From: Armin Kuster <akuster808@gmail.com>
To: openembedded-core@lists.openembedded.org
Subject: [zeus 00/35] pull request for Zeus next
Date: Sun, 24 Nov 2019 15:50:05 -0800 [thread overview]
Message-ID: <cover.1574639349.git.akuster808@gmail.com> (raw)
Passed A-full build & test
Please merge this into Zeus mailine for 3.0.1 update
The following changes since commit 6431e869998baa1ddfe04d2d1fb7a81f60725ed2:
iputils: Whitelist CVE-2000-1213 CVE-2000-1214 (2019-11-19 00:24:12 +0000)
are available in the git repository at:
git://git.openembedded.org/openembedded-core-contrib stable/zeus-next
http://cgit.openembedded.org/openembedded-core-contrib/log/?h=stable/zeus-next
Adrian Bunk (1):
lz4: Whitelist CVE-2014-4715
Alexander Kanavin (4):
Revert "devtool/standard.py: Not filtering devtool workspace for
devtool finish"
python: update to 2.7.17
cairo: the component is dual licensed
selftest: check that 'devtool upgrade' correctly drops backported
patches
Anuj Mittal (1):
boost: fix build for x32
Carlos Rafael Giani (12):
gstreamer1.0: upgrade to version 1.16.1
gstreamer1.0-plugins-base: upgrade to version 1.16.1
gstreamer1.0-plugins-good: upgrade to version 1.16.1
gstreamer1.0-plugins-bad: upgrade to version 1.16.1
gstreamer1.0-plugins-ugly: upgrade to version 1.16.1
gstreamer1.0-libav: upgrade to version 1.16.1
gstreamer1.0-vaapi: upgrade to version 1.16.1
gstreamer1.0-omx: upgrade to version 1.16.1
gstreamer1.0-python: upgrade to version 1.16.1
gstreamer1.0-rtsp-server: upgrade to version 1.16.1
gst-validate: upgrade to version 1.16.1
gstreamer: Change SRC_URI to use HTTPS access instead of HTTP
Joshua Watt (1):
oeqa: reproducible: Add option to capture bad packages
Kai Kang (1):
bind: fix CVE-2019-6471 and CVE-2018-5743
Richard Purdie (5):
opkg: Add upstream fixes for empty packages
opkg-utils: Fix silent empty/broken opkg package creation
core-image-full-cmdline: Add less
sanity: Add check for tar older than 1.28
oeqa/selftest/sstatetests: Ensure we don't use hashequiv for
sstatesigs tests
Ross Burton (9):
libsoup: set CVE_PRODUCT
cve-check: we don't actually need to unpack to check
cve-update-db-native: don't refresh more than once an hour
cve-update-db-native: don't hardcode the database name
cve-update-db-native: add an index on the CVE ID column
cve-update-db-native: clean up proxy handling
cve-check: rewrite look to fix false negatives
cve-check: neaten get_cve_info
cve-check: fetch CVE data once at a time instead of in a single call
Zheng Ruoqin (1):
tiff: Refresh patch
.../devtool-upgrade-test1-1.5.3/backported.patch | 37 +
.../devtool/devtool-upgrade-test1_1.5.3.bb | 4 +-
.../devtool-upgrade-test1_1.5.3.bb.upgraded | 4 +-
meta/classes/cve-check.bbclass | 98 ++-
meta/classes/sanity.bbclass | 5 +-
meta/lib/oeqa/selftest/cases/devtool.py | 25 +-
meta/lib/oeqa/selftest/cases/reproducible.py | 20 +
meta/lib/oeqa/selftest/cases/sstatetests.py | 12 +
.../bind/bind/0001-bind-fix-CVE-2019-6471.patch | 64 ++
.../0001-fix-enforcement-of-tcp-clients-v1.patch | 60 ++
...02-tcp-clients-could-still-be-exceeded-v2.patch | 670 +++++++++++++++
...-reference-counter-for-pipeline-groups-v3.patch | 278 +++++++
...uota-accounting-and-client-mortality-chec.patch | 512 ++++++++++++
...pquota-and-pipeline-refs-allow-special-ca.patch | 911 +++++++++++++++++++++
...tore-allowance-for-tcp-clients-interfaces.patch | 80 ++
...mic-operations-in-bin-named-client.c-with.patch | 140 ++++
meta/recipes-connectivity/bind/bind_9.11.5-P4.bb | 8 +
meta/recipes-core/meta/cve-update-db-native.bb | 44 +-
.../opkg-utils/opkg-utils/pipefail.patch | 31 +
.../opkg-utils/opkg-utils_0.4.1.bb | 3 +
meta/recipes-devtools/opkg/opkg/open_inner.patch | 46 ++
meta/recipes-devtools/opkg/opkg/opkg_archive.patch | 54 ++
meta/recipes-devtools/opkg/opkg_0.4.1.bb | 2 +
...ative-fix-one-do_populate_sysroot-warning.patch | 25 +-
...on-native_2.7.16.bb => python-native_2.7.17.bb} | 2 +-
meta/recipes-devtools/python/python.inc | 10 +-
...55-Dont-parse-domains-containing-GH-13079.patch | 90 --
...43-Escape-the-server-title-of-DocXMLRPCSe.patch | 101 ---
...thon-Resolve-intermediate-staging-issues.patch} | 53 +-
.../python/python/CVE-2018-20852.patch | 123 ---
