daemon: fix mirrors validation #38991
Merged
Conversation
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Signed-off-by: Tonis Tiigi <tonistiigi@gmail.com>
tiborvass
reviewed
Apr 2, 2019
| v = strings.TrimPrefix(v, "https://") | ||
| v = strings.TrimPrefix(v, "http://") | ||
| if uri, err := url.Parse(v); err == nil { | ||
| v = uri.Host |
There was a problem hiding this comment.
@dmcgowan aren't mirrors allowed to have a path component ?
There was a problem hiding this comment.
Nevermind, apparently not: https://github.com/moby/moby/blob/98fc091/registry/config.go#L319
There was a problem hiding this comment.
Actually, I think this may have been over-restrictive and we supported this in the past #36598 😓 not sure if we should loosen that validation again?
There was a problem hiding this comment.
validation was added in #29650
There was a problem hiding this comment.
This PR actually fixes an issue with regular mirrors, while the issue about paths in the mirror url has been there prior. I'm fine taking in this quick fix while someone who wants to contribute fixes the issue you mention. Also, most of this code will go away with containerd integration.
There was a problem hiding this comment.
containerd does not currently support subpaths either so its not only validation
tiborvass
approved these changes
Apr 2, 2019
thaJeztah
reviewed
Apr 2, 2019
| mirrors[i] = v | ||
| } | ||
| // set "registry-mirrors" | ||
| m[registryKey] = resolver.RegistryConf{Mirrors: mirrors} | ||
| // set "insecure-registries" | ||
| for _, v := range daemon.configStore.InsecureRegistries { | ||
| v = strings.TrimPrefix(v, "http://") | ||
| if uri, err := url.Parse(v); err == nil { |
There was a problem hiding this comment.
if err != nil, we preserve the original value, that's intended?
There was a problem hiding this comment.
Yes, there isn't a good way to produce error here. If the value is invalid it will fail in the dialer and user will see that inside the dialer message.
buildroot-auto-update
pushed a commit
to buildroot/buildroot
that referenced
this pull request
Jun 30, 2019
Fixes CVE-2018-15664: API endpoints behind the 'docker cp' command are vulnerable to a symlink-exchange attack with Directory Traversal, giving attackers arbitrary read-write access to the host filesystem with root privileges, because daemon/archive.go does not do archive operations on a frozen filesystem (or from within a chroot). And includes additional post-18.09.6 fixes: Builder - Fixed a panic error when building dockerfiles that contain only comments. moby/moby#38487 - Added a workaround for GCR authentication issue. moby/moby#38246 - Builder-next: Fixed a bug in the GCR token cache implementation workaround. moby/moby#39183 Runtime - Added performance optimizations in aufs and layer store that helps in massively parallel container creation and removal. moby/moby#39107, moby/moby#39135 - daemon: fixed a mirrors validation issue. moby/moby#38991 - Docker no longer supports sorting UID and GID ranges in ID maps. moby/moby#39288 Logging - Added a fix that now allows large log lines for logger plugins. moby/moby#39038 Signed-off-by: Peter Korsgaard <peter@korsgaard.com> Signed-off-by: Arnout Vandecappelle (Essensium/Mind) <arnout@mind.be>
buildroot-auto-update
pushed a commit
to buildroot/buildroot
that referenced
this pull request
Jun 30, 2019
Fixes CVE-2018-15664: API endpoints behind the 'docker cp' command are vulnerable to a symlink-exchange attack with Directory Traversal, giving attackers arbitrary read-write access to the host filesystem with root privileges, because daemon/archive.go does not do archive operations on a frozen filesystem (or from within a chroot). And includes additional post-18.09.6 fixes: Builder - Fixed a panic error when building dockerfiles that contain only comments. moby/moby#38487 - Added a workaround for GCR authentication issue. moby/moby#38246 - Builder-next: Fixed a bug in the GCR token cache implementation workaround. moby/moby#39183 Runtime - Added performance optimizations in aufs and layer store that helps in massively parallel container creation and removal. moby/moby#39107, moby/moby#39135 - daemon: fixed a mirrors validation issue. moby/moby#38991 - Docker no longer supports sorting UID and GID ranges in ID maps. moby/moby#39288 Logging - Added a fix that now allows large log lines for logger plugins. moby/moby#39038 Signed-off-by: Peter Korsgaard <peter@korsgaard.com> Signed-off-by: Arnout Vandecappelle (Essensium/Mind) <arnout@mind.be>
paralin
pushed a commit
to skiffos/buildroot
that referenced
this pull request
Jul 2, 2019
Fixes CVE-2018-15664: API endpoints behind the 'docker cp' command are vulnerable to a symlink-exchange attack with Directory Traversal, giving attackers arbitrary read-write access to the host filesystem with root privileges, because daemon/archive.go does not do archive operations on a frozen filesystem (or from within a chroot). And includes additional post-18.09.6 fixes: Builder - Fixed a panic error when building dockerfiles that contain only comments. moby/moby#38487 - Added a workaround for GCR authentication issue. moby/moby#38246 - Builder-next: Fixed a bug in the GCR token cache implementation workaround. moby/moby#39183 Runtime - Added performance optimizations in aufs and layer store that helps in massively parallel container creation and removal. moby/moby#39107, moby/moby#39135 - daemon: fixed a mirrors validation issue. moby/moby#38991 - Docker no longer supports sorting UID and GID ranges in ID maps. moby/moby#39288 Logging - Added a fix that now allows large log lines for logger plugins. moby/moby#39038 Signed-off-by: Peter Korsgaard <peter@korsgaard.com> Signed-off-by: Arnout Vandecappelle (Essensium/Mind) <arnout@mind.be>
paralin
pushed a commit
to skiffos/buildroot
that referenced
this pull request
Jul 2, 2019
Fixes CVE-2018-15664: API endpoints behind the 'docker cp' command are vulnerable to a symlink-exchange attack with Directory Traversal, giving attackers arbitrary read-write access to the host filesystem with root privileges, because daemon/archive.go does not do archive operations on a frozen filesystem (or from within a chroot). And includes additional post-18.09.6 fixes: Builder - Fixed a panic error when building dockerfiles that contain only comments. moby/moby#38487 - Added a workaround for GCR authentication issue. moby/moby#38246 - Builder-next: Fixed a bug in the GCR token cache implementation workaround. moby/moby#39183 Runtime - Added performance optimizations in aufs and layer store that helps in massively parallel container creation and removal. moby/moby#39107, moby/moby#39135 - daemon: fixed a mirrors validation issue. moby/moby#38991 - Docker no longer supports sorting UID and GID ranges in ID maps. moby/moby#39288 Logging - Added a fix that now allows large log lines for logger plugins. moby/moby#39038 Signed-off-by: Peter Korsgaard <peter@korsgaard.com> Signed-off-by: Arnout Vandecappelle (Essensium/Mind) <arnout@mind.be>
buildroot-auto-update
pushed a commit
to buildroot/buildroot
that referenced
this pull request
Jul 7, 2019
Fixes CVE-2018-15664: API endpoints behind the 'docker cp' command are vulnerable to a symlink-exchange attack with Directory Traversal, giving attackers arbitrary read-write access to the host filesystem with root privileges, because daemon/archive.go does not do archive operations on a frozen filesystem (or from within a chroot). And includes additional post-18.09.6 fixes: Builder - Fixed a panic error when building dockerfiles that contain only comments. moby/moby#38487 - Added a workaround for GCR authentication issue. moby/moby#38246 - Builder-next: Fixed a bug in the GCR token cache implementation workaround. moby/moby#39183 Runtime - Added performance optimizations in aufs and layer store that helps in massively parallel container creation and removal. moby/moby#39107, moby/moby#39135 - daemon: fixed a mirrors validation issue. moby/moby#38991 - Docker no longer supports sorting UID and GID ranges in ID maps. moby/moby#39288 Logging - Added a fix that now allows large log lines for logger plugins. moby/moby#39038 Signed-off-by: Peter Korsgaard <peter@korsgaard.com> Signed-off-by: Arnout Vandecappelle (Essensium/Mind) <arnout@mind.be> (cherry picked from commit 13cf6f0) Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
buildroot-auto-update
pushed a commit
to buildroot/buildroot
that referenced
this pull request
Jul 7, 2019
Fixes CVE-2018-15664: API endpoints behind the 'docker cp' command are vulnerable to a symlink-exchange attack with Directory Traversal, giving attackers arbitrary read-write access to the host filesystem with root privileges, because daemon/archive.go does not do archive operations on a frozen filesystem (or from within a chroot). And includes additional post-18.09.6 fixes: Builder - Fixed a panic error when building dockerfiles that contain only comments. moby/moby#38487 - Added a workaround for GCR authentication issue. moby/moby#38246 - Builder-next: Fixed a bug in the GCR token cache implementation workaround. moby/moby#39183 Runtime - Added performance optimizations in aufs and layer store that helps in massively parallel container creation and removal. moby/moby#39107, moby/moby#39135 - daemon: fixed a mirrors validation issue. moby/moby#38991 - Docker no longer supports sorting UID and GID ranges in ID maps. moby/moby#39288 Logging - Added a fix that now allows large log lines for logger plugins. moby/moby#39038 Signed-off-by: Peter Korsgaard <peter@korsgaard.com> Signed-off-by: Arnout Vandecappelle (Essensium/Mind) <arnout@mind.be> (cherry picked from commit cdbb3ce) Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
