openembedded-core.git/meta/recipes-connectivity, branch uninative-1.0 Mirror of openembedded-core connman: update to version 1.32 2016-05-14T06:26:40+00:00 Maxin B. John maxin.john@intel.com 2016-05-12T13:16:52+00:00 5d1b1d9cc20ee69832e8d95579dcfa99419dfed5 Removed following upstreamed/backported patches: a) 0001-Detect-backtrace-API-availability-before-using-it.patch b) 0001-iptables-Add-missing-function-item-of-xtables-to-mat.patch Rearranged musl related patches. Signed-off-by: Maxin B. John <maxin.john@intel.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org> 
Removed following upstreamed/backported patches:
        a) 0001-Detect-backtrace-API-availability-before-using-it.patch
        b) 0001-iptables-Add-missing-function-item-of-xtables-to-mat.patch

Rearranged musl related patches.

Signed-off-by: Maxin B. John <maxin.john@intel.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
openssl: Security fix via update to 1.0.2h 2016-05-09T07:03:57+00:00 Armin Kuster akuster@mvista.com 2016-05-03T23:46:05+00:00 c693f34f54257a8eca9fe8c5a9eee5647b7eeb0c CVE-2016-2105 CVE-2016-2106 CVE-2016-2109 CVE-2016-2176 https://www.openssl.org/news/secadv/20160503.txt fixup openssl-avoid-NULL-pointer-dereference-in-EVP_DigestInit_ex.patch drop crypto_use_bigint_in_x86-64_perl.patch as that fix is in latest. Signed-off-by: Armin Kuster <akuster@mvista.com> Signed-off-by: Ross Burton <ross.burton@intel.com> 
CVE-2016-2105
CVE-2016-2106
CVE-2016-2109
CVE-2016-2176

https://www.openssl.org/news/secadv/20160503.txt

fixup openssl-avoid-NULL-pointer-dereference-in-EVP_DigestInit_ex.patch

drop crypto_use_bigint_in_x86-64_perl.patch as that fix is in latest.

Signed-off-by: Armin Kuster <akuster@mvista.com>
Signed-off-by: Ross Burton <ross.burton@intel.com>
iproute2: upgrade to version 4.5.0 2016-05-09T07:03:56+00:00 Maxin B. John maxin.john@intel.com 2016-05-04T08:20:24+00:00 9d3d76a43d27c95aac8d7a840c9c38c686b166ec 4.4.0 -> 4.5.0 Refreshed iproute2 musl build fix patch for 4.5.0 Remove backported patch: iproute2-fix-building-with-musl.patch Signed-off-by: Maxin B. John <maxin.john@intel.com> Signed-off-by: Ross Burton <ross.burton@intel.com> 
4.4.0 -> 4.5.0

Refreshed iproute2 musl build fix patch for 4.5.0
Remove backported patch:
        iproute2-fix-building-with-musl.patch

Signed-off-by: Maxin B. John <maxin.john@intel.com>
Signed-off-by: Ross Burton <ross.burton@intel.com>
bluez5: upgrade to 5.39 2016-05-09T07:03:55+00:00 Maxin B. John maxin.john@intel.com 2016-05-04T08:20:19+00:00 53048d65402211e0caa9a7c8b90e3d9711a5262a 5.37 -> 5.39 Signed-off-by: Maxin B. John <maxin.john@intel.com> Signed-off-by: Ross Burton <ross.burton@intel.com> 
5.37 -> 5.39

Signed-off-by: Maxin B. John <maxin.john@intel.com>
Signed-off-by: Ross Burton <ross.burton@intel.com>
bluez5: enable out-of-tree builds 2016-04-29T06:53:58+00:00 Ross Burton ross.burton@intel.com 2016-04-22T15:16:06+00:00 471fdafb340e90a4ab2e31854f69d5204e9380bf A patch is needed to fix a race in out-of-tree builds, and the install-ptest logic can be simplified. Signed-off-by: Ross Burton <ross.burton@intel.com> 
A patch is needed to fix a race in out-of-tree builds, and the install-ptest
logic can be simplified.

Signed-off-by: Ross Burton <ross.burton@intel.com>
openssh: Security Fix CVE-2016-3115 2016-04-29T06:36:30+00:00 Armin Kuster akuster@mvista.com 2016-04-28T00:47:20+00:00 7d6abd0b7b89f28343741c2188da22c6d1c6c8ea opehssh <= 7.2 Signed-off-by: Armin Kuster <akuster@mvista.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org> 
opehssh <= 7.2

Signed-off-by: Armin Kuster <akuster@mvista.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
connman-gnome: Depend on dbus-glib-native 2016-04-29T06:34:10+00:00 Jussi Kukkonen jussi.kukkonen@intel.com 2016-04-21T12:50:39+00:00 513515fef1a5dac197b260613af8205bea96bcfc This is required for dbus-binding-tool. Signed-off-by: Jussi Kukkonen <jussi.kukkonen@intel.com> Signed-off-by: Ross Burton <ross.burton@intel.com> 
This is required for dbus-binding-tool.

Signed-off-by: Jussi Kukkonen <jussi.kukkonen@intel.com>
Signed-off-by: Ross Burton <ross.burton@intel.com>
dhcp: CVE-2016-2774 2016-04-18T15:27:45+00:00 Catalin Enache catalin.enache@windriver.com 2016-04-18T12:52:16+00:00 2fc84114c6323bf1e3d3598af52dd1523168c9fc ISC DHCP 4.1.x before 4.1-ESV-R13 and 4.2.x and 4.3.x before 4.3.4 does not restrict the number of concurrent TCP sessions, which allows remote attackers to cause a denial of service (INSIST assertion failure or request-processing outage) by establishing many sessions. http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2016-2774 Signed-off-by: Catalin Enache <catalin.enache@windriver.com> Signed-off-by: Ross Burton <ross.burton@intel.com> 
ISC DHCP 4.1.x before 4.1-ESV-R13 and 4.2.x and 4.3.x before
4.3.4 does not restrict the number of concurrent TCP sessions,
which allows remote attackers to cause a denial of service
(INSIST assertion failure or request-processing outage)
by establishing many sessions.

http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2016-2774

Signed-off-by: Catalin Enache <catalin.enache@windriver.com>
Signed-off-by: Ross Burton <ross.burton@intel.com>
bind: CVE-2016-2088 2016-04-18T15:27:45+00:00 Jussi Kukkonen jussi.kukkonen@intel.com 2016-04-15T12:03:17+00:00 da38a9840b32e80464e2938395db5c9167729f7e Duplicate EDNS COOKIE options in a response could trigger an assertion failure: Fix with a backport. bind as built with the oe-core recipe is not at risk: Only servers which are built with DNS cookie support (--enable-sit) are vulnerable to denial of service. Fixes [YOCTO #9438] Signed-off-by: Jussi Kukkonen <jussi.kukkonen@intel.com> Signed-off-by: Ross Burton <ross.burton@intel.com> 
Duplicate EDNS COOKIE options in a response could trigger an
assertion failure: Fix with a backport.

bind as built with the oe-core recipe is not at risk: Only servers
which are built with DNS cookie support (--enable-sit) are vulnerable
to denial of service.

Fixes [YOCTO #9438]

Signed-off-by: Jussi Kukkonen <jussi.kukkonen@intel.com>
Signed-off-by: Ross Burton <ross.burton@intel.com>
dhcp: Enable update-rc.d service 2016-04-15T05:57:48+00:00 Fabio Berton fabio.berton@ossystems.com.br 2016-04-14T12:51:06+00:00 854523f173ba9784f1e2a00804c0f5ef16e8cf85 do_install_append function installs init scripts but to enable this service we need to inherit update-rc.d class and set INITSCRIPT name and params. Signed-off-by: Fabio Berton <fabio.berton@ossystems.com.br> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org> 
do_install_append function installs init scripts but to enable this
service we need to inherit update-rc.d class and set INITSCRIPT name
and params.

Signed-off-by: Fabio Berton <fabio.berton@ossystems.com.br>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>