[PATCH 1/2] glibc: Upgrade to tip of 2.36 branch

public inbox for openembedded-core@lists.openembedded.org
 help / color / mirror / Atom feed

* [PATCH 1/2] glibc: Upgrade to tip of 2.36 branch
@ 2022-09-13  0:51 Khem Raj
  2022-09-13  0:51 ` [PATCH 2/2] binutils: Ignore CVE-2022-38126 CVE-2022-38127 Khem Raj
  0 siblings, 1 reply; 2+ messages in thread
From: Khem Raj @ 2022-09-13  0:51 UTC (permalink / raw)
  To: openembedded-core; +Cc: Khem Raj

Adresses CVE-2022-39046

Brings in following changeset

* c399271c10 nscd: Fix netlink cache invalidation if epoll is used [BZ #29415]
* b46412fb17 Add NEWS entry for CVE-2022-39046
* 645d94808a syslog: Remove extra whitespace between timestamp and message (BZ#29544)
* b3736d1a3c elf: Restore how vDSO dependency is printed with LD_TRACE_LOADED_OBJECTS (BZ #29539)
* 3c791f2031 Apply asm redirections in wchar.h before first use
* 924e4f3eaa elf: Call __libc_early_init for reused namespaces (bug 29528)
* b0e7888d1f syslog: Fix large messages (BZ#29536)

Signed-off-by: Khem Raj <raj.khem@gmail.com>
---
 meta/recipes-core/glibc/glibc-version.inc | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/meta/recipes-core/glibc/glibc-version.inc b/meta/recipes-core/glibc/glibc-version.inc
index a078eb6377..bd125ec401 100644
--- a/meta/recipes-core/glibc/glibc-version.inc
+++ b/meta/recipes-core/glibc/glibc-version.inc
@@ -1,6 +1,6 @@
 SRCBRANCH ?= "release/2.36/master"
 PV = "2.36"
-SRCREV_glibc ?= "3bd3c612e98a53ce60ed972f5cd2b90628b3cba5"
+SRCREV_glibc ?= "c399271c10bd00714504e8d4dfbec8aebf996dd4"
 SRCREV_localedef ?= "794da69788cbf9bf57b59a852f9f11307663fa87"
 
 GLIBC_GIT_URI ?= "git://sourceware.org/git/glibc.git"
-- 
2.37.3



^ permalink raw reply related	[flat|nested] 2+ messages in thread

* [PATCH 2/2] binutils: Ignore CVE-2022-38126 CVE-2022-38127
  2022-09-13  0:51 [PATCH 1/2] glibc: Upgrade to tip of 2.36 branch Khem Raj
@ 2022-09-13  0:51 ` Khem Raj
  0 siblings, 0 replies; 2+ messages in thread
From: Khem Raj @ 2022-09-13  0:51 UTC (permalink / raw)
  To: openembedded-core; +Cc: Khem Raj

They are already part of backports to 2_36 branch
as noted

Signed-off-by: Khem Raj <raj.khem@gmail.com>
---
 meta/recipes-devtools/binutils/binutils-2.39.inc | 4 ++++
 1 file changed, 4 insertions(+)

diff --git a/meta/recipes-devtools/binutils/binutils-2.39.inc b/meta/recipes-devtools/binutils/binutils-2.39.inc
index 37627c8f93..e4fdb73243 100644
--- a/meta/recipes-devtools/binutils/binutils-2.39.inc
+++ b/meta/recipes-devtools/binutils/binutils-2.39.inc
@@ -34,3 +34,7 @@ SRC_URI = "\
      file://0013-CVE-2022-38533.patch \
 "
 S  = "${WORKDIR}/git"
+# Already in 2.39 branch
+# - https://sourceware.org/bugzilla/show_bug.cgi?id=29289
+# - https://sourceware.org/bugzilla/show_bug.cgi?id=29290
+CVE_CHECK_IGNORE += "CVE-2022-38126 CVE-2022-38127"
-- 
2.37.3



^ permalink raw reply related	[flat|nested] 2+ messages in thread

end of thread, other threads:[~2022-09-13  0:51 UTC | newest]

Thread overview: 2+ messages (download: mbox.gz follow: Atom feed
-- links below jump to the message on this page --
2022-09-13  0:51 [PATCH 1/2] glibc: Upgrade to tip of 2.36 branch Khem Raj
2022-09-13  0:51 ` [PATCH 2/2] binutils: Ignore CVE-2022-38126 CVE-2022-38127 Khem Raj

This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox