mirrors/meta-openembedded
1
0
Fork 0
mirror of https://github.com/openembedded/meta-openembedded.git synced 2026-06-14 05:49:57 +00:00
Code Issues Projects Releases Wiki Activity
Files
f8a2a7e41ac86371dd2b2b95c94d29c335f8676d
meta-openembedded/meta-oe/recipes-extended
T
History
Armin Kuster 6be10fe608 redis: update to 5.0.14 
Bug fix only updates. see: https://raw.githubusercontent.com/antirez/redis/5.0/00-RELEASENOTES

Including these cves:

5.0.14
Security Fixes:
* (CVE-2021-41099) Integer to heap buffer overflow handling certain string
commands and network payloads, when proto-max-bulk-len is manually configured
to a non-default, very large value [reported by yiyuaner].
* (CVE-2021-32762) Integer to heap buffer overflow issue in redis-cli and
redis-sentinel parsing large multi-bulk replies on some older and less common
platforms [reported by Microsoft Vulnerability Research].
* (CVE-2021-32687) Integer to heap buffer overflow with intsets, when
set-max-intset-entries is manually configured to a non-default, very large
value [reported by Pawel Wieczorkiewicz, AWS].
* (CVE-2021-32675) Denial Of Service when processing RESP request payloads with
a large number of elements on many connections.
* (CVE-2021-32672) Random heap reading issue with Lua Debugger [reported by
Meir Shpilraien].
* (CVE-2021-32628) Integer to heap buffer overflow handling ziplist-encoded
data types, when configuring a large, non-default value for
hash-max-ziplist-entries, hash-max-ziplist-value, zset-max-ziplist-entries
or zset-max-ziplist-value [reported by sundb].
* (CVE-2021-32627) Integer to heap buffer overflow issue with streams, when
configuring a non-default, large value for proto-max-bulk-len and
client-query-buffer-limit [reported by sundb].
* (CVE-2021-32626) Specially crafted Lua scripts may result with Heap buffer
overflow [reported by Meir Shpilraien].

5.0.11
Integer overflow on 32-bit systems (CVE-2021-21309):
Redis 4.0 or newer uses a configurable limit for the maximum supported bulk
input size. By default, it is 512MB which is a safe value for all platforms.
If the limit is significantly increased, receiving a large request from a client
may trigger several integer overflow scenarios, which would result with buffer
overflow and heap corruption.

5.0.10
This release fixes a potential heap overflow when using a heap allocator other
than jemalloc or glibc's malloc. See:
https://github.com/redis/redis/pull/7963

Signed-off-by: Armin Kuster <akuster808@gmail.com>
2021-10-29 07:34:58 -07:00
..
boinc
boinc: update recipe to version 7.16.5
2020-02-27 08:25:49 -08:00
brotli
brotli: allow building a -native version
2020-03-03 09:23:08 -08:00
byacc
byacc: upgrade 20191125 -> 20200330
2020-04-08 08:15:03 -07:00
cfengine
cfengine: Add missing dep on bison-native
2020-03-29 17:32:20 -07:00
cmpi-bindings
cmpi-bindings: append PYTHON_ABI suffix to libpython soname
2020-01-10 00:50:59 -08:00
collectd
collectd: upgrade 5.10.0 -> 5.11.0
2020-04-08 08:15:03 -07:00
ddrescue
ddrescue: upgrade 1.24 -> 1.25
2020-03-15 16:36:28 -07:00
dialog
dialog: upgrade 1.3-20190728 -> 1.3-20190808
2019-11-06 19:58:01 -08:00
dlt-daemon
dlt-daemon: update from 2.18.6 to 2.18.7
2021-09-05 09:53:43 -07:00
docopt.cpp
docopt.cpp: Drop using gitpkgv
2019-08-29 09:06:54 -07:00
dumb-init
dumb-init: Switch to git fetcher
2019-07-21 09:40:20 -07:00
enscript
enscript/indent/sharutils: fix build with gettext 0.20.x
2019-12-20 16:01:19 -08:00
figlet
figlet: new package
2020-03-30 22:02:13 -07:00
fluentbit
fluentbit: Link with libatomic on riscv
2020-01-28 16:41:09 -08:00
gnuplot
gnuplot: upgrade 5.2.2 -> 5.2.8
2020-01-10 00:50:59 -08:00
haveged
haveged: upgrade 1.9.9 -> 1.9.13
2020-10-04 15:56:27 -07:00
hexedit
hiredis
hiredis: Upgrade to 0.14.0
2019-12-19 11:02:29 -08:00
hplip
hplip: use libexecdir
2020-11-09 19:43:29 -08:00
hwloc
hwloc: Clarify BSD license variant
2019-10-25 10:29:51 -07:00
icewm
icewm: upgrade 1.5.5 -> 1.6.5
2020-04-21 19:21:55 -07:00
indent
indent: delete meaningless line referring to "/usr/doc"
2020-03-18 15:33:49 -07:00
iotop
iotop: Switch to using git src_uri
2020-01-22 11:10:25 -08:00
isomd5sum
isomd5sum: fix "Nothing RPROVIDES" when multilib enabled
2019-07-11 14:01:28 -07:00
jansson
jansson: upgrade 2.12 -> 2.13.1
2020-05-28 21:37:18 -07:00
jpnevulator
jpnevulator: upgrade 2.3.4 -> 2.3.5
2020-07-01 08:01:32 -07:00
konkretcmpi
konkretcmpi: Depend on python3 during build
2020-01-24 09:25:35 -08:00
libblockdev
libblockdev: upgrade 2.23 -> 2.24
2020-07-01 08:01:10 -07:00
libcec
libcec: Update to 5.0.0
2020-04-28 16:24:07 -07:00
libconfig
libconfig: update to 1.7.2
2018-06-14 08:57:14 -07:00
libdivecomputer
libdivecomputer: Upgrade to 0.6.0
2019-11-01 17:22:52 -07:00
libexecinfo
libgxim
recipes: rename distro_features_check to features_check
2019-11-21 17:51:37 -08:00
libidn
libidn: Remove obsolete patches for issues already fixed upstream
2020-02-27 12:50:23 -08:00
libimobiledevice
libplist: Inherit python3targetconfig
2021-02-19 07:17:12 -08:00
liblightmodbus
liblightmodbus: Fix packaging errors when using multilib
2019-12-20 16:07:50 -08:00
liblockfile
liblockfile: Rename patch
2019-11-20 06:57:07 -08:00
liblogging
liblogging: Clarify BSD license variant
2019-10-25 10:29:51 -07:00
liblognorm
libmodbus
libmodbus: update version to 3.1.6
2019-08-29 09:06:54 -07:00
libnss-nisplus
libnss-nisplus: Upgrade to the latest upstream git
2019-11-01 17:22:52 -07:00
libpwquality
libpwquality: upgrade 1.4.0 -> 1.4.2
2020-03-02 22:46:06 -08:00
libqb
libqb: Build native version as well
2020-03-08 08:15:34 -07:00
libreport
recipes: rename distro_features_check to features_check
2019-11-21 17:51:37 -08:00
libserialport
libserialport: new package
2018-11-27 11:05:22 -08:00
libstatgrab
libstatgrab: fix upstream version check
