From: Anuj Mittal <anuj.mittal@intel.com>
To: openembedded-core@lists.openembedded.org
Subject: [zeus][PATCH 00/15] zeus review/pull request
Date: Fri, 22 Nov 2019 19:38:59 +0800 [thread overview]
Message-ID: <cover.1574422359.git.anuj.mittal@intel.com> (raw)
zeus patch queue for review. a-full build passing on autobuilder.
Thanks,
Anuj
The following changes since commit 0275e68b0576cdefc19718e4b1977044f9f43f48:
iputils: Whitelist CVE-2000-1213 CVE-2000-1214 (2019-11-19 00:24:22 +0000)
are available in the Git repository at:
git://push.yoctoproject.org/poky-contrib anujm/zeus
Adrian Bunk (1):
lz4: Whitelist CVE-2014-4715
Alexander Kanavin (2):
Revert "devtool/standard.py: Not filtering devtool workspace for
devtool finish"
python: update to 2.7.17
Anuj Mittal (1):
boost: fix build for x32
Kai Kang (1):
bind: fix CVE-2019-6471 and CVE-2018-5743
Ross Burton (9):
libsoup: set CVE_PRODUCT
cve-check: we don't actually need to unpack to check
cve-update-db-native: don't refresh more than once an hour
cve-update-db-native: don't hardcode the database name
cve-update-db-native: add an index on the CVE ID column
cve-update-db-native: clean up proxy handling
cve-check: rewrite look to fix false negatives
cve-check: neaten get_cve_info
cve-check: fetch CVE data once at a time instead of in a single call
Zheng Ruoqin (1):
tiff: Refresh patch
meta/classes/cve-check.bbclass | 98 +-
.../bind/0001-bind-fix-CVE-2019-6471.patch | 64 ++
...01-fix-enforcement-of-tcp-clients-v1.patch | 60 ++
...p-clients-could-still-be-exceeded-v2.patch | 670 +++++++++++++
...rence-counter-for-pipeline-groups-v3.patch | 278 ++++++
...accounting-and-client-mortality-chec.patch | 512 ++++++++++
...a-and-pipeline-refs-allow-special-ca.patch | 911 ++++++++++++++++++
...allowance-for-tcp-clients-interfaces.patch | 80 ++
...perations-in-bin-named-client.c-with.patch | 140 +++
.../bind/bind_9.11.5-P4.bb | 8 +
.../recipes-core/meta/cve-update-db-native.bb | 44 +-
...-fix-one-do_populate_sysroot-warning.patch | 25 +-
...tive_2.7.16.bb => python-native_2.7.17.bb} | 2 +-
meta/recipes-devtools/python/python.inc | 10 +-
...nt-parse-domains-containing-GH-13079.patch | 90 --
...cape-the-server-title-of-DocXMLRPCSe.patch | 101 --
...Resolve-intermediate-staging-issues.patch} | 53 +-
.../python/python/CVE-2018-20852.patch | 123 ---
.../python/python/CVE-2019-9740.patch | 216 -----
.../python/bpo-35907-cve-2019-9948-fix.patch | 55 --
.../python/bpo-35907-cve-2019-9948.patch | 55 --
.../python/bpo-36216-cve-2019-9636-fix.patch | 28 -
.../python/bpo-36216-cve-2019-9636.patch | 111 ---
.../python/bpo-36742-cve-2019-10160.patch | 81 --
.../{python_2.7.16.bb => python_2.7.17.bb} | 3 -
.../libtiff/tiff/CVE-2019-7663.patch | 71 +-
...01-dont-setup-compiler-flags-m32-m64.patch | 42 +
meta/recipes-support/boost/boost_1.71.0.bb | 1 +
.../libsoup/libsoup-2.4_2.66.2.bb | 2 +
meta/recipes-support/lz4/lz4_1.9.2.bb | 3 +
scripts/lib/devtool/standard.py | 2 +-
31 files changed, 2911 insertions(+), 1028 deletions(-)
create mode 100644 meta/recipes-connectivity/bind/bind/0001-bind-fix-CVE-2019-6471.patch
create mode 100644 meta/recipes-connectivity/bind/bind/0001-fix-enforcement-of-tcp-clients-v1.patch
create mode 100644 meta/recipes-connectivity/bind/bind/0002-tcp-clients-could-still-be-exceeded-v2.patch
create mode 100644 meta/recipes-connectivity/bind/bind/0003-use-reference-counter-for-pipeline-groups-v3.patch
create mode 100644 meta/recipes-connectivity/bind/bind/0004-better-tcpquota-accounting-and-client-mortality-chec.patch