buildroot-auto-update
pushed a commit
to buildroot/buildroot
that referenced
this pull request
Jul 7, 2019
Fixes CVE-2018-15664: API endpoints behind the 'docker cp' command are vulnerable to a symlink-exchange attack with Directory Traversal, giving attackers arbitrary read-write access to the host filesystem with root privileges, because daemon/archive.go does not do archive operations on a frozen filesystem (or from within a chroot). And includes additional post-18.09.6 fixes: Builder - Fixed a panic error when building dockerfiles that contain only comments. moby/moby#38487 - Added a workaround for GCR authentication issue. moby/moby#38246 - Builder-next: Fixed a bug in the GCR token cache implementation workaround. moby/moby#39183 Runtime - Added performance optimizations in aufs and layer store that helps in massively parallel container creation and removal. moby/moby#39107, moby/moby#39135 - daemon: fixed a mirrors validation issue. moby/moby#38991 - Docker no longer supports sorting UID and GID ranges in ID maps. moby/moby#39288 Logging - Added a fix that now allows large log lines for logger plugins. moby/moby#39038 Signed-off-by: Peter Korsgaard <peter@korsgaard.com> Signed-off-by: Arnout Vandecappelle (Essensium/Mind) <arnout@mind.be> (cherry picked from commit 13cf6f0) Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
buildroot-auto-update
pushed a commit
to buildroot/buildroot
that referenced
this pull request
Jul 7, 2019
Fixes CVE-2018-15664: API endpoints behind the 'docker cp' command are vulnerable to a symlink-exchange attack with Directory Traversal, giving attackers arbitrary read-write access to the host filesystem with root privileges, because daemon/archive.go does not do archive operations on a frozen filesystem (or from within a chroot). And includes additional post-18.09.6 fixes: Builder - Fixed a panic error when building dockerfiles that contain only comments. moby/moby#38487 - Added a workaround for GCR authentication issue. moby/moby#38246 - Builder-next: Fixed a bug in the GCR token cache implementation workaround. moby/moby#39183 Runtime - Added performance optimizations in aufs and layer store that helps in massively parallel container creation and removal. moby/moby#39107, moby/moby#39135 - daemon: fixed a mirrors validation issue. moby/moby#38991 - Docker no longer supports sorting UID and GID ranges in ID maps. moby/moby#39288 Logging - Added a fix that now allows large log lines for logger plugins. moby/moby#39038 Signed-off-by: Peter Korsgaard <peter@korsgaard.com> Signed-off-by: Arnout Vandecappelle (Essensium/Mind) <arnout@mind.be> (cherry picked from commit cdbb3ce) Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
fschuett
added a commit
to fschuett/oss-linbo
that referenced
this pull request
Jul 17, 2019
commit ffdfae10099bd331c1633ed095e3fec1f9fd08d7
Merge: 2c9d5ed9c4 5b4e32cae8
Author: Frank Schütte <fschuett@gymhim.de>
Date: Thu Jul 11 12:09:12 2019 +0200
Add 'buildroot/' from commit 'cbdce5afe408d334ec4cb7bf26066fc9f4fa34f0'
git-subtree-dir: buildroot
git-subtree-mainline: 2c9d5ed9c4350e0da58890a461b853131850569a
git-subtree-split: cbdce5afe408d334ec4cb7bf26066fc9f4fa34f0
commit 2c9d5ed9c4350e0da58890a461b853131850569a
Author: Frank Schütte <fschuett@gymhim.de>
Date: Thu Jul 11 12:06:12 2019 +0200
removed buildroot 2018.08.2
commit 5b4e32cae812225fa909d755d7e09588ce0b92da
Author: Peter Korsgaard <peter@korsgaard.com>
Date: Sun Jul 7 22:09:08 2019 +0200
Update for 2019.05.1
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
commit 1fa07c457748ef6ac46151d0ab9801fe109066b6
Author: Bernd Kuhls <bernd.kuhls@t-online.de>
Date: Fri Jul 5 07:37:26 2019 +0200
package/php: bump version to 7.3.7
Changelog: https://www.php.net/ChangeLog-7.php#7.3.7
Signed-off-by: Bernd Kuhls <bernd.kuhls@t-online.de>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
(cherry picked from commit 7accdcb3a943d420b13a73c497d29cb15db156e2)
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
commit 8749266fbd5cf3c79906a7073e03c7c7e60437e5
Author: Adrian Perez de Castro <aperez@igalia.com>
Date: Thu Jul 4 12:10:06 2019 +0300
package/webkitgtk: bump to version 2.24.3
Version 2.24.3 is a minor update which contains many bugfixes.
>From the announcement:
- Fix previous/next gestures in RTL mode.
- Fix rendering artifacts in popular sites (YouTube, GitHub, etc.)
- Fix media playback annoyances (volume randomly changing, HLS streams
starting too slowly, some audio streams would not play, etc.)
- Fix build with audio and video disabled.
https://webkitgtk.org/2019/07/02/webkitgtk2.24.3-released.html
Signed-off-by: Adrian Perez de Castro <aperez@igalia.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
(cherry picked from commit 3ff05d9094be1329b5987589d6b6fefb152ff006)
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
commit df58dedc4e10d5aceb40b5f0083b8846f7ca197e
Author: Peter Korsgaard <peter@korsgaard.com>
Date: Thu Jul 4 08:32:18 2019 +0200
{linux, linux-headers}: bump 4.{14, 19}.x / 5.1.x series
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
(cherry picked from commit 173ed657f3ff322e523912f7cd3c651b758debe2)
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
commit bb7cf8a7e437b049206250f9a0c9dac373a1c185
Author: Fabrice Fontaine <fontaine.fabrice@gmail.com>
Date: Mon Jul 1 18:58:51 2019 +0200
package/libsecret: fix build with NLS
Fixes:
- http://autobuild.buildroot.org/results/1497d7c2485c4a107ab82c870d78744981efb6d3
Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
(cherry picked from commit 3bd1574aefb877e415e4a496d5c0394bad9759f0)
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
commit 01aea425d4f3bcec65f115e6a31e87b50abad468
Author: Peter Korsgaard <peter@korsgaard.com>
Date: Wed Jul 3 20:15:07 2019 +0200
package/python-django: security bump to version 2.1.10
Fixes the following security vulnerabilities:
CVE-2019-12781: Incorrect HTTP detection with reverse-proxy connecting via
HTTPS
For more details, see the announcement:
https://www.djangoproject.com/weblog/2019/jul/01/security-releases/
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
Signed-off-by: Arnout Vandecappelle (Essensium/Mind) <arnout@mind.be>
(cherry picked from commit 9f87b3785fe15d0b57f9b1820456b29f3c6a7284)
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
commit 9ffc00c6b89ffdf2f079e451165387b08ba7718c
Author: Baruch Siach <baruch@tkos.co.il>
Date: Mon Jul 1 15:43:26 2019 +0300
package/faad2: add upstream security fixes
CVE-2018-20194: Stack buffer overflow on invalid input
CVE-2018-20362: Null pointer dereference when processing crafted AAC
input
Add two more crash fixes from upstream.
Signed-off-by: Baruch Siach <baruch@tkos.co.il>
Signed-off-by: Arnout Vandecappelle (Essensium/Mind) <arnout@mind.be>
(cherry picked from commit 7f4dde33185f820fa37195cc9ab3bc0f4e45b9af)
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
commit 00eb1900bbb1c7290c257de32d85a92ff8333087
Author: Brandon Maier <brandon.maier@rockwellcollins.com>
Date: Tue Jul 2 13:52:27 2019 -0500
utils/check-package: Add a quiet flag
When running in a CI system, stat messages become white noise. Introduce
an option to suppress non-error, non-warning, messages.
Signed-off-by: Brandon Maier <brandon.maier@rockwellcollins.com>
Signed-off-by: Arnout Vandecappelle (Essensium/Mind) <arnout@mind.be>
(cherry picked from commit 44af8386f83ed042591fa089dbf01e373c8424ad)
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
commit 629d37ea4a62aa3ffd730a93b8822b49389b6c93
Author: Marcin Niestroj <m.niestroj@grinn-global.com>
Date: Tue Jul 2 22:13:41 2019 +0200
boot/barebox: needs host-{flex,bison}
Barebox starting from 2019.02 no longer ships flex/bison generated
parser. Add conditional kconfig dependencies, same as we did for kernel
and uboot.
Signed-off-by: Marcin Niestroj <m.niestroj@grinn-global.com>
Signed-off-by: Arnout Vandecappelle (Essensium/Mind) <arnout@mind.be>
(cherry picked from commit e7d8d9a765b61f0c464abea37a9568c1ae7a25c0)
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
commit 4e0e4b56578549a4e6609c7a755af2a9398d7a29
Author: Peter Korsgaard <peter@korsgaard.com>
Date: Wed Jul 3 17:52:13 2019 +0200
package/irssi: security bump to version 1.0.8
Fixes the following security vulnerability:
CVE-2019-13045: Use after free when sending SASL login to the server found
by ilbelkyr
For more details, see the advisory:
https://irssi.org/security/html/irssi_sa_2019_06/
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
Signed-off-by: Arnout Vandecappelle (Essensium/Mind) <arnout@mind.be>
(cherry picked from commit 0a1b957d4ed3ec41c645fc81ba6029921116ab4f)
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
commit cdee4f6c67cd3aa1aa3b77b500ff03c6e96cbaf7
Author: Yann E. MORIN <yann.morin.1998@free.fr>
Date: Mon Jun 24 22:25:47 2019 +0200
package/meson: fix empty arguments in cross-compilation.conf
When TARGET_CFLAGS (or _LDFLAGS or _CXXFLAGS) are empty, but were
constructed by appending other variables, like:
TARGET_CFLAGS = $(SOMETHING) $(SOMETHING_ELSE)
and both variables are empty, then $(TARGET_CFLAGS) is _not_ the
null-string; it's value is a string made of a single space.
This means that the construct:
$(if $(TARGET_CFLAGS),true,false)
will in fact return 'true'.
In our case, it means that we will call:
`printf '"%s", ' `
which expands to just:
"",
which we are then happy to insert as-is in the generated
cross-compilation.conf.
Then meson, will happily call the compiler with an empty argument.
The compiler is less happy, though:
arm-none-linux-gnueabi-gcc: error: : No such file or directory
And this is not even trivial to debug either... The only clue being that
there seems to be something missing between ': :'
We fix that testing the $(strip)ed value. We can still pass the
non-$(strip) expansion, because the shell will just do it for us, and we
are then sure there is at least one non-blank word in there.
Thanks a lot to Adam for his invaluable help debugging this!
Signed-off-by: Yann E. MORIN <yann.morin.1998@free.fr>
Cc: Adam Duskett <aduskett@gmail.com>
Cc: Eric Le Bihan <eric.le.bihan.dev@free.fr>
Cc: Arnout Vandecappelle <arnout@mind.be>
Cc: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
Signed-off-by: Arnout Vandecappelle (Essensium/Mind) <arnout@mind.be>
(cherry picked from commit e9de6d9e0ac66883b9c8b7b4c623b27dab8087ab)
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
commit e164494f3a4a204682b3d548d0d62e85fe8b669a
Author: Fabrice Fontaine <fontaine.fabrice@gmail.com>
Date: Fri Jun 28 22:32:09 2019 +0200
package/dialog: fix build with NLS
Fixes:
- http://autobuild.buildroot.org/results/9287ffbb86a7dc09cda5f99f87445fa884e77625
Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
Signed-off-by: Arnout Vandecappelle (Essensium/Mind) <arnout@mind.be>
(cherry picked from commit 0953377a9ea4ea518a87a0b48169626c762b5fea)
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
commit 391134bdb2115dec860b2d4a7c1b7c7b37b50d0b
Author: Peter Korsgaard <peter@korsgaard.com>
Date: Fri Jun 28 15:26:13 2019 +0200
package/expat: security bump to version 2.2.7
Fixes the following security vulnerabilites:
CVE-2018-20843: In libexpat in Expat before 2.2.7, XML input including XML
names that contain a large number of colons could make the XML parser
consume a high amount of RAM and CPU resources while processing (enough to
be usable for denial-of-service attacks).
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
Signed-off-by: Arnout Vandecappelle (Essensium/Mind) <arnout@mind.be>
(cherry picked from commit 84fd08cf4f860914b0d7b6e48dbe6819e96cc423)
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
commit 3c4c8c7fa537131b5527b633abb25b312df9b57a
Author: Peter Korsgaard <peter@korsgaard.com>
Date: Fri Jun 28 08:32:46 2019 +0200
package/docker-cli: security bump to version 18.09.7
Fixes CVE-2018-15664: API endpoints behind the 'docker cp' command are
vulnerable to a symlink-exchange attack with Directory Traversal, giving
attackers arbitrary read-write access to the host filesystem with root
privileges, because daemon/archive.go does not do archive operations on a
frozen filesystem (or from within a chroot).
And includes additional post-18.09.6 fixes:
Builder
- Fixed a panic error when building dockerfiles that contain only comments.
moby/moby#38487
- Added a workaround for GCR authentication issue. moby/moby#38246
- Builder-next: Fixed a bug in the GCR token cache implementation
workaround. moby/moby#39183
Runtime
- Added performance optimizations in aufs and layer store that helps in
massively parallel container creation and removal. moby/moby#39107,
moby/moby#39135
- daemon: fixed a mirrors validation issue. moby/moby#38991
- Docker no longer supports sorting UID and GID ranges in ID maps.
moby/moby#39288
Logging
- Added a fix that now allows large log lines for logger plugins.
moby/moby#39038
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
Signed-off-by: Arnout Vandecappelle (Essensium/Mind) <arnout@mind.be>
(cherry picked from commit cdbb3ced003a3fbf141964d4acaabda969d742b0)
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
commit 99616911e08484c813d6cc321d925faadc75e5c1
Author: Peter Korsgaard <peter@korsgaard.com>
Date: Fri Jun 28 08:32:45 2019 +0200
package/docker-engine: security bump to version 18.09.7
Fixes CVE-2018-15664: API endpoints behind the 'docker cp' command are
vulnerable to a symlink-exchange attack with Directory Traversal, giving
attackers arbitrary read-write access to the host filesystem with root
privileges, because daemon/archive.go does not do archive operations on a
frozen filesystem (or from within a chroot).
And includes additional post-18.09.6 fixes:
Builder
- Fixed a panic error when building dockerfiles that contain only comments.
moby/moby#38487
- Added a workaround for GCR authentication issue. moby/moby#38246
- Builder-next: Fixed a bug in the GCR token cache implementation
workaround. moby/moby#39183
Runtime
- Added performance optimizations in aufs and layer store that helps in
massively parallel container creation and removal. moby/moby#39107,
moby/moby#39135
- daemon: fixed a mirrors validation issue. moby/moby#38991
- Docker no longer supports sorting UID and GID ranges in ID maps.
moby/moby#39288
Logging
- Added a fix that now allows large log lines for logger plugins.
moby/moby#39038
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
Signed-off-by: Arnout Vandecappelle (Essensium/Mind) <arnout@mind.be>
(cherry picked from commit 13cf6f0c0bf0df313712aca8e4197ce96e29de89)
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
commit 20261dd86a8fd123453ee03ac20c83eb84c41f4a
Author: Kieran Bingham <kieran.bingham@ideasonboard.com>
Date: Tue Jun 25 22:56:17 2019 +0100
package/libcamera: bump to version caf25dc5cfd11b965316f02610d49ae3d886716b
Buildroots autobuild identified a failure on GCC v6.2 and GCC v6.3,
producing the following warning (reported as error due to -Werror):
event_dispatcher_poll.cpp:231:13: error: types may not be defined
in a for-range-declaration [-Werror]
for (const struct pollfd &pfd : pollfds) {
^~~~~~
cc1plus: all warnings being treated as errors
A fix has been integrated upstream, bump the package to incorporate it.
Fixes: http://autobuild.buildroot.net/results/f6dd4c60c04892c8b1669e6000fce7edb2b6349e/
Signed-off-by: Kieran Bingham <kieran.bingham@ideasonboard.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
(cherry picked from commit 1db7890e0a7c7fb1b849300b5805e6be3fd5622f)
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
commit 1ffac20f7fed58b5d8e124ac2a6adfd4aa25f8b3
Author: Jared Bents <jared.bents@rockwellcollins.com>
Date: Wed Jun 26 09:20:42 2019 -0500
package/bzip2: add upstream security fix for CVE-2019-12900
Patch to resolve cve-2019-12900 which affects bzip2 versions 1.0.6 and older
More information can be found at
https://nvd.nist.gov/vuln/detail/CVE-2019-12900
Signed-off-by: Jared Bents <jared.bents@rockwellcollins.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
(cherry picked from commit 6581c441dfc06c5e5e3666718e5c2e9801485ede)
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
commit f663cf2d0050d13297d965a60304c75cc495107d
Author: Adam Duskett <Aduskett@gmail.com>
Date: Tue May 28 23:35:21 2019 -0400
package/bzip2: add hash for license file
Also add a standard sha256 hash for the package itself.
Signed-off-by: Adam Duskett <Aduskett@gmail.com>
Reviewed-by: Thomas Huth <huth@tuxfamily.org>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
(cherry picked from commit cc7581a850fcae8de601b9678f65a00d46db76af)
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
commit a8ad14b1fd21cb9b5685233f33904fde97714162
Author: Peter Korsgaard <peter@korsgaard.com>
Date: Thu Jun 27 08:57:21 2019 +0200
{linux, linux-headers}: bump 4.{4, 9, 14, 19}.x / 5.1.x series
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
(cherry picked from commit abc782c0b3be3b4d5346a23ac46b8417ff8a900c)
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
commit c1d79dbc41c1488923caac4229d77c76d006ab1f
Author: Yann E. MORIN <yann.morin.1998@free.fr>
Date: Sat Jun 22 18:51:20 2019 +0200
board/qemu: ensure root is available before mounting it
On my machine, it happens once in a while that the virtualised machine
boots too fast for the rootfs to be available at the time the kernel
tries to mount it.
For example, board/qemu/arm-vexpress/readme.txt suggested changing
"-smp 1" up to "-smp 4". But doing so here causes a kernel panic:
VFS: Cannot open root device "mmcblk0" or unknown-block(0,0): error -6
Please append a correct "root=" boot option; here are the available partitions:
1f00 131072 mtdblock0
(driver?)
1f01 32768 mtdblock1
(driver?)
Kernel panic - not syncing: VFS: Unable to mount root fs on
unknown-block(0,0)
So, add the oh-so-useful 'rootwait' option to all kernel command lines
for qemu defconfigs.
Signed-off-by: Yann E. MORIN <yann.morin.1998@free.fr>
Cc: Joel Stanley <joel@jms.id.au>
Cc: Mark Corbin <mark.corbin@embecosm.com>
Cc: Matt Weber <matthew.weber@rockwellcollins.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
(cherry picked from commit 626c9705d29ec93610e87517aee771c2ea500f5d)
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
commit 2df937ecb7b644c40f93781098375be0b4bc76eb
Author: Peter Korsgaard <peter@korsgaard.com>
Date: Tue Jun 25 22:51:15 2019 +0200
package/libglib2: backport upstream security fix for CVE-2019-12450
Fixes CVE-2019-12450: file_copy_fallback in gio/gfile.c in GNOME GLib 2.15.0
through 2.61.1 does not properly restrict file permissions while a copy
operation is in progress. Instead, default permissions are used.
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
commit fb9dc56d77b8fff9cbfb9a159ec8fff9e848b2e7
Author: Peter Seiderer <ps.report@gmx.net>
Date: Sun Jan 13 22:47:22 2019 +0100
package/libcdaudio: fix build with toolchains lacking C++ support
When the target toolchain does not support C++, the provided
libcdaudio configure script tries to run a check with the C++
pre-processor provided by the host (/lib/cpp) which may not exist on
some systems.
This issue is fixed by autoreconfiguring the package, as newly
generated configure scripts do not have this issue.
Fixes:
http://autobuild.buildroot.net/results/f725a41ef992c42ceef7514d1a8dcac99e6b9114/
Signed-off-by: Peter Seiderer <ps.report@gmx.net>
Acked-by: Yann E. MORIN <yann.morin.1998@free.fr>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
(cherry picked from commit 8307fd013292d6f02116b8f4054c70746dddc009)
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
commit fd230cbc8b321bf6c09de1faa500df76d04ba8ec
Author: Thomas De Schampheleire <thomas.de_schampheleire@nokia.com>
Date: Tue Feb 5 22:21:42 2019 +0100
utils/test-pkg: clean output dir for successful builds
test-pkg will use gigabytes of space when testing all toolchains.
Nevertheless, you are normally only interested in the actual build / host
tree when there is a build failure.
Do a 'make clean' for successful builds to save disk space, unless the new
option '-k/--keep' is set.
Note that the logfile and configuration is always retained for inspection.
Signed-off-by: Thomas De Schampheleire <thomas.de_schampheleire@nokia.com>
Acked-by: Yann E. MORIN <yann.morin.1998@free.fr>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
(cherry picked from commit 72bf48606cc5ccf5c48c631d265cbe52d8001a62)
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
commit 4e4d7fe47b8456ab3da94f0d10b81fe6df11d373
Author: Thomas De Schampheleire <thomas.de_schampheleire@nokia.com>
Date: Tue Feb 5 22:21:41 2019 +0100
utils/test-pkg: fix long option parsing
The long option parsing of test-pkg is broken because:
- some long options are not declared
- there should be a comma between long options, the colon does not replace
it.
This change also revealed that the declaration of 'toolchains-dir' should
have been 'toolchains-csv', originally introduced in commit ed59f81a3cb4ddb.
Signed-off-by: Thomas De Schampheleire <thomas.de_schampheleire@nokia.com>
Acked-by: Yann E. MORIN <yann.morin.1998@free.fr>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
(cherry picked from commit 989cda12ba0a55142eb2303ecad0d2d3aca96b90)
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
commit bc087658efb224b52c381b7086211a923d682255
Author: Romain Naour <romain.naour@gmail.com>
Date: Thu Jun 20 12:07:12 2019 +0200
linux: disable Werror for powerpc kernels
>From patch [1] included in kernel >= 5.0:
"The upcoming GCC 9 release extends the -Wmissing-attributes warnings
(enabled by -Wall) to C and aliases: it warns when particular function
attributes are missing in the aliases but not in their target.
In particular, it triggers for all the init/cleanup_module
aliases in the kernel (defined by the module_init/exit macros),
ending up being very noisy.
These aliases point to the __init/__exit functions of a module,
which are defined as __cold (among other attributes). However,
the aliases themselves do not have the __cold attribute.
Since the compiler behaves differently when compiling a __cold
function as well as when compiling paths leading to calls
to __cold functions, the warning is trying to point out
the possibly-forgotten attribute in the alias."
Werror is set by default while building ppc kernel [2], but
some warning can be introduced while building current kernel with
newer compiler (for example building kernel 4.19 with gcc 9.1).
For the same reason why we remove Werror in packages's compiler
flags. Building with Werror is not bulletproof when we start
using a newer compiler that introduce new warnings.
This is the case here.
Also this option is a bit strange since it's specific to ppc kernels:
"The intention is to make it harder for people to inadvertantly
introduce warnings in the arch/powerpc code."
Other kernel developers on other arch may be interested by a
similar/more generic option.
So, It's clearly intended for kernel developers.
Instead of backporting this patch [1] to kernel 4.19, select
unconditionally the Kconfig option CONFIG_PPC_DISABLE_WERROR
that allow to disable Werror.
Fixes:
https://gitlab.com/kubu93/toolchains-builder/-/jobs/205435741
[1] https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git/commit/?h=a6e60d84989fa0e91db7f236eda40453b0e44afa
[2] https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git/commit/?h=ba55bd74360ea4b8b95e73ed79474d37ff482b36
[3] https://gitlab.com/bootlin/toolchains-builder
Fix-suggested-by: Yann E. MORIN <yann.morin.1998@free.fr>
Signed-off-by: Romain Naour <romain.naour@gmail.com>
Signed-off-by: Giulio Benetti <giulio.benetti@micronovasrl.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
(cherry picked from commit 1713c3c344be26ec3bcb02a0a0068f21907ab881)
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
commit 1818dae1e052b0b02f9699cb0821c2ff252071ab
Author: Fabrice Fontaine <fontaine.fabrice@gmail.com>
Date: Sat Jun 22 21:14:35 2019 +0200
package/monit: bump to version 5.25.3
Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
(cherry picked from commit 015b714cdedd93a3bf28078aa598633ee02f5dd2)
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
commit 9ddc479f3ba20c9bb4dee0ca2947da5efba7d935
Author: Giulio Benetti <giulio.benetti@micronovasrl.com>
Date: Tue Jun 18 10:45:32 2019 +0200
package/qt5/qt5base: disable predefined -Og optimization
Starting from Qt5 5.9.0, -optimize-debug is enabled by default for
debug builds causing -Og flag to be appended to CFLAGS and
consequently override TARGET_CFLAGS. We don't want this so let's pass
-no-optimize-debug to QT5BASE_CONFIGURE_OPTS if QT5_VERSION_LATEST=y.
Signed-off-by: Giulio Benetti <giulio.benetti@micronovasrl.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
(cherry picked from commit 5857ab6a96be17615a05ff4e6a91d8f475890980)
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
commit ff2e39d14c0613e86f003cb5ba83d51674414ea2
Author: Bernd Kuhls <bernd.kuhls@t-online.de>
Date: Sat Jun 22 20:01:31 2019 +0200
DEVELOPERS: Remove Markos Chandras
Email bounces:
<markos.chandras@imgtec.com>: host
mxa-00376f01.gslb.pphosted.com[185.132.180.163] said: 550 5.1.1 User
Unknown (in reply to RCPT TO command)
Last mailing list postings date back to 2015.
Signed-off-by: Bernd Kuhls <bernd.kuhls@t-online.de>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
(cherry picked from commit e46a905eea0fdda13a424a2f6b33a6fae2f9671a)
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
commit 6869004dac710d95739483a77718239c5e27474f
Author: Bernd Kuhls <bernd.kuhls@t-online.de>
Date: Sat Jun 22 19:30:50 2019 +0200
package/postgresql: security bump version to 11.4
Release notes: https://www.postgresql.org/docs/11/release-11-4.html
Fixes CVE-2019-10164.
Signed-off-by: Bernd Kuhls <bernd.kuhls@t-online.de>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
(cherry picked from commit b262c7d578e7b15b95d68bead7cb8f0a97755d20)
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
commit 7b050129452b1808e3e7cd0b5ae43b2f781cbdf0
Author: Bernd Kuhls <bernd.kuhls@t-online.de>
Date: Sat Jun 22 19:02:51 2019 +0200
package/znc: security bump version to 1.7.4
Changelog: https://wiki.znc.in/ChangeLog/1.7.4
Fixes CVE-2019-12816:
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-12816
Signed-off-by: Bernd Kuhls <bernd.kuhls@t-online.de>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
(cherry picked from commit 3269f2a761db8317945f0ca259cafb2a928b3265)
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
commit 564ab80ac1380fbb4036947c8e7ff5bb66259e5c
Author: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
Date: Fri Jun 21 22:27:24 2019 +0200
support/testing/infra/emulator: increase memory size used by Qemu
By default, Qemu emulates a system with 128 MB of RAM. This is not
sufficient for some test cases we have, such as TestPerlDBDmysql,
where the initramfs is quite large. Therefore, this commit extends the
RAM size emulated by Qemu to 256 MB.
Fixes:
https://gitlab.com/buildroot.org/buildroot/-/jobs/237108668
Thanks to Arnout for the analysis of the issue.
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
Acked-by: Francois Perrad <francois.perrad@gadz.org>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
(cherry picked from commit 345c29a4b7321952b916c1b4eb88a03e136919be)
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
commit c8a9950aef06721d0109033d8a4b32fdc9290dc2
Author: Fabrice Fontaine <fontaine.fabrice@gmail.com>
Date: Sat Jun 22 15:33:09 2019 +0200
package/libvncserver: fix homepage
libvncserver homepage is https://libvnc.github.io/, last version on
sourceforge is 0.9.9 (seven years ago)
Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
(cherry picked from commit 5324d7e07a2a0e6db48b6fdd4d38c4a18d53a77b)
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
commit 9fec8498dc56729a806e29ffd07f5ff730db8aec
Author: Markus Mayer <mmayer@broadcom.com>
Date: Thu Jun 13 12:50:47 2019 -0700
package/lmbench: install the lmbench script on the target
We want to install the lmbench script along with the other executables,
so we add it to the appropriate list.
Signed-off-by: Markus Mayer <mmayer@broadcom.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
(cherry picked from commit 1956fbe5a4735dfeb4f448f022f42e32c018dca8)
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
commit 9239709abc22346891d4ce8780d5897dfa67e0ae
Author: Markus Mayer <mmayer@broadcom.com>
Date: Thu Jun 13 12:50:46 2019 -0700
package/lmbench: mark scripts/build as bash script
scripts/build makes use of the "+=" operator which is not supported by
a pure POSIX shell. We switch to /bin/bash in order to avoid errors of
the form:
../scripts/build: 21: ../scripts/build: LDLIBS+= -lm: not found
Signed-off-by: Markus Mayer <mmayer@broadcom.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
(cherry picked from commit 037d5ffcb67dc72d37db7a0383145e9e99b36fc7)
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
commit d2891ca33a4e2c96d79ef19c9f5d7724d7e2a04f
Author: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
Date: Tue May 28 22:34:11 2019 +0200
package/lmbench: use UPDATE_CONFIG_HOOK instead of CONFIG_UPDATE
jimtcl, perl, usb_modeswitch and x264 are registering
UPDATE_CONFIG_HOOK as a post patch hook to get their gnuconfig files
updated. lmbench is the only package calling CONFIG_UPDATE directly,
so for consistency, let's make it use the same logic as jimtcl, perl,
usb_modeswitch and x264.
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
(cherry picked from commit 2b8b6767ab1cc803a888cca91730732945f95b85)
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
commit d7d7025abfdf53dbebb651dd690858f8a41b4441
Author: Fabrice Fontaine <fontaine.fabrice@gmail.com>
Date: Wed Jun 19 23:49:26 2019 +0200
package/davfs2: bump to version 1.5.5
Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
(cherry picked from commit a724e8e0512212a309e581ab1b48d67584510fb6)
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
commit c4a45097673f020c47c7a62b8c3a061edf0934e6
Author: Adam Duskett <Aduskett@gmail.com>
Date: Fri Jun 21 12:40:27 2019 -0400
package/libressl: bump to version 2.9.2
Signed-off-by: Adam Duskett <Aduskett@gmail.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
(cherry picked from commit b93c71c83dd4dd5422c8cb258e97b4f08fb1a42a)
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
commit b40b12b201bd5d7640db37abcdc1cb75a9737e84
Author: Bernd Kuhls <bernd.kuhls@t-online.de>
Date: Sun Jun 2 12:03:21 2019 +0200
package/x11r7/xserver_xorg-server: bump version to 1.20.5
Signed-off-by: Bernd Kuhls <bernd.kuhls@t-online.de>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
(cherry picked from commit 1872915bd35e757e683074bcf2438c8e3a3363bf)
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
commit 307e74985829e4dc4c0bc3abc13d24236d09d703
Author: John Keeping <john@metanate.com>
Date: Wed Jun 19 16:05:26 2019 +0100
support/download/git: fix formatting of error message
'.' should be at the end of the sentence, not the beginning of a new
line.
Signed-off-by: John Keeping <john@metanate.com>
Cc: Yann E. MORIN <yann.morin.1998@free.fr>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
(cherry picked from commit 8dd1a41630fff72638b7942c926c2f50095ab0d6)
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
commit 05626b340a43a0249f248bb048e5400830430033
Author: Giulio Benetti <giulio.benetti@micronovasrl.com>
Date: Fri Jun 14 23:03:42 2019 +0200
package/tvheadend: fix PIE build failures
Package tvheadend builds using '-pie' linker flag in any case. This
leads to linking failure if toolchain doesn't support 'pie'.
Add patch to fix tvheadend's Makefile bug where '-pie' flag is hardcoded
making it depend on '--disable-pie' as compiler's flags already are
treated.
Signed-off-by: Giulio Benetti <giulio.benetti@micronovasrl.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
(cherry picked from commit dd0907d465a0d82a4844e7aaf3eb3be69103642b)
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
commit f2559d81af81bdb28f2922bc5a500a6bdd39e308
Author: Pierre-Jean Texier <pjtexier@koncepto.io>
Date: Wed Jun 19 22:58:35 2019 +0200
package/psplash: add license file details
Signed-off-by: Pierre-Jean Texier <pjtexier@koncepto.io>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
(cherry picked from commit 32a0d3a8e2cf78f0f36b948ba5ea5aa85c2ceeb1)
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
commit a543e25c0d60c6ea258d88cf78c2dbd7f4e6d88e
Author: Pierre-Jean Texier <pjtexier@koncepto.io>
Date: Wed Jun 19 22:05:43 2019 +0200
package/haveged: fix legal-info
Add hash for COPYING file
Fixes:
$: make haveged-legal-info
>>> haveged 1.9.4 Collecting legal info
ERROR: No hash found for COPYING
Signed-off-by: Pierre-Jean Texier <pjtexier@koncepto.io>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
(cherry picked from commit 0ae29b98d1293b0e89fa2f5686fe743af1f45c34)
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
commit a1d928c297d177c651d43abe25f231506bdeb491
Author: Peter Korsgaard <peter@korsgaard.com>
Date: Tue Jun 18 13:57:31 2019 +0200
Config.in.legacy: add legacy entry for 4.20.x headers
Commit b3bba8e4254 (package/linux-headers: drop support 4.20 headers)
removed the option for 4.20.x kernel headers, but forgot to add a legacy
option. Add that now.
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
(cherry picked from commit 8f60d30829b6b05426a3914b703d03130fe64c53)
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
commit 5de89341827a98cb3af3e18e46104a16b0d4f5ef
Author: Peter Korsgaard <peter@korsgaard.com>
Date: Tue Jun 18 13:57:30 2019 +0200
{linux, linux-headers}: bump 4.{4, 9, 14, 19}.x / 5.1.x series
Includes fixes for the "TCP SACK PANIC" vulnerability:
https://access.redhat.com/security/vulnerabilities/tcpsack
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
(cherry picked from commit 19f6b3281c03a1892900723c47cc766e6770e862)
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
commit 30f962749b808058378e6f6d3756436ca26015c8
Author: Samuel Mendoza-Jonas <sam@mendozajonas.com>
Date: Wed Jun 19 12:07:07 2019 +1000
package/localedef: compile against glibc-2.29
In glibc 2.27 the following change occurred:
"Statically compiled applications attempting to load locales compiled
for the GNU C Library version 2.27 will fail and fall back to the
builtin C/POSIX locale."
This impacts us since upstream buildroot uses a localdef built against
an older eglibc release, as reported at [0].
This is a combination of my patch to move to glibc and Peter Seiderer's
patch to avoid building all of glibc just for localedef.
[0] https://bugs.busybox.net/show_bug.cgi?id=11096
Signed-off-by: Samuel Mendoza-Jonas <sam@mendozajonas.com>
[localedef build & fixups:]
Signed-off-by: Peter Seiderer <ps.report@gmx.net>
[Thomas: share the tarball with the glibc package]
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
(cherry picked from commit 0ec7169e6c8cfb4bb54defb685bd04bb1da0a2aa)
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
commit 4e299e5ba81c2f5dd4b995e6984e3dfedbaa8c9e
Author: Pierre-Jean Texier <pjtexier@koncepto.io>
Date: Tue Jun 18 21:08:42 2019 +0200
package/logrotate: fix legal-info
Add hash for COPYING file
Fixes:
$: make logrotate-legal-info
>>> logrotate 3.15.0 Collecting legal info
ERROR: No hash found for COPYING
Signed-off-by: Pierre-Jean Texier <pjtexier@koncepto.io>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
(cherry picked from commit 38626b4b63bf877c3cfeb356a4b0dc0e79bdbc75)
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
commit 14fcd2ffbc60a31e6261be705af13e0d0319a52a
Author: Pierre-Jean Texier <pjtexier@koncepto.io>
Date: Sun Jun 16 00:54:04 2019 +0200
package/mongoose: bump to version 6.15
See https://github.com/cesanta/mongoose/releases/tag/6.15
Signed-off-by: Pierre-Jean Texier <pjtexier@koncepto.io>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
(cherry picked from commit da7fdfe6a3f9f1ee9439654e5f4d003fa538f9b2)
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
commit d5ce9f59d3b66c081b9cd09ac2f957d90a3ea904
Author: Peter Korsgaard <peter@korsgaard.com>
Date: Sun Jun 16 23:17:11 2019 +0200
package/python3: add upstream security fix for CVE-2019-10160
Fixes CVE-2019-10160: urlsplit does not handle NFKC normalization (2nd fix)
While the fix for CVE-2019-9936 is included in 3.7.3, the followup
regression fixes unfortunatly aren't.
https://bugs.python.org/issue36742
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
(cherry picked from commit b57490563c065e813e176173017e45dbd764939b)
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
commit 5bad3030c2e4dd35dd76ece3d5c7938ad3f73c5a
Author: Peter Korsgaard <peter@korsgaard.com>
Date: Sun Jun 16 23:17:10 2019 +0200
package/python: add upstream security fix for CVE-2019-9636
Fixes CVE-2019-9636: urlsplit does not handle NFKC normalization
https://bugs.python.org/issue36216
The fix unfortunately introduced regressions, so also apply the followup
fixes.
https://bugs.python.org/issue36742
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
(cherry picked from commit 58d0bc2f29fa427aa07876783dbc89e92b5e4302)
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
commit b3eab82f60e8f38863e71a08351a2f1379e19869
Author: Peter Korsgaard <peter@korsgaard.com>
Date: Sun Jun 16 23:17:09 2019 +0200
package/python: add upstream security fix for CVE-2019-9948
Fixes CVE-2019-9948: Unnecessary URL scheme exists to allow file:// reading
file in urllib.
https://bugs.python.org/issue35907
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
(cherry picked from commit 6522aad76a250e2f59669c7eb3aa1565502db117)
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
commit 2c8a395bc0f2e686304991c5732de55520264296
Author: Nylon Chen <nylon7@andestech.com>
Date: Mon Jun 17 10:44:45 2019 +0800
package/gdb: disable for nds32
There is no support for nds32 in gdb.
Fixes:
http://autobuild.buildroot.net/results/1a40b1ac5f06c856c2e30dbbb4e485022c438c72
Signed-off-by: Nylon Chen <nylon7@andestech.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
(cherry picked from commit 93173c614ef04c988e04647c653381727e2d3092)
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
commit 550b1badcceffa7f700f22228f1e2b6d158c95d9
Author: Peter Korsgaard <peter@korsgaard.com>
Date: Mon Jun 17 09:23:17 2019 +0200
{linux, linux-headers}: bump 4.{4, 9, 14, 19}.x / 5.{0, 1}.x series
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
(cherry picked from commit 2676d4fb2ab72f8756d23a8f2661ba57cf8ebbd0)
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
commit 59a1de1472ba106d68c265cfd17203fa315f812d
Author: Peter Korsgaard <peter@korsgaard.com>
Date: Wed Jun 12 23:40:30 2019 +0200
package/dbus: security bump to version 1.12.16
Fixes the following security issues:
- CVE-2019-12749: Do not attempt to carry out DBUS_COOKIE_SHA1
authentication for identities that differ from the user running the
DBusServer. Previously, a local attacker could manipulate symbolic links
in their own home directory to bypass authentication and connect to a
DBusServer with elevated privileges. The standard system and session
dbus-daemons in their default configuration were immune to this attack
because they did not allow DBUS_COOKIE_SHA1, but third-party users of
DBusServer such as Upstart could be vulnerable. Thanks to Joe Vennix of
Apple Information Security.
For details, see the advisory:
https://www.openwall.com/lists/oss-security/2019/06/11/2
Also contains a number of other smaller fixes, including fixes for memory
leaks. For details, see NEWS:
https://gitlab.freedesktop.org/dbus/dbus/blob/dbus-1.12/NEWS
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
(cherry picked from commit 992b106d1de70b2bf1ad6a2211b937f5534b2c8a)
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
commit 3a62cfb297693e4ee1e403c42d4a6b74e587e0cd
Author: Esben Haabendal <esben@geanix.com>
Date: Tue Jun 11 10:44:10 2019 +0200
package/openblas: Handle new westmere target architecture
Nehalem, the predecessor to westmere, is best match for westmere
architecture in current openblas.
Signed-off-by: Esben Haabendal <esben@geanix.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
(cherry picked from commit b04f1deab3ddf57db63490cdc5532fc7d448483e)
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
commit 39a9d0181938e6cb759b7bb8e8bdf3eac32020dc
Author: Esben Haabendal <esben@geanix.com>
Date: Tue Jun 11 10:44:09 2019 +0200
arch: Add support for Westmere targets
The westmere line of x86_64 targets lies between nehalem (corei7) and
sandybridge (corei7-avx). Allowing use of -march=westmere enables use of
AES instruction set on these targets.
Signed-off-by: Esben Haabendal <esben@geanix.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
(cherry picked from commit 97651ce275198ed650da7944b967d93a79127bd9)
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
commit 334fdcc9c8fda5e577dd92647f42b45d1900c1c4
Author: Ryan Coe <bluemrp9@gmail.com>
Date: Mon Jun 10 16:30:25 2019 -0700
package/mariadb: security bump to version 10.3.15
The licensing text in README.md has changed slightly. The reference to
COPYING.LESSER has been removed. The file itself has been gone for awhile
now. COPYING.thirdparty has also been renamed to THIRDPARTY.
Release notes:
https://mariadb.com/kb/en/library/mariadb-10315-release-notes/
Changelog:
https://mariadb.com/kb/en/mariadb-10315-changelog/
Fixes the following security vulnerabilities:
CVE-2019-2614 - Vulnerability in the MySQL Server component of Oracle MySQL
(subcomponent: Server: Replication). Supported versions that are affected
are 5.6.43 and prior, 5.7.25 and prior and 8.0.15 and prior. Difficult to
exploit vulnerability allows high privileged attacker with network access
via multiple protocols to compromise MySQL Server. Successful attacks of
this vulnerability can result in unauthorized ability to cause a hang or
frequently repeatable crash (complete DOS) of MySQL Server.
CVE-2019-2627 - Vulnerability in the MySQL Server component of Oracle MySQL
(subcomponent: Server: Security: Privileges). Supported versions that are
affected are 5.6.43 and prior, 5.7.25 and prior and 8.0.15 and prior.
Easily exploitable vulnerability allows high privileged attacker with
network access via multiple protocols to compromise MySQL Server.
Successful attacks of this vulnerability can result in unauthorized ability
to cause a hang or frequently repeatable crash (complete DOS) of MySQL
Server.
CVE-2019-2628 - Vulnerability in the MySQL Server component of Oracle MySQL
(subcomponent: InnoDB). Supported versions that are affected are 5.7.25 and
prior and 8.0.15 and prior. Easily exploitable vulnerability allows high
privileged attacker with network access via multiple protocols to
compromise MySQL Server. Successful attacks of this vulnerability can
result in unauthorized ability to cause a hang or frequently repeatable
crash (complete DOS) of MySQL Server.
Signed-off-by: Ryan Coe <bluemrp9@gmail.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
(cherry picked from commit 033844c44df13da70d9ca19e4ad057b9e730aef6)
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
commit 0d9520968edfc92e422779c705b764a77fbe7442
Author: Bernd Kuhls <bernd.kuhls@t-online.de>
Date: Tue Jun 11 07:16:54 2019 +0200
package/freeswitch: bump version to 1.8.6
Updated license hash after upstream commit
https://freeswitch.org/stash/projects/FS/repos/freeswitch/commits/a1f3b4862e7fd44a37862ae84c0e79f89c9bc0d8
Signed-off-by: Bernd Kuhls <bernd.kuhls@t-online.de>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
(cherry picked from commit 2df2bde27f0434e57bf8da1669336f62cde8e14e)
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
commit bb8bae1967c2441b59d7df85f314d535aba3a8a8
Author: Bernd Kuhls <bernd.kuhls@t-online.de>
Date: Fri Jun 7 21:09:35 2019 +0200
package/vlc: security bump to version 3.0.7
Fixes the following security issues:
* Fix multiple buffer overflows in the ps demuxer
* Fix a buffer overflow when copying a biplanar YUV image
* Fix multiple buffer overflows in the faad decoder
* Fix buffer overflow in the svcdsub decoder
* Fix buffer overflows in the ogg muxer & demuxer
* Fix buffer overflows in libavformat demuxer
* Fix multiple buffer overflows in the MKV demuxer
* Fix a buffer overflow in the MP4 demuxer
* Fix a buffer overflow in the textst decoder
* Fix a buffer overflow in the webvtt decoder
* Fix a buffer overflow in the ASF demux
* Fix a buffer overflow in the UPNP SD
* Fix use after free in the ogg demuxer
* Fix multiple use after free in the MKV demuxer
* Fix multiple use after free in the DMO decoder
* Fix integer underflow in the MKV demuxer
* Fix an updater NULL pointer dereference on invalid signing keys
* Fix NULL pointer dereference in the MKV demuxer
* Fix an integer overflow in the spudec decoder
* Fix an integer overflow in the nsc demuxer
* Fix an integer overflow in the avi demuxer
* Fix reads of uninitialized pointers in the MKV demuxer
* Fix a floating point exception in the MKV demuxer
* Fix an infinite loop in the flac packetizer
For more details, see the NEWS file:
https://www.videolan.org/developers/vlc-branch/NEWS
Removed patch 0010, applied upstream.
Signed-off-by: Bernd Kuhls <bernd.kuhls@t-online.de>
Signed-off-by: Arnout Vandecappelle (Essensium/Mind) <arnout@mind.be>
(cherry picked from commit 04efb17c863606cdbc2405d01c3d48d6868c5245)
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
commit b98d9d1a85f4c975cc9a3fc8a06f50f6e518ae51
Author: Jörg Krause <joerg.krause@embedded.rocks>
Date: Mon Jun 10 23:20:23 2019 +0200
package/gerbera: add upstream patch to fix find_program with taglib-config
Add an from from upstream to fix linking Gerbera with taglib. The patch
fixes the following issue:
When cross-compiling CMakes `find_program()` will search for binaries on the
host. This is typically correct, e.g. when search for compilers or shells.
When cross-compiling, searching for `taglib-config` using `find_program` should
not find the binary on the host, instead it should find the binary in the sysroot
directory, as the host `taglib-config` will output the wrong host paths
and libs, whereas the sysroot `taglib-config` will output the correct sysroot
paths and libs.
Therefore, use the `CMAKE_FIND_ROOT_PATH_MODE_PROGRAM` variable when
cross-compiling. This variable controls whether the `CMAKE_FIND_ROOT_PATH`
and `CMAKE_SYSROOT` are used by find_program().
Signed-off-by: Jörg Krause <joerg.krause@embedded.rocks>
Signed-off-by: Arnout Vandecappelle (Essensium/Mind) <arnout@mind.be>
(cherry picked from commit 6d527683153c3c1ac341fa3a8002b71e3393a680)
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
commit dcf2672badb42cb3e9eee824856984bf864c302c
Author: Jörg Krause <joerg.krause@embedded.rocks>
Date: Mon Jun 10 23:20:22 2019 +0200
package/taglib: add upstream patch to fix taglib-config
The current taglib-config program does not work when cross-compiling as it only
returns paths to the host, which breaks building programs which link against
taglib.
For example gerbera uses `taglib-config` and it fails with:
```
[..]
-- Found TagLib: -L/usr/lib -ltag
[..]
arm-linux-gnueabihf-g++: ERROR: unsafe header/library path used in cross-compilation: '-L/usr/lib'
```
Before the patch the output of `taglib-config` is:
```
$ ./output/host/arm-buildroot-linux-gnueabihf/sysroot/usr/bin/taglib-config --libs
-L/usr/lib -ltag
```
Add a patch from upstream which fixes taglib-config.
After applying the fix, the pkg-config file is correct:
```
$ ./output/host/arm-buildroot-linux-gnueabihf/sysroot/usr/bin/taglib-config --libs
-L/home/joerg/Development/git/buildroot/output/host/arm-buildroot-linux-gnueabihf/sysroot/usr/lib -ltag
```
Signed-off-by: Jörg Krause <joerg.krause@embedded.rocks>
Signed-off-by: Arnout Vandecappelle (Essensium/Mind) <arnout@mind.be>
(cherry picked from commit ad29cd6224f3ac3317f36b243a8ba8e1623c679c)
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
commit e29d015b350d036fd6f1678b2462a1420122b15f
Author: Mirza Krak <mirza.krak@northern.tech>
Date: Mon Jun 10 17:40:07 2019 +0200
package/pkg-golang: do not set static linking for host target
The current logic will set the "-static" flag when building go
host packages if BR2_STATIC_LIBS is set, this will not work as
there is no support to link host packages statically.
Fix this by applying this logic only for target builds.
Signed-off-by: Mirza Krak <mirza.krak@northern.tech>
Signed-off-by: Arnout Vandecappelle (Essensium/Mind) <arnout@mind.be>
(cherry picked from commit 60d455f20b9c656c2a23ce4e8dc03719e55f7453)
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
commit 9f916d55052f83f3ccd06d24a729a73cc6116553
Author: Fabrice Fontaine <fontaine.fabrice@gmail.com>
Date: Mon Jun 10 14:09:26 2019 +0200
package/weston: fix build with headers < 4.4
weston includes input-event-codes.h since version 5.0.91 and
https://github.com/wayland-project/weston/commit/6e229ca26381bc8191fd9af1e439c311da709aff
input-event-codes.h is available only since kernel 4.4 and
https://github.com/torvalds/linux/commit/f902dd893427eade90f7eaf858e5ff8b150a5a12
To fix this build failure, replace include on linux/input-event-codes.h
by linux/input.h
Fixes:
- http://autobuild.buildroot.org/results/210c2759900f15ea0030d088f6f45cd8bb199b29
Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
Signed-off-by: Arnout Vandecappelle (Essensium/Mind) <arnout@mind.be>
(cherry picked from commit e531877e8c3de78a6d065a4b2dac7c22079d4d72)
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
commit 10e05d4a3c9b1bd1da978efbeaba3bc26d883fe4
Author: Jan Kundrát <jan.kundrat@cesnet.cz>
Date: Mon Jun 10 15:37:12 2019 +0200
docs: use-case for un-ignoring VCS directories and overridden source dir
Signed-off-by: Jan Kundrát <jan.kundrat@cesnet.cz>
Suggested-by: Arnout Vandecappelle (Essensium/Mind) <arnout@mind.be>
Fixes: a27078d32d Allow overriding the VCS exclude list with *_OVERRIDE_SRCDIR_RSYNC_EXCLUSIONS
Signed-off-by: Arnout Vandecappelle (Essensium/Mind) <arnout@mind.be>
(cherry picked from commit f52809cbd2329dabb7ce98683ca884ca04c118f0)
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
commit 80dcda334c493678c435066e81c82a4bd68eabd9
Author: Fabrice Fontaine <fontaine.fabrice@gmail.com>
Date: Mon Jun 10 15:14:53 2019 +0200
package/openjdk: set PATH before calling make
PATH must be set to $(BR_PATH) thanks to $(TARGET_MAKE_ENV) before
calling make otherwise build fails on:
/bin/bash: gawk: command not found
When build fails, config.log contains the following line:
configure:13709: checking for gawk
configure:13725: found /home/buildroot/autobuild/run/instance-3/output/host/bin/gawk
configure:13736: result: gawk
[...]
ac_cv_prog_AWK=gawk
Fixes:
- http://autobuild.buildroot.org/results/43c5d08f599e8f44b59a576d243ae1c7b27de7a3
Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
Signed-off-by: Arnout Vandecappelle (Essensium/Mind) <arnout@mind.be>
(cherry picked from commit 10aa85ac8a399cf03e7c59c849c97e0265a29377)
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
commit 2781648579ef6188adf5ae8e612dd6b1ab906a02
Author: Julien Olivain <juju@cotds.org>
Date: Mon Jun 10 12:31:18 2019 +0200
manual/contribute.txt: fix typo
Signed-off-by: Julien Olivain <juju@cotds.org>
Signed-off-by: Arnout Vandecappelle (Essensium/Mind) <arnout@mind.be>
(cherry picked from commit 0c48904f76af5d97dd3da334caecfe1fe521f072)
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
commit 6220c022d190631da9ffce45fd8c3d209afefa7a
Author: Fabrice Fontaine <fontaine.fabrice@gmail.com>
Date: Mon Jun 10 11:51:46 2019 +0200
package/ncmpc: fix build without NLS
The build fails if libintl.h is found but xgettext is not available:
Has header "libintl.h" : YES
Library intl found: NO
po/meson.build:28:5: ERROR: Can not do gettext because xgettext is not installed.
This is because enable_nls defaults to true if libintl.h is found. Use
the nls option to enable/disable NLS explicitly, depending on
BR2_SYSTEM_ENABLE_NLS,
Also, fix the second patch to always look for libintl, even if NLS is
not enabled. The enable_nls option disables processing the po files, but
the gettext calls in the source are still there, so we need to link with
libintl anyway.
Fixes:
- http://autobuild.buildroot.org/results/0ab0a42fd4c5c9fd5891f3b84287bd788f763ba4
Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
Signed-off-by: Arnout Vandecappelle (Essensium/Mind) <arnout@mind.be>
(cherry picked from commit 56fb7401b9a69cb9ffac09a7a02d65706765e7ba)
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
commit e6141487612829f547faddcd76d569e0910c49f0
Author: Fabrice Fontaine <fontaine.fabrice@gmail.com>
Date: Mon Jun 10 11:03:28 2019 +0200
package/libgit2: security bump to version 0.27.8
Fixing the following list of issues (fixed in 0.27.6 and 0.27.5):
The function family git__strtol is used to parse integers
from a buffer. As the functions do not take a buffer length as
argument, they will scan either until the end of the current
number or until a NUL byte is encountered. Many callers have
been misusing the function and called it on potentially
non-NUL-terminated buffers, resulting in possible out-of-bounds
reads. Callers have been fixed to use git__strntol functions
instead and git__strtol functions were removed.
The function git__strntol64 relied on the undefined behavior
of signed integer overflows. While the code tried to detect
such overflows after they have happened, this is unspecified
behavior and may lead to weird behavior on uncommon platforms.
In the case where git__strntol32 was unable to parse an
integer because it doesn't fit into an int32_t, it printed an
error message containing the string that is currently being
parsed. The code didn't truncate the string though, which
caused it to print the complete string until a NUL byte is
encountered and not only the currently parsed number. In case
where the string was not NUL terminated, this could have lead
to an out-of-bounds read.
When parsing tags, all unknown fields that appear before the
tag message are skipped. This skipping is done by using a plain
strstr(buffer, "\n\n") to search for the two newlines that
separate tag fields from tag message. As it is not possible to
supply a buffer length to strstr, this call may skip over the
buffer's end and thus result in an out of bounds read. As
strstr may return a pointer that is out of bounds, the
following computation of buffer_end - buffer will overflow
and result in an allocation of an invalid length. Note that
when reading objects from the object database, we make sure to
always NUL terminate them, making the use of strstr safe.
When parsing the "encoding" field of a commit, we may perform
an out of bounds read due to using git__prefixcmp instead of
git__prefixncmp. This can result in the parsed commit object
containing uninitialized data in both its message encoding and
message fields. Note that when reading objects from the object
database, we make sure to always NUL terminate them, making the
use of strstr safe.
Submodule URLs and paths with a leading "-" are now ignored.
This is due to the recently discovered CVE-2018-17456, which
can lead to arbitrary code execution in upstream git. While
libgit2 itself is not vulnerable, it can be used to inject
options in an implementation which performs a recursive clone
by executing an external command.
When running repack while doing repo writes,
packfile_load__cb() could see some temporary files in the
directory that were bigger than the usual, and makes memcmp
overflow on the p->pack_name string. This issue was reported
and fixed by bisho.
The configuration file parser used unbounded recursion to parse
multiline variables, which could lead to a stack overflow. The
issue was reported by the oss-fuzz project, issue 10048 and
fixed by Nelson Elhage.
The fix to the unbounded recursion introduced a memory leak in
the config parser. While this leak was never in a public
release, the oss-fuzz project reported this as issue 10127. The
fix was implemented by Nelson Elhage and Patrick Steinhardt.
When parsing "ok" packets received via the smart protocol, our
parsing code did not correctly verify the bounds of the
packets, which could result in a heap-buffer overflow. The
issue was reported by the oss-fuzz project, issue 9749 and
fixed by Patrick Steinhardt.
The parsing code for the smart protocol has been tightened in
general, fixing heap-buffer overflows when parsing the packet
type as well as for "ACK" and "unpack" packets. The issue was
discovered and fixed by Patrick Steinhardt.
Fixed potential integer overflows on platforms with 16 bit
integers when parsing packets for the smart protocol. The issue
was discovered and fixed by Patrick Steinhardt.
Fixed potential NULL pointer dereference when parsing
configuration files which have "include.path" or
"includeIf..path" statements without a value.
Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
Signed-off-by: Arnout Vandecappelle (Essensium/Mind) <arnout@mind.be>
(cherry picked from commit 02afc9db7a0213e9f7a7b7d7ea3b066efbaa5920)
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
commit 4a58ecffde578c876fc08f3f5b3e01b3b45f007e
Author: Jan Kundrát <jan.kundrat@cesnet.cz>
Date: Mon Jun 10 11:27:16 2019 +0200
Allow overriding the VCS exclude list with *_OVERRIDE_SRCDIR_RSYNC_EXCLUSIONS
We have some internal packages which automatically bake a version string
from the git checkout, and we usually combine these with a
*_OVERRIDE_SRCDIR. I would like to let Buildroot *not* skip the .git
directory when picking up sources from the local checkout. It turns out
that the existing mechanism (*_OVERRIDE_SRCDIR_RSYNC_EXCLUSIONS) only
supports adding to the exclude list because `rsync` simply uses the
first match from the provided filtering rules.
Solve this by using the user-provided values first. If they match, then
`rsync` won't exclude stuff based on the generic VCS exclude patterns.
Signed-off-by: Jan Kundrát <jan.kundrat@cesnet.cz>
Signed-off-by: Arnout Vandecappelle (Essensium/Mind) <arnout@mind.be>
(cherry picked from commit a27078d32d1e23963ff50cd0ab014d033b287af7)
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
commit 1f404c1e14124dc14dd4f7f0b947faea3b9aec47
Author: Bernd Kuhls <bernd.kuhls@t-online.de>
Date: Sat Jun 22 19:20:45 2019 +0200
package/samba4: security bump version to 4.9.9
Release notes: https://www.samba.org/samba/history/samba-4.9.9.html
Fixes CVE-2019-12435.
Signed-off-by: Bernd Kuhls <bernd.kuhls@t-online.de>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
(cherry picked from commit e9213e3c2095693d71f9e408e90fc9f269adb285)
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
commit f0bf064ff993b00ea4133588c8bc0d137e3aef69
Author: Fabrice Fontaine <fontaine.fabrice@gmail.com>
Date: Mon Jun 10 10:56:56 2019 +0200
package/samba4: drop third patch
Drop third patch which is not upstreamable and set XSLTPROC to false
instead to disable documentation
Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
Signed-off-by: Arnout Vandecappelle (Essensium/Mind) <arnout@mind.be>
(cherry picked from commit 48a9848cd60b492fe0770830b7f043f4cd52de5f)
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
commit a8df2ed1673ba037b272e4539b6c3f0bbda995f7
Author: Fabrice Fontaine <fontaine.fabrice@gmail.com>
Date: Sun Jun 9 17:15:15 2019 +0200
package/samba4: drop unneeded second patch
This patch is not needed since version 4.9.0 and
https://github.com/samba-team/samba/commit/859698d29b547217356851094ed8188236e717b6
which solved the issue by avoiding calling this function.
Also renumber the remaining patches.
Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
Signed-off-by: Arnout Vandecappelle (Essensium/Mind) <arnout@mind.be>
(cherry picked from commit df859a83f6f53c3e9cc4d1d11abd58f47bed1489)
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
commit 485642264936d10bb3ca212463c65da783d6788a
Author: Fabrice Fontaine <fontaine.fabrice@gmail.com>
Date: Sat Jun 1 16:34:56 2019 +0200
package/mpd: fix static build with tremor and vorbis
mpd can't be built statically with tremor and vorbis, build fails on:
block.c:(.text+0x11c): multiple definition of `vorbis_block_init'
/usr/lfs/v0/rc-buildroot-test/scripts/instance-2/output/host/bin/../sparc-buildroot-linux-uclibc/sysroot/usr/lib/libvorbisidec.a(block.o):block.c:(.text+0x0): first defined here
/usr/lfs/v0/rc-buildroot-test/scripts/instance-2/output/host/opt/ext-toolchain/bin/../lib/gcc/sparc-buildroot-linux-uclibc/7.4.0/../../../../sparc-buildroot-linux-uclibc/bin/ld: Disabling relaxation: it will not work with multiple definitions
/usr/lfs/v0/rc-buildroot-test/scripts/instance-2/output/host/bin/../sparc-buildroot-linux-uclibc/sysroot/usr/lib/libvorbis.a(block.o): In function `_vorbis_block_alloc':
Fix this by making both options mutually exclusive
It should be noted that upstream explicitly removed the possibility to
enable tremor and vorbis at the same time since version 0.21.6 and
https://github.com/MusicPlayerDaemon/MPD/commit/c18cd941aaa4c16ac713bc4f1e16ada5281d689e
Since we only have 0.20.23, it is still possible to build them together,
but there is clearly no need to allow it.
Fixes:
- http://autobuild.buildroot.org/results/60c721a82ffd668bebf02d80bca83780d6cdb2f2
Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
Signed-off-by: Arnout Vandecappelle (Essensium/Mind) <arnout@mind.be>
(cherry picked from commit 5395b1ca450aff8823b77c2910ead19f727f4651)
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
commit 9f4dcbe4660719f2013e2886354b9f3d75e41002
Author: Fabrice Fontaine <fontaine.fabrice@gmail.com>
Date: Sat Jun 1 16:34:55 2019 +0200
package/mpd: drop tremor select
Drop tremor select added by commit
d428dddf680b067c13ba9a08bfd502c7286cffe7
Indeed, nowadays, mpd can be built successfully even if there is no
input plugin selected.
Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
Signed-off-by: Arnout Vandecappelle (Essensium/Mind) <arnout@mind.be>
(cherry picked from commit 5d4ee34c39a23089496db8445c6d91b137745b41)
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
commit 126d0d2fcd696a103f7aed80beeed803a3216083
Author: Mirza Krak <mirza.krak@northern.tech>
Date: Mon Jun 3 11:21:01 2019 +0200
package/pkg-golang: add cflags/ldflags to GO_HOST_ENV
If a go host package is built using cgo, it needs access
to HOST_CFLAGS/HOST_LDFLAGS to utilize host packages it
might depend on.
Signed-off-by: Mirza Krak <mirza.krak@northern.tech>
Acked-by: Adam Duskett <aduskett@gmail.com>
Tested-by: Adam Duskett <aduskett@gmail.com>
Signed-off-by: Arnout Vandecappelle (Essensium/Mind) <arnout@mind.be>
(cherry picked from commit d65b6b337b6ddc7961aff5232062747a14cc9127)
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
commit 33f0bc99d654eef5699af4f351b8b5…
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
fixes moby/buildkit#779
Signed-off-by: Tonis Tiigi tonistiigi@gmail.com