Buildroot https://git.etezian.org/cgit.cgi/buildroot.git/atom?h=master 2016-08-18T08:57:45+00:00 2016-08-18T08:57:45+00:00 Baruch Siach baruch@tkos.co.il 2016-08-18T07:39:11+00:00 urn:sha1:4debfc914b6b94a41f8b8d53c452010032d048c2 Fixes CVE-2016-6313: An attacker who obtains 580 bytes from the standard RNG can trivially predict the next 20 bytes of output. Add cryptographically secure sha256 hash. Signed-off-by: Baruch Siach <baruch@tkos.co.il> Signed-off-by: Peter Korsgaard <peter@korsgaard.com> 2016-08-05T07:17:33+00:00 Waldemar Brodkorb wbx@openadk.org 2016-07-31T08:27:19+00:00 urn:sha1:63c5a63acac345cad3bbd53edb007042e5fc2a5c Fixes: http://autobuild.buildroot.net/results/d25425cff055a14b9285cefb0775bc138eb2f914/ Signed-off-by: Waldemar Brodkorb <wbx@openadk.org> Signed-off-by: Peter Korsgaard <peter@korsgaard.com> 2015-12-20T21:49:04+00:00 Gustavo Zacarias gustavo@zacarias.com.ar 2015-12-20T20:23:31+00:00 urn:sha1:aee96dcc61ee72f0983f283b6599d95be03269d8 Signed-off-by: Gustavo Zacarias <gustavo@zacarias.com.ar> Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com> 2015-07-02T15:30:24+00:00 Peter Korsgaard peter@korsgaard.com 2015-07-02T15:30:24+00:00 urn:sha1:a6a2962d998c82f888957fb19bd2933bbf73f92d Similar to our RSA option. Enabling this adds ~17K to the gpg binary (ARMv7): ls -lah output/target/usr/bin/gpg{.orig,} -rwxr-xr-x 1 peko peko 532K Jul 2 17:29 output/target/usr/bin/gpg -rwxr-xr-x 1 peko peko 515K Jul 2 17:29 output/target/usr/bin/gpg.orig Signed-off-by: Peter Korsgaard <peter@korsgaard.com> 2015-02-28T12:04:04+00:00 Gustavo Zacarias gustavo@zacarias.com.ar 2015-02-28T11:09:13+00:00 urn:sha1:b6997c8e4c93ab4385c666d982d573f5e6f641fe Fixes: CVE-2014-3591 - Use ciphertext blinding for Elgamal decryption CVE-2015-0837 - Fixed data-dependent timing variations in modular exponentiation. Signed-off-by: Gustavo Zacarias <gustavo@zacarias.com.ar> Signed-off-by: Peter Korsgaard <peter@korsgaard.com> 2014-12-01T22:22:34+00:00 Thomas Petazzoni thomas.petazzoni@free-electrons.com 2014-11-30T14:18:23+00:00 urn:sha1:05ef5316d0f6a74187cad0d0778f12ac044f8517 The target-finalize target in the main Makefile removes $(TARGET_DIR)/usr/share/man entirely, so there's no point in having some package specific logic to remove man pages. Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com> Acked-by: "Yann E. MORIN" <yann.morin.1998@free.fr> Signed-off-by: Peter Korsgaard <peter@korsgaard.com> 2014-10-07T10:30:14+00:00 Gustavo Zacarias gustavo@zacarias.com.ar 2014-10-06T20:03:41+00:00 urn:sha1:62e808206db54cbcd02a62e2c982e0a932bcd15d Signed-off-by: Gustavo Zacarias <gustavo@zacarias.com.ar> Signed-off-by: Peter Korsgaard <peter@korsgaard.com> 2014-10-04T16:54:16+00:00 Thomas De Schampheleire patrickdepinguin@gmail.com 2014-09-27T19:32:44+00:00 urn:sha1:aaffd209fae91a733fe0becb72268f87bf4ea369 To be consistent with the recent change of FOO_MAKE_OPT into FOO_MAKE_OPTS, make the same change for FOO_CONF_OPT. Sed command used: find * -type f | xargs sed -i 's#_CONF_OPT\>#&S#g' Signed-off-by: Thomas De Schampheleire <thomas.de.schampheleire@gmail.com> Reviewed-by: "Yann E. MORIN" <yann.morin.1998@free.fr> Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com> 2014-07-23T21:32:44+00:00 Vicente Olivert Riera Vincent.Riera@imgtec.com 2014-06-06T13:44:28+00:00 urn:sha1:2cadb26e6d4267998e6927bd5b972b2cffeb19e0 Signed-off-by: Vicente Olivert Riera <Vincent.Riera@imgtec.com> Reviewed-by: Markos Chandras <Markos.Chandras@imgtec.com> Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com> 2014-07-17T21:44:43+00:00 Gustavo Zacarias gustavo@zacarias.com.ar 2014-07-17T21:13:49+00:00 urn:sha1:90bb58d74bcc8d7739b6ec8f6763033064b717ec Fixes CVE-2014-4617 (The do_uncompress function in g10/compress.c allows context-dependent attackers to cause a denial of service (infinite loop) via malformed compressed packets, as demonstrated by an a3 01 5b ff byte sequence. Signed-off-by: Gustavo Zacarias <gustavo@zacarias.com.ar> Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com>