create mode 100644 meta/recipes-connectivity/bind/bind/0005-refactor-tcpquota-and-pipeline-refs-allow-special-ca.patch
create mode 100644 meta/recipes-connectivity/bind/bind/0006-restore-allowance-for-tcp-clients-interfaces.patch
create mode 100644 meta/recipes-connectivity/bind/bind/0007-Replace-atomic-operations-in-bin-named-client.c-with.patch
rename meta/recipes-devtools/python/{python-native_2.7.16.bb => python-native_2.7.17.bb} (97%)
delete mode 100644 meta/recipes-devtools/python/python/0001-2.7-bpo-34155-Dont-parse-domains-containing-GH-13079.patch
delete mode 100644 meta/recipes-devtools/python/python/0001-2.7-bpo-38243-Escape-the-server-title-of-DocXMLRPCSe.patch
rename meta/recipes-devtools/python/python/{builddir.patch => 0001-python-Resolve-intermediate-staging-issues.patch} (58%)
delete mode 100644 meta/recipes-devtools/python/python/CVE-2018-20852.patch
delete mode 100644 meta/recipes-devtools/python/python/CVE-2019-9740.patch
delete mode 100644 meta/recipes-devtools/python/python/bpo-35907-cve-2019-9948-fix.patch
delete mode 100644 meta/recipes-devtools/python/python/bpo-35907-cve-2019-9948.patch
delete mode 100644 meta/recipes-devtools/python/python/bpo-36216-cve-2019-9636-fix.patch
delete mode 100644 meta/recipes-devtools/python/python/bpo-36216-cve-2019-9636.patch
delete mode 100644 meta/recipes-devtools/python/python/bpo-36742-cve-2019-10160.patch
rename meta/recipes-devtools/python/{python_2.7.16.bb => python_2.7.17.bb} (97%)
create mode 100644 meta/recipes-support/boost/boost/0001-dont-setup-compiler-flags-m32-m64.patch
--
2.21.0
next reply other threads:[~2019-11-22 11:40 UTC|newest]
Thread overview: 17+ messages / expand[flat|nested] mbox.gz Atom feed top
2019-11-22 11:38 Anuj Mittal [this message]
2019-11-22 11:39 ` [zeus][PATCH 01/15] lz4: Whitelist CVE-2014-4715 Anuj Mittal
2019-11-22 11:39 ` [zeus][PATCH 02/15] libsoup: set CVE_PRODUCT Anuj Mittal
2019-11-22 11:39 ` [zeus][PATCH 03/15] cve-check: we don't actually need to unpack to check Anuj Mittal
2019-11-22 11:39 ` [zeus][PATCH 04/15] cve-update-db-native: don't refresh more than once an hour Anuj Mittal
2019-11-22 11:39 ` [zeus][PATCH 05/15] cve-update-db-native: don't hardcode the database name Anuj Mittal
2019-11-22 11:39 ` [zeus][PATCH 06/15] cve-update-db-native: add an index on the CVE ID column Anuj Mittal
2019-11-22 11:39 ` [zeus][PATCH 07/15] cve-update-db-native: clean up proxy handling Anuj Mittal
2019-11-22 11:39 ` [zeus][PATCH 08/15] cve-check: rewrite look to fix false negatives Anuj Mittal
2019-11-22 11:39 ` [zeus][PATCH 09/15] cve-check: neaten get_cve_info Anuj Mittal
2019-11-22 11:39 ` [zeus][PATCH 10/15] cve-check: fetch CVE data once at a time instead of in a single call Anuj Mittal
2019-11-22 11:39 ` [zeus][PATCH 11/15] boost: fix build for x32 Anuj Mittal
2019-11-22 11:39 ` [zeus][PATCH 12/15] Revert "devtool/standard.py: Not filtering devtool workspace for devtool finish" Anuj Mittal
2019-11-22 11:39 ` [zeus][PATCH 13/15] python: update to 2.7.17 Anuj Mittal
2019-11-22 11:39 ` [zeus][PATCH 14/15] tiff: Refresh patch Anuj Mittal
2019-11-22 11:39 ` [zeus][PATCH 15/15] bind: fix CVE-2019-6471 and CVE-2018-5743 Anuj Mittal
2019-11-22 12:02 ` ✗ patchtest: failure for zeus review/pull request Patchwork
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=cover.1574422359.git.anuj.mittal@intel.com \
--to=anuj.mittal@intel.com \
--cc=openembedded-core@lists.openembedded.org \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox