[thud 0/7] Thud pull request

Openembedded Core Discussions
 help / color / mirror / Atom feed

From: Armin Kuster <akuster808@gmail.com>
To: openembedded-core@lists.openembedded.org
Subject: [thud 0/7] Thud pull request
Date: Mon, 14 Oct 2019 18:33:41 -0700	[thread overview]
Message-ID: <cover.1571103112.git.akuster808@gmail.com> (raw)

All these have been already reviewed by the community.
Passes AB -full

Please merge to thud

The following changes since commit e6728a873f1eef335a9e21bdface304f13f0c952:

  uninative: Update to 2.7 release (2019-10-07 19:27:17 -0700)

are available in the git repository at:

  git://git.openembedded.org/openembedded-core-contrib stable/thud-next
  http://cgit.openembedded.org//log/?h=stable/thud-next

Dan Tran (1):
  gnutls: Fix CVE-2019-3829 and CVE-2019-3836

Dmitry Eremin-Solenikov (1):
  kernel.bbclass: fix installation of modules signing certificates

Muminul Islam (3):
  glibc: Security fix for cve <CVE-2019-6488, CVE-2019-7309>
  libsolv: Security fix for CVEs: <CVE-2018-20532, CVE-2018-20533,
    CVE-2018-20534>
  curl: Security fix for CVE-2019-5482

Peter Kjellerstedt (1):
  arch-arm64.inc: Lower the priority of aarch64 in MACHINEOVERRIDES

c-thaler (1):
  kernel-devsrc: check for localversion files in the kernel source tree

 meta/classes/kernel.bbclass                        |   2 +-
 meta/conf/machine/include/arm/arch-arm64.inc       |   2 +-
 meta/recipes-core/glibc/glibc/CVE-2019-6488.patch  | 274 +++++++
 meta/recipes-core/glibc/glibc/CVE-2019-7309.patch  | 207 +++++
 meta/recipes-core/glibc/glibc_2.28.bb              |   2 +
 .../0003-Fix-Dereference-of-null-pointer.patch     |  33 +
 .../0004-Fix-Add-va_end-before-return.patch        |  36 +
 .../libsolv/libsolv/0005-Fix-Memory-leaks.patch    | 158 ++++
 .../libsolv/0006-Fix-testsolv-segfault.patch       |  41 +
 .../libsolv/0007-Fix-testsolv-segfaults.patch      |  47 ++
 .../0008-Fix-Be-sure-that-NONBLOCK-is-set.patch    |  37 +
 ...0009-Don-t-set-values-that-are-never-read.patch | 113 +++
 meta/recipes-extended/libsolv/libsolv_0.6.35.bb    |   7 +
 meta/recipes-kernel/linux/kernel-devsrc.bb         |   9 +
 meta/recipes-support/curl/curl/CVE-2019-5482.patch |  68 ++
 meta/recipes-support/curl/curl_7.61.0.bb           |   1 +
 .../gnutls/gnutls/CVE-2019-3829_p1.patch           |  39 +
 .../gnutls/gnutls/CVE-2019-3829_p2.patch           | 871 +++++++++++++++++++++
 .../gnutls/gnutls/CVE-2019-3829_p3.patch           |  36 +
 .../gnutls/gnutls/CVE-2019-3836.patch              |  35 +
 meta/recipes-support/gnutls/gnutls_3.6.4.bb        |   4 +
 21 files changed, 2020 insertions(+), 2 deletions(-)
 create mode 100644 meta/recipes-core/glibc/glibc/CVE-2019-6488.patch
 create mode 100644 meta/recipes-core/glibc/glibc/CVE-2019-7309.patch
 create mode 100644 meta/recipes-extended/libsolv/libsolv/0003-Fix-Dereference-of-null-pointer.patch
 create mode 100644 meta/recipes-extended/libsolv/libsolv/0004-Fix-Add-va_end-before-return.patch
 create mode 100644 meta/recipes-extended/libsolv/libsolv/0005-Fix-Memory-leaks.patch
 create mode 100644 meta/recipes-extended/libsolv/libsolv/0006-Fix-testsolv-segfault.patch
 create mode 100644 meta/recipes-extended/libsolv/libsolv/0007-Fix-testsolv-segfaults.patch
 create mode 100644 meta/recipes-extended/libsolv/libsolv/0008-Fix-Be-sure-that-NONBLOCK-is-set.patch
 create mode 100644 meta/recipes-extended/libsolv/libsolv/0009-Don-t-set-values-that-are-never-read.patch
 create mode 100644 meta/recipes-support/curl/curl/CVE-2019-5482.patch
 create mode 100644 meta/recipes-support/gnutls/gnutls/CVE-2019-3829_p1.patch
 create mode 100644 meta/recipes-support/gnutls/gnutls/CVE-2019-3829_p2.patch
 create mode 100644 meta/recipes-support/gnutls/gnutls/CVE-2019-3829_p3.patch
 create mode 100644 meta/recipes-support/gnutls/gnutls/CVE-2019-3836.patch

-- 
2.7.4

next             reply	other threads:[~2019-10-15  1:33 UTC|newest]

Thread overview: 8+ messages / expand[flat|nested]  mbox.gz  Atom feed  top
2019-10-15  1:33 Armin Kuster [this message]
2019-10-15  1:33 ` [thud 1/7] kernel.bbclass: fix installation of modules signing certificates Armin Kuster
2019-10-15  1:33 ` [thud 2/7] arch-arm64.inc: Lower the priority of aarch64 in MACHINEOVERRIDES Armin Kuster
2019-10-15  1:33 ` [thud 3/7] glibc: Security fix for cve <CVE-2019-6488, CVE-2019-7309> Armin Kuster
2019-10-15  1:33 ` [thud 4/7] kernel-devsrc: check for localversion files in the kernel source tree Armin Kuster
2019-10-15  1:33 ` [thud 5/7] gnutls: Fix CVE-2019-3829 and CVE-2019-3836 Armin Kuster
2019-10-15  1:33 ` [thud 6/7] libsolv: Security fix for CVEs: <CVE-2018-20532, CVE-2018-20533, CVE-2018-20534> Armin Kuster
2019-10-15  1:33 ` [thud 7/7] curl: Security fix for CVE-2019-5482 Armin Kuster

Reply instructions:

You may reply publicly to this message via plain-text email
using any one of the following methods:

* Save the following mbox file, import it into your mail client,
  and reply-to-all from there: mbox

  Avoid top-posting and favor interleaved quoting:
  https://en.wikipedia.org/wiki/Posting_style#Interleaved_style

* Reply using the --to, --cc, and --in-reply-to
  switches of git-send-email(1):

  git send-email \
    --in-reply-to=cover.1571103112.git.akuster808@gmail.com \
    --to=akuster808@gmail.com \
    --cc=openembedded-core@lists.openembedded.org \
    /path/to/YOUR_REPLY

  https://kernel.org/pub/software/scm/git/docs/git-send-email.html

* If your mail client supports setting the In-Reply-To header
  via mailto: links, try the mailto: link

Be sure your reply has a Subject: header at the top and a blank line before the message body.

This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox