- Jul 26, 2017
-
-
Peter Korsgaard authored
Signed-off-by:Peter Korsgaard <peter@korsgaard.com>
-
Thomas De Schampheleire authored
Fixes CVE-2017-11108/Fix bounds checking for STP Changelog: http://www.tcpdump.org/tcpdump-changes.txt [Peter: add signature link as suggested by Baruch] Signed-off-by:
Thomas De Schampheleire <thomas.de_schampheleire@nokia.com> Signed-off-by:
-
Peter Korsgaard authored
Fixes the following security issues: CVE-2017-7018 - An issue was discovered in certain Apple products. iOS before 10.3.3 is affected. Safari before 10.1.2 is affected. iCloud before 6.2.2 on Windows is affected. iTunes before 12.6.2 on Windows is affected. tvOS before 10.2.2 is affected. The issue involves the "WebKit" component. It allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site. CVE-2017-7030 - An issue was discovered in certain Apple products. iOS before 10.3.3 is affected. Safari before 10.1.2 is affected. iCloud before 6.2.2 on Windows is affected. iTunes before 12.6.2 on Windows is affected. tvOS before 10.2.2 is affected. The issue involves the "WebKit" component. It allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site. CVE-2017-7034 - An issue was discovered in certain Apple products. iOS before 10.3.3 is affected. Safari before 10.1.2 is affected. iCloud before 6.2.2 on Windows is affected. iTunes before 12.6.2 on Windows is affected. tvOS before 10.2.2 is affected. The issue involves the "WebKit" component. It allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site. CVE-2017-7037 - An issue was discovered in certain Apple products. iOS before 10.3.3 is affected. Safari before 10.1.2 is affected. iCloud before 6.2.2 on Windows is affected. iTunes before 12.6.2 on Windows is affected. tvOS before 10.2.2 is affected. The issue involves the "WebKit" component. It allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site. CVE-2017-7039 - An issue was discovered in certain Apple products. iOS before 10.3.3 is affected. Safari before 10.1.2 is affected. iCloud before 6.2.2 on Windows is affected. iTunes before 12.6.2 on Windows is affected. tvOS before 10.2.2 is affected. The issue involves the "WebKit" component. It allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site. CVE-2017-7046 - An issue was discovered in certain Apple products. iOS before 10.3.3 is affected. Safari before 10.1.2 is affected. iCloud before 6.2.2 on Windows is affected. iTunes before 12.6.2 on Windows is affected. tvOS before 10.2.2 is affected. The issue involves the "WebKit" component. It allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site. CVE-2017-7048 - An issue was discovered in certain Apple products. iOS before 10.3.3 is affected. Safari before 10.1.2 is affected. iCloud before 6.2.2 on Windows is affected. iTunes before 12.6.2 on Windows is affected. tvOS before 10.2.2 is affected. The issue involves the "WebKit" component. It allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site. CVE-2017-7055 - An issue was discovered in certain Apple products. iOS before 10.3.3 is affected. Safari before 10.1.2 is affected. iCloud before 6.2.2 on Windows is affected. iTunes before 12.6.2 on Windows is affected. tvOS before 10.2.2 is affected. The issue involves the "WebKit" component. It allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site. CVE-2017-7056 - An issue was discovered in certain Apple products. iOS before 10.3.3 is affected. Safari before 10.1.2 is affected. iCloud before 6.2.2 on Windows is affected. iTunes before 12.6.2 on Windows is affected. tvOS before 10.2.2 is affected. The issue involves the "WebKit" component. It allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site. CVE-2017-7061 - An issue was discovered in certain Apple products. iOS before 10.3.3 is affected. Safari before 10.1.2 is affected. iCloud before 6.2.2 on Windows is affected. iTunes before 12.6.2 on Windows is affected. tvOS before 10.2.2 is affected. The issue involves the "WebKit" component. It allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site. CVE-2017-7064 - An issue was discovered in certain Apple products. iOS before 10.3.3 is affected. Safari before 10.1.2 is affected. iCloud before 6.2.2 on Windows is affected. iTunes before 12.6.2 on Windows is affected. The issue involves the "WebKit" component. It allows attackers to bypass intended memory-read restrictions via a crafted app. For more details, see the announcement: https://webkitgtk.org/2017/07/24/webkitgtk2.16.6-released.html Signed-off-by:
"Adrian Perez de Castro" <aperez@igalia.com> Signed-off-by:
-
- Jul 25, 2017
-
-
Peter Seiderer authored
The original url http://code.entropywave.com/orc is dead (server not found). Signed-off-by:
Peter Seiderer <ps.report@gmx.net> Signed-off-by:
Thomas Petazzoni <thomas.petazzoni@free-electrons.com> (cherry picked from commit 036d235a) Signed-off-by:
-
Peter Korsgaard authored
BIND 9.11.1-P3 addresses a TSIG regression introduced in the 9.11.1-P2 security bump: https://lists.isc.org/pipermail/bind-announce/2017-July/001057.html Also add a hash for the license file while we're at it. Signed-off-by:
-
Bernd Kuhls authored
Disable altivec support until gcc problems are fixed: https://bitbucket.org/multicoreware/x265/issues/320/fail-to-build-on-power8-le#comment-34076791 Fixes http://autobuild.buildroot.net/results/419/41910d44ff98c60a6bb9fd3b6a10bd4d0b98d646/ Signed-off-by:
Bernd Kuhls <bernd.kuhls@t-online.de> Signed-off-by:
-
Bernd Kuhls authored
Fixes security bugs CVE-2017-11103 & CVE-2017-6594 Changed upstream tarball location as noted in the release notes: http://www.h5l.org/releases.html?show=7.4.0 --with-db-type-preference= is needed to fix a build error: CCLD otp ../../lib/otp/.libs/libotp.a(otp_db.o): In function `otp_get_internal': otp_db.c:(.text+0x32): undefined reference to `__roken_dbm_fetch' otp_db.c:(.text+0xd9): undefined reference to `__roken_dbm_store' ../../lib/otp/.libs/libotp.a(otp_db.o): In function `otp_db_open': otp_db.c:(.text+0x1c9): undefined reference to `__roken_dbm_open' ../../lib/otp/.libs/libotp.a(otp_db.o): In function `otp_db_close': otp_db.c:(.text+0x205): undefined reference to `__roken_dbm_close' ../../lib/otp/.libs/libotp.a(otp_db.o): In function `otp_delete': otp_db.c:(.text+0x23e): undefined reference to `__roken_dbm_delete' ../../lib/otp/.libs/libotp.a(otp_db.o): In function `otp_put': otp_db.c:(.text+0x388): undefined reference to `__roken_dbm_store' collect2: error: ld returned 1 exit status Signed-off-by:
-
Bernd Kuhls authored
Building host-aespipe fails on Debian stretch at linking stage: /usr/bin/gcc -L/home/buildroot/br6/output/host/lib -L/home/buildroot/br6/output/host/usr/lib -Wl,-rpath,/home/buildroot/br6/output/host/usr/lib -o aespipe aespipe.o aes-amd64.o md5-amd64.o md5-2x-amd64.o aes-intel64.o sha512.o rmd160.o /usr/bin/ld: aes-amd64.o: relocation R_X86_64_32S against `.rodata' can not be used when making a shared object; recompile with -fPIC The same problem apparently exists on recent Ubuntu and Gentoo. Fix is also used in Debian: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=837393 [Peter: add comment explaining why] [Arnout: use host-cc-option to discover if -no-pie is available; cfr. 57b628a9] Signed-off-by:
Arnout Vandecappelle (Essensium/Mind) <arnout@mind.be> Signed-off-by:
-
Arnout Vandecappelle authored
This macro allows to test if HOSTCC supports a specific option. It is needed to pass '-no-pie' on recent Debian, Ubuntu and Gentoo hosts. Signed-off-by:
-
Thomas Petazzoni authored
Now that the build of efivar with gcc 7.x has been fixed by commit 0ca30170 ("efivar: fix build with gcc 7"), efibootmgr fails similarly with gcc 7.x. This commit backports an upstream patch that fixes this issue. Signed-off-by:
-
Bernd Kuhls authored
ffmpeg always enables support for nvenc/cuda even if their support libraries are not present: External libraries providing hardware acceleration: cuda cuvid nvenc [...] Enabled hwaccels: h264_cuvid mjpeg_cuvid mpeg2_cuvid vc1_cuvid vp9_cuvid hevc_cuvid mpeg1_cuvid mpeg4_cuvid vp8_cuvid This leads to a crash in freeswitch git master when transcoding video streams on a system without nvidia hardware: 2017-07-22 15:06:27.306760 [INFO] avcodec.c:1077 initializing encoder 352x288 2017-07-22 15:06:27.306760 [NOTICE] avcodec.c:828 NVENC HW CODEC ENABLED This patch disables the support of nvidia hardware acceleration support for now until the needed packages are added to buildroot. For details about this please refer to https://developer.nvidia.com/ffmpeg Signed-off-by:
-
Bernd Kuhls authored
ffmpeg has optional support for alsa as input and/or output device: http://git.videolan.org/?p=ffmpeg.git;a=blob;f=configure;h=23823e3b7012d847b614bd43316fb614676bedb2;hb=refs/heads/release/3.3#l2987 Problem was found while fixing http://autobuild.buildroot.net/results/7ba/7ba485532fcab74928246a8f95dba7e5eea9d4a5/ Signed-off-by:
-
Bernd Kuhls authored
Fixes CVE-2017-8779: http://git.linux-nfs.org/?p=steved/libtirpc.git;a=commitdiff;h=dd9c7cf4f8f375c6d641b760d124650c418c2ce3 Rebased patches 0001, 0002 & 0006. Removed patch 0007, applied upstream: http://git.linux-nfs.org/?p=steved/libtirpc.git;a=commit;h=4f1503e84b2f7bd229a097335e52fb8203f5bb0b Renumbered patch 0008. Signed-off-by:
-
Dmitrii Kolesnichenko authored
Add patch to fix following error: | ../../libtirpc-1.0.1/src/xdr_sizeof.c:93:13: error: 'uintptr_t' undeclared (first use in this function); did you mean '__intptr_t'? | if (len < (uintptr_t)xdrs->x_base) { | ^~~~~~~~~ This error occurs with the latest glibc master version (during the testing I had glibc commit 92bd70fb85bce57ac47ba5d8af008736832c955a), but doesn't occur with version 2.25. Patch includes stdint.h to provide uintptr_t. It has been submitted upstream: https://sourceforge.net/p/libtirpc/mailman/message/35850276/ Signed-off-by:Dmitrii Kolesnichenko <dmitrii@synopsys.com> [Thomas: reformat as Git formatted patch.] Signed-off-by:
-
Thomas Petazzoni authored
This commit adds a patch to the libmemcached package that fixes the build with gcc 7.x. Since libmemcached is barely maintained upstream, the patch comes from the Fedora packages. Fixes: http://autobuild.buildroot.net/results/872b8e0e6a24cbc96e3ad9e0b8b47acdf6160ce0/ Signed-off-by:
-
Thomas Petazzoni authored
This commit backports an upstream collectd patch that fixes a build issue with gcc 7.x. Fixes: http://autobuild.buildroot.net/results/2441e2a69d013a6376a90d375e15991e8cb816bd/ Signed-off-by:
-
Fabio Estevam authored
[Peter: Drop 4.11.x/4.12.x bump] Signed-off-by:
Fabio Estevam <fabio.estevam@nxp.com> Signed-off-by:
-
Adrián Pérez de Castro authored
Version 2.16.5 of WebKitGTK+ already includes the fix added by the removed patch, which is now unneeded. Signed-off-by:
-
Baruch Siach authored
Disable -Werror to avoid the fatal result of new gcc 7 format string warnings. Fixes: http://autobuild.buildroot.net/results/29c/29c72bc38042305310576be945c721b2fad95894/ http://autobuild.buildroot.net/results/a7d/a7d38d72834b94291eaff159da277b11e2f9d63a/ http://autobuild.buildroot.net/results/cfe/cfed5176075f0cb9e2f56ebef10f5d6c352baf10/ Signed-off-by:
Baruch Siach <baruch@tkos.co.il> Signed-off-by:
-
- Jul 20, 2017
-
-
Peter Korsgaard authored
Signed-off-by: -
Baruch Siach authored
Source files license headers include the GPL "or ... any later version" language. Signed-off-by:
-
Yann E. MORIN authored
We have to specify the -mcpu value, even in 64-bit mode. For AArch64, +fp and +simd are the default, so they are totally useless. Signed-off-by:
"Yann E. MORIN" <yann.morin.1998@free.fr> Cc: Thomas Petazzoni <thomas.petazzoni@free-electrons.com> Cc: Baruch Siach <baruch@tkos.co.il> Signed-off-by:
-
Baruch Siach authored
The expat build system now fails when the getrandom() system call is not supported. This affect both host and target builds. Define XML_POOR_ENTROPY for target kernels older than 3.17 to fix the build. For the host package define XML_POOR_ENTROPY unconditionally since we have no easy way to know the host kernel version. Note that expat will still use getrandom() on the host when it is available, we don't make security any worse. Fixes (host): http://autobuild.buildroot.net/results/928/928dc2b56d931da84055fdfe78929d1f956de53b/ http://autobuild.buildroot.net/results/ee9/ee90d0a456cbce4c7f22e5f61006612bd9ba30d5/ http://autobuild.buildroot.net/results/dac/dac7231242123ae3dcaa6bbdd65b44fe8d8cb20c/ Fixes (target): http://autobuild.buildroot.net/results/308/308e830219fdfebb5aa6aef51c1dc784254998f6/ http://autobuild.buildroot.net/results/73f/73fa946b0a2205e946ad414079f88e4bdb416f00/ http://autobuild.buildroot.net/results/9d7/9d7bad22ace7fa211b31d752a2255e07cede68be/ [Peter: also use HOST_CPPFLAGS] Signed-off-by:
