[OE-core][scarthgap 0/9] Patch review

All of lore.kernel.org
 help / color / mirror / Atom feed

From: Steve Sakoman <steve@sakoman.com>
To: openembedded-core@lists.openembedded.org
Subject: [OE-core][scarthgap 0/9] Patch review
Date: Wed, 14 Aug 2024 05:02:00 -0700	[thread overview]
Message-ID: <cover.1723636705.git.steve@sakoman.com> (raw)

Please review this set of changes for scarthgap and have comments back by
end of day Friday, August 16

Passed a-full on autobuilder:

https://autobuilder.yoctoproject.org/typhoon/#/builders/83/builds/7241

The following changes since commit 236ac1b43308df722a78d3aa20aef065dfae5b2b:

  build-appliance-image: Update to scarthgap head revision (2024-08-10 06:35:20 -0700)

are available in the Git repository at:

  https://git.openembedded.org/openembedded-core-contrib stable/scarthgap-nut
  https://git.openembedded.org/openembedded-core-contrib/log/?h=stable/scarthgap-nut

Archana Polampalli (1):
  ffmpeg: fix CVE-2023-50008

Niko Mauno (3):
  systemd: Mitigate /var/log type mismatch issue
  systemd: Mitigate /var/tmp type mismatch issue
  image_types.bbclass: Use --force also with lz4,lzop

Peter Marko (1):
  libyaml: ignore CVE-2024-35326

Richard Purdie (1):
  cve_check: Use a local copy of the database during builds

Ross Burton (1):
  python3-pycryptodome(x): use python_setuptools_build_meta build class

Ryan Eatmon (1):
  u-boot.inc: Refactor do_* steps into functions that can be overridden

Soumya Sambu (1):
  python3-certifi: Fix CVE-2024-39689

 meta/classes-recipe/image_types.bbclass       |   4 +-
 meta/classes/cve-check.bbclass                |   7 +-
 meta/recipes-bsp/u-boot/u-boot-configure.inc  |  36 ++-
 meta/recipes-bsp/u-boot/u-boot.inc            | 281 ++++++++++++------
 .../meta/cve-update-nvd2-native.bb            |  18 +-
 .../systemd/systemd/00-create-volatile.conf   |   1 +
 meta/recipes-core/systemd/systemd_255.4.bb    |   5 +-
 .../python3-certifi/CVE-2024-39689.patch      |  69 +++++
 .../python/python3-certifi_2024.2.2.bb        |   3 +
 .../python/python3-pycryptodome_3.20.0.bb     |   2 +-
 .../python/python3-pycryptodomex_3.20.0.bb    |   2 +-
 .../ffmpeg/ffmpeg/CVE-2023-50008.patch        |  29 ++
 .../recipes-multimedia/ffmpeg/ffmpeg_6.1.1.bb |   1 +
 meta/recipes-support/libyaml/libyaml_0.2.5.bb |   1 +
 14 files changed, 336 insertions(+), 123 deletions(-)
 create mode 100644 meta/recipes-devtools/python/python3-certifi/CVE-2024-39689.patch
 create mode 100644 meta/recipes-multimedia/ffmpeg/ffmpeg/CVE-2023-50008.patch

-- 
2.34.1

next             reply	other threads:[~2024-08-14 12:02 UTC|newest]

Thread overview: 22+ messages / expand[flat|nested]  mbox.gz  Atom feed  top
2024-08-14 12:02 Steve Sakoman [this message]
2024-08-14 12:02 ` [OE-core][scarthgap 1/9] cve_check: Use a local copy of the database during builds Steve Sakoman
2024-08-14 14:25   ` Marta Rybczynska
2024-08-14 14:33     ` Steve Sakoman
     [not found]     ` <17EB9EED917D6CD6.10903@lists.openembedded.org>
2024-10-22 12:59       ` Steve Sakoman
2024-10-22 13:09         ` Richard Purdie
2024-10-25  5:08           ` Marta Rybczynska
2024-10-29 22:40             ` Richard Purdie
2024-11-05 11:55               ` Marta Rybczynska
2024-11-05 13:53                 ` Steve Sakoman
2024-08-14 12:02 ` [OE-core][scarthgap 2/9] libyaml: ignore CVE-2024-35326 Steve Sakoman
2024-08-14 12:02 ` [OE-core][scarthgap 3/9] python3-certifi: Fix CVE-2024-39689 Steve Sakoman
2024-08-14 12:02 ` [OE-core][scarthgap 4/9] ffmpeg: fix CVE-2023-50008 Steve Sakoman
2024-08-14 12:02 ` [OE-core][scarthgap 5/9] python3-pycryptodome(x): use python_setuptools_build_meta build class Steve Sakoman
2024-08-14 12:02 ` [OE-core][scarthgap 6/9] systemd: Mitigate /var/log type mismatch issue Steve Sakoman
2024-08-14 12:02 ` [OE-core][scarthgap 7/9] systemd: Mitigate /var/tmp " Steve Sakoman
2024-08-14 12:02 ` [OE-core][scarthgap 8/9] image_types.bbclass: Use --force also with lz4,lzop Steve Sakoman
2024-08-14 12:02 ` [OE-core][scarthgap 9/9] u-boot.inc: Refactor do_* steps into functions that can be overridden Steve Sakoman
  -- strict thread matches above, loose matches on Subject: below --
2024-11-13 20:42 [OE-core][scarthgap 0/9] Patch review Steve Sakoman
2025-07-02 14:25 Steve Sakoman
2025-08-15 16:44 Steve Sakoman
2025-11-25 20:58 Steve Sakoman

Reply instructions:

You may reply publicly to this message via plain-text email
using any one of the following methods:

* Save the following mbox file, import it into your mail client,
  and reply-to-all from there: mbox

  Avoid top-posting and favor interleaved quoting:
  https://en.wikipedia.org/wiki/Posting_style#Interleaved_style

* Reply using the --to, --cc, and --in-reply-to
  switches of git-send-email(1):

  git send-email \
    --in-reply-to=cover.1723636705.git.steve@sakoman.com \
    --to=steve@sakoman.com \
    --cc=openembedded-core@lists.openembedded.org \
    /path/to/YOUR_REPLY

  https://kernel.org/pub/software/scm/git/docs/git-send-email.html

* If your mail client supports setting the In-Reply-To header
  via mailto: links, try the mailto: link

Be sure your reply has a Subject: header at the top and a blank line before the message body.

This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.