From: Steve Sakoman <steve@sakoman.com>
To: openembedded-core@lists.openembedded.org
Subject: [OE-core][dunfell 00/14] Patch review
Date: Tue, 12 Sep 2023 03:53:09 -1000 [thread overview]
Message-ID: <cover.1694526588.git.steve@sakoman.com> (raw)
Please review this set of changes for dunfell and have comments back by
end of day Thursday, September 14.
Passed a-full on autobuilder:
https://autobuilder.yoctoproject.org/typhoon/#/builders/83/builds/5868
The following changes since commit c953ccba6c2a334cc58a97eee073bdb51a68f1d3:
linux/cve-exclusion: remove obsolete manual entries (2023-08-31 04:26:32 -1000)
are available in the Git repository at:
https://git.openembedded.org/openembedded-core-contrib stable/dunfell-nut
http://cgit.openembedded.org/openembedded-core-contrib/log/?h=stable/dunfell-nut
Anuj Mittal (4):
glibc/check-test-wrapper: don't emit warnings from ssh
selftest/cases/glibc.py: increase the memory for testing
oeqa/utils/nfs: allow requesting non-udp ports
selftest/cases/glibc.py: switch to using NFS over TCP
Ashish Sharma (1):
qemu: Backport fix CVE-2023-3180
Michael Halstead (2):
yocto-uninative: Update to 4.3
resulttool/resultutils: allow index generation despite corrupt json
Priyal Doshi (1):
rootfs-post: remove traling blanks from tasks
Richard Purdie (2):
oeqa/target/ssh: Ensure EAGAIN doesn't truncate output
oeqa/runtime/ltp: Increase ltp test output timeout
Shubham Kulkarni (1):
openssh: Securiry fix for CVE-2023-38408
Staffan Rydén (1):
kernel: Fix path comparison in kernel staging dir symlinking
Vijay Anusuri (2):
bind: Backport fix for CVE-2023-2828
qemu: Backport fix for CVE-2023-0330
meta/classes/kernel.bbclass | 7 +-
meta/classes/rootfs-postcommands.bbclass | 6 +-
meta/classes/rootfsdebugfiles.bbclass | 2 +-
meta/conf/distro/include/yocto-uninative.inc | 8 +-
meta/lib/oeqa/core/target/ssh.py | 3 +
meta/lib/oeqa/runtime/cases/ltp.py | 2 +-
meta/lib/oeqa/selftest/cases/glibc.py | 6 +-
meta/lib/oeqa/utils/nfs.py | 4 +-
.../bind/bind/CVE-2023-2828.patch | 166 +++++
.../recipes-connectivity/bind/bind_9.11.37.bb | 1 +
.../openssh/openssh/CVE-2023-38408-01.patch | 189 ++++++
.../openssh/openssh/CVE-2023-38408-02.patch | 581 ++++++++++++++++++
.../openssh/openssh/CVE-2023-38408-03.patch | 171 ++++++
.../openssh/openssh/CVE-2023-38408-04.patch | 34 +
.../openssh/openssh/CVE-2023-38408-05.patch | 194 ++++++
.../openssh/openssh/CVE-2023-38408-06.patch | 73 +++
.../openssh/openssh/CVE-2023-38408-07.patch | 125 ++++
.../openssh/openssh/CVE-2023-38408-08.patch | 315 ++++++++++
.../openssh/openssh/CVE-2023-38408-09.patch | 38 ++
.../openssh/openssh/CVE-2023-38408-10.patch | 39 ++
.../openssh/openssh/CVE-2023-38408-11.patch | 307 +++++++++
.../openssh/openssh/CVE-2023-38408-12.patch | 120 ++++
.../openssh/openssh_8.2p1.bb | 12 +
.../glibc/glibc/check-test-wrapper | 2 +-
meta/recipes-devtools/qemu/qemu.inc | 4 +-
...-2023-0330.patch => CVE-2023-0330_1.patch} | 0
.../qemu/qemu/CVE-2023-0330_2.patch | 135 ++++
.../qemu/qemu/CVE-2023-3180.patch | 49 ++
scripts/lib/resulttool/resultutils.py | 6 +-
29 files changed, 2579 insertions(+), 20 deletions(-)
create mode 100644 meta/recipes-connectivity/bind/bind/CVE-2023-2828.patch
create mode 100644 meta/recipes-connectivity/openssh/openssh/CVE-2023-38408-01.patch
create mode 100644 meta/recipes-connectivity/openssh/openssh/CVE-2023-38408-02.patch
create mode 100644 meta/recipes-connectivity/openssh/openssh/CVE-2023-38408-03.patch
create mode 100644 meta/recipes-connectivity/openssh/openssh/CVE-2023-38408-04.patch
create mode 100644 meta/recipes-connectivity/openssh/openssh/CVE-2023-38408-05.patch
create mode 100644 meta/recipes-connectivity/openssh/openssh/CVE-2023-38408-06.patch
create mode 100644 meta/recipes-connectivity/openssh/openssh/CVE-2023-38408-07.patch
create mode 100644 meta/recipes-connectivity/openssh/openssh/CVE-2023-38408-08.patch
create mode 100644 meta/recipes-connectivity/openssh/openssh/CVE-2023-38408-09.patch
create mode 100644 meta/recipes-connectivity/openssh/openssh/CVE-2023-38408-10.patch
create mode 100644 meta/recipes-connectivity/openssh/openssh/CVE-2023-38408-11.patch
create mode 100644 meta/recipes-connectivity/openssh/openssh/CVE-2023-38408-12.patch
rename meta/recipes-devtools/qemu/qemu/{CVE-2023-0330.patch => CVE-2023-0330_1.patch} (100%)
create mode 100644 meta/recipes-devtools/qemu/qemu/CVE-2023-0330_2.patch
create mode 100644 meta/recipes-devtools/qemu/qemu/CVE-2023-3180.patch
--
2.34.1
next reply other threads:[~2023-09-12 13:53 UTC|newest]
Thread overview: 30+ messages / expand[flat|nested] mbox.gz Atom feed top
2023-09-12 13:53 Steve Sakoman [this message]
2023-09-12 13:53 ` [OE-core][dunfell 01/14] bind: Backport fix for CVE-2023-2828 Steve Sakoman
2023-09-12 13:53 ` [OE-core][dunfell 02/14] openssh: Securiry fix for CVE-2023-38408 Steve Sakoman
2023-09-12 13:53 ` [OE-core][dunfell 03/14] qemu: Backport fix CVE-2023-3180 Steve Sakoman
2023-09-12 13:53 ` [OE-core][dunfell 04/14] qemu: Backport fix for CVE-2023-0330 Steve Sakoman
2023-09-12 13:53 ` [OE-core][dunfell 05/14] rootfs-post: remove traling blanks from tasks Steve Sakoman
2023-09-12 13:53 ` [OE-core][dunfell 06/14] yocto-uninative: Update to 4.3 Steve Sakoman
2023-09-12 13:53 ` [OE-core][dunfell 07/14] resulttool/resultutils: allow index generation despite corrupt json Steve Sakoman
2023-09-12 13:53 ` [OE-core][dunfell 08/14] kernel: Fix path comparison in kernel staging dir symlinking Steve Sakoman
2023-09-12 13:53 ` [OE-core][dunfell 09/14] glibc/check-test-wrapper: don't emit warnings from ssh Steve Sakoman
2023-09-12 13:53 ` [OE-core][dunfell 10/14] selftest/cases/glibc.py: increase the memory for testing Steve Sakoman
2023-09-12 13:53 ` [OE-core][dunfell 11/14] oeqa/utils/nfs: allow requesting non-udp ports Steve Sakoman
2023-09-12 13:53 ` [OE-core][dunfell 12/14] selftest/cases/glibc.py: switch to using NFS over TCP Steve Sakoman
2023-09-12 13:53 ` [OE-core][dunfell 13/14] oeqa/target/ssh: Ensure EAGAIN doesn't truncate output Steve Sakoman
2023-09-12 13:53 ` [OE-core][dunfell 14/14] oeqa/runtime/ltp: Increase ltp test output timeout Steve Sakoman
-- strict thread matches above, loose matches on Subject: below --
2023-08-25 2:47 [OE-core][dunfell 00/14] Patch review Steve Sakoman
2023-06-22 15:31 Steve Sakoman
2023-08-02 12:05 ` Marta Rybczynska
2023-03-21 14:20 Steve Sakoman
2022-08-29 21:02 Steve Sakoman
2022-07-07 21:59 Steve Sakoman
2022-06-08 14:46 Steve Sakoman
2022-05-11 18:19 Steve Sakoman
2021-12-22 14:12 Steve Sakoman
[not found] <16B6626DB9B02798.14836@lists.openembedded.org>
2021-11-11 14:16 ` Steve Sakoman
2021-11-11 4:08 Steve Sakoman
2021-06-28 15:05 Steve Sakoman
2021-06-29 0:13 ` [dunfell " Minjae Kim
2021-06-29 14:09 ` [OE-core] " Steve Sakoman
2020-10-22 15:51 [OE-core][dunfell " Steve Sakoman
2020-10-09 14:18 Steve Sakoman
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=cover.1694526588.git.steve@sakoman.com \
--to=steve@sakoman.com \
--cc=openembedded-core@lists.openembedded.org \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.