From patchwork Wed Nov 13 15:31:47 2019 Content-Type: text/plain; charset="utf-8" MIME-Version: 1.0 Content-Transfer-Encoding: 7bit X-Patchwork-Submitter: Armin Kuster X-Patchwork-Id: 179318 Delivered-To: patch@linaro.org Received: by 2002:a92:38d5:0:0:0:0:0 with SMTP id g82csp9759303ilf; Wed, 13 Nov 2019 07:33:12 -0800 (PST) X-Google-Smtp-Source: APXvYqx6DeW0fQZ96Q7tK/tnRbfx4KNHyHV7f2r342IgV+bGt6fK5dtYCtM22HW6gQg/zRoV1EFS X-Received: by 2002:a63:6b82:: with SMTP id g124mr4411820pgc.178.1573659192687; Wed, 13 Nov 2019 07:33:12 -0800 (PST) ARC-Seal: i=1; a=rsa-sha256; t=1573659192; cv=none; d=google.com; s=arc-20160816; b=X+e1efNenJfwGjWOBeUgR3vUBiQ6HwDmn1cdb6IWX85PNPQh6z8Q3BX49K4DeDnw2e RuYV8wJr5EmRiwucqFXjxKB5JHMCZxOGIR93t4R1zeBhuPHkmqngNa7N3tuIlnnrWx47 zlhfc0Rz9iwvmUaxhC1t0p2zxKvL0Yv+DHSw7r5wwtuXywMr1pHQ934VLRG78j3Ng+/i n7M8Nhflh4TpkhANShoP/bbX+EA/rb2FftLksl20rk8d6owgh+AqzPlrxMRsB/Is4ntc REcG+hpRfGnRHKHh/EcjtKKWCCMj4XsxLg0FRl58tyCYdeL2THODiP8LUt8WmhZ2Dzq5 FCQQ== ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816; h=errors-to:sender:content-transfer-encoding:mime-version :list-subscribe:list-help:list-post:list-archive:list-unsubscribe :list-id:precedence:subject:references:in-reply-to:message-id:date :to:from:dkim-signature:delivered-to; bh=zJUlqS59GpzV3IjDZ8AbBXdWBwY+85NYdMofrYSluvo=; b=CUXR8JueiCMSKkKiY7ulwyu4JCQ2g7a4oQ7tO9fQPMKLqkJW1CxFMeePmAlyUdCBcF A1gIvrnaXrHjEa6UfM41z58sCunwgvAa99vAHBAFtlIAp9fzSJ8giddfPHF19A55pPDP T1suu1oIz1+V1I+st8anAchxKw6/3zIyhUKmrSmPhAVkk5BNSMSrppRjNu3FPFLs5a7f /7MOW3TxW0WUCkjY6rVr9KslGBX9oEaGnA0VVufyZ/QtQ/ZxCY3st8mvUnzkI561y5h/ ZvxiiYs9/ogHarjzA7V1KXaYc7WvrVVGfQgEhEKvq0AD4x+hSISfIR3MnKl7ZO4YnN8s lwkA== ARC-Authentication-Results: i=1; mx.google.com; dkim=neutral (body hash did not verify) header.i=@gmail.com header.s=20161025 header.b=jCBl0JId; spf=pass (google.com: best guess record for domain of openembedded-core-bounces@lists.openembedded.org designates 140.211.169.62 as permitted sender) smtp.mailfrom=openembedded-core-bounces@lists.openembedded.org; dmarc=fail (p=NONE sp=QUARANTINE dis=NONE) header.from=gmail.com Return-Path: Received: from mail.openembedded.org (mail.openembedded.org. [140.211.169.62]) by mx.google.com with ESMTP id 63si2979792plb.214.2019.11.13.07.33.12; Wed, 13 Nov 2019 07:33:12 -0800 (PST) Received-SPF: pass (google.com: best guess record for domain of openembedded-core-bounces@lists.openembedded.org designates 140.211.169.62 as permitted sender) client-ip=140.211.169.62; Authentication-Results: mx.google.com; dkim=neutral (body hash did not verify) header.i=@gmail.com header.s=20161025 header.b=jCBl0JId; spf=pass (google.com: best guess record for domain of openembedded-core-bounces@lists.openembedded.org designates 140.211.169.62 as permitted sender) smtp.mailfrom=openembedded-core-bounces@lists.openembedded.org; dmarc=fail (p=NONE sp=QUARANTINE dis=NONE) header.from=gmail.com Received: from ec2-34-214-78-129.us-west-2.compute.amazonaws.com (localhost [127.0.0.1]) by mail.openembedded.org (Postfix) with ESMTP id F1A837F7D5; Wed, 13 Nov 2019 15:32:38 +0000 (UTC) X-Original-To: openembedded-core@lists.openembedded.org Delivered-To: openembedded-core@lists.openembedded.org Received: from mail-pf1-f195.google.com (mail-pf1-f195.google.com [209.85.210.195]) by mail.openembedded.org (Postfix) with ESMTP id 93CD97F7BB for ; Wed, 13 Nov 2019 15:32:29 +0000 (UTC) Received: by mail-pf1-f195.google.com with SMTP id r4so1893777pfl.7 for ; Wed, 13 Nov 2019 07:32:31 -0800 (PST) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20161025; h=from:to:subject:date:message-id:in-reply-to:references; bh=i0NPVYY4Vf4dT759J/IGBttqyXsgBwpKMmDu8jymauk=; b=jCBl0JId504oRVosqWuwgq42mPRKERDGJbHkN5d3TtsY+nGVd4O43HQS9dlFn5+EPm A395M/qz6sfW1yImOp67+PayOXVNReukjc0QtFc9LZpKMOYzo4o4wlw9n8haTTrbh1+O eBgdRQO53SFjAs/MJ6EfgKod+NPTFFj3+sdWAPs1g5R5vIxGs0b8rp8lZlxPS1zJc6/S T2sBo4ThsFnZENth11+NtYfQ0TqR0iy+4KxSiP+nxljo0DzykRM3co86tejbdcWxLVPJ PJ9HlwAMFSwu2OoKXC/+/uSOgs7LOHIVU7CedN4XorQEiAEvSV7cpH+xBz5dif4et5B/ 282g== X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:from:to:subject:date:message-id:in-reply-to :references; bh=i0NPVYY4Vf4dT759J/IGBttqyXsgBwpKMmDu8jymauk=; b=fNGvZKXp7iU0kBBwYdmwEhmn9sPo1+7VZCtPiHZI4RITwKyz+b0a+aLAUgV9ZgQVIV uijO/nJL38Wjb7HuDZkQYvF+HWZH59D4iNEqnW4dkm/MuzhVZohg2COqmxB+MeYt3uB3 fOui3gKW1YxL8huh6PJFuUWbwFmnI/L88gWGsvNDTAgDeKx10j1YASIp1G2XOtqrorXa dmRjMuCMqjWZc3g+81itrOJd2yQfJhlTEGDa8TJDl2WYDvl4lN6j/cvE9PUZkooxH8aU j+fTqqFkM5r3awAnEbwE3kX1Q2M1CRcluLy4XG8sKNc/egDjIT92X5kNF1LL7IFrHlJX hmZg== X-Gm-Message-State: APjAAAXYfALDst69TX9ZO39zUJKGckd5HYDAa40+VH4w9EfkSDpVnbu/ 6j/i1EOYjzy8MrU/jPiiNByfsMIE X-Received: by 2002:a62:b611:: with SMTP id j17mr4879919pff.201.1573659150599; Wed, 13 Nov 2019 07:32:30 -0800 (PST) Received: from akuster-ThinkPad-T460s.mvista.com ([2601:202:4180:a5c0:2cf9:53ea:e6ab:d378]) by smtp.gmail.com with ESMTPSA id s18sm3713613pfm.27.2019.11.13.07.32.29 for (version=TLS1_2 cipher=ECDHE-RSA-AES128-SHA bits=128/128); Wed, 13 Nov 2019 07:32:29 -0800 (PST) From: Armin Kuster To: openembedded-core@lists.openembedded.org Date: Wed, 13 Nov 2019 07:31:47 -0800 Message-Id: X-Mailer: git-send-email 2.7.4 In-Reply-To: References: Subject: [OE-core] [zeus 05/31] libpng: whitelist CVE-2019-17371 X-BeenThere: openembedded-core@lists.openembedded.org X-Mailman-Version: 2.1.12 Precedence: list List-Id: Patches and discussions about the oe-core layer List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , MIME-Version: 1.0 Sender: openembedded-core-bounces@lists.openembedded.org Errors-To: openembedded-core-bounces@lists.openembedded.org From: Ross Burton This is actually a memory leak in gif2png 2.x, so whitelist it in the libpng recipe. Signed-off-by: Ross Burton Signed-off-by: Richard Purdie Signed-off-by: Adrian Bunk Signed-off-by: Anuj Mittal --- meta/recipes-multimedia/libpng/libpng_1.6.37.bb | 3 +++ 1 file changed, 3 insertions(+) -- 2.7.4 -- _______________________________________________ Openembedded-core mailing list Openembedded-core@lists.openembedded.org http://lists.openembedded.org/mailman/listinfo/openembedded-core diff --git a/meta/recipes-multimedia/libpng/libpng_1.6.37.bb b/meta/recipes-multimedia/libpng/libpng_1.6.37.bb index 66af2f3..2ed87a8 100644 --- a/meta/recipes-multimedia/libpng/libpng_1.6.37.bb +++ b/meta/recipes-multimedia/libpng/libpng_1.6.37.bb @@ -29,3 +29,6 @@ PACKAGES =+ "${PN}-tools" FILES_${PN}-tools = "${bindir}/png-fix-itxt ${bindir}/pngfix ${bindir}/pngcp" BBCLASSEXTEND = "native nativesdk" + +# CVE-2019-17371 is actually a memory leak in gif2png 2.x +CVE_CHECK_WHITELIST += "CVE-2019-17371" From patchwork Wed Nov 13 15:31:48 2019 Content-Type: text/plain; charset="utf-8" MIME-Version: 1.0 Content-Transfer-Encoding: 7bit X-Patchwork-Submitter: Armin Kuster X-Patchwork-Id: 179319 Delivered-To: patch@linaro.org Received: by 2002:a92:38d5:0:0:0:0:0 with SMTP id g82csp9759508ilf; Wed, 13 Nov 2019 07:33:22 -0800 (PST) X-Google-Smtp-Source: APXvYqz+61D7a7SIO6qDfCzEshd8Y5zE3svbkiw0dPesHKD3I7dJ1ccsESyNfmQRgJMyJI3T9rms X-Received: by 2002:a65:628f:: with SMTP id f15mr3252886pgv.91.1573659202372; Wed, 13 Nov 2019 07:33:22 -0800 (PST) ARC-Seal: i=1; a=rsa-sha256; t=1573659202; cv=none; d=google.com; s=arc-20160816; b=ZIzdZB484JayBB8Mvajc218UfOpijIi5Ir9zPbLT6hoGZuLTnGsPfD4d/xzMiNFKG9 XBcrjLGOFBT5LMTrYHX77BsRUv+S8KE2mnPhxcBLhCkkZ9D67P7i6yc5d5pPUq0YReav 01YOynlQowG5kp8gpV2lPAAKvhvuQA+PW9Ry38aGt1Kc6MDrVWIIG83rX6UW3PUuPNcv ikGDsjF1BSyU1l7OfnnATTCC0juSK6iX5WZw+Cagk23Lm4kGhahDhaqsqsBQsqhXosxH /KAxGgJTdQL3EcXUcuUNEWBP5LdrLqs/PV7uAKevd8DJd118+PtOB+jXQyIQVyl7D7ln OoFw== ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816; h=errors-to:sender:content-transfer-encoding:mime-version :list-subscribe:list-help:list-post:list-archive:list-unsubscribe :list-id:precedence:subject:references:in-reply-to:message-id:date :to:from:dkim-signature:delivered-to; bh=RY5fCIsLe6PbbGnSQaP5RJNZttC1DHVT39xemo1qpV0=; b=ngULQ7qfrpEJotk/vkt8ne2wgfTuJtN6bqWZgziOETaEmZJA22E05g+K8sqdNQ+h99 erh4KGotcVQOw8rmgH1EE/WEYlWf1Kgm1T2mScKkhqM4jcDH0mLkrXSkb2mzCg076DDm f+/HKXtn7L5VghzKzhQMxd3x/BPBznMqF1zBuG+gN9u8vfgZEgd4l9td8l0WUAk3hYmz frbHJ9nndqyy7NhtsF57wfXzYmR8MYHg9gvELq4H33sr3FYTAq0WKRntjfUHWRbPIzbU E3qXwkX6i+J1U0eGmmCVwRuySSbmH3B18SiHMmYgJAqYEKGRRtvZ0U68VkTG8i7t6SZM hYAA== ARC-Authentication-Results: i=1; mx.google.com; dkim=neutral (body hash did not verify) header.i=@gmail.com header.s=20161025 header.b=PxFKEnjz; spf=pass (google.com: best guess record for domain of openembedded-core-bounces@lists.openembedded.org designates 140.211.169.62 as permitted sender) smtp.mailfrom=openembedded-core-bounces@lists.openembedded.org; dmarc=fail (p=NONE sp=QUARANTINE dis=NONE) header.from=gmail.com Return-Path: Received: from mail.openembedded.org (mail.openembedded.org. [140.211.169.62]) by mx.google.com with ESMTP id m143si3258052pfd.184.2019.11.13.07.33.22; Wed, 13 Nov 2019 07:33:22 -0800 (PST) Received-SPF: pass (google.com: best guess record for domain of openembedded-core-bounces@lists.openembedded.org designates 140.211.169.62 as permitted sender) client-ip=140.211.169.62; Authentication-Results: mx.google.com; dkim=neutral (body hash did not verify) header.i=@gmail.com header.s=20161025 header.b=PxFKEnjz; spf=pass (google.com: best guess record for domain of openembedded-core-bounces@lists.openembedded.org designates 140.211.169.62 as permitted sender) smtp.mailfrom=openembedded-core-bounces@lists.openembedded.org; dmarc=fail (p=NONE sp=QUARANTINE dis=NONE) header.from=gmail.com Received: from ec2-34-214-78-129.us-west-2.compute.amazonaws.com (localhost [127.0.0.1]) by mail.openembedded.org (Postfix) with ESMTP id 2A22F7F7D3; Wed, 13 Nov 2019 15:32:40 +0000 (UTC) X-Original-To: openembedded-core@lists.openembedded.org Delivered-To: openembedded-core@lists.openembedded.org Received: from mail-pg1-f179.google.com (mail-pg1-f179.google.com [209.85.215.179]) by mail.openembedded.org (Postfix) with ESMTP id 993CA6C102 for ; Wed, 13 Nov 2019 15:32:30 +0000 (UTC) Received: by mail-pg1-f179.google.com with SMTP id q17so1584315pgt.9 for ; Wed, 13 Nov 2019 07:32:32 -0800 (PST) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20161025; h=from:to:subject:date:message-id:in-reply-to:references; bh=Hp5mhSTL0N1bRzREMD5gYau4boxvXGcw3NDt2vJCkfU=; b=PxFKEnjz9Ti0AyeBItCTk0xuLqtQ/hoC9LEeLpap7Gdb43PRZmXW9xkgeoCX01WL45 ooIYm7tAFSyV3me3/gChfAQ70GDq7cTFDWeQL6Z3jBZVuhnNSUTOSSUZsQk0Fwxga/Zp tsrQahcpp6dCXUD8+YRgPwSxC0hWlpVu9QxrpMegzYrzCSuaZd+O7qxR6BAifr5DTAs6 g/Oicp6H/+UEewWzXmjvM/bFEBDa+6zelMy0VzP2Bogpp42saGR6lNLgNFjRLpN1UWfd diW65E4b8AKOw5wqdszxWQZt9OMTg0dIRp9HW3Q6vpI7zlWNIeawjLfEnYc/G+DHcNS5 vwOQ== X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:from:to:subject:date:message-id:in-reply-to :references; bh=Hp5mhSTL0N1bRzREMD5gYau4boxvXGcw3NDt2vJCkfU=; b=Fvh+bQqovo9PudqRbm9I/XFF02aloZj+tXrWnnGxSbwgy92DoBAhB4b6p0NSPke3Cy 2V46o3JI4NvQQ4h6x8MnGKYptxyycxigtS3G/arP5N0HxafKH0F3SR+PS+NMCjZfcrgk Is8oLw7axC/T7KfYJfXh9cAgHLcDxtFpHdnHgRlwQcTaPfti9GWGwN6IzNHsVfemKnHm +lAN8SVyQETsuZjy222/o/UmbJyaUFgGmRxYX7f4BcQXFnj947Osr1ROVs1yqnTvZkEQ CddesivKYtMJC7N5IzDuTzfw9YqEb6OcknC8VD4wLYrF90+L/gjvE5SX8GSyebXPIzmb 9+ZQ== X-Gm-Message-State: APjAAAWtrKwaCunTnl6QmN3xoMYnmYoaXc4ylTI0Rw8ego4X+stGvEVh iL/XVzAaYSQc1Bn5NcOm4Td/JaFD X-Received: by 2002:a63:f441:: with SMTP id p1mr4355775pgk.362.1573659151483; Wed, 13 Nov 2019 07:32:31 -0800 (PST) Received: from akuster-ThinkPad-T460s.mvista.com ([2601:202:4180:a5c0:2cf9:53ea:e6ab:d378]) by smtp.gmail.com with ESMTPSA id s18sm3713613pfm.27.2019.11.13.07.32.30 for (version=TLS1_2 cipher=ECDHE-RSA-AES128-SHA bits=128/128); Wed, 13 Nov 2019 07:32:30 -0800 (PST) From: Armin Kuster To: openembedded-core@lists.openembedded.org Date: Wed, 13 Nov 2019 07:31:48 -0800 Message-Id: <16b98e759a33d9f20e5b40aa1cff5b1c27dbee9d.1573658916.git.akuster808@gmail.com> X-Mailer: git-send-email 2.7.4 In-Reply-To: References: Subject: [OE-core] [zeus 06/31] procps: whitelist CVE-2018-1121 X-BeenThere: openembedded-core@lists.openembedded.org X-Mailman-Version: 2.1.12 Precedence: list List-Id: Patches and discussions about the oe-core layer List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , MIME-Version: 1.0 Sender: openembedded-core-bounces@lists.openembedded.org Errors-To: openembedded-core-bounces@lists.openembedded.org From: Ross Burton This CVE is about race conditions in 'ps' which make it unsuitable for security audits. As these race conditions are unavoidable ps shouldn't be used for security auditing, so this isn't a valid CVE. Signed-off-by: Ross Burton Signed-off-by: Richard Purdie Signed-off-by: Adrian Bunk Signed-off-by: Anuj Mittal --- meta/recipes-extended/procps/procps_3.3.15.bb | 9 ++++++--- 1 file changed, 6 insertions(+), 3 deletions(-) -- 2.7.4 -- _______________________________________________ Openembedded-core mailing list Openembedded-core@lists.openembedded.org http://lists.openembedded.org/mailman/listinfo/openembedded-core diff --git a/meta/recipes-extended/procps/procps_3.3.15.bb b/meta/recipes-extended/procps/procps_3.3.15.bb index 9756db0..f240e54 100644 --- a/meta/recipes-extended/procps/procps_3.3.15.bb +++ b/meta/recipes-extended/procps/procps_3.3.15.bb @@ -4,9 +4,9 @@ the /proc filesystem. The package includes the programs ps, top, vmstat, w, kill HOMEPAGE = "https://gitlab.com/procps-ng/procps" SECTION = "base" LICENSE = "GPLv2+ & LGPLv2+" -LIC_FILES_CHKSUM="file://COPYING;md5=b234ee4d69f5fce4486a80fdaf4a4263 \ - file://COPYING.LIB;md5=4cf66a4984120007c9881cc871cf49db \ - " +LIC_FILES_CHKSUM = "file://COPYING;md5=b234ee4d69f5fce4486a80fdaf4a4263 \ + file://COPYING.LIB;md5=4cf66a4984120007c9881cc871cf49db \ + " DEPENDS = "ncurses" @@ -64,3 +64,6 @@ python __anonymous() { d.setVarFlag('ALTERNATIVE_LINK_NAME', prog, '%s/%s' % (d.getVar('base_sbindir'), prog)) } +# 'ps' isn't suitable for use as a security tool so whitelist this CVE. +# https://bugzilla.redhat.com/show_bug.cgi?id=1575473#c3 +CVE_CHECK_WHITELIST += "CVE-2018-1121" From patchwork Wed Nov 13 15:31:49 2019 Content-Type: text/plain; charset="utf-8" MIME-Version: 1.0 Content-Transfer-Encoding: 7bit X-Patchwork-Submitter: Armin Kuster X-Patchwork-Id: 179320 Delivered-To: patch@linaro.org Received: by 2002:a92:38d5:0:0:0:0:0 with SMTP id g82csp9759766ilf; Wed, 13 Nov 2019 07:33:35 -0800 (PST) X-Google-Smtp-Source: APXvYqxFDrjX/NIMh9IPmxqwaF6DrYIOcfM8w7kfH93rgxbWI6CrMigxU0/9r52nd1PhVMbe4sH3 X-Received: by 2002:a17:902:bb94:: with SMTP id m20mr796896pls.190.1573659215021; Wed, 13 Nov 2019 07:33:35 -0800 (PST) ARC-Seal: i=1; a=rsa-sha256; t=1573659215; cv=none; d=google.com; s=arc-20160816; b=nsyzrjJKW1B4IzwfzODkB9DWn868UWnUsTXQ2vYvfJ4bVULiIS8cyNREqwQiL8s3jr deAolvltbk1VgU0jbABblAkfWexjA4PrH6Bs2Q2E6hZyVqJTofdY93XFH+NxM1rlx41U HWCrmKsbLp0Hplsq8szLCAsSG1oUs8NEI8Bdp3xBU7F1HPenjEUZAjLp58r9NS2xBWmG 48LtriMGvbJsub3JjYrX7qQjn5Vm2kXcR+nLBGA7WfF5Zr5hejiPBOgzgftZyv0gXSQT QY6480MVUcl0vmUe0nOZqTwKdznhQIJekXXu5ykxO9iZ4uYm52Zt8dxCe6Mun6dvJTgK kG/w== ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816; h=errors-to:sender:content-transfer-encoding:mime-version :list-subscribe:list-help:list-post:list-archive:list-unsubscribe :list-id:precedence:subject:references:in-reply-to:message-id:date :to:from:dkim-signature:delivered-to; bh=Et4pwsZXcog60EhxBZzQ+l31MAP6pgdeiDh6MvCHVi4=; b=KFZm4l7S7l/9CeAKXr9NzbnrHLwlpf+9WuXMtTZm5KNq7sDSZgdgfCbcFIvQEl1vVe lYH8KQM9XJrzeTdYrQH1hEkZCWSFJ+9xA6BhadPspniYhY67eqFbOmYogyCXawEve1WZ iMTl+NltaJkNCttbl6GsU8qkvqHSW6UBZoDqCUKeNknTqPuHalvZuWyZvbjp8yfkbn+M Awzaw7IFsfQsQ3NyR9ZrdphihulRagxUQEVHyMmJ0EtRRo5KeGPFNziSWgeEiq9Y8wfV 4aUFfIUGbiq7dv4A1WUKI3TjmyTW00cktJsO7DlleFwfgJ48t+V3k+Ill4s7kaghUGx+ SmJQ== ARC-Authentication-Results: i=1; mx.google.com; dkim=neutral (body hash did not verify) header.i=@gmail.com header.s=20161025 header.b=BIHFP2P4; spf=pass (google.com: best guess record for domain of openembedded-core-bounces@lists.openembedded.org designates 140.211.169.62 as permitted sender) smtp.mailfrom=openembedded-core-bounces@lists.openembedded.org; dmarc=fail (p=NONE sp=QUARANTINE dis=NONE) header.from=gmail.com Return-Path: Received: from mail.openembedded.org (mail.openembedded.org. [140.211.169.62]) by mx.google.com with ESMTP id m189si3405367pfb.20.2019.11.13.07.33.34; Wed, 13 Nov 2019 07:33:35 -0800 (PST) Received-SPF: pass (google.com: best guess record for domain of openembedded-core-bounces@lists.openembedded.org designates 140.211.169.62 as permitted sender) client-ip=140.211.169.62; Authentication-Results: mx.google.com; dkim=neutral (body hash did not verify) header.i=@gmail.com header.s=20161025 header.b=BIHFP2P4; spf=pass (google.com: best guess record for domain of openembedded-core-bounces@lists.openembedded.org designates 140.211.169.62 as permitted sender) smtp.mailfrom=openembedded-core-bounces@lists.openembedded.org; dmarc=fail (p=NONE sp=QUARANTINE dis=NONE) header.from=gmail.com Received: from ec2-34-214-78-129.us-west-2.compute.amazonaws.com (localhost [127.0.0.1]) by mail.openembedded.org (Postfix) with ESMTP id 9F2F67F819; Wed, 13 Nov 2019 15:32:41 +0000 (UTC) X-Original-To: openembedded-core@lists.openembedded.org Delivered-To: openembedded-core@lists.openembedded.org Received: from mail-pf1-f179.google.com (mail-pf1-f179.google.com [209.85.210.179]) by mail.openembedded.org (Postfix) with ESMTP id 947BE7F7B9 for ; Wed, 13 Nov 2019 15:32:31 +0000 (UTC) Received: by mail-pf1-f179.google.com with SMTP id x28so1892845pfo.6 for ; Wed, 13 Nov 2019 07:32:33 -0800 (PST) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20161025; h=from:to:subject:date:message-id:in-reply-to:references; bh=PkCqd4vEtfmaLVosU4E2Xl4LLtcqtEf+LHwEd8MjHPI=; b=BIHFP2P4lCajvI3mdr4x8RrJy0Q4s5hlNRyQQuG4trkn7DHJKFNZGsPmNHFnj01FKO YmdlWy2u0E03rDZrAuG2EaYOS+2S8PvAZ56vrZ7jEue+SAiG+8ljQ7ZcPt5tIrGaMrrI D+YWVEIBXeE/etSK06CCgLu61h2A6OSjCuS52496D/J/kwR0i/KvZM+xWPfptWGD/WhH YIqyT5HMbnHCj5qMYCIXYc0nWiGqrDDcRJrbOOa2Fys+ECLAMrtmqkLoS9sCXLt2Rmlq /oyz7wqZesNsWpfmg4h9/PzvIBe4oMefuMt2PE+0ikwI8CXtCTol1LCo7hs4zeaHtZyB 4vhA== X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:from:to:subject:date:message-id:in-reply-to :references; bh=PkCqd4vEtfmaLVosU4E2Xl4LLtcqtEf+LHwEd8MjHPI=; b=IwBVtVH3qzGYfUV/uOKZWYugKxZPix34vKwz+ELLf+tPvhRwo3TTNawtD5XNND1x2l 7/dpiQ/eFQgo8GFV2tA7C5Y5USGkgtU5m+sTTV7AB5JJqjbna5DZo6xYUNMXC/TMQ2E1 zfttT4gVeCj/5Gqkb2FjsJYaBU10Tc4HhDfGuxI/qUJ1dC7Hvf/AW49FS1JO5unuRVKs Bg6Udn8K6+L+c3Rw05xzwm0fvMoOasM2iB3/ifXzoTHORbSabNYfwRRiq9+q0RCbEMjj CslVZsUEgGwVdpWQanafqJx2hJwrQug/wFLeVdYw7LTTzuExoumqhA98/vVlBEaatp4j /i0Q== X-Gm-Message-State: APjAAAVWtnp/3nXW3XagA5Mwqixrl6jA0kFHG0zIn29hHCvFS5qiPnB8 CgCWGL8/cToMHDFwWB2hl1sj2xss X-Received: by 2002:a62:fb02:: with SMTP id x2mr5293414pfm.254.1573659152324; Wed, 13 Nov 2019 07:32:32 -0800 (PST) Received: from akuster-ThinkPad-T460s.mvista.com ([2601:202:4180:a5c0:2cf9:53ea:e6ab:d378]) by smtp.gmail.com with ESMTPSA id s18sm3713613pfm.27.2019.11.13.07.32.31 for (version=TLS1_2 cipher=ECDHE-RSA-AES128-SHA bits=128/128); Wed, 13 Nov 2019 07:32:31 -0800 (PST) From: Armin Kuster To: openembedded-core@lists.openembedded.org Date: Wed, 13 Nov 2019 07:31:49 -0800 Message-Id: <541ec2f0590ab1f2c0667bf36df7c4c1bb0b6a25.1573658916.git.akuster808@gmail.com> X-Mailer: git-send-email 2.7.4 In-Reply-To: References: Subject: [OE-core] [zeus 07/31] libsndfile1: whitelist CVE-2018-13419 X-BeenThere: openembedded-core@lists.openembedded.org X-Mailman-Version: 2.1.12 Precedence: list List-Id: Patches and discussions about the oe-core layer List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , MIME-Version: 1.0 Sender: openembedded-core-bounces@lists.openembedded.org Errors-To: openembedded-core-bounces@lists.openembedded.org From: Ross Burton This is a memory leak that nobody else can replicate and has been rejected by upstream. Signed-off-by: Ross Burton Signed-off-by: Richard Purdie Signed-off-by: Adrian Bunk Signed-off-by: Anuj Mittal --- meta/recipes-multimedia/libsndfile/libsndfile1_1.0.28.bb | 4 ++++ 1 file changed, 4 insertions(+) -- 2.7.4 -- _______________________________________________ Openembedded-core mailing list Openembedded-core@lists.openembedded.org http://lists.openembedded.org/mailman/listinfo/openembedded-core diff --git a/meta/recipes-multimedia/libsndfile/libsndfile1_1.0.28.bb b/meta/recipes-multimedia/libsndfile/libsndfile1_1.0.28.bb index ffb4585..7855008 100644 --- a/meta/recipes-multimedia/libsndfile/libsndfile1_1.0.28.bb +++ b/meta/recipes-multimedia/libsndfile/libsndfile1_1.0.28.bb @@ -33,3 +33,7 @@ PACKAGECONFIG[alsa] = "--enable-alsa,--disable-alsa,alsa-lib" PACKAGECONFIG[regtest] = "--enable-sqlite,--disable-sqlite,sqlite3" inherit autotools lib_package pkgconfig + +# This can't be replicated and is just a memory leak. +# https://github.com/erikd/libsndfile/issues/398 +CVE_CHECK_WHITELIST += "CVE-2018-13419" From patchwork Wed Nov 13 15:31:50 2019 Content-Type: text/plain; charset="utf-8" MIME-Version: 1.0 Content-Transfer-Encoding: 7bit X-Patchwork-Submitter: Armin Kuster X-Patchwork-Id: 179321 Delivered-To: patch@linaro.org Received: by 2002:a92:38d5:0:0:0:0:0 with SMTP id g82csp9760006ilf; Wed, 13 Nov 2019 07:33:46 -0800 (PST) X-Google-Smtp-Source: APXvYqwuXeaDWf8nim0sWXxrSQ+dk5yr8HfCSEM1fVtUe4NusHngwWEx2olaoNZXvf8zF77ZL/Lq X-Received: by 2002:aa7:930c:: with SMTP id 12mr5173349pfj.33.1573659226269; Wed, 13 Nov 2019 07:33:46 -0800 (PST) ARC-Seal: i=1; a=rsa-sha256; t=1573659226; cv=none; d=google.com; s=arc-20160816; b=Xmy1xYc00WwMzLIYemyqYWv97h7+g/uc2un7wcjzcgO8JKjy5Csot838MVcrbc76ls N5e4OkcXi3ULY05zD4sWciIq5NLKktefZDJNUuVqtLOqNa1BTXXW+syji1Ey1lzqKovU AdiRTkvOzE7OHqaUJSZNrr3HzY5CpnU67gL6RiBHm5fNdWo9sFTOw01Ku1AbOXtqbY1s LDolNNwbz8+OQx8hXK8o6d80U4s7ZDem8qZuBV8HO+QX0Pu412pEdPqOp/IMSdUOfyhe SfSACTvN+VM05ucVQo8k1YyN8MDvgvPIr1kPcTuqpOmWXm/gh8b6GyCd+F9bKuvRwqmi 5Fqw== ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816; h=errors-to:sender:content-transfer-encoding:mime-version :list-subscribe:list-help:list-post:list-archive:list-unsubscribe :list-id:precedence:subject:references:in-reply-to:message-id:date :to:from:dkim-signature:delivered-to; bh=ij6b10jULwhN+gOrQlhrujYbL8WcR3OAuSR08LmKkGM=; b=xAW1a1n5tULEmfklN5DtAjzQICurNPa31hXyEZU39k3SuqVe57pPzZqzCKD8WjiP2I /MWKh9gbYQnIXyKcUVdULrgPYoPMN+Ok92nkQgCV4M+7fHMLwhmkcZObD4RmP3BPlXmf 4ALfZ+3NkEb9mZhUlWXJk+xz76+dfGs3jPjGJtueCcvpHUyHw4U8TB2LQBUbgBQVUPJr LtXIMKhrgmy3GCzP1fjA1AD7cWlSK5q+bQXyAzJXHBLdC8FTs5BAACHsGhssnGpCZMMo zKpFIB/o0gytKnVRmaWci3MS2KMZC9tcarrhzulkTLLQCQNId4zbB+tCjnsIS2RldA/P G5EQ== ARC-Authentication-Results: i=1; mx.google.com; dkim=neutral (body hash did not verify) header.i=@gmail.com header.s=20161025 header.b=TUOOGxcI; spf=pass (google.com: best guess record for domain of openembedded-core-bounces@lists.openembedded.org designates 140.211.169.62 as permitted sender) smtp.mailfrom=openembedded-core-bounces@lists.openembedded.org; dmarc=fail (p=NONE sp=QUARANTINE dis=NONE) header.from=gmail.com Return-Path: Received: from mail.openembedded.org (mail.openembedded.org. [140.211.169.62]) by mx.google.com with ESMTP id h18si3150968pfq.161.2019.11.13.07.33.45; Wed, 13 Nov 2019 07:33:46 -0800 (PST) Received-SPF: pass (google.com: best guess record for domain of openembedded-core-bounces@lists.openembedded.org designates 140.211.169.62 as permitted sender) client-ip=140.211.169.62; Authentication-Results: mx.google.com; dkim=neutral (body hash did not verify) header.i=@gmail.com header.s=20161025 header.b=TUOOGxcI; spf=pass (google.com: best guess record for domain of openembedded-core-bounces@lists.openembedded.org designates 140.211.169.62 as permitted sender) smtp.mailfrom=openembedded-core-bounces@lists.openembedded.org; dmarc=fail (p=NONE sp=QUARANTINE dis=NONE) header.from=gmail.com Received: from ec2-34-214-78-129.us-west-2.compute.amazonaws.com (localhost [127.0.0.1]) by mail.openembedded.org (Postfix) with ESMTP id DF8DE7F81C; Wed, 13 Nov 2019 15:32:42 +0000 (UTC) X-Original-To: openembedded-core@lists.openembedded.org Delivered-To: openembedded-core@lists.openembedded.org Received: from mail-pg1-f180.google.com (mail-pg1-f180.google.com [209.85.215.180]) by mail.openembedded.org (Postfix) with ESMTP id 35BEF7F7B9 for ; Wed, 13 Nov 2019 15:32:32 +0000 (UTC) Received: by mail-pg1-f180.google.com with SMTP id 15so1597474pgh.5 for ; Wed, 13 Nov 2019 07:32:33 -0800 (PST) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20161025; h=from:to:subject:date:message-id:in-reply-to:references; bh=NHiwr4BCHCUhA+FQbhoYAGHXT1DkyaIKh+cLjD2PDyM=; b=TUOOGxcIL6zHzEZFgo6rttI4W+sJJyxNfUVoK8Jeckb/KXL8HesrdwairAjRQEsDyt JRO0/npgQiEZEZGcbC/rZb6vrlX+m4cqvIya8udpmFeYvDTKWclKi1UtSNRFHioZTJ95 tWnk/VYX8falzuLXsTQJj5kr7UqZAS+q3FPVPsLgOCh4x2aQWVl48CnuODgJ5nZnyvY1 8WRM3fYsnNJA84z9rIRJcCj6k2WQUjZb9J9/HVGoL8HSFWwjYxzTyvXTW2ux4eiXI/b7 CwynCZW3SJgMFXsA0Tn3S8Q7cyN0SqKn9IEZQDxuVtOnrJ/8wAr+7Kz2iJcT/7W8P/ci XJqQ== X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:from:to:subject:date:message-id:in-reply-to :references; bh=NHiwr4BCHCUhA+FQbhoYAGHXT1DkyaIKh+cLjD2PDyM=; b=UWoQIU53BKaQrp13xTtf4uxANPdpvzenZn8pbE3MDwe/Coyk18Ccyc75CMlYkVk5GS YfVcB424BF1H9Bx+rwJkawahsr5QeQjHfNtyzcS3sZZMJBEPUNMPDmyx5FWNqAuGclvO 9jYpqL4Gnw/UKdsuh9jEGTZqluUGgV/RawYinUXj/3alpNQPk3Dmp6Mh+WoUg73SsiCq 7glOtoL2If0WRkZzXKqQvQUsvPXKZzcms26DZo6kYNe2QFMLeZ/Azlse2NozAgM0867G IixfTOfyadcwqMViooENWg0Jpt2GpYkEGXvkEfexaBMLgLGcD7AVRRhrtQTDzpYSCvLG +zZw== X-Gm-Message-State: APjAAAU04iXd4ctxwY26Wv/Rxvo9E3WieqJgqulvoLiXqcCq/OdtDOiU RlmgGzZ83GTbDYQb9vxVi4DHocyi X-Received: by 2002:a62:ac06:: with SMTP id v6mr5024078pfe.210.1573659153309; Wed, 13 Nov 2019 07:32:33 -0800 (PST) Received: from akuster-ThinkPad-T460s.mvista.com ([2601:202:4180:a5c0:2cf9:53ea:e6ab:d378]) by smtp.gmail.com with ESMTPSA id s18sm3713613pfm.27.2019.11.13.07.32.32 for (version=TLS1_2 cipher=ECDHE-RSA-AES128-SHA bits=128/128); Wed, 13 Nov 2019 07:32:32 -0800 (PST) From: Armin Kuster To: openembedded-core@lists.openembedded.org Date: Wed, 13 Nov 2019 07:31:50 -0800 Message-Id: X-Mailer: git-send-email 2.7.4 In-Reply-To: References: Subject: [OE-core] [zeus 08/31] libpam: set CVE_PRODUCT X-BeenThere: openembedded-core@lists.openembedded.org X-Mailman-Version: 2.1.12 Precedence: list List-Id: Patches and discussions about the oe-core layer List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , MIME-Version: 1.0 Sender: openembedded-core-bounces@lists.openembedded.org Errors-To: openembedded-core-bounces@lists.openembedded.org From: Ross Burton Signed-off-by: Ross Burton Signed-off-by: Richard Purdie Signed-off-by: Adrian Bunk Signed-off-by: Anuj Mittal --- meta/recipes-extended/pam/libpam_1.3.1.bb | 2 ++ 1 file changed, 2 insertions(+) -- 2.7.4 -- _______________________________________________ Openembedded-core mailing list Openembedded-core@lists.openembedded.org http://lists.openembedded.org/mailman/listinfo/openembedded-core diff --git a/meta/recipes-extended/pam/libpam_1.3.1.bb b/meta/recipes-extended/pam/libpam_1.3.1.bb index 6b73f0a..a2aa1ec 100644 --- a/meta/recipes-extended/pam/libpam_1.3.1.bb +++ b/meta/recipes-extended/pam/libpam_1.3.1.bb @@ -163,3 +163,5 @@ CONFFILES_${PN}-runtime += "${sysconfdir}/pam.d/common-account" CONFFILES_${PN}-runtime += "${sysconfdir}/security/limits.conf" UPSTREAM_CHECK_URI = "https://github.com/linux-pam/linux-pam/releases" + +CVE_PRODUCT = "linux-pam" From patchwork Wed Nov 13 15:31:54 2019 Content-Type: text/plain; charset="utf-8" MIME-Version: 1.0 Content-Transfer-Encoding: 7bit X-Patchwork-Submitter: Armin Kuster X-Patchwork-Id: 179322 Delivered-To: patch@linaro.org Received: by 2002:a92:38d5:0:0:0:0:0 with SMTP id g82csp9761081ilf; Wed, 13 Nov 2019 07:34:34 -0800 (PST) X-Google-Smtp-Source: APXvYqwo1bNWUSTA32S/UeVuapTz+yDUvSoNxbqHecG+0vlb3pJvVUqGL28J7Q18FAcz/wI/cjbr X-Received: by 2002:a17:90a:326b:: with SMTP id k98mr5751752pjb.50.1573659274045; Wed, 13 Nov 2019 07:34:34 -0800 (PST) ARC-Seal: i=1; a=rsa-sha256; t=1573659274; cv=none; d=google.com; s=arc-20160816; b=O8QW5GWWVaS1hFYFTTsNmoln2vHceXhU0dXHyRX2VJjCHnS6UiKZgEu76hTDIX5zMb k01wSKQcRIYM0SaRPnvyofZ0LkfIHWkDa8u1KXSP47uhV1pNaC6EIWiaS0lSqPU9OXBS HhvHn4q+DQDB8rBA5ILkqouSCiBcd43x6oDoet8lHFZWKnufLJYu3QFy2twMUtRF5ro+ OGUUDg+6ib5kL/FgXNQVAL/lty/MoZIdUXuWMaHztRWGybAX0Q5666T6sjicH94Ll3cQ WVypIIiyoOdHevQEQABM7PcHMrQsM5aU7G9RdngYDrFrCv+Nwpb+NcBbcYAg1SI0cPte GEeg== ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816; h=errors-to:sender:content-transfer-encoding:mime-version :list-subscribe:list-help:list-post:list-archive:list-unsubscribe :list-id:precedence:subject:references:in-reply-to:message-id:date :to:from:dkim-signature:delivered-to; bh=HPKDPV/HZkG4TIJKQ1rYxb8rLxc1jVAm7OI+aGMyMho=; b=htP1ZbrlWPyWrEWuNBxFE6JEox1JYxGc3zBhDFIZJoVAJhTMgVed7R1FkXBqovn0Iv YxWnBYM2hn8eo2yNuMwiXqtlQh22XcxJ/n3tR6EZpAyOFcRPChxGBCnlizYFTCPKCI7G IlmuPYn86wLKA86zTAmAD4RCNCVwnDhX0qPWckshbmbwlLjuTo6r/voBLv4lvUy80spU hJqMWpzt5KRA/E7DEXRLBzNeSeaZdzbyNrG7FNVJjZp3w1oCEqq6uKwOaLZChHw1jrJz w2pSpR0KjfnvlWWIW0O/wgctnjzMbF8QEuVRm+xcPyaOANtnmDN0gkcobC6x2MW5I9mg LwpA== ARC-Authentication-Results: i=1; mx.google.com; dkim=neutral (body hash did not verify) header.i=@gmail.com header.s=20161025 header.b=KHbvDelA; spf=pass (google.com: best guess record for domain of openembedded-core-bounces@lists.openembedded.org designates 140.211.169.62 as permitted sender) smtp.mailfrom=openembedded-core-bounces@lists.openembedded.org; dmarc=fail (p=NONE sp=QUARANTINE dis=NONE) header.from=gmail.com Return-Path: Received: from mail.openembedded.org (mail.openembedded.org. [140.211.169.62]) by mx.google.com with ESMTP id 68si3118643pge.220.2019.11.13.07.34.33; Wed, 13 Nov 2019 07:34:34 -0800 (PST) Received-SPF: pass (google.com: best guess record for domain of openembedded-core-bounces@lists.openembedded.org designates 140.211.169.62 as permitted sender) client-ip=140.211.169.62; Authentication-Results: mx.google.com; dkim=neutral (body hash did not verify) header.i=@gmail.com header.s=20161025 header.b=KHbvDelA; spf=pass (google.com: best guess record for domain of openembedded-core-bounces@lists.openembedded.org designates 140.211.169.62 as permitted sender) smtp.mailfrom=openembedded-core-bounces@lists.openembedded.org; dmarc=fail (p=NONE sp=QUARANTINE dis=NONE) header.from=gmail.com Received: from ec2-34-214-78-129.us-west-2.compute.amazonaws.com (localhost [127.0.0.1]) by mail.openembedded.org (Postfix) with ESMTP id D1EB87F870; Wed, 13 Nov 2019 15:32:47 +0000 (UTC) X-Original-To: openembedded-core@lists.openembedded.org Delivered-To: openembedded-core@lists.openembedded.org Received: from mail-pl1-f175.google.com (mail-pl1-f175.google.com [209.85.214.175]) by mail.openembedded.org (Postfix) with ESMTP id AE38F7F7DD for ; Wed, 13 Nov 2019 15:32:36 +0000 (UTC) Received: by mail-pl1-f175.google.com with SMTP id az9so1204525plb.11 for ; Wed, 13 Nov 2019 07:32:38 -0800 (PST) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20161025; h=from:to:subject:date:message-id:in-reply-to:references; bh=Veb47STQy06JyrRpRrtcJzVXh/pb7PA3d6emSS2vUrE=; b=KHbvDelA7368ZC+8m6hhDy94jvXwE0JzkYBbk27W0rCDzDZBOfZvkLPTeTt3AZgk5V 2o5DIGhbILxhKfKy2Zr9xEZ1vYMQ2ayije5t6Fx2nGqGOlqP3iQevrD2pGfJhkciQ1wp GTl720q2Hb+tKWPqSo117dRXXZ3JEn/DgGbS+kcISUgKu+vxH6UApw/tWG+EDefRBGOl tyJXtTf9MAe6d3fi9DKsS6MHOcQ7qTreXNTUpg2bjADPE4PFrj1BjNVexmbJ07T0LD8y 7T9FR6GhOO74EZoxpSdO4wnI4qNuVDHJy7XkFUml7uQxlnuo3yO503yFmZMt1Q6Gv4gv 9eRg== X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:from:to:subject:date:message-id:in-reply-to :references; bh=Veb47STQy06JyrRpRrtcJzVXh/pb7PA3d6emSS2vUrE=; b=oY3QevniiTp+bhdNTvBbcfpiUGv3SlfQAECp4efVbCI3wnqCi8oy8yy3xmV8fmkDnB EbNM6t3cP78KKA6W3yLhdYtxb59I8LI4w5v1o7QeZTNcGfRLtAGuLMLygipBNGhDxxbM YtAK+XoFY8mcSo7XYChugNDilYaBpOsQnkuawAm5QGSerGsUIS4GP4O68WW5HNDfuuS0 /tJbCIDtI6rnj8Q2rVat8eI10SuwTh2gDmR3dc1MTQyCHrEuMEILaEv+KshathxN14zx bN3fMwJwl5iThG494Z4OHEAsEwS7J9i6Wc1yDRxlHoj8Ob+XMazxiUqJows1eqtQefJ1 6Fow== X-Gm-Message-State: APjAAAVqMestoJ3QbgQ2zU74edJxnmJfV3XmgoPcrNNWhCBh1a6sTW5I Jlcf2f85B7DHODdkRZcu75pJqvIB X-Received: by 2002:a17:902:9b86:: with SMTP id y6mr4597900plp.36.1573659157510; Wed, 13 Nov 2019 07:32:37 -0800 (PST) Received: from akuster-ThinkPad-T460s.mvista.com ([2601:202:4180:a5c0:2cf9:53ea:e6ab:d378]) by smtp.gmail.com with ESMTPSA id s18sm3713613pfm.27.2019.11.13.07.32.36 for (version=TLS1_2 cipher=ECDHE-RSA-AES128-SHA bits=128/128); Wed, 13 Nov 2019 07:32:37 -0800 (PST) From: Armin Kuster To: openembedded-core@lists.openembedded.org Date: Wed, 13 Nov 2019 07:31:54 -0800 Message-Id: <2435c38e109cac68476ee672eca09b4cd6237ed4.1573658916.git.akuster808@gmail.com> X-Mailer: git-send-email 2.7.4 In-Reply-To: References: Subject: [OE-core] [zeus 12/31] file: fix CVE-2019-18218 X-BeenThere: openembedded-core@lists.openembedded.org X-Mailman-Version: 2.1.12 Precedence: list List-Id: Patches and discussions about the oe-core layer List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , MIME-Version: 1.0 Sender: openembedded-core-bounces@lists.openembedded.org Errors-To: openembedded-core-bounces@lists.openembedded.org From: Ross Burton Signed-off-by: Ross Burton Signed-off-by: Richard Purdie Signed-off-by: Armin Kuster --- .../file/file/CVE-2019-18218.patch | 55 ++++++++++++++++++++++ meta/recipes-devtools/file/file_5.37.bb | 3 +- 2 files changed, 57 insertions(+), 1 deletion(-) create mode 100644 meta/recipes-devtools/file/file/CVE-2019-18218.patch -- 2.7.4 -- _______________________________________________ Openembedded-core mailing list Openembedded-core@lists.openembedded.org http://lists.openembedded.org/mailman/listinfo/openembedded-core diff --git a/meta/recipes-devtools/file/file/CVE-2019-18218.patch b/meta/recipes-devtools/file/file/CVE-2019-18218.patch new file mode 100644 index 0000000..3d02c5a --- /dev/null +++ b/meta/recipes-devtools/file/file/CVE-2019-18218.patch @@ -0,0 +1,55 @@ +cdf_read_property_info in cdf.c in file through 5.37 does not restrict the +number of CDF_VECTOR elements, which allows a heap-based buffer overflow (4-byte +out-of-bounds write). + +CVE: CVE-2019-18218 +Upstream-Status: Backport +Signed-off-by: Ross Burton + +From 46a8443f76cec4b41ec736eca396984c74664f84 Mon Sep 17 00:00:00 2001 +From: Christos Zoulas +Date: Mon, 26 Aug 2019 14:31:39 +0000 +Subject: [PATCH] Limit the number of elements in a vector (found by oss-fuzz) + +--- + src/cdf.c | 9 ++++----- + src/cdf.h | 1 + + 2 files changed, 5 insertions(+), 5 deletions(-) + +diff --git a/src/cdf.c b/src/cdf.c +index 9d6396742..bb81d6374 100644 +--- a/src/cdf.c ++++ b/src/cdf.c +@@ -1016,8 +1016,9 @@ cdf_read_property_info(const cdf_stream_t *sst, const cdf_header_t *h, + goto out; + } + nelements = CDF_GETUINT32(q, 1); +- if (nelements == 0) { +- DPRINTF(("CDF_VECTOR with nelements == 0\n")); ++ if (nelements > CDF_ELEMENT_LIMIT || nelements == 0) { ++ DPRINTF(("CDF_VECTOR with nelements == %" ++ SIZE_T_FORMAT "u\n", nelements)); + goto out; + } + slen = 2; +@@ -1060,8 +1061,6 @@ cdf_read_property_info(const cdf_stream_t *sst, const cdf_header_t *h, + goto out; + inp += nelem; + } +- DPRINTF(("nelements = %" SIZE_T_FORMAT "u\n", +- nelements)); + for (j = 0; j < nelements && i < sh.sh_properties; + j++, i++) + { +diff --git a/src/cdf.h b/src/cdf.h +index 2f7e554b7..05056668f 100644 +--- a/src/cdf.h ++++ b/src/cdf.h +@@ -48,6 +48,7 @@ + typedef int32_t cdf_secid_t; + + #define CDF_LOOP_LIMIT 10000 ++#define CDF_ELEMENT_LIMIT 100000 + + #define CDF_SECID_NULL 0 + #define CDF_SECID_FREE -1 diff --git a/meta/recipes-devtools/file/file_5.37.bb b/meta/recipes-devtools/file/file_5.37.bb index 6547d12..509b6ce 100644 --- a/meta/recipes-devtools/file/file_5.37.bb +++ b/meta/recipes-devtools/file/file_5.37.bb @@ -14,7 +14,8 @@ DEPENDS_class-native = "zlib-native" # Blacklist a bogus tag in upstream check UPSTREAM_CHECK_GITTAGREGEX = "FILE(?P(?!6_23).+)" -SRC_URI = "git://github.com/file/file.git" +SRC_URI = "git://github.com/file/file.git \ + file://CVE-2019-18218.patch" SRCREV = "a0d5b0e4e9f97d74a9911e95cedd579852e25398" S = "${WORKDIR}/git" From patchwork Wed Nov 13 15:31:55 2019 Content-Type: text/plain; charset="utf-8" MIME-Version: 1.0 Content-Transfer-Encoding: 7bit X-Patchwork-Submitter: Armin Kuster X-Patchwork-Id: 179323 Delivered-To: patch@linaro.org Received: by 2002:a92:38d5:0:0:0:0:0 with SMTP id g82csp9761274ilf; Wed, 13 Nov 2019 07:34:44 -0800 (PST) X-Google-Smtp-Source: APXvYqyw+7OiQ9yYuniCVzeTHuuNfH8rE7gU3hhHOk4vThFxqxnGLMQb8IPKRaEgGXcvOVPbI6Ot X-Received: by 2002:a62:7697:: with SMTP id r145mr4936536pfc.261.1573659283999; Wed, 13 Nov 2019 07:34:43 -0800 (PST) ARC-Seal: i=1; a=rsa-sha256; t=1573659283; cv=none; d=google.com; s=arc-20160816; b=UdCmP5377KvIaF3BufP2wbNE1rWg5PPEGbtcx/ZwRoKHbmtptkQOWk/MF098aVsemP qwmHZ06LN4/d1tIqGbkMWW0WJ85ofB7641niGlPMBQYzarc9cUHcHo1kKmvatGx7XDi0 knOYiSKP3V326v8krhUB+p5sAM0eHhW3C7Nh9vi/LjPiQlRVIXtat5kn0c85hoTk2kAh wr4MhhQA7PbAe5y8PKl50xMmCnA/LdRq4SxIrKdhLvsO4bymUmUg+0ntMOHnW3nu0F6z a9Wkg5eHTB13Aq+ELYyWkNW/zZoUoJvl+rqnfmSteddwCQzDhPnoEaqThjZ/sOkqmOOx J6CQ== ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816; h=errors-to:sender:content-transfer-encoding:mime-version :list-subscribe:list-help:list-post:list-archive:list-unsubscribe :list-id:precedence:subject:references:in-reply-to:message-id:date :to:from:dkim-signature:delivered-to; bh=5WYgrVJlPvUSrLwYsCghtJgnaA5LSCXcWCO4PAzcaAo=; b=TSbjXhlAqaN1K0MFfol6VUufVALSbbY6nb2fH8YGveoAt5zB4l6oNXGyehoI5LVR9w z+Xcy/kECuB+dwIgaFzOxH1USK1aazQ3vIQvSz7Wu8eteIcr577oL/FlkFoU51MGCUsW 7s6G6QxqaLWiOAruZhBRdo3+aMaSBBcRadYfGSQcYsCulQ8b6RAorqmteHPyV8jBFoCv s5/Oth5x+xwjSvC2DfQY0iERsSp0s+2a9RwQ+7zlN9xQoTtIMysD8xxCC5Ssm3L7NCIZ 7iRtLzvD4uW7kvi8Hm1v86CKoRYmQK4YwVmMlj+rVQpBjB2yyIhLA5xE8canWVugREZD dgkw== ARC-Authentication-Results: i=1; mx.google.com; dkim=neutral (body hash did not verify) header.i=@gmail.com header.s=20161025 header.b=MsmS0MMF; spf=pass (google.com: best guess record for domain of openembedded-core-bounces@lists.openembedded.org designates 140.211.169.62 as permitted sender) smtp.mailfrom=openembedded-core-bounces@lists.openembedded.org; dmarc=fail (p=NONE sp=QUARANTINE dis=NONE) header.from=gmail.com Return-Path: Received: from mail.openembedded.org (mail.openembedded.org. [140.211.169.62]) by mx.google.com with ESMTP id j64si3404404pfb.274.2019.11.13.07.34.43; Wed, 13 Nov 2019 07:34:43 -0800 (PST) Received-SPF: pass (google.com: best guess record for domain of openembedded-core-bounces@lists.openembedded.org designates 140.211.169.62 as permitted sender) client-ip=140.211.169.62; Authentication-Results: mx.google.com; dkim=neutral (body hash did not verify) header.i=@gmail.com header.s=20161025 header.b=MsmS0MMF; spf=pass (google.com: best guess record for domain of openembedded-core-bounces@lists.openembedded.org designates 140.211.169.62 as permitted sender) smtp.mailfrom=openembedded-core-bounces@lists.openembedded.org; dmarc=fail (p=NONE sp=QUARANTINE dis=NONE) header.from=gmail.com Received: from ec2-34-214-78-129.us-west-2.compute.amazonaws.com (localhost [127.0.0.1]) by mail.openembedded.org (Postfix) with ESMTP id 1005B7F841; Wed, 13 Nov 2019 15:32:49 +0000 (UTC) X-Original-To: openembedded-core@lists.openembedded.org Delivered-To: openembedded-core@lists.openembedded.org Received: from mail-pl1-f172.google.com (mail-pl1-f172.google.com [209.85.214.172]) by mail.openembedded.org (Postfix) with ESMTP id A19FA7F7D5 for ; Wed, 13 Nov 2019 15:32:37 +0000 (UTC) Received: by mail-pl1-f172.google.com with SMTP id a18so1209988plm.10 for ; Wed, 13 Nov 2019 07:32:39 -0800 (PST) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20161025; h=from:to:subject:date:message-id:in-reply-to:references; bh=Xpw+6a7b+ZWsOQ4dSSMnGDtZIuvfEaSDqkxaL1fT29o=; b=MsmS0MMF+36wjmm09N/RNg2omEGykyjGfwddgWhyHMKBMZ8nXnshigN9q0tgKNofDP /ecEFrB/26UmefHRPz4hmupWOKgt+ACCclX39cWWVQF7jmkfnfaX/uZDHSoTZATaai2M DdCQHIGRDCZ/oDW+gCa0Cu32Hc8QgUR/maqIqaO5ZmFC4Cxvfs0eS0+9nKxLA+piPJ0b GHmWtoNynvpwaDokwaZL41ssYZpsXM01fiEeEVibrqeW7DAjHUJZ748myq1r++NUs/dc P5Sl7x0z7dFCEqP/k4aENUagDDyB41As9J/zcLrj8nxKL7hop/6aKJCcQpA7FwoR0023 X81A== X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:from:to:subject:date:message-id:in-reply-to :references; bh=Xpw+6a7b+ZWsOQ4dSSMnGDtZIuvfEaSDqkxaL1fT29o=; b=eRSLeqevWkdrDQATcDY8mea5VOG9c3AXjJml+/gPj8y0PClsC8/1xhkobZ9fZUWoOG Ze8tJn5Li8L8PlzbONma1c0EB0cGEo0r1Un5sL2uSVGEmHMh8ZOdAqfvCwMHwr0I8AO8 PFC5JugN7XwJ1fNxBA5b3RFo6oWf1/MIvFverZ4sv579nUWHIgEqw/3HbObTDxvxK1DT JMFsRApXjsbVp7J0CdzM+X4wxF2orRYX7AnGkwXZcgLWWMsZr6R0tiJuJJggKFyWfM4m r36VtZ3kiI5006EUPjmCrUD1WVEXncUYl11Tw/PQ5ejawWPKOqZ5VX2XJHZ36/3INz6y f+/g== X-Gm-Message-State: APjAAAUy1iPHS+zp0zgRggJe2n1thdavxlz9CcXvH0NrZJ5D6IaxAI4i 923iVXrNS8CWwfAdINJuEZ0pM5VT X-Received: by 2002:a17:902:b482:: with SMTP id y2mr4529946plr.128.1573659158449; Wed, 13 Nov 2019 07:32:38 -0800 (PST) Received: from akuster-ThinkPad-T460s.mvista.com ([2601:202:4180:a5c0:2cf9:53ea:e6ab:d378]) by smtp.gmail.com with ESMTPSA id s18sm3713613pfm.27.2019.11.13.07.32.37 for (version=TLS1_2 cipher=ECDHE-RSA-AES128-SHA bits=128/128); Wed, 13 Nov 2019 07:32:37 -0800 (PST) From: Armin Kuster To: openembedded-core@lists.openembedded.org Date: Wed, 13 Nov 2019 07:31:55 -0800 Message-Id: <4668ac8c2600fe5698f030ed1e8cba69c0989a2c.1573658916.git.akuster808@gmail.com> X-Mailer: git-send-email 2.7.4 In-Reply-To: References: Subject: [OE-core] [zeus 13/31] file: run test suite when building natively X-BeenThere: openembedded-core@lists.openembedded.org X-Mailman-Version: 2.1.12 Precedence: list List-Id: Patches and discussions about the oe-core layer List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , MIME-Version: 1.0 Sender: openembedded-core-bounces@lists.openembedded.org Errors-To: openembedded-core-bounces@lists.openembedded.org From: Ross Burton As we apply the same patches to native and target builds of file, we can verify that the patches are not breaking by executing the test suite during the build of file-native. Signed-off-by: Ross Burton Signed-off-by: Richard Purdie Signed-off-by: Armin Kuster --- meta/recipes-devtools/file/file_5.37.bb | 4 ++++ 1 file changed, 4 insertions(+) -- 2.7.4 -- _______________________________________________ Openembedded-core mailing list Openembedded-core@lists.openembedded.org http://lists.openembedded.org/mailman/listinfo/openembedded-core diff --git a/meta/recipes-devtools/file/file_5.37.bb b/meta/recipes-devtools/file/file_5.37.bb index 509b6ce..60fc661 100644 --- a/meta/recipes-devtools/file/file_5.37.bb +++ b/meta/recipes-devtools/file/file_5.37.bb @@ -32,6 +32,10 @@ EXTRA_OEMAKE_append_class-nativesdk = "-e FILE_COMPILE=${STAGING_BINDIR_NATIVE}/ FILES_${PN} += "${datadir}/misc/*.mgc" +do_compile_append_class-native() { + oe_runmake check +} + do_install_append_class-native() { create_cmdline_wrapper ${D}/${bindir}/file \ --magic-file ${datadir}/misc/magic.mgc From patchwork Wed Nov 13 15:31:59 2019 Content-Type: text/plain; charset="utf-8" MIME-Version: 1.0 Content-Transfer-Encoding: 7bit X-Patchwork-Submitter: Armin Kuster X-Patchwork-Id: 179324 Delivered-To: patch@linaro.org Received: by 2002:a92:38d5:0:0:0:0:0 with SMTP id g82csp9762215ilf; Wed, 13 Nov 2019 07:35:21 -0800 (PST) X-Google-Smtp-Source: APXvYqy40e5UT56/XvGxNmnZdISZHuPnv+WnBDcxxlyYz40uQQogOnK36ae4MVaEhXCyMq6RhguD X-Received: by 2002:a17:902:8308:: with SMTP id bd8mr4432722plb.86.1573659321178; Wed, 13 Nov 2019 07:35:21 -0800 (PST) ARC-Seal: i=1; a=rsa-sha256; t=1573659321; cv=none; d=google.com; s=arc-20160816; b=oqCdP2ThtkzVq3F8R7By3tztN/cmoqku/3qr1Kun+KkbVfdvIA7AdomnVPkf/K7Kcw 4xneAQvVenQY6Yg1+WNjW74+0VWswrZ0d6HeWXl4dcWRmlFS+CiwfI7MMk8UTVxpjYp3 jw55W0EwyHhCcOU6qamEKDQm/fO4eZj2elxGheSyK/FcewAN5A4RbN8iCB28MLm6gtQ0 Xy19sSiNMq7P++QCiuTrg4fZfEBOM243iFKTsIYsi+rxWd8QNoGDW3+r8/LuK8rJ5Ylx 6gl0LU3VBFYAsXGDj226UDhQ6K9NTvJ4BdCpJllPXb1PaVZg4KIDsypRqjAf+67CIzX0 3tgQ== ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816; h=errors-to:sender:content-transfer-encoding:mime-version :list-subscribe:list-help:list-post:list-archive:list-unsubscribe :list-id:precedence:subject:references:in-reply-to:message-id:date :to:from:dkim-signature:delivered-to; bh=sFmp+NnBwFwaH82SckXjW+8XOuUhzCmIsAGn92S2ZJU=; b=HimBWdSan037XVLJ19PGI8YOZ2vfXiT+KUCx/7E9IIqfzCWmLhmDqKGFpnvOgU58e6 wmSIXWEt/yu9gO7xufO74rpWKfTlRs/hi8lbEZ2tvaxCBKpqpfslbx1rx2wT3JVzMzvw S9Fd++kHgND86FCq7981nrWrSGX1YXflUILfRzfgL+bZBzY2nVDueajREmXS8f8yrj8Z Q8VUXB3XenGM7EdeQC6jt9FTZ5TpVwMqKNJKPQu8Uv8g3KArlqKnWpE1WJdSGlW+YPnJ 9dcX6pUoLBJWDtuDphnqYqtSp/JZjzQsZJutYB3qur4HUVv28dqABJTLPgAi08M0bt4c W0Dg== ARC-Authentication-Results: i=1; mx.google.com; dkim=neutral (body hash did not verify) header.i=@gmail.com header.s=20161025 header.b=W4nYpoKW; spf=pass (google.com: best guess record for domain of openembedded-core-bounces@lists.openembedded.org designates 140.211.169.62 as permitted sender) smtp.mailfrom=openembedded-core-bounces@lists.openembedded.org; dmarc=fail (p=NONE sp=QUARANTINE dis=NONE) header.from=gmail.com Return-Path: Received: from mail.openembedded.org (mail.openembedded.org. [140.211.169.62]) by mx.google.com with ESMTP id i24si2739156pju.65.2019.11.13.07.35.20; Wed, 13 Nov 2019 07:35:21 -0800 (PST) Received-SPF: pass (google.com: best guess record for domain of openembedded-core-bounces@lists.openembedded.org designates 140.211.169.62 as permitted sender) client-ip=140.211.169.62; Authentication-Results: mx.google.com; dkim=neutral (body hash did not verify) header.i=@gmail.com header.s=20161025 header.b=W4nYpoKW; spf=pass (google.com: best guess record for domain of openembedded-core-bounces@lists.openembedded.org designates 140.211.169.62 as permitted sender) smtp.mailfrom=openembedded-core-bounces@lists.openembedded.org; dmarc=fail (p=NONE sp=QUARANTINE dis=NONE) header.from=gmail.com Received: from ec2-34-214-78-129.us-west-2.compute.amazonaws.com (localhost [127.0.0.1]) by mail.openembedded.org (Postfix) with ESMTP id 1172C7F8A6; Wed, 13 Nov 2019 15:32:54 +0000 (UTC) X-Original-To: openembedded-core@lists.openembedded.org Delivered-To: openembedded-core@lists.openembedded.org Received: from mail-pf1-f174.google.com (mail-pf1-f174.google.com [209.85.210.174]) by mail.openembedded.org (Postfix) with ESMTP id 5305C7F81C for ; Wed, 13 Nov 2019 15:32:41 +0000 (UTC) Received: by mail-pf1-f174.google.com with SMTP id b19so1902980pfd.3 for ; Wed, 13 Nov 2019 07:32:42 -0800 (PST) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20161025; h=from:to:subject:date:message-id:in-reply-to:references; bh=MTPlbdV2kzNVJ0uYniwmPagNs43B4KG0ZEqQNd7r3mQ=; b=W4nYpoKW/b+rHk46UINELz0+uCRTRew7ig4DmeegN9jHunpffQYbp6BzHvQ+mtNvv6 oFXMdmjwDJTPQtAns0Cr7vHubPi0JYglm3u1K6kmTPinsPUbus08C6tPrjyBLYwWePa9 EyNaP6FV8l0cachX8Pc4AJM2Ckp84ZHcIp+I2NZpr9RCv7/S3epD3gfuJNftGTnab8Lv wCV4qOLYKKRk4ywGw6IWBafU6PMh31SWdubd70Kff308ImzwXgxR3FhbxLt+lWBcv1aT oHSC1oeiwh9QiJjn7U+Fnatl4+OJm22/ZNP34+g3TIhz6VqFjGu11RPTQXqBF7Tw+ML+ pggQ== X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:from:to:subject:date:message-id:in-reply-to :references; bh=MTPlbdV2kzNVJ0uYniwmPagNs43B4KG0ZEqQNd7r3mQ=; b=QX7sD5UXAE1WAnA7Fp0mSCqQdoDx2ns4+84ebmxtvhHuEP1mvwAA4/MwzlGD4sJm3T fKwvdDHNrkwqWVLNscvBE9hqBsObejItHlas3IFEZpRhV+vZ690yQtdoyDHxe12rFjaH zqjS5fnbR/Ck0AkEXqWRh+pEF7dnaBOdLxShOGuctcnTYb62tqs0wZmc0Lx/yWg0A5bu GLY4fwCBEXQ3MEGvRkDokwrvpspjrfzxKkdUJNL0yosbKiDdN+OVbIu3VMh/Fc8gh+yU w4AQ8+8zTlwuwWIu4Mnlgr0AnlmDj4qE6X28Tt5Qz642I9EFrGG1cGxE/SQb3bZ/e7ij aliQ== X-Gm-Message-State: APjAAAXnAanrY4yG4JQUi8FrSlw815+FBsn9dhTbzHymfOuKWum9RcCz UxOWyLlATLo9yIi+CqvrB0hIgqWx X-Received: by 2002:a17:90b:24c:: with SMTP id fz12mr5678241pjb.51.1573659162039; Wed, 13 Nov 2019 07:32:42 -0800 (PST) Received: from akuster-ThinkPad-T460s.mvista.com ([2601:202:4180:a5c0:2cf9:53ea:e6ab:d378]) by smtp.gmail.com with ESMTPSA id s18sm3713613pfm.27.2019.11.13.07.32.41 for (version=TLS1_2 cipher=ECDHE-RSA-AES128-SHA bits=128/128); Wed, 13 Nov 2019 07:32:41 -0800 (PST) From: Armin Kuster To: openembedded-core@lists.openembedded.org Date: Wed, 13 Nov 2019 07:31:59 -0800 Message-Id: <29d926802e7f8b4614a2dafa0af4c923912e1811.1573658916.git.akuster808@gmail.com> X-Mailer: git-send-email 2.7.4 In-Reply-To: References: Subject: [OE-core] [zeus 17/31] cve-check: ensure all known CVEs are in the report X-BeenThere: openembedded-core@lists.openembedded.org X-Mailman-Version: 2.1.12 Precedence: list List-Id: Patches and discussions about the oe-core layer List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , MIME-Version: 1.0 Sender: openembedded-core-bounces@lists.openembedded.org Errors-To: openembedded-core-bounces@lists.openembedded.org From: Ross Burton CVEs that are whitelisted or were not vulnerable when there are version comparisons were not included in the report, so alter the logic to ensure that all relevant CVEs are in the report for completeness. Signed-off-by: Ross Burton Signed-off-by: Armin Kuster --- meta/classes/cve-check.bbclass | 9 +++++++-- 1 file changed, 7 insertions(+), 2 deletions(-) -- 2.7.4 -- _______________________________________________ Openembedded-core mailing list Openembedded-core@lists.openembedded.org http://lists.openembedded.org/mailman/listinfo/openembedded-core diff --git a/meta/classes/cve-check.bbclass b/meta/classes/cve-check.bbclass index c00d291..f87bcc9 100644 --- a/meta/classes/cve-check.bbclass +++ b/meta/classes/cve-check.bbclass @@ -208,12 +208,14 @@ def check_cves(d, patched_cves): if cve in cve_whitelist: bb.note("%s-%s has been whitelisted for %s" % (product, pv, cve)) + # TODO: this should be in the report as 'whitelisted' + patched_cves.add(cve) elif cve in patched_cves: bb.note("%s has been patched" % (cve)) else: to_append = False if (operator_start == '=' and pv == version_start): - cves_unpatched.append(cve) + to_append = True else: if operator_start: try: @@ -243,8 +245,11 @@ def check_cves(d, patched_cves): to_append = to_append_start or to_append_end if to_append: + bb.note("%s-%s is vulnerable to %s" % (product, pv, cve)) cves_unpatched.append(cve) - bb.debug(2, "%s-%s is not patched for %s" % (product, pv, cve)) + else: + bb.note("%s-%s is not vulnerable to %s" % (product, pv, cve)) + patched_cves.add(cve) conn.close() return (list(patched_cves), cves_unpatched) From patchwork Wed Nov 13 15:32:00 2019 Content-Type: text/plain; charset="utf-8" MIME-Version: 1.0 Content-Transfer-Encoding: 7bit X-Patchwork-Submitter: Armin Kuster X-Patchwork-Id: 179325 Delivered-To: patch@linaro.org Received: by 2002:a92:38d5:0:0:0:0:0 with SMTP id g82csp9762422ilf; Wed, 13 Nov 2019 07:35:29 -0800 (PST) X-Google-Smtp-Source: APXvYqwvLhClhkAR/TDG6dq6OT7fQQIhgg6scpCaOBTDCCir6vvtyUTeBl1tXW5T/kO2hc/cWOhe X-Received: by 2002:a63:e90f:: with SMTP id i15mr4447850pgh.9.1573659329630; Wed, 13 Nov 2019 07:35:29 -0800 (PST) ARC-Seal: i=1; a=rsa-sha256; t=1573659329; cv=none; d=google.com; s=arc-20160816; b=CIxUJSiaWpsuWf6cxpk4mlM8xNcpOfshUVmKavHVna4Ij2bLK9cu3cBWdB4ytZXVIz xC1Y0vKIRWRoXAxovuxtSaeOrCqTu1HdmStdL6oLnIca9P/kVoRXs5gMJbT8YYR0OlRX bkS1AYl/IGNBrDoTlzPeQ1q5WVHcDGYCnpmqx4amsZnWvKXXD6XKlRiOEmUCAwMQPyor 0iJ4ew/01CPTRFAebuspTL9yDo186HVLRWjPvMz35XAF9lsRayMRqn1KsQQ2OvkVd7pm fAMAdABg7UhGVizDYA2g+KxHQbzX9QLynnSUY6t5jWNS5sEdRIGILqPCZ3HXVD4Zm+zG THyw== ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816; h=errors-to:sender:content-transfer-encoding:mime-version :list-subscribe:list-help:list-post:list-archive:list-unsubscribe :list-id:precedence:subject:references:in-reply-to:message-id:date :to:from:dkim-signature:delivered-to; bh=e04O6wFPlUItok/yYD84rmYiaZoin9fyY08CwTmn+e4=; b=LQ2p+iWFx8pzLM/VBgJEPEe6KHq/XuutLJNjhJFn77tJK3jY1o7BxWZQenF/m1CoNv z5zLhdRfb2W2FVwaKcBx9RSWVgz4WaXIgz/GqR1iRyxDYcCFWEbANRG0g8FsSdU6Ekse rROJXOt7Wm4nAI4HX8A2dDRdEd01ppnPFoAafhXNgOdzddTkYKgRl01kAm42odYc/D+4 Yyic91ibjyl/G0bC8wI82VUXuBLPu3VWeaHnQMAO3OK0xB7cIeJCFPtESVyQfoi8JcoK d8rG6YJkxQosADBTqkaJf2i+FxJppvyRDSh1W7x3kCXXq/yLRT/vsZBf9uJqofsC3SPk vYbA== ARC-Authentication-Results: i=1; mx.google.com; dkim=neutral (body hash did not verify) header.i=@gmail.com header.s=20161025 header.b=gm2zKsIy; spf=pass (google.com: best guess record for domain of openembedded-core-bounces@lists.openembedded.org designates 140.211.169.62 as permitted sender) smtp.mailfrom=openembedded-core-bounces@lists.openembedded.org; dmarc=fail (p=NONE sp=QUARANTINE dis=NONE) header.from=gmail.com Return-Path: Received: from mail.openembedded.org (mail.openembedded.org. [140.211.169.62]) by mx.google.com with ESMTP id p6si3297027pfb.115.2019.11.13.07.35.29; Wed, 13 Nov 2019 07:35:29 -0800 (PST) Received-SPF: pass (google.com: best guess record for domain of openembedded-core-bounces@lists.openembedded.org designates 140.211.169.62 as permitted sender) client-ip=140.211.169.62; Authentication-Results: mx.google.com; dkim=neutral (body hash did not verify) header.i=@gmail.com header.s=20161025 header.b=gm2zKsIy; spf=pass (google.com: best guess record for domain of openembedded-core-bounces@lists.openembedded.org designates 140.211.169.62 as permitted sender) smtp.mailfrom=openembedded-core-bounces@lists.openembedded.org; dmarc=fail (p=NONE sp=QUARANTINE dis=NONE) header.from=gmail.com Received: from ec2-34-214-78-129.us-west-2.compute.amazonaws.com (localhost [127.0.0.1]) by mail.openembedded.org (Postfix) with ESMTP id 411197F897; Wed, 13 Nov 2019 15:32:55 +0000 (UTC) X-Original-To: openembedded-core@lists.openembedded.org Delivered-To: openembedded-core@lists.openembedded.org Received: from mail-pf1-f176.google.com (mail-pf1-f176.google.com [209.85.210.176]) by mail.openembedded.org (Postfix) with ESMTP id 6BC317F81C for ; Wed, 13 Nov 2019 15:32:42 +0000 (UTC) Received: by mail-pf1-f176.google.com with SMTP id c184so1910718pfb.0 for ; Wed, 13 Nov 2019 07:32:43 -0800 (PST) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20161025; h=from:to:subject:date:message-id:in-reply-to:references; bh=p2qippAzDsbEGIrVESDCMqqabAka+K1mq2+mJYLx3l4=; b=gm2zKsIyK6yRyyiRF027RsbPiM8hjiZfIvME4dGT2M77q8NYAellDm8LoCUwr8WlK5 Lz0FwLiRE+X29T1vrt5H+qwVGeEVHcVrobA6adjkzWKYRUuB5SO/CaqBCBGprQn8AN5q coRVKPDLDdhQVGPn0k+jz325Xrw7h7imZF9VPt/62/6USRvx84BzSgVU4inw/mNyNP74 fC5+BOQrEznejczOOj3DZM71hOyFUMxSBys8Xs4j/7G48g3nuObdwnN31JC2Gg6qDnBj VB7Ru/MfKC8a7+5AEDXVSiDs7C/k7MRsiulDcoSTQONyS6YrrwukyFwHXZt1p2uc1zIA Rarg== X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:from:to:subject:date:message-id:in-reply-to :references; bh=p2qippAzDsbEGIrVESDCMqqabAka+K1mq2+mJYLx3l4=; b=otK3Gz9z6/f78OSsADVfajiKHGv/LelfxrcWsscnGVNLQPoVCBX6JtmOb64G36JHhm juOt6MTbNi9jGMmQney5qsLEn2oKIC/bhh6XZdwG9VeczvZ1fsMDgiWj2NHCDMubIiKL hwq/HKvXF/4ecDCIplqGqeM5/0VKgj7UN29vgRVJE8oivyMh+ITyzspevr+7BLZS3ywE bUUdM7Q42tJyM5/9jRgy8nikDTnPTVUmiCK2y8W5JIL55vLzPn+W5ZxxQuHbQoJnPMdL W5naN/ibAW12NWVgCLVKft4RnAk2IEoRNZRm2mDd4KjumFUbXQ6pWdwBH0SWfgGkMPu2 7SLg== X-Gm-Message-State: APjAAAU0MzeeU4Brp8fGI6cBNcu9O5jpbp5Y5fR5Nn/Ja+6qrPK1Wwfx t8Yz/XoVXNFGNUZfbsybgFJZoIrd X-Received: by 2002:a17:90a:2470:: with SMTP id h103mr5979555pje.12.1573659163315; Wed, 13 Nov 2019 07:32:43 -0800 (PST) Received: from akuster-ThinkPad-T460s.mvista.com ([2601:202:4180:a5c0:2cf9:53ea:e6ab:d378]) by smtp.gmail.com with ESMTPSA id s18sm3713613pfm.27.2019.11.13.07.32.42 for (version=TLS1_2 cipher=ECDHE-RSA-AES128-SHA bits=128/128); Wed, 13 Nov 2019 07:32:42 -0800 (PST) From: Armin Kuster To: openembedded-core@lists.openembedded.org Date: Wed, 13 Nov 2019 07:32:00 -0800 Message-Id: <7ae318fb4eaa8595c30af68c9df0d6c09116dc4d.1573658916.git.akuster808@gmail.com> X-Mailer: git-send-email 2.7.4 In-Reply-To: References: Subject: [OE-core] [zeus 18/31] qemu-helper-native: add missing option to getopt() call X-BeenThere: openembedded-core@lists.openembedded.org X-Mailman-Version: 2.1.12 Precedence: list List-Id: Patches and discussions about the oe-core layer List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , MIME-Version: 1.0 Sender: openembedded-core-bounces@lists.openembedded.org Errors-To: openembedded-core-bounces@lists.openembedded.org From: Ross Burton Noticed by -Wall. Signed-off-by: Ross Burton Signed-off-by: Armin Kuster --- meta/recipes-devtools/qemu/qemu-helper/tunctl.c | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) -- 2.7.4 -- _______________________________________________ Openembedded-core mailing list Openembedded-core@lists.openembedded.org http://lists.openembedded.org/mailman/listinfo/openembedded-core diff --git a/meta/recipes-devtools/qemu/qemu-helper/tunctl.c b/meta/recipes-devtools/qemu/qemu-helper/tunctl.c index 16e24a2..fc00e99 100644 --- a/meta/recipes-devtools/qemu/qemu-helper/tunctl.c +++ b/meta/recipes-devtools/qemu/qemu-helper/tunctl.c @@ -41,7 +41,7 @@ int main(int argc, char **argv) int tap_fd, opt, delete = 0, brief = 0; char *tun = "", *file = "/dev/net/tun", *name = argv[0], *end; - while((opt = getopt(argc, argv, "bd:f:t:u:g:")) > 0){ + while((opt = getopt(argc, argv, "bd:f:t:u:g:h")) > 0){ switch(opt) { case 'b': brief = 1; From patchwork Wed Nov 13 15:32:01 2019 Content-Type: text/plain; charset="utf-8" MIME-Version: 1.0 Content-Transfer-Encoding: 7bit X-Patchwork-Submitter: Armin Kuster X-Patchwork-Id: 179326 Delivered-To: patch@linaro.org Received: by 2002:a92:38d5:0:0:0:0:0 with SMTP id g82csp9762604ilf; Wed, 13 Nov 2019 07:35:38 -0800 (PST) X-Google-Smtp-Source: APXvYqwnxrwbL60CHVxwcH09xsoiaaB7g0RAO6dWnV7wqKrc0pFhhpFwRoC91i5vgRlA3zYb8DT4 X-Received: by 2002:a17:902:266:: with SMTP id 93mr4330792plc.163.1573659338574; Wed, 13 Nov 2019 07:35:38 -0800 (PST) ARC-Seal: i=1; a=rsa-sha256; t=1573659338; cv=none; d=google.com; s=arc-20160816; b=wpND1pIJRIhcfWqQ50P/8iJNLPwDPEpExr5IRekFtHKjhNlmY3+Lbb7MOVDb6xjvpG R92E9FBUk41RhRMBGapl4c0qOLlaUHaly7PyhAtuUaLSJWyMnL5bZtjsaf3pcuUYwWSf OLr5/fWxFc0MObkwaOmG5d/+8KB8AjEPpeEJrMZDKwlFXzlPUj98bKOCrgWykjZMJwD2 qaEny9fj0MMDt25FjQy8joZF40qebDru2FIP7HEGgrhLJYTU19gXUCRavYk83KBM04+2 CqzZp0QmMlDqMFw8vSnEbsM6cnqaMV6hPBSV9btYr/BNiuVL7WjYDba3gdeyvBr0tDm4 7w+w== ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816; h=errors-to:sender:content-transfer-encoding:mime-version :list-subscribe:list-help:list-post:list-archive:list-unsubscribe :list-id:precedence:subject:references:in-reply-to:message-id:date :to:from:dkim-signature:delivered-to; bh=WkOyWvDZXtUpDjz0zSX7KMaEDWkhd8gWadnPsA7ncaI=; b=x4q+uTVhXxTRWo7o/1HLmrrP44ClK/L6mRDQJVraJpHCkwKcKMAS0Fvthy+MVAvFDi MenIawvLjWGkz82u+1rxTd4g4APnkUAfqv5301khRgp0JmRuCjOHiq3z45+8s59GsGYN gr/CUXP8hKUt6Kmcs+nkjinO7g0gU/LaywwBBaVrFwwaIhn3pdAC6x7kUc6PBmAZNIXA u9eEyTHr3w4Sofl3/TUPicA3lkGOVCsAOUH3/08VMG3GznZV6kNdfVPDDtcHxDrZkAVM TeyBklAT6F08yuq0MPGAlD/hJRG4CS70uNrVtyR34jwZWjTfACtVV64wac129KQnGlSS yE7w== ARC-Authentication-Results: i=1; mx.google.com; dkim=neutral (body hash did not verify) header.i=@gmail.com header.s=20161025 header.b=ac1cRpSV; spf=pass (google.com: best guess record for domain of openembedded-core-bounces@lists.openembedded.org designates 140.211.169.62 as permitted sender) smtp.mailfrom=openembedded-core-bounces@lists.openembedded.org; dmarc=fail (p=NONE sp=QUARANTINE dis=NONE) header.from=gmail.com Return-Path: Received: from mail.openembedded.org (mail.openembedded.org. [140.211.169.62]) by mx.google.com with ESMTP id v4si3070808pgr.357.2019.11.13.07.35.38; Wed, 13 Nov 2019 07:35:38 -0800 (PST) Received-SPF: pass (google.com: best guess record for domain of openembedded-core-bounces@lists.openembedded.org designates 140.211.169.62 as permitted sender) client-ip=140.211.169.62; Authentication-Results: mx.google.com; dkim=neutral (body hash did not verify) header.i=@gmail.com header.s=20161025 header.b=ac1cRpSV; spf=pass (google.com: best guess record for domain of openembedded-core-bounces@lists.openembedded.org designates 140.211.169.62 as permitted sender) smtp.mailfrom=openembedded-core-bounces@lists.openembedded.org; dmarc=fail (p=NONE sp=QUARANTINE dis=NONE) header.from=gmail.com Received: from ec2-34-214-78-129.us-west-2.compute.amazonaws.com (localhost [127.0.0.1]) by mail.openembedded.org (Postfix) with ESMTP id 41D5F7F87E; Wed, 13 Nov 2019 15:32:57 +0000 (UTC) X-Original-To: openembedded-core@lists.openembedded.org Delivered-To: openembedded-core@lists.openembedded.org Received: from mail-pf1-f182.google.com (mail-pf1-f182.google.com [209.85.210.182]) by mail.openembedded.org (Postfix) with ESMTP id C33897F820 for ; Wed, 13 Nov 2019 15:32:43 +0000 (UTC) Received: by mail-pf1-f182.google.com with SMTP id p24so1902000pfn.4 for ; Wed, 13 Nov 2019 07:32:45 -0800 (PST) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20161025; h=from:to:subject:date:message-id:in-reply-to:references; bh=6rb/J/AEYQhuTLPYkxMkPGBjGOBNYO33YGlscNFOcyc=; b=ac1cRpSVVNz8VIj8AmYnhiYl73JbzdgrcJl+8ZdWmkKMlegUF1atxaGzK1zoE+Y31y pHVRALsTWJQujnH2AJuVTqmVnuMUBratmk8RMlIOvFg35WEGxjgFWNakVdvU6E9f3uME ZL/IH+tu5PCrIq1A2FHxGdy2klmD7BOIHyWyF2u1nb06LVA4CWsUCFSLYwo2n3PEvMnz 8mv9OHxTcZgGCtJ68SrGVBXcXrVVQYT/zUyaCmAfkdKdYbUv6WkU/4XfehOZJ7vKfZOW gN/SFsBmSTt34AUqsJWxHHM4s9XHwHW3MbBBaQfFSkLF3m090ln58aVRzjiPaoj0LAO9 v+dg== X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:from:to:subject:date:message-id:in-reply-to :references; bh=6rb/J/AEYQhuTLPYkxMkPGBjGOBNYO33YGlscNFOcyc=; b=YLECKk2iDu6y8lXtMvBniGQt8hePUm0bIO4ZF60mD3oSflQ2bXzt+3DjkzlhtHh7kY 1aFA9f2vIHrCF0tySpg5RsePrIleZtRiYX3ekxaak8XlCkVIFwo3ewixGtBtPVb/dPAc TPCQXzkI/It5WxXO7feHZtUOjJ6ySMrJhzEH6hWW5erUQZi5UUVnx527LeTyEwo4egis FX5R4XlZCVIgZddvbg0W1ycTpFcuwmsbhs51PKQ1RHOFpi+v6F56uYTQKSoCV1WWhEmD EcqzklIYQ2o7ou77maCNolT71UwZyM4tViYZSI54RtHpzBylbMq38fkaOm4jVKeT+S9O f98Q== X-Gm-Message-State: APjAAAX2f0eia5BHaTJLdY9PKvR6P0yH+szTzOsxkZeysIIVUqUu9/kC sR86GrgPglNdxMPEophh6VxsjE7p X-Received: by 2002:a17:90a:2942:: with SMTP id x2mr5750016pjf.119.1573659164367; Wed, 13 Nov 2019 07:32:44 -0800 (PST) Received: from akuster-ThinkPad-T460s.mvista.com ([2601:202:4180:a5c0:2cf9:53ea:e6ab:d378]) by smtp.gmail.com with ESMTPSA id s18sm3713613pfm.27.2019.11.13.07.32.43 for (version=TLS1_2 cipher=ECDHE-RSA-AES128-SHA bits=128/128); Wed, 13 Nov 2019 07:32:43 -0800 (PST) From: Armin Kuster To: openembedded-core@lists.openembedded.org Date: Wed, 13 Nov 2019 07:32:01 -0800 Message-Id: X-Mailer: git-send-email 2.7.4 In-Reply-To: References: Subject: [OE-core] [zeus 19/31] qemu-helper-native: showing help shouldn't be an error X-BeenThere: openembedded-core@lists.openembedded.org X-Mailman-Version: 2.1.12 Precedence: list List-Id: Patches and discussions about the oe-core layer List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , MIME-Version: 1.0 Sender: openembedded-core-bounces@lists.openembedded.org Errors-To: openembedded-core-bounces@lists.openembedded.org From: Ross Burton Displaying a help message if help was requested isn't an error. Signed-off-by: Ross Burton Signed-off-by: Armin Kuster --- meta/recipes-devtools/qemu/qemu-helper/tunctl.c | 14 ++++++++------ 1 file changed, 8 insertions(+), 6 deletions(-) -- 2.7.4 -- _______________________________________________ Openembedded-core mailing list Openembedded-core@lists.openembedded.org http://lists.openembedded.org/mailman/listinfo/openembedded-core diff --git a/meta/recipes-devtools/qemu/qemu-helper/tunctl.c b/meta/recipes-devtools/qemu/qemu-helper/tunctl.c index fc00e99..d745dd0 100644 --- a/meta/recipes-devtools/qemu/qemu-helper/tunctl.c +++ b/meta/recipes-devtools/qemu/qemu-helper/tunctl.c @@ -19,7 +19,7 @@ #define TUNSETGROUP _IOW('T', 206, int) #endif -static void Usage(char *name) +static void Usage(char *name, int status) { fprintf(stderr, "Create: %s [-b] [-u owner] [-g group] [-t device-name] " "[-f tun-clone-device]\n", name); @@ -28,7 +28,7 @@ static void Usage(char *name) fprintf(stderr, "The default tun clone device is /dev/net/tun - some systems" " use\n/dev/misc/net/tun instead\n\n"); fprintf(stderr, "-b will result in brief output (just the device name)\n"); - exit(1); + exit(status); } int main(int argc, char **argv) @@ -63,7 +63,7 @@ int main(int argc, char **argv) if(*end != '\0'){ fprintf(stderr, "'%s' is neither a username nor a numeric uid.\n", optarg); - Usage(name); + Usage(name, 1); } break; case 'g': @@ -76,7 +76,7 @@ int main(int argc, char **argv) if(*end != '\0'){ fprintf(stderr, "'%s' is neither a groupname nor a numeric group.\n", optarg); - Usage(name); + Usage(name, 1); } break; @@ -84,8 +84,10 @@ int main(int argc, char **argv) tun = optarg; break; case 'h': + Usage(name, 0); + break; default: - Usage(name); + Usage(name, 1); } } @@ -93,7 +95,7 @@ int main(int argc, char **argv) argc -= optind; if(argc > 0) - Usage(name); + Usage(name, 1); if((tap_fd = open(file, O_RDWR)) < 0){ fprintf(stderr, "Failed to open '%s' : ", file); From patchwork Wed Nov 13 15:32:02 2019 Content-Type: text/plain; charset="utf-8" MIME-Version: 1.0 Content-Transfer-Encoding: 7bit X-Patchwork-Submitter: Armin Kuster X-Patchwork-Id: 179327 Delivered-To: patch@linaro.org Received: by 2002:a92:38d5:0:0:0:0:0 with SMTP id g82csp9762834ilf; Wed, 13 Nov 2019 07:35:47 -0800 (PST) X-Google-Smtp-Source: APXvYqwLc7RV8SkkEt38K3Owsdp/JD0YeBSidqMEd30oTZ8eeJVW7nwPjtJIR5rSKIAGJmO8x0Ja X-Received: by 2002:a17:90b:24c:: with SMTP id fz12mr5697675pjb.51.1573659347177; Wed, 13 Nov 2019 07:35:47 -0800 (PST) ARC-Seal: i=1; a=rsa-sha256; t=1573659347; cv=none; d=google.com; s=arc-20160816; b=yclDoAMLhRftoA/rwBFYEIhJuqZq2C+9wzCMaz19ftDkJDBaszeJ8Footjo6LjRuiA vIJ23X+o6zLjI3q5W/s7PwLRNfe7BGP0oA6KoAGoO9FTqA71u/MgsPYfKnqX2N1QeRzG 2rvUrxUIIVjxk8XBcobI7oaGROG5Jn80qM6900XLPXtWAuqD7onrCnhG3dhQ9CV+TPuT +jwGjoBYzOqlwLMoYFt2OSLt15+LEiLxzkDykiMIfFnjZeFFceo4saKBwd3iI3/SuNVY hYWLNjoi5NiDyHsHCdwPBjKy2YJR5KBBzTiCA6mGwHaPjlTNBo3gFfZFnFIyGoO7rSVK VNXQ== ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816; h=errors-to:sender:content-transfer-encoding:mime-version :list-subscribe:list-help:list-post:list-archive:list-unsubscribe :list-id:precedence:subject:references:in-reply-to:message-id:date :to:from:dkim-signature:delivered-to; bh=iNHkvw629unKhPJkmosONP31kOjGNebVKD9pVQ18ENs=; b=nXiBkrlvrLdfwzo1LmnuMB5hD99fOOdLAgii1yX6yTFqTy2qRt6bOltLQQfzfGKbjE CdXlAQ9q8B8IYC8STe/inasdGyGweF8Dj29xNuhBDceWmHCcAPI7BUjvEenMxYcdwWkD kL51syDIM4dnB+BYiwCaxoFn8WyJRlYqMEKzOOvh3iUgOVxEnrMIKWGjtjyugyvERf3M wm/+XCB+avmVMnImOHUbHMKfy7NB+nAXvHIrAQ+Mgs+Tf3KrVNRcK0zksibp5UGmPHF7 lx7iYHL1FIDri3KLPWpgom9rgG/YECOKwTUkFgfIkp81EJlHKBOyEr4d1DJwdkNPJ4NW SlLw== ARC-Authentication-Results: i=1; mx.google.com; dkim=neutral (body hash did not verify) header.i=@gmail.com header.s=20161025 header.b=ZfyoJwLR; spf=pass (google.com: best guess record for domain of openembedded-core-bounces@lists.openembedded.org designates 140.211.169.62 as permitted sender) smtp.mailfrom=openembedded-core-bounces@lists.openembedded.org; dmarc=fail (p=NONE sp=QUARANTINE dis=NONE) header.from=gmail.com Return-Path: Received: from mail.openembedded.org (mail.openembedded.org. [140.211.169.62]) by mx.google.com with ESMTP id c23si2964450pja.57.2019.11.13.07.35.46; Wed, 13 Nov 2019 07:35:47 -0800 (PST) Received-SPF: pass (google.com: best guess record for domain of openembedded-core-bounces@lists.openembedded.org designates 140.211.169.62 as permitted sender) client-ip=140.211.169.62; Authentication-Results: mx.google.com; dkim=neutral (body hash did not verify) header.i=@gmail.com header.s=20161025 header.b=ZfyoJwLR; spf=pass (google.com: best guess record for domain of openembedded-core-bounces@lists.openembedded.org designates 140.211.169.62 as permitted sender) smtp.mailfrom=openembedded-core-bounces@lists.openembedded.org; dmarc=fail (p=NONE sp=QUARANTINE dis=NONE) header.from=gmail.com Received: from ec2-34-214-78-129.us-west-2.compute.amazonaws.com (localhost [127.0.0.1]) by mail.openembedded.org (Postfix) with ESMTP id 934D77F887; Wed, 13 Nov 2019 15:32:58 +0000 (UTC) X-Original-To: openembedded-core@lists.openembedded.org Delivered-To: openembedded-core@lists.openembedded.org Received: from mail-pg1-f171.google.com (mail-pg1-f171.google.com [209.85.215.171]) by mail.openembedded.org (Postfix) with ESMTP id 3BF4F7F7C5 for ; Wed, 13 Nov 2019 15:32:44 +0000 (UTC) Received: by mail-pg1-f171.google.com with SMTP id q22so1609651pgk.2 for ; Wed, 13 Nov 2019 07:32:45 -0800 (PST) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20161025; h=from:to:subject:date:message-id:in-reply-to:references; bh=32EZqbdwQr21NXzJlqZNdwpehsrvsihsInbOWtYAYiI=; b=ZfyoJwLRHoyIWZj+/uvmMb1s22aRKiVDHfLunDU93thXUJzPLQon14lZqkQNixDfxp H1ZrcleTcRuuQOwCyz2mxScwz5shVShQS6DNi6RjrG3izfABJynACwbkgHgUAqQes6DE Pjoo7E3v7QpbyYFgU4mRRqNG9pW1uFQQBbJ54mIylgiowg/0ZRxy+mx0dr9i7lZCjqhv lFEf/htxdJN8kUs+o4Qm+gKvG7VproalwH+6Bj3JyWmfYG4Ddu6MrJuec4B9PmRRsu9v e/XdmVEJZ7Lqp0cc2gR80+IOMYnUmWsEIhHxF8yYowcGb1EMP4cDd6D1MpziLPZYHD2E HmeA== X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:from:to:subject:date:message-id:in-reply-to :references; bh=32EZqbdwQr21NXzJlqZNdwpehsrvsihsInbOWtYAYiI=; b=X8z/AcpcHNMSQykMbKypv5ZvxpmSwYraTZ5Vyh3HXENBfYiXn4hpfM8Nmt3UnaA/Ib JQxcTei4kXUBsgFIxR9dXlqD3w1LCVJtJ9NsGq3QTwUfYId/dHZ0mZxeE7O08830Q1d2 3F3T7xwlw2p94/R2Y/WMNO3T9UjG0Nj3bgU1wkVxtGkpJSfG1diIHp/6SyCg0AEPqffb OWDymnW9XnUi3oGfP2TIUeC0eoq8yg4x6i7e4q3gqjh45wdoOnU81+glLkFuFGSy7Xqp 9bdO86QiVQhBz76kuWAiLHkhcoXbXGMhN/WLh5c64t2quy7jcOxc9BsfrjHZmEBYuzUD CClQ== X-Gm-Message-State: APjAAAW72JK+RJ91TheG703tsVoqtZ0cuLYuU6jp+kaGtePnflQN/lrN BIrE9YMB+DDx0OQdtw9exZ9/quqa X-Received: by 2002:a17:90a:d78b:: with SMTP id z11mr5802126pju.36.1573659165107; Wed, 13 Nov 2019 07:32:45 -0800 (PST) Received: from akuster-ThinkPad-T460s.mvista.com ([2601:202:4180:a5c0:2cf9:53ea:e6ab:d378]) by smtp.gmail.com with ESMTPSA id s18sm3713613pfm.27.2019.11.13.07.32.44 for (version=TLS1_2 cipher=ECDHE-RSA-AES128-SHA bits=128/128); Wed, 13 Nov 2019 07:32:44 -0800 (PST) From: Armin Kuster To: openembedded-core@lists.openembedded.org Date: Wed, 13 Nov 2019 07:32:02 -0800 Message-Id: X-Mailer: git-send-email 2.7.4 In-Reply-To: References: Subject: [OE-core] [zeus 20/31] qemu-helper-native: pass compiler flags X-BeenThere: openembedded-core@lists.openembedded.org X-Mailman-Version: 2.1.12 Precedence: list List-Id: Patches and discussions about the oe-core layer List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , MIME-Version: 1.0 Sender: openembedded-core-bounces@lists.openembedded.org Errors-To: openembedded-core-bounces@lists.openembedded.org From: Ross Burton Pass all of the compiler and linker flags so the build is correctly configured. Signed-off-by: Ross Burton Signed-off-by: Armin Kuster --- meta/recipes-devtools/qemu/qemu-helper-native_1.0.bb | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) -- 2.7.4 -- _______________________________________________ Openembedded-core mailing list Openembedded-core@lists.openembedded.org http://lists.openembedded.org/mailman/listinfo/openembedded-core diff --git a/meta/recipes-devtools/qemu/qemu-helper-native_1.0.bb b/meta/recipes-devtools/qemu/qemu-helper-native_1.0.bb index d9d9da0..372eebd 100644 --- a/meta/recipes-devtools/qemu/qemu-helper-native_1.0.bb +++ b/meta/recipes-devtools/qemu/qemu-helper-native_1.0.bb @@ -12,7 +12,7 @@ S = "${WORKDIR}" inherit native do_compile() { - ${CC} tunctl.c -o tunctl + ${CC} ${CFLAGS} ${LDFLAGS} -Wall tunctl.c -o tunctl } do_install() { From patchwork Wed Nov 13 15:32:05 2019 Content-Type: text/plain; charset="utf-8" MIME-Version: 1.0 Content-Transfer-Encoding: 7bit X-Patchwork-Submitter: Armin Kuster X-Patchwork-Id: 179328 Delivered-To: patch@linaro.org Received: by 2002:a92:38d5:0:0:0:0:0 with SMTP id g82csp9763515ilf; Wed, 13 Nov 2019 07:36:18 -0800 (PST) X-Google-Smtp-Source: APXvYqxHnruT1JP0ars77P22NNw4QCFUxEQN85ClBJaOrU260q9Tm95levhnDPVfblAbGFleEk0L X-Received: by 2002:a63:f916:: with SMTP id h22mr4489573pgi.423.1573659378403; Wed, 13 Nov 2019 07:36:18 -0800 (PST) ARC-Seal: i=1; a=rsa-sha256; t=1573659378; cv=none; d=google.com; s=arc-20160816; b=vtyn110tZXPG3SYl54ivixkEYYjad3baEYTYiIlZERc9rg2ec5Fk4q58SB9Cm2y+zI elPBTJSRnTzxKImnn033G/AfPsBgpUlRgNGnn9xh09YCP2KRR2vijZDt3bBoCLKBsR7n ruiTAgXrMahq6Zye89z1Z0rzWjMRN7+sl+y1Sx8C3Kpylpua82jWeXw/0zGbTPDjra9A zuyr1j2oW/gqgb2gGtFvgTmIo9+ULazXeBAmgc6dOMryi1JF1MqlGaZAkdYgh3ZkAVBb qHLciFR8PzCk/Gm7sLznW5g0IOubt+1/sVzR9JwyNq4c4amd5fIB9xMOBTTOG+3d2KNY oZgQ== ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816; h=errors-to:sender:content-transfer-encoding:mime-version :list-subscribe:list-help:list-post:list-archive:list-unsubscribe :list-id:precedence:subject:references:in-reply-to:message-id:date :to:from:dkim-signature:delivered-to; bh=OpTBkkKQSw+afigI2hL2aFHFby9oD/H75t3H0ih3oDs=; b=ETJoa6ecfSznf41+p0Q+oRo8mF9xljAmXPrJCjIfBHOY8n+ltKBdeYGgYI1/3jesun 1z5Z0LDaDmu09c9mSMPZ3CeSaOPD91nE+lr2e0wlZ+k8m6+GB6pu+46eRBtDOzGbn4FA n/CsXirMT+TYwMYaJMeqccFhzTWrHjV3EgIUuezUrBI1dWdvHKAVXe6cFzQZpKlkin7M ZDmL0+eI0Wp72uLM0gTbjUecQvdqJTbgKVq8MlE+0qpgVSqnv4t12C5fnWAmmBzN0ipQ NWsFJmEFcG52/GjfGhfCm7279x34KJdUlNjV5gggdiBBcXfJxd9LLMaxz9wJ2hto88uC yw0w== ARC-Authentication-Results: i=1; mx.google.com; dkim=neutral (body hash did not verify) header.i=@gmail.com header.s=20161025 header.b="eP/vcaOH"; spf=pass (google.com: best guess record for domain of openembedded-core-bounces@lists.openembedded.org designates 140.211.169.62 as permitted sender) smtp.mailfrom=openembedded-core-bounces@lists.openembedded.org; dmarc=fail (p=NONE sp=QUARANTINE dis=NONE) header.from=gmail.com Return-Path: Received: from mail.openembedded.org (mail.openembedded.org. [140.211.169.62]) by mx.google.com with ESMTP id x131si3490360pgx.396.2019.11.13.07.36.18; Wed, 13 Nov 2019 07:36:18 -0800 (PST) Received-SPF: pass (google.com: best guess record for domain of openembedded-core-bounces@lists.openembedded.org designates 140.211.169.62 as permitted sender) client-ip=140.211.169.62; Authentication-Results: mx.google.com; dkim=neutral (body hash did not verify) header.i=@gmail.com header.s=20161025 header.b="eP/vcaOH"; spf=pass (google.com: best guess record for domain of openembedded-core-bounces@lists.openembedded.org designates 140.211.169.62 as permitted sender) smtp.mailfrom=openembedded-core-bounces@lists.openembedded.org; dmarc=fail (p=NONE sp=QUARANTINE dis=NONE) header.from=gmail.com Received: from ec2-34-214-78-129.us-west-2.compute.amazonaws.com (localhost [127.0.0.1]) by mail.openembedded.org (Postfix) with ESMTP id 1982B7F822; Wed, 13 Nov 2019 15:33:02 +0000 (UTC) X-Original-To: openembedded-core@lists.openembedded.org Delivered-To: openembedded-core@lists.openembedded.org Received: from mail-pg1-f196.google.com (mail-pg1-f196.google.com [209.85.215.196]) by mail.openembedded.org (Postfix) with ESMTP id 959497F848 for ; Wed, 13 Nov 2019 15:32:47 +0000 (UTC) Received: by mail-pg1-f196.google.com with SMTP id k1so278277pgg.12 for ; Wed, 13 Nov 2019 07:32:49 -0800 (PST) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20161025; h=from:to:subject:date:message-id:in-reply-to:references; bh=duxQDG8OK/jynCSpyBfTGHs7wKcqkXYCfCD9PLM05Gk=; b=eP/vcaOHAWTVfhLw5xikAKFZvsO6tbMzQpucFaCzjxEoj1J0uaJ2/9SMPlMLXZcoyy 4HRbOvetVJI5Ty4/Wnr6YlGPl5Kc5tlbMre7KjQMt0oXa8c+qp9oCF/Lg6CRhmDjI0Qe +2X+qvwdpOOUwZSLfLlpzXEu51qoZh7y59yirfffCsTNPP8pq9XjxZz8HChyJe+Uj0qx Z55fIQkctxx8/F1gydg5wxPTqfw6oyZGlYZi9EkVd6MQyZSuUpcX82Ni9qI8Pkq+U40Q mwBOnfUKfK+w/OhuSBVr0W7o1uCc32cNVPOIYnMTeMGogA8j7VHrWKtDvClumygvvUoa noow== X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:from:to:subject:date:message-id:in-reply-to :references; bh=duxQDG8OK/jynCSpyBfTGHs7wKcqkXYCfCD9PLM05Gk=; b=IkinO9itlHUbA/1OoeDgxBWx3CFvn9jEKuJDdVN0GbV0dNEohr3ZN0TRmIgr4B9Ypn +XYwW8CsuQT4wxbMTPwqkqgAlT5M5eZH9eM5mwGLfk6SYPPOJ5WvaCXgBLo8AoyYFVDf Pi2b04cZcLXSSmlRgox2rUQNjxjATvFfp92Pg82mEO77X6vw0RMomiyuD7fOipU2LDo8 ja0oPuOfMwVMeDt1S//lKn8sVBkpBD1Dbv8Ido5mXijsZE8mukOJ4Qcw50Dc7IxnQUuO vqQKmQjQ6IMiHfSWE6NepQeWBKzpG5RkkBdrA0xQN5qm+UICsNyNklSlFgiFblqHAaW2 soMQ== X-Gm-Message-State: APjAAAVlj9eMvM+TGYwRmg4t+lniDja5vMX32pil1X1XnOhkUeelM59x 7HYNF/wPLB3f4v1VjDUeiRbQ2NEr X-Received: by 2002:a62:1c8:: with SMTP id 191mr5189345pfb.152.1573659168586; Wed, 13 Nov 2019 07:32:48 -0800 (PST) Received: from akuster-ThinkPad-T460s.mvista.com ([2601:202:4180:a5c0:2cf9:53ea:e6ab:d378]) by smtp.gmail.com with ESMTPSA id s18sm3713613pfm.27.2019.11.13.07.32.47 for (version=TLS1_2 cipher=ECDHE-RSA-AES128-SHA bits=128/128); Wed, 13 Nov 2019 07:32:47 -0800 (PST) From: Armin Kuster To: openembedded-core@lists.openembedded.org Date: Wed, 13 Nov 2019 07:32:05 -0800 Message-Id: <6b5cadd1a5822641285946f7e2ad56e294658621.1573658916.git.akuster808@gmail.com> X-Mailer: git-send-email 2.7.4 In-Reply-To: References: Subject: [OE-core] [zeus 23/31] cve-check: failure to parse versions should be more visible X-BeenThere: openembedded-core@lists.openembedded.org X-Mailman-Version: 2.1.12 Precedence: list List-Id: Patches and discussions about the oe-core layer List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , MIME-Version: 1.0 Sender: openembedded-core-bounces@lists.openembedded.org Errors-To: openembedded-core-bounces@lists.openembedded.org From: Ross Burton Signed-off-by: Armin Kuster --- meta/classes/cve-check.bbclass | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) -- 2.7.4 -- _______________________________________________ Openembedded-core mailing list Openembedded-core@lists.openembedded.org http://lists.openembedded.org/mailman/listinfo/openembedded-core diff --git a/meta/classes/cve-check.bbclass b/meta/classes/cve-check.bbclass index f87bcc9..1c8b222 100644 --- a/meta/classes/cve-check.bbclass +++ b/meta/classes/cve-check.bbclass @@ -222,7 +222,7 @@ def check_cves(d, patched_cves): to_append_start = (operator_start == '>=' and LooseVersion(pv) >= LooseVersion(version_start)) to_append_start |= (operator_start == '>' and LooseVersion(pv) > LooseVersion(version_start)) except: - bb.note("%s: Failed to compare %s %s %s for %s" % + bb.warn("%s: Failed to compare %s %s %s for %s" % (product, pv, operator_start, version_start, cve)) to_append_start = False else: @@ -233,7 +233,7 @@ def check_cves(d, patched_cves): to_append_end = (operator_end == '<=' and LooseVersion(pv) <= LooseVersion(version_end)) to_append_end |= (operator_end == '<' and LooseVersion(pv) < LooseVersion(version_end)) except: - bb.note("%s: Failed to compare %s %s %s for %s" % + bb.warn("%s: Failed to compare %s %s %s for %s" % (product, pv, operator_end, version_end, cve)) to_append_end = False else: From patchwork Wed Nov 13 15:32:07 2019 Content-Type: text/plain; charset="utf-8" MIME-Version: 1.0 Content-Transfer-Encoding: 7bit X-Patchwork-Submitter: Armin Kuster X-Patchwork-Id: 179329 Delivered-To: patch@linaro.org Received: by 2002:a92:38d5:0:0:0:0:0 with SMTP id g82csp9763896ilf; Wed, 13 Nov 2019 07:36:36 -0800 (PST) X-Google-Smtp-Source: APXvYqw24uEHzu8CUIezFsVrUNZVF+nehwe8PWgSpOo4YsaPymvKUGH2c8ni8JN+IIoC65ZTMH1A X-Received: by 2002:a63:1b1f:: with SMTP id b31mr324840pgb.177.1573659395975; Wed, 13 Nov 2019 07:36:35 -0800 (PST) ARC-Seal: i=1; a=rsa-sha256; t=1573659395; cv=none; d=google.com; s=arc-20160816; b=e5+EXnfunQLWU+uXoXKNo7sLNeEEQtLbrIIWyVjqsntVosgZcWcDt0tec+Lm3DTJE4 WhxGiusEzCaSwlPW6TfGOQQ68sfcpmHM9roxbC7nwrOT4XuBzRujNNfvXZcnSGc+abxg i5F+poGEp/ANkf0lx28pEpTItFBBu384QpCwdHP3XuKVsFWIXHpaT98TVgnCQZtfenzY BvjT66z1SHsCjknIuJPDEYe9UdRyXeAVAI4qCv3VJ13gsdowxs/uMAy7+ZgeJEkSaTew adOK5eu28GQ8ePuvjIDtXQ9Ewz7GnCHw8gzaGJ/r+CTFOg7MUkdzV0s0SVK/J2FYpYPJ EGAA== ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816; h=errors-to:sender:content-transfer-encoding:mime-version :list-subscribe:list-help:list-post:list-archive:list-unsubscribe :list-id:precedence:subject:references:in-reply-to:message-id:date :to:from:dkim-signature:delivered-to; bh=XeXSTNDd7L/X4Ym5amfFWtGAGTZ2dtIj4s74DlSZ8os=; b=bGOXD3VkGPXLbHHbdZEkjtJOO4zxVoQAPGDqJOYhNxGYIFydHh6kUe37zUedAKzyzL zyzhbY+CBUMRZow6WBgdvQN+/mT/sDxJBJGyZFbkqE17k8ruqhGqiGJKOqCgFTxqDYFJ RCnLmGF/HzhMxrnGir55ptvV51L1TCQhuBYnWMjkv4+j3x0/M7IZIym9B21jmxQYCz6R jMpxoC2ERDmXiG8+2SKy/R4n+10iXA9BkrJv5vdOEXvydNGccQrlBeIw/NuCHs8o/Elc MCcMEJurfN6WEnxR9a5p2a3B2LQ9QVHRw1OV17oGKft+Uliq8Ru5AmwmWS4RMUeBTzYS ZZdQ== ARC-Authentication-Results: i=1; mx.google.com; dkim=neutral (body hash did not verify) header.i=@gmail.com header.s=20161025 header.b="KuXSzqB/"; spf=pass (google.com: best guess record for domain of openembedded-core-bounces@lists.openembedded.org designates 140.211.169.62 as permitted sender) smtp.mailfrom=openembedded-core-bounces@lists.openembedded.org; dmarc=fail (p=NONE sp=QUARANTINE dis=NONE) header.from=gmail.com Return-Path: Received: from mail.openembedded.org (mail.openembedded.org. [140.211.169.62]) by mx.google.com with ESMTP id j18si3048550pfh.139.2019.11.13.07.36.35; Wed, 13 Nov 2019 07:36:35 -0800 (PST) Received-SPF: pass (google.com: best guess record for domain of openembedded-core-bounces@lists.openembedded.org designates 140.211.169.62 as permitted sender) client-ip=140.211.169.62; Authentication-Results: mx.google.com; dkim=neutral (body hash did not