vulnerable to an out-of-bounds access issue. The issue could occur while copying VGA data in cirrus_bitblt_cputovideo. References: ========== https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2017-2620 Upstream patch: https://lists.gnu.org/archive/html/qemu-devel/2017-02/msg04700.html Signed-off-by: Sona Sarmadi <sona.sarmadi@enea.com> Signed-off-by: Adrian Dudau <adrian.dudau@enea.com>
* libxml2: CVE-2017-9049 and CVE-2017-9050Sona Sarmadi2017-08-212-0/+322
| | | | | | | | | | | | References: CVE-2017-9049: Heap-based buffer over-read in function xmlDictComputeFastKey http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9049 CVE-2017-9050: Heap-based buffer over-read in function xmlDictAddString http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9050 Signed-off-by: Sona Sarmadi <sona.sarmadi@enea.com> Signed-off-by: Adrian Dudau <adrian.dudau@enea.com>
* libxml2: CVE-2017-9047 and CVE-2017-9048Sona Sarmadi2017-08-212-0/+119
| | | | | | | | | | | | References: CVE-2017-9047: Buffer overflow in function xmlSnprintfElementContent http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9047 CVE-2017-9048: Stack-based buffer overflow in function http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9048 Signed-off-by: Sona Sarmadi <sona.sarmadi@enea.com> Signed-off-by: Adrian Dudau <adrian.dudau@enea.com>
* libxml2: CVE-2017-5969Sona Sarmadi2017-08-212-0/+74
| | | | | | | | | | | | Fixes a NULL pointer dereference in libxml2, when using xmllint --recover. A maliciously crafted file, when parsed in recovery mode, could cause the application to crash. Reference https://bugzilla.gnome.org/show_bug.cgi?id=778519 Signed-off-by: Sona Sarmadi <sona.sarmadi@enea.com> Signed-off-by: Adrian Dudau <adrian.dudau@enea.com>
* libxslt: Fix CVE-2015-9019Sona Sarmadi2017-08-212-0/+60
| | | | | | | | | | | | | | | Fixes a vulnerability in libxslt where the EXSLT math.random function was not initialized with a random seed during startup, which could cause usage of this function to produce predictable outputs. References: https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2015-9019 Upstream patch: https://bug758400.bugzilla-attachments.gnome.org/attachment.cgi?id=349240&action=diff&collapsed=&context=patch&format=raw&headers=1 Signed-off-by: Sona Sarmadi <sona.sarmadi@enea.com> Signed-off-by: Adrian Dudau <adrian.dudau@enea.com>
* gnutls: CVE-2017-7869Sona Sarmadi2017-08-212-0/+64
| | | | | | | | | | | | | | | | | | | GnuTLS before 2017-02-20 has an out-of-bounds write caused by an integer overflow and heap-based buffer overflow related to the cdk_pkt_read function in opencdk/read-packet.c. This issue (which is a subset of the vendor's GNUTLS-SA-2017-3 report) is fixed in 3.5.10. This issue affects only applications which utilize the OpenPGP certificate functionality of GnuTLS. References: https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2017-7869 Upstream patch: https://gitlab.com/gnutls/gnutls/commit/51464af713d71802e3c6d5ac15f1a95132a354fe Signed-off-by: Sona Sarmadi <sona.sarmadi@enea.com> Signed-off-by: Adrian Dudau <adrian.dudau@enea.com>
* ROOTFS_PKGMANAGE_BOOTSTRAP was removed from pokyAdrian Calianu2017-08-111-1/+0
| | | | | Signed-off-by: Adrian Calianu <adrian.calianu@enea.com> Signed-off-by: Adrian Dudau <adrian.dudau@enea.com>
* Upgraded to the latest rt-tools versionDragos Motrea2017-07-197-30/+108
| | | | | | | | Added new recipe for the bitcalc tool. Removed list2mask recipe and updated the partrt and the count-ticks recipes. Signed-off-by: Dragos Motrea <Dragos.Motrea@enea.com> Signed-off-by: Adrian Calianu <adrian.calianu@enea.com>
* elfutils,gdb: Drop bbappendsAdrian Dudau2017-06-2110-222/+0
| | | | | | | We won't upstream this and we won't maintain it anymore, so drop it. Signed-off-by: Adrian Dudau <adrian.dudau@enea.com> Signed-off-by: Martin Borg <martin.borg@enea.com>
* nativesdk-packagegroup-sdk-host: remove rpm-build and rpm-common packages ↵HEADmasterDragos Motrea2017-03-241-2/+1
| | | | | | | | | | | from recipe rpm-build and rpm-common packages does not exist anymore after the replacement of the smart package manager with the DNF, so the nativesdk-packagegroup-sdk-host recipe should be updated. Signed-off-by: Dragos Motrea <Dragos.Motrea@enea.com> Signed-off-by: Martin Borg <martin.borg@enea.com>
* enea.conf: Set linux-yocto preferred version to 4.9Adrian Dudau2017-03-151-0/+8
| | | | | Signed-off-by: Adrian Dudau <adrian.dudau@enea.com> Signed-off-by: Martin Borg <martin.borg@enea.com>
* distro: enable systemd as default init managerAdrian Calianu2017-03-131-0/+6
| | | | | Signed-off-by: Adrian Calianu <adrian.calianu@enea.com> Signed-off-by: Adrian Dudau <adrian.dudau@enea.com>
* distro: bump up enea distro versionAdrian Calianu2017-03-091-1/+1
| | | | | Signed-off-by: Adrian Calianu <adrian.calianu@enea.com> Signed-off-by: Adrian Dudau <adrian.dudau@enea.com>
* nativesdk-packagegroup-sdk-host: Add mkimage only if U-Boot is usedAdrian Dudau2017-01-121-1/+1
| | | | | | | | Not all architectures/targets use u-boot, so we shouldn't force mkimage in every SDK. Signed-off-by: Adrian Dudau <adrian.dudau@enea.com> Signed-off-by: Martin Borg <martin.borg@enea.com>
* packagegroup-enea-rt-tools: Update license md5Adrian Dudau2016-07-111-1/+1
| | | | | | poky/LICENSE has changed and the md5 throws a warning Signed-off-by: Adrian Dudau <adrian.dudau@enea.com>
* README: Update maintainers and contribution informationAdrian Dudau2016-07-041-3/+5
| | | | Signed-off-by: Adrian Dudau <adrian.dudau@enea.com>
* Remove fm-ucode from all Enea imagesMartin Borg2016-06-011-0/+2
| | | | | | | fm-ucode is removed due to license restrictions (Freescale-EULA) Signed-off-by: Martin Borg <martin.borg@enea.com> Signed-off-by: Adrian Dudau <adrian.dudau@enea.com>
* Remove obsolete init script enea-init-build-envMartin Borg2016-05-251-261/+0
| | | | | Signed-off-by: Martin Borg <martin.borg@enea.com> Signed-off-by: Adrian Dudau <adrian.dudau@enea.com>
* packagegroups: remove enea-ptestStefan Sicleru2016-05-041-118/+0
| | | | | | | | | | | packagegroup-enea-ptest has been removed because it is obsolete and world image cannot be created due to unmet dependencies. The new way of running ptests is through the new package defined in one of the internal layers (meta-enea-test). Signed-off-by: Stefan Sicleru <stefan.sicleru@enea.com> Signed-off-by: Adrian Calianu <adrian.calianu@enea.com>
* packagegroups: remove enea-ddtStefan Sicleru2016-04-291-22/+0
| | | | | | | | | | This packagegroup creates a dependency on an internal layer which generates build errors when building without that layer. Aside that, it is not of much use since testing is done by installing required packages at runtime. Hence, this package is removed. Signed-off-by: Stefan Sicleru <stefan.sicleru@enea.com> Signed-off-by: Mihaela Martinas <Mihaela.Martinas@enea.com>
* conf: remove obsolete templatesStefan Sicleru2016-04-289-783/+0
| | | | | | | | Removed obsolete templates from this layer as they are no longer used. One should look into meta-el-standard layer for appropriate templates. Signed-off-by: Stefan Sicleru <stefan.sicleru@enea.com> Signed-off-by: Martin Borg <martin.borg@enea.com>
* packagegroups: remove enea-sysStefan Sicleru2016-04-271-18/+0
| | | | | | | | | | | | packagegroup-enea-sys has been removed since it is no longer needed, all its packages can be installed at runtime through smart package manager. Aside that, some of its RRECOMMENDS packages can only be found within an internal layer, which creates build errors when that layer is not included. Signed-off-by: Stefan Sicleru <stefan.sicleru@enea.com> Signed-off-by: Mihaela Martinas <Mihaela.Martinas@enea.com>
* distro: Change to MIRRORS instead of PREMIRRORSAdrian Dudau2016-04-211-2/+1
