Upgrade byacc to 20140422 version.
Signed-off-by: Chong Lu
---
meta/recipes-extended/byacc/{byacc_20140101.bb => byacc_20140422.bb} | 4 ++--
1 file changed, 2 insertions(+), 2 deletions(-)
rename meta/recipes-extended/byacc/{byacc_20140101.bb => byacc_20140422.bb}
(74%)
diff --git a/meta/rec
The following changes since commit 0e2777fc3da1f59a227264068e5030c57e5ff33a:
maintainers.inc: js package removed (2014-05-19 16:22:16 +0100)
are available in the git repository at:
git://git.pokylinux.org/poky-contrib chonglu/byacc
http://git.pokylinux.org/cgit.cgi/poky-contrib/log/?h=chon
Upgrade flex to 2.5.39 version.
Signed-off-by: Chong Lu
---
meta/recipes-devtools/flex/{flex_2.5.38.bb => flex_2.5.39.bb} | 4 ++--
1 file changed, 2 insertions(+), 2 deletions(-)
rename meta/recipes-devtools/flex/{flex_2.5.38.bb => flex_2.5.39.bb} (57%)
diff --git a/meta/recipes-devtools/flex
The following changes since commit 0e2777fc3da1f59a227264068e5030c57e5ff33a:
maintainers.inc: js package removed (2014-05-19 16:22:16 +0100)
are available in the git repository at:
git://git.pokylinux.org/poky-contrib chonglu/flex
http://git.pokylinux.org/cgit.cgi/poky-contrib/log/?h=chong
From: Roy Li
Fix alignment issue in lttng-tools and babeltrace
Signed-off-by: Roy Li
---
...uffers-from-objstack_alloc-on-sizeof-void.patch | 54
meta/recipes-kernel/lttng/babeltrace_1.2.1.bb |4 +-
...nt-problems-on-targets-not-supporting-una.patch | 47 +
From: Roy Li
We have this in recipes-bsp/grub/grub/40_custom:
[snip]
menuentry "Linux" {
set root=(hd0,1)
linux /vmlinuz root=__ROOTFS__ rw __CONSOLE__ __VIDEO_MODE__ __VGA_MODE__
quiet
}
[snip]
These lines are only for initrdscripts/files/init-install.sh, the side
effect is that it wo
From: Robert Yang
We have this in recipes-bsp/grub/grub/40_custom:
[snip]
menuentry "Linux" {
set root=(hd0,1)
linux /vmlinuz root=__ROOTFS__ rw __CONSOLE__ __VIDEO_MODE__ __VGA_MODE__
quiet
}
[snip]
These lines are only for initrdscripts/files/init-install.sh, the side
effect is that
On 05/20/2014 05:11 AM, Khem Raj wrote:
On Mon, May 19, 2014 at 1:03 AM, Chen Qi wrote:
+KERNCMDLINE="root=/dev/ram0 console=ttyS0 debugshell"
is this valid for all kind of qemu machines ?
I think so.
Notice in runqemu scripts, if '-nographic' is supplied to the qemu
command, then 'co
From: Yue Tao
The decode_slice_header function in libavcodec/h264.c in FFmpeg before
1.1 allows remote attackers to have an unspecified impact via crafted
H.264 data, which triggers an out-of-bounds array access.
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2013-0850
Signed-off-by: Yue T
From: Yue Tao
The roq_decode_init function in libavcodec/roqvideodec.c in FFmpeg
before 1.1 allows remote attackers to have an unspecified impact via a
crafted (1) width or (2) height dimension that is not a multiple of
sixteen in id RoQ video data.
http://web.nvd.nist.gov/view/vuln/detail?vulnI
From: Yue Tao
The lpc_prediction function in libavcodec/alac.c in FFmpeg before 1.1
allows remote attackers to have an unspecified impact via crafted Apple
Lossless Audio Codec (ALAC) data, related to a large nb_samples value.
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2013-0856
Signed
From: Yue Tao
The msrle_decode_frame function in libavcodec/msrle.c in FFmpeg before
2.1.4 does not properly calculate line sizes, which allows remote
attackers to cause a denial of service (out-of-bounds array access) or
possibly have unspecified other impact via crafted Microsoft RLE video
data
From: Yue Tao
The mjpeg_decode_scan_progressive_ac function in libavcodec/mjpegdec.c
in FFmpeg before 1.1 allows remote attackers to have an unspecified
impact via crafted MJPEG data.
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2013-0854
Signed-off-by: Yue Tao
Signed-off-by: Roy Li
--
From: Yue Tao
libavcodec/huffyuvdec.c in FFmpeg before 1.1.2 allows remote attackers
to have an unspecified impact via crafted Huffyuv data, related to an
out-of-bounds write and (1) unchecked return codes from the init_vlc
function and (2) len==0 cases.
http://web.nvd.nist.gov/view/vuln/detail?
From: Yue Tao
The decode_frame function in libavcodec/eamad.c in FFmpeg before 1.1
allows remote attackers to have an unspecified impact via crafted
Electronic Arts Madcow video data, which triggers an out-of-bounds array
access.
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2013-0851
Sig
From: Yue Tao
The parse_picture_segment function in libavcodec/pgssubdec.c in FFmpeg
before 1.1 allows remote attackers to have an unspecified impact via
crafted RLE data, which triggers an out-of-bounds array access.
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2013-0852
Signed-off-by:
From: Roy Li
Diff with V1: fix the commit header and prefix
Diff with V2: add Upstream-status for fix of CVE-2013-0868
The following changes since commit e273301efa0037a13c3a60b4414140364d9c9873:
gstreamer/lame: Better gcc 4.9 fix (2014-05-15 23:27:41 +0100)
are available in the git reposito
From: Yue Tao
The atrac3_decode_init function in libavcodec/atrac3.c in FFmpeg before
1.0.4 allows remote attackers to have an unspecified impact via ATRAC3
data with the joint stereo coding mode set and fewer than two channels.
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2013-0858
Sign
From: Yue Tao
The vqa_decode_chunk function in libavcodec/vqavideo.c in FFmpeg before
1.0.4 and 1.1.x before 1.1.2 allows remote attackers to have an
unspecified impact via a large (1) cbp0 or (2) cbpz chunk in Westwood
Studios VQA Video file, which triggers an out-of-bounds write.
http://web.nv
From: Yue Tao
The mpegts_write_pmt function in the MPEG2 transport stream (aka DVB)
muxer (libavformat/mpegtsenc.c) in FFmpeg, possibly 2.1 and earlier,
allows remote attackers to have unspecified impact and vectors, which
trigger an out-of-bounds write.
http://web.nvd.nist.gov/view/vuln/detail?
From: Yue Tao
libavcodec/alsdec.c in FFmpeg before 1.0.4 allows remote attackers to
have an unspecified impact via a crafted block length, which triggers an
out-of-bounds write.
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2013-0845
Signed-off-by: Yue Tao
Signed-off-by: Roy Li
---
...
The following changes since commit 0e2777fc3da1f59a227264068e5030c57e5ff33a:
maintainers.inc: js package removed (2014-05-19 16:22:16 +0100)
are available in the git repository at:
git://git.pokylinux.org/poky-contrib chonglu/guile
http://git.pokylinux.org/cgit.cgi/poky-contrib/log/?h=chon
Upgrade guile to 2.0.11 version and remove unneeded patch since
it's included in new version.
Signed-off-by: Chong Lu
---
.../guile/files/guile_2.0.9_fix_noreturn.patch | 65 --
.../guile/{guile_2.0.9.bb => guile_2.0.11.bb} | 5 +-
2 files changed, 2 insertions(+),
From: "yanjun.zhu"
The Perl_reg_numbered_buff_fetch function in Perl 5.10.0, 5.12.0,
5.14.0, and other versions, when running with debugging enabled,
allows context-dependent attackers to cause a denial of service
(assertion failure and application exit) via crafted input that
is not properly han
And a special thanks to everyone for letting the Gentoo dev crash the
meeting. The meeting *was* fun and educational (especially for me). So
far both the community and technology have been a lot of fun getting custom
builds for various machines, as well as educational (is there an echo in
here? ;
On Mon, May 19, 2014 at 10:38 AM, Mark Hatle wrote:
> I just checked, and the only diff I can see is copyright 'years' were
> updated to include 2014.
OK may be amend the commit to reflect it
--
___
Openembedded-core mailing list
Openembedded-core@list
It turns out that pseudo's decision not to report errors from
the host system's fchmodat() can break GNU tar in a very strange
way, resulting in directories being mode 0700 instead of whatever
they should have been.
Additionally, it turns out that if you make directories in your
rootfs mode 777, t
(Sorry if this ends up getting duplicated, had mail server issues,
and there may be deferred copies floating around somewhere.)
Two changes:
1. Report failures from calling fchmodat with AT_SYMLINK_NOFOLLOW,
because otherwise GNU tar won't set modes as well as we would like
it to. (No effect on ge
On Mon, May 19, 2014 at 1:03 AM, Chen Qi wrote:
> +KERNCMDLINE="root=/dev/ram0 console=ttyS0 debugshell"
is this valid for all kind of qemu machines ?
--
___
Openembedded-core mailing list
Openembedded-core@lists.openembedded.org
http://lists.opene
Backport upstream patch for CUPS issue: STR #4402
[YOCTO #6325]
Signed-off-by: Saul Wold
---
meta/recipes-extended/cups/cups/cups-str4402.patch | 190 +
1 file changed, 190 insertions(+)
create mode 100644 meta/recipes-extended/cups/cups/cups-str4402.patch
diff --git a/met
Changelog since 2014-05-11 until 2014-05-18. Projects included in this report:
bitbake: git://git.openembedded.org/bitbake
openembedded-core: git://git.openembedded.org/openembedded-core
meta-openembedded: git://git.openembedded.org/meta-openembedded
meta-angstrom: git://github.com/Angstrom-distr
On 5/19/14, 12:31 PM, Khem Raj wrote:
On Sun, May 18, 2014 at 10:36 PM, Chong Lu wrote:
-LIC_FILES_CHKSUM = "file://LICENCE;md5=0920cc1a9f7ba95464491fa83c86afd8"
+LIC_FILES_CHKSUM = "file://LICENCE;md5=ded617e975f28e15952dc68b84a7ac1a"
what changed ?
I just checked, and the only diff I can
On Sun, May 18, 2014 at 10:36 PM, Chong Lu wrote:
> -LIC_FILES_CHKSUM = "file://LICENCE;md5=0920cc1a9f7ba95464491fa83c86afd8"
> +LIC_FILES_CHKSUM = "file://LICENCE;md5=ded617e975f28e15952dc68b84a7ac1a"
what changed ?
--
___
Openembedded-core mailing li
The following changes since commit e273301efa0037a13c3a60b4414140364d9c9873:
gstreamer/lame: Better gcc 4.9 fix (2014-05-15 23:27:41 +0100)
are available in the git repository at:
git://git.openembedded.org/openembedded-core-contrib sgw/stage
http://cgit.openembedded.org/cgit.cgi/openemb
On 05/15/2014 07:12 PM, rongqing...@windriver.com wrote:
From: Yue Tao
libavcodec/huffyuvdec.c in FFmpeg before 1.1.2 allows remote attackers
to have an unspecified impact via crafted Huffyuv data, related to an
out-of-bounds write and (1) unchecked return codes from the init_vlc
function and (
On 05/14/2014 08:21 PM, rongqing...@windriver.com wrote:
From: "yanjun.zhu"
The Perl_reg_numbered_buff_fetch function in Perl 5.10.0, 5.12.0,
5.14.0, and other versions, when running with debugging enabled,
allows context-dependent attackers to cause a denial of service
(assertion failure and a
From: "Maxin B. John"
A null pointer dereference bug was discovered in do_ssl3_write().
An attacker could possibly use this to cause OpenSSL to crash, resulting
in a denial of service.
https://access.redhat.com/security/cve/CVE-2014-0198
Signed-off-by: Maxin B. John
Signed-off-by: Matt Fleming
On 05/16/2014 08:19 PM, Saul Wold wrote:
On 05/13/2014 07:59 AM, Valentin Popa wrote:
(*) libdricore was removed.
(*) added libmesa-megadriver that includes
all the hardlinks to the mesa megadriver.
(*) license is the same.
Signed-off-by: Valentin Popa
---
.../mesa/{mesa-gl_9.2.5.bb =>
On 05/13/2014 07:59 AM, Valentin Popa wrote:
(*) libdricore was removed.
(*) added libmesa-megadriver that includes
all the hardlinks to the mesa megadriver.
(*) license is the same.
I have the following failure from a multilib build, not sure if it's
related to this change or not, I thi
Signed-off-by: Cristian Iorga
---
.../harfbuzz/{harfbuzz_0.9.27.bb => harfbuzz_0.9.28.bb} | 8 +++-
1 file changed, 3 insertions(+), 5 deletions(-)
rename meta/recipes-graphics/harfbuzz/{harfbuzz_0.9.27.bb =>
harfbuzz_0.9.28.bb} (87%)
diff --git a/meta/recipes-graphics/harfbuzz/h
The following changes since commit 09edf20070036a3d83bb79e17f57261bea0d0f09:
bitbake: fetch2/gitsm: Documentation improvements for gitsm:// fetcher
(2014-05-19 12:04:34 +0100)
are available in the git repository at:
git://git.yoctoproject.org/poky-contrib ciorga/PUs
http://git.yoctoprojec
On Wed, 2014-05-14 at 22:37 -0300, João Henrique Ferreira de Freitas
wrote:
> Hi,
>
> This introduces a little wic usability enhanced. Now wic has the
> ability to search in all layers looking by .wks files and plugins.