verify) header.i=@gmail.com header.s=20161025 header.b="KuXSzqB/"; spf=pass (google.com: best guess record for domain of openembedded-core-bounces@lists.openembedded.org designates 140.211.169.62 as permitted sender) smtp.mailfrom=openembedded-core-bounces@lists.openembedded.org; dmarc=fail (p=NONE sp=QUARANTINE dis=NONE) header.from=gmail.com Received: from ec2-34-214-78-129.us-west-2.compute.amazonaws.com (localhost [127.0.0.1]) by mail.openembedded.org (Postfix) with ESMTP id 558C77F8D0; Wed, 13 Nov 2019 15:33:04 +0000 (UTC) X-Original-To: openembedded-core@lists.openembedded.org Delivered-To: openembedded-core@lists.openembedded.org Received: from mail-pg1-f181.google.com (mail-pg1-f181.google.com [209.85.215.181]) by mail.openembedded.org (Postfix) with ESMTP id B566B7F7B4 for ; Wed, 13 Nov 2019 15:32:49 +0000 (UTC) Received: by mail-pg1-f181.google.com with SMTP id k13so1605715pgh.3 for ; Wed, 13 Nov 2019 07:32:51 -0800 (PST) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20161025; h=from:to:subject:date:message-id:in-reply-to:references; bh=LoEUb3vUWCMmigr1IqaKYvMkxWUlPNNCuwa8gUUKmwA=; b=KuXSzqB/OfRcpzMqCsuEenW2aciurXzRdcDAbtdE3geTuXd4wrqDUqGLNVrakKKXn/ dvWDRLOU5D0jRhx6aG+OiIwaWiG76JUUphTtkcNrVWdDXECF4Bdf/HhtUBNoh/9p3BQ3 0ZL7F2IeQzdzgnlozIeMcTu2alxZEcHpdgtp1J3f+BHtBPfy8gnhpMoqsEHYfgSU3b8e NLNojEnc8fBjQobSCWCIbgNGkUiZSGBMCGsgpKAgWBgMyRB1FdHdsA6zPdHo3Z7vrr7I mU/86a7UG/+RTJCAO31eAn4itMyraEJXGNpciurfRibU+iOOJWWc99KHZT2srzA6O7Ac t0HA== X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:from:to:subject:date:message-id:in-reply-to :references; bh=LoEUb3vUWCMmigr1IqaKYvMkxWUlPNNCuwa8gUUKmwA=; b=jrTUFNTogwYt4mvUOWJ8MM44woSNyy0EApTO2kdya+1JYDNWQbQ37YMXmkc4I2NqjL fTL7nzLgVghf8bxvgiPqg1zOY2Xdq14eV+3Uw+sFuFpqaXgEfQFTgCuZHS9gJYZXANwH 2OuFbsLf85O+s+87GaUBhTR9Y8mKYW96sK448BfzRX84rCo7FIiRY98KwBFW9VOd5MQW 0WY81wQXXJE8wVqXwyiMWkegQPJsEQom4um/QxTfDirvS2ZsU2qGLPJoMZVVRlQrfXc7 wd6TAOh9zy0tOBj93BjF2XrYZS71wDPg8ZBS7hMZHyDcE4r/rjyJsZTlkR4CGUr1gBIh CKiA== X-Gm-Message-State: APjAAAV6z9Xq34Ye7HZysleM+9ly3GqD6MpMmsYzCzKFn3uChqexrjIm Gemfq/F/mVmbiX1vji5zfZrTYJ+p X-Received: by 2002:a62:ea19:: with SMTP id t25mr1710615pfh.74.1573659170803; Wed, 13 Nov 2019 07:32:50 -0800 (PST) Received: from akuster-ThinkPad-T460s.mvista.com ([2601:202:4180:a5c0:2cf9:53ea:e6ab:d378]) by smtp.gmail.com with ESMTPSA id s18sm3713613pfm.27.2019.11.13.07.32.49 for (version=TLS1_2 cipher=ECDHE-RSA-AES128-SHA bits=128/128); Wed, 13 Nov 2019 07:32:50 -0800 (PST) From: Armin Kuster To: openembedded-core@lists.openembedded.org Date: Wed, 13 Nov 2019 07:32:07 -0800 Message-Id: <90b4b7dd19526e8aba79cf469dcc2c05401f36cc.1573658916.git.akuster808@gmail.com> X-Mailer: git-send-email 2.7.4 In-Reply-To: References: Subject: [OE-core] [zeus 25/31] recipeutils-test: use a small dependency in the dummy recipe X-BeenThere: openembedded-core@lists.openembedded.org X-Mailman-Version: 2.1.12 Precedence: list List-Id: Patches and discussions about the oe-core layer List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , MIME-Version: 1.0 Sender: openembedded-core-bounces@lists.openembedded.org Errors-To: openembedded-core-bounces@lists.openembedded.org From: Ross Burton recipeutils-test has virtual/libx11 as a DEPENDS, but this will cause errors if the recipe is built in an environment without x11 in DISTRO_FEATURES. This dependency isn't actually used for anything so we could remove it, but to save updating the test cases too just swap virtual/libx11 for zlib. [ YOCTO #13611 ] Signed-off-by: Ross Burton Signed-off-by: Armin Kuster --- meta-selftest/recipes-test/recipeutils/recipeutils-test_1.2.bb | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) -- 2.7.4 -- _______________________________________________ Openembedded-core mailing list Openembedded-core@lists.openembedded.org http://lists.openembedded.org/mailman/listinfo/openembedded-core diff --git a/meta-selftest/recipes-test/recipeutils/recipeutils-test_1.2.bb b/meta-selftest/recipes-test/recipeutils/recipeutils-test_1.2.bb index 7c20d9a..0cd0494 100644 --- a/meta-selftest/recipes-test/recipeutils/recipeutils-test_1.2.bb +++ b/meta-selftest/recipes-test/recipeutils/recipeutils-test_1.2.bb @@ -4,7 +4,7 @@ require recipeutils-test.inc LICENSE = "Proprietary" LIC_FILES_CHKSUM = "file://${WORKDIR}/somefile;md5=d41d8cd98f00b204e9800998ecf8427e" -DEPENDS += "virtual/libx11" +DEPENDS += "zlib" BBCLASSEXTEND = "native nativesdk" From patchwork Wed Nov 13 15:32:08 2019 Content-Type: text/plain; charset="utf-8" MIME-Version: 1.0 Content-Transfer-Encoding: 7bit X-Patchwork-Submitter: Armin Kuster X-Patchwork-Id: 179330 Delivered-To: patch@linaro.org Received: by 2002:a92:38d5:0:0:0:0:0 with SMTP id g82csp9764079ilf; Wed, 13 Nov 2019 07:36:45 -0800 (PST) X-Google-Smtp-Source: APXvYqxXguZKrZm649AOcpcRNTrU/VTjCoMuwp1JistRw8OZj3+022p1xEvnmPQONSZmJ4GGbCxo X-Received: by 2002:a63:de08:: with SMTP id f8mr4361643pgg.107.1573659404976; Wed, 13 Nov 2019 07:36:44 -0800 (PST) ARC-Seal: i=1; a=rsa-sha256; t=1573659404; cv=none; d=google.com; s=arc-20160816; b=DPb6nLsPpX4IH0LQLH6PCELRNznTisuRH7RNYvVywuDcXf6z/mZoHfAjBE8mNntgEq BHVFbBVKxOspfvJrnXVJBCA8nqFPwOM6oJEo4TOdDCPV+P5S1ulXG9zahlOh71mdiojv h/weCyr5lNGhlMjPBJmM3yyjFVHCmYfIYC4J7VXg9leZd5dt91B47fVc1J4g4xTEbL41 MEOw4rsJAaT5fkoUoHjbZAcnwAbiz/oIRIW6J9cGKYEcdCoYvnwpbOy1KzixG0bAXwpm j1kZLJLUoGsiELrl6VlCqHZaL92d6XqhtQVwT0idGAfgjCgUsKwcadNwQ/4BXm3SqtOX lNeA== ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816; h=errors-to:sender:content-transfer-encoding:mime-version :list-subscribe:list-help:list-post:list-archive:list-unsubscribe :list-id:precedence:subject:references:in-reply-to:message-id:date :to:from:dkim-signature:delivered-to; bh=T8Vw/TGg+YVlWmbXkyXqy+0yYVUNA4xWSV5+6i6gHq8=; b=t+gcXU03USLs2uECkvNzSADjy4hdmY/+PG/zcgTqRxCXZKNDV+Y2g6b2pUZTGWnlDU /I20LrNPE1+Md3E4VnQ+x+7wGEOjHexS6gri1qfgh7WlyL79nH7HB+ZKJOK82VUuaa3H hzNCvZ3Bplf217SzRpE6n9LyoWM/dDwShM94L0KvbBniCs2AnWngLXkVR+SZ33yH/TiW K4mY4rZ0gNYQgSFWVIpdC8EexM3nAiUG0RTy4bYsMDY7m9WzOI3FFFx0fcHz2dKgVpsV L9maa8UpFtRqZxpbecLX4GB+LphEwiob05IIvQd6Yw3TBC/vh+DIswmZG97CCwTZAtiw lzYw== ARC-Authentication-Results: i=1; mx.google.com; dkim=neutral (body hash did not verify) header.i=@gmail.com header.s=20161025 header.b=GBd4hTLD; spf=pass (google.com: best guess record for domain of openembedded-core-bounces@lists.openembedded.org designates 140.211.169.62 as permitted sender) smtp.mailfrom=openembedded-core-bounces@lists.openembedded.org; dmarc=fail (p=NONE sp=QUARANTINE dis=NONE) header.from=gmail.com Return-Path: Received: from mail.openembedded.org (mail.openembedded.org. [140.211.169.62]) by mx.google.com with ESMTP id c4si3100833pfo.28.2019.11.13.07.36.44; Wed, 13 Nov 2019 07:36:44 -0800 (PST) Received-SPF: pass (google.com: best guess record for domain of openembedded-core-bounces@lists.openembedded.org designates 140.211.169.62 as permitted sender) client-ip=140.211.169.62; Authentication-Results: mx.google.com; dkim=neutral (body hash did not verify) header.i=@gmail.com header.s=20161025 header.b=GBd4hTLD; spf=pass (google.com: best guess record for domain of openembedded-core-bounces@lists.openembedded.org designates 140.211.169.62 as permitted sender) smtp.mailfrom=openembedded-core-bounces@lists.openembedded.org; dmarc=fail (p=NONE sp=QUARANTINE dis=NONE) header.from=gmail.com Received: from ec2-34-214-78-129.us-west-2.compute.amazonaws.com (localhost [127.0.0.1]) by mail.openembedded.org (Postfix) with ESMTP id 833677F93A; Wed, 13 Nov 2019 15:33:05 +0000 (UTC) X-Original-To: openembedded-core@lists.openembedded.org Delivered-To: openembedded-core@lists.openembedded.org Received: from mail-pf1-f196.google.com (mail-pf1-f196.google.com [209.85.210.196]) by mail.openembedded.org (Postfix) with ESMTP id CCF107F845 for ; Wed, 13 Nov 2019 15:32:50 +0000 (UTC) Received: by mail-pf1-f196.google.com with SMTP id b19so1903318pfd.3 for ; Wed, 13 Nov 2019 07:32:52 -0800 (PST) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20161025; h=from:to:subject:date:message-id:in-reply-to:references; bh=UnB+qFtf7XRTf1acXkY+pelryarBLz4L3x6kJa6PSfw=; b=GBd4hTLDqRDLmErNKt3wzw3TeChDDOJmQua+azvxeKytMiff3idMxuGhQmjOf1ks0u vqS89YlT9IQRHXgDuAY+VJb5VlWKHzSmznkFPUCrSk55rhtZDhsX6Jrn6lxF1KOjkLjA PbGuQ4lkVmGcHjTwoy050sMt8kvUCqc55ZlMe1PkkgddNC85Wc7aKXc4z1AzRDox0B9i lyAqK/tqE58M59Gp7V23Kpt8PjteVcM9WBRz/kXvvTUDOFkATG1jPUQddFIN+/nCvGu1 G4dggZG97G+D9ak7FuIBeO9/nkLKYcT0/SjKcaUNkduW6rWk15KEJCiubIwlRudNfB3c JQjw== X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:from:to:subject:date:message-id:in-reply-to :references; bh=UnB+qFtf7XRTf1acXkY+pelryarBLz4L3x6kJa6PSfw=; b=TsGb0XDCOhVMLg3s+aQxY4uB6loWGDGxDkmmrAB664hT1GpcTbkEsjvkJhOugzg4Sp XtvqX5pxFEv7vWEkxDltjle40TO/gmDeo4L0nQKzWc03XE+tzTcivA0ePUZ7vZpg4BOP 58EBQ5AnTsIsFqsVpjdEvP5L1vFJmqhNoLRtX4gWwxucPHhJyNi4B9sBXznfUN1wtzPb RrD4cNSU5UgNAWF2UZUGbwh5L+Csaqt6vjYnzyGyqbj0poR/aFyn5ubzHXjDoc7IqjCf wl3EW0CEnbHjxJry5qEUflvbyZPD5JnLdKFY7OaaR+apA+wZJnEA8tiJrVKPqI6StO/T rfKA== X-Gm-Message-State: APjAAAXGhqiVS5tf4nDdOAqgOCF4So6lsvh4sIHkg59F5Imb9H8LNN5Y /gm3EhXLnvcJmV+u4ozgKU/1eCaM X-Received: by 2002:a65:6704:: with SMTP id u4mr4450006pgf.419.1573659171613; Wed, 13 Nov 2019 07:32:51 -0800 (PST) Received: from akuster-ThinkPad-T460s.mvista.com ([2601:202:4180:a5c0:2cf9:53ea:e6ab:d378]) by smtp.gmail.com with ESMTPSA id s18sm3713613pfm.27.2019.11.13.07.32.50 for (version=TLS1_2 cipher=ECDHE-RSA-AES128-SHA bits=128/128); Wed, 13 Nov 2019 07:32:51 -0800 (PST) From: Armin Kuster To: openembedded-core@lists.openembedded.org Date: Wed, 13 Nov 2019 07:32:08 -0800 Message-Id: <41b1d53cea0302f1c3954c6ab048366c908cf754.1573658916.git.akuster808@gmail.com> X-Mailer: git-send-email 2.7.4 In-Reply-To: References: Subject: [OE-core] [zeus 26/31] patch: the CVE-2019-13638 fix also handles CVE-2018-20969 X-BeenThere: openembedded-core@lists.openembedded.org X-Mailman-Version: 2.1.12 Precedence: list List-Id: Patches and discussions about the oe-core layer List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , MIME-Version: 1.0 Sender: openembedded-core-bounces@lists.openembedded.org Errors-To: openembedded-core-bounces@lists.openembedded.org From: Ross Burton Signed-off-by: Ross Burton Signed-off-by: Richard Purdie Signed-off-by: Armin Kuster --- .../patch/0001-Invoke-ed-directly-instead-of-using-the-shell.patch | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) -- 2.7.4 -- _______________________________________________ Openembedded-core mailing list Openembedded-core@lists.openembedded.org http://lists.openembedded.org/mailman/listinfo/openembedded-core diff --git a/meta/recipes-devtools/patch/patch/0001-Invoke-ed-directly-instead-of-using-the-shell.patch b/meta/recipes-devtools/patch/patch/0001-Invoke-ed-directly-instead-of-using-the-shell.patch index f60dfe8..d13d419 100644 --- a/meta/recipes-devtools/patch/patch/0001-Invoke-ed-directly-instead-of-using-the-shell.patch +++ b/meta/recipes-devtools/patch/patch/0001-Invoke-ed-directly-instead-of-using-the-shell.patch @@ -6,8 +6,8 @@ Subject: [PATCH] Invoke ed directly instead of using the shell * src/pch.c (do_ed_script): Invoke ed directly instead of using a shell command to avoid quoting vulnerabilities. -CVE: CVE-2019-13638 -Upstream-Status: Backport[https://git.savannah.gnu.org/cgit/patch.git/patch/?id=3fcd042d26d70856e826a42b5f93dc4854d80bf0] +CVE: CVE-2019-13638 CVE-2018-20969 +Upstream-Status: Backport [https://git.savannah.gnu.org/cgit/patch.git/patch/?id=3fcd042d26d70856e826a42b5f93dc4854d80bf0] Signed-off-by: Trevor Gamblin ---