NetCube-Systems-Austria/kumquat-buildroot
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
62,681 Commits 5 Branches 387 Tags 141 MiB
Makefile 64%
Python 15.3%
C 9.2%
Shell 6%
PHP 2.8%
Other 2.4%
87b8676fbf
Go to file
Peter Korsgaard 87b8676fbf package/python-django: security bump to version 4.0.4 
Fixes the following security issues:

CVE-2022-28346: Potential SQL injection in QuerySet.annotate(), aggregate(), and extra()

QuerySet.annotate(), aggregate(), and extra() methods were subject to SQL
injection in column aliases, using a suitably crafted dictionary, with
dictionary expansion, as the **kwargs passed to these methods.

CVE-2022-28347: Potential SQL injection via QuerySet.explain(**options) on PostgreSQL

QuerySet.explain() method was subject to SQL injection in option names,
using a suitably crafted dictionary, with dictionary expansion, as the
**options argument.

For more details, see the advisory:
https://www.djangoproject.com/weblog/2022/apr/11/security-releases/

Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
2022-04-16 15:44:30 +02:00
arch arch/Config.in.powerpc: Add BR2_POWERPC_CPU_HAS_VSX 2022-04-14 21:37:23 +02:00
board configs/octavo_osd32mp1_red: new defconfig 2022-03-20 18:08:55 +01:00
boot package: replace git:// URLs with https:// URLs where possible 2022-04-02 19:21:57 +02:00
configs configs/olimex_stmp157: bump kernel version 2022-04-12 20:17:11 +02:00
docs docs/website: update for 2022.02.1 2022-04-13 00:13:08 +02:00
fs fs/oci: depends on BR2_PACKAGE_HOST_GO_TARGET_ARCH_SUPPORTS 2022-04-04 21:19:37 +02:00
linux {linux, linux-headers}: bump 4.{9, 14, 19}.x / 5.{4, 10, 15, 16}.x series 2022-04-11 09:15:50 +02:00
package package/python-django: security bump to version 4.0.4 2022-04-16 15:44:30 +02:00
support Update for 2022.02.1 2022-04-13 00:09:28 +02:00
system system/skeleton: provide run/lock directory 2022-01-12 20:38:09 +01:00
toolchain toolchain-external-custom: error if BR2_TOOLCHAIN_EXTERNAL_URL is not set 2022-04-04 20:35:45 +02:00
utils utils/genrandconfig: add randconfig based --no-toolchains-csv option 2022-04-09 18:45:03 +02:00
.clang-format .clang-format: initial import from Linux 5.15.6 2022-01-01 15:01:13 +01:00
.defconfig
.flake8
.gitignore
.gitlab-ci.yml utils/checkpackagelib/lib_sysv: run shellcheck 2022-02-06 18:27:03 +01:00
CHANGES docs/website: update for 2022.02.1 2022-04-13 00:13:08 +02:00
Config.in support/download: Add SFTP support 2022-01-06 09:34:05 +01:00
Config.in.legacy package/boost: drop versioned layout 2022-04-14 21:25:55 +02:00
COPYING
DEVELOPERS DEVELOPERS: drop Mylène Josserand 2022-04-13 14:09:07 +02:00
Makefile support/scripts/graph-build-time: add support for timeline graphing 2022-03-20 23:52:24 +01:00
Makefile.legacy
README docs: move the IRC channel away from Freenode 2021-05-29 22:16:23 +02:00

README 

Buildroot is a simple, efficient and easy-to-use tool to generate embedded
Linux systems through cross-compilation.

The documentation can be found in docs/manual. You can generate a text
document with 'make manual-text' and read output/docs/manual/manual.text.
Online documentation can be found at http://buildroot.org/docs.html

To build and use the buildroot stuff, do the following:

1) run 'make menuconfig'
2) select the target architecture and the packages you wish to compile
3) run 'make'
4) wait while it compiles
5) find the kernel, bootloader, root filesystem, etc. in output/images

You do not need to be root to build or run buildroot.  Have fun!

Buildroot comes with a basic configuration for a number of boards. Run
'make list-defconfigs' to view the list of provided configurations.

Please feed suggestions, bug reports, insults, and bribes back to the
buildroot mailing list: buildroot@buildroot.org
You can also find us on #buildroot on OFTC IRC.

If you would like to contribute patches, please read
https://buildroot.org/manual.html#submitting-patches