[OE-core] [PATCH 0/5] Fix CVE issues and add new libav recipe
Kai Kang
kai.kang at windriver.com
Thu May 28 01:26:13 UTC 2015
* Fix CVE issues for severial packages
* Upgrade libav 9.61 --> 9.18
* Add recipe for libav series 11
Build world for x86-64 and qemuarm are fine except some textrel warnings for qemuarm.
Should I open new defects that?
--Kai
The following changes since commit a431e5aa572358ba61cf3c9e501f830263bdcd3d:
bitbake: data: Make expandKeys deterministic (2015-05-27 17:48:06 +0100)
are available in the git repository at:
git://git.yoctoproject.org/poky-contrib kangkai/CVEs
http://git.yoctoproject.org/cgit.cgi//log/?h=kangkai/CVEs
Kai Kang (5):
gpgme: fix CVE-2014-3564
grep: fix CVE-2015-1345
qt4: fix CVE issues
libav: upgrade to 9.18
libav: add recipe for 11 release series
.../grep/grep/grep-fix-CVE-2015-1345.patch | 154 +++++++++++++++++++++
meta/recipes-extended/grep/grep_2.21.bb | 3 +-
meta/recipes-multimedia/libav/libav.inc | 2 -
.../libav/libav/libav-fix-CVE-2014-9676.patch | 98 +++++++++++++
meta/recipes-multimedia/libav/libav_11.3.bb | 4 +
meta/recipes-multimedia/libav/libav_9.16.bb | 4 -
meta/recipes-multimedia/libav/libav_9.18.bb | 6 +
meta/recipes-qt/qt4/qt4-4.8.6.inc | 2 +
...Fixes-crash-in-bmp-and-ico-image-decoding.patch | 71 ++++++++++
.../0036-Fixes-crash-in-gif-image-decoder.patch | 39 ++++++
.../gpgme-1.4.3/gpgme-fix-CVE-2014-3564.patch | 56 ++++++++
meta/recipes-support/gpgme/gpgme_1.4.3.bb | 4 +-
12 files changed, 435 insertions(+), 8 deletions(-)
create mode 100644 meta/recipes-extended/grep/grep/grep-fix-CVE-2015-1345.patch
create mode 100644 meta/recipes-multimedia/libav/libav/libav-fix-CVE-2014-9676.patch
create mode 100644 meta/recipes-multimedia/libav/libav_11.3.bb
delete mode 100644 meta/recipes-multimedia/libav/libav_9.16.bb
create mode 100644 meta/recipes-multimedia/libav/libav_9.18.bb
create mode 100644 meta/recipes-qt/qt4/qt4-4.8.6/0035-Fixes-crash-in-bmp-and-ico-image-decoding.patch
create mode 100644 meta/recipes-qt/qt4/qt4-4.8.6/0036-Fixes-crash-in-gif-image-decoder.patch
create mode 100644 meta/recipes-support/gpgme/gpgme-1.4.3/gpgme-fix-CVE-2014-3564.patch
--
1.9.1
More information about the Openembedded-core
mailing list