OpenPOWER buildroot sources https://git.raptorcs.com/git/buildroot/atom?h=2019.02-op-build 2019-03-25T17:55:53+00:00 2019-03-25T17:55:53+00:00 Peter Korsgaard peter@korsgaard.com 2019-03-12T20:20:00+00:00 urn:sha1:e3404b10ba4ec07638436d50c9a3d3e6a87a8e58 Current git contains fixes for a number of post-2.3.0 security issues: git shortlog --no-merges -i --grep cve --grep overflow --grep zero v2.3.0.. Even Rouault (2): Avoid out-of-bounds write overflow due to uint32 overflow computation on images with huge dimensions. color_apply_icc_profile: avoid potential heap buffer overflow Hugo Lefeuvre (4): convertbmp: fix issues with zero bitmasks jp3d/jpwl convert: fix write stack buffer overflow jp2: convert: fix null pointer dereference convertbmp: detect invalid file dimensions early Karol Babioch (2): jp3d: Replace sprintf() by snprintf() in volumetobin() opj_mj2_extract: Check provided output prefix for length Stefan Weil (1): Fix some potential overflow issues (#1161) Young_X (5): [MJ2] To avoid divisions by zero / undefined behaviour on shift [JPWL] fix CVE-2018-16375 [JPWL] imagetotga(): fix read heap buffer overflow if numcomps < 3 (#987) [JPWL] opj_compress: reorder checks related to code block dimensions to avoid potential int overflow [JP3D] To avoid divisions by zero / undefined behaviour on shift (CVE-2018-14423 ichlubna (1): openjp3d: Int overflow fixed (#1159) setharnold (1): fix unchecked integer multiplication overflow Drop now upstreamed 0004-install-static-lib.patch. Add a hash for the LICENSE file. Signed-off-by: Peter Korsgaard <peter@korsgaard.com> Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com> (cherry picked from commit a5e8c81875a26551e780e409a0647916e626c969) Signed-off-by: Peter Korsgaard <peter@korsgaard.com> 2017-11-11T22:24:53+00:00 Bernd Kuhls bernd.kuhls@t-online.de 2017-11-11T16:41:53+00:00 urn:sha1:a6facc809b01e1c7b02bb93ede4a4bff7b91a091 Fixes http://autobuild.buildroot.net/results/f16/f16a558c30199a92e93a31e0ba391b99a9bd689f/ Signed-off-by: Bernd Kuhls <bernd.kuhls@t-online.de> Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com> 2017-11-01T09:36:49+00:00 Bernd Kuhls bernd.kuhls@t-online.de 2017-11-01T07:20:18+00:00 urn:sha1:84ec4f15ebbc3fb0691c7775766864c5a5039ff5 Fixes http://autobuild.buildroot.net/results/c35/c35599e6bf09aebe456ea959d7c238f82090fc62/ Signed-off-by: Bernd Kuhls <bernd.kuhls@t-online.de> Acked-by: Olivier Schonken <olivier.schonken@gmail.com> Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com> 2017-10-18T20:09:21+00:00 Bernd Kuhls bernd.kuhls@t-online.de 2017-10-15T20:27:17+00:00 urn:sha1:df3d502d131f1b4c38ab8f43532d511c80460a7b Removed patch 0003, applied upstream: https://github.com/uclouvain/openjpeg/commit/51a1dcaa6ed5713520dca36fc58cd9240c08b7ca Renamed patch 0004. Signed-off-by: Bernd Kuhls <bernd.kuhls@t-online.de> Acked-by: Olivier Schonken <olivier.schonken@gmail.com> Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com> 2017-09-23T17:20:18+00:00 Peter Korsgaard peter@korsgaard.com 2017-09-23T17:18:12+00:00 urn:sha1:d2911fec6a02cfd9324c96a4dada9c493929c26b Fixes: http://autobuild.buildroot.net/results/e2f/e2ff0a7fa2b911157edf6c43a8eed797b22edd46/ http://autobuild.buildroot.net/results/670/6706339e7df2f2e7d0d7a15663bed185ca55c2a1/ Openjpeg is written in C, but with the move to CMake the build system now errors out if a C++ compiler isn't available. Fix it by patching the CMakeLists.txt to not require C++ support. Patch submitted upstream: https://github.com/uclouvain/openjpeg/pull/1027 Signed-off-by: Peter Korsgaard <peter@korsgaard.com> Signed-off-by: Arnout Vandecappelle (Essensium/Mind) <arnout@mind.be> 2017-09-23T14:44:09+00:00 Olivier Schonken olivier.schonken@gmail.com 2017-09-08T07:52:17+00:00 urn:sha1:19d80818654977948f32496cde2537719b150850 The malloc poison issue has been fixed upstream, this patch will thus only be temporary. Fixes the following autobuild issues sparc | http://autobuild.buildroot.net/results/c1b7a316ca2a4db49023f304dbc7fd5fed05bd9d bfin | http://autobuild.buildroot.net/results/031ece7a72e76a9155938cb283de859bd12a8171 sh4 | http://autobuild.buildroot.net/results/88664451f71c12ccd94e874d408fbb680bea1695 xtensa | http://autobuild.buildroot.net/results/fbede64a5a86d4868b6da0ab1275e75803235af0 powerpc | http://autobuild.buildroot.net/results/6c641650509048039b18fbeb010dbca0f0fc5292 microblazeel | http://autobuild.buildroot.net/results/fa2d5272b2db73cbfa441ead9250157c5626ab15 mips64el | http://autobuild.buildroot.net/results/fc96f6628f71e05d9a74e0e13e50178d29a2c495 sh4 | http://autobuild.buildroot.net/results/a6d6a6dcb9b4fa250edaaf5935762c5820457b23 x86_64 | http://autobuild.buildroot.net/results/47b4ca2cc661582d86830b9353a6c8af86e4ba35 arc | http://autobuild.buildroot.net/results/08e2e4eca6c3dbde8116a649dbf46e52ded45d10 arc | http://autobuild.buildroot.net/results/899fa044aab7ee28acfa71544f2105da4a5c97d5 arm | http://autobuild.buildroot.net/results/6016f6885b21d6e8c6199a6833c7acce6210ecc6 arm | http://autobuild.buildroot.net/results/adbb3c76497e89161535c711de98809a0fa168a7 or1k | http://autobuild.buildroot.net/results/de3ef69a72d2c2082e202fbed702c53a51274fef mips64el | http://autobuild.buildroot.net/results/39b186b13001a810e0992b52321f1015b445d2fd x86_64 | http://autobuild.buildroot.net/results/22c6a29a1ded6aedf01adfdfcf26302248dba80c arm | http://autobuild.buildroot.net/results/b62c54b727eb5f576c4a517a69c495b537c3b69a m68k | http://autobuild.buildroot.net/results/a826561c5786be5f0088b50b633210593e23ffff arm | http://autobuild.buildroot.net/results/d32ec927a5e4d5644cb3641014bcf6ebe5c14490 Signed-off-by: Olivier Schonken <olivier.schonken@gmail.com> Tested-by: Bernd Kuhls <bernd.kuhls@t-online.de> Signed-off-by: Peter Korsgaard <peter@korsgaard.com> 2017-08-30T20:12:04+00:00 Olivier Schonken olivier.schonken@gmail.com 2017-08-28T13:54:35+00:00 urn:sha1:37b2fe73cff726ac05cdb200e803f267a48721f9 Signed-off-by: Olivier Schonken <olivier.schonken@gmail.com> Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com> 2017-04-01T13:27:05+00:00 Rahul Bedarkar rahulbedarkar89@gmail.com 2017-03-30T13:43:39+00:00 urn:sha1:96e9480fbc71a39d473be5d4f73b4d15b5029a8f We want to use SPDX identifier for license string as much as possible. SPDX short identifier for BSD-2c is BSD-2-Clause. This change is done using following command. find . -name "*.mk" | xargs sed -ri '/LICENSE( )?[\+:]?=/s/BSD-2c/BSD-2-Clause/g' Signed-off-by: Rahul Bedarkar <rahulbedarkar89@gmail.com> Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com> 2016-11-14T22:47:38+00:00 Baruch Siach baruch@tkos.co.il 2016-11-14T21:58:30+00:00 urn:sha1:2775276135b3c8d06084c97e6195bc310bc432bf The 2.1.2 version bump did not take into account the recently added fixes. Update the patches to apply based on upstream pull requests #866 and #867. Cc: Peter Seiderer <ps.report@gmx.net> Cc: Samuel Martin <s.martin49@gmail.com> Signed-off-by: Baruch Siach <baruch@tkos.co.il> Acked-by: Peter Seiderer <ps.report@gmx.net> Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com> 2016-11-14T21:33:56+00:00 Baruch Siach baruch@tkos.co.il 2016-11-14T20:47:43+00:00 urn:sha1:eac8c9ee2439fb4a43c9cef5371ae268489cd185 See CHANGELOG.md for the full list of fixes, including security issues. See CVE number lists at [1] and [2]. [1] http://advisories.mageia.org/MGASA-2016-0362.html [2] https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/thread/HPMDEUIMHTLKMHELDL4F4HZ7X4Y34JEB/ Signed-off-by: Baruch Siach <baruch@tkos.co.il> Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com>