From: Armin Kuster <akuster808@gmail.com>
To: openembedded-core@lists.openembedded.org
Subject: [warrior][ 00/50] patch review
Date: Mon, 23 Sep 2019 19:48:40 -0700 [thread overview]
Message-ID: <cover.1569292053.git.akuster808@gmail.com> (raw)
Here is the current list of patch for warrior.
Please review by Wed.
Note: I am seeing odd build issue that I don't think they are related to these changes.
The following changes since commit 952bfcc3f4b9ee5ba584da0f991f95e80654355a:
curl: fix CVE-2019-5435 CVE-2019-5436 (2019-07-29 10:25:01 +0100)
are available in the git repository at:
git://git.openembedded.org/openembedded-core-contrib stable/warrior-nmut
http://cgit.openembedded.org//log/?h=stable/warrior-nmut
Adrian Bunk (1):
libxcrypt: Fix the build with -Os
Alex Kiernan (1):
systemd: Backport OpenSSL BUF_MEM fix
Anuj Mittal (14):
binutils: fix CVE-2019-12972 CVE-2019-9071
binutils: CVE-2019-9070 is same as CVE-2019-9071
python: fix CVE-2019-9740
libxslt: fix CVE-2019-13117 CVE-2019-13118
glibc: CVE-2018-20796 is same as CVE-2019-9169
libsdl: CVE fixes
gstreamer1.0-vaapi: backport jpeg encode/decode fixes
patch: fix CVE-2019-13636
python3: fix CVE-2019-9740
rsync: fix CVEs for included zlib
patch: backport fixes
binutils: fix CVE-2019-14250 CVE-2019-14444
pango: fix CVE-2019-1010238
glib-2.0: fix CVE-2019-13012
Armin Kuster (4):
qemu: fix CVE-2018-20815
gcc-8.3: Security fix for CVE-2019-14250
Curl: Security fix for CVE-2019-5482
gcc: Security fix for CVE-2019-15847
Bartosz Golaszewski (1):
qemu: add a patch fixing the native build on newer kernels
Bedel, Alban (2):
rng-tools: fix very long shutdown delay with systemd
boost: Fix build and enable context and coroutines on aarch64
Bruce Ashfield (3):
linux-yocto/4.19: update to 4.19.57 and -rt22
linux-yocto/4.19: update to v4.19.61
kernel-devsrc: tweak for v5.3+
Fabio Berton (1):
mesa: Update 19.0.1 -> 19.0.8
Jason Wessel (5):
psmisc: Fix dependency for USE_NLS=no
glibc: Fix multilibs + usrmerge builds
glibc-locale: Fix build error with PACKAGE_NO_GCONV = "1"
glibc/glibc-locale: Fix do_stash_locale to work with usrmerge and
multilibs
glibc / glibc-locale: Fix stash_locale determinism problems
Joël Esponde (1):
package.bbclass: fix directories setuid and setgid bits
Jun Nie (1):
kernel-fitimage: uboot-sign: fix missing signature
Martin Jansa (3):
icecc.bbclass: catch subprocess.CalledProcessError
meson: backport fix for builds with -Werror=return-type
powertop: import a fix from buildroot
Nathan Rossi (1):
binutils: Fix mips patch which changes default emulation
Naveen Saini (1):
ghostscript: fix CVE-2019-3839
Ricardo Ribalda Delgado (1):
dpkg: Use less as pager
Richard Purdie (1):
package: Improve determinism
Robert Yang (1):
multilib.bbclass: Reduce ALTERNATIVE_PRIORITY for extended recipes
Ross Burton (4):
