| Date | Author | Message |
|---|---|---|
| 2019-11-05 15-22-53 | Raptor Engineering Development Team <support@raptorengineering.com> | Initial pass at removing binary-only, unlicensed, and proprietary packages from buildroot tree Note that DAHDI is only being removed due to poor packaging -- it does not require binary firmware on some cards, but the buildroot packaging for it unconditionally pulls in binary-only firmware regardless. |
| 2018-01-28 23-03-05 | Fabio Estevam <festevam@gmail.com> | linux-headers: bump to 4.15 kernel version Signed-off-by: Fabio Estevam <festevam@gmail.com> Signed-off-by: Peter Korsgaard <peter@korsgaard.com> (cherry picked from commit 79df9ad59912eac38d5a7fe5a5dd4f11314a138e) Signed-off-by: Joel Stanley <joel@jms.id.au> |
| 2018-01-28 23-02-22 | Fabio Estevam <festevam@gmail.com> | toolchain: add 4.15.x choice for headers Signed-off-by: Fabio Estevam <festevam@gmail.com> Signed-off-by: Peter Korsgaard <peter@korsgaard.com> (cherry picked from commit ea0f6e8f06be4e405b1610b0e2dbde70c1d5d80a) Signed-off-by: Joel Stanley <joel@jms.id.au> |
| 2018-01-28 23-01-50 | Joel Stanley <joel@jms.id.au> | Merge tag '2017.11.2' into 2017.11-op-build Release 2017.11.2 |
| 2018-01-21 15-08-22 | Peter Korsgaard <peter@korsgaard.com> | Update for 2017.11.2 Signed-off-by: Peter Korsgaard <peter@korsgaard.com> |
| 2018-01-21 14-19-55 | Alistair Francis <alistair.francis@xilinx.com> | package/xen: Force disable SDL for xen-qemu build Fixes autobuilder issue: http://autobuild.buildroot.net/results/8bcb80dc93d38bb38ca32ad93d52c22d1176d57e/ Signed-off-by: Alistair Francis <alistair.francis@xilinx.com> Signed-off-by: Peter Korsgaard <peter@korsgaard.com> (cherry picked from commit a5dd72181e1a79ffe65c788a2c1db9acdf6aa933) Signed-off-by: Peter Korsgaard <peter@korsgaard.com> |
| 2018-01-21 14-18-25 | Ed Blake <ed.blake@sondrel.com> | rpcbind: Backport fixes to memory leak security fix Commit 954509f added a security fix for CVE-2017-8779, involving pairing all svc_getargs() calls with svc_freeargs() to avoid a memory leak. However it also introduced a couple of issues: - The call to svc_freeargs() from rpcbproc_callit_com() may result in an attempt to free static memory, resulting in undefined behaviour. - A typo in the svc_freeargs() call from pmapproc_dump() causes NIS (aka ypbind) to fail. Backport upstream fixes for these issues to version 0.2.3. Signed-off-by: Ed Blake <ed.blake@sondrel.com> Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com> (cherry picked from commit 5a9a95d0eb15c189f1361c12c105eb0ba8842c77) Signed-off-by: Peter Korsgaard <peter@korsgaard.com> |
| 2018-01-21 14-17-41 | Einar Jon Gunnarsson <tolvupostur@gmail.com> | iputils: fix ping and traceroute6 executable permissions The iputils executables are installed without the setuid bit set, which prevents some programs from working. This patch adds a permission table to fix the permissions of the ping and traceroute6 executables. Signed-off-by: Einar Jon Gunnarsson <tolvupostur@gmail.com> Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com> (cherry picked from commit b0e2d00289eeb1a7201ba49e5cedfd3175f92140) Signed-off-by: Peter Korsgaard <peter@korsgaard.com> |
| 2018-01-21 14-17-28 | Thomas Petazzoni <thomas.petazzoni@free-electrons.com> | toolchain/toolchain-external: libatomic should also be copied for musl toolchains libatomic, like libgcc_s, is provided by gcc, so there is no reason to copy it over only for the glibc and uclibc cases, it should also be copied for the musl case. Without this, a program linked with libatomic on a musl system will fail to run due to the missing library. Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com> Reviewed-by: "Yann E. MORIN" <yann.morin.1998@free.fr> Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com> (cherry picked from commit ece9385523351d20e314bddc1f277aef8de7fb40) Signed-off-by: Peter Korsgaard <peter@korsgaard.com> |
| 2018-01-21 14-15-50 | Fabio Estevam <fabio.estevam@nxp.com> | linux-headers: bump 4.{4, 9, 14}.x series [Peter: drop 4.14.x bump] Signed-off-by: Fabio Estevam <fabio.estevam@nxp.com> Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com> (cherry picked from commit f8fc447c20745bf851ceba8ac0963439103acb0e) Signed-off-by: Peter Korsgaard <peter@korsgaard.com> |
| Date | Author | Message |
|---|---|---|
| 2018-04-12 01-29-40 | Joel Stanley <joel@jms.id.au> | Merge tag '2018.02.1' into 2018.02-op-build Release 2018.02.1 |
| 2018-04-11 00-48-44 | Joel Stanley <joel@jms.id.au> | toolchain: add 4.16.x choice for headers Signed-off-by: Joel Stanley <joel@jms.id.au> |
| 2018-04-11 00-48-23 | Joel Stanley <joel@jms.id.au> | linux-headers: bump to 4.16 kernel version Signed-off-by: Joel Stanley <joel@jms.id.au> |
| 2018-04-09 16-51-05 | Peter Korsgaard <peter@korsgaard.com> | Update for 2018.02.1 Signed-off-by: Peter Korsgaard <peter@korsgaard.com> |
| 2018-04-09 14-01-30 | Baruch Siach <baruch@tkos.co.il> | patch: add upstream security fix Fixes CVE-2018-1000156: arbitrary command execution in ed-style patches. Depend on MMU for now, because the patch adds a fork() call. Upstream later switched to gnulib provided execute(), so this dependency can be dropped on the next version bump. Signed-off-by: Baruch Siach <baruch@tkos.co.il> Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com> (cherry picked from commit f4a4df2084b923f29eca2130976ca10a7aa6b719) Signed-off-by: Peter Korsgaard <peter@korsgaard.com> |
| 2018-04-09 11-01-27 | Rafal Susz <rafal.susz@gmail.com> | package/linux: fix custom dts files handling Custom dts files are still conditionally copied based on non existing boolean. So it is currently not possible to use custom dts file(s) at all. List of dts files is now iterated and files are copied into dedicated kernel arch dir. Signed-off-by: Rafal Susz <rafal.susz@gmail.com> Tested-by: Jan Kundrát <jan.kundrat@cesnet.cz> Signed-off-by: Peter Korsgaard <peter@korsgaard.com> (cherry picked from commit 54157c6c2d9fba5ad230294ae1c7dfc0032b1ede) Signed-off-by: Peter Korsgaard <peter@korsgaard.com> |
| 2018-04-09 10-51-04 | Yann E. MORIN <yann.morin.1998@free.fr> | package/kmod: fix host install The host directory no longer uses /usr. This currently works because we still have the legacy /usr symlink, but for correctness it is better that we just fix it. Signed-off-by: "Yann E. MORIN" <yann.morin.1998@free.fr> Cc: Yegor Yefremov <yegorslists@googlemail.com> Cc: Arnout Vandecappelle <arnout@mind.be> Cc: Thomas Petazzoni <thomas.petazzoni@bootlin.com> Cc: Peter Korsgaard <peter@korsgaard.com> Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com> (cherry picked from commit dac25351e6453b35ded611ff367b95bb4b10a9cf) Signed-off-by: Peter Korsgaard <peter@korsgaard.com> |
| 2018-04-09 10-49-03 | Thomas Petazzoni <thomas.petazzoni@bootlin.com> | php: fix emalloc/efree/estrdup/... undefined references zend_alloc.h defines some macros such as: Where _estrdup is the actual function implemented by the PHP core. If this header file is not included, and some code uses estrdup, one ends up with an undefined reference. This happens when libexpat support is enabled. This commit adds a PHP patch that fixes this issue. The patch has been submitted upstream through a Github pull request. Fixes: http://autobuild.buildroot.net/results/889d2c1f509c035cd506e36061939bfddc8f1500/ Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com> (cherry picked from commit fc4b66dbc1b71e871129ce14b289fcda6eb3ea10) Signed-off-by: Peter Korsgaard <peter@korsgaard.com> |
| 2018-04-09 10-39-37 | André Hentschel <nerv@dawncrow.de> | wireshark: bump version to 2.2.14 (security) Security fixes since 2.2.12: - wnpa-sec-2018-15 The MP4 dissector could crash. (Bug 13777) - wnpa-sec-2018-16 The ADB dissector could crash. (Bug 14460) - wnpa-sec-2018-17 The IEEE 802.15.4 dissector could crash. (Bug 14468) - wnpa-sec-2018-18 The NBAP dissector could crash. (Bug 14471) - wnpa-sec-2018-19 The VLAN dissector could crash. (Bug 14469) - wnpa-sec-2018-20 The LWAPP dissector could crash. (Bug 14467) - wnpa-sec-2018-23 The Kerberos dissector could crash. (Bug 14576) - wnpa-sec-2018-05 The IEEE 802.11 dissector could crash. Bug 14442, CVE-2018-7335 - wnpa-sec-2018-06 Multiple dissectors could go into large infinite loops. All ASN.1 BER dissectors (Bug 14444), along with the DICOM (Bug 14411), DMP (Bug 14408), LLTD (Bug 14419), OpenFlow (Bug 14420), RELOAD (Bug 14445), RPCoRDMA (Bug 14449), RPKI-Router (Bug 14414), S7COMM (Bug 14423), SCCP (Bug 14413), Thread (Bug 14428), Thrift (Bug 14379), USB (Bug 14421), and WCCP (Bug 14412) dissectors were susceptible. - wnpa-sec-2018-07 The UMTS MAC dissector could crash. Bug 14339, CVE-2018-7334 - wnpa-sec-2018-09 The FCP dissector could crash. Bug 14374, CVE-2018-7336 - wnpa-sec-2018-10 The SIGCOMP dissector could crash. Bug 14398, CVE-2018-7320 - wnpa-sec-2018-11 The pcapng file parser could crash. Bug 14403, CVE-2018-7420 - wnpa-sec-2018-12 The IPMI dissector could crash. Bug 14409, CVE-2018-7417 - wnpa-sec-2018-13 The SIGCOMP dissector could crash. Bug 14410, CVE-2018-7418 - wnpa-sec-2018-14 The NBAP disssector could crash. Bug 14443, CVE-2018-7419 Full release notes: https://www.wireshark.org/docs/relnotes/wireshark-2.2.14.html Signed-off-by: André Hentschel <nerv@dawncrow.de> Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com> (cherry picked from commit c5c87c2bb61efb31421b345bdbf6931b882ff6a9) Signed-off-by: Peter Korsgaard <peter@korsgaard.com> |
| 2018-04-08 14-37-39 | Fabio Estevam <festevam@gmail.com> | linux: bump default to version 4.15.16 Signed-off-by: Fabio Estevam <festevam@gmail.com> Signed-off-by: Peter Korsgaard <peter@korsgaard.com> (cherry picked from commit bbbcfa57f80d239f94669586cadad4e14f073a5f) Signed-off-by: Peter Korsgaard <peter@korsgaard.com> |
| Date | Author | Message |
|---|---|---|
| 2019-09-27 15-57-23 | Raptor Engineering Development Team <support@raptorengineering.com> | Initial pass at removing binary-only, unlicensed, and proprietary packages from buildroot tree Note that DAHDI is only being removed due to poor packaging -- it does not require binary firmware on some cards, but the buildroot packaging for it unconditionally pulls in binary-only firmware regardless. |
| 2019-04-29 03-25-42 | Raptor Engineering Development Team <support@raptorengineering.com> | Apply FreeBSD kernel patch from upstream kexec-lite repository |
| 2019-04-18 01-14-18 | Raptor Engineering Development Team <support@raptorengineering.com> | Restrict tar transform to regular files Without this restriction, symlinks are rewritten and corrupted. Example without the restriction: Input tree (valid): package-githash/file1 package-githash/link -> ./file1 Output tree (broken): package-githash/file1 package-githash/link -> package-githash/file1 |
| 2019-04-03 21-58-37 | Samuel Mendoza-Jonas <sam@mendozajonas.com> | package/eudev: Revert change preventing monitor start Commit b1e47be "libudev-monitor.c: fail to monitor udev if udev is not started" causes an internal check to fail if /dev is mounted on devtmpfs. Revert this change to have the udev monitor work again. See https://github.com/gentoo/eudev/issues/172 for discussion. Signed-off-by: Samuel Mendoza-Jonas <sam@mendozajonas.com> Signed-off-by: Joel Stanley <joel@jms.id.au> |
| 2019-04-01 20-52-04 | Samuel Mendoza-Jonas <sam@mendozajonas.com> | localedef: Specify host-make in configure step If the host's make is too old it will also fail in the configure step; use host-make here as well. Signed-off-by: Samuel Mendoza-Jonas <sam@mendozajonas.com> Signed-off-by: Joel Stanley <joel@jms.id.au> |
| 2019-03-31 19-18-50 | Samuel Mendoza-Jonas <sam@mendozajonas.com> | make: Include patch for gl_lstat Include upstream commit 193f1e8 "glob: Do not assume glibc glob internals". Without this if building host-make glibc will fail with the following error if using host-make: >>> glibc glibc-2.28-69-g1e5c5303a522764d7e9d2302a60e4a32cdb902f1 Building host-make/host/bin/host-make -j25 -C host-make/build/glibc-glibc-2.28-69-g1e5c5303a522764d7e9d2302a60e4a32cdb902f1/build host-make/host/bin/host-make -r PARALLELMFLAGS="" -C host-make/build/glibc-glibc-2.28-69-g1e5c5303a522764d7e9d2302a60e4a32cdb902f1 objdir=`pwd` all Segmentation fault (core dumped) Signed-off-by: Samuel Mendoza-Jonas <sam@mendozajonas.com> Signed-off-by: Joel Stanley <joel@jms.id.au> |
| 2019-03-31 19-18-42 | Samuel Mendoza-Jonas <sam@mendozajonas.com> | localedef: Depend on host-make The localedef package builds from glibc-2.28 now so it also requires make >= 4.0. Signed-off-by: Joel Stanley <joel@jms.id.au> Signed-off-by: Samuel Mendoza-Jonas <sam@mendozajonas.com> |
| 2019-03-31 19-13-00 | Joel Stanley <joel@jms.id.au> | Merge tag '2019.02.1' into 2019.02-op-build Signed-off-by: Joel Stanley <joel@jms.id.au> |
| 2019-03-29 17-52-57 | Peter Korsgaard <peter@korsgaard.com> | Update for 2019.02.1 Signed-off-by: Peter Korsgaard <peter@korsgaard.com> |
| 2019-03-29 17-20-32 | Peter Korsgaard <peter@korsgaard.com> | Makefile: release: really drop build/docs from release tarball Commit 15cb98769e4 (release: remove manual build files from release tarballs) tried to remove the temporary files from the manual build from the release tarball, but manual-clean only removes build/docs/manual and leaves build/docs in the tarball. Instead use 'make clean' to completely remove the build directory from the tarball. Signed-off-by: Peter Korsgaard <peter@korsgaard.com> (cherry picked from commit c24faa81e859a773c72a84dca1eadffd1ddeffcf) Signed-off-by: Peter Korsgaard <peter@korsgaard.com> |
| Date | Author | Message |
|---|---|---|
| 2020-02-18 17-02-08 | Raptor Engineering Development Team <support@raptorengineering.com> | Initial support for Linux 5.5 |
| 2020-02-18 17-02-08 | Raptor Engineering Development Team <support@raptorengineering.com> | Initial pass at removing binary-only, unlicensed, and proprietary packages from buildroot tree Note that DAHDI is only being removed due to poor packaging -- it does not require binary firmware on some cards, but the buildroot packaging for it unconditionally pulls in binary-only firmware regardless. |