| | | | | | | Remove the SVK protocol as well, it is not supported by Bitbake anymore. Signed-off-by: Adrian Dudau <adrian.dudau@enea.com> Signed-off-by: Martin Borg <martin.borg@enea.com>
* Remove images recipesAdrian Dudau2016-04-202-11/+0
| | | | | | | | | Images are now defined in the profile release layers (meta-el-standard, meta-el-networking). We are only keeping some common .inc files for the minimal and extended images to be used in either release layers. Signed-off-by: Adrian Dudau <adrian.dudau@enea.com> Signed-off-by: Martin Borg <martin.borg@enea.com>
* Rename layer to meta-el-commonAdrian Dudau2016-04-182-11/+11
| | | | | Signed-off-by: Adrian Dudau <adrian.dudau@enea.com> Signed-off-by: Martin Borg <martin.borg@enea.com>
* Add support to build rpm packages from SDK.Adrian Calianu2016-04-141-1/+5
| | | | | Signed-off-by: Adrian Calianu <adrian.calianu@enea.com> Signed-off-by: Tudor Florea <tudor.florea@enea.com>
* ltp: remove patches integrated in pokyTudor Florea2016-04-133-61/+0
| | | | Signed-off-by: Tudor Florea <tudor.florea@enea.com>
* conf: Add environment templates for ls1021twrAdrian Calianu2016-03-313-0/+263
| | | | Signed-off-by: Adrian Calianu <adrian.calianu@enea.com>
* automake: remove patch integrated in pokyTudor Florea2016-03-302-40/+0
| | | | | Signed-off-by: Tudor Florea <tudor.florea@enea.com> Signed-off-by: Martin Borg <martin.borg@enea.com>
* ltp: make bbappend file independent of the versionTudor Florea2016-03-301-0/+0
| | | | | Signed-off-by: Tudor Florea <tudor.florea@enea.com> Signed-off-by: Mihaela Martinas <Mihaela.Martinas@enea.com>
* meta-enea-base: restructure template directory pathAdrian Dudau2016-03-186-0/+0
| | | | | | | | The conf directory inside the template directories is redundant. Get rid of it. Signed-off-by: Adrian Dudau <adrian.dudau@enea.com> Signed-off-by: Tudor Florea <tudor.florea@enea.com>
* meta-enea-base: add conf templatesTudor Florea2016-03-186-0/+520
| | | | | | | Add conf templates for p2041rdb and qemuppc Signed-off-by: Tudor Florea <tudor.florea@enea.com> Signed-off-by: Adrian Dudau <adrian.dudau@enea.com>
* packagegroups: remove enea-core-bootStefan Sicleru2016-03-092-66/+1
| | | | | | | | packagroup-enea-core-boot was a legacy from older releases, all of its useful content can be found in packagegroup-core-boot from poky Signed-off-by: Stefan Sicleru <stefan.sicleru@enea.com> Signed-off-by: Martin Borg <martin.borg@enea.com>
* packagegroups: replace enea-debug with core-tools-debugStefan Sicleru2016-03-093-36/+1
| | | | | | | | | | | | | | | | Most of packagegroup-enea-debug content can be found within packagegroup-core-tools-debug which is provided through tools-debug image feature. rsync and systemtap are provided through a bbappend; kexec-tools is provided through tools-testapps image feature. Other variables such as PACKAGES, PACKAGE_ARCH, ALLOW_EMPTY are already provided through inherited packagegroup.bbclass, hence enea-debug packagegroup is deleted. Signed-off-by: Stefan Sicleru <stefan.sicleru@enea.com> Signed-off-by: Martin Borg <martin.borg@enea.com>
* README: update to master branchTudor Florea2016-03-081-8/+2
| | | | | Signed-off-by: Tudor Florea <tudor.florea@enea.com> Signed-off-by: Adrian Dudau <adrian.dudau@enea.com>
* distro/enea.conf: Update distro version to 6.0Adrian Dudau2016-03-081-1/+1
| | | | | Signed-off-by: Adrian Dudau <adrian.dudau@enea.com> Signed-off-by: Nora Björklund <nora.bjorklund@enea.com>
* distro/enea.conf: remove list of SANITY_TESTED_DISTROSAdrian Dudau2016-03-081-7/+0
| | | | | | | EL6.0 will support only Ubuntu 14.04 which is included in poky. Signed-off-by: Adrian Dudau <adrian.dudau@enea.com> Signed-off-by: Nora Björklund <nora.bjorklund@enea.com>
* enea-init-build-env: meta-yocto renamed to meta-pokyMartin Borg2016-03-011-1/+1
