[OE-core] [PATCH v2] bind: CVE-2016-1285 CVE-2016-1286

Fixes following vulnerabilities: CVE-2016-1285 bind: malformed packet sent to rndc can trigger assertion failure CVE-2016-1286 bind: malformed signature records for DNAME records can trigger assertion failure [YOCTO #9400] External References: https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2016-

Re: [OE-core] [PATCH 0/1] linux-yocto-tiny: update SRCREV_meta to support /proc/sys

On Tue, Apr 12, 2016 at 10:58 PM, Robert Yang wrote: > > > On 04/13/2016 10:53 AM, Bruce Ashfield wrote: > >> >> >> On Tue, Apr 12, 2016 at 10:07 PM, Robert Yang > > wrote: >> >> Hi RP, >> I'm sorry to say that I didn't send this yesterday was because I h

Re: [OE-core] [PATCH 0/1] linux-yocto-tiny: update SRCREV_meta to support /proc/sys

On 04/13/2016 10:53 AM, Bruce Ashfield wrote: On Tue, Apr 12, 2016 at 10:07 PM, Robert Yang mailto:liezhi.y...@windriver.com>> wrote: Hi RP, I'm sorry to say that I didn't send this yesterday was because I have to wait until the kernel's part get merged (now it is done), otherwis

Re: [OE-core] [PATCH 1/1] linux-yocto-tiny: fix KBRANCH

On Tue, Apr 12, 2016 at 6:03 PM, Richard Purdie < richard.pur...@linuxfoundation.org> wrote: > On Tue, 2016-04-12 at 08:33 -0400, Bruce Ashfield wrote: > > On 2016-04-12 2:36 AM, Robert Yang wrote: > > > Fixed: > > > WARNING: linux-yocto-tiny-4.4.3+gitAUTOINC+770996a263_73481a3abd-r0 > > > do_patc

Re: [OE-core] [PATCH 0/1] linux-yocto-tiny: update SRCREV_meta to support /proc/sys

On Tue, Apr 12, 2016 at 10:07 PM, Robert Yang wrote: > Hi RP, > I'm sorry to say that I didn't send this yesterday was because I have to > wait until the kernel's part get merged (now it is done), otherwise I > can't have the correct SRCREV. > You shouldn't be bumping the SRCREV at all. That's s

[OE-core] [PATCH 0/1] linux-yocto-tiny: update SRCREV_meta to support /proc/sys

Hi RP, I'm sorry to say that I didn't send this yesterday was because I have to wait until the kernel's part get merged (now it is done), otherwise I can't have the correct SRCREV. // Robert The following changes since commit b3afe7d9bd25a943e947de3ec064ea245173c5a8: archiver: Ensure sstate-in

[OE-core] [PATCH 1/1] linux-yocto-tiny: update SRCREV_meta to support /proc/sys

Signed-off-by: Robert Yang --- meta/recipes-kernel/linux/linux-yocto-tiny_4.1.bb | 2 +- meta/recipes-kernel/linux/linux-yocto-tiny_4.4.bb | 2 +- 2 files changed, 2 insertions(+), 2 deletions(-) diff --git a/meta/recipes-kernel/linux/linux-yocto-tiny_4.1.bb b/meta/recipes-kernel/linux/linux-yo

Re: [OE-core] Fwd: [PATCH] Access c_ispeed and c_ospeed via APIs

I think I see the problem now. The constant should be converted to use Bnn values. When calling the baudrate apis. I will send a patch for you to test once I am close to computer On Apr 12, 2016 6:20 PM, "Khem Raj" wrote: Since you have it reproduced. Can you check which of the api call is failin

Re: [OE-core] Fwd: [PATCH] Access c_ispeed and c_ospeed via APIs

Since you have it reproduced. Can you check which of the api call is failing? On Apr 12, 2016 5:05 PM, "Bruce Ashfield" wrote: > On 2016-04-12 1:53 PM, Khem Raj wrote: > >> FYI >> > > Thanks. I can also confirm that when I dropped the patch, I'm > back up and running assertion free. > > Bruce > >

