Fixes CVE-2014-4040: A local attacker could obtain sensitive information from
the generated archive such as plain text passwords.
Yes, version 1.2.24 seems to be newer than 1.4, which is equivalent to 1.2.20.
Also, switch from git clone to tarball download , and add a .hash file.
The configure script seems to misdetect stack smashing protection support in
the toolchain. gcc accepts -fstack_protector_all, but the linker complains:
"ld: cannot find -lssp".
Cc: Jeremy Kerr <jk@ozlabs.org>
Signed-off-by: Baruch Siach <baruch@tkos.co.il>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com>
To be consistent with the recent change of FOO_MAKE_OPT into FOO_MAKE_OPTS,
make the same change for FOO_CONF_OPT.
Sed command used:
find * -type f | xargs sed -i 's#_CONF_OPT\>#&S#g'
Signed-off-by: Thomas De Schampheleire <thomas.de.schampheleire@gmail.com>
Reviewed-by: "Yann E. MORIN" <yann.morin.1998@free.fr>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com>
This change adds a package definition for the powerpc-utils project,
containing a set of powerpc-specific hardware management utilities.
We're using a git tag from upstream, which contains a few build-system
fixes.
[Thomas:
- Add dependency on PowerPC architecture in Config.in.
- Add homepage in Config.in help text.]
Signed-off-by: Jeremy Kerr <jk@ozlabs.org>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com>