libid3tag: handle unknown encodings (CVE-2017-11550)
libid3tag: CVE-2017-11551 is the same as CVE-2004-2779
tiff: fix CVE-2019-6128
tiff: fix CVE-2019-7663
Sean Nyekjaer (1):
libgpg-error: Fix build with gawk 5.x
Trevor Gamblin (1):
patch: fix CVE-2019-13638
Zhixiong Chi (2):
gcc: reduce the variables in symtab
gcc: CVE-2018-12886
meta/classes/icecc.bbclass | 6 +-
meta/classes/multilib.bbclass | 47 ++
meta/classes/package.bbclass | 5 +-
meta/classes/uboot-sign.bbclass | 4 +-
meta/lib/oe/package.py | 2 +-
.../glib-2.0/glib-2.0/CVE-2019-13012.patch | 40 +
meta/recipes-core/glib-2.0/glib-2.0_2.58.3.bb | 1 +
meta/recipes-core/glibc/glibc-locale.inc | 3 +
meta/recipes-core/glibc/glibc-package.inc | 61 +-
meta/recipes-core/glibc/glibc/CVE-2019-9169.patch | 1 +
meta/recipes-core/glibc/glibc_2.29.bb | 1 -
meta/recipes-core/libxcrypt/libxcrypt.bb | 4 +-
...lved-Fix-incorrect-use-of-OpenSSL-BUF_MEM.patch | 41 ++
meta/recipes-core/systemd/systemd_241.bb | 1 +
meta/recipes-devtools/binutils/binutils-2.32.inc | 4 +
...Change-default-emulation-for-mips64-linux.patch | 9 +-
.../binutils/binutils/CVE-2019-12972.patch | 51 ++
.../binutils/binutils/CVE-2019-14250.patch | 33 +
.../binutils/binutils/CVE-2019-14444.patch | 28 +
.../binutils/binutils/CVE-2019-9071.patch | 165 +++++
meta/recipes-devtools/dpkg/dpkg/pager.patch | 21 +
meta/recipes-devtools/dpkg/dpkg_1.19.4.bb | 1 +
meta/recipes-devtools/gcc/gcc-8.3.inc | 6 +
.../gcc/gcc-8.3/0042-PR-debug-86964.patch | 94 +++
...vent-spilling-of-stack-protector-guard-s-.patch | 813 +++++++++++++++++++++
.../gcc/gcc-8.3/CVE-2019-14250.patch | 44 ++
.../gcc/gcc-8.3/CVE-2019-15847_p1.patch | 521 +++++++++++++
.../gcc/gcc-8.3/CVE-2019-15847_p2.patch | 77 ++
.../gcc/gcc-8.3/CVE-2019-15847_p3.patch | 45 ++
meta/recipes-devtools/meson/meson.inc | 1 +
...-return-statements-that-are-seen-with-Wer.patch | 84 +++
...k-temporary-file-on-failed-ed-style-patch.patch | 93 +++
...ak-temporary-file-on-failed-multi-file-ed.patch | 80 ++
...ke-ed-directly-instead-of-using-the-shell.patch | 44 ++
.../patch/patch/CVE-2019-13636.patch | 113 +++
meta/recipes-devtools/patch/patch_2.7.6.bb | 4 +
.../python/python/CVE-2019-9740.patch | 215 ++++++
.../python/python3/CVE-2019-9740.patch | 151 ++++
meta/recipes-devtools/python/python3_3.7.2.bb | 1 +
meta/recipes-devtools/python/python_2.7.16.bb | 1 +
meta/recipes-devtools/qemu/qemu.inc | 2 +
...fix-to-handle-variably-sized-SIOCGSTAMP-w.patch | 339 +++++++++
.../qemu/qemu/CVE-2018-20815.patch | 38 +
.../rsync/files/CVE-2016-9840.patch | 75 ++
.../rsync/files/CVE-2016-9841.patch | 228 ++++++
.../rsync/files/CVE-2016-9842.patch | 33 +
.../rsync/files/CVE-2016-9843.patch | 53 ++
meta/recipes-devtools/rsync/rsync_3.1.3.bb | 4 +
.../ghostscript/CVE-2019-3839-0008.patch | 440 +++++++++++
.../ghostscript/ghostscript_9.26.bb | 1 +
meta/recipes-extended/psmisc/psmisc.inc | 2 +-
.../libsdl/libsdl-1.2.15/CVE-2019-7572.patch | 114 +++
.../libsdl/libsdl-1.2.15/CVE-2019-7574.patch | 68 ++
.../libsdl/libsdl-1.2.15/CVE-2019-7575.patch | 81 ++
.../libsdl/libsdl-1.2.15/CVE-2019-7576.patch | 80 ++
.../libsdl/libsdl-1.2.15/CVE-2019-7577.patch | 123 ++++
.../libsdl/libsdl-1.2.15/CVE-2019-7578.patch | 64 ++
.../libsdl/libsdl-1.2.15/CVE-2019-7635.patch | 63 ++
.../libsdl/libsdl-1.2.15/CVE-2019-7637.patch | 192 +++++
.../libsdl/libsdl-1.2.15/CVE-2019-7638.patch | 38 +
meta/recipes-graphics/libsdl/libsdl_1.2.15.bb | 9 +
.../mesa/{mesa-gl_19.0.1.bb => mesa-gl_19.0.8.bb} | 0
.../mesa/{mesa_19.0.1.bb => mesa_19.0.8.bb} | 4 +-
.../pango/pango/CVE-2019-1010238.patch | 38 +
meta/recipes-graphics/pango/pango_1.42.4.bb | 4 +-
meta/recipes-kernel/linux/kernel-devsrc.bb | 4 +-
meta/recipes-kernel/linux/linux-yocto-rt_4.19.bb | 6 +-
meta/recipes-kernel/linux/linux-yocto-tiny_4.19.bb | 8 +-
meta/recipes-kernel/linux/linux-yocto_4.19.bb | 20 +-
.../0001-wakeup_xxx.h-include-limits.h.patch | 55 ++
meta/recipes-kernel/powertop/powertop_2.10.bb | 1 +
...der-release-VA-buffers-after-vaEndPicture.patch | 45 ++
...ibs-encoder-jpeg-set-component-id-and-Tqi.patch | 65 ++
.../gstreamer/gstreamer1.0-vaapi_1.14.4.bb | 2 +
.../libid3tag/libid3tag/10_utf16.patch | 1 +
.../libid3tag/libid3tag/unknown-encoding.patch | 39 +
.../libid3tag/libid3tag_0.15.1b.bb | 1 +
.../libtiff/tiff/CVE-2019-6128.patch | 52 ++
.../libtiff/tiff/CVE-2019-7663.patch | 77 ++
meta/recipes-multimedia/libtiff/tiff_4.0.10.bb | 3 +-
meta/recipes-support/boost/boost.inc | 2 +
meta/recipes-support/curl/curl/CVE-2019-5482.patch | 65 ++
meta/recipes-support/curl/curl_7.64.1.bb | 1 +
.../libgpg-error-1.35-gawk5-support.patch | 161 ++++
.../libgpg-error/libgpg-error_1.35.bb | 1 +
.../libxslt/files/CVE-2019-13117.patch | 33 +
.../libxslt/files/CVE-2019-13118.patch | 76 ++
meta/recipes-support/libxslt/libxslt_1.1.33.bb | 2 +
.../rng-tools/rng-tools/rngd.service | 3 +-
89 files changed, 5670 insertions(+), 62 deletions(-)
create mode 100644 meta/recipes-core/glib-2.0/glib-2.0/CVE-2019-13012.patch
create mode 100644 meta/recipes-core/systemd/systemd/0001-resolved-Fix-incorrect-use-of-OpenSSL-BUF_MEM.patch
create mode 100644 meta/recipes-devtools/binutils/binutils/CVE-2019-12972.patch
create mode 100644 meta/recipes-devtools/binutils/binutils/CVE-2019-14250.patch
create mode 100644 meta/recipes-devtools/binutils/binutils/CVE-2019-14444.patch
create mode 100644 meta/recipes-devtools/binutils/binutils/CVE-2019-9071.patch
create mode 100644 meta/recipes-devtools/dpkg/dpkg/pager.patch
create mode 100644 meta/recipes-devtools/gcc/gcc-8.3/0042-PR-debug-86964.patch
create mode 100644 meta/recipes-devtools/gcc/gcc-8.3/0043-PR85434-Prevent-spilling-of-stack-protector-guard-s-.patch
create mode 100644 meta/recipes-devtools/gcc/gcc-8.3/CVE-2019-14250.patch
create mode 100644 meta/recipes-devtools/gcc/gcc-8.3/CVE-2019-15847_p1.patch
create mode 100644 meta/recipes-devtools/gcc/gcc-8.3/CVE-2019-15847_p2.patch
create mode 100644 meta/recipes-devtools/gcc/gcc-8.3/CVE-2019-15847_p3.patch
create mode 100644 meta/recipes-devtools/meson/meson/0001-Fix-missing-return-statements-that-are-seen-with-Wer.patch
create mode 100644 meta/recipes-devtools/patch/patch/0001-Don-t-leak-temporary-file-on-failed-ed-style-patch.patch
create mode 100644 meta/recipes-devtools/patch/patch/0001-Don-t-leak-temporary-file-on-failed-multi-file-ed.patch
create mode 100644 meta/recipes-devtools/patch/patch/0001-Invoke-ed-directly-instead-of-using-the-shell.patch
create mode 100644 meta/recipes-devtools/patch/patch/CVE-2019-13636.patch
create mode 100644 meta/recipes-devtools/python/python/CVE-2019-9740.patch
create mode 100644 meta/recipes-devtools/python/python3/CVE-2019-9740.patch
create mode 100644 meta/recipes-devtools/qemu/qemu/0014-linux-user-fix-to-handle-variably-sized-SIOCGSTAMP-w.patch
create mode 100644 meta/recipes-devtools/qemu/qemu/CVE-2018-20815.patch
create mode 100644 meta/recipes-devtools/rsync/files/CVE-2016-9840.patch
create mode 100644 meta/recipes-devtools/rsync/files/CVE-2016-9841.patch
create mode 100644 meta/recipes-devtools/rsync/files/CVE-2016-9842.patch
create mode 100644 meta/recipes-devtools/rsync/files/CVE-2016-9843.patch
create mode 100644 meta/recipes-extended/ghostscript/ghostscript/CVE-2019-3839-0008.patch
create mode 100644 meta/recipes-graphics/libsdl/libsdl-1.2.15/CVE-2019-7572.patch
create mode 100644 meta/recipes-graphics/libsdl/libsdl-1.2.15/CVE-2019-7574.patch
create mode 100644 meta/recipes-graphics/libsdl/libsdl-1.2.15/CVE-2019-7575.patch
create mode 100644 meta/recipes-graphics/libsdl/libsdl-1.2.15/CVE-2019-7576.patch
create mode 100644 meta/recipes-graphics/libsdl/libsdl-1.2.15/CVE-2019-7577.patch
create mode 100644 meta/recipes-graphics/libsdl/libsdl-1.2.15/CVE-2019-7578.patch
create mode 100644 meta/recipes-graphics/libsdl/libsdl-1.2.15/CVE-2019-7635.patch
create mode 100644 meta/recipes-graphics/libsdl/libsdl-1.2.15/CVE-2019-7637.patch
create mode 100644 meta/recipes-graphics/libsdl/libsdl-1.2.15/CVE-2019-7638.patch
rename meta/recipes-graphics/mesa/{mesa-gl_19.0.1.bb => mesa-gl_19.0.8.bb} (100%)
rename meta/recipes-graphics/mesa/{mesa_19.0.1.bb => mesa_19.0.8.bb} (85%)
create mode 100644 meta/recipes-graphics/pango/pango/CVE-2019-1010238.patch
create mode 100644 meta/recipes-kernel/powertop/powertop/0001-wakeup_xxx.h-include-limits.h.patch
create mode 100644 meta/recipes-multimedia/gstreamer/gstreamer1.0-vaapi/0001-libs-decoder-release-VA-buffers-after-vaEndPicture.patch
create mode 100644 meta/recipes-multimedia/gstreamer/gstreamer1.0-vaapi/0001-libs-encoder-jpeg-set-component-id-and-Tqi.patch
create mode 100644 meta/recipes-multimedia/libid3tag/libid3tag/unknown-encoding.patch
create mode 100644 meta/recipes-multimedia/libtiff/tiff/CVE-2019-6128.patch
create mode 100644 meta/recipes-multimedia/libtiff/tiff/CVE-2019-7663.patch
create mode 100644 meta/recipes-support/curl/curl/CVE-2019-5482.patch
create mode 100644 meta/recipes-support/libgpg-error/libgpg-error/libgpg-error-1.35-gawk5-support.patch
create mode 100644 meta/recipes-support/libxslt/files/CVE-2019-13117.patch
create mode 100644 meta/recipes-support/libxslt/files/CVE-2019-13118.patch
--
2.7.4
next reply other threads:[~2019-09-24 2:49 UTC|newest]
Thread overview: 54+ messages / expand[flat|nested] mbox.gz Atom feed top
2019-09-24 2:48 Armin Kuster [this message]
2019-09-24 2:48 ` [warrior][ 01/50] binutils: fix CVE-2019-12972 CVE-2019-9071 Armin Kuster
2019-09-24 2:48 ` [warrior][ 02/50] binutils: CVE-2019-9070 is same as CVE-2019-9071 Armin Kuster
2019-09-24 2:48 ` [warrior][ 03/50] python: fix CVE-2019-9740 Armin Kuster
2019-09-24 2:48 ` [warrior][ 04/50] libxslt: fix CVE-2019-13117 CVE-2019-13118 Armin Kuster
2019-09-24 2:48 ` [warrior][ 05/50] glibc: CVE-2018-20796 is same as CVE-2019-9169 Armin Kuster
2019-09-24 2:48 ` [warrior][ 06/50] libid3tag: handle unknown encodings (CVE-2017-11550) Armin Kuster
2019-09-24 2:48 ` [warrior][ 07/50] libid3tag: CVE-2017-11551 is the same as CVE-2004-2779 Armin Kuster
2019-09-24 2:48 ` [warrior][ 08/50] tiff: fix CVE-2019-6128 Armin Kuster
2019-09-24 2:48 ` [warrior][ 09/50] tiff: fix CVE-2019-7663 Armin Kuster
2019-09-24 2:48 ` [warrior][ 10/50] libsdl: CVE fixes Armin Kuster
2019-09-24 2:48 ` [warrior][ 11/50] gstreamer1.0-vaapi: backport jpeg encode/decode fixes Armin Kuster
2019-09-24 2:48 ` [warrior][ 12/50] package: Improve determinism Armin Kuster
2019-09-24 2:48 ` [warrior][ 13/50] patch: fix CVE-2019-13636 Armin Kuster
2019-09-24 2:48 ` [warrior][ 14/50] python3: fix CVE-2019-9740 Armin Kuster
2019-09-24 2:48 ` [warrior][ 15/50] ghostscript: fix CVE-2019-3839 Armin Kuster
2019-09-24 2:48 ` [warrior][ 16/50] rng-tools: fix very long shutdown delay with systemd Armin Kuster
2019-09-24 2:48 ` [warrior][ 17/50] psmisc: Fix dependency for USE_NLS=no Armin Kuster
2019-09-24 2:48 ` [warrior][ 18/50] systemd: Backport OpenSSL BUF_MEM fix Armin Kuster
2019-09-24 6:50 ` Adrian Bunk
2019-09-24 2:48 ` [warrior][ 19/50] package.bbclass: fix directories setuid and setgid bits Armin Kuster
2019-09-24 2:49 ` [warrior][ 20/50] qemu: add a patch fixing the native build on newer kernels Armin Kuster
2019-09-24 2:49 ` [warrior][ 21/50] mesa: Update 19.0.1 -> 19.0.8 Armin Kuster
2019-09-24 2:49 ` [warrior][ 22/50] qemu: fix CVE-2018-20815 Armin Kuster