| | | | | | | | | | The enea-init-build-env script checks for meta-yocto when adding layers to bblayers.conf. On poky master, meta-yocto has now been renamed to meta-poky. (commit 9d5483c37523ff3d334c98cafb848282b54962cd) Signed-off-by: Martin Borg <martin.borg@enea.com> Signed-off-by: Adrian Dudau <adrian.dudau@enea.com>
* linx: update to v.2.6.7Martin Borg2016-02-2910-676/+6
| | | | | | | | linx and linx-mod recipes updated to version 2.6.7. The patches we applied have been included in this release. Signed-off-by: Martin Borg <martin.borg@enea.com> Signed-off-by: Nora Björklund <nora.bjorklund@enea.com>
* packagegroup-enea-sys: split systest-runnerStefan Sicleru2016-02-251-1/+2
| | | | | | | | | | | | Test formerly executed by systest are defined as separate packages, ltptest-runner and posix-runner. Updated packagegroup's definition accordingly. Original commit: 9ee9a4896c9ce973e0e3d8f99978e23dcd0fa166 on meta-enea/dizzy-enea. Signed-off-by: Stefan Sicleru <stefan.sicleru@enea.com> Signed-off-by: Nora Björklund <nora.bjorklund@enea.com>
* packagegroup-enea-core-boot: remove fm-ucode from rdepends listStefan Sicleru2016-02-251-2/+2
| | | | | | | | | | | Removing fm-ucode (licensed under Freescale EULA) since meta-enea-base should be free from proprietary code. Original commit on meta-enea/dizzy-enea: 63136bcdc1dd97f99b5e6a8dc2bd04ed6f5e48d0 Signed-off-by: Stefan Sicleru <stefan.sicleru@enea.com> Signed-off-by: Nora Björklund <nora.bjorklund@enea.com>
* pramfs-init: remove recipeNora Björklund2016-02-252-100/+0
| | | | | | | | | Since pramfs has been moved, and the init scripts are not applicable to all architectures, we can move pramfs-init from meta-enea-base to meta-enea-bsp-ppc instead. Signed-off-by: Nora Björklund <nora.bjorklund@enea.com> Signed-off-by: Huimin She <huimin.she@enea.com>
* enea-image-featured: add kernel-dev packageStefan Sicleru2016-02-241-0/+1
| | | | | | | | | | | | Install kernel sources to the SDK so that kernel modules can be cross-compiled. Sources are also installed within the rootfs. Original commit: 0d28a3cb787d2d3e933a6a9eea6366b8746a4e1e on meta-enea/dizzy-enea Signed-off-by: Stefan Sicleru <stefan.sicleru@enea.com> Signed-off-by: Martin Borg <martin.borg@enea.com>
* sysvinit: remove execution change on shutdownNora Björklund2016-02-241-3/+0
| | | | | | | | | This change is not applicable to our distro and can therefore be removed. There is no need to give all execution right on shutdown. Signed-off-by: Nora Björklund <nora.bjorklund@enea.com> Signed-off-by: Adrian Dudau <adrian.dudau@enea.com>
* binutils: drop the bbappendsMartin Borg2016-02-246-1097/+0
| | | | | | | | | | | | | | | | | This was a temporary fix for 64bit PPC kernel builds with binutils 2.24 [1]. The build problem was fixed in meta-fsl-ppc by backport of a kernel patch (commit a6c4175595b0f316e543cf93a8b6dc1a7f098997) and this backported patch was later removed when the kernel version was upgraded (commit e321cb35d66d31b4d7f10da989e7b94eea3337c3). binutils has also been upgraded to 2.25.1 on poky master ------- [1] https://lists.yoctoproject.org/pipermail/meta-freescale/2014-April/008083.html Signed-off-by: Martin Borg <martin.borg@enea.com> Signed-off-by: Huimin She <huimin.she@enea.com>
* valgrind: drop the bbappendMartin Borg2016-02-242-78/+0
| | | | | | | | | | | These workarounds were needed because Power ISA 2.07 was not supported in GCC 4.8.2 (introduced in GCC 4.9). GCC 4.8 support has been dropped from poky master since commit d9aabf9639510fdb3e2ccc21ba5ae4aa9f6e4a57. Signed-off-by: Martin Borg <martin.borg@enea.com> Signed-off-by: Adrian Dudau <adrian.dudau@enea.com>
* elfutils: upgrade elfutils to version 0.164Martin Borg2016-02-242-7/+7
| | | | | | | elfutils 0.164 is now the default version used on poky master Signed-off-by: Martin Borg <martin.borg@enea.com> Signed-off-by: Adrian Dudau <adrian.dudau@enea.com>
generated by cgit v1.2.3-54-g00ecf (git 2.39.0) at 2025-07-23 22:50:30 +0000