kumquat-buildroot

NetCube-Systems-Austria/kumquat-buildroot

Go to file

Quentin Schulz fed0532cb8 package/cairo: fix CVE-2020-35492 Add an upstream patch to fix CVE-2020-35492: A flaw was found in cairo's image-compositor.c in all versions prior to 1.17.4. This flaw allows an attacker who can provide a crafted input file to cairo's image-compositor (for example, by convincing a user to open a file in an application using cairo, or if an application uses cairo on untrusted input) to cause a stack buffer overflow -> out-of-bounds WRITE. The highest impact from this vulnerability is to confidentiality, integrity, as well as system availability. Important note: this is not the exact upstream patch. Indeed, the upstream patch[1] contains a png file which appears as a binary diff inside the patch. The `patch` tool which is used by Buildroot to apply patches does not handle that kind of diff. Since it is just a test, it shouldn't impact the quality of the CVE fix and all changes related to the test are removed from the patch. [1] `03a820b173` Cc: Quentin Schulz <foss+buildroot@0leil.net> Signed-off-by: Quentin Schulz <quentin.schulz@theobroma-systems.com> Signed-off-by: Peter Korsgaard <peter@korsgaard.com> (cherry picked from commit `111ab56d84`) Signed-off-by: Peter Korsgaard <peter@korsgaard.com>		2022-12-21 18:57:05 +01:00
arch	arch/arch.mk.xtensa: relax check on overlay file to apply only to internal toolchains	2022-11-13 22:32:31 +01:00
board	board/zynqmp/kria/patches: fix build by dropping U-Boot patch	2022-12-21 16:53:21 +01:00
boot	boot/edk2: refine license	2022-11-23 22:38:33 +01:00
configs	board/zynqmp/kria/patches: fix build by dropping U-Boot patch	2022-12-21 16:53:21 +01:00
docs	Update for 2022.11	2022-12-05 08:23:19 +01:00
fs	fs/cpio: don't fail systems without /dev/null	2022-11-01 21:44:49 +01:00
linux	{linux, linux-headers}: bump 4.{9, 14, 19}.x / 5.{4, 10, 15}.x / 6.0.x series	2022-12-20 12:50:46 +01:00
package	package/cairo: fix CVE-2020-35492	2022-12-21 18:57:05 +01:00
support	Update for 2022.11	2022-12-05 08:23:19 +01:00
system
toolchain	toolchain/Config.in: fix check-package warning	2022-11-25 21:31:56 +01:00
utils	utils/genrandconfig: add mxs-bootlets board handling	2022-12-05 08:14:00 +01:00
.clang-format
.defconfig
.flake8
.gitignore
.gitlab-ci.yml
.shellcheckrc	utils/check-package: improve shellcheck reproducibility	2022-07-25 23:52:47 +02:00
CHANGES	Update for 2022.11	2022-12-05 08:23:19 +01:00
Config.in	Config.in: move toolchain menu before build options	2022-07-27 11:11:19 +02:00
Config.in.legacy	package/rabbitmq-server: drop package	2022-12-03 15:41:49 +01:00
COPYING
DEVELOPERS	DEVELOPERS: add Christian Stewart to balena-engine package	2022-12-21 18:10:52 +01:00
Makefile	Update for 2022.11	2022-12-05 08:23:19 +01:00
Makefile.legacy
README

README

Buildroot is a simple, efficient and easy-to-use tool to generate embedded
Linux systems through cross-compilation.

The documentation can be found in docs/manual. You can generate a text
document with 'make manual-text' and read output/docs/manual/manual.text.
Online documentation can be found at http://buildroot.org/docs.html

To build and use the buildroot stuff, do the following:

1) run 'make menuconfig'
2) select the target architecture and the packages you wish to compile
3) run 'make'
4) wait while it compiles
5) find the kernel, bootloader, root filesystem, etc. in output/images

You do not need to be root to build or run buildroot.  Have fun!

Buildroot comes with a basic configuration for a number of boards. Run
'make list-defconfigs' to view the list of provided configurations.

Please feed suggestions, bug reports, insults, and bribes back to the
buildroot mailing list: buildroot@buildroot.org
You can also find us on #buildroot on OFTC IRC.

If you would like to contribute patches, please read
https://buildroot.org/manual.html#submitting-patches