summaryrefslogtreecommitdiffstats
path: root/meta/recipes-support
Commit message (Collapse)AuthorAgeFilesLines
* apr-util: upgrade to 1.5.3Hongxu Jia2014-06-061-2/+2
| | | | | | | | (From OE-Core rev: 512ec9fb677d920c813d084b85238f3be86f376f) Signed-off-by: Hongxu Jia <hongxu.jia@windriver.com> Signed-off-by: Saul Wold <sgw@linux.intel.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* libcheck: Update to 0.9.13Saul Wold2014-06-031-2/+2
| | | | | | | (From OE-Core rev: eb4452b214c5dd81dab5ee82d9d5048d29c33613) Signed-off-by: Saul Wold <sgw@linux.intel.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* libcroco/libfm/menu-cache: Add missing gtk-doc class dependenciesRichard Purdie2014-06-032-2/+2
| | | | | | | | | These recipes all use gtk-doc m4 macros but were missing dependencies on the class. (From OE-Core rev: 500d48ba760f50c780377fb1ebed257a6e8b1887) Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* recipes: Add missing pkgconfig class inheritsRichard Purdie2014-06-034-4/+4
| | | | | | | | | These recipes all use pkg-config in some way but were missing dependencies on the tool, this patch adds them. (From OE-Core rev: 2543b14dd0ca13005be0df027543431fc8e882ae) Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* libfm: Ensure m4 directory existsRichard Purdie2014-06-031-0/+2
| | | | | | | | | | configure.ac references the m4 directory so things like gtkdocize will try and place m4 files there. We need to ensure the directory exists or the builds can fail. (From OE-Core rev: 0ced649c055dd25c500d0fd34e4ea94504d98580) Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* libksba: Use pkg-config for dependenciesRichard Purdie2014-05-282-19/+116
| | | | | | | | | Use pkg-config in the m4 macros for the package, ensure we have a host field in the .pc file. (From OE-Core rev: 4a971a90988435902a4a8dd9c721d440cd80c0bd) Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* gpgme: Update to ensure we pkg-config for dependenciesRichard Purdie2014-05-281-0/+6
| | | | | | (From OE-Core rev: ffffc627b21a3cf8b407d16a437793b5fddf7127) Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* libgcrypt: Use pkg-config for dependenciesRichard Purdie2014-05-282-2/+107
| | | | | | | | Use pkg-config instead of -config files in the m4 macros. (From OE-Core rev: 74d73cf1e4607cb313b5e4c7138b555d5999a46d) Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* libxslt: Use pkg-config for dependenciesRichard Purdie2014-05-282-1/+120
| | | | | | (From OE-Core rev: f0479e60b660778ab27b946d426daa17a08a28ea) Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* gnupg: Convert to use pkg-config for dependenciesRichard Purdie2014-05-282-1/+96
| | | | | | | | | Use pkg-config to find pth instead of pth-config and our own macros from aclocal-copy. (From OE-Core rev: 437ad15de308769c9251a37ed41dabed5653fc96) Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* libassuan: Improve pkgconfig supportRichard Purdie2014-05-283-57/+163
| | | | | | | | | Add api_version and host to the .pc file and use pkg-config in the m4 macros for the package. (From OE-Core rev: 17e5793847601d2aeb497ffe14871df65543abfb) Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* libgpg-error: Extend pkgconfig support to m4 macrosRichard Purdie2014-05-281-13/+90
| | | | | | | | | | Whilst there is currently .pc file pkgconfig support, it was unused by the m4 macros. This extends the support so they're used instead of the -config scripts. (From OE-Core rev: ff573270f7e87296840911189fd2087a1bc597f7) Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* taglib: Force a disable of the floating dependency on boostRichard Purdie2014-05-271-0/+2
| | | | | | | | | | | | taglib appears to depend on boost if it finds it in the sysroot. Force it not to do this. Someone with better cmake skills may be able to do this in a neater way. (From OE-Core rev: 2c6c6c98416e5a458a02106524b5aa10a4b71d60) (From OE-Core rev: 87fd1d7331f6f64a9037d97672dbe66d93f276de) Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* libpcre: Update to 8.35 versionChong Lu2014-05-211-3/+3
| | | | | | | | | | Upgrade libpcre to 8.35 version. (From OE-Core rev: 32c007bfc4fe7a0ba75644584bb80f8bdff09a01) Signed-off-by: Chong Lu <Chong.Lu@windriver.com> Signed-off-by: Saul Wold <sgw@linux.intel.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* nss: CVE-2013-1740Li Wang2014-05-212-0/+917
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | the patch comes from: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2013-1740 https://bugzilla.mozilla.org/show_bug.cgi?id=919877 https://bugzilla.mozilla.org/show_bug.cgi?id=713933 changeset: 10946:f28426e944ae user: Wan-Teh Chang <wtc@google.com> date: Tue Nov 26 16:44:39 2013 -0800 summary: Bug 713933: Handle the return value of both ssl3_HandleRecord calls changeset: 10945:774c7dec7565 user: Wan-Teh Chang <wtc@google.com> date: Mon Nov 25 19:16:23 2013 -0800 summary: Bug 713933: Declare the |falseStart| local variable in the smallest changeset: 10848:141fae8fb2e8 user: Wan-Teh Chang <wtc@google.com> date: Mon Sep 23 11:25:41 2013 -0700 summary: Bug 681839: Allow SSL_HandshakeNegotiatedExtension to be called before the handshake is finished, r=brian@briansmith.org changeset: 10898:1b9c43d28713 user: Brian Smith <brian@briansmith.org> date: Thu Oct 31 15:40:42 2013 -0700 summary: Bug 713933: Make SSL False Start work with asynchronous certificate validation, r=wtc (From OE-Core rev: 11e728e64e37eec72ed0cb3fb4d5a49ddeb88666) Signed-off-by: Li Wang <li.wang@windriver.com> Signed-off-by: Roy Li <rongqing.li@windriver.com> Signed-off-by: Saul Wold <sgw@linux.intel.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* nss: CVE-2014-1492Li Wang2014-05-212-0/+69
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | the patch comes from: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2014-1492 https://bugzilla.mozilla.org/show_bug.cgi?id=903885 changeset: 11063:709d4e597979 user: Kai Engert <kaie@kuix.de> date: Wed Mar 05 18:38:55 2014 +0100 summary: Bug 903885, address requests to clarify comments from wtc changeset: 11046:2ffa40a3ff55 tag: tip user: Wan-Teh Chang <wtc@google.com> date: Tue Feb 25 18:17:08 2014 +0100 summary: Bug 903885, fix IDNA wildcard handling v4, r=kaie changeset: 11045:15ea62260c21 user: Christian Heimes <sites@cheimes.de> date: Mon Feb 24 17:50:25 2014 +0100 summary: Bug 903885, fix IDNA wildcard handling, r=kaie (From OE-Core rev: a83a1b26704f1f3aadaa235bf38094f03b3610fd) Signed-off-by: Li Wang <li.wang@windriver.com> Signed-off-by: Roy Li <rongqing.li@windriver.com> Signed-off-by: Saul Wold <sgw@linux.intel.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* libusb1: disable floating dependency on udevSaul Wold2014-05-202-16/+3
| | | | | | | | | | | | libusb added support for udev, but this causes a circular dependecny between udev and libusb, so hardcode the disable here. Also remove the patch that is no longer used. (From OE-Core rev: 5c0f8111f9ec5a2c3b2826946af5132aaa13a9b9) Signed-off-by: Saul Wold <sgw@linux.intel.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* curl: remove inapporpriate file from curl releaseTudor Florea2014-05-152-0/+8204
| | | | | | | | | | | | | This is the adaptation for the a bugfix upstream The inappropriate file src/tool_hugehelp.c presence in the curl 7.36 release interfered with the upstream fix for https://sourceforge.net/p/curl/bugs/1350/ (From OE-Core rev: c5a52f5b5ae7c5528bc59ee7fb69a2f460a89b81) Signed-off-by: Tudor Florea <tudor.florea@enea.com> Signed-off-by: Saul Wold <sgw@linux.intel.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* libusb1: Update to 1.0.18Saul Wold2014-05-152-5/+2
