aboutsummaryrefslogtreecommitdiff
path: root/package
Commit message (Collapse)AuthorAgeFilesLines
* boot, package: use SPDX short identifier for GPLv3/GPLv3+Gravatar Rahul Bedarkar2017-04-01156-171/+171
| | | | | | | | | | | | We want to use SPDX identifier for license string as much as possible. SPDX short identifier for GPLv3/GPLv3+ is GPL-3.0/GPL-3.0+. This change is done using following command. find . -name "*.mk" | xargs sed -ri '/LICENSE( )?[\+:]?=/s/\<GPLv3\>/GPL-3.0/g' Signed-off-by: Rahul Bedarkar <rahulbedarkar89@gmail.com> Acked-by: Arnout Vandecappelle (Essensium/Mind) <arnout@mind.be> Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com>
* boot, linux, package: use SPDX short identifier for GPLv2/GPLv2+Gravatar Rahul Bedarkar2017-04-01631-642/+642
| | | | | | | | | | | We want to use SPDX identifier for license strings as much as possible. SPDX short identifier for GPLv2/GPLv2+ is GPL-2.0/GPL-2.0+. This change is done by using following command. find . -name "*.mk" | xargs sed -ri '/LICENSE( )?[\+:]?=/s/\<GPLv2\>/GPL-2.0/g' Signed-off-by: Rahul Bedarkar <rahulbedarkar89@gmail.com> Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com>
* package: use SPDX short identifier for GPLv1/GPLv1+Gravatar Rahul Bedarkar2017-04-0137-37/+37
| | | | | | | | | | | | We want to use SPDX identifier for licenses as much as possible. SPDX short identifier for GPLv1/GPLv1+ is GPL-1.0/GPL-1.0+. This change is done using following command. find . -name "*.mk" | xargs sed -ri '/LICENSE( )?[\+:]?=/s/GPLv1(\+)?/GPL-1.0\1/g' Signed-off-by: Rahul Bedarkar <rahulbedarkar89@gmail.com> Acked-by: Arnout Vandecappelle (Essensium/Mind) <arnout@mind.be> Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com>
* xorriso: bump version to 1.4.6Gravatar Benoît Allard2017-04-013-22/+2
| | | | | | | Patch 0001-fix-musl-build is removed, as it has been applied upstream. Signed-off-by: Benoît Allard <benoit.allard@greenbone.net> Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com>
* libiio: don't force specific backends when enabling testsGravatar Paul Cercueil2017-04-011-3/+0
| | | | | | | | The test programs will compile just fine even when none of the backends are enabled. Signed-off-by: Paul Cercueil <paul.cercueil@analog.com> Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com>
* package/xenomai: enable armv5tej supportGravatar Romain Naour2017-04-011-0/+32
| | | | | | | | | | | | Apply a patch from Xenomai 2.6 [1]. Fixes: http://autobuild.buildroot.net/results/762/7623410a81b1587b33b4f4b9cf1572c872b8a6e9/build-end.log [1] https://git.xenomai.org/xenomai-2.6.git/commit/?id=ebc2779baa222db4a5936c3d3022803355585b8c Signed-off-by: Romain Naour <romain.naour@gmail.com> Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com>
* package/synergy: fix install when building in debugGravatar Pieterjan Camerlynck2017-04-011-0/+33
| | | | | | | | | | | Synergy places it's executables in another location when building in debug. Patch CMakeLists.txt to disable the behavior. Fixes: http://autobuild.buildroot.net/results/22d4d9a5d4363b1c9f3074f287b1383a366e0ce9 Signed-off-by: Pieterjan Camerlynck <pieterjan.camerlynck@gmail.com> Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com>
* package/xenomai: remove sh4 supportGravatar Romain Naour2017-04-011-1/+1
| | | | | | | | | | sh4 target support has been removed since Xenomai 3.x. Fixes: http://autobuild.buildroot.net/results/a81/a8125847367de5fd27156e5cba9ec7315c2ccd5d/build-end.log Signed-off-by: Romain Naour <romain.naour@gmail.com> Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com>
* package/lensfun: fix static only buildGravatar Romain Naour2017-04-011-0/+6
| | | | | | | | | | Build lensfun.a for static only build. Fixes: http://autobuild.buildroot.net/results/63e/63e7700a242c7c28ede0fe0b6a63db288e73e974/build-end.log Signed-off-by: Romain Naour <romain.naour@gmail.com> Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com>
* package/systemd: fix build on not-recent distrosGravatar Yann E. MORIN2017-04-011-0/+40
| | | | | | | | | | | | | | | | | systemd is at it again, using ln --relative once more, which is not available but on the most recent distros. Patch it out with a bit of sed magic. Fixes: http://autobuild.buildroot.org/results/48e/48ecf31eca9b22339a770abd3f9abdf1ae41cfd3/ http://autobuild.buildroot.org/results/c62/c6297c61d8c2d3ab9be77b9d398598adacdb33b3/ http://autobuild.buildroot.org/results/22f/22ff106a4626c84422d9a3e69aa9c8fe7c76938c/ ... Signed-off-by: "Yann E. MORIN" <yann.morin.1998@free.fr> Cc: Maxime Hadjinlian <maxime.hadjinlian@gmail.com> Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com>
* python: re-add patch mistakenly removedGravatar Thomas Petazzoni2017-04-011-0/+37
| | | | | | | | | | | | As noticed by André Hentschel <nerv@dawncrow.de>, commit 652076293235276e2f978fe377322a6cbd615455 ("python: move to Git formatted patches") mistakenly removed 018-fix-add-gcc-paths-logic.patch. This causes bug #7971 to re-appear. To fix this, we re-introduce the missing patch. Reported-by: André Hentschel <nerv@dawncrow.de> Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com>
* audiofile: add security patch for CVE-2017-6839Gravatar Peter Korsgaard2017-03-311-0/+122
| | | | | | | | | | | Integer overflow in modules/MSADPCM.cpp in Audio File Library (aka audiofile) 0.3.6 allows remote attackers to cause a denial of service (crash) via a crafted file. https://blogs.gentoo.org/ago/2017/02/20/audiofile-multiple-ubsan-crashes/ https://github.com/mpruett/audiofile/issues/41 Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
* audiofile: add security patch for CVE-2017-6831Gravatar Peter Korsgaard2017-03-311-0/+42
| | | | | | | | | | | Heap-based buffer overflow in the decodeBlockWAVE function in IMA.cpp in Audio File Library (aka audiofile) 0.3.6 allows remote attackers to cause a denial of service (crash) via a crafted file. https://blogs.gentoo.org/ago/2017/02/20/audiofile-heap-based-buffer-overflow-in-imadecodeblockwave-ima-cpp https://github.com/mpruett/audiofile/issues/35 Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
* audiofile: add security patch for CVE-2017-6830 / CVE-2017-6834 / ↵Gravatar Peter Korsgaard2017-03-311-0/+72
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | CVE-2017-6836 / CVE-2017-6838 CVE-2017-6830: A heap-based buffer overflow in the alaw2linear_buf function in G711.cpp in Audio File Library (aka audiofile) 0.3.6 allows remote attackers to cause a denial of service (crash) via a crafted file. https://blogs.gentoo.org/ago/2017/02/20/audiofile-heap-based-buffer-overflow-in-alaw2linear_buf-g711-cpp https://github.com/mpruett/audiofile/issues/34 CVE-2017-6834: A heap-based buffer overflow in the ulaw2linear_buf function in G711.cpp in Audio File Library (aka audiofile) 0.3.6 allows remote attackers to cause a denial of service (crash) via a crafted file. https://blogs.gentoo.org/ago/2017/02/20/audiofile-heap-based-buffer-overflow-in-ulaw2linear_buf-g711-cpp https://github.com/mpruett/audiofile/issues/38 CVE-2017-6836: A heap-based buffer overflow in the Expand3To4Module::run function in libaudiofile/modules/SimpleModule.h in Audio File Library (aka audiofile) 0.3.6 allows remote attackers to cause a denial of service (crash) via a crafted file. https://blogs.gentoo.org/ago/2017/02/20/audiofile-heap-based-buffer-overflow-in-expand3to4modulerun-simplemodule-h https://github.com/mpruett/audiofile/issues/40 CVE-2017-6838: Integer overflow in sfcommands/sfconvert.c in Audio File Library (aka audiofile) 0.3.6 allows remote attackers to cause a denial of service (crash) via a crafted file. https://blogs.gentoo.org/ago/2017/02/20/audiofile-multiple-ubsan-crashes/ https://github.com/mpruett/audiofile/issues/41 Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
* audiofile: add security patch for CVE-2017-6829Gravatar Peter Korsgaard2017-03-311-0/+39
| | | | | | | | | | | The decodeSample function in IMA.cpp in Audio File Library (aka audiofile) 0.3.6 allows remote attackers to cause a denial of service (crash) via a crafted file. https://blogs.gentoo.org/ago/2017/02/20/audiofile-global-buffer-overflow-in-decodesample-ima-cpp https://github.com/mpruett/audiofile/issues/33 Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
* audiofile: add security patch for CVE-2017-6827 / CVE-2017-6828 / ↵Gravatar Peter Korsgaard2017-03-311-0/+36
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | CVE-2017-6832 / CVE-2017-6833 / CVE-2017-6835 / CVE-2017-6837 CVE-2017-6827: A heap-based buffer overflow in the MSADPCM::initializeCoefficients function in MSADPCM.cpp in audiofile (aka libaudiofile and Audio File Library) 0.3.6 allows remote attackers to have unspecified impact via a crafted audio file. https://blogs.gentoo.org/ago/2017/02/20/audiofile-heap-based-buffer-overflow-in-msadpcminitializecoefficients-msadpcm-cpp https://github.com/mpruett/audiofile/issues/32 CVE-2017-6828: A Heap-based buffer overflow in the readValue function in FileHandle.cpp in audiofile (aka libaudiofile and Audio File Library) 0.3.6 allows remote attackers to have unspecified impact via a crafted WAV file. https://blogs.gentoo.org/ago/2017/02/20/audiofile-heap-based-buffer-overflow-in-readvalue-filehandle-cpp https://github.com/mpruett/audiofile/issues/31 CVE-2017-6832: A Heap-based buffer overflow in the decodeBlock in MSADPCM.cpp in Audio File Library (aka audiofile) 0.3.6 allows remote attackers to cause a denial of service (crash) via a crafted file. https://blogs.gentoo.org/ago/2017/02/20/audiofile-heap-based-buffer-overflow-in-msadpcmdecodeblock-msadpcm-cpp https://github.com/mpruett/audiofile/issues/36 CVE-2017-6833: The runPull function in libaudiofile/modules/BlockCodec.cpp in Audio File Library (aka audiofile) 0.3.6 allows remote attackers to cause a denial of service (divide-by-zero error and crash) via a crafted file. https://blogs.gentoo.org/ago/2017/02/20/audiofile-divide-by-zero-in-blockcodecrunpull-blockcodec-cpp https://github.com/mpruett/audiofile/issues/37 CVE-2017-6835: The reset1 function in libaudiofile/modules/BlockCodec.cpp in Audio File Library (aka audiofile) 0.3.6 allows remote attackers to cause a denial of service (divide-by-zero error and crash) via a crafted file. https://blogs.gentoo.org/ago/2017/02/20/audiofile-divide-by-zero-in-blockcodecreset1-blockcodec-cpp https://github.com/mpruett/audiofile/issues/39 CVE-2017-6837: WAVE.cpp in Audio File Library (aka audiofile) 0.3.6 allows remote attackers to cause a denial of service (crash) via vectors related to a large number of coefficients. http://blogs.gentoo.org/ago/2017/02/20/audiofile-multiple-ubsan-crashes/ https://github.com/mpruett/audiofile/issues/41 Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
* pcre: add upstream security fixesGravatar Baruch Siach2017-03-312-0/+81
| | | | | | | | | | | | | Take Debian adapted patches of upstream. Fixes: CVE-2017-6004: crafted regular expression may cause denial of service CVE-2017-7186: invalid Unicode property lookup may cause denial of service Signed-off-by: Baruch Siach <baruch@tkos.co.il> Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
* package/coreutils: remove legacy commentGravatar Yann E. MORIN2017-03-311-3/+0
| | | | | | | | | | | | | This comment was added in 2007 (e4c6340a: cleanup and fixes), back when removing a package was (seemingly) supported. This ability was lost when coreutils was converted to autotarget in 2010 (386183f: coreutils: convert to autotarget), but the comment stuck. Get rid of it: it nowadays does not make sense and is a bit confusing. Signed-off-by: "Yann E. MORIN" <yann.morin.1998@free.fr> Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
* dc3dd: upcase the autoreconf valueGravatar Benoît Allard2017-03-311-1/+1
| | | | | Signed-off-by: Benoît Allard <benoit.allard@greenbone.net> Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
* libmediaart: fix qt5 buildGravatar Fabrice Fontaine2017-03-301-1/+1
| | | | | | | Use BR2_PACKAGE_QT5_VERSION_LATEST instead of BR2_QT5_VERSION_LATEST Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com> Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com>
* linux-headers: bump 4.{4, 9, 10}.x seriesGravatar Fabio Estevam2017-03-301-3/+3
| | | | | Signed-off-by: Fabio Estevam <festevam@gmail.com> Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com>
* libmediaart: new packageGravatar Fabrice Fontaine2017-03-294-0/+87
| | | | | | | | | | Library tasked with managing, extracting and handling media art caches https://github.com/GNOME/libmediaart Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com> [Thomas: add entry to DEVELOPERS file, fix license file.] Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com>
