mirrors/buildroot
0
0
Fork 0
mirror of https://git.busybox.net/buildroot.git synced 2025-01-10 14:33:24 +08:00
Code Issues Packages Projects Releases Wiki Activity
55,052 Commits 40 Branches 414 Tags 160 MiB
Makefile 63.3%
Python 16.8%
C 8.7%
Shell 5.9%
PHP 2.6%
Other 2.3%
ecc8f0fe84
Go to file
Peter Korsgaard ecc8f0fe84 package/nodejs: security bump to version 12.20.1 
Fixes the following security issues:

- CVE-2020-8265: use-after-free in TLSWrap (High) Affected Node.js versions
  are vulnerable to a use-after-free bug in its TLS implementation.  When
  writing to a TLS enabled socket, node::StreamBase::Write calls
  node::TLSWrap::DoWrite with a freshly allocated WriteWrap object as first
  argument.  If the DoWrite method does not return an error, this object is
  passed back to the caller as part of a StreamWriteResult structure.  This
  may be exploited to corrupt memory leading to a Denial of Service or
  potentially other exploits

- CVE-2020-8287: HTTP Request Smuggling in nodejs Affected versions of
  Node.js allow two copies of a header field in a http request.  For
  example, two Transfer-Encoding header fields.  In this case Node.js
  identifies the first header field and ignores the second.  This can lead
  to HTTP Request Smuggling

- CVE-2020-1971: OpenSSL - EDIPARTYNAME NULL pointer de-reference (High)
  This is a vulnerability in OpenSSL which may be exploited through Node.js.
  You can read more about it in
  https://www.openssl.org/news/secadv/20201208.txt

Update the license hash for the addition of the (MIT licensed)
cjs-module-lexer module:
9eb1fa1924

Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
Signed-off-by: Yann E. MORIN <yann.morin.1998@free.fr>
2021-01-09 23:53:36 +01:00
arch arch/Config.in.powerpc: Drop PPC601 support 2020-12-15 19:30:03 +01:00
board configs/microchip_sam9x60ek: new defconfigs 2021-01-02 23:53:55 +01:00
boot package: provide CPE ID details for numerous packages 2021-01-04 21:43:54 +01:00
configs configs/solidrun_clearfog_gt_8k: bump BSP components 2021-01-09 22:34:07 +01:00
docs package/environment-setup: fix spelling of the script file in the manual. 2021-01-07 23:09:47 +01:00
fs fs/jffs2: copy xattrs 2020-10-08 21:48:03 +02:00
linux linux: indicate proper CPE prefix 2021-01-09 17:06:01 +01:00
package package/nodejs: security bump to version 12.20.1 2021-01-09 23:53:36 +01:00
support support/scripts/pkg-stats: fix flake8 errors 2021-01-05 23:34:28 +01:00
system system: support br2-external init systems 2020-10-14 22:48:42 +02:00
toolchain toolchain: CodeSourcery AArch64 2014.11 does not contain libatomic 2021-01-09 23:20:10 +01:00
utils utils/checkpackagelib/lib_mk.py: handle 'else' and 'elif' statements 2021-01-02 13:54:59 +01:00
.defconfig arch: remove support for sh64 2016-09-08 22:15:15 +02:00
.flake8 Revert ".flake8: fix check for 80/132 columns" 2021-01-02 17:38:20 +01:00
.gitignore update gitignore 2013-05-04 12:41:55 +02:00
.gitlab-ci.yml gitlab-ci: update the image version 2020-08-15 09:47:00 +02:00
CHANGES Update for 2020.02.9 2020-12-27 18:22:23 +01:00
Config.in Config.in: update BR2_OPTIMIZE_FAST prompt and help text 2020-07-18 16:05:01 +02:00
Config.in.legacy package/gdb: drop gdb 8.2 2020-12-29 22:43:14 +01:00
COPYING COPYING: add exception about patch licensing 2016-02-26 19:50:13 +01:00
DEVELOPERS DEVELOPERS: fix order 2021-01-09 23:35:47 +01:00
Makefile Revert ".flake8: fix check for 80/132 columns" 2021-01-02 17:38:20 +01:00
Makefile.legacy Remove BR2_DEPRECATED 2016-10-15 23:14:45 +02:00
README README: add reference to submitting-patches 2016-02-01 19:16:08 +01:00

README 

Buildroot is a simple, efficient and easy-to-use tool to generate embedded
Linux systems through cross-compilation.

The documentation can be found in docs/manual. You can generate a text
document with 'make manual-text' and read output/docs/manual/manual.text.
Online documentation can be found at http://buildroot.org/docs.html

To build and use the buildroot stuff, do the following:

1) run 'make menuconfig'
2) select the target architecture and the packages you wish to compile
3) run 'make'
4) wait while it compiles
5) find the kernel, bootloader, root filesystem, etc. in output/images

You do not need to be root to build or run buildroot.  Have fun!

Buildroot comes with a basic configuration for a number of boards. Run
'make list-defconfigs' to view the list of provided configurations.

Please feed suggestions, bug reports, insults, and bribes back to the
buildroot mailing list: buildroot@buildroot.org
You can also find us on #buildroot on Freenode IRC.

If you would like to contribute patches, please read
https://buildroot.org/manual.html#submitting-patches