[OE-core] [PATCH 2/2] image.bbclass: add DEB_{PRE, POST}PROCESS_COMMANDS to rootfs_command_variables list

Remove duplicate ROOTFS_POSTPROCESS_COMMAND in the rootfs_command_variables list. Add DEB_PREPROCESS_COMMANDS and DEB_POSTPROCESS_COMMANDS to rootfs_command_variables list for consistency with the RPM_ and OPKG_ versions of those variables. Note: the package manager specific pre and post process

[OE-core] [PATCH 1/2] rootfs.py: apply ROOTFS_POSTINSTALL_COMMAND to all package formats

Previously, ROOTFS_POSTINSTALL_COMMAND was run only after the opkg rootfs install post processing phase. This patch makes it generic so it is run fter any package manager specific rootfs post processing, but before _run_intercepts(). [YOCTO #9248] Signed-off-by: Bill Randle --- meta/lib/oe/roo

[OE-core] [PATCH 0/2] rootfs post processing cleanup

Bill Randle (2): rootfs.py: apply ROOTFS_POSTINSTALL_COMMAND to all package formats image.bbclass: add DEB_{PRE,POST}_PROCESS_COMMANDS to rootfs_command_variables list meta/classes/image.bbclass | 2 +- meta/lib/oe/rootfs.py | 5 +++-- 2 files changed, 4 insertions(+), 3 deletions(-) -

[OE-core] [PATCH] devtool: sdk-update fails on remote hosts

This fixes bug #9426: https://bugzilla.yoctoproject.org/show_bug.cgi?id=9426 Skip .git folders when copying the build system. Signed-off-by: Stephano Cetola --- meta/lib/oe/copy_buildsystem.py | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/meta/lib/oe/copy_buildsystem.py b/

Re: [OE-core] [PATCH 1/1] linux-yocto-tiny: fix KBRANCH

On Tue, 2016-04-12 at 08:33 -0400, Bruce Ashfield wrote: > On 2016-04-12 2:36 AM, Robert Yang wrote: > > Fixed: > > WARNING: linux-yocto-tiny-4.4.3+gitAUTOINC+770996a263_73481a3abd-r0 > > do_patch: After meta data application, the kernel tree branch is > > standard/tiny/common-pc. The > > WARNING:

Re: [OE-core] Fwd: [PATCH] Access c_ispeed and c_ospeed via APIs

On 2016-04-12 1:53 PM, Khem Raj wrote: FYI Thanks. I can also confirm that when I dropped the patch, I'm back up and running assertion free. Bruce -- Forwarded message -- From: Gerhard Rieger Date: Wed, Mar 16, 2016 at 4:43 AM Subject: Re: [PATCH] Access c_ispeed and c_ospe

Re: [OE-core] Over-pruning the sstate cache

On Tue, 2016-04-12 at 19:51 +0100, Mike Crowe wrote: > On Tuesday 29 March 2016 at 15:11:10 +0100, Richard Purdie wrote: > > On Tue, 2016-03-29 at 13:56 +0100, Mike Crowe wrote: > > > 80b3974081c4a8c604e23982a6db8fb32c616058 implies that at least > > > some > > > people > > > are pruning the sstate

Re: [OE-core] [PATCH 3/3] git: update to 2.8.1

Passing -M parameter to git format-patch in this case would make better result. On Tue, Apr 12, 2016 at 12:25:32PM -0600, Dan McGregor wrote: > From: Dan McGregor > > Signed-off-by: Dan McGregor > --- > meta/recipes-devtools/git/git_2.7.2.bb | 11 --- > meta/recipes-devtools/git/git_

Re: [OE-core] [PATCH 3/3] git: update to 2.8.1

Works for me. I'm not in a hurry. On 12 April 2016 at 13:41, Burton, Ross wrote: > Far too late for master/krogoth, this can be merged after they've branched. > > Ross > > On 12 April 2016 at 19:25, Dan McGregor wrote: >> >> From: Dan McGregor >> >> Signed-off-by: Dan McGregor >> --- >> meta/

Re: [OE-core] [PATCH 3/3] git: update to 2.8.1

Far too late for master/krogoth, this can be merged after they've branched. Ross On 12 April 2016 at 19:25, Dan McGregor wrote: > From: Dan McGregor > > Signed-off-by: Dan McGregor > --- > meta/recipes-devtools/git/git_2.7.2.bb | 11 --- > meta/recipes-devtools/git/git_2.8.1.bb | 11

Re: [OE-core] Over-pruning the sstate cache

On Tuesday 29 March 2016 at 15:11:10 +0100, Richard Purdie wrote: > On Tue, 2016-03-29 at 13:56 +0100, Mike Crowe wrote: > > 80b3974081c4a8c604e23982a6db8fb32c616058 implies that at least some > > people > > are pruning the sstate cache based on file access time. > > > > Is there a recommended way

[OE-core] [PATCH 2/3] sudo: fix pam config on systemd systems

From: Dan McGregor Pam_keyinit revoke causes issues on systemd systems. Make its use optional. This brings it in line with Fedora 23 and Centos 7. Signed-off-by: Dan McGregor --- meta/recipes-extended/sudo/files/sudo.pam | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/meta/

[OE-core] [PATCH 1/3] sysvinit: make lastb.1 an alternative

From: Dan McGregor util-linux has an alternative for it. Add it to sysvinit too. Signed-off-by: Dan McGregor --- meta/recipes-core/sysvinit/sysvinit_2.88dsf.bb | 3 ++- 1 file changed, 2 insertions(+), 1 deletion(-) diff --git a/meta/recipes-core/sysvinit/sysvinit_2.88dsf.bb b/meta/recipes-c

[OE-core] [PATCH 3/3] git: update to 2.8.1

From: Dan McGregor Signed-off-by: Dan McGregor --- meta/recipes-devtools/git/git_2.7.2.bb | 11 --- meta/recipes-devtools/git/git_2.8.1.bb | 11 +++ 2 files changed, 11 insertions(+), 11 deletions(-) delete mode 100644 meta/recipes-devtools/git/git_2.7.2.bb create mode 100644

Re: [OE-core] [PATCH 4/6] socat: Access c_ispeed and c_ospeed via APIs

On Tue, Apr 12, 2016 at 10:00 AM, Bruce Ashfield wrote: > > > On Thu, Mar 17, 2016 at 1:18 AM, Khem Raj wrote: >> >> make it more portable across libc implementations >> >> Signed-off-by: Khem Raj >> --- >> ...001-Access-c_ispeed-and-c_ospeed-via-APIs.patch | 39 >> ++ >> me

[OE-core] Fwd: [PATCH] Access c_ispeed and c_ospeed via APIs

FYI -- Forwarded message -- From: Gerhard Rieger Date: Wed, Mar 16, 2016 at 4:43 AM Subject: Re: [PATCH] Access c_ispeed and c_ospeed via APIs To: Khem Raj Thank you, I will check this patch! - Gerhard Am 15.03.2016 um 22:39 schrieb Khem Raj: > Use cfsetispeed(), cfsetospeed(

Re: [OE-core] [PATCHv2 1/1] Revert "useradd.bbclass: remove user/group created by the package in clean* task"

> -Original Message- > From: Otavio Salvador [mailto:otavio.salva...@ossystems.com.br] > Sent: den 12 april 2016 18:36 > To: Richard Purdie > Cc: Peter Kjellerstedt; Patches and discussions about the oe-core layer > Subject: Re: [OE-core] [PATCHv2 1/1] Revert "useradd.bbclass: remove > user

[OE-core] [PATCH] lib/oe/lsb: sanitise the distro identifier

The distribution identifier is often used to create filenames, so it needs to be safe to use as a filename. Whilst most distributions have e.g. Fedora or Debian as their name, it is possible that the name contains special characters. To ensure this doesn't cause a problem strip out any non-alphan

Re: [OE-core] [PATCH] package.bbclass: handle links in sorted order

On Tue, Apr 12, 2016 at 08:22:21AM -0700, Bill Randle wrote: > When processing links, the directories are processed in unsorted order > which can result in cases like /var/lock -> /run/lock handled before > /var/run -> /run throwing an error for /var/run because /run already exists. > Change the li

Re: [OE-core] [PATCHv2 1/1] Revert "useradd.bbclass: remove user/group created by the package in clean* task"

On Tue, Apr 12, 2016 at 11:54 AM, Richard Purdie wrote: > On Tue, 2016-04-12 at 15:18 +0200, Peter Kjellerstedt wrote: >> Removal of users/group when cleansstating a recipe as implemented >> here >> totally breaks when multiple recipes install the same user/groups. >> >> This reverts commit b5304c

[OE-core] [PATCH] sanity: allow sftp and ssh mirrors

URLs in MIRRORS and PREMIRRORS are vetted against a hard-coded list of protocols which were missing sftp: and ssh:, so add them. [ YOCTO #9444 ] Signed-off-by: Ross Burton --- meta/classes/sanity.bbclass | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/meta/classes/sanity.bbc

Re: [OE-core] [oe] [yocto] OEDAM, April 8 in San Diego after ELC

Coming soon to a wiki page near you On Mon, Apr 11, 2016 at 6:48 PM, Tom King wrote: > do we have meeting minutes posted someplace? > > thanks > > tom > > On Mon, Apr 11, 2016 at 6:43 PM, Philip Balister > wrote: >> >> On 04/11/2016 09:35 PM, Denys Dmytriyenko wrote: >> > On Mon, Apr 11, 2016 a

[OE-core] [PATCH] package.bbclass: handle links in sorted order

When processing links, the directories are processed in unsorted order which can result in cases like /var/lock -> /run/lock handled before /var/run -> /run throwing an error for /var/run because /run already exists. Change the link processing to ensure links are processed in sorted order of the de

Re: [OE-core] [PATCHv2 1/1] Revert "useradd.bbclass: remove user/group created by the package in clean* task"

On Tue, 2016-04-12 at 15:18 +0200, Peter Kjellerstedt wrote: > Removal of users/group when cleansstating a recipe as implemented > here > totally breaks when multiple recipes install the same user/groups. > > This reverts commit b5304ce438666a7418746f4ddd32703ae3188089. > > Signed-off-by: Peter K

[OE-core] [PATCH 1/5] Revert "wic/utils/partitionedfs.py: assemble .wic images as sparse files"

It turns out that dd's conv=sparse doesn't look at the file extents, but simply checks if a "block" is all zero. If the block of zero was meaningful it gets lost and if the image is subsequently written to media using a sparse-aware writer then the block of zeros won't be written at all. This rev

[OE-core] [PATCH 2/5] Revert "oeqa/selftest/wic: add test case for sparse images"

This reverts commit 43150ab7ec63d804e8a998ecee9d00295b8b2bc7. Signed-off-by: Ross Burton --- meta/lib/oeqa/selftest/wic.py | 13 - 1 file changed, 13 deletions(-) diff --git a/meta/lib/oeqa/selftest/wic.py b/meta/lib/oeqa/selftest/wic.py index dd32075..a569fbf 100644 --- a/meta/lib/

[OE-core] [PATCH 3/5] rsync: don't install acinclude.m4

This acinclude.m4 was actually a stale copy of upstream's generated aclocal.m4. This generates correctly now, so there isn't a need to install this by hand anymore. Signed-off-by: Ross Burton --- meta/recipes-devtools/rsync/files/acinclude.m4 | 95 -- meta/recipes-devtool

[OE-core] [PATCH 5/5] rsync: remove upstream's rebuild logic

Upstream some well intended but broken logic to reimplement the rebuild functionality of automake. However this isn't out-of-tree safe and quite basic, which means if it ever does execute (say, configure.ac or aclocal.m4 is touched) then the build fails. As we delete ${B} and re-run autoreconf on

[OE-core] [PATCH 4/5] rsync: pass cached configure values through the right variable

Passing these through CACHED_CONFIGUREVARS doesn't change the build, but makes the recipe clearer. Signed-off-by: Ross Burton --- meta/recipes-devtools/rsync/rsync_3.1.2.bb | 9 - 1 file changed, 4 insertions(+), 5 deletions(-) diff --git a/meta/recipes-devtools/rsync/rsync_3.1.2.bb b/

[OE-core] [PATCH] archiver: Ensure sstate-inputdir directory is created

Without this, do_archive_sources will fail for the gcc tasks where there is common source and the other tasks are not added as dependencies. The failure happens when trying to restore these tasks from sstate. To fix this ensure the sources directory is created as expected by the sstate code. [YOC

[OE-core] [PATCH] toaster.bbclass: improve package information collection

From: Joshua Lock The PACKAGES variable doesn't include all packages potentially generated by a recipe, not least of all because it doesn't include dynamic packages created via do_split_packages() or similar. Instead of trying to guess which packages were generated, walk ${PKGDESTWORK}/runtime t

Re: [OE-core] [PATCH 4/6] socat: Access c_ispeed and c_ospeed via APIs

On Thu, Mar 17, 2016 at 1:18 AM, Khem Raj wrote: > make it more portable across libc implementations > > Signed-off-by: Khem Raj > --- > ...001-Access-c_ispeed-and-c_ospeed-via-APIs.patch | 39 > ++ > meta/recipes-connectivity/socat/socat_1.7.3.1.bb | 1 + > 2 files chang

Re: [OE-core] [PATCHv2 1/1] Revert "useradd.bbclass: remove user/group created by the package in clean* task"

On Tue, Apr 12, 2016 at 10:18 AM, Peter Kjellerstedt wrote: > Removal of users/group when cleansstating a recipe as implemented here > totally breaks when multiple recipes install the same user/groups. > > This reverts commit b5304ce438666a7418746f4ddd32703ae3188089. > > Signed-off-by: Peter Kjell

[OE-core] [PATCHv2 0/1] Revert cleaning of users/groups

About a week ago the "solution" to https://bugzilla.yoctoproject.org/show_bug.cgi?id=9262 was accepted into OE-Core. This is supposed to solve the problem that users/groups are not removed from the sysroot when the recipe is cleansstated. The solution, however, totally fails to handle the case wher

[OE-core] [PATCHv2 1/1] Revert "useradd.bbclass: remove user/group created by the package in clean* task"

Removal of users/group when cleansstating a recipe as implemented here totally breaks when multiple recipes install the same user/groups. This reverts commit b5304ce438666a7418746f4ddd32703ae3188089. Signed-off-by: Peter Kjellerstedt --- meta/classes/sstate.bbclass | 5 - meta/classes/use

Re: [OE-core] [PATCH] kernel-uimage: build per-architecture target image

On 04/07/2016 01:56 PM, Marek Vasut wrote: On 04/07/2016 09:40 AM, Ruslan Bilovol wrote: Commit e69525: "kernel: Build uImage only when really needed" hardcoded target kernel image to zImage for case if uImage is generated by OpenEmbedded buildsystem. However not all kernel architectures suppor

[OE-core] [PATCH 1/1] Revert "useradd.bbclass: remove user/group created by the package in clean* task"

Removal of users/group when cleansstating a recipe as implemented here totally breaks when multiple recipes install the samer user/groups. This reverts commit b5304ce438666a7418746f4ddd32703ae3188089. Signed-off-by: Peter Kjellerstedt --- meta/classes/sstate.bbclass | 5 - meta/classes/us

[OE-core] [PATCH 0/1] Revert cleaning of users/groups

About a week ago the "solution" to https://bugzilla.yoctoproject.org/show_bug.cgi?id=9262 was accepted into OE-Core. This is supposed to solve the problem that users/groups are not removed from the sysroot when the recipe is cleansstated. The solution, however, totally fails to handle the case wher

Re: [OE-core] [PATCH 1/1] linux-yocto-tiny: fix KBRANCH

On 2016-04-12 2:36 AM, Robert Yang wrote: Fixed: WARNING: linux-yocto-tiny-4.4.3+gitAUTOINC+770996a263_73481a3abd-r0 do_patch: After meta data application, the kernel tree branch is standard/tiny/common-pc. The WARNING: linux-yocto-tiny-4.4.3+gitAUTOINC+770996a263_73481a3abd-r0 do_patch: SRC_U

[OE-core] [PATCH 1/2] Revert "wic/utils/partitionedfs.py: assemble .wic images as sparse files"

It turns out that dd's conv=sparse doesn't look at the file extents, but simply checks if a "block" is all zero. If the block of zero was meaningful it gets lost and if the image is subsequently written to media using a sparse-aware writer then the block of zeros won't be written at all. This rev

[OE-core] [PATCH 2/2] Revert "oeqa/selftest/wic: add test case for sparse images"

This reverts commit 43150ab7ec63d804e8a998ecee9d00295b8b2bc7. Signed-off-by: Ross Burton --- meta/lib/oeqa/selftest/wic.py | 13 - 1 file changed, 13 deletions(-) diff --git a/meta/lib/oeqa/selftest/wic.py b/meta/lib/oeqa/selftest/wic.py index dd32075..a569fbf 100644 --- a/meta/lib/

Re: [OE-core] [PATCH 1/2] wic/utils/partitionedfs.py: assemble .wic images as sparse files

On 9 April 2016 at 11:36, Alexander Kanevskiy wrote: > This might be dangerous. Even in recent version of DD (coreutils 8.25), it > might not detect in source file mapped/unmapped blocks properly, > (just use is_nul() function to check if block contains only zeros, instead > of e.g. fiemap). > Re

Re: [OE-core] [PATCH][fido] bind: CVE-2016-1285 CVE-2016-1286

Yes, They are all tested; build bind & boot core image … but I send the old patch, sorry about this ☹ From: Burton, Ross [mailto:ross.bur...@intel.com] Sent: den 12 april 2016 13:18 To: Sona Sarmadi Cc: Joshua G Lock ; openembedded-core@lists.openembedded.org Subject: Re: [OE-core] [PATCH][fid

Re: [OE-core] [PATCH][fido] bind: CVE-2016-1285 CVE-2016-1286

On 12 April 2016 at 12:11, Sona Sarmadi wrote: > I guess you need this patch: > https://source.isc.org/cgi-bin/gitweb.cgi?p=bind9.git;a=patch;h=a078c9eeae8c2db7edf2b15ff1d25a3a297c751 > Was this patch not build-tested then? Where any of the bind patches build-tested? Ross -- _

Re: [OE-core] [PATCH][fido] bind: CVE-2016-1285 CVE-2016-1286

I guess you need this patch: https://source.isc.org/cgi-bin/gitweb.cgi?p=bind9.git;a=patch;h=a078c9eeae8c2db7edf2b15ff1d25a3a297c751 Can I send you a new patch or can you add this? > Unfortunately I can't build bind with this patch applied: > > | cc.c: In function 'verify': > | cc.c:293:27: e

[OE-core] [PATCH] kbd: remove uclibc-stdarg.patch

Remove uclibc-stdarg.patch as it is already available in kbd 2.0.3 release. commit id: b8ef7897867cb1ba1b9f87d004674133c291b1b0 Author: Mike Frysinger Date: Mon Jan 6 10:27:56 2014 -0500 libkeymap: include stdarg.h where used Signed-off-by: Maxin B. John --- meta/recipes-core/kbd/kbd/uclib

