All of lore.kernel.org
 help / color / mirror / Atom feed
* [PATCH 1/4] libexif: upgrade to 0.6.20
  2011-04-15 10:16 [PATCH 0/4] security fixes Qing He
  2011-04-15 10:16 ` [PATCH 3/4] openssl: upgrade to version 0.9.8r Qing He
@ 2011-04-15 10:16 ` Qing He
  2011-04-15 10:16 ` [PATCH 4/4] rsync: upgrade to version 3.0.8 Qing He
                   ` (2 subsequent siblings)
  4 siblings, 0 replies; 6+ messages in thread
From: Qing He @ 2011-04-15 10:16 UTC (permalink / raw)
  To: poky

From: Qing He <qing.he@intel.com>

[YOCTO #977]

fixes CVE-2007-6351, CVE-2007-6352, CVE-2009-3895

Signed-off-by: Qing He <qing.he@intel.com>
---
 .../{libexif_0.6.16.bb => libexif_0.6.20.bb}       |    6 +++---
 1 files changed, 3 insertions(+), 3 deletions(-)
 rename meta/recipes-support/libexif/{libexif_0.6.16.bb => libexif_0.6.20.bb} (61%)

diff --git a/meta/recipes-support/libexif/libexif_0.6.16.bb b/meta/recipes-support/libexif/libexif_0.6.20.bb
similarity index 61%
rename from meta/recipes-support/libexif/libexif_0.6.16.bb
rename to meta/recipes-support/libexif/libexif_0.6.20.bb
index d9d1c5e..f233d3f 100644
--- a/meta/recipes-support/libexif/libexif_0.6.16.bb
+++ b/meta/recipes-support/libexif/libexif_0.6.20.bb
@@ -2,12 +2,12 @@ DESCRIPTION = "Library to read the extended image information (EXIF) from JPEG p
 HOMEPAGE = "http://sourceforge.net/projects/libexif"
 SECTION = "libs"
 LICENSE = "LGPLv2.1"
-LIC_FILES_CHKSUM = "file://COPYING;md5=0448d3676bc0de00406af227d341a4d1"
+LIC_FILES_CHKSUM = "file://COPYING;md5=243b725d71bb5df4a1e5920b344b86ad"
 
 SRC_URI = "${SOURCEFORGE_MIRROR}/libexif/libexif-${PV}.tar.bz2"
 
-SRC_URI[md5sum] = "deee153b1ded5a944ea05d041d959eca"
-SRC_URI[sha256sum] = "db6885d5e40e3a273ff8bb9708ab739c8ace3c5abdd75509eec8ea31a31aac43"
+SRC_URI[md5sum] = "19844ce6b5d075af16f0d45de1e8a6a3"
+SRC_URI[sha256sum] = "a772d20bd8fb9802d7f0d70fde6ac8872f87d0c66c52b0d14026dafcaa83d715"
 
 inherit autotools gettext
 
-- 
1.7.0



^ permalink raw reply related	[flat|nested] 6+ messages in thread
* [PATCH 2/4] libxml2: upgrade to version 2.7.8
  2011-04-15 10:16 [PATCH 0/4] security fixes Qing He
                   ` (2 preceding siblings ...)
  2011-04-15 10:16 ` [PATCH 4/4] rsync: upgrade to version 3.0.8 Qing He
@ 2011-04-15 10:16 ` Qing He
  2011-04-18 21:56 ` [PATCH 0/4] security fixes Saul Wold
  4 siblings, 0 replies; 6+ messages in thread
From: Qing He @ 2011-04-15 10:16 UTC (permalink / raw)
  To: poky

From: Qing He <qing.he@intel.com>

[YOCTO #978]

from 2.7.7
fixes CVE-2010-4008

Signed-off-by: Qing He <qing.he@intel.com>
---
 .../recipes-core/libxml/libxml2/libxml-64bit.patch |    2 ++
 meta/recipes-core/libxml/libxml2_2.7.7.bb          |    6 ------
 meta/recipes-core/libxml/libxml2_2.7.8.bb          |    6 ++++++
 3 files changed, 8 insertions(+), 6 deletions(-)
 delete mode 100644 meta/recipes-core/libxml/libxml2_2.7.7.bb
 create mode 100644 meta/recipes-core/libxml/libxml2_2.7.8.bb

diff --git a/meta/recipes-core/libxml/libxml2/libxml-64bit.patch b/meta/recipes-core/libxml/libxml2/libxml-64bit.patch
index fcb7d34..1147017 100644
--- a/meta/recipes-core/libxml/libxml2/libxml-64bit.patch
+++ b/meta/recipes-core/libxml/libxml2/libxml-64bit.patch
@@ -1,3 +1,5 @@
+Upstream-Status: Backport [from debian: bugs.debian.org/439843]
+
 ---
  libxml.h |    3 +++
  1 file changed, 3 insertions(+)
diff --git a/meta/recipes-core/libxml/libxml2_2.7.7.bb b/meta/recipes-core/libxml/libxml2_2.7.7.bb
deleted file mode 100644
index 91f4ceb..0000000
--- a/meta/recipes-core/libxml/libxml2_2.7.7.bb
+++ /dev/null
@@ -1,6 +0,0 @@
-require libxml2.inc
-
-PR = "r4"
-
-SRC_URI[md5sum] = "9abc9959823ca9ff904f1fbcf21df066"
-SRC_URI[sha256sum] = "af5b781418ba4fff556fa43c50086658ea8a2f31909c2b625c2ce913a1d9eb68"
diff --git a/meta/recipes-core/libxml/libxml2_2.7.8.bb b/meta/recipes-core/libxml/libxml2_2.7.8.bb
new file mode 100644
index 0000000..616fd09
--- /dev/null
+++ b/meta/recipes-core/libxml/libxml2_2.7.8.bb
@@ -0,0 +1,6 @@
+require libxml2.inc
+
+PR = "r0"
+
+SRC_URI[md5sum] = "8127a65e8c3b08856093099b52599c86"
+SRC_URI[sha256sum] = "cda23bc9ebd26474ca8f3d67e7d1c4a1f1e7106364b690d822e009fdc3c417ec"
-- 
1.7.0



