buildroot

Author	SHA1	Message	Date
Peter Korsgaard	bc4ac7da33	package/libpng: security bump to version 1.6.37 Fixes the following security issue: CVE-2019-7317: png_image_free in png.c in libpng 1.6.36 has a use-after-free because png_image_free_function is called under png_safe_execute. Update license hash for a change in copyright year and typo fixes. Signed-off-by: Peter Korsgaard <peter@korsgaard.com> Signed-off-by: Arnout Vandecappelle (Essensium/Mind) <arnout@mind.be>	2019-04-27 14:15:39 +02:00
Bernd Kuhls	e6a67cc410	package/libpng: bump version to 1.6.36 License[1] was bumped to v2, for details see http://lists.opensource.org/pipermail/license-review_lists.opensource.org/2018-November/003791.html [1] http://www.libpng.org/pub/png/src/libpng-LICENSE.txt Signed-off-by: Bernd Kuhls <bernd.kuhls@t-online.de> [Peter: use Libpng-2.0 as license tag] Signed-off-by: Peter Korsgaard <peter@korsgaard.com>	2019-01-27 20:34:38 +01:00
Nasser Afshin	cb9fe65313	libpng: bump to 1.6.35 Also use https instead of http to retrieve the hashes. Note that the only changes in the LICENSE file is the copy-right date and the version number. Signed-off-by: Nasser Afshin <afshin.nasser@gmail.com> Signed-off-by: Peter Korsgaard <peter@korsgaard.com>	2018-11-17 12:58:58 +01:00
Ricardo Martincoski	b492ab5785	libpng: use $() to reference make variables instead of ${} Signed-off-by: Ricardo Martincoski <ricardo.martincoski@gmail.com> Signed-off-by: Arnout Vandecappelle (Essensium/Mind) <arnout@mind.be>	2018-07-08 12:12:20 +02:00
Thomas Petazzoni	f4db607f1d	libpng: remove Blackfin patch Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>	2018-04-15 22:05:40 +02:00
Adam Duskett	aceb8fa982	libpng: bump to 1.6.34 In addition, add a hash for the license file. Signed-off-by: Adam Duskett <aduskett@gmail.com> Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com>	2017-11-22 22:29:44 +01:00
Bernd Kuhls	3b8e197241	package/libpng: bump version to 1.6.32 Added md5 hash provided by upstream. Signed-off-by: Bernd Kuhls <bernd.kuhls@t-online.de> Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com>	2017-09-02 18:41:03 +02:00
Adam Duskett	fae49e20f4	libpng: bump to version 1.6.31 Signed-off-by: Adam Duskett <Adamduskett@outlook.com> [Thomas: fix hash file comment, noticed by Baruch.] Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com>	2017-07-29 22:32:42 +02:00
Bernd Kuhls	f40bb40075	package/libpng: bump version to 1.6.29 Refactored patch 0002, added support for Intel SSE2. Changelog: `b363e01e6b`/#diff-2 Signed-off-by: Bernd Kuhls <bernd.kuhls@t-online.de> Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com>	2017-05-01 10:39:48 +02:00
Bernd Kuhls	765f241063	package/libpng: cleanup NEON support options Suggested by Thomas: http://lists.busybox.net/pipermail/buildroot/2017-April/189086.html Signed-off-by: Bernd Kuhls <bernd.kuhls@t-online.de> Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com>	2017-05-01 10:39:44 +02:00
Rahul Bedarkar	34d943ab8d	package: use SPDX short identifier for libpng license We want to use SPDX identifier for license string as much as possible. SPDX short identifier for libpng license is Libpng. Signed-off-by: Rahul Bedarkar <rahulbedarkar89@gmail.com> Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com>	2017-04-01 22:35:31 +02:00
Gustavo Zacarias	f39cd73958	libpng: bump to version 1.6.28 Signed-off-by: Gustavo Zacarias <gustavo@zacarias.com.ar> Signed-off-by: Peter Korsgaard <peter@korsgaard.com>	2017-01-06 17:07:38 +01:00
Gustavo Zacarias	d4e08cdeaa	libpng: security bump to version 1.6.27 Fixes a NULL pointer dereference bug in png_set_text_2() CVE not assigned yet. Signed-off-by: Gustavo Zacarias <gustavo@zacarias.com.ar> Signed-off-by: Peter Korsgaard <peter@korsgaard.com>	2016-12-30 21:12:43 +01:00
Bernd Kuhls	a10af51779	package/libpng: bump version to 1.6.26 Signed-off-by: Bernd Kuhls <bernd.kuhls@t-online.de> Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com>	2016-12-10 21:40:42 +01:00
Julien BOIBESSOT	1cd3e4bf8a	libpng: bump to version 1.6.25 1.6.23 tarballs have moved so, while we are at modifying libpng.mk, bump to 1.6.25. [Peter: add back upstream sha1 hash] Signed-off-by: Julien BOIBESSOT <julien.boibessot@armadeus.com> Signed-off-by: Peter Korsgaard <peter@korsgaard.com>	2016-09-07 12:04:32 +02:00
Julien Floret	0871a4a300	libpng: add explicit dependencies for host variant Signed-off-by: Julien Floret <julien.floret@6wind.com> Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com>	2016-07-03 09:13:15 +02:00
Gustavo Zacarias	1d988e8f54	libpng: bump to version 1.6.23 Signed-off-by: Gustavo Zacarias <gustavo@zacarias.com.ar> Signed-off-by: Peter Korsgaard <peter@korsgaard.com>	2016-06-15 09:43:50 +02:00
Gustavo Zacarias	dc86b07ccc	libpng: bump to version 1.6.22 Rebase patch 1 in git format, and rebase patch 2 against 1.6.22. Signed-off-by: Gustavo Zacarias <gustavo@zacarias.com.ar> Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com>	2016-05-26 21:35:38 +02:00
Gustavo Zacarias	5be4c99b18	libpng: bump to version 1.6.21 Signed-off-by: Gustavo Zacarias <gustavo@zacarias.com.ar> Signed-off-by: Peter Korsgaard <peter@korsgaard.com>	2016-01-20 17:27:09 +01:00
Gustavo Zacarias	371e2f7f3c	libpng: security bump to version 1.6.20 Fixes: CVE-2015-8126 - incorrect implementation of png_set_PLTE() that uses png_ptr not info_ptr, that left png_set_PLTE() open to this vuln. (fix in previous release was incomplete) Signed-off-by: Gustavo Zacarias <gustavo@zacarias.com.ar> Signed-off-by: Peter Korsgaard <peter@korsgaard.com>	2015-12-04 21:46:34 +01:00
Gustavo Zacarias	e50c333c35	libpng: security bump to version 1.6.19 Fixes: png_set_PLTE/png_get_PLTE functions failed to check for an out-of-range palette when reading or writing PNG files with a bit_depth less than 8. CVE not yet assigned. Signed-off-by: Gustavo Zacarias <gustavo@zacarias.com.ar> Signed-off-by: Peter Korsgaard <peter@korsgaard.com>	2015-11-13 22:35:06 +01:00
Gustavo Zacarias	effd4f1ae7	libpng: bump to version 1.6.18 Signed-off-by: Gustavo Zacarias <gustavo@zacarias.com.ar> Signed-off-by: Peter Korsgaard <peter@korsgaard.com>	2015-10-02 16:02:39 +02:00
Danomi Manchego	70ad172e6e	libpng: rebase ignore-symbol-prefix patch to apply cleanly Signed-off-by: Danomi Manchego <danomimanchego123@gmail.com> Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com>	2015-06-28 23:05:36 +02:00
Gustavo Zacarias	65b25d11df	libpng: bump to version 1.6.17 Signed-off-by: Gustavo Zacarias <gustavo@zacarias.com.ar> Signed-off-by: Peter Korsgaard <peter@korsgaard.com>	2015-06-04 23:06:55 +02:00
Gustavo Zacarias	5fd9ab402f	libpng: security bump to version 1.6.16 Fixes a buffer overflow which may allow an attacker to gain write access to memory. CVE requested but not yet assigned. Signed-off-by: Gustavo Zacarias <gustavo@zacarias.com.ar> Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com>	2014-12-24 14:59:02 +01:00
Gustavo Zacarias	b89ce67523	libpng: security bump to version 1.6.15 Fixes an out-of-bounds memory access in png_user_version_check(). Signed-off-by: Gustavo Zacarias <gustavo@zacarias.com.ar> Signed-off-by: Peter Korsgaard <peter@korsgaard.com>	2014-11-25 22:33:01 +01:00
Thomas De Schampheleire	aaffd209fa	packages: rename FOO_CONF_OPT into FOO_CONF_OPTS To be consistent with the recent change of FOO_MAKE_OPT into FOO_MAKE_OPTS, make the same change for FOO_CONF_OPT. Sed command used: find * -type f \| xargs sed -i 's#_CONF_OPT\>#&S#g' Signed-off-by: Thomas De Schampheleire <thomas.de.schampheleire@gmail.com> Reviewed-by: "Yann E. MORIN" <yann.morin.1998@free.fr> Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com>	2014-10-04 18:54:16 +02:00
Gustavo Zacarias	074b3c7c30	libpng: bump to version 1.6.12 Signed-off-by: Gustavo Zacarias <gustavo@zacarias.com.ar> Signed-off-by: Peter Korsgaard <peter@korsgaard.com>	2014-06-18 13:57:55 +02:00
Gustavo Zacarias	d9b463b291	libpng: security bump to version 1.6.10 Fixes CVE-2014-0333. Signed-off-by: Gustavo Zacarias <gustavo@zacarias.com.ar> Signed-off-by: Peter Korsgaard <peter@korsgaard.com>	2014-03-17 22:28:40 +01:00
Peter Korsgaard	2a70fcb0ef	Revert "libpng: fix download location" This reverts commit `7e50574965`. Now that we've bumped the libpng version, we shouldn't look for it among the older releases. Signed-off-by: Peter Korsgaard <peter@korsgaard.com>	2014-02-28 14:50:23 +01:00
Peter Korsgaard	b108fdcb83	Merge branch 'next' Conflicts: Makefile package/dmraid/Config.in package/gdb/Config.in.host package/linux-headers/linux-headers.mk package/python/python.mk package/python3/python3.mk package/rt-tests/Config.in package/sdl/sdl.mk package/systemd/systemd-01-fix-getty-unit.patch package/systemd/systemd-02-fix-page-size.patch package/systemd/systemd-03-uclibc-fix.patch package/udev/Config.in package/udisks/Config.in package/vlc/vlc.mk system/Config.in Quite some merge conflicts, hopefully I didn't screw up anything. Signed-off-by: Peter Korsgaard <peter@korsgaard.com>	2014-02-28 14:30:23 +01:00
Sven Neumann	c16bc1b12f	libpng: bump to version 1.6.9 This also fixes the download URL as oudated versions have been moved to the "older-releases" sub-folder. Signed-off-by: Sven Neumann <neumann@teufel.de> Signed-off-by: Peter Korsgaard <peter@korsgaard.com>	2014-02-25 21:09:26 +01:00
Sven Neumann	7e50574965	libpng: fix download location Signed-off-by: Sven Neumann <neumann@teufel.de> Signed-off-by: Peter Korsgaard <peter@korsgaard.com>	2014-02-25 20:53:47 +01:00
Sonic Zhang	46912f15c0	package: libpng: don't append prefix to symbol names in the version script file Even if Blackfin GNU toolchain add prefix '_' to all symbols, symbol prefix is not accepted in the link flag --version-script. Don't append prefix in the symbols in the version script file. Signed-off-by: Sonic Zhang <sonic.zhang@analog.com> Signed-off-by: Peter Korsgaard <peter@korsgaard.com>	2014-01-14 23:01:33 +01:00
Gustavo Zacarias	6b5fd46de3	libpng: security bump to version 1.6.8 Fixes CVE-2013-6954. Signed-off-by: Gustavo Zacarias <gustavo@zacarias.com.ar> Signed-off-by: Peter Korsgaard <peter@korsgaard.com>	2013-12-22 12:09:31 +01:00
Gustavo Zacarias	405af8c93f	libpng: disable tools They can fail on some odd toolchain configurations because of buildsystem shortcomings and aren't expected to be used in normal scenarios. Signed-off-by: Gustavo Zacarias <gustavo@zacarias.com.ar> Signed-off-by: Peter Korsgaard <peter@korsgaard.com>	2013-10-28 17:02:43 +01:00
Gustavo Zacarias	2e5f5b3996	libpng: bump to version 1.6.6 Signed-off-by: Gustavo Zacarias <gustavo@zacarias.com.ar> Signed-off-by: Peter Korsgaard <peter@korsgaard.com>	2013-10-26 11:07:42 +02:00
Alexandre Belloni	8dfd59d114	Normalize separator size to 80 Signed-off-by: Alexandre Belloni <alexandre.belloni@free-electrons.com> Signed-off-by: Peter Korsgaard <jacmet@sunsite.dk>	2013-06-06 22:30:24 +02:00
Alexandre Belloni	f2c2f25cef	Remove description and url from header Signed-off-by: Alexandre Belloni <alexandre.belloni@free-electrons.com> Signed-off-by: Peter Korsgaard <jacmet@sunsite.dk>	2013-06-06 22:30:00 +02:00
Thomas Petazzoni	4d3f810aaf	package: use <pkg>_CONFIG_SCRIPTS in packages that used special handling The packages changed by this commit were not only changing prefix= and exec_prefix= during their <foo>-config fixups, they were also changing includedir= and/or libdir=. So, they could not be directly converted to the new <pkg>_CONFIG_SCRIPTS infrastructure. However, a careful analysis of their default <foo>-config shows that includedir= and libdir= is defined relatively to either ${prefix} and ${exec_prefix}. Therefore, the manual fixing of includedir= and libdir= is useless, and fixing prefix= and exec_prefix=, as done by the <pkg>_CONFIG_SCRIPTS mechanism is sufficient. Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com> Acked-by: "Samuel Martin" <s.martin49@gmail.com> Signed-off-by: Peter Korsgaard <jacmet@sunsite.dk>	2013-02-08 22:40:49 +01:00
Gustavo Zacarias	019a581f89	packages: switch to host-pkgconf Signed-off-by: Gustavo Zacarias <gustavo@zacarias.com.ar> Acked-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com> Signed-off-by: Peter Korsgaard <jacmet@sunsite.dk>	2012-10-29 22:02:55 +01:00
Stefan Froberg	721f339053	freetype, libfuse, libpng, x11vnc, zlib: get rid of BR2_SOURCEFORGE_MIRROR Signed-off-by: Stefan Froberg <stefan.froberg@petroprogram.com> Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com>	2012-08-24 23:31:33 +02:00
Danomi Manchego	7228355905	libpng: add license info Signed-off-by: Danomi Manchego <danomimanchego123@gmail.com> Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com>	2012-08-15 12:03:31 +02:00
Gustavo Zacarias	0d27d8cb46	libpng: security bump to version 1.4.12 Fixes CVE-2012-3386 Signed-off-by: Gustavo Zacarias <gustavo@zacarias.com.ar> Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com>	2012-07-30 19:19:09 +02:00
Arnout Vandecappelle (Essensium/Mind)	e1502ebc0c	all packages: rename XXXTARGETS to xxx-package Also remove the redundant $(call ...). This is a purely mechanical change, performed with find package linux toolchain boot -name \*.mk \| \ xargs sed -i -e 's/$(eval $(call GENTARGETS))/$(eval $(generic-package))/' \ -e 's/$(eval $(call AUTOTARGETS))/$(eval $(autotools-package))/' \ -e 's/$(eval $(call CMAKETARGETS))/$(eval $(cmake-package))/' Signed-off-by: Arnout Vandecappelle (Essensium/Mind) <arnout@mind.be> Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com>	2012-07-17 20:23:05 +02:00
Arnout Vandecappelle (Essensium/Mind)	69e64c42b7	all packages: use new host-xxx-package macros This is a purely mechanical change, performed with find package linux toolchain boot -name \*.mk \| \ xargs sed -i -e 's/$(eval $(call GENTARGETS,host))/$(eval $(host-generic-package))/' \ -e 's/$(eval $(call AUTOTARGETS,host))/$(eval $(host-autotools-package))/' \ -e 's/$(eval $(call CMAKETARGETS,host))/$(eval $(host-cmake-package))/' Signed-off-by: Arnout Vandecappelle (Essensium/Mind) <arnout@mind.be> Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com>	2012-07-17 20:18:03 +02:00
Gustavo Zacarias	56ece03c81	libpng: security bump to version 1.4.11 Fixes CVE-2011-3048 Signed-off-by: Gustavo Zacarias <gustavo@zacarias.com.ar> Signed-off-by: Peter Korsgaard <jacmet@sunsite.dk>	2012-04-03 16:54:30 +02:00
Gustavo Zacarias	b41fb1507f	libpng: bump to version 1.4.10 Signed-off-by: Gustavo Zacarias <gustavo@zacarias.com.ar> Signed-off-by: Peter Korsgaard <jacmet@sunsite.dk>	2012-04-02 23:13:31 +02:00
Gustavo Zacarias	dcb7f907a9	libpng: security bump to version 1.4.9 Signed-off-by: Gustavo Zacarias <gustavo@zacarias.com.ar> Signed-off-by: Peter Korsgaard <jacmet@sunsite.dk>	2012-02-24 15:27:56 +01:00
Arnout Vandecappelle (Essensium/Mind)	cfd73405e0	libpng: removed redundant HOST_FOO_DEPENDENCIES Signed-off-by: Arnout Vandecappelle (Essensium/Mind) <arnout@mind.be> Signed-off-by: Peter Korsgaard <jacmet@sunsite.dk>	2012-01-17 23:32:33 +01:00

1 2 3

102 commits