2020-03-05 07:11:50 -08:00
libuio
libwmf
recipes: rename distro_features_check to features_check
2019-11-21 17:51:37 -08:00
libx86-1
libzip
libzip: upgrade 1.6.0 -> 1.6.1
2020-02-20 08:22:38 -08:00
lockfile-progs
lockfile-progs: upgrade 0.1.17 -> 0.1.18
2019-04-06 08:22:22 -07:00
logwatch
logwatch: upgrade 7.5.1 -> 7.5.3
2020-06-12 09:32:24 -07:00
lprng
mailx
mailx: support openssl 1.1.x
2018-09-25 22:24:15 -07:00
md5deep
md5deep: Upgrade to latest master
2018-09-08 13:32:12 -07:00
mraa
mraa: Disable python2, otherwise, there is a build error when enable multilib.
2020-07-12 19:20:37 -07:00
nana
recipes: Inherit missing texinfo for makeinfo program
2020-01-28 22:37:15 -08:00
nicstat
openlmi
recipes: Replace using BBPATH with BBFILE_COLLECTIONS for meta-python2 check
2020-01-22 19:21:39 -08:00
openwsman
recipes: rename distro_features_check to features_check
2019-11-21 17:51:37 -08:00
ostree
ostree: Do not check for meta-python
2021-07-25 13:36:44 -07:00
p7zip
p7zip: simplify recipe
2018-07-04 06:09:58 -07:00
p8platform
p8platform: update to 2.1.0.1
2018-10-05 14:51:14 -07:00
pam
recipes: Inherit perlnative for pod2man
2020-02-02 22:16:25 -08:00
pegtl
pegtl: upgrade 2.8.2 -> 2.8.3
2020-04-25 22:44:45 -07:00
perl
pmdk
pmdk: Clarify BSD license variant
2019-10-25 10:29:51 -07:00
polkit
recipes: rename distro_features_check to features_check
2019-11-21 17:51:37 -08:00
rarpd
redis
redis: update to 5.0.14
2021-10-29 07:34:58 -07:00
rrdtool
rrdtool: Use py3 as rdep and use py3 setuptools
2020-01-22 15:08:42 -08:00
rsyslog
rsyslog: Enable atomic builtins on rv32
2020-04-29 22:32:17 -07:00
sanlock
sanlock: Upgrade to 3.8.0+
2019-12-31 11:06:24 -08:00
sblim-cmpi-devel
sblim-sfc-common
sblim-sfc-common: use official SPDX license for EPL
2018-11-26 09:38:13 -08:00
sblim-sfcb
recipes: rename distro_features_check to features_check
2019-11-21 17:51:37 -08:00
sblim-sfcc
scsirastools
scsirastools: Clarify BSD license variant
2019-10-25 10:29:51 -07:00
sedutil
sedutil: fix compile errors on big endian architectures
2018-11-26 09:38:14 -08:00
sgpio
sigrok
libsigrok: inherit mime
2020-02-16 12:52:19 -08:00
smartmontools
smartmontools: Remove obsolete setting regarding the Standard Output
2020-10-04 16:29:17 -07:00
snappy
snappy: upgrade 1.1.7 -> 1.1.8
2020-02-21 08:50:36 -08:00
socketcan
can-utils: update to v2020.02.04
2020-02-27 08:25:49 -08:00
sysdig
sysdig: Do not depend on luaJIT for riscv
2020-04-19 11:55:06 -07:00
tipcutils
tipcutils: ptts: Set recv buffer size to max to receive as many packets as possible
2019-09-02 12:52:45 -07:00
tiptop
tiptop: Fix parallel build issues
2018-06-20 23:19:13 -07:00
tmux
tmux: fix upstream check URL
2020-04-11 08:00:20 -07:00
triggerhappy
recipes: Inherit perlnative for pod2man
2020-02-02 22:16:25 -08:00
uml-utilities
uml-utilities: fix installed-vs-shipped with usrmerge
2021-04-23 18:45:08 -07:00
upm
upm:Fix build error when enable multilib.
2020-07-12 19:20:37 -07:00
vlock
volume_key
volume-key: not create python2 bindings
2019-12-30 16:57:14 -08:00
wipe
wipe: update to 0.24
2019-09-16 07:10:03 -07:00
wxwidgets
wxwidgets: initial add 3.1.3
2020-04-01 15:11:15 -07:00
zlog
zlog: update to 1.2.14
2019-09-16 07:10:03 -07:00
zram
zram: fix sourcing of zram parameters
2021-01-28 16:59:02 -08:00
zstd
zstd: Upgrade 1.4.4 -> 1.4.5
2020-07-01 08:01:41 -07:00