^ permalink raw reply related	[flat|nested] 6+ messages in thread
* [PATCH 4/4] rsync: upgrade to version 3.0.8
  2011-04-15 10:16 [PATCH 0/4] security fixes Qing He
  2011-04-15 10:16 ` [PATCH 3/4] openssl: upgrade to version 0.9.8r Qing He
  2011-04-15 10:16 ` [PATCH 1/4] libexif: upgrade to 0.6.20 Qing He
@ 2011-04-15 10:16 ` Qing He
  2011-04-15 10:16 ` [PATCH 2/4] libxml2: upgrade to version 2.7.8 Qing He
  2011-04-18 21:56 ` [PATCH 0/4] security fixes Saul Wold
  4 siblings, 0 replies; 6+ messages in thread
From: Qing He @ 2011-04-15 10:16 UTC (permalink / raw)
  To: poky

From: Qing He <qing.he@intel.com>

[YOCTO #983]

from 3.0.7
fixes CVE-2011-1097

Signed-off-by: Qing He <qing.he@intel.com>
---
 .../rsync/{rsync_3.0.7.bb => rsync_3.0.8.bb}       |    6 +++---
 1 files changed, 3 insertions(+), 3 deletions(-)
 rename meta/recipes-devtools/rsync/{rsync_3.0.7.bb => rsync_3.0.8.bb} (71%)

diff --git a/meta/recipes-devtools/rsync/rsync_3.0.7.bb b/meta/recipes-devtools/rsync/rsync_3.0.8.bb
similarity index 71%
rename from meta/recipes-devtools/rsync/rsync_3.0.7.bb
rename to meta/recipes-devtools/rsync/rsync_3.0.8.bb
index 971fd54..33ab271 100644
--- a/meta/recipes-devtools/rsync/rsync_3.0.7.bb
+++ b/meta/recipes-devtools/rsync/rsync_3.0.8.bb
@@ -1,11 +1,11 @@
 require rsync.inc
 
-PR = "r1"
+PR = "r0"
 
 SRC_URI += "file://acinclude.m4"
 
-SRC_URI[md5sum] = "b53525900817cf1ba7ad3a516ab5bfe9"
-SRC_URI[sha256sum] = "9ee00d16c023c486328cbb61f59928a954b24b7b7173c3517ebb0d6c3edfe7c8"
+SRC_URI[md5sum] = "0ee8346ce16bdfe4c88a236e94c752b4"
+SRC_URI[sha256sum] = "4b3fc271f4c96036b4c73fb019be078e4d8cce2defe1e7ae7cde1117859a2114"
 
 EXTRA_OECONF += "--disable-xattr-support --disable-acl-support"
 
-- 
1.7.0



^ permalink raw reply related	[flat|nested] 6+ messages in thread
* [PATCH 3/4] openssl: upgrade to version 0.9.8r
  2011-04-15 10:16 [PATCH 0/4] security fixes Qing He
@ 2011-04-15 10:16 ` Qing He
  2011-04-15 10:16 ` [PATCH 1/4] libexif: upgrade to 0.6.20 Qing He
                   ` (3 subsequent siblings)
  4 siblings, 0 replies; 6+ messages in thread
From: Qing He @ 2011-04-15 10:16 UTC (permalink / raw)
  To: poky

From: Qing He <qing.he@intel.com>

[YOCTO #979]