| | | | | | | (From OE-Core rev: 62bccaa7979213555fced945b1b09e92683d4213) Signed-off-by: Saul Wold <sgw@linux.intel.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* curl: make PACKAGES match with FILES/RRECOMMENDSKoen Kooi2014-05-131-1/+1
| | | | | | | | | Mostly cosmetic, but entries in PACKAGES should be specified the exact same way as FILES/RRECOMMENDS entries to avoid problems. (From OE-Core rev: 4d2a7f47a9830788455afe00a7c6a857cebbcb81) Signed-off-by: Koen Kooi <koen.kooi@linaro.org> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* ca-certificates: generate CAfile for -native in do_installKoen Kooi2014-05-131-0/+4
| | | | | | | | | | | | | | | | | | | | Git-replacement-native needs the generated files in place for https:// URIs: WARNING: Failed to fetch URL git://github.com/kernelslacker/trinity.git;protocol=https, attempting MIRRORS if available ERROR: Fetcher failure: Fetch command failed with exit code 128, output: Cloning into bare repository '/build/linaro/build/build/downloads/git2/github.com.kernelslacker.trinity.git'... fatal: unable to access 'https://github.com/kernelslacker/trinity.git/': error setting certificate verify locations: CAfile: /build/linaro/build/build/tmp-eglibc/sysroots/x86_64-linux/etc/ssl/certs/ca-certificates.crt CApath: none ERROR: Function failed: Fetcher failure for URL: 'git://github.com/kernelslacker/trinity.git;protocol=https'. Unable to fetch URL from any source. ERROR: Logfile of failure stored in: /build/linaro/build/build/tmp-eglibc/work/aarch64-oe-linux/trinity/1.3-r0/temp/log.do_fetch.7843 ERROR: Task 1378 (/build/linaro/build/meta-linaro/meta-linaro/recipes-extra/trinity/trinity_1.3.bb, do_fetch) failed with exit code '1' (From OE-Core rev: 74a772727cbf4d76d2ef314041acafb3086e4ff9) Signed-off-by: Koen Kooi <koen.kooi@linaro.org> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* nettle: disable opensslValentin Popa2014-05-111-0/+2
| | | | | | | | | | | Do not include openssl glue in the benchmark program. This should fix a compile issue on multilib. (From OE-Core rev: 22c90592347582854410b95db8b7765c85c1568b) Signed-off-by: Valentin Popa <valentin.popa@intel.com> Signed-off-by: Saul Wold <sgw@linux.intel.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* libsoup: upgrade to 2.46.0Valentin Popa2014-05-112-100/+4
| | | | | | | | | | | Removed merged patches: fix-compiling-failed-while-mips-gcc-optimization-enabled.patch (From OE-Core rev: 5ae63515ccef232ab93446f7ce09cd8593a0733f) Signed-off-by: Valentin Popa <valentin.popa@intel.com> Signed-off-by: Saul Wold <sgw@linux.intel.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* libtasn1: upgrade to 3.5Valentin Popa2014-05-111-2/+2
| | | | | | | | (From OE-Core rev: 08efbacd016072c3345dc115e8b87519e7d36a89) Signed-off-by: Valentin Popa <valentin.popa@intel.com> Signed-off-by: Saul Wold <sgw@linux.intel.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* icu: upgrade to 53.1Valentin Popa2014-05-115-49/+21
| | | | | | | | | | | | | | Removed patches: (*) add_buffer_length_check_to_UTF_16_or_32_detector.patch - not needed anymore License is the same. BSD-like copyright inserted for lao-dictionary. (From OE-Core rev: cce150502fada2068ef1ab92b88a08ed0b64d766) Signed-off-by: Valentin Popa <valentin.popa@intel.com> Signed-off-by: Saul Wold <sgw@linux.intel.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* mirrors.bbclass: Add mirror site for savannahChanghyeok Bae2014-05-112-2/+2
| | | | | | | | | | | | | | | | * The SRC_URI is not accessible. So need to add mirror site referred by the original site. * The problem is that http://download.savannah.gnu.org/releases redirects to closest mirror and few mirrors (e.g. .jp) weren't working correctly while http://download-mirror.savannah.gnu.org/releases/ seems to be reliable. * Add SAVANNAH_GNU_MIRROR and SAVANNAH_NONGNU_MIRROR variable in bitbake.conf. * Change the SRC_URI using the new variable. (From OE-Core rev: af00b6544f60e4d7581f9d9767f9d3f574392359) Signed-off-by: Changhyeok Bae <changhyeok.bae@lge.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* attr: Fix uclibc buildsRichard Purdie2014-05-082-3/+3
| | | | | | | | | | attr needs libintl headers and libs. Add in the missing dependency and ensure the linker flag gets passed in multilib builds by replacing the PN == BPN check with a class-target override instead. (From OE-Core rev: c19fb913006eb53025e5db1574d973c8d7ceec76) Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* libiconv: Fix B != S with uclibc buildsRichard Purdie2014-05-081-1/+1
| | | | | | | | | | | | Without this, uclibc builds fail with libtool version mismatches. The issue is that we need to remove the files in ${S}, not ${B} which is now the default after the B != S change. (From OE-Core rev: 054151c77dae51e2826eeac9b9ae2de3a08f0bb6) Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org> Signed-off-by: Saul Wold <sgw@linux.intel.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* taglib: upgrade to 1.9.1Cristian Iorga2014-05-061-9/+5
| | | | | | | | | | | | | - Updated website; - Updated tarball location; - Switched to BP variable; - Improved source dir definition; (From OE-Core rev: 6c06a67c1a94ebc81f9bbbd71bbb512539eacdaf) Signed-off-by: Cristian Iorga <cristian.iorga@intel.com> Signed-off-by: Saul Wold <sgw@linux.intel.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* gdbm: enable ptest supportMaxin B. John2014-05-063-2/+54
| | | | | | | | | | Install gdbm test-suite and run it as ptest (From OE-Core rev: aaba69d598763831e8b42996154ed87d0db10714) Signed-off-by: Maxin B. John <maxin.john@enea.com> Signed-off-by: Saul Wold <sgw@linux.intel.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* gnutls: update to 3.2.13Valentin Popa2014-05-0611-1108/+42
| | | | | | | | | | | | | | | Removes not needed or already merged patches. Removes unused configure flags. Tells gnutls to use the included libopts. Removes libextra (not needed since 3.0.5). (From OE-Core rev: 4e360033579b9501449798b2d118f786816a557f) Signed-off-by: Valentin Popa <valentin.popa@intel.com> Signed-off-by: Saul Wold <sgw@linux.intel.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* nettle: add nettle to oe-coreValentin Popa2014-05-061-0/+24
| | | | | | | | | | Newer versions of gnutls depends on nettle. (From OE-Core rev: e0e5eaee72e49c01e76d56cd03fbfb3e20febbb0) Signed-off-by: Valentin Popa <valentin.popa@intel.com> Signed-off-by: Saul Wold <sgw@linux.intel.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* libgcrypt: update to 1.6.1Saul Wold2014-05-062-4/+4
| | | | | | | (From OE-Core rev: fd2848df50bec43248cab6ccdea2358be4719473) Signed-off-by: Saul Wold <sgw@linux.intel.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* curl: Backport a fix for a build issueTudor Florea2014-05-032-0/+39
| | | | | | | | | | | | | mkhelp: generate code for --disable-manual as well This allows configure --disable-manual to run and build without having to regenerate the src/tool_hugehelp.c file which otherwise is necessary since we ship tarballs with that file present. (From OE-Core rev: 544a96255203a6779d1f0022d003c6680f330511) Signed-off-by: Tudor Florea <tudor.florea@enea.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* Add texinfo.bbclass; recipes that use texinfo utils at build-time inherit it.Max Eliaser2014-05-0217-17/+17
| | | | | | | | | | | | | The class itself currently does nothing. The idea is to mark all recipes that make use of the texinfo utilities. In the future, this class could be used to suppress the generation/formatting of documentation for performance, explicitly track dependencies on these utilities, and eliminate Yocto's current dependency on the host system's texinfo utilities. (From OE-Core rev: e6fb2f9afe2ba6b676c46d1eb297ca9cc532d405) Signed-off-by: Max Eliaser <max.eliaser@intel.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* sqlite3: restore upstream version numberingPaul Eggleton2014-04-301-2/+2
| | | | | | | | | | | | Regardless of the numbering used in source archive filenames, the upstream version number is in dotted form in documentation, release notes and the website, so we need to be using that here since that is what people will expect to see. (From OE-Core rev: b8f82a8808b0d217815b30ed06efc8a0be4494a5) Signed-off-by: Paul Eggleton <paul.eggleton@linux.intel.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* Globally replace 'base_contains' calls with 'bb.utils.contains'Otavio Salvador2014-04-254-7/+7
| | | | | | | | | | | The base_contains is kept as a compatibility method and we ought to not use it in OE-Core so we can remove it from base metadata in future. (From OE-Core rev: d83b16dbf0862be387f84228710cb165c6d2b03b) Signed-off-by: Otavio Salvador <otavio@ossystems.com.br> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* libnl: update to 3.2.24Saul Wold2014-04-242-46/+4
| | | | | | | | | | Remove patch that is now in the upstream version Add new package for idiag libraries. (From OE-Core rev: 407db800da02032e07e94b0b837a89cfb3e204a0) Signed-off-by: Saul Wold <sgw@linux.intel.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* sqlite3: Update to 3080403Saul Wold2014-04-241-5/+5
| | | | | | | | | | | And rename the PV to match the upstream versioning This requires a PE Bump to ensure package versions don't go backwards. (From OE-Core rev: dbcb25038959e4cf252ba812176a112a49a382d5) Signed-off-by: Saul Wold <sgw@linux.intel.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* apr: do not try to use sctp.hJoe Slater2014-04-241-0/+4
| | | | | | | | | | | If we let configure look for sctp.h it might find it on the host, so suppress the search with two cached config variables. (From OE-Core rev: 4aa6616661cc7a0eda4e9ba3e82a22472b444595) Signed-off-by: Joe Slater <jslater@windriver.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* at-spi2-core: upgrade to 2.12.0Cristiana Voicu2014-04-231-2/+2
| | | | | | | (From OE-Core rev: c27b4b47b1d69965ce3da7560f57c972cbf8085d) Signed-off-by: Cristiana Voicu <cristiana.voicu@intel.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* at-spi2-atk: upgrade to 2.12.0Cristiana Voicu2014-04-231-2/+2
| | | | | | | (From OE-Core rev: 982443d0d9373aba3d86a977c16a8780425b736e) Signed-off-by: Cristiana Voicu <cristiana.voicu@intel.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* atk: upgrade to 2.12.0Cristiana Voicu2014-04-231-2/+2
| | | | | | | (From OE-Core rev: 95d85136a4ab62ce60e915755a1252e5472108cc) Signed-off-by: Cristiana Voicu <cristiana.voicu@intel.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* curl: upgrade to 7.36.0Cristiana Voicu2014-04-231-2/+2
| | | | | | | (From OE-Core rev: a4b5173dcba0384589debceebf90e98a2cbadd63) Signed-off-by: Cristiana Voicu <cristiana.voicu@intel.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* apr: remove the use of ${SHELL} to avoid bash/dash conflictionHongxu Jia2014-04-231-1/+1
| | | | | | | | | | | | | | | | | | | | | | | | | | | While multible hosts sharing a common sstate cache, the fist host using bash as default shell and build apr, the second host using dash as default shell and build apr-util, there was a failure in apr-util: ... | /bin/sh: 0: Can't open i586-poky-linux-libtool | make[1]: *** [dbm/apr_dbm_gdbm.lo] Error 127 | make[1]: *** Waiting for unfinished jobs.... | make[1]: Leaving directory `tmp/work/i586-poky-linux/apr-util/1.5.2-r0/apr-util-1.5.2' ... The quick way to reproduce the defect in Ubuntu 1204: 1. Create a new build 2. sudo dpkg-reconfigure dash <set bash as /bin/sh> 3. bitbake apr 4. sudo dpkg-reconfigure dash <set dash as /bin/sh> 5. bitbake apr-util Remove the use of $(SHELL) in the apr could avoid this issue. (From OE-Core rev: 53af71200b6f6d117e1e7dc2e7a7d21c6faab8f9) Signed-off-by: Hongxu Jia <hongxu.jia@windriver.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* libcap 2.22: fix, disable gperf detectionMatthieu Crapet2014-03-301-0/+3
| | | | | | | | | | | gperf straight invoke is not suitable for cross environment (gperf-native should be used instead). Formal patch has been submited to the upstream. As libcap 2.24 is currently available, I prefer doing this quick fix. (From OE-Core rev: 5c7946f790b5e8da8f30e3493c04c07b30b89d17) Signed-off-by: Matthieu Crapet <Matthieu.Crapet@ingenico.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* nss-3.15.1: fix CVE-2013-5605yanjun.zhu2014-03-302-0/+19
| | | | | | | | | | | | | | Mozilla Network Security Services (NSS) 3.14 before 3.14.5 and 3.15 before 3.15.3 allows remote attackers to cause a denial of service or possibly have unspecified other impact via invalid handshake packets. http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2013-5605 (From OE-Core rev: 09e8cd6f09284ad3faf0bc05d623a43e2b174866) Signed-off-by: yanjun.zhu <yanjun.zhu@windriver.com> Signed-off-by: Hongxu Jia <hongxu.jia@windriver.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* nss-3.15.1: fix CVE-2013-1741yanjun.zhu2014-03-302-0/+93
| | | | | | | | | | | | | | Integer overflow in Mozilla Network Security Services (NSS) 3.15 before 3.15.3 allows remote attackers to cause a denial of service or possibly have unspecified other impact via a large size value. http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2013-1741 (From OE-Core rev: b666d173ff0ba213bf81e2c035a605a28e5395ea) Signed-off-by: yanjun.zhu <yanjun.zhu@windriver.com> Signed-off-by: Hongxu Jia <hongxu.jia@windriver.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* gnupg: CVE-2013-4576Yong Zhang2014-03-272-0/+154
| | | | | | | | | | | | | | | | | | | GnuPG 1.x before 1.4.16 generates RSA keys using sequences of introductions with certain patterns that introduce a side channel, which allows physically proximate attackers to extract RSA keys via a chosen-ciphertext attack and acoustic cryptanalysis during decryption. NOTE: applications are not typically expected to protect themselves from acoustic side-channel attacks, since this is arguably the responsibility of the physical device. Accordingly, issues of this type would not normally receive a CVE identifier. However, for this issue, the developer has specified a security policy in which GnuPG should offer side-channel resistance, and developer-specified security-policy violations are within the scope of CVE. (From OE-Core rev: 46b80c80b0e008820b34f4360054e1697df2650d) Signed-off-by: Yong Zhang <yong.zhang@windriver.com> Signed-off-by: Jackie Huang <jackie.huang@windriver.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* gnupg: CVE-2013-4351Ming Liu2014-03-272-1/+47
| | | | | | | | | | | | | GnuPG 1.4.x, 2.0.x, and 2.1.x treats a key flags subpacket with all bits cleared (no usage permitted) as if it has all bits set (all usage permitted), which might allow remote attackers to bypass intended cryptographic protection mechanisms by leveraging the subkey. (From OE-Core rev: 259aebc9dbcaeb1587aaaab849942f55fa321724) Signed-off-by: Ming Liu <ming.liu@windriver.com> Signed-off-by: Jackie Huang <jackie.huang@windriver.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
OpenPOWER on IntegriCloud