* arch, linux, package: remove whitespacesGravatar Bernd Kuhls2017-03-2914-69/+69
| | | | | | | | | | | | Whitespaces were searched using the following regex: [ ]{1,}\t and then manually removed in most of the cases. For xserver_xorg-server.mk, tabs before backslashes were removed. Signed-off-by: Bernd Kuhls <bernd.kuhls@t-online.de> Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com>
* system: do not overwrite /bin/sh Busybox symlinkGravatar Thomas Petazzoni2017-03-291-0/+2
| | | | | | | | | | | | | | | | | | | | | | The BR2_SYSTEM_BIN_SH hidden option defines to what binary the /bin/sh symlinks should point to. If busybox is chosen, then /bin/sh is created to point to /bin/busybox. This works fine with the default installation mode of Busybox, but it fails with the upcoming "individual binaries" mode, in which each applet is installed as its own binary, and /bin/busybox doesn't exist: we get /bin/sh as a broken symlink to /bin/busybox. Since Busybox already installs its own /bin/sh symlink, properly pointing to /bin/ash or /bin/hush depending on the selected shell, it doesn't make sense for the BR2_SYSTEM_BIN_SH logic to override this. Just let Busybox install its own /bin/sh by making BR2_SYSTEM_BIN_SH empty when Busybox shell is selected as /bin/sh. Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com> Reviewed-by: Matthew Weber <matthew.weber@rockwellcollins.com> Acked-by: Arnout Vandecappelle (Essensium/Mind) <arnout@mind.be> Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com>
* dc3dd: new packageGravatar Benoît Allard2017-03-295-0/+51
| | | | | | | | | We actually prefer the version 7.2.641 (over 7.2.646) as the content of the release is identical and the 641 has the advantage of providing a proper .tar.xz file. Signed-off-by: Benoît Allard <benoit.allard@greenbone.net> Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com>
* package/synergy: bump to version 1.8.5Gravatar Pieterjan Camerlynck2017-03-297-282/+117
| | | | | | | | | | | | | | | | | | | | The project moved from SourceForge to GitHub. The buildsystem changed from autotools to CMake. Removed patches: - 0001-includes.patch Not needed anymore, was fixed upstream. - 0002-remove-werror.patch Autotools patch, no longer applicable. - 0003-Fix-build-with-gcc-6.patch This patch was applied upstream: https://github.com/symless/synergy/commit/3d963bfbe7897d0a33ad477c06a6341c7708780d Add patch to disable building of tests and allow building without gtest. Signed-off-by: Pieterjan Camerlynck <pieterjan.camerlynck@gmail.com> Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com>
* xenomai: fix license files variableGravatar Thomas Petazzoni2017-03-291-1/+1
| | | | | | | | | | | | | In commit 472b07ea8ff1cd341c5f97508e5c29266146fa51 ("xenomai: bump version to 3.0.3"), the XENOMAI_LICENSE_FILES variable was not updated, causing a number of build failures. This commit fixes that to point to existing files. Fixes: http://autobuild.buildroot.net/results/f2cd7cd1f8bcf67c66fb713ef6b03f1f01a74dc5/ Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com>
* shairport-sync: requires C++Gravatar Baruch Siach2017-03-291-2/+3
| | | | | | | | | | Fixes: http://autobuild.buildroot.net/results/122/122d6cedf0205e8db27d498d6a2a839e11e7b6f2/ http://autobuild.buildroot.net/results/bef/bef5fb328e6688107496cb213d8aeeca527abf03/ Cc: Jörg Krause <joerg.krause@embedded.rocks> Signed-off-by: Baruch Siach <baruch@tkos.co.il> Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com>
* ntfs-3g: bump version to 2017.3.23Gravatar Vicente Olivert Riera2017-03-293-47/+2
| | | | | | | And remove patches already included in this release. Signed-off-by: Vicente Olivert Riera <Vincent.Riera@imgtec.com> Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com>
* lvm2: bump version to 2.02.169Gravatar Vicente Olivert Riera2017-03-292-2/+2
| | | | | Signed-off-by: Vicente Olivert Riera <Vincent.Riera@imgtec.com> Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com>
* cups: bump version to 2.2.3Gravatar Vicente Olivert Riera2017-03-292-2/+2
| | | | | Signed-off-by: Vicente Olivert Riera <Vincent.Riera@imgtec.com> Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com>
