From: "Steve Sakoman" <steve@sakoman.com>
To: openembedded-core@lists.openembedded.org
Subject: [OE-core][dunfell 00/32] Pull request (cover letter only)
Date: Tue, 10 Nov 2020 14:32:19 -1000 [thread overview]
Message-ID: <cover.1605054618.git.steve@sakoman.com> (raw)
The following changes since commit 5f644082fc3c2bbd89b898d5ca7cd4414cda4a64:
nasm: update 2.14.02 -> 2.15.03 for CVE fixes (2020-11-02 04:05:13 -1000)
are available in the Git repository at:
git://git.openembedded.org/openembedded-core-contrib stable/dunfell-next
http://cgit.openembedded.org/openembedded-core-contrib/log/?h=stable/dunfell-next
Alexander Kanavin (1):
linux-firmware: upgrade 20200817 -> 20201022
Andrey Zhizhikin (1):
insane: add GitLab /archive/ tests
Changqing Li (1):
timezone: upgrade to 2020d
Chee Yang Lee (2):
bluez5: update to 5.55 to fix CVE-2020-27153
ruby: fix CVE-2020-25613
Joshua Watt (1):
jquery: Upgrade 3.4.1 -> 3.5.0 to fix CVE-2020-11022 and
CVE-2020-11023
Khem Raj (1):
qemuboot.bbclass: Fix a typo
Mark Jonas (4):
Add license text for PSF-2.0
Map license names PSF and PSFv2 to PSF-2.0
libsdl2: Fix directfb syntax error
libsdl2: Fix directfb SDL_RenderFillRect
Martin Jansa (3):
lib/oe/patch: prevent applying patches without any subject
lib/oe/patch: GitApplyTree: save 1 echo in commit-msg hook
Revert "lib/oe/patch: fix handling of patches with no header"
Max Krummenacher (2):
linux-firmware: package marvel sdio 8997 firmware
linux-firmware: package nvidia firmware
Maxime Roussin-Bélanger (1):
meta: fix some unresponsive homepages and bugtracker links
Mingli Yu (1):
update_udev_hwdb: clean hwdb.bin
Neil Armstrong (1):
linux-firmware: add Amlogic VDEC firmware package
Richard Leitner (1):
xcb-proto: backport fix for python gcd function
Richard Purdie (1):
sstatesig: Log timestamps for hashequiv in reprodubile builds for
do_package
Steve Sakoman (7):
sqlite3: fix CVE-2020-13434
sqlite3: fix CVE-2020-13435
sqlite3: fix CVE-2020-13630
sqlite3: fix CVE-2020-13631
sqlite3: fix CVE-2020-13632
netbase: update SRC_URI to reflect new file name
netbase: bump PE to purge bogus hash equivalence from autobuilder
Yann E. MORIN (2):
common-licenses: add bzip2-1.0.4
recipes-core/busybox: fixup licensing information
Yongxin Liu (2):
grub: fix several CVEs in grub 2.04
grub: clean up CVE patches
meta/classes/insane.bbclass | 4 +-
meta/classes/qemuboot.bbclass | 2 +-
meta/conf/licenses.conf | 6 +-
meta/files/common-licenses/PSF-2.0 | 49 +
meta/files/common-licenses/bzip2-1.0.4 | 43 +
meta/lib/oe/patch.py | 13 +-
meta/lib/oe/sstatesig.py | 6 +
...308-calloc-Use-calloc-at-most-places.patch | 1863 +++++++++++++++++
...low-checking-primitives-where-we-do-.patch | 1330 ++++++++++++
...se-after-free-when-redefining-a-func.patch | 117 ++
...er-overflows-in-initrd-size-handling.patch | 177 ++
...-we-always-have-an-overflow-checking.patch | 246 +++
...dd-LVM-cache-logical-volume-handling.patch | 287 +++
...e-arithmetic-primitives-that-check-f.patch | 94 +
...used-fields-from-grub_script_functio.patch | 37 +
meta/recipes-bsp/grub/grub2.inc | 8 +
meta/recipes-bsp/v86d/v86d_0.1.10.bb | 2 +-
.../recipes-connectivity/bind/bind_9.11.22.bb | 2 +-
.../bluez5/{bluez5_5.54.bb => bluez5_5.55.bb} | 4 +-
meta/recipes-connectivity/iw/iw_5.4.bb | 2 +-
meta/recipes-core/busybox/busybox.inc | 7 +-
meta/recipes-core/netbase/netbase_6.1.bb | 9 +-
meta/recipes-core/readline/readline.inc | 2 +-
meta/recipes-core/util-linux/util-linux.inc | 4 +-
meta/recipes-devtools/chrpath/chrpath_0.16.bb | 3 +-
.../{jquery_3.4.1.bb => jquery_3.5.0.bb} | 8 +-
meta/recipes-devtools/ninja/ninja_1.10.0.bb | 2 +-
.../ruby/ruby/CVE-2020-25613.patch | 40 +
meta/recipes-devtools/ruby/ruby_2.7.1.bb | 1 +
meta/recipes-extended/lsb/lsb-release_1.4.bb | 2 +-
.../recipes-extended/minicom/minicom_2.7.1.bb | 2 +-
meta/recipes-extended/pbzip2/pbzip2_1.1.13.bb | 2 +-
meta/recipes-extended/timezone/timezone.inc | 6 +-
meta/recipes-extended/which/which_2.21.bb | 2 +-
meta/recipes-gnome/gnome/gconf_3.2.6.bb | 2 +-
meta/recipes-gnome/gtk-doc/gtk-doc_1.32.bb | 3 +-
.../libsdl2/directfb-renderfillrect-fix.patch | 33 +
...ectfb-spurious-curly-brace-missing-e.patch | 49 +
.../libsdl2/libsdl2_2.0.12.bb | 2 +
...1-xcbgen-use-math-gcd-for-python-3-5.patch | 40 +
.../xorg-proto/xcb-proto_1.13.bb | 3 +-
meta/recipes-kernel/kmod/kmod.inc | 2 +-
...20200817.bb => linux-firmware_20201022.bb} | 51 +-
.../wireless-regdb_2020.04.29.bb | 2 +-
.../libvorbis/libvorbis_1.3.6.bb | 4 +-
.../settings-daemon/settings-daemon_0.0.2.bb | 2 +-
meta/recipes-support/atk/atk_2.34.1.bb | 5 +-
.../bash-completion/bash-completion_2.10.bb | 4 +-
meta/recipes-support/npth/npth_1.6.bb | 4 +-
.../sqlite/files/CVE-2020-13434.patch | 48 +
.../sqlite/files/CVE-2020-13435.patch | 219 ++
.../sqlite/files/CVE-2020-13630.patch | 32 +
.../sqlite/files/CVE-2020-13631.patch | 99 +
.../sqlite/files/CVE-2020-13632.patch | 34 +
meta/recipes-support/sqlite/sqlite3_3.31.1.bb | 5 +
scripts/postinst-intercepts/update_udev_hwdb | 1 +
56 files changed, 4963 insertions(+), 63 deletions(-)
create mode 100644 meta/files/common-licenses/PSF-2.0
create mode 100644 meta/files/common-licenses/bzip2-1.0.4
create mode 100644 meta/recipes-bsp/grub/files/CVE-2020-14308-calloc-Use-calloc-at-most-places.patch
create mode 100644 meta/recipes-bsp/grub/files/CVE-2020-14309-CVE-2020-14310-CVE-2020-14311-malloc-Use-overflow-checking-primitives-where-we-do-.patch
create mode 100644 meta/recipes-bsp/grub/files/CVE-2020-15706-script-Avoid-a-use-after-free-when-redefining-a-func.patch
create mode 100644 meta/recipes-bsp/grub/files/CVE-2020-15707-linux-Fix-integer-overflows-in-initrd-size-handling.patch
create mode 100644 meta/recipes-bsp/grub/files/calloc-Make-sure-we-always-have-an-overflow-checking.patch
create mode 100644 meta/recipes-bsp/grub/files/lvm-Add-LVM-cache-logical-volume-handling.patch
create mode 100644 meta/recipes-bsp/grub/files/safemath-Add-some-arithmetic-primitives-that-check-f.patch
create mode 100644 meta/recipes-bsp/grub/files/script-Remove-unused-fields-from-grub_script_functio.patch
rename meta/recipes-connectivity/bluez5/{bluez5_5.54.bb => bluez5_5.55.bb} (91%)
rename meta/recipes-devtools/jquery/{jquery_3.4.1.bb => jquery_3.5.0.bb} (73%)
create mode 100644 meta/recipes-devtools/ruby/ruby/CVE-2020-25613.patch
create mode 100644 meta/recipes-graphics/libsdl2/libsdl2/directfb-renderfillrect-fix.patch
create mode 100644 meta/recipes-graphics/libsdl2/libsdl2/directfb-spurious-curly-brace-missing-e.patch
create mode 100644 meta/recipes-graphics/xorg-proto/xcb-proto/0001-xcbgen-use-math-gcd-for-python-3-5.patch
rename meta/recipes-kernel/linux-firmware/{linux-firmware_20200817.bb => linux-firmware_20201022.bb} (95%)
create mode 100644 meta/recipes-support/sqlite/files/CVE-2020-13434.patch
create mode 100644 meta/recipes-support/sqlite/files/CVE-2020-13435.patch
create mode 100644 meta/recipes-support/sqlite/files/CVE-2020-13630.patch
create mode 100644 meta/recipes-support/sqlite/files/CVE-2020-13631.patch
create mode 100644 meta/recipes-support/sqlite/files/CVE-2020-13632.patch
--
2.17.1
next reply other threads:[~2020-11-11 0:32 UTC|newest]
Thread overview: 2+ messages / expand[flat|nested] mbox.gz Atom feed top
2020-11-11 0:32 Steve Sakoman [this message]
-- strict thread matches above, loose matches on Subject: below --
2020-06-25 0:57 [OE-core][dunfell 00/32] Pull request (cover letter only) Steve Sakoman
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=cover.1605054618.git.steve@sakoman.com \
--to=steve@sakoman.com \
--cc=openembedded-core@lists.openembedded.org \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.