* [OE-core][dunfell 00/29] Pull request (cover letter only)
@ 2022-02-23 22:16 Steve Sakoman
0 siblings, 0 replies; 3+ messages in thread
From: Steve Sakoman @ 2022-02-23 22:16 UTC (permalink / raw)
To: openembedded-core
The following changes since commit 88c0290520c9e4982d25c20e783bd91eec016b52:
libusb1: correct SRC_URI (2022-02-07 04:40:13 -1000)
are available in the Git repository at:
git://git.openembedded.org/openembedded-core-contrib stable/dunfell-next
http://cgit.openembedded.org/openembedded-core-contrib/log/?h=stable/dunfell-next
Alexander Kanavin (2):
ruby: correctly set native/target dependencies
vim: do not report upstream version check as broken
Bruce Ashfield (3):
linux-yocto/5.4: update to v5.4.173
linux-yocto/5.4: update to v5.4.176
linux-yocto/5.4: update to v5.4.178
Christian Eggers (1):
sdk: fix search for dynamic loader
Florian Amstutz (1):
devtool: deploy-target: Remove stripped binaries in pseudo context
Konrad Weihmann (1):
ruby: fix DEPENDS append
Martin Beeger (1):
cmake: remove bogus CMAKE_LDFLAGS_FLAGS definition from toolchain file
Purushottam Choudhary (1):
freetype: add missing CVE tag CVE-2020-15999
Richard Purdie (3):
default-distrovars.inc: Switch connectivity check to a
yoctoproject.org page
vim: Upgrade 4269 -> 4134
vim: Upgrade 8.2.4314 -> 8.2.4424
Ross Burton (5):
lighttpd: backport a fix for CVE-2022-22707
vim: set PACKAGECONFIG idiomatically
vim: upgrade to 8.2 patch 3752
vim: update to include latest CVE fixes
vim: upgrade to patch 4269
Saul Wold (1):
recipetool: Fix circular reference in SRC_URI
Stefan Herbrechtsmeier (1):
cve-check: create directory of CVE_CHECK_MANIFEST before copy
Steve Sakoman (6):
expat: fix CVE-2022-23990
connman: fix CVE-2022-23096-7
connman: fix CVE-2022-23098
connman: fix CVE-2021-33833
wpa-supplicant: fix CVE-2022-23303-4
Revert "vim: fix CVE-2021-4069"
Sundeep KOKKONDA (1):
binutils: Fix CVE-2021-45078
bkylerussell@gmail.com (1):
rpm: fix intermittent compression failure in do_package_write_rpm
wangmy (1):
linux-firmware: upgrade 20211216 -> 20220209
meta/classes/cve-check.bbclass | 1 +
meta/classes/sanity.bbclass | 2 +-
.../distro/include/default-distrovars.inc | 2 +-
meta/files/toolchain-shar-relocate.sh | 2 +-
.../connman/connman/CVE-2021-33833.patch | 72 +++
.../connman/connman/CVE-2022-23096-7.patch | 121 ++++
.../connman/connman/CVE-2022-23098.patch | 50 ++
.../connman/connman_1.37.bb | 3 +
.../wpa-supplicant/CVE-2022-23303-4.patch | 609 ++++++++++++++++++
.../wpa-supplicant/wpa-supplicant_2.9.bb | 1 +
.../expat/expat/CVE-2022-23990.patch | 49 ++
meta/recipes-core/expat/expat_2.2.9.bb | 1 +
.../binutils/binutils-2.34.inc | 1 +
.../binutils/0001-CVE-2021-45078.patch | 257 ++++++++
.../cmake/cmake/OEToolchainConfig.cmake | 1 -
..._internal-mode-parsing-when-Tn-is-us.patch | 34 +
meta/recipes-devtools/rpm/rpm_4.14.2.1.bb | 1 +
meta/recipes-devtools/ruby/ruby.inc | 4 +-
...ix-out-of-bounds-OOB-write-fixes-313.patch | 100 +++
.../lighttpd/lighttpd_1.4.55.bb | 1 +
...-sfnt-Fix-heap-buffer-overflow-59308.patch | 3 +
...20211216.bb => linux-firmware_20220209.bb} | 4 +-
.../linux/linux-yocto-rt_5.4.bb | 6 +-
.../linux/linux-yocto-tiny_5.4.bb | 8 +-
meta/recipes-kernel/linux/linux-yocto_5.4.bb | 22 +-
...1-reading-character-past-end-of-line.patch | 62 --
...src-Makefile-improve-reproducibility.patch | 13 +-
...28-using-freed-memory-when-replacing.patch | 83 ---
...eading-uninitialized-memory-when-giv.patch | 63 --
...rash-when-using-CTRL-W-f-without-fin.patch | 92 ---
...llegal-memory-access-if-buffer-name-.patch | 86 ---
...ml_get-error-after-search-with-range.patch | 72 ---
...nvalid-memory-access-when-scrolling-.patch | 97 ---
.../vim/files/CVE-2021-3778.patch | 61 --
.../vim/files/CVE-2021-4069.patch | 43 --
...1e135a16091c93f6f5f7525a5c58fb7ca9f9.patch | 207 ------
.../vim/files/disable_acl_header_check.patch | 15 +-
.../vim/files/no-path-adjust.patch | 8 +-
meta/recipes-support/vim/files/racefix.patch | 6 +-
...m-add-knob-whether-elf.h-are-checked.patch | 13 +-
meta/recipes-support/vim/vim.inc | 27 +-
scripts/lib/devtool/deploy.py | 2 +-
scripts/lib/recipetool/create.py | 2 +-
43 files changed, 1364 insertions(+), 943 deletions(-)
create mode 100644 meta/recipes-connectivity/connman/connman/CVE-2021-33833.patch
create mode 100644 meta/recipes-connectivity/connman/connman/CVE-2022-23096-7.patch
create mode 100644 meta/recipes-connectivity/connman/connman/CVE-2022-23098.patch
create mode 100644 meta/recipes-connectivity/wpa-supplicant/wpa-supplicant/CVE-2022-23303-4.patch
create mode 100644 meta/recipes-core/expat/expat/CVE-2022-23990.patch
create mode 100644 meta/recipes-devtools/binutils/binutils/0001-CVE-2021-45078.patch
create mode 100644 meta/recipes-devtools/rpm/files/0001-rpmio-Fix-lzopen_internal-mode-parsing-when-Tn-is-us.patch
create mode 100644 meta/recipes-extended/lighttpd/lighttpd/0001-mod_extforward-fix-out-of-bounds-OOB-write-fixes-313.patch
rename meta/recipes-kernel/linux-firmware/{linux-firmware_20211216.bb => linux-firmware_20220209.bb} (99%)
delete mode 100644 meta/recipes-support/vim/files/0001-patch-8.2.3581-reading-character-past-end-of-line.patch
delete mode 100644 meta/recipes-support/vim/files/0002-patch-8.2.3428-using-freed-memory-when-replacing.patch
delete mode 100644 meta/recipes-support/vim/files/0002-patch-8.2.3582-reading-uninitialized-memory-when-giv.patch
delete mode 100644 meta/recipes-support/vim/files/0002-patch-8.2.3611-crash-when-using-CTRL-W-f-without-fin.patch
delete mode 100644 meta/recipes-support/vim/files/0003-patch-8.2.3487-illegal-memory-access-if-buffer-name-.patch
delete mode 100644 meta/recipes-support/vim/files/0004-patch-8.2.3489-ml_get-error-after-search-with-range.patch
delete mode 100644 meta/recipes-support/vim/files/0005-patch-8.2.3564-invalid-memory-access-when-scrolling-.patch
delete mode 100644 meta/recipes-support/vim/files/CVE-2021-3778.patch
delete mode 100644 meta/recipes-support/vim/files/CVE-2021-4069.patch
delete mode 100644 meta/recipes-support/vim/files/b7081e135a16091c93f6f5f7525a5c58fb7ca9f9.patch
--
2.25.1
^ permalink raw reply [flat|nested] 3+ messages in thread* [OE-core][dunfell 00/29] Pull request (cover letter only)
@ 2021-11-03 0:11 Steve Sakoman
2021-11-03 11:21 ` Richard Purdie
0 siblings, 1 reply; 3+ messages in thread
From: Steve Sakoman @ 2021-11-03 0:11 UTC (permalink / raw)
To: openembedded-core
The following changes since commit a7520c47573cd166d441e504737492b86f5aa42e:
selftest/reproducible: adjust exclusion list for dunfell (2021-10-25 13:28:19 -1000)
are available in the Git repository at:
git://git.openembedded.org/openembedded-core-contrib stable/dunfell-next
http://cgit.openembedded.org/openembedded-core-contrib/log/?h=stable/dunfell-next
Alexander Kanavin (7):
linux-firmware: upgrade 20210511 -> 20210818
linux-firmware: upgrade 20210818 -> 20210919
wireless-regdb: upgrade 2021.04.21 -> 2021.07.14
wireless-regdb: upgrade 2021.07.14 -> 2021.08.28
ca-certificates: update 20210119 -> 20211016
tzdata: upgrade 2021a -> 2021d
tzdata: update 2021d -> 2021e
Daniel McGregor (1):
bitbake.conf: Add gpg-agent as a host tool
Jose Quaresma (1):
sstate: fix touching files inside pseudo
Minjae Kim (1):
vim: fix 2021-3796
Oleksandr Kravchuk (1):
mirrors.bbclass: remove dead infozip mirrors
Ranjitsinh Rathod (1):
curl: Whitelist CVE-2021-22897
Richard Purdie (5):
base: Clean up unneeded len() calls
base: Use repr() for printing exceptions
reproducible_build: Drop obsolete sstate workaround
patch: Use repr() with exceptions instead of str()
git: Fix determinism issue
Ross Burton (8):
devtool: fix modify with patches in override directories
sstate: don't silently handle all exceptions in sstate_checkhashes
oe/license: implement ast.NodeVisitor.visit_Constant
license.bbclass: implement ast.NodeVisitor.visit_Constant
oe/utils: log exceptions in ThreadedWorker functions
testimage: fix unclosed testdata file
oeqa/runtime: load modules using importlib
oeqa/runtime: search sys.path explicitly for modules
Steve Sakoman (3):
waffle: old website is down, update to new project URLs
stress-ng: convert to git, website is down
stress-ng: improve reproducibility
Teoh Jay Shen (1):
oeqa/runtime/parselogs: modified drm error in common errors list
meta/classes/base.bbclass | 12 +--
meta/classes/devtool-source.bbclass | 4 +-
meta/classes/license.bbclass | 4 +
meta/classes/mirrors.bbclass | 1 -
meta/classes/patch.bbclass | 4 +-
meta/classes/reproducible_build.bbclass | 4 -
meta/classes/sstate.bbclass | 11 +--
meta/classes/testimage.bbclass | 7 +-
meta/conf/bitbake.conf | 2 +-
meta/lib/oe/license.py | 6 ++
meta/lib/oe/utils.py | 3 +-
meta/lib/oeqa/runtime/cases/parselogs.py | 2 +-
meta/lib/oeqa/runtime/context.py | 29 +++----
meta/lib/oeqa/selftest/cases/bbtests.py | 3 -
meta/recipes-devtools/git/git.inc | 2 +-
meta/recipes-devtools/git/git/fixsort.patch | 36 +++++++++
...write-the-timestamp-into-compressed-.patch | 26 ++++++
.../stress-ng/stress-ng_0.11.17.bb | 7 +-
meta/recipes-extended/timezone/timezone.inc | 7 +-
meta/recipes-graphics/waffle/waffle_1.6.0.bb | 12 +--
...20210511.bb => linux-firmware_20210919.bb} | 6 +-
....04.21.bb => wireless-regdb_2021.08.28.bb} | 2 +-
...ertdata2pem.py-print-a-warning-for-e.patch | 80 +++++++++++++++++++
.../ca-certificates/sbindir.patch | 26 ------
...pdate-ca-certificates-support-Toybox.patch | 33 --------
...0210119.bb => ca-certificates_20211016.bb} | 5 +-
meta/recipes-support/curl/curl_7.69.1.bb | 5 ++
.../vim/files/CVE-2021-3796.patch | 50 ++++++++++++
28 files changed, 266 insertions(+), 123 deletions(-)
create mode 100644 meta/recipes-devtools/git/git/fixsort.patch
create mode 100644 meta/recipes-extended/stress-ng/stress-ng/0001-Makefile-do-not-write-the-timestamp-into-compressed-.patch
rename meta/recipes-kernel/linux-firmware/{linux-firmware_20210511.bb => linux-firmware_20210919.bb} (99%)
rename meta/recipes-kernel/wireless-regdb/{wireless-regdb_2021.04.21.bb => wireless-regdb_2021.08.28.bb} (94%)
create mode 100644 meta/recipes-support/ca-certificates/ca-certificates/0001-Revert-mozilla-certdata2pem.py-print-a-warning-for-e.patch
delete mode 100644 meta/recipes-support/ca-certificates/ca-certificates/sbindir.patch
delete mode 100644 meta/recipes-support/ca-certificates/ca-certificates/update-ca-certificates-support-Toybox.patch
rename meta/recipes-support/ca-certificates/{ca-certificates_20210119.bb => ca-certificates_20211016.bb} (95%)
create mode 100644 meta/recipes-support/vim/files/CVE-2021-3796.patch
--
2.25.1
^ permalink raw reply [flat|nested] 3+ messages in thread* Re: [OE-core][dunfell 00/29] Pull request (cover letter only)
2021-11-03 0:11 Steve Sakoman
@ 2021-11-03 11:21 ` Richard Purdie
0 siblings, 0 replies; 3+ messages in thread
From: Richard Purdie @ 2021-11-03 11:21 UTC (permalink / raw)
To: Steve Sakoman, openembedded-core
On Tue, 2021-11-02 at 14:11 -1000, Steve Sakoman wrote:
> The following changes since commit a7520c47573cd166d441e504737492b86f5aa42e:
>
> selftest/reproducible: adjust exclusion list for dunfell (2021-10-25 13:28:19 -1000)
>
> are available in the Git repository at:
>
> git://git.openembedded.org/openembedded-core-contrib stable/dunfell-next
> http://cgit.openembedded.org/openembedded-core-contrib/log/?h=stable/dunfell-next
>
> Alexander Kanavin (7):
> linux-firmware: upgrade 20210511 -> 20210818
> linux-firmware: upgrade 20210818 -> 20210919
> wireless-regdb: upgrade 2021.04.21 -> 2021.07.14
> wireless-regdb: upgrade 2021.07.14 -> 2021.08.28
> ca-certificates: update 20210119 -> 20211016
> tzdata: upgrade 2021a -> 2021d
> tzdata: update 2021d -> 2021e
>
> Daniel McGregor (1):
> bitbake.conf: Add gpg-agent as a host tool
>
> Jose Quaresma (1):
> sstate: fix touching files inside pseudo
>
> Minjae Kim (1):
> vim: fix 2021-3796
>
> Oleksandr Kravchuk (1):
> mirrors.bbclass: remove dead infozip mirrors
>
> Ranjitsinh Rathod (1):
> curl: Whitelist CVE-2021-22897
>
> Richard Purdie (5):
> base: Clean up unneeded len() calls
> base: Use repr() for printing exceptions
> reproducible_build: Drop obsolete sstate workaround
> patch: Use repr() with exceptions instead of str()
The above patch did have at least one fix and further discussion and proposed
patches so I'm not sure about that one. I didn't take it now as it at least
needs my followup fix too.
Cheers,
Richard
^ permalink raw reply [flat|nested] 3+ messages in thread
end of thread, other threads:[~2022-02-23 22:16 UTC | newest]
Thread overview: 3+ messages (download: mbox.gz follow: Atom feed
-- links below jump to the message on this page --
2022-02-23 22:16 [OE-core][dunfell 00/29] Pull request (cover letter only) Steve Sakoman
-- strict thread matches above, loose matches on Subject: below --
2021-11-03 0:11 Steve Sakoman
2021-11-03 11:21 ` Richard Purdie
This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.