OpenPOWER buildroot sources https://git.raptorcs.com/git/buildroot/atom?h=2018.02-op-build 2018-04-12T06:29:40+00:00 2018-04-12T06:29:40+00:00 Joel Stanley joel@jms.id.au 2018-04-12T06:29:40+00:00 urn:sha1:a8d11267c2bfad3ff410ea342778f2791982da51 Release 2018.02.1 2018-04-11T05:48:44+00:00 Joel Stanley joel@jms.id.au 2018-04-11T04:55:29+00:00 urn:sha1:e17668bbe3538d42b0a0fab64251e60ff6c81d68 Signed-off-by: Joel Stanley <joel@jms.id.au> 2018-04-11T05:48:23+00:00 Joel Stanley joel@jms.id.au 2018-04-11T04:58:13+00:00 urn:sha1:e78f2606c6b50c91c54aa9d7965b16618d19cc80 Signed-off-by: Joel Stanley <joel@jms.id.au> 2018-04-09T21:51:05+00:00 Peter Korsgaard peter@korsgaard.com 2018-04-09T21:51:05+00:00 urn:sha1:9565a37e0d2aa3c5fb9a4148760c490f2e5226d4 Signed-off-by: Peter Korsgaard <peter@korsgaard.com> 2018-04-09T19:01:30+00:00 Baruch Siach baruch@tkos.co.il 2018-04-09T16:20:36+00:00 urn:sha1:c3e1d9849a72495f799b007260bbcdc61fc78da3 Fixes CVE-2018-1000156: arbitrary command execution in ed-style patches. Depend on MMU for now, because the patch adds a fork() call. Upstream later switched to gnulib provided execute(), so this dependency can be dropped on the next version bump. Signed-off-by: Baruch Siach <baruch@tkos.co.il> Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com> (cherry picked from commit f4a4df2084b923f29eca2130976ca10a7aa6b719) Signed-off-by: Peter Korsgaard <peter@korsgaard.com> 2018-04-09T16:01:27+00:00 Rafal Susz rafal.susz@gmail.com 2018-03-13T18:00:05+00:00 urn:sha1:014dbd4855fa0d52a32d2e2d15b425c64b2e7c95 Custom dts files are still conditionally copied based on non existing boolean. So it is currently not possible to use custom dts file(s) at all. List of dts files is now iterated and files are copied into dedicated kernel arch dir. Signed-off-by: Rafal Susz <rafal.susz@gmail.com> Tested-by: Jan Kundrát <jan.kundrat@cesnet.cz> Signed-off-by: Peter Korsgaard <peter@korsgaard.com> (cherry picked from commit 54157c6c2d9fba5ad230294ae1c7dfc0032b1ede) Signed-off-by: Peter Korsgaard <peter@korsgaard.com> 2018-04-09T15:51:04+00:00 Yann E. MORIN yann.morin.1998@free.fr 2018-04-08T08:11:51+00:00 urn:sha1:34b8a1c5bcb7523f7f125f3b558d8cb1872cdf66 The host directory no longer uses /usr. This currently works because we still have the legacy /usr symlink, but for correctness it is better that we just fix it. Signed-off-by: "Yann E. MORIN" <yann.morin.1998@free.fr> Cc: Yegor Yefremov <yegorslists@googlemail.com> Cc: Arnout Vandecappelle <arnout@mind.be> Cc: Thomas Petazzoni <thomas.petazzoni@bootlin.com> Cc: Peter Korsgaard <peter@korsgaard.com> Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com> (cherry picked from commit dac25351e6453b35ded611ff367b95bb4b10a9cf) Signed-off-by: Peter Korsgaard <peter@korsgaard.com> 2018-04-09T15:49:03+00:00 Thomas Petazzoni thomas.petazzoni@bootlin.com 2018-04-05T21:06:22+00:00 urn:sha1:d44357175bd7c711c54fd6c2df5637a181c1d03b zend_alloc.h defines some macros such as: Where _estrdup is the actual function implemented by the PHP core. If this header file is not included, and some code uses estrdup, one ends up with an undefined reference. This happens when libexpat support is enabled. This commit adds a PHP patch that fixes this issue. The patch has been submitted upstream through a Github pull request. Fixes: http://autobuild.buildroot.net/results/889d2c1f509c035cd506e36061939bfddc8f1500/ Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com> (cherry picked from commit fc4b66dbc1b71e871129ce14b289fcda6eb3ea10) Signed-off-by: Peter Korsgaard <peter@korsgaard.com> 2018-04-09T15:39:37+00:00 André Hentschel nerv@dawncrow.de 2018-04-07T12:59:03+00:00 urn:sha1:dd730312e509ab40c3ebcc18a121a2aa637be184 Security fixes since 2.2.12: - wnpa-sec-2018-15 The MP4 dissector could crash. (Bug 13777) - wnpa-sec-2018-16 The ADB dissector could crash. (Bug 14460) - wnpa-sec-2018-17 The IEEE 802.15.4 dissector could crash. (Bug 14468) - wnpa-sec-2018-18 The NBAP dissector could crash. (Bug 14471) - wnpa-sec-2018-19 The VLAN dissector could crash. (Bug 14469) - wnpa-sec-2018-20 The LWAPP dissector could crash. (Bug 14467) - wnpa-sec-2018-23 The Kerberos dissector could crash. (Bug 14576) - wnpa-sec-2018-05 The IEEE 802.11 dissector could crash. Bug 14442, CVE-2018-7335 - wnpa-sec-2018-06 Multiple dissectors could go into large infinite loops. All ASN.1 BER dissectors (Bug 14444), along with the DICOM (Bug 14411), DMP (Bug 14408), LLTD (Bug 14419), OpenFlow (Bug 14420), RELOAD (Bug 14445), RPCoRDMA (Bug 14449), RPKI-Router (Bug 14414), S7COMM (Bug 14423), SCCP (Bug 14413), Thread (Bug 14428), Thrift (Bug 14379), USB (Bug 14421), and WCCP (Bug 14412) dissectors were susceptible. - wnpa-sec-2018-07 The UMTS MAC dissector could crash. Bug 14339, CVE-2018-7334 - wnpa-sec-2018-09 The FCP dissector could crash. Bug 14374, CVE-2018-7336 - wnpa-sec-2018-10 The SIGCOMP dissector could crash. Bug 14398, CVE-2018-7320 - wnpa-sec-2018-11 The pcapng file parser could crash. Bug 14403, CVE-2018-7420 - wnpa-sec-2018-12 The IPMI dissector could crash. Bug 14409, CVE-2018-7417 - wnpa-sec-2018-13 The SIGCOMP dissector could crash. Bug 14410, CVE-2018-7418 - wnpa-sec-2018-14 The NBAP disssector could crash. Bug 14443, CVE-2018-7419 Full release notes: https://www.wireshark.org/docs/relnotes/wireshark-2.2.14.html Signed-off-by: André Hentschel <nerv@dawncrow.de> Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com> (cherry picked from commit c5c87c2bb61efb31421b345bdbf6931b882ff6a9) Signed-off-by: Peter Korsgaard <peter@korsgaard.com> 2018-04-08T19:37:39+00:00 Fabio Estevam festevam@gmail.com 2018-04-08T14:04:04+00:00 urn:sha1:186489f7fe70b1d7b3e5fbfb2cc38a1a0283267a Signed-off-by: Fabio Estevam <festevam@gmail.com> Signed-off-by: Peter Korsgaard <peter@korsgaard.com> (cherry picked from commit bbbcfa57f80d239f94669586cadad4e14f073a5f) Signed-off-by: Peter Korsgaard <peter@korsgaard.com>