<feed xmlns='http://www.w3.org/2005/Atom'>
<title>buildroot/package/libnss, branch 2017.05</title>
<subtitle>OpenPOWER buildroot sources</subtitle>
<id>https://git.raptorcs.com/git/buildroot/atom?h=2017.05</id>
<link rel='self' href='https://git.raptorcs.com/git/buildroot/atom?h=2017.05'/>
<link rel='alternate' type='text/html' href='https://git.raptorcs.com/git/buildroot/'/>
<updated>2017-05-01T09:51:23+00:00</updated>
<entry>
<title>package/l*/Config.in: fix ordering of statements</title>
<updated>2017-05-01T09:51:23+00:00</updated>
<author>
<name>Adam Duskett</name>
<email>Aduskett@gmail.com</email>
</author>
<published>2017-04-22T17:17:58+00:00</published>
<link rel='alternate' type='text/html' href='https://git.raptorcs.com/git/buildroot/commit/?id=190b2b409ccf1ccf6b1f701d3d2a033c747ac013'/>
<id>urn:sha1:190b2b409ccf1ccf6b1f701d3d2a033c747ac013</id>
<content type='text'>
The check-package script when ran gives warnings on ordering issues
on all of these Config files.  This patch cleans up all warnings
related to the ordering in the Config files for packages starting with
the letter l in the package directory.

The appropriate ordering is: type, default, depends on, select, help
See http://nightly.buildroot.org/#_config_files for more information.

Signed-off-by: Adam Duskett &lt;Adamduskett@outlook.com&gt;
Signed-off-by: Thomas Petazzoni &lt;thomas.petazzoni@free-electrons.com&gt;
</content>
</entry>
<entry>
<title>libnss: security bump to version 3.30.2</title>
<updated>2017-04-20T19:53:00+00:00</updated>
<author>
<name>Baruch Siach</name>
<email>baruch@tkos.co.il</email>
</author>
<published>2017-04-20T17:34:29+00:00</published>
<link rel='alternate' type='text/html' href='https://git.raptorcs.com/git/buildroot/commit/?id=09b8e1079ec97d9843430930414a95ac8450a652'/>
<id>urn:sha1:09b8e1079ec97d9843430930414a95ac8450a652</id>
<content type='text'>
CVE-2017-5461 - Out-of-bounds write in Base64 encoding in NSS. Might cause
remote arbitrary code execution
(https://access.redhat.com/errata/RHSA-2017:1100).

CVE-2017-5462 - DRBG flaw in NSS

Drop 0001-cross-compile.patch and TARGET* variables. Upstream Makefile now
allows override of CC, so use TARGET_CONFIGURE_OPTS instead.

Drop upstream 0003-it-uninitialized-fix.patch.

Renumber the remaining patch.

Signed-off-by: Baruch Siach &lt;baruch@tkos.co.il&gt;
Signed-off-by: Thomas Petazzoni &lt;thomas.petazzoni@free-electrons.com&gt;
</content>
</entry>
<entry>
<title>package: use SPDX short identifier for MPL family licenses</title>
<updated>2017-04-01T13:27:47+00:00</updated>
<author>
<name>Rahul Bedarkar</name>
<email>rahulbedarkar89@gmail.com</email>
</author>
<published>2017-03-30T13:43:42+00:00</published>
<link rel='alternate' type='text/html' href='https://git.raptorcs.com/git/buildroot/commit/?id=f33fd75afc1701ee1ded34454db7ce170adc4c9f'/>
<id>urn:sha1:f33fd75afc1701ee1ded34454db7ce170adc4c9f</id>
<content type='text'>
We want to use SPDX identifier for license string as much as possible.
SPDX short identifier for MPLv1.0/MPLv1.1/MPLv2.0 is MPL-1.0/MPL-1.1/
MPL-2.0.

This change is done using following command.
find . -name "*.mk" | xargs sed -ri '/LICENSE( )?[\+:]?=/s/MPLv([1-2]\.[0-1])/MPL-\1/g'

Signed-off-by: Rahul Bedarkar &lt;rahulbedarkar89@gmail.com&gt;
Signed-off-by: Thomas Petazzoni &lt;thomas.petazzoni@free-electrons.com&gt;
</content>
</entry>
<entry>
<title>libnss: workaround for microblaze ld bug</title>
<updated>2017-02-19T21:23:21+00:00</updated>
<author>
<name>Waldemar Brodkorb</name>
<email>wbx@openadk.org</email>
</author>
<published>2017-02-18T21:40:02+00:00</published>
<link rel='alternate' type='text/html' href='https://git.raptorcs.com/git/buildroot/commit/?id=fceb1afd5dda45cf180f22877a6ab0e51d1b3dac'/>
<id>urn:sha1:fceb1afd5dda45cf180f22877a6ab0e51d1b3dac</id>
<content type='text'>
Add a workaround for a microblaze specific ld bug to avoid
segfault.

Fixes:
  http://autobuild.buildroot.net/results/638a65453879777a0d5bdb29231034cd261b41c0

[Peter: rename to LIBNSS_DROP_GC_SECTIONS for clarity]
Signed-off-by: Waldemar Brodkorb &lt;wbx@openadk.org&gt;
Signed-off-by: Peter Korsgaard &lt;peter@korsgaard.com&gt;
</content>
</entry>
<entry>
<title>libnss: bump to version 3.27.2</title>
<updated>2017-01-09T16:18:04+00:00</updated>
<author>
<name>Peter Korsgaard</name>
<email>peter@korsgaard.com</email>
</author>
<published>2017-01-09T14:06:46+00:00</published>
<link rel='alternate' type='text/html' href='https://git.raptorcs.com/git/buildroot/commit/?id=f4a470ecad98c5fd49c4a22d0efca5f18bd16f3f'/>
<id>urn:sha1:f4a470ecad98c5fd49c4a22d0efca5f18bd16f3f</id>
<content type='text'>
Fixes a memory leak in SSL_SetTrustAnchors():
https://bugzilla.mozilla.org/show_bug.cgi?id=1318561

Signed-off-by: Peter Korsgaard &lt;peter@korsgaard.com&gt;
</content>
</entry>
<entry>
<title>libnss: add upstream patch to fix uninitialized variable warning</title>
<updated>2016-11-06T13:41:11+00:00</updated>
<author>
<name>Thomas Petazzoni</name>
<email>thomas.petazzoni@free-electrons.com</email>
</author>
<published>2016-11-06T13:41:11+00:00</published>
<link rel='alternate' type='text/html' href='https://git.raptorcs.com/git/buildroot/commit/?id=7c670327d3f2a21b219509e2102c980d1856d20c'/>
<id>urn:sha1:7c670327d3f2a21b219509e2102c980d1856d20c</id>
<content type='text'>
Fixes:

  http://autobuild.buildroot.net/results/47e611036be12844ebca093ddd8fe95c326c6056/

Signed-off-by: Thomas Petazzoni &lt;thomas.petazzoni@free-electrons.com&gt;
</content>
</entry>
<entry>
<title>libnss: use $(TARGET_MAKE_ENV) when calling $(MAKE)</title>
<updated>2016-10-15T12:17:28+00:00</updated>
<author>
<name>Gustavo Zacarias</name>
<email>gustavo.zacarias@free-electrons.com</email>
</author>
<published>2016-10-13T22:13:42+00:00</published>
<link rel='alternate' type='text/html' href='https://git.raptorcs.com/git/buildroot/commit/?id=4c1ba21a747ef3ccc76d6e44bcd1520f8d98d62c'/>
<id>urn:sha1:4c1ba21a747ef3ccc76d6e44bcd1520f8d98d62c</id>
<content type='text'>
Signed-off-by: Gustavo Zacarias &lt;gustavo.zacarias@free-electrons.com&gt;
Reviewed-by: Arnout Vandecappelle (Essensium/Mind) &lt;arnout@mind.be&gt;
Signed-off-by: Thomas Petazzoni &lt;thomas.petazzoni@free-electrons.com&gt;
</content>
</entry>
<entry>
<title>libnss: bump to version 3.27.1</title>
<updated>2016-10-13T06:04:33+00:00</updated>
<author>
<name>Gustavo Zacarias</name>
<email>gustavo@zacarias.com.ar</email>
</author>
<published>2016-10-10T16:54:46+00:00</published>
<link rel='alternate' type='text/html' href='https://git.raptorcs.com/git/buildroot/commit/?id=3ccdc270eeb72de718afa348f2a362c79ba0579d'/>
<id>urn:sha1:3ccdc270eeb72de718afa348f2a362c79ba0579d</id>
<content type='text'>
Signed-off-by: Gustavo Zacarias &lt;gustavo@zacarias.com.ar&gt;
Signed-off-by: Peter Korsgaard &lt;peter@korsgaard.com&gt;
</content>
</entry>
<entry>
<title>nss: security bump to version 3.23</title>
<updated>2016-03-31T01:43:58+00:00</updated>
<author>
<name>Gustavo Zacarias</name>
<email>gustavo@zacarias.com.ar</email>
</author>
<published>2016-03-30T19:51:07+00:00</published>
<link rel='alternate' type='text/html' href='https://git.raptorcs.com/git/buildroot/commit/?id=ab61031a34df8875cec0d9c605f7f69840c11cfe'/>
<id>urn:sha1:ab61031a34df8875cec0d9c605f7f69840c11cfe</id>
<content type='text'>
Fixes:
CVE-2016-1950 - Fixed a heap-based buffer overflow related to the
parsing of certain ASN.1 structures. An attacker could create a
specially-crafted certificate which, when parsed by NSS, would cause a
crash or execution of arbitrary code with the permissions of the user.

Signed-off-by: Gustavo Zacarias &lt;gustavo@zacarias.com.ar&gt;
Signed-off-by: Thomas Petazzoni &lt;thomas.petazzoni@free-electrons.com&gt;
</content>
</entry>
<entry>
<title>libnss: security bump to version 3.22.2</title>
<updated>2016-03-09T12:14:13+00:00</updated>
<author>
<name>Gustavo Zacarias</name>
<email>gustavo@zacarias.com.ar</email>
</author>
<published>2016-03-09T11:41:20+00:00</published>
<link rel='alternate' type='text/html' href='https://git.raptorcs.com/git/buildroot/commit/?id=09f0b8c353d6b7886dd5cab3deee0cc9625b6eed'/>
<id>urn:sha1:09f0b8c353d6b7886dd5cab3deee0cc9625b6eed</id>
<content type='text'>
Fixes:
CVE-2016-1950 - heap-based buffer overflow related to the parsing of
certain ASN.1 structures. An attacker could create a specially-crafted
certificate which, when parsed by NSS, would cause a crash or execution
of arbitrary code with the permissions of the user.

Signed-off-by: Gustavo Zacarias &lt;gustavo@zacarias.com.ar&gt;
Signed-off-by: Peter Korsgaard &lt;peter@korsgaard.com&gt;
</content>
</entry>
</feed>