-
Baruch Siach authored
Changes (security fixes): [MOX-006] Fix non-NULL parser parameter validation in XML_Parse; resulted in NULL dereference, previously Drop upstream patch. Signed-off-by: -
Peter Seiderer authored
Add patch 0005-Fix-error-attribute-target-crc-is-unknown.patch. Upstream: https://codereview.qt-project.org/200171 Fixes buildroot Bug 9916 ([1]). [1] https://bugs.busybox.net/show_bug.cgi?id=9916 Signed-off-by:
-
Peter Seiderer authored
Signed-off-by:
-
Peter Korsgaard authored
Fixes CVE-2016-10324 - In libosip2 in GNU oSIP 4.1.0, a malformed SIP message can lead to a heap buffer overflow in the osip_clrncpy() function defined in osipparser2/osip_port.c. Signed-off-by:
-
Fabio Estevam authored
[Peter: Drop 4.11.x/4.12.x bump] Signed-off-by:
Fabio Estevam <festevam@gmail.com> Signed-off-by:
-
Calin Crisan authored
The pulseaudio configure script autodetects the presence of bluez 4.x and 5.x packages on the system and will exclude the bluetooth-related modules in their absence. This commit ensures that bluez5_utils, if selected, are installed before pulseaudio. The same already happens for bluez_utils (4.x). Signed-off-by: Calin Crisan <ccrisan at gmail dot com> Signed-off-by:
-
Matt Weber authored
libsanitizer in gcc fails to build on PowerPC with gcc versions 4.9 and 5.x used in conjunction with glibc 2.25, with the following error: ../../../../gcc-host/libsanitizer/asan/asan_linux.cc: In function 'bool __asan::AsanInterceptsSignal(int)': ../../../../gcc-host/libsanitizer/asan/asan_linux.cc:222:20: error: 'SIGSEGV' was not declared in this scope return signum == SIGSEGV && common_flags()->handle_segv; This commit adds a patch that has been submitted to upstream gcc (https://patchwork.ozlabs.org/patch/725596/ ) but not merged. The patch is no longer needed with gcc 6.x and later because the code has been reworked. Fixes Buildroot bug #10061 Signed-off-by:
Matthew Weber <matthew.weber@rockwellcollins.com> [Thomas: rework commit log.] Signed-off-by:
-
Yann E. MORIN authored
The vcdbg utility is linked to a few libraries, which so far were all provided by the rpi-userland package. But a not-so-recent bump of rpi-firmware pulled in a vcdbg that is linked to an additional library, which is not privided by rpi-userland, so we must install it. Reported-by: cluelessperson on #buildroot Signed-off-by:
-
Peter Korsgaard authored
Fixes CVE-2017-10688 - n LibTIFF 4.0.8, there is a assertion abort in the TIFFWriteDirectoryTagCheckedLong8Array function in tif_dirwrite.c. A crafted input will lead to a remote denial of service attack. Signed-off-by:
-
Vicente Olivert Riera authored
Patch 0001 already included in this release: https://github.com/vadz/libtiff/commit/438274f938e046d33cb0e1230b41da32ffe223e1 Patch 0002 already included in this release: https://github.com/vadz/libtiff/commit/43bc256d8ae44b92d2734a3c5bc73957a4d7c1ec Patch 0003 already included in this release: https://github.com/vadz/libtiff/commit/1044b43637fa7f70fb19b93593777b78bd20da86 Patch 0004 already included in this release: https://github.com/vadz/libtiff/commit/9a72a69e035ee70ff5c41541c8c61cd97990d018 Patch 0005 already included in this release: https://github.com/vadz/libtiff/commit/5c080298d59efa53264d7248bbe3a04660db6ef7 Patch 0006 already included in this release: https://github.com/vadz/libtiff/commit/48780b4fcc425cddc4ef8ffdf536f96a0d1b313b Patch 0007 already included in this release: https://github.com/vadz/libtiff/commit/d60332057b9575ada4f264489582b13e30137be1 Patch 0008 already included in this release: https://github.com/vadz/libtiff/commit/2ea32f7372b65c24b2816f11c04bf59b5090d05b Patch 0009 already included in this release: https://github.com/vadz/libtiff/commit/8283e4d1b7e53340684d12932880cbcbaf23a8c1 Patch 0010 already included in this release: https://github.com/vadz/libtiff/commit/47f2fb61a3a64667bce1a8398a8fcb1b348ff122 Patch 0011 already included in this release: https://github.com/vadz/libtiff/commit/3cfd62d77c2a7e147a05bd678524c345fa9c2bb8 Patch 0012 already included in this release: https://github.com/vadz/libtiff/commit/0a76a8c765c7b8327c59646284fa78c3c27e5490 Patch 0013 already included in this release: https://github.com/vadz/libtiff/commit/66e7bd59520996740e4df5495a830b42fae48bc4 Signed-off-by:
Vicente Olivert Riera <Vincent.Riera@imgtec.com> Signed-off-by:
-
- Jul 19, 2017
-
-
Peter Korsgaard authored
Fixes CVE-2017-7506 - Possible buffer overflow via invalid monitor configurations. For more details, see: https://marc.info/?l=oss-security&m=150001782924095 Signed-off-by:
-
Bernd Kuhls authored
Fixes CVE-2017-11103: All versions of Samba from 4.0.0 onwards using embedded Heimdal Kerberos are vulnerable to a man-in-the-middle attack impersonating a trusted server, who may gain elevated access to the domain by returning malicious replication or authorization data. Samba binaries built against MIT Kerberos are not vulnerable. https://www.samba.org/samba/history/samba-4.5.12.html [Peter: add CVE info] Signed-off-by:
-
Bernd Kuhls authored
Removed patches 0003 & 0004, applied upstream. Fixes the following security issues: CVE-2017-7244 - The _pcre32_xclass function in pcre_xclass.c in libpcre1 in PCRE 8.40 allows remote attackers to cause a denial of service (invalid memory read) via a crafted file. CVE-2017-7245 - Stack-based buffer overflow in the pcre32_copy_substring function in pcre_get.c in libpcre1 in PCRE 8.40 allows remote attackers to cause a denial of service (WRITE of size 4) or possibly have unspecified other impact via a crafted file. CVE-2017-7246 - Stack-based buffer overflow in the pcre32_copy_substring function in pcre_get.c in libpcre1 in PCRE 8.40 allows remote attackers to cause a denial of service (WRITE of size 268) or possibly have unspecified other impact via a crafted file. [Peter: add CVE info] Signed-off-by:
-
Ben Leinweber authored
There is copyright information in the top level README file. Use this file as the license file which will be included by the `legal-info` build rule. Signed-off-by:
Ben Leinweber <bleinweber@spaceflight.com> Signed-off-by:
Andrey Smirnov <andrew.smirnov@gmail.com> Signed-off-by:
-
Fabio Estevam authored
[Drop 4.11.x/4.12.x change] Signed-off-by:
-
Bernd Kuhls authored
Fixes the following security issues: CVE-2017-9788 - Uninitialized memory reflection in mod_auth_digest The value placeholder in [Proxy-]Authorization headers of type 'Digest' was not initialized or reset before or between successive key=value assignments. by mod_auth_digest. Providing an initial key with no '=' assignment could reflect the stale value of uninitialized pool memory used by the prior request, leading to leakage of potentially confidential information, and a segfault. CVE-2017-9789 - Read after free in mod_http2 When under stress, closing many connections, the HTTP/2 handling code would sometimes access memory after it has been freed, resulting in potentially erratic behaviour. Announcement: http://www.apache.org/dist/httpd/Announcement2.4.html Release notes: http://www.apache.org/dist/httpd/CHANGES_2.4.27 Signed-off-by:
-
Peter Korsgaard authored
>From the release notes: - Extend pow tables for layer III to properly handle files with i-stereo and 5-bit scalefactors. Never observed them for real, just as fuzzed input to trigger the read overflow. Note: This one goes on record as CVE-2017-11126, calling remote denial of service. While the accesses are out of bounds for the pow tables, they still are safely within libmpg123's memory (other static tables). Just wrong values are used for computation, no actual crash unless you use something like GCC's AddressSanitizer, nor any information disclosure. - Avoid left-shifts of negative integers in layer I decoding. While we're at it, add a hash for the license file. Signed-off-by:
-
