From: Steve Sakoman <steve@sakoman.com>
To: openembedded-core@lists.openembedded.org
Subject: [OE-core][kirkstone 00/36] Patch review
Date: Wed, 23 Aug 2023 04:35:30 -1000 [thread overview]
Message-ID: <cover.1692799745.git.steve@sakoman.com> (raw)
Please review this set of changes for kirkstone and have comments back by
end of day Friday, August 25.
Passed a-full on autobuilder:
https://autobuilder.yoctoproject.org/typhoon/#/builders/83/builds/5772
The following changes since commit f20a06149cb61264662d1eaf6ea02aefabc0a18b:
libxcrypt: update PV to match SRCREV (2023-08-16 06:11:05 -1000)
are available in the Git repository at:
https://git.openembedded.org/openembedded-core-contrib stable/kirkstone-nut
http://cgit.openembedded.org/openembedded-core-contrib/log/?h=stable/kirkstone-nut
Alex Kiernan (2):
rootfs: Add debugfs package db file copy and cleanup
rpm: Pick debugfs package db files/dirs explicitly
Alexander Kanavin (1):
glibc-locale: use stricter matching for metapackages' runtime
dependencies
Anuj Mittal (5):
selftest/cases/glibc.py: fix the override syntax
glibc/check-test-wrapper: don't emit warnings from ssh
selftest/cases/glibc.py: increase the memory for testing
oeqa/utils/nfs: allow requesting non-udp ports
selftest/cases/glibc.py: switch to using NFS over TCP
Archana Polampalli (1):
gstreamer1.0: upgrade 1.20.6 -> 1.20.7
BELOUARGA Mohamed (1):
linux-firmware : Add firmware of RTL8822 serie
Bruce Ashfield (3):
linux-yocto/5.15: update to v5.15.122
linux-yocto/5.15: update to v5.15.123
linux-yocto/5.15: update to v5.15.124
Chee Yang Lee (2):
librsvg: 2.52.7 -> 2.52.10
bind: 9.18.11 -> 9.18.17
Dmitry Baryshkov (2):
linux-firmware: package firmare for Dragonboard 410c
linux-firmware: split platform-specific Adreno shaders to separate
packages
Enrico Scholz (1):
shadow-sysroot: add license information
Julien Stephan (1):
automake: fix buildtest patch
Michael Halstead (3):
yocto-uninative: Update hashes for uninative 4.1
yocto-uninative: Update to 4.2 for glibc 2.38
resulttool/resultutils: allow index generation despite corrupt json
Ovidiu Panait (1):
mdadm: add util-linux-blockdev ptest dependency
Poonam Jadhav (1):
pixman: Remove duplication of license MIT
Richard Purdie (6):
lib/package_manager: Improve repo artefact filtering
acl/attr: ptest fixes and improvements
oeqa/target/ssh: Ensure EAGAIN doesn't truncate output
oeqa/runtime/ltp: Increase ltp test output timeout
target/ssh: Ensure exit code set for commands
oeqa/ssh: Further improve process exit handling
Soumya Sambu (3):
glib-2.0: Fix CVE-2023-32665
glib-2.0: Fix CVE-2023-29499 and CVE-2023-32611
glib-2.0: Fix CVE-2023-32643 and CVE-2023-32636
Staffan Rydén (1):
kernel: Fix path comparison in kernel staging dir symlinking
Trevor Gamblin (1):
linux-firmware: upgrade 20230515 -> 20230625
Wang Mingyu (1):
libnss-nis: upgrade 3.1 -> 3.2
meta/classes/kernel.bbclass | 7 +-
meta/conf/distro/include/yocto-uninative.inc | 10 +-
meta/lib/oe/package_manager/__init__.py | 5 +-
meta/lib/oe/package_manager/rpm/rootfs.py | 2 +-
meta/lib/oe/rootfs.py | 20 +-
meta/lib/oeqa/core/target/ssh.py | 7 +
meta/lib/oeqa/runtime/cases/ltp.py | 2 +-
meta/lib/oeqa/selftest/cases/glibc.py | 8 +-
meta/lib/oeqa/utils/nfs.py | 4 +-
.../bind/bind-9.18.11/CVE-2023-2828.patch | 197 ---------
.../bind/bind-9.18.11/CVE-2023-2911.patch | 97 ----
...1-avoid-start-failure-with-bind-user.patch | 0
...d-V-and-start-log-hide-build-options.patch | 0
...ching-for-json-headers-searches-sysr.patch | 0
.../bind/{bind-9.18.11 => bind-9.18.17}/bind9 | 0
.../{bind-9.18.11 => bind-9.18.17}/conf.patch | 0
.../generate-rndc-key.sh | 0
...t.d-add-support-for-read-only-rootfs.patch | 0
.../make-etc-initd-bind-stop-work.patch | 0
.../named.service | 0
.../bind/{bind_9.18.11.bb => bind_9.18.17.bb} | 8 +-
.../glib-2.0/glib-2.0/CVE-2023-29499.patch | 291 ++++++++++++
.../glib-2.0/CVE-2023-32611-0001.patch | 97 ++++
.../glib-2.0/CVE-2023-32611-0002.patch | 282 ++++++++++++
.../glib-2.0/glib-2.0/CVE-2023-32636.patch | 50 +++
.../glib-2.0/glib-2.0/CVE-2023-32643.patch | 155 +++++++
.../glib-2.0/CVE-2023-32665-0001.patch | 104 +++++
.../glib-2.0/CVE-2023-32665-0002.patch | 211 +++++++++
.../glib-2.0/CVE-2023-32665-0003.patch | 418 ++++++++++++++++++
.../glib-2.0/CVE-2023-32665-0004.patch | 114 +++++
.../glib-2.0/CVE-2023-32665-0005.patch | 81 ++++
.../glib-2.0/CVE-2023-32665-0006.patch | 397 +++++++++++++++++
.../glib-2.0/CVE-2023-32665-0007.patch | 50 +++
.../glib-2.0/CVE-2023-32665-0008.patch | 395 +++++++++++++++++
.../glib-2.0/CVE-2023-32665-0009.patch | 98 ++++
meta/recipes-core/glib-2.0/glib-2.0_2.72.3.bb | 14 +
meta/recipes-core/glibc/glibc-locale.inc | 8 +-
.../glibc/glibc/check-test-wrapper | 2 +-
.../automake/automake/buildtest.patch | 2 +-
.../recipes-extended/libnss-nis/libnss-nis.bb | 4 +-
meta/recipes-extended/mdadm/mdadm_4.2.bb | 9 +-
.../shadow/files/login.defs_shadow-sysroot | 1 +
.../shadow/shadow-sysroot_4.6.bb | 2 +-
.../{librsvg_2.52.7.bb => librsvg_2.52.10.bb} | 2 +-
.../xorg-lib/pixman_0.40.0.bb | 2 +-
...20230515.bb => linux-firmware_20230625.bb} | 37 +-
.../linux/linux-yocto-rt_5.15.bb | 6 +-
.../linux/linux-yocto-tiny_5.15.bb | 6 +-
meta/recipes-kernel/linux/linux-yocto_5.15.bb | 26 +-
...tools_1.20.6.bb => gst-devtools_1.20.7.bb} | 2 +-
...1.20.6.bb => gstreamer1.0-libav_1.20.7.bb} | 2 +-
...x_1.20.6.bb => gstreamer1.0-omx_1.20.7.bb} | 2 +-
....bb => gstreamer1.0-plugins-bad_1.20.7.bb} | 2 +-
...bb => gstreamer1.0-plugins-base_1.20.7.bb} | 2 +-
...bb => gstreamer1.0-plugins-good_1.20.7.bb} | 2 +-
...bb => gstreamer1.0-plugins-ugly_1.20.7.bb} | 2 +-
....20.6.bb => gstreamer1.0-python_1.20.7.bb} | 2 +-
....bb => gstreamer1.0-rtsp-server_1.20.7.bb} | 2 +-
...1.20.6.bb => gstreamer1.0-vaapi_1.20.7.bb} | 2 +-
...er1.0_1.20.6.bb => gstreamer1.0_1.20.7.bb} | 2 +-
meta/recipes-support/attr/acl/run-ptest | 6 +
meta/recipes-support/attr/acl_2.3.1.bb | 1 +
meta/recipes-support/attr/attr.inc | 1 +
meta/recipes-support/attr/attr/run-ptest | 7 +
scripts/lib/resulttool/resultutils.py | 6 +-
65 files changed, 2901 insertions(+), 373 deletions(-)
delete mode 100644 meta/recipes-connectivity/bind/bind-9.18.11/CVE-2023-2828.patch
delete mode 100644 meta/recipes-connectivity/bind/bind-9.18.11/CVE-2023-2911.patch
rename meta/recipes-connectivity/bind/{bind-9.18.11 => bind-9.18.17}/0001-avoid-start-failure-with-bind-user.patch (100%)
rename meta/recipes-connectivity/bind/{bind-9.18.11 => bind-9.18.17}/0001-named-lwresd-V-and-start-log-hide-build-options.patch (100%)
rename meta/recipes-connectivity/bind/{bind-9.18.11 => bind-9.18.17}/bind-ensure-searching-for-json-headers-searches-sysr.patch (100%)
rename meta/recipes-connectivity/bind/{bind-9.18.11 => bind-9.18.17}/bind9 (100%)
rename meta/recipes-connectivity/bind/{bind-9.18.11 => bind-9.18.17}/conf.patch (100%)
rename meta/recipes-connectivity/bind/{bind-9.18.11 => bind-9.18.17}/generate-rndc-key.sh (100%)
rename meta/recipes-connectivity/bind/{bind-9.18.11 => bind-9.18.17}/init.d-add-support-for-read-only-rootfs.patch (100%)
rename meta/recipes-connectivity/bind/{bind-9.18.11 => bind-9.18.17}/make-etc-initd-bind-stop-work.patch (100%)
rename meta/recipes-connectivity/bind/{bind-9.18.11 => bind-9.18.17}/named.service (100%)
rename meta/recipes-connectivity/bind/{bind_9.18.11.bb => bind_9.18.17.bb} (92%)
create mode 100644 meta/recipes-core/glib-2.0/glib-2.0/CVE-2023-29499.patch
create mode 100644 meta/recipes-core/glib-2.0/glib-2.0/CVE-2023-32611-0001.patch
create mode 100644 meta/recipes-core/glib-2.0/glib-2.0/CVE-2023-32611-0002.patch
create mode 100644 meta/recipes-core/glib-2.0/glib-2.0/CVE-2023-32636.patch
create mode 100644 meta/recipes-core/glib-2.0/glib-2.0/CVE-2023-32643.patch
create mode 100644 meta/recipes-core/glib-2.0/glib-2.0/CVE-2023-32665-0001.patch
create mode 100644 meta/recipes-core/glib-2.0/glib-2.0/CVE-2023-32665-0002.patch
create mode 100644 meta/recipes-core/glib-2.0/glib-2.0/CVE-2023-32665-0003.patch
create mode 100644 meta/recipes-core/glib-2.0/glib-2.0/CVE-2023-32665-0004.patch
create mode 100644 meta/recipes-core/glib-2.0/glib-2.0/CVE-2023-32665-0005.patch
create mode 100644 meta/recipes-core/glib-2.0/glib-2.0/CVE-2023-32665-0006.patch
create mode 100644 meta/recipes-core/glib-2.0/glib-2.0/CVE-2023-32665-0007.patch
create mode 100644 meta/recipes-core/glib-2.0/glib-2.0/CVE-2023-32665-0008.patch
create mode 100644 meta/recipes-core/glib-2.0/glib-2.0/CVE-2023-32665-0009.patch
rename meta/recipes-gnome/librsvg/{librsvg_2.52.7.bb => librsvg_2.52.10.bb} (96%)
rename meta/recipes-kernel/linux-firmware/{linux-firmware_20230515.bb => linux-firmware_20230625.bb} (96%)
rename meta/recipes-multimedia/gstreamer/{gst-devtools_1.20.6.bb => gst-devtools_1.20.7.bb} (95%)
rename meta/recipes-multimedia/gstreamer/{gstreamer1.0-libav_1.20.6.bb => gstreamer1.0-libav_1.20.7.bb} (91%)
rename meta/recipes-multimedia/gstreamer/{gstreamer1.0-omx_1.20.6.bb => gstreamer1.0-omx_1.20.7.bb} (95%)
rename meta/recipes-multimedia/gstreamer/{gstreamer1.0-plugins-bad_1.20.6.bb => gstreamer1.0-plugins-bad_1.20.7.bb} (98%)
rename meta/recipes-multimedia/gstreamer/{gstreamer1.0-plugins-base_1.20.6.bb => gstreamer1.0-plugins-base_1.20.7.bb} (97%)
rename meta/recipes-multimedia/gstreamer/{gstreamer1.0-plugins-good_1.20.6.bb => gstreamer1.0-plugins-good_1.20.7.bb} (97%)
rename meta/recipes-multimedia/gstreamer/{gstreamer1.0-plugins-ugly_1.20.6.bb => gstreamer1.0-plugins-ugly_1.20.7.bb} (94%)
rename meta/recipes-multimedia/gstreamer/{gstreamer1.0-python_1.20.6.bb => gstreamer1.0-python_1.20.7.bb} (91%)
rename meta/recipes-multimedia/gstreamer/{gstreamer1.0-rtsp-server_1.20.6.bb => gstreamer1.0-rtsp-server_1.20.7.bb} (90%)
rename meta/recipes-multimedia/gstreamer/{gstreamer1.0-vaapi_1.20.6.bb => gstreamer1.0-vaapi_1.20.7.bb} (95%)
rename meta/recipes-multimedia/gstreamer/{gstreamer1.0_1.20.6.bb => gstreamer1.0_1.20.7.bb} (97%)
--
2.34.1
next reply other threads:[~2023-08-23 14:36 UTC|newest]
Thread overview: 37+ messages / expand[flat|nested] mbox.gz Atom feed top
2023-08-23 14:35 Steve Sakoman [this message]
2023-08-23 14:35 ` [OE-core][kirkstone 01/36] glib-2.0: Fix CVE-2023-32665 Steve Sakoman
2023-08-23 14:35 ` [OE-core][kirkstone 02/36] glib-2.0: Fix CVE-2023-29499 and CVE-2023-32611 Steve Sakoman
2023-08-23 14:35 ` [OE-core][kirkstone 03/36] glib-2.0: Fix CVE-2023-32643 and CVE-2023-32636 Steve Sakoman
2023-08-23 14:35 ` [OE-core][kirkstone 04/36] librsvg: 2.52.7 -> 2.52.10 Steve Sakoman
2023-08-23 14:35 ` [OE-core][kirkstone 05/36] gstreamer1.0: upgrade 1.20.6 -> 1.20.7 Steve Sakoman
2023-08-23 14:35 ` [OE-core][kirkstone 06/36] bind: 9.18.11 -> 9.18.17 Steve Sakoman
2023-08-23 14:35 ` [OE-core][kirkstone 07/36] libnss-nis: upgrade 3.1 -> 3.2 Steve Sakoman
2023-08-23 14:35 ` [OE-core][kirkstone 08/36] linux-firmware: upgrade 20230515 -> 20230625 Steve Sakoman
2023-08-23 14:35 ` [OE-core][kirkstone 09/36] linux-firmware: package firmare for Dragonboard 410c Steve Sakoman
2023-08-23 14:35 ` [OE-core][kirkstone 10/36] linux-firmware : Add firmware of RTL8822 serie Steve Sakoman
2023-08-23 14:35 ` [OE-core][kirkstone 11/36] linux-firmware: split platform-specific Adreno shaders to separate packages Steve Sakoman
2023-08-23 14:35 ` [OE-core][kirkstone 12/36] linux-yocto/5.15: update to v5.15.122 Steve Sakoman
2023-08-23 14:35 ` [OE-core][kirkstone 13/36] linux-yocto/5.15: update to v5.15.123 Steve Sakoman
2023-08-23 14:35 ` [OE-core][kirkstone 14/36] linux-yocto/5.15: update to v5.15.124 Steve Sakoman
2023-08-23 14:35 ` [OE-core][kirkstone 15/36] yocto-uninative: Update hashes for uninative 4.1 Steve Sakoman
2023-08-23 14:35 ` [OE-core][kirkstone 16/36] yocto-uninative: Update to 4.2 for glibc 2.38 Steve Sakoman
2023-08-23 14:35 ` [OE-core][kirkstone 17/36] pixman: Remove duplication of license MIT Steve Sakoman
2023-08-23 14:35 ` [OE-core][kirkstone 18/36] lib/package_manager: Improve repo artefact filtering Steve Sakoman
2023-08-23 14:35 ` [OE-core][kirkstone 19/36] acl/attr: ptest fixes and improvements Steve Sakoman
2023-08-23 14:35 ` [OE-core][kirkstone 20/36] shadow-sysroot: add license information Steve Sakoman
2023-08-23 14:35 ` [OE-core][kirkstone 21/36] resulttool/resultutils: allow index generation despite corrupt json Steve Sakoman
2023-08-23 14:35 ` [OE-core][kirkstone 22/36] automake: fix buildtest patch Steve Sakoman
2023-08-23 14:35 ` [OE-core][kirkstone 23/36] selftest/cases/glibc.py: fix the override syntax Steve Sakoman
2023-08-23 14:35 ` [OE-core][kirkstone 24/36] rootfs: Add debugfs package db file copy and cleanup Steve Sakoman
2023-08-23 14:35 ` [OE-core][kirkstone 25/36] rpm: Pick debugfs package db files/dirs explicitly Steve Sakoman
2023-08-23 14:35 ` [OE-core][kirkstone 26/36] kernel: Fix path comparison in kernel staging dir symlinking Steve Sakoman
2023-08-23 14:35 ` [OE-core][kirkstone 27/36] mdadm: add util-linux-blockdev ptest dependency Steve Sakoman
2023-08-23 14:35 ` [OE-core][kirkstone 28/36] glibc/check-test-wrapper: don't emit warnings from ssh Steve Sakoman
2023-08-23 14:35 ` [OE-core][kirkstone 29/36] selftest/cases/glibc.py: increase the memory for testing Steve Sakoman
2023-08-23 14:36 ` [OE-core][kirkstone 30/36] oeqa/utils/nfs: allow requesting non-udp ports Steve Sakoman
2023-08-23 14:36 ` [OE-core][kirkstone 31/36] selftest/cases/glibc.py: switch to using NFS over TCP Steve Sakoman
2023-08-23 14:36 ` [OE-core][kirkstone 32/36] oeqa/target/ssh: Ensure EAGAIN doesn't truncate output Steve Sakoman
2023-08-23 14:36 ` [OE-core][kirkstone 33/36] oeqa/runtime/ltp: Increase ltp test output timeout Steve Sakoman
2023-08-23 14:36 ` [OE-core][kirkstone 34/36] target/ssh: Ensure exit code set for commands Steve Sakoman
2023-08-23 14:36 ` [OE-core][kirkstone 35/36] oeqa/ssh: Further improve process exit handling Steve Sakoman
2023-08-23 14:36 ` [OE-core][kirkstone 36/36] glibc-locale: use stricter matching for metapackages' runtime dependencies Steve Sakoman
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=cover.1692799745.git.steve@sakoman.com \
--to=steve@sakoman.com \
--cc=openembedded-core@lists.openembedded.org \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.