From: Anuj Mittal <anuj.mittal@intel.com>
To: openembedded-core@lists.openembedded.org
Subject: [zeus][PATCH 00/15] zeus review/pull request
Date: Fri, 22 Nov 2019 19:38:59 +0800 [thread overview]
Message-ID: <cover.1574422359.git.anuj.mittal@intel.com> (raw)
zeus patch queue for review. a-full build passing on autobuilder.
Thanks,
Anuj
The following changes since commit 0275e68b0576cdefc19718e4b1977044f9f43f48:
iputils: Whitelist CVE-2000-1213 CVE-2000-1214 (2019-11-19 00:24:22 +0000)
are available in the Git repository at:
git://push.yoctoproject.org/poky-contrib anujm/zeus
Adrian Bunk (1):
lz4: Whitelist CVE-2014-4715
Alexander Kanavin (2):
Revert "devtool/standard.py: Not filtering devtool workspace for
devtool finish"
python: update to 2.7.17
Anuj Mittal (1):
boost: fix build for x32
Kai Kang (1):
bind: fix CVE-2019-6471 and CVE-2018-5743
Ross Burton (9):
libsoup: set CVE_PRODUCT
cve-check: we don't actually need to unpack to check
cve-update-db-native: don't refresh more than once an hour
cve-update-db-native: don't hardcode the database name
cve-update-db-native: add an index on the CVE ID column
cve-update-db-native: clean up proxy handling
cve-check: rewrite look to fix false negatives
cve-check: neaten get_cve_info
cve-check: fetch CVE data once at a time instead of in a single call
Zheng Ruoqin (1):
tiff: Refresh patch
meta/classes/cve-check.bbclass | 98 +-
.../bind/0001-bind-fix-CVE-2019-6471.patch | 64 ++
...01-fix-enforcement-of-tcp-clients-v1.patch | 60 ++
...p-clients-could-still-be-exceeded-v2.patch | 670 +++++++++++++
...rence-counter-for-pipeline-groups-v3.patch | 278 ++++++
...accounting-and-client-mortality-chec.patch | 512 ++++++++++
...a-and-pipeline-refs-allow-special-ca.patch | 911 ++++++++++++++++++
...allowance-for-tcp-clients-interfaces.patch | 80 ++
...perations-in-bin-named-client.c-with.patch | 140 +++
.../bind/bind_9.11.5-P4.bb | 8 +
.../recipes-core/meta/cve-update-db-native.bb | 44 +-
...-fix-one-do_populate_sysroot-warning.patch | 25 +-
...tive_2.7.16.bb => python-native_2.7.17.bb} | 2 +-
meta/recipes-devtools/python/python.inc | 10 +-
...nt-parse-domains-containing-GH-13079.patch | 90 --
...cape-the-server-title-of-DocXMLRPCSe.patch | 101 --
...Resolve-intermediate-staging-issues.patch} | 53 +-
.../python/python/CVE-2018-20852.patch | 123 ---
.../python/python/CVE-2019-9740.patch | 216 -----
.../python/bpo-35907-cve-2019-9948-fix.patch | 55 --
.../python/bpo-35907-cve-2019-9948.patch | 55 --
.../python/bpo-36216-cve-2019-9636-fix.patch | 28 -
.../python/bpo-36216-cve-2019-9636.patch | 111 ---
.../python/bpo-36742-cve-2019-10160.patch | 81 --
.../{python_2.7.16.bb => python_2.7.17.bb} | 3 -
.../libtiff/tiff/CVE-2019-7663.patch | 71 +-
...01-dont-setup-compiler-flags-m32-m64.patch | 42 +
meta/recipes-support/boost/boost_1.71.0.bb | 1 +
.../libsoup/libsoup-2.4_2.66.2.bb | 2 +
meta/recipes-support/lz4/lz4_1.9.2.bb | 3 +
scripts/lib/devtool/standard.py | 2 +-
31 files changed, 2911 insertions(+), 1028 deletions(-)
create mode 100644 meta/recipes-connectivity/bind/bind/0001-bind-fix-CVE-2019-6471.patch
create mode 100644 meta/recipes-connectivity/bind/bind/0001-fix-enforcement-of-tcp-clients-v1.patch
create mode 100644 meta/recipes-connectivity/bind/bind/0002-tcp-clients-could-still-be-exceeded-v2.patch
create mode 100644 meta/recipes-connectivity/bind/bind/0003-use-reference-counter-for-pipeline-groups-v3.patch
create mode 100644 meta/recipes-connectivity/bind/bind/0004-better-tcpquota-accounting-and-client-mortality-chec.patch
create mode 100644 meta/recipes-connectivity/bind/bind/0005-refactor-tcpquota-and-pipeline-refs-allow-special-ca.patch
create mode 100644 meta/recipes-connectivity/bind/bind/0006-restore-allowance-for-tcp-clients-interfaces.patch
create mode 100644 meta/recipes-connectivity/bind/bind/0007-Replace-atomic-operations-in-bin-named-client.c-with.patch
rename meta/recipes-devtools/python/{python-native_2.7.16.bb => python-native_2.7.17.bb} (97%)
delete mode 100644 meta/recipes-devtools/python/python/0001-2.7-bpo-34155-Dont-parse-domains-containing-GH-13079.patch
delete mode 100644 meta/recipes-devtools/python/python/0001-2.7-bpo-38243-Escape-the-server-title-of-DocXMLRPCSe.patch
rename meta/recipes-devtools/python/python/{builddir.patch => 0001-python-Resolve-intermediate-staging-issues.patch} (58%)
delete mode 100644 meta/recipes-devtools/python/python/CVE-2018-20852.patch
delete mode 100644 meta/recipes-devtools/python/python/CVE-2019-9740.patch
delete mode 100644 meta/recipes-devtools/python/python/bpo-35907-cve-2019-9948-fix.patch
delete mode 100644 meta/recipes-devtools/python/python/bpo-35907-cve-2019-9948.patch
delete mode 100644 meta/recipes-devtools/python/python/bpo-36216-cve-2019-9636-fix.patch
delete mode 100644 meta/recipes-devtools/python/python/bpo-36216-cve-2019-9636.patch
delete mode 100644 meta/recipes-devtools/python/python/bpo-36742-cve-2019-10160.patch
rename meta/recipes-devtools/python/{python_2.7.16.bb => python_2.7.17.bb} (97%)
create mode 100644 meta/recipes-support/boost/boost/0001-dont-setup-compiler-flags-m32-m64.patch
--
2.21.0
next reply other threads:[~2019-11-22 11:40 UTC|newest]
Thread overview: 17+ messages / expand[flat|nested] mbox.gz Atom feed top
2019-11-22 11:38 Anuj Mittal [this message]
2019-11-22 11:39 ` [zeus][PATCH 01/15] lz4: Whitelist CVE-2014-4715 Anuj Mittal
2019-11-22 11:39 ` [zeus][PATCH 02/15] libsoup: set CVE_PRODUCT Anuj Mittal
2019-11-22 11:39 ` [zeus][PATCH 03/15] cve-check: we don't actually need to unpack to check Anuj Mittal
2019-11-22 11:39 ` [zeus][PATCH 04/15] cve-update-db-native: don't refresh more than once an hour Anuj Mittal
2019-11-22 11:39 ` [zeus][PATCH 05/15] cve-update-db-native: don't hardcode the database name Anuj Mittal
2019-11-22 11:39 ` [zeus][PATCH 06/15] cve-update-db-native: add an index on the CVE ID column Anuj Mittal
2019-11-22 11:39 ` [zeus][PATCH 07/15] cve-update-db-native: clean up proxy handling Anuj Mittal
2019-11-22 11:39 ` [zeus][PATCH 08/15] cve-check: rewrite look to fix false negatives Anuj Mittal
2019-11-22 11:39 ` [zeus][PATCH 09/15] cve-check: neaten get_cve_info Anuj Mittal
2019-11-22 11:39 ` [zeus][PATCH 10/15] cve-check: fetch CVE data once at a time instead of in a single call Anuj Mittal
2019-11-22 11:39 ` [zeus][PATCH 11/15] boost: fix build for x32 Anuj Mittal
2019-11-22 11:39 ` [zeus][PATCH 12/15] Revert "devtool/standard.py: Not filtering devtool workspace for devtool finish" Anuj Mittal
2019-11-22 11:39 ` [zeus][PATCH 13/15] python: update to 2.7.17 Anuj Mittal
2019-11-22 11:39 ` [zeus][PATCH 14/15] tiff: Refresh patch Anuj Mittal
2019-11-22 11:39 ` [zeus][PATCH 15/15] bind: fix CVE-2019-6471 and CVE-2018-5743 Anuj Mittal
2019-11-22 12:02 ` ✗ patchtest: failure for zeus review/pull request Patchwork
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=cover.1574422359.git.anuj.mittal@intel.com \
--to=anuj.mittal@intel.com \
--cc=openembedded-core@lists.openembedded.org \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.