>
> The aim is to provide the layers a way to keep .wks and plugins that
> th
The following changes since commit e273301efa0037a13c3a60b4414140364d9c9873:
gstreamer/lame: Better gcc 4.9 fix (2014-05-15 23:27:41 +0100)
are available in the git repository at:
git://git.openembedded.org/openembedded-core-contrib paule/libav-upgrades
http://cgit.openembedded.org/cgit.c
Signed-off-by: Paul Eggleton
---
meta/recipes-multimedia/libav/{libav_0.8.9.bb => libav_0.8.11.bb} | 4 ++--
1 file changed, 2 insertions(+), 2 deletions(-)
rename meta/recipes-multimedia/libav/{libav_0.8.9.bb => libav_0.8.11.bb} (79%)
diff --git a/meta/recipes-multimedia/libav/libav_0.8.9.bb
Signed-off-by: Paul Eggleton
---
meta/recipes-multimedia/libav/{libav_9.10.bb => libav_9.13.bb} | 4 ++--
1 file changed, 2 insertions(+), 2 deletions(-)
rename meta/recipes-multimedia/libav/{libav_9.10.bb => libav_9.13.bb} (74%)
diff --git a/meta/recipes-multimedia/libav/libav_9.10.bb
b/meta/
One of the things that came out of the discussion "Why is embedded still
hard" at the OEDAM was the need to document development workflow best
practices, particularly when it comes to application development.
It was agreed that the first step should be collecting existing practices
to understand w
> -Original Message-
> From: openembedded-core-boun...@lists.openembedded.org
> [mailto:openembedded-core-boun...@lists.openembedded.org] On Behalf
> Of Stefan Stanacar
> Sent: Monday, May 19, 2014 12:28 PM
> To: Musat, GeorgeX L
> Cc: openembedded-core@lists.openembedded.org
> Subject: R
On Monday 19 May 2014 09:32:57 Rongqing Li wrote:
> On 05/16/2014 07:09 PM, Paul Eggleton wrote:
> > Hi Roy,
> >
> > On Friday 16 May 2014 10:12:08 rongqing...@windriver.com wrote:
> >> From: Roy Li
> >>
> >> Diff with V1: use ffmpeg as prefix of commit header
> >>
> >> The following changes si
On 19 May 2014 04:18, Zongchun YU wrote:
>>It's not opt-in: once a recipe is using doxygen.bbclass then it has a build
>>dependency on doxygen-native and *will* generate documentation.
>>This is needless overhead if you don't intend to read the documentation.
>
> I think if you intend to read the
Hi Lucian,
On Fri, May 16, 2014 at 11:44 AM, Lucian Musat
wrote:
>
> class SmartRepoTest(SmartTest):
> @@ -54,11 +54,12 @@ class SmartRepoTest(SmartTest):
> @classmethod
> def tearDownClass(self):
> self.repo_server.stop()
> + smartsRepo = SmartRepoTest
>
Again, this li
On Sunday 18 May 2014 21:01:18 Phil Blundell wrote:
> On Fri, May 16, 2014 at 11:51:06AM +0100, Paul Eggleton wrote:
> > On Monday 28 April 2014 14:45:26 Koen Kooi wrote:
> > > Paul Eggleton schreef op 28-04-14 13:08:
> > > > OK then, how about this instead:
> > > >
> > > > 1) Ensure the "openembe
Which assumption is correct: "a recipe A that depends on another
recipe B can use users/groups that B creates" or "all recipes must
create the users/groups they require themselves"?
The problem for us is that we have a lot of recipes that create
users and groups, and subsequently a number of ot
We need this kernel command parameter so that when we start a ramfs
image, we can actually get some output. Although we can make this
happen by specifying the 'bootparams' for the 'runqemu' command, it's
better to make this the default behaviour.
Signed-off-by: Chen Qi
---
scripts/runqemu-intern
The following changes since commit e273301efa0037a13c3a60b4414140364d9c9873:
gstreamer/lame: Better gcc 4.9 fix (2014-05-15 23:27:41 +0100)
are available in the git repository at:
git://git.openembedded.org/openembedded-core-contrib ChenQi/runqemu-ramfs
http://cgit.openembedded.org/cgit.c
From: Yue Tao
Race condition in the ssl3_read_bytes function in s3_pkt.c in OpenSSL
through 1.0.1g, when SSL_MODE_RELEASE_BUFFERS is enabled, allows remote
attackers to inject data across sessions or cause a denial of service
(use-after-free and parsing error) via an SSL connection in a
multithre
55 matches
Mail list logo
