NetCube-Systems-Austria/kumquat-buildroot
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
41,015 Commits 5 Branches 387 Tags 143 MiB
Makefile 63.3%
Python 16.3%
C 9.1%
Shell 5.9%
PHP 2.7%
Other 2.3%
b75a27719b
Go to file
Peter Korsgaard b75a27719b lcms2: add upstream security fix for CVE-2018-16435 
Little CMS (aka Little Color Management System) 2.9 has an integer overflow
in the AllocateDataSet function in cmscgats.c, leading to a heap-based
buffer overflow in the SetData function via a crafted file in the second
argument to cmsIT8LoadFromFile.

For more details, see:
https://github.com/mm2/Little-CMS/issues/171
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16435

The upstream fix unfortunately includes a number of unrelated changes, but
thse files are not used when building for Linux.

Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
(cherry picked from commit 9f81f578eb)
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
2018-09-28 14:53:30 +02:00
arch Revert "arch/arm: add cortex-m7 core" 2018-05-20 19:13:29 +02:00
board board/technologic/ts7680: fix bogus size in genimage.cfg 2018-08-24 10:26:34 +02:00
boot boot-wrapper-aarch64: use SPDX identifier for 3 clause BSD 2018-08-24 00:19:16 +02:00
configs configs/arm_juno: bump ATF to v1.3 2018-08-24 10:27:46 +02:00
docs docs/manual: expand on why using a branch name is not supported 2018-08-26 23:19:03 +02:00
fs fs: ensure hard links in TARGET_DIR are correctly copied for filesystem input 2018-05-27 23:46:29 +02:00
linux linux: bump CIP to version v4.4.138-cip25 2018-08-24 00:18:13 +02:00
package lcms2: add upstream security fix for CVE-2018-16435 2018-09-28 14:53:30 +02:00
support support/testing: add test for file capabilities 2018-08-10 08:27:17 +02:00
system skeleton: add /dev/fd, /dev/std{in, out, err} symlinks for static /dev on readonly rootfs 2018-05-01 21:53:45 +02:00
toolchain toolchain: allow disabling packages affected by gcc bug 85180 2018-05-30 23:23:21 +02:00
utils utils/test-pkg: log the output of merge-config 2018-07-19 23:27:56 +02:00
.defconfig
.flake8 .flake8: ignore utils/diffconfig 2018-03-13 22:37:54 +01:00
.gitignore
.gitlab-ci.yml support/testing: add test for file capabilities 2018-08-10 08:27:17 +02:00
.gitlab-ci.yml.in .gitlab-ci.yml: extend check-package test to Config.* files 2018-04-01 10:16:35 +02:00
CHANGES Update for 2018.05.2 2018-08-28 16:22:25 +02:00
Config.in Config.in: add BR2_HOST_GCC_AT_LEAST_8 2018-05-02 14:50:14 +02:00
Config.in.legacy libmediaart: rename options to have proper prefix 2018-05-21 23:13:52 +02:00
COPYING
DEVELOPERS DEVELOPERS: update datacom email addresses 2018-05-25 08:40:14 +02:00
Makefile Update for 2018.05.2 2018-08-28 16:22:25 +02:00
Makefile.legacy
README

README 

Buildroot is a simple, efficient and easy-to-use tool to generate embedded
Linux systems through cross-compilation.

The documentation can be found in docs/manual. You can generate a text
document with 'make manual-text' and read output/docs/manual/manual.text.
Online documentation can be found at http://buildroot.org/docs.html

To build and use the buildroot stuff, do the following:

1) run 'make menuconfig'
2) select the target architecture and the packages you wish to compile
3) run 'make'
4) wait while it compiles
5) find the kernel, bootloader, root filesystem, etc. in output/images

You do not need to be root to build or run buildroot.  Have fun!

Buildroot comes with a basic configuration for a number of boards. Run
'make list-defconfigs' to view the list of provided configurations.

Please feed suggestions, bug reports, insults, and bribes back to the
buildroot mailing list: buildroot@buildroot.org
You can also find us on #buildroot on Freenode IRC.

If you would like to contribute patches, please read
https://buildroot.org/manual.html#submitting-patches