from 0.9.8p
fixes CVE-2010-4180, CVE-2010-4252, CVE-2010-0014

Signed-off-by: Qing He <qing.he@intel.com>
---
 .../configure-targets.patch                        |    1 +
 .../debian/ca.patch                                |    0
 .../debian/config-hurd.patch                       |    0
 .../debian/debian-targets.patch                    |    0
 .../debian/engines-path.patch                      |    0
 .../debian/kfreebsd-pipe.patch                     |    0
 .../debian/make-targets.patch                      |    0
 .../debian/man-dir.patch                           |    0
 .../debian/man-section.patch                       |    0
 .../debian/no-rpath.patch                          |    0
 .../debian/no-symbolic.patch                       |    0
 .../debian/perl-path.diff                          |    0
 .../debian/pic.patch                               |    0
 .../debian/pkg-config.patch                        |    0
 .../debian/rc4-amd64.patch                         |    0
 .../debian/rehash-crt.patch                        |    0
 .../debian/rehash_pod.patch                        |    0
 .../debian/series                                  |    0
 .../debian/shared-lib-ext.patch                    |    0
 .../debian/stddef.patch                            |    0
 .../debian/version-script.patch                    |    0
 .../parallel-make-fix.patch                        |    2 ++
 .../shared-libs.patch                              |    2 ++
 meta/recipes-connectivity/openssl/openssl.inc      |    2 +-
 .../{openssl_0.9.8p.bb => openssl_0.9.8r.bb}       |    6 +++---
 25 files changed, 9 insertions(+), 4 deletions(-)
 rename meta/recipes-connectivity/openssl/{openssl-0.9.8p => openssl-0.9.8r}/configure-targets.patch (97%)
 rename meta/recipes-connectivity/openssl/{openssl-0.9.8p => openssl-0.9.8r}/debian/ca.patch (100%)
 rename meta/recipes-connectivity/openssl/{openssl-0.9.8p => openssl-0.9.8r}/debian/config-hurd.patch (100%)
 rename meta/recipes-connectivity/openssl/{openssl-0.9.8p => openssl-0.9.8r}/debian/debian-targets.patch (100%)
 rename meta/recipes-connectivity/openssl/{openssl-0.9.8p => openssl-0.9.8r}/debian/engines-path.patch (100%)
 rename meta/recipes-connectivity/openssl/{openssl-0.9.8p => openssl-0.9.8r}/debian/kfreebsd-pipe.patch (100%)
 rename meta/recipes-connectivity/openssl/{openssl-0.9.8p => openssl-0.9.8r}/debian/make-targets.patch (100%)
 rename meta/recipes-connectivity/openssl/{openssl-0.9.8p => openssl-0.9.8r}/debian/man-dir.patch (100%)
 rename meta/recipes-connectivity/openssl/{openssl-0.9.8p => openssl-0.9.8r}/debian/man-section.patch (100%)
 rename meta/recipes-connectivity/openssl/{openssl-0.9.8p => openssl-0.9.8r}/debian/no-rpath.patch (100%)
 rename meta/recipes-connectivity/openssl/{openssl-0.9.8p => openssl-0.9.8r}/debian/no-symbolic.patch (100%)
 rename meta/recipes-connectivity/openssl/{openssl-0.9.8p => openssl-0.9.8r}/debian/perl-path.diff (100%)
 rename meta/recipes-connectivity/openssl/{openssl-0.9.8p => openssl-0.9.8r}/debian/pic.patch (100%)
 rename meta/recipes-connectivity/openssl/{openssl-0.9.8p => openssl-0.9.8r}/debian/pkg-config.patch (100%)
 rename meta/recipes-connectivity/openssl/{openssl-0.9.8p => openssl-0.9.8r}/debian/rc4-amd64.patch (100%)
 rename meta/recipes-connectivity/openssl/{openssl-0.9.8p => openssl-0.9.8r}/debian/rehash-crt.patch (100%)
 rename meta/recipes-connectivity/openssl/{openssl-0.9.8p => openssl-0.9.8r}/debian/rehash_pod.patch (100%)
 rename meta/recipes-connectivity/openssl/{openssl-0.9.8p => openssl-0.9.8r}/debian/series (100%)
 rename meta/recipes-connectivity/openssl/{openssl-0.9.8p => openssl-0.9.8r}/debian/shared-lib-ext.patch (100%)
 rename meta/recipes-connectivity/openssl/{openssl-0.9.8p => openssl-0.9.8r}/debian/stddef.patch (100%)
 rename meta/recipes-connectivity/openssl/{openssl-0.9.8p => openssl-0.9.8r}/debian/version-script.patch (100%)
 rename meta/recipes-connectivity/openssl/{openssl-0.9.8p => openssl-0.9.8r}/parallel-make-fix.patch (95%)
 rename meta/recipes-connectivity/openssl/{openssl-0.9.8p => openssl-0.9.8r}/shared-libs.patch (97%)
 rename meta/recipes-connectivity/openssl/{openssl_0.9.8p.bb => openssl_0.9.8r.bb} (86%)

diff --git a/meta/recipes-connectivity/openssl/openssl-0.9.8p/configure-targets.patch b/meta/recipes-connectivity/openssl/openssl-0.9.8r/configure-targets.patch
similarity index 97%
rename from meta/recipes-connectivity/openssl/openssl-0.9.8p/configure-targets.patch
rename to meta/recipes-connectivity/openssl/openssl-0.9.8r/configure-targets.patch
index 6fd2769..2317949 100644
--- a/meta/recipes-connectivity/openssl/openssl-0.9.8p/configure-targets.patch
+++ b/meta/recipes-connectivity/openssl/openssl-0.9.8r/configure-targets.patch
@@ -1,3 +1,4 @@
+Upstream-Status: Inappropriate [embedded specific]
 
 The number of colons are important :)
 
diff --git a/meta/recipes-connectivity/openssl/openssl-0.9.8p/debian/ca.patch b/meta/recipes-connectivity/openssl/openssl-0.9.8r/debian/ca.patch
similarity index 100%
rename from meta/recipes-connectivity/openssl/openssl-0.9.8p/debian/ca.patch
rename to meta/recipes-connectivity/openssl/openssl-0.9.8r/debian/ca.patch
diff --git a/meta/recipes-connectivity/openssl/openssl-0.9.8p/debian/config-hurd.patch b/meta/recipes-connectivity/openssl/openssl-0.9.8r/debian/config-hurd.patch
similarity index 100%
rename from meta/recipes-connectivity/openssl/openssl-0.9.8p/debian/config-hurd.patch
rename to meta/recipes-connectivity/openssl/openssl-0.9.8r/debian/config-hurd.patch
diff --git a/meta/recipes-connectivity/openssl/openssl-0.9.8p/debian/debian-targets.patch b/meta/recipes-connectivity/openssl/openssl-0.9.8r/debian/debian-targets.patch
similarity index 100%
rename from meta/recipes-connectivity/openssl/openssl-0.9.8p/debian/debian-targets.patch
rename to meta/recipes-connectivity/openssl/openssl-0.9.8r/debian/debian-targets.patch
diff --git a/meta/recipes-connectivity/openssl/openssl-0.9.8p/debian/engines-path.patch b/meta/recipes-connectivity/openssl/openssl-0.9.8r/debian/engines-path.patch
similarity index 100%
rename from meta/recipes-connectivity/openssl/openssl-0.9.8p/debian/engines-path.patch
rename to meta/recipes-connectivity/openssl/openssl-0.9.8r/debian/engines-path.patch
diff --git a/meta/recipes-connectivity/openssl/openssl-0.9.8p/debian/kfreebsd-pipe.patch b/meta/recipes-connectivity/openssl/openssl-0.9.8r/debian/kfreebsd-pipe.patch
similarity index 100%
rename from meta/recipes-connectivity/openssl/openssl-0.9.8p/debian/kfreebsd-pipe.patch
rename to meta/recipes-connectivity/openssl/openssl-0.9.8r/debian/kfreebsd-pipe.patch
diff --git a/meta/recipes-connectivity/openssl/openssl-0.9.8p/debian/make-targets.patch b/meta/recipes-connectivity/openssl/openssl-0.9.8r/debian/make-targets.patch
similarity index 100%
rename from meta/recipes-connectivity/openssl/openssl-0.9.8p/debian/make-targets.patch
rename to meta/recipes-connectivity/openssl/openssl-0.9.8r/debian/make-targets.patch
diff --git a/meta/recipes-connectivity/openssl/openssl-0.9.8p/debian/man-dir.patch b/meta/recipes-connectivity/openssl/openssl-0.9.8r/debian/man-dir.patch
similarity index 100%
rename from meta/recipes-connectivity/openssl/openssl-0.9.8p/debian/man-dir.patch
rename to meta/recipes-connectivity/openssl/openssl-0.9.8r/debian/man-dir.patch
diff --git a/meta/recipes-connectivity/openssl/openssl-0.9.8p/debian/man-section.patch b/meta/recipes-connectivity/openssl/openssl-0.9.8r/debian/man-section.patch
similarity index 100%
rename from meta/recipes-connectivity/openssl/openssl-0.9.8p/debian/man-section.patch
rename to meta/recipes-connectivity/openssl/openssl-0.9.8r/debian/man-section.patch
diff --git a/meta/recipes-connectivity/openssl/openssl-0.9.8p/debian/no-rpath.patch b/meta/recipes-connectivity/openssl/openssl-0.9.8r/debian/no-rpath.patch
similarity index 100%
rename from meta/recipes-connectivity/openssl/openssl-0.9.8p/debian/no-rpath.patch
rename to meta/recipes-connectivity/openssl/openssl-0.9.8r/debian/no-rpath.patch
diff --git a/meta/recipes-connectivity/openssl/openssl-0.9.8p/debian/no-symbolic.patch b/meta/recipes-connectivity/openssl/openssl-0.9.8r/debian/no-symbolic.patch
similarity index 100%
rename from meta/recipes-connectivity/openssl/openssl-0.9.8p/debian/no-symbolic.patch
rename to meta/recipes-connectivity/openssl/openssl-0.9.8r/debian/no-symbolic.patch
diff --git a/meta/recipes-connectivity/openssl/openssl-0.9.8p/debian/perl-path.diff b/meta/recipes-connectivity/openssl/openssl-0.9.8r/debian/perl-path.diff
similarity index 100%
rename from meta/recipes-connectivity/openssl/openssl-0.9.8p/debian/perl-path.diff
rename to meta/recipes-connectivity/openssl/openssl-0.9.8r/debian/perl-path.diff
diff --git a/meta/recipes-connectivity/openssl/openssl-0.9.8p/debian/pic.patch b/meta/recipes-connectivity/openssl/openssl-0.9.8r/debian/pic.patch
similarity index 100%
rename from meta/recipes-connectivity/openssl/openssl-0.9.8p/debian/pic.patch
rename to meta/recipes-connectivity/openssl/openssl-0.9.8r/debian/pic.patch
diff --git a/meta/recipes-connectivity/openssl/openssl-0.9.8p/debian/pkg-config.patch b/meta/recipes-connectivity/openssl/openssl-0.9.8r/debian/pkg-config.patch
similarity index 100%
rename from meta/recipes-connectivity/openssl/openssl-0.9.8p/debian/pkg-config.patch
rename to meta/recipes-connectivity/openssl/openssl-0.9.8r/debian/pkg-config.patch
diff --git a/meta/recipes-connectivity/openssl/openssl-0.9.8p/debian/rc4-amd64.patch b/meta/recipes-connectivity/openssl/openssl-0.9.8r/debian/rc4-amd64.patch
similarity index 100%
rename from meta/recipes-connectivity/openssl/openssl-0.9.8p/debian/rc4-amd64.patch
rename to meta/recipes-connectivity/openssl/openssl-0.9.8r/debian/rc4-amd64.patch
diff --git a/meta/recipes-connectivity/openssl/openssl-0.9.8p/debian/rehash-crt.patch b/meta/recipes-connectivity/openssl/openssl-0.9.8r/debian/rehash-crt.patch
similarity index 100%
rename from meta/recipes-connectivity/openssl/openssl-0.9.8p/debian/rehash-crt.patch
rename to meta/recipes-connectivity/openssl/openssl-0.9.8r/debian/rehash-crt.patch
diff --git a/meta/recipes-connectivity/openssl/openssl-0.9.8p/debian/rehash_pod.patch b/meta/recipes-connectivity/openssl/openssl-0.9.8r/debian/rehash_pod.patch
similarity index 100%
rename from meta/recipes-connectivity/openssl/openssl-0.9.8p/debian/rehash_pod.patch
rename to meta/recipes-connectivity/openssl/openssl-0.9.8r/debian/rehash_pod.patch
diff --git a/meta/recipes-connectivity/openssl/openssl-0.9.8p/debian/series b/meta/recipes-connectivity/openssl/openssl-0.9.8r/debian/series
similarity index 100%
rename from meta/recipes-connectivity/openssl/openssl-0.9.8p/debian/series
rename to meta/recipes-connectivity/openssl/openssl-0.9.8r/debian/series
diff --git a/meta/recipes-connectivity/openssl/openssl-0.9.8p/debian/shared-lib-ext.patch b/meta/recipes-connectivity/openssl/openssl-0.9.8r/debian/shared-lib-ext.patch
similarity index 100%
rename from meta/recipes-connectivity/openssl/openssl-0.9.8p/debian/shared-lib-ext.patch
rename to meta/recipes-connectivity/openssl/openssl-0.9.8r/debian/shared-lib-ext.patch
diff --git a/meta/recipes-connectivity/openssl/openssl-0.9.8p/debian/stddef.patch b/meta/recipes-connectivity/openssl/openssl-0.9.8r/debian/stddef.patch
similarity index 100%
rename from meta/recipes-connectivity/openssl/openssl-0.9.8p/debian/stddef.patch
rename to meta/recipes-connectivity/openssl/openssl-0.9.8r/debian/stddef.patch
diff --git a/meta/recipes-connectivity/openssl/openssl-0.9.8p/debian/version-script.patch b/meta/recipes-connectivity/openssl/openssl-0.9.8r/debian/version-script.patch
similarity index 100%
rename from meta/recipes-connectivity/openssl/openssl-0.9.8p/debian/version-script.patch
rename to meta/recipes-connectivity/openssl/openssl-0.9.8r/debian/version-script.patch
diff --git a/meta/recipes-connectivity/openssl/openssl-0.9.8p/parallel-make-fix.patch b/meta/recipes-connectivity/openssl/openssl-0.9.8r/parallel-make-fix.patch
similarity index 95%
rename from meta/recipes-connectivity/openssl/openssl-0.9.8p/parallel-make-fix.patch
rename to meta/recipes-connectivity/openssl/openssl-0.9.8r/parallel-make-fix.patch
index 60fab9d..bfddfc8 100644
--- a/meta/recipes-connectivity/openssl/openssl-0.9.8p/parallel-make-fix.patch
+++ b/meta/recipes-connectivity/openssl/openssl-0.9.8r/parallel-make-fix.patch
@@ -1,3 +1,5 @@
+Upstream-Status: Pending
+
 fix the parallel build regarding shared libraries.
 
 Signed-off-by: Qing He <qing.he@intel.com>
diff --git a/meta/recipes-connectivity/openssl/openssl-0.9.8p/shared-libs.patch b/meta/recipes-connectivity/openssl/openssl-0.9.8r/shared-libs.patch
similarity index 97%
rename from meta/recipes-connectivity/openssl/openssl-0.9.8p/shared-libs.patch
rename to meta/recipes-connectivity/openssl/openssl-0.9.8r/shared-libs.patch
index 10d9146..19de112 100644
--- a/meta/recipes-connectivity/openssl/openssl-0.9.8p/shared-libs.patch
+++ b/meta/recipes-connectivity/openssl/openssl-0.9.8r/shared-libs.patch
@@ -1,3 +1,5 @@
+Upstream-Status: Inappropriate [configuration]
+
 diff --git a/Makefile.org b/Makefile.org
 index e87d623..25ff367 100644
 --- a/Makefile.org
diff --git a/meta/recipes-connectivity/openssl/openssl.inc b/meta/recipes-connectivity/openssl/openssl.inc
index 68b3d7b..fe168c3 100644
--- a/meta/recipes-connectivity/openssl/openssl.inc
+++ b/meta/recipes-connectivity/openssl/openssl.inc
@@ -6,7 +6,7 @@ SECTION = "libs/network"
 
 # "openssl | SSLeay" dual license
 LICENSE = "openssl"
-LIC_FILES_CHKSUM = "file://LICENSE;md5=83d26c69f6f0172ee7f795790424b453"
+LIC_FILES_CHKSUM = "file://LICENSE;md5=f9a8f968107345e0b75aa8c2ecaa7ec8"
 
 DEPENDS = "perl-native"
 
diff --git a/meta/recipes-connectivity/openssl/openssl_0.9.8p.bb b/meta/recipes-connectivity/openssl/openssl_0.9.8r.bb
similarity index 86%
rename from meta/recipes-connectivity/openssl/openssl_0.9.8p.bb
rename to meta/recipes-connectivity/openssl/openssl_0.9.8r.bb
index f42b3cb..5fc38a3 100644
--- a/meta/recipes-connectivity/openssl/openssl_0.9.8p.bb
+++ b/meta/recipes-connectivity/openssl/openssl_0.9.8r.bb
@@ -1,6 +1,6 @@
 require openssl.inc
 
-PR = "r3"
+PR = "r0"
 SRC_URI += "file://debian/ca.patch \
             file://debian/config-hurd.patch;apply=no \
             file://debian/debian-targets.patch \
@@ -21,8 +21,8 @@ SRC_URI += "file://debian/ca.patch \
             file://debian/version-script.patch \
             file://debian/perl-path.diff"
 
-SRC_URI[md5sum] = "7f24047f70364c9eabc94899e356ce39"
-SRC_URI[sha256sum] = "b2645e2a2af221fa230b5ef6aa2b9388a875801b74cbddbb16be557f80f45242"
+SRC_URI[md5sum] = "0352932ea863bc02b056cda7c9ac5b79"
+SRC_URI[sha256sum] = "42b2368f786b05ed3be846838dce126b4e8e3dba8fb2e0ce83102df28c102fad"
 
 SRC_URI += "file://configure-targets.patch \
             file://shared-libs.patch"
-- 
1.7.0



^ permalink raw reply related	[flat|nested] 6+ messages in thread
* [PATCH 0/4] security fixes
@ 2011-04-15 10:16 Qing He
  2011-04-15 10:16 ` [PATCH 3/4] openssl: upgrade to version 0.9.8r Qing He
                   ` (4 more replies)
  0 siblings, 5 replies; 6+ messages in thread
From: Qing He @ 2011-04-15 10:16 UTC (permalink / raw)
  To: poky

From: Qing He <qing.he@intel.com>

This patch set upgrades several recipes to address the following CVEs:

   libexif: CVE-2007-6351, CVE-2007-6352, CVE-2009-3895
   libxml2: CVE-2010-4008
   openssl: CVE-2010-4180, CVE-2010-4252, CVE-2010-0014
   rsync: CVE-2011-1097

they are targeting for 1.0 point release


Pull URL: git://git.pokylinux.org/poky-contrib.git
  Branch: qhe/cve
  Browse: http://git.pokylinux.org/cgit.cgi/poky-contrib/log/?h=qhe/cve

Thanks,
    Qing He <qing.he@intel.com>
---


Qing He (4):
  libexif: upgrade to 0.6.20
  libxml2: upgrade to version 2.7.8
  openssl: upgrade to version 0.9.8r
  rsync: upgrade to version 3.0.8

 .../configure-targets.patch                        |    1 +
 .../debian/ca.patch                                |    0
 .../debian/config-hurd.patch                       |    0
 .../debian/debian-targets.patch                    |    0
 .../debian/engines-path.patch                      |    0
 .../debian/kfreebsd-pipe.patch                     |    0
 .../debian/make-targets.patch                      |    0
 .../debian/man-dir.patch                           |    0
 .../debian/man-section.patch                       |    0
 .../debian/no-rpath.patch                          |    0
 .../debian/no-symbolic.patch                       |    0
 .../debian/perl-path.diff                          |    0
 .../debian/pic.patch                               |    0
 .../debian/pkg-config.patch                        |    0
 .../debian/rc4-amd64.patch                         |    0
 .../debian/rehash-crt.patch                        |    0
 .../debian/rehash_pod.patch                        |    0
 .../debian/series                                  |    0
 .../debian/shared-lib-ext.patch                    |    0
 .../debian/stddef.patch                            |    0
 .../debian/version-script.patch                    |    0
 .../parallel-make-fix.patch                        |    2 ++
 .../shared-libs.patch                              |    2 ++
 meta/recipes-connectivity/openssl/openssl.inc      |    2 +-
 .../{openssl_0.9.8p.bb => openssl_0.9.8r.bb}       |    6 +++---
 .../recipes-core/libxml/libxml2/libxml-64bit.patch |    2 ++
 meta/recipes-core/libxml/libxml2_2.7.7.bb          |    6 ------
 meta/recipes-core/libxml/libxml2_2.7.8.bb          |    6 ++++++
 .../rsync/{rsync_3.0.7.bb => rsync_3.0.8.bb}       |    6 +++---
 .../{libexif_0.6.16.bb => libexif_0.6.20.bb}       |    6 +++---
 30 files changed, 23 insertions(+), 16 deletions(-)
 rename meta/recipes-connectivity/openssl/{openssl-0.9.8p => openssl-0.9.8r}/configure-targets.patch (97%)
 rename meta/recipes-connectivity/openssl/{openssl-0.9.8p => openssl-0.9.8r}/debian/ca.patch (100%)
 rename meta/recipes-connectivity/openssl/{openssl-0.9.8p => openssl-0.9.8r}/debian/config-hurd.patch (100%)
 rename meta/recipes-connectivity/openssl/{openssl-0.9.8p => openssl-0.9.8r}/debian/debian-targets.patch (100%)
 rename meta/recipes-connectivity/openssl/{openssl-0.9.8p => openssl-0.9.8r}/debian/engines-path.patch (100%)
 rename meta/recipes-connectivity/openssl/{openssl-0.9.8p => openssl-0.9.8r}/debian/kfreebsd-pipe.patch (100%)
 rename meta/recipes-connectivity/openssl/{openssl-0.9.8p => openssl-0.9.8r}/debian/make-targets.patch (100%)
 rename meta/recipes-connectivity/openssl/{openssl-0.9.8p => openssl-0.9.8r}/debian/man-dir.patch (100%)
 rename meta/recipes-connectivity/openssl/{openssl-0.9.8p => openssl-0.9.8r}/debian/man-section.patch (100%)
 rename meta/recipes-connectivity/openssl/{openssl-0.9.8p => openssl-0.9.8r}/debian/no-rpath.patch (100%)
 rename meta/recipes-connectivity/openssl/{openssl-0.9.8p => openssl-0.9.8r}/debian/no-symbolic.patch (100%)
 rename meta/recipes-connectivity/openssl/{openssl-0.9.8p => openssl-0.9.8r}/debian/perl-path.diff (100%)
 rename meta/recipes-connectivity/openssl/{openssl-0.9.8p => openssl-0.9.8r}/debian/pic.patch (100%)
 rename meta/recipes-connectivity/openssl/{openssl-0.9.8p => openssl-0.9.8r}/debian/pkg-config.patch (100%)
 rename meta/recipes-connectivity/openssl/{openssl-0.9.8p => openssl-0.9.8r}/debian/rc4-amd64.patch (100%)
 rename meta/recipes-connectivity/openssl/{openssl-0.9.8p => openssl-0.9.8r}/debian/rehash-crt.patch (100%)
 rename meta/recipes-connectivity/openssl/{openssl-0.9.8p => openssl-0.9.8r}/debian/rehash_pod.patch (100%)
 rename meta/recipes-connectivity/openssl/{openssl-0.9.8p => openssl-0.9.8r}/debian/series (100%)
 rename meta/recipes-connectivity/openssl/{openssl-0.9.8p => openssl-0.9.8r}/debian/shared-lib-ext.patch (100%)
 rename meta/recipes-connectivity/openssl/{openssl-0.9.8p => openssl-0.9.8r}/debian/stddef.patch (100%)
 rename meta/recipes-connectivity/openssl/{openssl-0.9.8p => openssl-0.9.8r}/debian/version-script.patch (100%)
 rename meta/recipes-connectivity/openssl/{openssl-0.9.8p => openssl-0.9.8r}/parallel-make-fix.patch (95%)
 rename meta/recipes-connectivity/openssl/{openssl-0.9.8p => openssl-0.9.8r}/shared-libs.patch (97%)
 rename meta/recipes-connectivity/openssl/{openssl_0.9.8p.bb => openssl_0.9.8r.bb} (86%)
 delete mode 100644 meta/recipes-core/libxml/libxml2_2.7.7.bb
 create mode 100644 meta/recipes-core/libxml/libxml2_2.7.8.bb
 rename meta/recipes-devtools/rsync/{rsync_3.0.7.bb => rsync_3.0.8.bb} (71%)
 rename meta/recipes-support/libexif/{libexif_0.6.16.bb => libexif_0.6.20.bb} (61%)



^ permalink raw reply	[flat|nested] 6+ messages in thread
* Re: [PATCH 0/4] security fixes
  2011-04-15 10:16 [PATCH 0/4] security fixes Qing He
                   ` (3 preceding siblings ...)
  2011-04-15 10:16 ` [PATCH 2/4] libxml2: upgrade to version 2.7.8 Qing He
@ 2011-04-18 21:56 ` Saul Wold
  4 siblings, 0 replies; 6+ messages in thread
From: Saul Wold @ 2011-04-18 21:56 UTC (permalink / raw)
  To: Qing He; +Cc: poky

On 04/15/2011 03:16 AM, Qing He wrote:
> From: Qing He<qing.he@intel.com>
>
> This patch set upgrades several recipes to address the following CVEs:
>
>     libexif: CVE-2007-6351, CVE-2007-6352, CVE-2009-3895
>     libxml2: CVE-2010-4008
>     openssl: CVE-2010-4180, CVE-2010-4252, CVE-2010-0014
>     rsync: CVE-2011-1097
>
> they are targeting for 1.0 point release
>
>
> Pull URL: git://git.pokylinux.org/poky-contrib.git
>    Branch: qhe/cve
>    Browse: http://git.pokylinux.org/cgit.cgi/poky-contrib/log/?h=qhe/cve
>
> Thanks,
>      Qing He<qing.he@intel.com>
> ---
>
>
> Qing He (4):
>    libexif: upgrade to 0.6.20
>    libxml2: upgrade to version 2.7.8
>    openssl: upgrade to version 0.9.8r
>    rsync: upgrade to version 3.0.8
>
>   .../configure-targets.patch                        |    1 +
>   .../debian/ca.patch                                |    0
>   .../debian/config-hurd.patch                       |    0
>   .../debian/debian-targets.patch                    |    0
>   .../debian/engines-path.patch                      |    0
>   .../debian/kfreebsd-pipe.patch                     |    0
>   .../debian/make-targets.patch                      |    0
>   .../debian/man-dir.patch                           |    0
>   .../debian/man-section.patch                       |    0
>   .../debian/no-rpath.patch                          |    0
>   .../debian/no-symbolic.patch                       |    0
>   .../debian/perl-path.diff                          |    0
>   .../debian/pic.patch                               |    0
>   .../debian/pkg-config.patch                        |    0
>   .../debian/rc4-amd64.patch                         |    0
>   .../debian/rehash-crt.patch                        |    0
>   .../debian/rehash_pod.patch                        |    0
>   .../debian/series                                  |    0
>   .../debian/shared-lib-ext.patch                    |    0
>   .../debian/stddef.patch                            |    0
>   .../debian/version-script.patch                    |    0
>   .../parallel-make-fix.patch                        |    2 ++
>   .../shared-libs.patch                              |    2 ++
>   meta/recipes-connectivity/openssl/openssl.inc      |    2 +-
>   .../{openssl_0.9.8p.bb =>  openssl_0.9.8r.bb}       |    6 +++---
>   .../recipes-core/libxml/libxml2/libxml-64bit.patch |    2 ++
>   meta/recipes-core/libxml/libxml2_2.7.7.bb          |    6 ------
>   meta/recipes-core/libxml/libxml2_2.7.8.bb          |    6 ++++++
>   .../rsync/{rsync_3.0.7.bb =>  rsync_3.0.8.bb}       |    6 +++---
>   .../{libexif_0.6.16.bb =>  libexif_0.6.20.bb}       |    6 +++---
>   30 files changed, 23 insertions(+), 16 deletions(-)
>   rename meta/recipes-connectivity/openssl/{openssl-0.9.8p =>  openssl-0.9.8r}/configure-targets.patch (97%)
>   rename meta/recipes-connectivity/openssl/{openssl-0.9.8p =>  openssl-0.9.8r}/debian/ca.patch (100%)
>   rename meta/recipes-connectivity/openssl/{openssl-0.9.8p =>  openssl-0.9.8r}/debian/config-hurd.patch (100%)
>   rename meta/recipes-connectivity/openssl/{openssl-0.9.8p =>  openssl-0.9.8r}/debian/debian-targets.patch (100%)
>   rename meta/recipes-connectivity/openssl/{openssl-0.9.8p =>  openssl-0.9.8r}/debian/engines-path.patch (100%)
>   rename meta/recipes-connectivity/openssl/{openssl-0.9.8p =>  openssl-0.9.8r}/debian/kfreebsd-pipe.patch (100%)
>   rename meta/recipes-connectivity/openssl/{openssl-0.9.8p =>  openssl-0.9.8r}/debian/make-targets.patch (100%)
>   rename meta/recipes-connectivity/openssl/{openssl-0.9.8p =>  openssl-0.9.8r}/debian/man-dir.patch (100%)
>   rename meta/recipes-connectivity/openssl/{openssl-0.9.8p =>  openssl-0.9.8r}/debian/man-section.patch (100%)
>   rename meta/recipes-connectivity/openssl/{openssl-0.9.8p =>  openssl-0.9.8r}/debian/no-rpath.patch (100%)
>   rename meta/recipes-connectivity/openssl/{openssl-0.9.8p =>  openssl-0.9.8r}/debian/no-symbolic.patch (100%)
>   rename meta/recipes-connectivity/openssl/{openssl-0.9.8p =>  openssl-0.9.8r}/debian/perl-path.diff (100%)
>   rename meta/recipes-connectivity/openssl/{openssl-0.9.8p =>  openssl-0.9.8r}/debian/pic.patch (100%)
>   rename meta/recipes-connectivity/openssl/{openssl-0.9.8p =>  openssl-0.9.8r}/debian/pkg-config.patch (100%)
>   rename meta/recipes-connectivity/openssl/{openssl-0.9.8p =>  openssl-0.9.8r}/debian/rc4-amd64.patch (100%)
>   rename meta/recipes-connectivity/openssl/{openssl-0.9.8p =>  openssl-0.9.8r}/debian/rehash-crt.patch (100%)
>   rename meta/recipes-connectivity/openssl/{openssl-0.9.8p =>  openssl-0.9.8r}/debian/rehash_pod.patch (100%)
>   rename meta/recipes-connectivity/openssl/{openssl-0.9.8p =>  openssl-0.9.8r}/debian/series (100%)
>   rename meta/recipes-connectivity/openssl/{openssl-0.9.8p =>  openssl-0.9.8r}/debian/shared-lib-ext.patch (100%)
>   rename meta/recipes-connectivity/openssl/{openssl-0.9.8p =>  openssl-0.9.8r}/debian/stddef.patch (100%)
>   rename meta/recipes-connectivity/openssl/{openssl-0.9.8p =>  openssl-0.9.8r}/debian/version-script.patch (100%)
>   rename meta/recipes-connectivity/openssl/{openssl-0.9.8p =>  openssl-0.9.8r}/parallel-make-fix.patch (95%)
>   rename meta/recipes-connectivity/openssl/{openssl-0.9.8p =>  openssl-0.9.8r}/shared-libs.patch (97%)
>   rename meta/recipes-connectivity/openssl/{openssl_0.9.8p.bb =>  openssl_0.9.8r.bb} (86%)
>   delete mode 100644 meta/recipes-core/libxml/libxml2_2.7.7.bb
>   create mode 100644 meta/recipes-core/libxml/libxml2_2.7.8.bb
>   rename meta/recipes-devtools/rsync/{rsync_3.0.7.bb =>  rsync_3.0.8.bb} (71%)
>   rename meta/recipes-support/libexif/{libexif_0.6.16.bb =>  libexif_0.6.20.bb} (61%)
>
> _______________________________________________
> poky mailing list
> poky@yoctoproject.org
> https://lists.yoctoproject.org/listinfo/poky
>

Merged into Master

Thanks
	Sau!



^ permalink raw reply	[flat|nested] 6+ messages in thread
end of thread, other threads:[~2011-04-18 21:56 UTC | newest]

Thread overview: 6+ messages (download: mbox.gz / follow: Atom feed)
-- links below jump to the message on this page --
2011-04-15 10:16 [PATCH 0/4] security fixes Qing He
2011-04-15 10:16 ` [PATCH 3/4] openssl: upgrade to version 0.9.8r Qing He
2011-04-15 10:16 ` [PATCH 1/4] libexif: upgrade to 0.6.20 Qing He
2011-04-15 10:16 ` [PATCH 4/4] rsync: upgrade to version 3.0.8 Qing He
2011-04-15 10:16 ` [PATCH 2/4] libxml2: upgrade to version 2.7.8 Qing He
2011-04-18 21:56 ` [PATCH 0/4] security fixes Saul Wold

This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.