mirrors/poky
1
0
Fork 0
mirror of https://git.yoctoproject.org/poky synced 2026-06-01 13:09:50 +00:00
Code Issues Projects Releases Wiki Activity
Files
yocto-2.7.2
poky/meta/recipes-extended
T
History
Changqing Li eb54600df1 sudo: fix CVE-2019-14287 
In Sudo before 1.8.28, an attacker with access to a Runas ALL sudoer
account can bypass certain policy blacklists and session PAM modules,
and can cause incorrect logging, by invoking sudo with a crafted user
ID. For example, this allows bypass of !root configuration, and USER=
logging, for a "sudo -u \#$((0xffffffff))" command.

(From OE-Core rev: 650dd9486d6e5410665d5376be30732c7625396d)

Signed-off-by: Changqing Li <changqing.li@windriver.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
(cherry picked from commit 4e11cd561f2bdaa6807cf02ee7c9870881826308)
Signed-off-by: Armin Kuster <akuster808@gmail.com>
(cherry picked from commit b1e0149c41e3c344a0496e64ab3b0c9dd4685ea4)
Signed-off-by: Armin Kuster <akuster808@gmail.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
2019-10-30 13:47:54 +00:00
..
acpica
Revert "acpica: use update-alternatives for acpidump"
2019-06-07 13:57:48 +01:00
asciidoc
asciidoc: use correct XML catalog path
2019-04-05 17:32:50 +01:00
at
at: upgrade to 3.1.23
2018-12-05 22:30:19 +00:00
bash
bash: Fix bash-ptest dependencies
2019-06-07 13:57:48 +01:00
bc
bc: use u-a for bc as well
2019-06-18 11:28:58 +01:00
blktool
blktool: remove a duplicate patch
2019-03-29 08:28:53 +00:00
bzip2
bzip2: fix CVE-2019-12900
2019-07-29 23:50:49 +01:00
chkconfig
chkconfig: replace fedorahosted.org SRC_URI with github.com source
2017-04-05 23:22:12 +01:00
cpio
cpio/tar/native.bbclass: move rmt to sbindir and add a prefix to avoid native clashing
2019-05-20 14:38:16 +01:00
cracklib
cronie
cronie: upgrade to 1.5.2
2018-06-18 11:07:57 +01:00
cups
cups: upgrade to 2.2.10
2019-02-20 11:30:35 +00:00
cwautomacros
diffutils
diffutils/run-ptest: support to run at arbitrary path
2019-06-30 22:34:22 +01:00
ed
ed: upgrade 1.14.2 -> 1.15
2019-01-18 16:24:40 +00:00
ethtool
ethtool: 4.17 -> 4.19
2018-11-23 23:35:19 +00:00
findutils
default-distrovars: Drop DISTRO_FEATURES_LIBC
2019-02-28 13:21:54 +00:00
foomatic
foomatic: Add HOMEPAGE info into recipe file.
2017-09-11 17:30:30 +01:00
gawk
gawk: fix command location in ptest script
2018-05-29 21:07:17 +01:00
ghostscript
ghostscript: fix CVE-2019-3839
2019-09-30 16:44:41 +01:00
go-examples
oe-core: take UPSTREAM_CHECK_COMMITS into use where possible
2017-11-30 10:49:22 +00:00
gperf
gperf: don't use aclocal.m4/acinclude.m4 dance
2017-12-10 22:45:19 +00:00
grep
grep: upgrade 3.1 -> 3.3
2019-02-19 16:14:57 +00:00
groff
groff: not search fonts on build host
2018-10-29 17:26:47 +00:00
gzip
gettext/flex/m4/bzip2/gzip/parted/slang/attr: Add make to -ptest packages
2019-06-07 13:57:48 +01:00
hdparm
hdparm: upgrade 9.56 -> 9.58
2019-02-19 16:14:57 +00:00
images
core-image-kernel-dev: add systemtap and dependencies
2019-03-07 12:27:34 +00:00
iptables
meta: Fix Deprecated warnings from regexs
2019-01-16 15:35:07 +00:00
iputils
iputils: upgrade to s20190629
2018-07-26 13:16:40 +01:00
less
less: upgrade 549 (terribly broken) -> 550
2019-03-29 08:28:53 +00:00
libaio
libaio: Extend to native
2018-11-14 11:14:39 +00:00
libarchive
libarchive: fix up CVE IDs in patches
2019-03-29 08:28:53 +00:00
libidn
libidn2: Fix libunistring detection
2018-08-20 17:38:22 +01:00
libmnl
libmnl: enable native
2017-12-02 11:25:32 +00:00
libnsl
libnsl2: Install into /usr/include and /usr/lib
2018-05-09 10:47:51 +01:00
libnss-nis
libnss-nis: Limit parse skip only for target recipe on musl
2018-07-05 11:39:06 +01:00
libpipeline
libpipeline: update to 1.5.1
2019-02-20 11:30:35 +00:00
libsolv
libsolv: use GNUInstallDirs
2019-04-02 15:24:11 +01:00
libtirpc
selftest/distrodata: un-break the upstream version check test
2019-01-11 10:39:08 +00:00
lighttpd
lighttpd: Use the upstream lighttpd.service
2019-02-25 10:43:06 +00:00
logrotate
logrotate: upgrade 3.14.0 -> 3.15.0
2019-01-11 10:39:09 +00:00
lsb
lsb: fix usrmerge install paths
2018-07-26 13:16:40 +01:00
lsof
lsof: Make it compatible with externalsrc
2018-10-10 17:59:09 +01:00
ltp
ltp: Fix setrlimit03 call succeeded unexpectedly
2019-05-12 09:13:38 +01:00
lzip
lzip: upgrade 1.20 -> 1.21
2019-02-19 16:14:57 +00:00
man-db
man-db: 2.8.3 -> 2.8.4
2018-11-14 11:14:39 +00:00
man-pages
man-pages: use alternatives to resolve crypt.3 conflict
2019-01-03 21:16:00 +00:00
mc
mc: upgrade 4.8.21 -> 4.8.22
2019-02-19 16:14:58 +00:00
mdadm
Revert "mdadm: fix gcc8 maybe-uninitialized/format-overflow warning"
2019-04-10 13:46:17 +01:00
mingetty
mingetty: fix usrmerge install path
2018-08-24 07:53:14 +01:00
minicom
minicom: remove dead URL from UPSTREAM_CHECK_URI
2018-07-06 22:59:33 +01:00
msmtp
msmtp: update to 1.6.6
2016-11-30 15:48:09 +00:00
net-tools
recipes: Remove tab indentations in python code
2018-11-23 23:35:19 +00:00
newt
libnewt-python: Add nativesdk
2018-06-27 13:55:21 +01:00
packagegroups
packagegroup-core-base-utils: remove lzip
2019-04-01 14:48:44 +01:00
pam
libpam: libpamc is licensed under its own BSD-style licence
2019-03-06 16:26:47 +00:00
parted
gettext/flex/m4/bzip2/gzip/parted/slang/attr: Add make to -ptest packages
2019-06-07 13:57:48 +01:00
pbzip2
pbzip2: fix upstream check URL
2018-05-15 10:56:49 +01:00
perl
perl/modules: Add various missing ptest perl module dependencies
2019-06-07 13:57:48 +01:00
pigz
pigz: use maintainer-built tarballs
2018-02-16 18:05:38 +00:00
procps
procps:3.3.14 -> 3.3.15
2018-07-15 16:16:16 +01:00
psmisc
psmisc: Fix dependency for USE_NLS=no
2019-09-30 16:44:41 +01:00
quota
quota: upgrade to 4.04
2017-11-21 13:06:11 +00:00
rpcbind
rpcbind: 0.2.4 -> 1.2.5
2018-11-14 11:14:40 +00:00
rpcsvc-proto
rpcsvc-proto: Update to 1.4
2018-05-29 21:07:17 +01:00
screen
screen: Add virtual/crypt dependency
2018-08-15 09:44:33 +01:00
sed
sed-ptest: improve reproducibility
2018-01-05 11:55:35 +00:00
shadow
shadow: Backport last change reproducibility
2019-06-07 13:57:48 +01:00
slang
gettext/flex/m4/bzip2/gzip/parted/slang/attr: Add make to -ptest packages
2019-06-07 13:57:48 +01:00
stress
meta: Add/fix missing Upstream-Status to patches
2017-06-27 10:38:43 +01:00
sudo
sudo: fix CVE-2019-14287
2019-10-30 13:47:54 +00:00
sysklogd
sysklogd: switch SRC_URI to the new, maintained location
2019-03-29 08:28:53 +00:00
sysstat
sysstat: upgrade to 12.1.3
2019-02-20 11:37:37 +00:00
tar
Tar: Security fix CVE-2019-0023
2019-06-07 13:57:48 +01:00
tcp-wrappers
tcp-wrapper: Use external libnsl
2018-05-09 10:47:51 +01:00
texi2html
texi2html: Add a dependency on perl
2017-06-23 11:44:14 +01:00
texinfo
texinfo: upgrade to 6.5
2017-11-05 22:33:22 +00:00
texinfo-dummy-native
texinfo-dummy-native: Rewrite template.py to use argparse
2019-06-30 22:34:23 +01:00
time
time:1.8 -> 1.9
2018-05-04 13:28:05 +01:00
timezone
tzdata: Install everything by default
2019-04-03 14:50:13 +01:00
unzip
unzip: Fix CVE-2019-13232
2019-10-08 22:51:35 +01:00
watchdog
watchdog: fix init script for sysvinit
2018-06-18 11:07:57 +01:00
wget
wget: fix CVE-2019-5953
2019-07-29 23:50:49 +01:00
which
which: fix it so the manpage will respect alternatives
2017-03-17 16:53:04 +00:00
xdg-utils
xdg-utils: upgrade to 1.1.3
2018-06-18 11:07:57 +01:00
xinetd
xinetd: Fix systemd service for systemd>237
2018-06-15 17:56:24 +01:00
xz
xz: upgrade 5.2.3 -> 5.2.4
2018-07-24 11:52:26 +01:00
zip
selftest: fix distrodata.py to use per-recipe UPSTREAM_VERSION_UNKNOWN setting
2017-08-16 00:03:13 +01:00