From: Steve Sakoman <steve@sakoman.com>
To: openembedded-core@lists.openembedded.org
Subject: [OE-core][kirkstone 00/23] Patch review
Date: Thu, 9 May 2024 05:04:38 -0700 [thread overview]
Message-ID: <cover.1715256149.git.steve@sakoman.com> (raw)
Please review this set of changes for kirkstone and have comments back by
end of day Monday, May 13
Passed a-full on autobuilder:
https://autobuilder.yoctoproject.org/typhoon/#/builders/83/builds/6889
The following changes since commit 8a502301209ef144932ef5071c1a9b738db23270:
rootfs-postcommands.bbclass: Only set DROPBEAR_RSAKEY_DIR once (2024-04-26 06:15:55 -0700)
are available in the Git repository at:
https://git.openembedded.org/openembedded-core-contrib stable/kirkstone-nut
https://git.openembedded.org/openembedded-core-contrib/log/?h=stable/kirkstone-nut
Archana Polampalli (4):
ofono: fix CVE-2023-4234
ofono: fix CVE-2023-4233
gstreamer1.0-plugins-bad: fix CVE-2024-0444
gstreamer1.0-plugins-bad: fix CVE-2023-44446
Bruce Ashfield (13):
linux-yocto/5.15: update to v5.15.151
linux-yocto/5.15: update CVE exclusions (5.15.151)
linux-yocto/5.15: update to v5.15.152
linux-yocto/5.15: update CVE exclusions (5.15.152)
linux-yocto/5.15: update to v5.15.153
linux-yocto/5.15: update CVE exclusions (5.15.153)
linux-yocto/5.15: update to v5.15.155
linux-yocto/5.15: update CVE exclusions (5.15.155)
linux-yocto/5.15: update to v5.15.156
linux-yocto/5.15: update CVE exclusions (5.15.156)
linux-yocto/5.15: update to v5.15.157
linux-yocto/5.15: update CVE exclusions (5.15.157)
linux-yocto/5.15: cfg: remove obselete CONFIG_NFSD_V3 option
Heiko (1):
kernel.bbclass: check, if directory exists before removing empty
module directory
Peter Marko (2):
python3: Upgrade 3.10.13 -> 3.10.14
libarchive: fix multiple security vulnerabilities in pax writer
Poonam Jadhav (1):
ppp: Add RSA-MD in LICENSE
Soumya Sambu (1):
ncurses: Fix CVE-2023-45918
Vijay Anusuri (1):
less: backport Debian patch for CVE-2024-32487
meta/classes/kernel.bbclass | 2 +-
.../ofono/ofono/CVE-2023-4233.patch | 32 +
.../ofono/ofono/CVE-2023-4234.patch | 39 +
meta/recipes-connectivity/ofono/ofono_1.34.bb | 2 +
meta/recipes-connectivity/ppp/ppp_2.4.9.bb | 2 +-
.../ncurses/files/CVE-2023-45918.patch | 180 +
.../ncurses/ncurses_6.3+20220423.bb | 1 +
...{python3_3.10.13.bb => python3_3.10.14.bb} | 2 +-
.../less/less/CVE-2024-32487.patch | 69 +
meta/recipes-extended/less/less_600.bb | 1 +
...ix-multiple-security-vulnerabilities.patch | 107 +
.../libarchive/libarchive_3.6.2.bb | 4 +-
.../linux/cve-exclusion_5.15.inc | 4508 ++++++++++++-----
.../linux/linux-yocto-rt_5.15.bb | 6 +-
.../linux/linux-yocto-tiny_5.15.bb | 6 +-
meta/recipes-kernel/linux/linux-yocto_5.15.bb | 26 +-
.../CVE-2023-44446.patch | 329 ++
.../CVE-2024-0444.patch | 42 +
.../gstreamer1.0-plugins-bad_1.20.7.bb | 2 +
19 files changed, 4007 insertions(+), 1353 deletions(-)
create mode 100644 meta/recipes-connectivity/ofono/ofono/CVE-2023-4233.patch
create mode 100644 meta/recipes-connectivity/ofono/ofono/CVE-2023-4234.patch
create mode 100644 meta/recipes-core/ncurses/files/CVE-2023-45918.patch
rename meta/recipes-devtools/python/{python3_3.10.13.bb => python3_3.10.14.bb} (99%)
create mode 100644 meta/recipes-extended/less/less/CVE-2024-32487.patch
create mode 100644 meta/recipes-extended/libarchive/libarchive/0001-pax-writer-fix-multiple-security-vulnerabilities.patch
create mode 100644 meta/recipes-multimedia/gstreamer/gstreamer1.0-plugins-bad/CVE-2023-44446.patch
create mode 100644 meta/recipes-multimedia/gstreamer/gstreamer1.0-plugins-bad/CVE-2024-0444.patch
--
2.34.1
next reply other threads:[~2024-05-09 12:05 UTC|newest]
Thread overview: 27+ messages / expand[flat|nested] mbox.gz Atom feed top
2024-05-09 12:04 Steve Sakoman [this message]
2024-05-09 12:04 ` [OE-core][kirkstone 01/23] ofono: fix CVE-2023-4234 Steve Sakoman
2024-05-09 12:04 ` [OE-core][kirkstone 02/23] ofono: fix CVE-2023-4233 Steve Sakoman
2024-05-09 12:04 ` [OE-core][kirkstone 03/23] gstreamer1.0-plugins-bad: fix CVE-2024-0444 Steve Sakoman
2024-05-09 12:04 ` [OE-core][kirkstone 04/23] gstreamer1.0-plugins-bad: fix CVE-2023-44446 Steve Sakoman
2024-05-09 12:04 ` [OE-core][kirkstone 05/23] ncurses: Fix CVE-2023-45918 Steve Sakoman
2024-05-09 12:04 ` [OE-core][kirkstone 06/23] less: backport Debian patch for CVE-2024-32487 Steve Sakoman
2024-05-09 12:04 ` [OE-core][kirkstone 07/23] python3: Upgrade 3.10.13 -> 3.10.14 Steve Sakoman
2024-05-09 12:04 ` [OE-core][kirkstone 08/23] linux-yocto/5.15: update to v5.15.151 Steve Sakoman
2024-05-09 12:04 ` [OE-core][kirkstone 09/23] linux-yocto/5.15: update CVE exclusions (5.15.151) Steve Sakoman
2024-05-09 12:04 ` [OE-core][kirkstone 10/23] linux-yocto/5.15: update to v5.15.152 Steve Sakoman
2024-05-09 12:04 ` [OE-core][kirkstone 11/23] linux-yocto/5.15: update CVE exclusions (5.15.152) Steve Sakoman
2024-05-09 12:04 ` [OE-core][kirkstone 12/23] linux-yocto/5.15: update to v5.15.153 Steve Sakoman
2024-05-09 12:04 ` [OE-core][kirkstone 13/23] linux-yocto/5.15: update CVE exclusions (5.15.153) Steve Sakoman
2024-05-09 12:04 ` [OE-core][kirkstone 14/23] linux-yocto/5.15: update to v5.15.155 Steve Sakoman
2024-05-09 12:04 ` [OE-core][kirkstone 15/23] linux-yocto/5.15: update CVE exclusions (5.15.155) Steve Sakoman
2024-05-09 12:04 ` [OE-core][kirkstone 16/23] linux-yocto/5.15: update to v5.15.156 Steve Sakoman
2024-05-09 12:04 ` [OE-core][kirkstone 17/23] linux-yocto/5.15: update CVE exclusions (5.15.156) Steve Sakoman
2024-05-09 12:04 ` [OE-core][kirkstone 18/23] linux-yocto/5.15: update to v5.15.157 Steve Sakoman
2024-05-09 12:04 ` [OE-core][kirkstone 19/23] linux-yocto/5.15: update CVE exclusions (5.15.157) Steve Sakoman
2024-05-09 12:04 ` [OE-core][kirkstone 20/23] linux-yocto/5.15: cfg: remove obselete CONFIG_NFSD_V3 option Steve Sakoman
2024-05-09 12:04 ` [OE-core][kirkstone 21/23] kernel.bbclass: check, if directory exists before removing empty module directory Steve Sakoman
2024-05-09 12:05 ` [OE-core][kirkstone 22/23] libarchive: fix multiple security vulnerabilities in pax writer Steve Sakoman
2024-05-09 12:05 ` [OE-core][kirkstone 23/23] ppp: Add RSA-MD in LICENSE Steve Sakoman
-- strict thread matches above, loose matches on Subject: below --
2023-02-21 14:40 [OE-core][kirkstone 00/23] Patch review Steve Sakoman
2022-12-01 14:26 Steve Sakoman
2022-07-18 0:30 Steve Sakoman
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=cover.1715256149.git.steve@sakoman.com \
--to=steve@sakoman.com \
--cc=openembedded-core@lists.openembedded.org \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.