From: Armin Kuster <akuster808@gmail.com>
To: openembedded-core@lists.openembedded.org
Subject: [warrior][ 00/50] patch review
Date: Mon, 23 Sep 2019 19:48:40 -0700 [thread overview]
Message-ID: <cover.1569292053.git.akuster808@gmail.com> (raw)
Here is the current list of patch for warrior.
Please review by Wed.
Note: I am seeing odd build issue that I don't think they are related to these changes.
The following changes since commit 952bfcc3f4b9ee5ba584da0f991f95e80654355a:
curl: fix CVE-2019-5435 CVE-2019-5436 (2019-07-29 10:25:01 +0100)
are available in the git repository at:
git://git.openembedded.org/openembedded-core-contrib stable/warrior-nmut
http://cgit.openembedded.org//log/?h=stable/warrior-nmut
Adrian Bunk (1):
libxcrypt: Fix the build with -Os
Alex Kiernan (1):
systemd: Backport OpenSSL BUF_MEM fix
Anuj Mittal (14):
binutils: fix CVE-2019-12972 CVE-2019-9071
binutils: CVE-2019-9070 is same as CVE-2019-9071
python: fix CVE-2019-9740
libxslt: fix CVE-2019-13117 CVE-2019-13118
glibc: CVE-2018-20796 is same as CVE-2019-9169
libsdl: CVE fixes
gstreamer1.0-vaapi: backport jpeg encode/decode fixes
patch: fix CVE-2019-13636
python3: fix CVE-2019-9740
rsync: fix CVEs for included zlib
patch: backport fixes
binutils: fix CVE-2019-14250 CVE-2019-14444
pango: fix CVE-2019-1010238
glib-2.0: fix CVE-2019-13012
Armin Kuster (4):
qemu: fix CVE-2018-20815
gcc-8.3: Security fix for CVE-2019-14250
Curl: Security fix for CVE-2019-5482
gcc: Security fix for CVE-2019-15847
Bartosz Golaszewski (1):
qemu: add a patch fixing the native build on newer kernels
Bedel, Alban (2):
rng-tools: fix very long shutdown delay with systemd
boost: Fix build and enable context and coroutines on aarch64
Bruce Ashfield (3):
linux-yocto/4.19: update to 4.19.57 and -rt22
linux-yocto/4.19: update to v4.19.61
kernel-devsrc: tweak for v5.3+
Fabio Berton (1):
mesa: Update 19.0.1 -> 19.0.8
Jason Wessel (5):
psmisc: Fix dependency for USE_NLS=no
glibc: Fix multilibs + usrmerge builds
glibc-locale: Fix build error with PACKAGE_NO_GCONV = "1"
glibc/glibc-locale: Fix do_stash_locale to work with usrmerge and
multilibs
glibc / glibc-locale: Fix stash_locale determinism problems
Joël Esponde (1):
package.bbclass: fix directories setuid and setgid bits
Jun Nie (1):
kernel-fitimage: uboot-sign: fix missing signature
Martin Jansa (3):
icecc.bbclass: catch subprocess.CalledProcessError
meson: backport fix for builds with -Werror=return-type
powertop: import a fix from buildroot
Nathan Rossi (1):
binutils: Fix mips patch which changes default emulation
Naveen Saini (1):
ghostscript: fix CVE-2019-3839
Ricardo Ribalda Delgado (1):
dpkg: Use less as pager
Richard Purdie (1):
package: Improve determinism
Robert Yang (1):
multilib.bbclass: Reduce ALTERNATIVE_PRIORITY for extended recipes
Ross Burton (4):
libid3tag: handle unknown encodings (CVE-2017-11550)
libid3tag: CVE-2017-11551 is the same as CVE-2004-2779
tiff: fix CVE-2019-6128
tiff: fix CVE-2019-7663
Sean Nyekjaer (1):
libgpg-error: Fix build with gawk 5.x
Trevor Gamblin (1):
patch: fix CVE-2019-13638
Zhixiong Chi (2):
gcc: reduce the variables in symtab
gcc: CVE-2018-12886
meta/classes/icecc.bbclass | 6 +-
meta/classes/multilib.bbclass | 47 ++
meta/classes/package.bbclass | 5 +-
meta/classes/uboot-sign.bbclass | 4 +-
meta/lib/oe/package.py | 2 +-
.../glib-2.0/glib-2.0/CVE-2019-13012.patch | 40 +
meta/recipes-core/glib-2.0/glib-2.0_2.58.3.bb | 1 +
meta/recipes-core/glibc/glibc-locale.inc | 3 +
meta/recipes-core/glibc/glibc-package.inc | 61 +-
meta/recipes-core/glibc/glibc/CVE-2019-9169.patch | 1 +
meta/recipes-core/glibc/glibc_2.29.bb | 1 -
meta/recipes-core/libxcrypt/libxcrypt.bb | 4 +-
...lved-Fix-incorrect-use-of-OpenSSL-BUF_MEM.patch | 41 ++
meta/recipes-core/systemd/systemd_241.bb | 1 +
meta/recipes-devtools/binutils/binutils-2.32.inc | 4 +
...Change-default-emulation-for-mips64-linux.patch | 9 +-
.../binutils/binutils/CVE-2019-12972.patch | 51 ++
.../binutils/binutils/CVE-2019-14250.patch | 33 +
.../binutils/binutils/CVE-2019-14444.patch | 28 +
.../binutils/binutils/CVE-2019-9071.patch | 165 +++++
meta/recipes-devtools/dpkg/dpkg/pager.patch | 21 +
meta/recipes-devtools/dpkg/dpkg_1.19.4.bb | 1 +
meta/recipes-devtools/gcc/gcc-8.3.inc | 6 +
.../gcc/gcc-8.3/0042-PR-debug-86964.patch | 94 +++
...vent-spilling-of-stack-protector-guard-s-.patch | 813 +++++++++++++++++++++
.../gcc/gcc-8.3/CVE-2019-14250.patch | 44 ++
.../gcc/gcc-8.3/CVE-2019-15847_p1.patch | 521 +++++++++++++
.../gcc/gcc-8.3/CVE-2019-15847_p2.patch | 77 ++
.../gcc/gcc-8.3/CVE-2019-15847_p3.patch | 45 ++
meta/recipes-devtools/meson/meson.inc | 1 +
...-return-statements-that-are-seen-with-Wer.patch | 84 +++
...k-temporary-file-on-failed-ed-style-patch.patch | 93 +++
...ak-temporary-file-on-failed-multi-file-ed.patch | 80 ++
...ke-ed-directly-instead-of-using-the-shell.patch | 44 ++
.../patch/patch/CVE-2019-13636.patch | 113 +++
meta/recipes-devtools/patch/patch_2.7.6.bb | 4 +
.../python/python/CVE-2019-9740.patch | 215 ++++++
.../python/python3/CVE-2019-9740.patch | 151 ++++
meta/recipes-devtools/python/python3_3.7.2.bb | 1 +
meta/recipes-devtools/python/python_2.7.16.bb | 1 +
meta/recipes-devtools/qemu/qemu.inc | 2 +
...fix-to-handle-variably-sized-SIOCGSTAMP-w.patch | 339 +++++++++
.../qemu/qemu/CVE-2018-20815.patch | 38 +
.../rsync/files/CVE-2016-9840.patch | 75 ++
.../rsync/files/CVE-2016-9841.patch | 228 ++++++
.../rsync/files/CVE-2016-9842.patch | 33 +
.../rsync/files/CVE-2016-9843.patch | 53 ++
meta/recipes-devtools/rsync/rsync_3.1.3.bb | 4 +
.../ghostscript/CVE-2019-3839-0008.patch | 440 +++++++++++
.../ghostscript/ghostscript_9.26.bb | 1 +
meta/recipes-extended/psmisc/psmisc.inc | 2 +-
.../libsdl/libsdl-1.2.15/CVE-2019-7572.patch | 114 +++
.../libsdl/libsdl-1.2.15/CVE-2019-7574.patch | 68 ++
.../libsdl/libsdl-1.2.15/CVE-2019-7575.patch | 81 ++
.../libsdl/libsdl-1.2.15/CVE-2019-7576.patch | 80 ++
.../libsdl/libsdl-1.2.15/CVE-2019-7577.patch | 123 ++++
.../libsdl/libsdl-1.2.15/CVE-2019-7578.patch | 64 ++
.../libsdl/libsdl-1.2.15/CVE-2019-7635.patch | 63 ++
.../libsdl/libsdl-1.2.15/CVE-2019-7637.patch | 192 +++++
.../libsdl/libsdl-1.2.15/CVE-2019-7638.patch | 38 +
meta/recipes-graphics/libsdl/libsdl_1.2.15.bb | 9 +
.../mesa/{mesa-gl_19.0.1.bb => mesa-gl_19.0.8.bb} | 0
.../mesa/{mesa_19.0.1.bb => mesa_19.0.8.bb} | 4 +-
.../pango/pango/CVE-2019-1010238.patch | 38 +
meta/recipes-graphics/pango/pango_1.42.4.bb | 4 +-
meta/recipes-kernel/linux/kernel-devsrc.bb | 4 +-
meta/recipes-kernel/linux/linux-yocto-rt_4.19.bb | 6 +-
meta/recipes-kernel/linux/linux-yocto-tiny_4.19.bb | 8 +-
meta/recipes-kernel/linux/linux-yocto_4.19.bb | 20 +-
.../0001-wakeup_xxx.h-include-limits.h.patch | 55 ++
meta/recipes-kernel/powertop/powertop_2.10.bb | 1 +
...der-release-VA-buffers-after-vaEndPicture.patch | 45 ++
...ibs-encoder-jpeg-set-component-id-and-Tqi.patch | 65 ++
.../gstreamer/gstreamer1.0-vaapi_1.14.4.bb | 2 +
.../libid3tag/libid3tag/10_utf16.patch | 1 +
.../libid3tag/libid3tag/unknown-encoding.patch | 39 +
.../libid3tag/libid3tag_0.15.1b.bb | 1 +
.../libtiff/tiff/CVE-2019-6128.patch | 52 ++
.../libtiff/tiff/CVE-2019-7663.patch | 77 ++
meta/recipes-multimedia/libtiff/tiff_4.0.10.bb | 3 +-
meta/recipes-support/boost/boost.inc | 2 +
meta/recipes-support/curl/curl/CVE-2019-5482.patch | 65 ++
meta/recipes-support/curl/curl_7.64.1.bb | 1 +
.../libgpg-error-1.35-gawk5-support.patch | 161 ++++
.../libgpg-error/libgpg-error_1.35.bb | 1 +
.../libxslt/files/CVE-2019-13117.patch | 33 +
.../libxslt/files/CVE-2019-13118.patch | 76 ++
meta/recipes-support/libxslt/libxslt_1.1.33.bb | 2 +
.../rng-tools/rng-tools/rngd.service | 3 +-
89 files changed, 5670 insertions(+), 62 deletions(-)
create mode 100644 meta/recipes-core/glib-2.0/glib-2.0/CVE-2019-13012.patch
create mode 100644 meta/recipes-core/systemd/systemd/0001-resolved-Fix-incorrect-use-of-OpenSSL-BUF_MEM.patch
create mode 100644 meta/recipes-devtools/binutils/binutils/CVE-2019-12972.patch
create mode 100644 meta/recipes-devtools/binutils/binutils/CVE-2019-14250.patch
create mode 100644 meta/recipes-devtools/binutils/binutils/CVE-2019-14444.patch
create mode 100644 meta/recipes-devtools/binutils/binutils/CVE-2019-9071.patch
create mode 100644 meta/recipes-devtools/dpkg/dpkg/pager.patch
create mode 100644 meta/recipes-devtools/gcc/gcc-8.3/0042-PR-debug-86964.patch
create mode 100644 meta/recipes-devtools/gcc/gcc-8.3/0043-PR85434-Prevent-spilling-of-stack-protector-guard-s-.patch
create mode 100644 meta/recipes-devtools/gcc/gcc-8.3/CVE-2019-14250.patch
create mode 100644 meta/recipes-devtools/gcc/gcc-8.3/CVE-2019-15847_p1.patch
create mode 100644 meta/recipes-devtools/gcc/gcc-8.3/CVE-2019-15847_p2.patch
create mode 100644 meta/recipes-devtools/gcc/gcc-8.3/CVE-2019-15847_p3.patch
create mode 100644 meta/recipes-devtools/meson/meson/0001-Fix-missing-return-statements-that-are-seen-with-Wer.patch
create mode 100644 meta/recipes-devtools/patch/patch/0001-Don-t-leak-temporary-file-on-failed-ed-style-patch.patch
create mode 100644 meta/recipes-devtools/patch/patch/0001-Don-t-leak-temporary-file-on-failed-multi-file-ed.patch
create mode 100644 meta/recipes-devtools/patch/patch/0001-Invoke-ed-directly-instead-of-using-the-shell.patch
create mode 100644 meta/recipes-devtools/patch/patch/CVE-2019-13636.patch
create mode 100644 meta/recipes-devtools/python/python/CVE-2019-9740.patch
create mode 100644 meta/recipes-devtools/python/python3/CVE-2019-9740.patch
create mode 100644 meta/recipes-devtools/qemu/qemu/0014-linux-user-fix-to-handle-variably-sized-SIOCGSTAMP-w.patch
create mode 100644 meta/recipes-devtools/qemu/qemu/CVE-2018-20815.patch
create mode 100644 meta/recipes-devtools/rsync/files/CVE-2016-9840.patch
create mode 100644 meta/recipes-devtools/rsync/files/CVE-2016-9841.patch
create mode 100644 meta/recipes-devtools/rsync/files/CVE-2016-9842.patch
create mode 100644 meta/recipes-devtools/rsync/files/CVE-2016-9843.patch
create mode 100644 meta/recipes-extended/ghostscript/ghostscript/CVE-2019-3839-0008.patch
create mode 100644 meta/recipes-graphics/libsdl/libsdl-1.2.15/CVE-2019-7572.patch
create mode 100644 meta/recipes-graphics/libsdl/libsdl-1.2.15/CVE-2019-7574.patch
create mode 100644 meta/recipes-graphics/libsdl/libsdl-1.2.15/CVE-2019-7575.patch
create mode 100644 meta/recipes-graphics/libsdl/libsdl-1.2.15/CVE-2019-7576.patch
create mode 100644 meta/recipes-graphics/libsdl/libsdl-1.2.15/CVE-2019-7577.patch
create mode 100644 meta/recipes-graphics/libsdl/libsdl-1.2.15/CVE-2019-7578.patch
create mode 100644 meta/recipes-graphics/libsdl/libsdl-1.2.15/CVE-2019-7635.patch
create mode 100644 meta/recipes-graphics/libsdl/libsdl-1.2.15/CVE-2019-7637.patch
create mode 100644 meta/recipes-graphics/libsdl/libsdl-1.2.15/CVE-2019-7638.patch
rename meta/recipes-graphics/mesa/{mesa-gl_19.0.1.bb => mesa-gl_19.0.8.bb} (100%)
rename meta/recipes-graphics/mesa/{mesa_19.0.1.bb => mesa_19.0.8.bb} (85%)
create mode 100644 meta/recipes-graphics/pango/pango/CVE-2019-1010238.patch
create mode 100644 meta/recipes-kernel/powertop/powertop/0001-wakeup_xxx.h-include-limits.h.patch
create mode 100644 meta/recipes-multimedia/gstreamer/gstreamer1.0-vaapi/0001-libs-decoder-release-VA-buffers-after-vaEndPicture.patch
create mode 100644 meta/recipes-multimedia/gstreamer/gstreamer1.0-vaapi/0001-libs-encoder-jpeg-set-component-id-and-Tqi.patch
create mode 100644 meta/recipes-multimedia/libid3tag/libid3tag/unknown-encoding.patch
create mode 100644 meta/recipes-multimedia/libtiff/tiff/CVE-2019-6128.patch
create mode 100644 meta/recipes-multimedia/libtiff/tiff/CVE-2019-7663.patch
create mode 100644 meta/recipes-support/curl/curl/CVE-2019-5482.patch
create mode 100644 meta/recipes-support/libgpg-error/libgpg-error/libgpg-error-1.35-gawk5-support.patch
create mode 100644 meta/recipes-support/libxslt/files/CVE-2019-13117.patch
create mode 100644 meta/recipes-support/libxslt/files/CVE-2019-13118.patch
--
2.7.4
next reply other threads:[~2019-09-24 2:49 UTC|newest]
Thread overview: 54+ messages / expand[flat|nested] mbox.gz Atom feed top
2019-09-24 2:48 Armin Kuster [this message]
2019-09-24 2:48 ` [warrior][ 01/50] binutils: fix CVE-2019-12972 CVE-2019-9071 Armin Kuster
2019-09-24 2:48 ` [warrior][ 02/50] binutils: CVE-2019-9070 is same as CVE-2019-9071 Armin Kuster
2019-09-24 2:48 ` [warrior][ 03/50] python: fix CVE-2019-9740 Armin Kuster
2019-09-24 2:48 ` [warrior][ 04/50] libxslt: fix CVE-2019-13117 CVE-2019-13118 Armin Kuster
2019-09-24 2:48 ` [warrior][ 05/50] glibc: CVE-2018-20796 is same as CVE-2019-9169 Armin Kuster
2019-09-24 2:48 ` [warrior][ 06/50] libid3tag: handle unknown encodings (CVE-2017-11550) Armin Kuster
2019-09-24 2:48 ` [warrior][ 07/50] libid3tag: CVE-2017-11551 is the same as CVE-2004-2779 Armin Kuster
2019-09-24 2:48 ` [warrior][ 08/50] tiff: fix CVE-2019-6128 Armin Kuster
2019-09-24 2:48 ` [warrior][ 09/50] tiff: fix CVE-2019-7663 Armin Kuster
2019-09-24 2:48 ` [warrior][ 10/50] libsdl: CVE fixes Armin Kuster
2019-09-24 2:48 ` [warrior][ 11/50] gstreamer1.0-vaapi: backport jpeg encode/decode fixes Armin Kuster
2019-09-24 2:48 ` [warrior][ 12/50] package: Improve determinism Armin Kuster
2019-09-24 2:48 ` [warrior][ 13/50] patch: fix CVE-2019-13636 Armin Kuster
2019-09-24 2:48 ` [warrior][ 14/50] python3: fix CVE-2019-9740 Armin Kuster
2019-09-24 2:48 ` [warrior][ 15/50] ghostscript: fix CVE-2019-3839 Armin Kuster
2019-09-24 2:48 ` [warrior][ 16/50] rng-tools: fix very long shutdown delay with systemd Armin Kuster
2019-09-24 2:48 ` [warrior][ 17/50] psmisc: Fix dependency for USE_NLS=no Armin Kuster
2019-09-24 2:48 ` [warrior][ 18/50] systemd: Backport OpenSSL BUF_MEM fix Armin Kuster
2019-09-24 6:50 ` Adrian Bunk
2019-09-24 2:48 ` [warrior][ 19/50] package.bbclass: fix directories setuid and setgid bits Armin Kuster
2019-09-24 2:49 ` [warrior][ 20/50] qemu: add a patch fixing the native build on newer kernels Armin Kuster
2019-09-24 2:49 ` [warrior][ 21/50] mesa: Update 19.0.1 -> 19.0.8 Armin Kuster
2019-09-24 2:49 ` [warrior][ 22/50] qemu: fix CVE-2018-20815 Armin Kuster
2019-09-24 2:49 ` [warrior][ 23/50] linux-yocto/4.19: update to 4.19.57 and -rt22 Armin Kuster
2019-09-24 2:49 ` [warrior][ 24/50] linux-yocto/4.19: update to v4.19.61 Armin Kuster
2019-09-24 2:49 ` [warrior][ 25/50] boost: Fix build and enable context and coroutines on aarch64 Armin Kuster
2019-09-24 3:37 ` Andre McCurdy
2019-09-25 0:41 ` akuster808
2019-09-24 2:49 ` [warrior][ 26/50] rsync: fix CVEs for included zlib Armin Kuster
2019-09-24 2:49 ` [warrior][ 27/50] patch: fix CVE-2019-13638 Armin Kuster
2019-09-24 2:49 ` [warrior][ 28/50] patch: backport fixes Armin Kuster
2019-09-24 2:49 ` [warrior][ 29/50] dpkg: Use less as pager Armin Kuster
2019-09-24 2:49 ` [warrior][ 30/50] icecc.bbclass: catch subprocess.CalledProcessError Armin Kuster
2019-09-24 2:49 ` [warrior][ 31/50] meson: backport fix for builds with -Werror=return-type Armin Kuster
2019-09-24 2:49 ` [warrior][ 32/50] powertop: import a fix from buildroot Armin Kuster
2019-09-24 2:49 ` [warrior][ 33/50] binutils: fix CVE-2019-14250 CVE-2019-14444 Armin Kuster
2019-09-24 2:49 ` [warrior][ 34/50] pango: fix CVE-2019-1010238 Armin Kuster
2019-09-24 2:49 ` [warrior][ 35/50] glib-2.0: fix CVE-2019-13012 Armin Kuster
2019-09-24 2:49 ` [warrior][ 36/50] gcc: reduce the variables in symtab Armin Kuster
2019-09-24 2:49 ` [warrior][ 37/50] gcc: CVE-2018-12886 Armin Kuster
2019-09-24 2:49 ` [warrior][ 38/50] binutils: Fix mips patch which changes default emulation Armin Kuster
2019-09-24 2:49 ` [warrior][ 39/50] glibc: Fix multilibs + usrmerge builds Armin Kuster
2019-09-24 2:49 ` [warrior][ 40/50] glibc-locale: Fix build error with PACKAGE_NO_GCONV = "1" Armin Kuster
2019-09-24 2:49 ` [warrior][ 41/50] glibc/glibc-locale: Fix do_stash_locale to work with usrmerge and multilibs Armin Kuster
2019-09-24 2:49 ` [warrior][ 42/50] glibc / glibc-locale: Fix stash_locale determinism problems Armin Kuster
2019-09-24 2:49 ` [warrior][ 43/50] gcc-8.3: Security fix for CVE-2019-14250 Armin Kuster
2019-09-24 2:49 ` [warrior][ 44/50] kernel-fitimage: uboot-sign: fix missing signature Armin Kuster
2019-09-24 2:49 ` [warrior][ 45/50] kernel-devsrc: tweak for v5.3+ Armin Kuster
2019-09-24 2:49 ` [warrior][ 46/50] libxcrypt: Fix the build with -Os Armin Kuster
2019-09-24 2:49 ` [warrior][ 47/50] libgpg-error: Fix build with gawk 5.x Armin Kuster
2019-09-24 2:49 ` [warrior][ 48/50] Curl: Security fix for CVE-2019-5482 Armin Kuster
2019-09-24 2:49 ` [warrior][ 49/50] gcc: Security fix for CVE-2019-15847 Armin Kuster
2019-09-24 2:49 ` [warrior][ 50/50] multilib.bbclass: Reduce ALTERNATIVE_PRIORITY for extended recipes Armin Kuster
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=cover.1569292053.git.akuster808@gmail.com \
--to=akuster808@gmail.com \
--cc=openembedded-core@lists.openembedded.org \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.