From: Anuj Mittal <anuj.mittal@intel.com>
To: openembedded-core@lists.openembedded.org
Subject: [honister][PATCH 00/22] Patch review
Date: Tue, 5 Apr 2022 22:41:19 +0800 [thread overview]
Message-ID: <cover.1649169646.git.anuj.mittal@intel.com> (raw)
Next set of changes to be merged in honister. Please review.
No issues seen while testing:
https://autobuilder.yoctoproject.org/typhoon/#/builders/83/builds/3476
Thanks,
Anuj
The following changes since commit ebca8f3ac9372b7ebb3d39e8f7f930b63b481448:
build-appliance-image: Update to honister head revision (2022-03-24 11:05:30 +0000)
are available in the Git repository at:
git://push.openembedded.org/openembedded-core-contrib anujm/honister
Bruce Ashfield (5):
linux-yocto: nohz_full boot arg fix
linux-yocto/5.10: split vtpm for more granular inclusion
linux-yocto/5.10: cfg/debug: add configs for kcsan
linux-yocto-rt/5.10: update to -rt61
linux-yocto/5.10: update to v5.10.107
Chee Yang Lee (1):
webkitgtk: update to 2.32.4
Joe Slater (1):
libxml2: fix CVE-2022-23308 regression
Michael Opdenacker (1):
conf/machine: fix QEMU x86 sound options
Minjae Kim (2):
gnu-config: update SRC_URI
virglrenderer: update SRC_URI
Peter Kjellerstedt (1):
oe-pkgdata-util: Adapt to the new variable override syntax
Ralph Siemsen (2):
libxml2: move to gitlab.gnome.org
libxml2: update to 2.9.13
Richard Purdie (3):
toaster: Fix broken overrides usage
pseudo: Add patch to workaround paths with crazy lengths
sanity: Add warning for local hasheqiv server with remote sstate
mirrors
Ross Burton (5):
devupstream: fix handling of SRC_URI
tiff: backport CVE fixes:
grub: ignore CVE-2021-46705
oeqa/selftest/devtool: ensure Git username is set before upgrade tests
zlib: backport the fix for CVE-2018-25032
wangmy (1):
linux-firmware: upgrade 20220209 -> 20220310
meta/classes/devupstream.bbclass | 5 +-
meta/classes/qemuboot.bbclass | 2 +-
meta/classes/sanity.bbclass | 5 +
meta/classes/toaster.bbclass | 6 +-
.../conf/machine/include/x86/qemuboot-x86.inc | 2 +-
meta/lib/oeqa/selftest/cases/devtool.py | 8 +
meta/recipes-bsp/grub/grub2.inc | 2 +
.../0002-Work-around-lxml-API-abuse.patch | 213 -----------
.../CVE-2022-23308-fix-regression.patch | 99 +++++
.../libxml2/libxml-m4-use-pkgconfig.patch | 16 +-
.../{libxml2_2.9.12.bb => libxml2_2.9.13.bb} | 15 +-
.../zlib/zlib/CVE-2018-25032.patch | 347 ++++++++++++++++++
meta/recipes-core/zlib/zlib_1.2.11.bb | 1 +
.../gnu-config/gnu-config_git.bb | 2 +-
meta/recipes-devtools/pseudo/pseudo_git.bb | 2 +-
.../virglrenderer/virglrenderer_0.9.1.bb | 2 +-
...20220209.bb => linux-firmware_20220310.bb} | 6 +-
.../linux/linux-yocto-rt_5.10.bb | 6 +-
.../linux/linux-yocto-tiny_5.10.bb | 8 +-
meta/recipes-kernel/linux/linux-yocto_5.10.bb | 24 +-
...rash-when-reading-a-file-with-multip.patch | 38 ++
...ue-380-and-382-heap-buffer-overflow-.patch | 218 +++++++++++
...-for-return-value-of-limitMalloc-392.patch | 93 +++++
...ag-avoid-calling-memcpy-with-a-null-.patch | 33 ++
.../0005-fix-the-FPE-in-tiffcrop-393.patch | 36 ++
...x-heap-buffer-overflow-in-tiffcp-278.patch | 57 +++
meta/recipes-multimedia/libtiff/tiff_4.3.0.bb | 9 +-
...1-Enable-THREADS_PREFER_PTHREAD_FLAG.patch | 2 +-
...ebkitgtk_2.32.3.bb => webkitgtk_2.32.4.bb} | 2 +-
scripts/oe-pkgdata-util | 2 +-
30 files changed, 996 insertions(+), 265 deletions(-)
delete mode 100644 meta/recipes-core/libxml/libxml2/0002-Work-around-lxml-API-abuse.patch
create mode 100644 meta/recipes-core/libxml/libxml2/CVE-2022-23308-fix-regression.patch
rename meta/recipes-core/libxml/{libxml2_2.9.12.bb => libxml2_2.9.13.bb} (92%)
create mode 100644 meta/recipes-core/zlib/zlib/CVE-2018-25032.patch
rename meta/recipes-kernel/linux-firmware/{linux-firmware_20220209.bb => linux-firmware_20220310.bb} (99%)
create mode 100644 meta/recipes-multimedia/libtiff/tiff/0001-tif_jbig.c-fix-crash-when-reading-a-file-with-multip.patch
create mode 100644 meta/recipes-multimedia/libtiff/tiff/0002-tiffcrop-fix-issue-380-and-382-heap-buffer-overflow-.patch
create mode 100644 meta/recipes-multimedia/libtiff/tiff/0003-add-checks-for-return-value-of-limitMalloc-392.patch
create mode 100644 meta/recipes-multimedia/libtiff/tiff/0004-TIFFFetchNormalTag-avoid-calling-memcpy-with-a-null-.patch
create mode 100644 meta/recipes-multimedia/libtiff/tiff/0005-fix-the-FPE-in-tiffcrop-393.patch
create mode 100644 meta/recipes-multimedia/libtiff/tiff/0006-fix-heap-buffer-overflow-in-tiffcp-278.patch
rename meta/recipes-sato/webkit/{webkitgtk_2.32.3.bb => webkitgtk_2.32.4.bb} (98%)
--
2.35.1
next reply other threads:[~2022-04-05 17:24 UTC|newest]
Thread overview: 23+ messages / expand[flat|nested] mbox.gz Atom feed top
2022-04-05 14:41 Anuj Mittal [this message]
2022-04-05 14:41 ` [honister][PATCH 01/22] conf/machine: fix QEMU x86 sound options Anuj Mittal
2022-04-05 14:41 ` [honister][PATCH 02/22] oe-pkgdata-util: Adapt to the new variable override syntax Anuj Mittal
2022-04-05 14:41 ` [honister][PATCH 03/22] linux-firmware: upgrade 20220209 -> 20220310 Anuj Mittal
2022-04-05 14:41 ` [honister][PATCH 04/22] devupstream: fix handling of SRC_URI Anuj Mittal
2022-04-05 14:41 ` [honister][PATCH 05/22] toaster: Fix broken overrides usage Anuj Mittal
2022-04-05 14:41 ` [honister][PATCH 06/22] pseudo: Add patch to workaround paths with crazy lengths Anuj Mittal
2022-04-05 14:41 ` [honister][PATCH 07/22] tiff: backport CVE fixes: Anuj Mittal
2022-04-05 14:41 ` [honister][PATCH 08/22] linux-yocto: nohz_full boot arg fix Anuj Mittal
2022-04-05 14:41 ` [honister][PATCH 09/22] linux-yocto/5.10: split vtpm for more granular inclusion Anuj Mittal
2022-04-05 14:41 ` [honister][PATCH 10/22] linux-yocto/5.10: cfg/debug: add configs for kcsan Anuj Mittal
2022-04-05 14:41 ` [honister][PATCH 11/22] linux-yocto-rt/5.10: update to -rt61 Anuj Mittal
2022-04-05 14:41 ` [honister][PATCH 12/22] linux-yocto/5.10: update to v5.10.107 Anuj Mittal
2022-04-05 14:41 ` [honister][PATCH 13/22] gnu-config: update SRC_URI Anuj Mittal
2022-04-05 14:41 ` [honister][PATCH 14/22] virglrenderer: " Anuj Mittal
2022-04-05 14:41 ` [honister][PATCH 15/22] sanity: Add warning for local hasheqiv server with remote sstate mirrors Anuj Mittal
2022-04-05 14:41 ` [honister][PATCH 16/22] libxml2: move to gitlab.gnome.org Anuj Mittal
2022-04-05 14:41 ` [honister][PATCH 17/22] libxml2: update to 2.9.13 Anuj Mittal
2022-04-05 14:41 ` [honister][PATCH 18/22] libxml2: fix CVE-2022-23308 regression Anuj Mittal
2022-04-05 14:41 ` [honister][PATCH 19/22] grub: ignore CVE-2021-46705 Anuj Mittal
2022-04-05 14:41 ` [honister][PATCH 20/22] oeqa/selftest/devtool: ensure Git username is set before upgrade tests Anuj Mittal
2022-04-05 14:41 ` [honister][PATCH 21/22] zlib: backport the fix for CVE-2018-25032 Anuj Mittal
2022-04-05 14:41 ` [honister][PATCH 22/22] webkitgtk: update to 2.32.4 Anuj Mittal
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=cover.1649169646.git.anuj.mittal@intel.com \
--to=anuj.mittal@intel.com \
--cc=openembedded-core@lists.openembedded.org \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.