2019-09-24 2:49 ` [warrior][ 23/50] linux-yocto/4.19: update to 4.19.57 and -rt22 Armin Kuster
2019-09-24 2:49 ` [warrior][ 24/50] linux-yocto/4.19: update to v4.19.61 Armin Kuster
2019-09-24 2:49 ` [warrior][ 25/50] boost: Fix build and enable context and coroutines on aarch64 Armin Kuster
2019-09-24 3:37 ` Andre McCurdy
2019-09-25 0:41 ` akuster808
2019-09-24 2:49 ` [warrior][ 26/50] rsync: fix CVEs for included zlib Armin Kuster
2019-09-24 2:49 ` [warrior][ 27/50] patch: fix CVE-2019-13638 Armin Kuster
2019-09-24 2:49 ` [warrior][ 28/50] patch: backport fixes Armin Kuster
2019-09-24 2:49 ` [warrior][ 29/50] dpkg: Use less as pager Armin Kuster
2019-09-24 2:49 ` [warrior][ 30/50] icecc.bbclass: catch subprocess.CalledProcessError Armin Kuster
2019-09-24 2:49 ` [warrior][ 31/50] meson: backport fix for builds with -Werror=return-type Armin Kuster
2019-09-24 2:49 ` [warrior][ 32/50] powertop: import a fix from buildroot Armin Kuster
2019-09-24 2:49 ` [warrior][ 33/50] binutils: fix CVE-2019-14250 CVE-2019-14444 Armin Kuster
2019-09-24 2:49 ` [warrior][ 34/50] pango: fix CVE-2019-1010238 Armin Kuster
2019-09-24 2:49 ` [warrior][ 35/50] glib-2.0: fix CVE-2019-13012 Armin Kuster
2019-09-24 2:49 ` [warrior][ 36/50] gcc: reduce the variables in symtab Armin Kuster
2019-09-24 2:49 ` [warrior][ 37/50] gcc: CVE-2018-12886 Armin Kuster
2019-09-24 2:49 ` [warrior][ 38/50] binutils: Fix mips patch which changes default emulation Armin Kuster
2019-09-24 2:49 ` [warrior][ 39/50] glibc: Fix multilibs + usrmerge builds Armin Kuster
2019-09-24 2:49 ` [warrior][ 40/50] glibc-locale: Fix build error with PACKAGE_NO_GCONV = "1" Armin Kuster
2019-09-24 2:49 ` [warrior][ 41/50] glibc/glibc-locale: Fix do_stash_locale to work with usrmerge and multilibs Armin Kuster
2019-09-24 2:49 ` [warrior][ 42/50] glibc / glibc-locale: Fix stash_locale determinism problems Armin Kuster
2019-09-24 2:49 ` [warrior][ 43/50] gcc-8.3: Security fix for CVE-2019-14250 Armin Kuster
2019-09-24 2:49 ` [warrior][ 44/50] kernel-fitimage: uboot-sign: fix missing signature Armin Kuster
2019-09-24 2:49 ` [warrior][ 45/50] kernel-devsrc: tweak for v5.3+ Armin Kuster
2019-09-24 2:49 ` [warrior][ 46/50] libxcrypt: Fix the build with -Os Armin Kuster
2019-09-24 2:49 ` [warrior][ 47/50] libgpg-error: Fix build with gawk 5.x Armin Kuster
2019-09-24 2:49 ` [warrior][ 48/50] Curl: Security fix for CVE-2019-5482 Armin Kuster
2019-09-24 2:49 ` [warrior][ 49/50] gcc: Security fix for CVE-2019-15847 Armin Kuster
2019-09-24 2:49 ` [warrior][ 50/50] multilib.bbclass: Reduce ALTERNATIVE_PRIORITY for extended recipes Armin Kuster
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=cover.1569292053.git.akuster808@gmail.com \
--to=akuster808@gmail.com \
--cc=openembedded-core@lists.openembedded.org \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox