[OE-core][mickledore 00/10] Patch review

All of lore.kernel.org
 help / color / mirror / Atom feed

From: Steve Sakoman <steve@sakoman.com>
To: openembedded-core@lists.openembedded.org
Subject: [OE-core][mickledore 00/10] Patch review
Date: Wed,  8 Nov 2023 03:46:41 -1000	[thread overview]
Message-ID: <cover.1699451066.git.steve@sakoman.com> (raw)

Please review this set of changes for mickledore and have comments back
by end of day Friday, November 10

Passed a-full on autobuilder:

https://autobuilder.yoctoproject.org/typhoon/#/builders/83/builds/6156

The following changes since commit e9ca1405b732720ff72d379e0262a78bfd2e7d53:

  busybox: Set PATH in syslog initscript (2023-10-19 04:34:38 -1000)

are available in the Git repository at:

  https://git.openembedded.org/openembedded-core-contrib stable/mickledore-nut
  https://git.openembedded.org/openembedded-core-contrib/log/?h=stable/mickledore-nut

Chen Qi (1):
  systemd: backport patch to fix warning in systemd-vconsole-setup

Mingli Yu (1):
  curl: Fix CVE-2023-38039

Peter Marko (1):
  openssl: Upgrade 3.1.3 -> 3.1.4

Ross Burton (4):
  pixman: ignore CVE-2023-37769
  cve-check: sort the package list in the JSON report
  cve-check: slightly more verbose warning when adding the same package
    twice
  cve-check: don't warn if a patch is remote

Soumya Sambu (1):
  libwebp: Fix CVE-2023-4863

Xiangyu Chen (2):
  shadow: Fix CVE-2023-4641
  linux-yocto: make sure the pahole-native available before
    do_kernel_configme

 meta/classes/cve-check.bbclass                |   2 +
 meta/lib/oe/cve_check.py                      |  13 +-
 .../{openssl_3.1.3.bb => openssl_3.1.4.bb}    |   2 +-
 ...l-return-0-for-missing-creds-in-read.patch | 139 ++++++++++++
 meta/recipes-core/systemd/systemd_253.1.bb    |   1 +
 .../shadow/files/CVE-2023-4641.patch          | 147 ++++++++++++
 meta/recipes-extended/shadow/shadow.inc       |   1 +
 .../xorg-lib/pixman_0.42.2.bb                 |   2 +
 meta/recipes-kernel/linux/linux-yocto.inc     |   5 +-
 ...23-5129.patch => CVE-2023-4863-0001.patch} |  20 +-
 .../webp/files/CVE-2023-4863-0002.patch       |  53 +++++
 meta/recipes-multimedia/webp/libwebp_1.3.1.bb |   3 +-
 .../curl/curl/CVE-2023-38039.patch            | 209 ++++++++++++++++++
 meta/recipes-support/curl/curl_8.0.1.bb       |   1 +
 14 files changed, 580 insertions(+), 18 deletions(-)
 rename meta/recipes-connectivity/openssl/{openssl_3.1.3.bb => openssl_3.1.4.bb} (99%)
 create mode 100644 meta/recipes-core/systemd/systemd/0001-shared-creds-util-return-0-for-missing-creds-in-read.patch
 create mode 100644 meta/recipes-extended/shadow/files/CVE-2023-4641.patch
 rename meta/recipes-multimedia/webp/files/{CVE-2023-5129.patch => CVE-2023-4863-0001.patch} (97%)
 create mode 100644 meta/recipes-multimedia/webp/files/CVE-2023-4863-0002.patch
 create mode 100644 meta/recipes-support/curl/curl/CVE-2023-38039.patch

-- 
2.34.1

next             reply	other threads:[~2023-11-08 13:47 UTC|newest]

Thread overview: 12+ messages / expand[flat|nested]  mbox.gz  Atom feed  top
2023-11-08 13:46 Steve Sakoman [this message]
2023-11-08 13:46 ` [OE-core][mickledore 01/10] curl: Fix CVE-2023-38039 Steve Sakoman
2023-11-08 13:46 ` [OE-core][mickledore 02/10] shadow: Fix CVE-2023-4641 Steve Sakoman
2023-11-08 13:46 ` [OE-core][mickledore 03/10] pixman: ignore CVE-2023-37769 Steve Sakoman
2023-11-08 13:46 ` [OE-core][mickledore 04/10] libwebp: Fix CVE-2023-4863 Steve Sakoman
2023-11-08 13:46 ` [OE-core][mickledore 05/10] cve-check: sort the package list in the JSON report Steve Sakoman
2023-11-08 13:46 ` [OE-core][mickledore 06/10] cve-check: slightly more verbose warning when adding the same package twice Steve Sakoman
2023-11-08 13:46 ` [OE-core][mickledore 07/10] cve-check: don't warn if a patch is remote Steve Sakoman
2023-11-08 13:46 ` [OE-core][mickledore 08/10] openssl: Upgrade 3.1.3 -> 3.1.4 Steve Sakoman
2023-11-08 13:46 ` [OE-core][mickledore 09/10] linux-yocto: make sure the pahole-native available before do_kernel_configme Steve Sakoman
2023-11-08 13:46 ` [OE-core][mickledore 10/10] systemd: backport patch to fix warning in systemd-vconsole-setup Steve Sakoman
  -- strict thread matches above, loose matches on Subject: below --
2023-09-26 21:43 [OE-core][mickledore 00/10] Patch review Steve Sakoman

Reply instructions:

You may reply publicly to this message via plain-text email
using any one of the following methods:

* Save the following mbox file, import it into your mail client,
  and reply-to-all from there: mbox

  Avoid top-posting and favor interleaved quoting:
  https://en.wikipedia.org/wiki/Posting_style#Interleaved_style

* Reply using the --to, --cc, and --in-reply-to
  switches of git-send-email(1):

  git send-email \
    --in-reply-to=cover.1699451066.git.steve@sakoman.com \
    --to=steve@sakoman.com \
    --cc=openembedded-core@lists.openembedded.org \
    /path/to/YOUR_REPLY

  https://kernel.org/pub/software/scm/git/docs/git-send-email.html

* If your mail client supports setting the In-Reply-To header
  via mailto: links, try the mailto: link

Be sure your reply has a Subject: header at the top and a blank line before the message body.

This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.