* cjson: bump version to v1.4.5Gravatar Vicente Olivert Riera2017-03-292-2/+2
| | | | | Signed-off-by: Vicente Olivert Riera <Vincent.Riera@imgtec.com> Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com>
* lvm2: add homepage linkGravatar Baruch Siach2017-03-291-0/+2
| | | | | Signed-off-by: Baruch Siach <baruch@tkos.co.il> Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com>
* package/lensfun: new packageGravatar Romain Naour2017-03-284-0/+76
| | | | | | | Signed-off-by: Romain Naour <romain.naour@gmail.com> Cc: Jeremy Rosen <jeremy.rosen@enst-bretagne.fr> [Thomas: add missing select BR2_PACKAGE_LIBGLIB2, noticed by Baruch.] Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com>
* gdb: pass gdb_cv_prfpregset_t_broken=noGravatar Arnout Vandecappelle2017-03-281-1/+15
| | | | | | | | | | | | | | | | | Starting with glibc 2.25, the proc_service.h header has been copied from gdb to glibc so other tools can use it. However, that makes it necessary to make sure that declaration of prfpregset_t declaration is consistent between gdb and glibc. In gdb, however, there is a workaround for a broken prfpregset_t declaration in glibc 2.3 which uses AC_TRY_RUN to detect if it's needed, which doesn't work in cross-compilation. So pass the cache option to configure. It needs to be passed to GDB_CONF_ENV to build gdbserver only but also to GDB_MAKE_ENV, because otherwise it does not get passed to the configure script of nested packages while building gdbserver with full debugger. Signed-off-by: Arnout Vandecappelle (Essensium/Mind) <arnout@mind.be> Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com>
* gdb: add upstream patch to fix inconsistency with glibc headerGravatar Arnout Vandecappelle2017-03-282-0/+676
| | | | | | | | | | | | | | In glibc 2.25, the proc_service.h header was copied from gdb to glibc. However, in the process the 'const' was removed, which leads to build failures with glibc >= 2.25. gdb 7.12.1 already contains this patch. The patch for 7.11.1 comes straight from upstream, the patch for 7.10.1 is backported by me. Fixes http://autobuild.buildroot.net/results/6b1b44e72147113b3f0e3f049cb9026d6c7dffb7 Signed-off-by: Arnout Vandecappelle (Essensium/Mind) <arnout@mind.be> Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com>
* syslog-ng: Bump version header in conf file to 3.9Gravatar Pawel Sikora2017-03-281-1/+1
| | | | | | | | | | Package version of syslog-ng is 3.9.1. Bumping version number in syslog-ng.conf to 3.9 Fixing warning message about configuration file being too old. Signed-off-by: Pawel Sikora <sikor6@gmail.com> Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com>
* python-ubjson: bump version to 0.9.0Gravatar Vicente Olivert Riera2017-03-282-4/+4
| | | | | Signed-off-by: Vicente Olivert Riera <Vincent.Riera@imgtec.com> Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com>
* gdk-pixbuf: bump version to 2.36.6Gravatar Vicente Olivert Riera2017-03-282-3/+3
| | | | | Signed-off-by: Vicente Olivert Riera <Vincent.Riera@imgtec.com> Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com>
* package/gdb: fix gdb-7.12.1 build on xtensaGravatar Max Filippov2017-03-281-0/+39
| | | | | | | | | | | | This fixes the following gdb-7.12.1 build error on xtensa architecture: gdb/xtensa-linux-nat.c: In function 'void fetch_gregs(regcache*, ptid_t, int)': gdb/xtensa-linux-nat.c:178:23: error: uninitialized const 'regs' [-fpermissive] const gdb_gregset_t regs; Backported from: d274ecf4ddf76768af57e27f654b9ce6784b391c Signed-off-by: Max Filippov <jcmvbkbc@gmail.com> Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com>
* powerpc-utils: Bump to v1.3.3Gravatar Sam Mendoza-Jonas2017-03-282-2/+2
| | | | | | | | | In particular this includes commit d63e12a "nvram:read list of partion names dynamically" which fixes an issue preventing the nvram tool from writing to certain partitions. Signed-off-by: Samuel Mendoza-Jonas <sam@mendozajonas.com> Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com>
* leptonica: fix static build issueGravatar Gilles Talis2017-03-282-0/+48
| | | | | | | | | | | | | | | | leptonica configure script does not use pkg-config to find the TIFF library, so it doesn't know about the transitive dependencies of the TIFF library. Switching to PKG_CHECK_MODULES() to discover the library solves the issue. Fixes: http://autobuild.buildroot.net/results/8dd2bcc41e861bdd324dd081e39925964d1ac428 http://autobuild.buildroot.net/results/ec7366d69b00625b652915fa58e3143f1bdcaf62 http://autobuild.buildroot.net/results/0cd74312a39e3bc59d15789a4c0a891f0f417b8c http://autobuild.buildroot.net/results/35f9a0f2db30dd62733142f0fcfa72699452583f http://autobuild.buildroot.net/results/f7ea889b2fb96ff7de492e282820c800187573cb Signed-off-by: Gilles Talis <gilles.talis@gmail.com> Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com>
* package/pcsc-lite: enable systemd socket activationGravatar Pieterjan Camerlynck2017-03-281-0/+6
| | | | | | | | | pcsc-lite installs systemd service files, but they are not used. Enable pcscd.socket so that systemd starts the daemon when the first client connects. Signed-off-by: Pieterjan Camerlynck <pieterjan.camerlynck@gmail.com> Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com>
* git: bump version to 2.12.2Gravatar Vicente Olivert Riera2017-03-282-2/+2
| | | | | Signed-off-by: Vicente Olivert Riera <Vincent.Riera@imgtec.com> Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com>
* imagemagick: bump version to 7.0.5-4Gravatar Vicente Olivert Riera2017-03-282-2/+2
| | | | | Signed-off-by: Vicente Olivert Riera <Vincent.Riera@imgtec.com> Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com>
* mesa3d: drop unneeded libsha1 logic from Config.inGravatar Peter Korsgaard2017-03-281-4/+0
| | | | | | | | | Commit 7f4e9490b647 (package/mesa3d: remove sha1 external dependency) removed the --with-sha1 logic from mesa3d.mk, but didn't remove the corresponding logic / comment from Config.in. Signed-off-by: Peter Korsgaard <peter@korsgaard.com> Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com>
* samba4: security bump to version 4.5.7Gravatar Peter Korsgaard2017-03-282-2/+2
| | | | | | | | | | | | | | | | | | | | | | | | | | | Fixes CVE-2017-2619: All versions of Samba prior to 4.6.1, 4.5.7, 4.4.11 are vulnerable to a malicious client using a symlink race to allow access to areas of the server file system not exported under the share definition. Samba uses the realpath() system call to ensure when a client requests access to a pathname that it is under the exported share path on the server file system. Clients that have write access to the exported part of the file system via SMB1 unix extensions or NFS to create symlinks can race the server by renaming a realpath() checked path and then creating a symlink. If the client wins the race it can cause the server to access the new symlink target after the exported share path check has been done. This new symlink target can point to anywhere on the server file system. This is a difficult race to win, but theoretically possible. Note that the proof of concept code supplied wins the race reliably only when the server is slowed down using the strace utility running on the server. Exploitation of this bug has not been seen in the wild. Signed-off-by: Peter Korsgaard <peter@korsgaard.com> Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com>
* taglib: fix legal infoGravatar Rahul Bedarkar2017-03-261-1/+1
| | | | | | | | | | taglib is dual licensed under LGPLv2.1 or MPLv1.1. Almost all source files have license text mentioning LGPLv2.1 or alternatively MPLv1.1. Signed-off-by: Rahul Bedarkar <rahul.bedarkar@imgtec.com> [Thomas: use MPL-1.1 instead of MPLv1.1, since MPL-1.1 is the SPDX license code for this license.] Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com>
* dbus-triggerd: add license fileGravatar Rahul Bedarkar2017-03-261-0/+1
| | | | | | | | In absence of license file, use source file as a license file since it has license header in comments. Signed-off-by: Rahul Bedarkar <rahul.bedarkar@imgtec.com> Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com>
* dbus-glib: fix legal infoGravatar Rahul Bedarkar2017-03-261-1/+1
| | | | | | | | dbus glib bindings are dual licensed under AFLv2.1 or GPLv2+. Separate licenses using 'or' keyword. Signed-off-by: Rahul Bedarkar <rahul.bedarkar@imgtec.com> Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com>