* [Buildroot] [PATCH 1/5] linux-firmware: bump to version 6d3bc8886517d171068fd1263176b8b5c51df204
@ 2017-02-06 14:00 Adam Duskett
2017-02-06 14:00 ` [Buildroot] [PATCH 2/5] nginx-naxsi: bump to version 0.55.2 Adam Duskett
` (4 more replies)
0 siblings, 5 replies; 7+ messages in thread
From: Adam Duskett @ 2017-02-06 14:00 UTC (permalink / raw)
To: buildroot
Signed-off-by: Adam Duskett <aduskett@codeblue.com>
---
package/linux-firmware/linux-firmware.hash | 2 ++
package/linux-firmware/linux-firmware.mk | 2 +-
2 files changed, 3 insertions(+), 1 deletion(-)
create mode 100644 package/linux-firmware/linux-firmware.hash
diff --git a/package/linux-firmware/linux-firmware.hash b/package/linux-firmware/linux-firmware.hash
new file mode 100644
index 0000000..e8ee2b7
--- /dev/null
+++ b/package/linux-firmware/linux-firmware.hash
@@ -0,0 +1,2 @@
+# Locally calculated
+sha256 256378564e36b8f222adb8fbe746529e73413c6cbe2b0e5574f41dfd62d92577 linux-firmware-6d3bc8886517d171068fd1263176b8b5c51df204.tar.gz
diff --git a/package/linux-firmware/linux-firmware.mk b/package/linux-firmware/linux-firmware.mk
index 51e07b5..7706bd5 100644
--- a/package/linux-firmware/linux-firmware.mk
+++ b/package/linux-firmware/linux-firmware.mk
@@ -4,7 +4,7 @@
#
################################################################################
-LINUX_FIRMWARE_VERSION = a179db97914da5e650c21ba8f9b0bae04a0f8a41
+LINUX_FIRMWARE_VERSION = 6d3bc8886517d171068fd1263176b8b5c51df204
LINUX_FIRMWARE_SITE = http://git.kernel.org/pub/scm/linux/kernel/git/firmware/linux-firmware.git
LINUX_FIRMWARE_SITE_METHOD = git
--
2.9.3
^ permalink raw reply related [flat|nested] 7+ messages in thread
* [Buildroot] [PATCH 2/5] nginx-naxsi: bump to version 0.55.2
2017-02-06 14:00 [Buildroot] [PATCH 1/5] linux-firmware: bump to version 6d3bc8886517d171068fd1263176b8b5c51df204 Adam Duskett
@ 2017-02-06 14:00 ` Adam Duskett
2017-02-06 14:00 ` [Buildroot] [PATCH 3/5] x264: bump to version 97eaef2ab82a46d13ea5e00270712d6475fbe42b Adam Duskett
` (3 subsequent siblings)
4 siblings, 0 replies; 7+ messages in thread
From: Adam Duskett @ 2017-02-06 14:00 UTC (permalink / raw)
To: buildroot
Signed-off-by: Adam Duskett <aduskett@codeblue.com>
---
package/nginx-naxsi/nginx-naxsi.hash | 2 +-
package/nginx-naxsi/nginx-naxsi.mk | 2 +-
2 files changed, 2 insertions(+), 2 deletions(-)
diff --git a/package/nginx-naxsi/nginx-naxsi.hash b/package/nginx-naxsi/nginx-naxsi.hash
index e545a1d..967f788 100644
--- a/package/nginx-naxsi/nginx-naxsi.hash
+++ b/package/nginx-naxsi/nginx-naxsi.hash
@@ -1,2 +1,2 @@
# Locally calculated
-sha256 45dd0df7a6b0b6aa9c64eb8c39a8e294d659d87fb18e192cf58f1402f3cdb0a8 nginx-naxsi-0.55.1.tar.gz
+sha256 256378564e36b8f222adb8fbe746529e73413c6cbe2b0e5574f41dfd62d92577 nginx-naxsi-0.55.2.tar.gz