| 2020-02-18 14-19-20 | Raptor Engineering Development Team <support@raptorengineering.com> | Restrict tar transform to regular files Without this restriction, symlinks are rewritten and corrupted. Example without the restriction: Input tree (valid): package-githash/file1 package-githash/link -> ./file1 Output tree (broken): package-githash/file1 package-githash/link -> package-githash/file1 |
| 2020-01-23 23-02-58 | Joel Stanley <joel@jms.id.au> | package/kexec-lite: Bump version Upstream changes include: - Fix loading FreeBSD kernels with multiple PT_LOAD sections. - Use autotools to configure and build kexec-lite - Add support for kexec_file_load The packaging is adjusted to account for the change in build systems. Signed-off-by: Joel Stanley <joel@jms.id.au> |
| 2020-01-02 04-12-08 | Marcus Folkesson <marcus.folkesson@gmail.com> | {linux, linux-headers}: add version 5.4 Signed-off-by: Marcus Folkesson <marcus.folkesson@gmail.com> Signed-off-by: Peter Korsgaard <peter@korsgaard.com> (cherry picked from commit 9e000606c34f95cd2e18fc5e5d7479260de1b785 without changing the defaults) Signed-off-by: Joel Stanley <joel@jms.id.au> |
| 2019-10-04 03-49-55 | Joel Stanley <joel@jms.id.au> | Merge tag '2019.05.3' into 2019.05-op-build Release 2019.05.3 Signed-off-by: Joel Stanley <joel@jms.id.au> |
| 2019-10-03 09-47-24 | Peter Korsgaard <peter@korsgaard.com> | Update for 2019.05.3 Signed-off-by: Peter Korsgaard <peter@korsgaard.com> |
| 2019-10-02 14-31-50 | Peter Korsgaard <peter@korsgaard.com> | package/mongodb: security bump to version 4.0.12 Fixes the following (low severity) security vulnerabilities: 4.0.9: - CVE-2019-2386: After user deletion in MongoDB Server the improper invalidation of authorization sessions allows an authenticated user's session to persist and become conflated with new accounts, if those accounts reuse the names of deleted ones https://jira.mongodb.org/browse/SERVER-38984 4.0.11: - CVE-2019-2389: Incorrect scoping of kill operations in MongoDB Server's packaged SysV init scripts allow users with write access to the PID file to insert arbitrary PIDs to be killed when the root user stops the MongoDB process via SysV init https://jira.mongodb.org/browse/SERVER-40563 - CVE-2019-2390: An unprivileged user or program on Microsoft Windows which can create OpenSSL configuration files in a fixed location may cause utility programs shipped with MongoDB server versions less than 4.0.11 https://jira.mongodb.org/browse/SERVER-42233 Plus a number of other bugfixes. For details, see the release notes: https://docs.mongodb.com/manual/release-notes/4.0/ Signed-off-by: Peter Korsgaard <peter@korsgaard.com> (cherry picked from commit 165e9c163c4d28025a5e1d3e5e6cfd0ad6476a7e) Signed-off-by: Peter Korsgaard <peter@korsgaard.com> |
| 2019-10-02 11-02-58 | Bernd Kuhls <bernd.kuhls@t-online.de> | package/putty: security bump version to 0.73 Added upstream-provided sha1 hash. Changelog: https://www.chiark.greenend.org.uk/~sgtatham/putty/changes.html Signed-off-by: Bernd Kuhls <bernd.kuhls@t-online.de> Signed-off-by: Peter Korsgaard <peter@korsgaard.com> (cherry picked from commit 71d2911e26a8e1df3b01ba3838adf0604c893d3e) Signed-off-by: Peter Korsgaard <peter@korsgaard.com> |
| 2019-10-02 11-02-52 | Baruch Siach <baruch@tkos.co.il> | package/putty: bump to version 0.72 Drop upstream patches. Remove autoreconf; we no longer patch configure.ac. Cc: Alexander Dahl <post@lespocky.de> Signed-off-by: Baruch Siach <baruch@tkos.co.il> Signed-off-by: Peter Korsgaard <peter@korsgaard.com> (cherry picked from commit 2047dd9d228b07f190f6367ac2833e86cff3fcb4) Signed-off-by: Peter Korsgaard <peter@korsgaard.com> |