Re: [OE-core] [PATCH][fido] bind: CVE-2016-1285 CVE-2016-1286

On Fri, 2016-04-08 at 07:12 +0200, Sona Sarmadi wrote: > CVE-2016-1285 bind: malformed packet sent to rndc can trigger > assertion failure > CVE-2016-1286 bind: malformed signature records for DNAME records can > trigger assertion failure Unfortunately I can't build bind with this patch applied:

[OE-core] [PATCH] image.bbclass: use max() instead of indexing booleans

There's some code dotted around OE that uses (a, b)[foo < bar] instead of the more idiomatic "test and a or b". Or in this case, just max(). Signed-off-by: Ross Burton --- meta/classes/image.bbclass | 4 +--- 1 file changed, 1 insertion(+), 3 deletions(-) diff --git a/meta/classes/image.bbclas

Re: [OE-core] [PATCH] bind: Upgrade 9.10.3-P3 -> 9.10.3-P4

Sure, I can try ☺ From: Burton, Ross [mailto:ross.bur...@intel.com] Sent: den 12 april 2016 12:19 To: Sona Sarmadi Cc: OE-core Subject: Re: [OE-core] [PATCH] bind: Upgrade 9.10.3-P3 -> 9.10.3-P4 On 12 April 2016 at 11:13, Sona Sarmadi mailto:sona.sarm...@enea.com>> wrote: The upgrade addresse

Re: [OE-core] [PATCH] bind: Upgrade 9.10.3-P3 -> 9.10.3-P4

On 12 April 2016 at 11:13, Sona Sarmadi wrote: > The upgrade addresses following vulnerabilities: >CVE-2016-1285 >CVE-2016-1286 >CVE-2016-2088 > > Fixes [YOCTO #9400 and #9438]. > > References: > https://kb.isc.org/article/AA-01352 > https://kb.isc.org/article/AA-01353 > https://kb.is

[OE-core] [PATCH] bind: Upgrade 9.10.3-P3 -> 9.10.3-P4

The upgrade addresses following vulnerabilities: CVE-2016-1285 CVE-2016-1286 CVE-2016-2088 Fixes [YOCTO #9400 and #9438]. References: https://kb.isc.org/article/AA-01352 https://kb.isc.org/article/AA-01353 https://kb.isc.org/article/AA-01351 Signed-off-by: Sona Sarmadi --- .../bind/{b

[OE-core] [PATCH] npm.bbclass: Stop packagenames containing underscores from being generated

From: Brendan Le Foll Package names cannot contain underscores yet some npm modules use them as part of the name, replace them with hyphens in the package name. Signed-off-by: Brendan Le Foll --- meta/classes/npm.bbclass | 6 -- meta/lib/oe/package.py | 2 +- 2 files changed, 5 insertion

[OE-core] [PATCH] matchbox-keyboard: Hide desktop launcher

Add patch that hides the keyboard desktop launcher, remove patch that tries and fails to make the keyboard a single-instance application. The desktop launcher of matchbox-keyboard is a source of far more problems than solutions: As an example there's supposed to be only one instance running at a t

[OE-core] [PATCH][jethro] bind: CVE-2016-1285 CVE-2016-1286

CVE-2016-1285 bind: malformed packet sent to rndc can trigger assertion failure CVE-2016-1286 bind: malformed signature records for DNAME records can trigger assertion failure [YOCTO #9400] External References: https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2016-1285 https://bugzilla.redhat.com/

[OE-core] Busybox syslogd/klogd and journald

Hello! Can anyone think of a reason why busybox syslogd and klogd are enabled even when using systemd's journald? journald already captures both dmesg and syslog output, the other two daemons are just plain redundant. Is it perhaps because it is unclear during compilation of busybox whether the d