diff --git a/package/nginx-naxsi/nginx-naxsi.mk b/package/nginx-naxsi/nginx-naxsi.mk
index 1c5bd8d..fb5e00a 100644
--- a/package/nginx-naxsi/nginx-naxsi.mk
+++ b/package/nginx-naxsi/nginx-naxsi.mk
@@ -4,7 +4,7 @@
#
################################################################################
-NGINX_NAXSI_VERSION = 0.55.1
+NGINX_NAXSI_VERSION = 0.55.2
NGINX_NAXSI_SITE = $(call github,nbs-system,naxsi,$(NGINX_NAXSI_VERSION))
NGINX_NAXSI_LICENSE = GPLv2+ with OpenSSL exception
NGINX_NAXSI_LICENSE_FILES = naxsi_src/naxsi_json.c
--
2.9.3
^ permalink raw reply related [flat|nested] 7+ messages in thread
* [Buildroot] [PATCH 3/5] x264: bump to version 97eaef2ab82a46d13ea5e00270712d6475fbe42b
2017-02-06 14:00 [Buildroot] [PATCH 1/5] linux-firmware: bump to version 6d3bc8886517d171068fd1263176b8b5c51df204 Adam Duskett
2017-02-06 14:00 ` [Buildroot] [PATCH 2/5] nginx-naxsi: bump to version 0.55.2 Adam Duskett
@ 2017-02-06 14:00 ` Adam Duskett
2017-02-06 14:00 ` [Buildroot] [PATCH 4/5] pps-tools: " Adam Duskett
` (2 subsequent siblings)
4 siblings, 0 replies; 7+ messages in thread
From: Adam Duskett @ 2017-02-06 14:00 UTC (permalink / raw)
To: buildroot
Signed-off-by: Adam Duskett <aduskett@codeblue.com>
---
package/x264/x264.hash | 2 +-
package/x264/x264.mk | 2 +-
2 files changed, 2 insertions(+), 2 deletions(-)
diff --git a/package/x264/x264.hash b/package/x264/x264.hash
index c61e2a2..9551093 100644
--- a/package/x264/x264.hash
+++ b/package/x264/x264.hash
@@ -1,2 +1,2 @@
# Locally computed
-sha256 888af681679374fa5147ba629eab8cf1704864ddd9ad6be3a8057a6c86bc9392 x264-b97ae0644f16bad2e2c9c9181264a946769a0aa0.tar.gz
+sha256 9fc4651981453d0428a2ad16889b6b63d1f2e7347ea321f20347fc3a021ee912 x264-97eaef2ab82a46d13ea5e00270712d6475fbe42b.tar.gz
diff --git a/package/x264/x264.mk b/package/x264/x264.mk
index aa7bb55..80437c4 100644
--- a/package/x264/x264.mk
+++ b/package/x264/x264.mk
@@ -4,7 +4,7 @@
#
################################################################################
-X264_VERSION = b97ae0644f16bad2e2c9c9181264a946769a0aa0
+X264_VERSION = 97eaef2ab82a46d13ea5e00270712d6475fbe42b
X264_SITE = git://git.videolan.org/x264.git
X264_LICENSE = GPLv2+
X264_DEPENDENCIES = host-pkgconf
--
2.9.3
^ permalink raw reply related [flat|nested] 7+ messages in thread
* [Buildroot] [PATCH 4/5] pps-tools: bump to version 97eaef2ab82a46d13ea5e00270712d6475fbe42b
2017-02-06 14:00 [Buildroot] [PATCH 1/5] linux-firmware: bump to version 6d3bc8886517d171068fd1263176b8b5c51df204 Adam Duskett
2017-02-06 14:00 ` [Buildroot] [PATCH 2/5] nginx-naxsi: bump to version 0.55.2 Adam Duskett
2017-02-06 14:00 ` [Buildroot] [PATCH 3/5] x264: bump to version 97eaef2ab82a46d13ea5e00270712d6475fbe42b Adam Duskett
@ 2017-02-06 14:00 ` Adam Duskett
2017-02-06 14:00 ` [Buildroot] [PATCH 5/5] ntp: bump to version 4.2.8p9 Adam Duskett
2017-02-06 14:53 ` [Buildroot] [PATCH 1/5] linux-firmware: bump to version 6d3bc8886517d171068fd1263176b8b5c51df204 Thomas Petazzoni
4 siblings, 0 replies; 7+ messages in thread
From: Adam Duskett @ 2017-02-06 14:00 UTC (permalink / raw)
To: buildroot
Signed-off-by: Adam Duskett <aduskett@codeblue.com>
---
package/pps-tools/pps-tools.hash | 2 +-
package/pps-tools/pps-tools.mk | 2 +-
2 files changed, 2 insertions(+), 2 deletions(-)
diff --git a/package/pps-tools/pps-tools.hash b/package/pps-tools/pps-tools.hash
index 9fa62cb..da7bce4 100644
--- a/package/pps-tools/pps-tools.hash
+++ b/package/pps-tools/pps-tools.hash
@@ -1,2 +1,2 @@
# Locally calculated
-sha256 28d4e5aa845f659a6ab4174bbf579e22e2d2c87dc72fd6d07306a6a249c27c76 pps-tools-0deb9c7e135e9380a6d09e9d2e938a146bb698c8.tar.gz
+sha256 eee0a76118cf11d94f575ee43804a6991379f2c734b400ba01ac4811d0498e97 pps-tools-47333f24af878f67ce48022e8af16419713aa1ac.tar.gz
diff --git a/package/pps-tools/pps-tools.mk b/package/pps-tools/pps-tools.mk
index 48feea9..c3e147a 100644
--- a/package/pps-tools/pps-tools.mk
+++ b/package/pps-tools/pps-tools.mk
@@ -4,7 +4,7 @@
#
################################################################################
-PPS_TOOLS_VERSION = 0deb9c7e135e9380a6d09e9d2e938a146bb698c8
+PPS_TOOLS_VERSION = 47333f24af878f67ce48022e8af16419713aa1ac
PPS_TOOLS_SITE = $(call github,ago,pps-tools,$(PPS_TOOLS_VERSION))
PPS_TOOLS_INSTALL_STAGING = YES
PPS_TOOLS_LICENSE = GPLv2+
--
2.9.3
^ permalink raw reply related [flat|nested] 7+ messages in thread
* [Buildroot] [PATCH 5/5] ntp: bump to version 4.2.8p9
2017-02-06 14:00 [Buildroot] [PATCH 1/5] linux-firmware: bump to version 6d3bc8886517d171068fd1263176b8b5c51df204 Adam Duskett
` (2 preceding siblings ...)
2017-02-06 14:00 ` [Buildroot] [PATCH 4/5] pps-tools: " Adam Duskett
@ 2017-02-06 14:00 ` Adam Duskett
2017-02-06 14:04 ` Baruch Siach
2017-02-06 14:53 ` [Buildroot] [PATCH 1/5] linux-firmware: bump to version 6d3bc8886517d171068fd1263176b8b5c51df204 Thomas Petazzoni
4 siblings, 1 reply; 7+ messages in thread
From: Adam Duskett @ 2017-02-06 14:00 UTC (permalink / raw)
To: buildroot
This version of ntp fixes several vulnerabilities.
CVE-2016-9311
CVE-2016-9310
CVE-2016-7427
CVE-2016-7428
CVE-2016-9312
CVE-2016-7431
CVE-2016-7434
CVE-2016-7429
CVE-2016-7426
CVE-2016-7433
http://www.kb.cert.org/vuls/id/633847
In addition, libssl_compat.h is now included in many files, which
references openssl/evp.h, openssl/dsa.h, and openssl/rsa.h.
Even if a you pass --disable-ssl as a configuration option, these
files are now required.
As such, I have also added openssl as a dependency, and it is now
automatically selected when you select ntp.
Signed-off-by: Adam Duskett <aduskett@codeblue.com>
---
package/ntp/Config.in | 1 +
package/ntp/ntp.hash | 6 +++---
package/ntp/ntp.mk | 5 ++---
3 files changed, 6 insertions(+), 6 deletions(-)
diff --git a/package/ntp/Config.in b/package/ntp/Config.in
index 8ce9a5b..1af02db 100644
--- a/package/ntp/Config.in
+++ b/package/ntp/Config.in
@@ -1,6 +1,7 @@
config BR2_PACKAGE_NTP
bool "ntp"
select BR2_PACKAGE_LIBEVENT
+ select BR2_PACKAGE_OPENSSL
help
Network Time Protocol suite/programs.
Provides things like ntpd, ntpdate, ntpq, etc...
diff --git a/package/ntp/ntp.hash b/package/ntp/ntp.hash
index 2a1155b..c6838d8 100644
--- a/package/ntp/ntp.hash
+++ b/package/ntp/ntp.hash
@@ -1,4 +1,4 @@
-# From http://www.eecis.udel.edu/~ntp/ntp_spool/ntp4/ntp-4.2/ntp-4.2.8p8.tar.gz.md5
-md5 4a8636260435b230636f053ffd070e34 ntp-4.2.8p8.tar.gz
+# From http://www.eecis.udel.edu/~ntp/ntp_spool/ntp4/ntp-4.2/ntp-4.2.8p9.tar.gz.md5
+md5 857452b05f5f2e033786f77ade1974ed ntp-4.2.8p9.tar.gz
# Calculated based on the hash above
-sha256 2ab3d0b5f0456e6311dda1cc27ab75da108762773a19e46abd938bd9407b97ee ntp-4.2.8p8.tar.gz
+sha256 b724287778e1bac625b447327c9851eedef020517a3545625e9f652a90f30b72 ntp-4.2.8p9.tar.gz
diff --git a/package/ntp/ntp.mk b/package/ntp/ntp.mk
index 7f9e0d6..08875be 100644
--- a/package/ntp/ntp.mk
+++ b/package/ntp/ntp.mk
@@ -5,9 +5,9 @@
################################################################################
NTP_VERSION_MAJOR = 4.2
-NTP_VERSION = $(NTP_VERSION_MAJOR).8p8
+NTP_VERSION = $(NTP_VERSION_MAJOR).8p9
NTP_SITE = http://www.eecis.udel.edu/~ntp/ntp_spool/ntp4/ntp-$(NTP_VERSION_MAJOR)
-NTP_DEPENDENCIES = host-pkgconf libevent $(if $(BR2_PACKAGE_BUSYBOX),busybox)
+NTP_DEPENDENCIES = host-pkgconf libevent openssl $(if $(BR2_PACKAGE_BUSYBOX),busybox)
NTP_LICENSE = ntp license
NTP_LICENSE_FILES = COPYRIGHT
NTP_CONF_ENV = ac_cv_lib_md5_MD5Init=no
@@ -23,7 +23,6 @@ NTP_AUTORECONF = YES
ifeq ($(BR2_PACKAGE_OPENSSL),y)
NTP_CONF_OPTS += --with-crypto
-NTP_DEPENDENCIES += openssl
else
NTP_CONF_OPTS += --without-crypto --disable-openssl-random
endif
--
2.9.3
^ permalink raw reply related [flat|nested] 7+ messages in thread
* [Buildroot] [PATCH 5/5] ntp: bump to version 4.2.8p9
2017-02-06 14:00 ` [Buildroot] [PATCH 5/5] ntp: bump to version 4.2.8p9 Adam Duskett
@ 2017-02-06 14:04 ` Baruch Siach
0 siblings, 0 replies; 7+ messages in thread
From: Baruch Siach @ 2017-02-06 14:04 UTC (permalink / raw)
To: buildroot
Hi Adam,
On Mon, Feb 06, 2017 at 09:00:12AM -0500, Adam Duskett wrote:
> This version of ntp fixes several vulnerabilities.
Subject should mention that this is a security bump.
> CVE-2016-9311
> CVE-2016-9310
> CVE-2016-7427
> CVE-2016-7428
> CVE-2016-9312
> CVE-2016-7431
> CVE-2016-7434
> CVE-2016-7429
> CVE-2016-7426
> CVE-2016-7433
>
> http://www.kb.cert.org/vuls/id/633847
>
> In addition, libssl_compat.h is now included in many files, which
> references openssl/evp.h, openssl/dsa.h, and openssl/rsa.h.
> Even if a you pass --disable-ssl as a configuration option, these
> files are now required.
>
> As such, I have also added openssl as a dependency, and it is now
> automatically selected when you select ntp.
>
> Signed-off-by: Adam Duskett <aduskett@codeblue.com>
[snip]
> @@ -23,7 +23,6 @@ NTP_AUTORECONF = YES
>
> ifeq ($(BR2_PACKAGE_OPENSSL),y)
BR2_PACKAGE_OPENSSL is now always enabled, so there is no need to check if
it's enabled.
> NTP_CONF_OPTS += --with-crypto
> -NTP_DEPENDENCIES += openssl
> else
> NTP_CONF_OPTS += --without-crypto --disable-openssl-random
> endif
baruch
--
http://baruch.siach.name/blog/ ~. .~ Tk Open Systems
=}------------------------------------------------ooO--U--Ooo------------{=
- baruch at tkos.co.il - tel: +972.52.368.4656, http://www.tkos.co.il -
^ permalink raw reply [flat|nested] 7+ messages in thread
* [Buildroot] [PATCH 1/5] linux-firmware: bump to version 6d3bc8886517d171068fd1263176b8b5c51df204
2017-02-06 14:00 [Buildroot] [PATCH 1/5] linux-firmware: bump to version 6d3bc8886517d171068fd1263176b8b5c51df204 Adam Duskett
` (3 preceding siblings ...)
2017-02-06 14:00 ` [Buildroot] [PATCH 5/5] ntp: bump to version 4.2.8p9 Adam Duskett
@ 2017-02-06 14:53 ` Thomas Petazzoni
4 siblings, 0 replies; 7+ messages in thread
From: Thomas Petazzoni @ 2017-02-06 14:53 UTC (permalink / raw)
To: buildroot
Hello,
On Mon, 6 Feb 2017 09:00:08 -0500, Adam Duskett wrote:
> Signed-off-by: Adam Duskett <aduskett@codeblue.com>
> ---
> package/linux-firmware/linux-firmware.hash | 2 ++
> package/linux-firmware/linux-firmware.mk | 2 +-
> 2 files changed, 3 insertions(+), 1 deletion(-)
> create mode 100644 package/linux-firmware/linux-firmware.hash
Patches 1 to 4 applied to master. Thanks!
Thomas
--
Thomas Petazzoni, CTO, Free Electrons
Embedded Linux, Kernel and Android engineering
http://free-electrons.com
^ permalink raw reply [flat|nested] 7+ messages in thread
end of thread, other threads:[~2017-02-06 14:53 UTC | newest]
Thread overview: 7+ messages (download: mbox.gz / follow: Atom feed)
-- links below jump to the message on this page --
2017-02-06 14:00 [Buildroot] [PATCH 1/5] linux-firmware: bump to version 6d3bc8886517d171068fd1263176b8b5c51df204 Adam Duskett
2017-02-06 14:00 ` [Buildroot] [PATCH 2/5] nginx-naxsi: bump to version 0.55.2 Adam Duskett
2017-02-06 14:00 ` [Buildroot] [PATCH 3/5] x264: bump to version 97eaef2ab82a46d13ea5e00270712d6475fbe42b Adam Duskett
2017-02-06 14:00 ` [Buildroot] [PATCH 4/5] pps-tools: " Adam Duskett
2017-02-06 14:00 ` [Buildroot] [PATCH 5/5] ntp: bump to version 4.2.8p9 Adam Duskett
2017-02-06 14:04 ` Baruch Siach
2017-02-06 14:53 ` [Buildroot] [PATCH 1/5] linux-firmware: bump to version 6d3bc8886517d171068fd1263176b8b5c51df204 Thomas Petazzoni
This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.