.../python/python/CVE-2019-9740.patch | 216 -----
.../python/bpo-35907-cve-2019-9948-fix.patch | 55 --
.../python/python/bpo-35907-cve-2019-9948.patch | 55 --
.../python/bpo-36216-cve-2019-9636-fix.patch | 28 -
.../python/python/bpo-36216-cve-2019-9636.patch | 111 ---
.../python/python/bpo-36742-cve-2019-10160.patch | 81 --
.../python/{python_2.7.16.bb => python_2.7.17.bb} | 3 -
.../packagegroup-core-full-cmdline.bb | 1 +
meta/recipes-graphics/cairo/cairo_1.16.0.bb | 12 +-
...t-validate_1.16.0.bb => gst-validate_1.16.1.bb} | 4 +-
.../gstreamer1.0-libav/gtkdoc-no-tree.patch | 35 -
...ibav_1.16.0.bb => gstreamer1.0-libav_1.16.1.bb} | 7 +-
....0-omx_1.16.0.bb => gstreamer1.0-omx_1.16.1.bb} | 6 +-
....16.0.bb => gstreamer1.0-plugins-bad_1.16.1.bb} | 6 +-
...16.0.bb => gstreamer1.0-plugins-base_1.16.1.bb} | 6 +-
...Advertise-interleaved-layout-in-caps-temp.patch | 37 -
.../gstreamer1.0-plugins-good/headerfix.patch | 43 -
...16.0.bb => gstreamer1.0-plugins-good_1.16.1.bb} | 8 +-
...16.0.bb => gstreamer1.0-plugins-ugly_1.16.1.bb} | 6 +-
...hon_1.16.0.bb => gstreamer1.0-python_1.16.1.bb} | 6 +-
....16.0.bb => gstreamer1.0-rtsp-server_1.16.1.bb} | 6 +-
...aapi_1.16.0.bb => gstreamer1.0-vaapi_1.16.1.bb} | 4 +-
...treamer1.0_1.16.0.bb => gstreamer1.0_1.16.1.bb} | 6 +-
.../libtiff/tiff/CVE-2019-7663.patch | 71 +-
.../0001-dont-setup-compiler-flags-m32-m64.patch | 42 +
meta/recipes-support/boost/boost_1.71.0.bb | 1 +
meta/recipes-support/libsoup/libsoup-2.4_2.66.2.bb | 2 +
meta/recipes-support/lz4/lz4_1.9.2.bb | 3 +
scripts/lib/devtool/standard.py | 2 +-
59 files changed, 3186 insertions(+), 1189 deletions(-)
create mode 100644 meta-selftest/recipes-test/devtool/devtool-upgrade-test1-1.5.3/backported.patch
create mode 100644 meta/recipes-connectivity/bind/bind/0001-bind-fix-CVE-2019-6471.patch
create mode 100644 meta/recipes-connectivity/bind/bind/0001-fix-enforcement-of-tcp-clients-v1.patch
create mode 100644 meta/recipes-connectivity/bind/bind/0002-tcp-clients-could-still-be-exceeded-v2.patch
create mode 100644 meta/recipes-connectivity/bind/bind/0003-use-reference-counter-for-pipeline-groups-v3.patch
create mode 100644 meta/recipes-connectivity/bind/bind/0004-better-tcpquota-accounting-and-client-mortality-chec.patch
create mode 100644 meta/recipes-connectivity/bind/bind/0005-refactor-tcpquota-and-pipeline-refs-allow-special-ca.patch
create mode 100644 meta/recipes-connectivity/bind/bind/0006-restore-allowance-for-tcp-clients-interfaces.patch
create mode 100644 meta/recipes-connectivity/bind/bind/0007-Replace-atomic-operations-in-bin-named-client.c-with.patch
create mode 100644 meta/recipes-devtools/opkg-utils/opkg-utils/pipefail.patch
create mode 100644 meta/recipes-devtools/opkg/opkg/open_inner.patch
create mode 100644 meta/recipes-devtools/opkg/opkg/opkg_archive.patch
rename meta/recipes-devtools/python/{python-native_2.7.16.bb => python-native_2.7.17.bb} (97%)
delete mode 100644 meta/recipes-devtools/python/python/0001-2.7-bpo-34155-Dont-parse-domains-containing-GH-13079.patch
delete mode 100644 meta/recipes-devtools/python/python/0001-2.7-bpo-38243-Escape-the-server-title-of-DocXMLRPCSe.patch
rename meta/recipes-devtools/python/python/{builddir.patch => 0001-python-Resolve-intermediate-staging-issues.patch} (58%)
delete mode 100644 meta/recipes-devtools/python/python/CVE-2018-20852.patch
delete mode 100644 meta/recipes-devtools/python/python/CVE-2019-9740.patch
delete mode 100644 meta/recipes-devtools/python/python/bpo-35907-cve-2019-9948-fix.patch
delete mode 100644 meta/recipes-devtools/python/python/bpo-35907-cve-2019-9948.patch
delete mode 100644 meta/recipes-devtools/python/python/bpo-36216-cve-2019-9636-fix.patch
delete mode 100644 meta/recipes-devtools/python/python/bpo-36216-cve-2019-9636.patch
delete mode 100644 meta/recipes-devtools/python/python/bpo-36742-cve-2019-10160.patch
rename meta/recipes-devtools/python/{python_2.7.16.bb => python_2.7.17.bb} (97%)
rename meta/recipes-multimedia/gstreamer/{gst-validate_1.16.0.bb => gst-validate_1.16.1.bb} (87%)
delete mode 100644 meta/recipes-multimedia/gstreamer/gstreamer1.0-libav/gtkdoc-no-tree.patch
rename meta/recipes-multimedia/gstreamer/{gstreamer1.0-libav_1.16.0.bb => gstreamer1.0-libav_1.16.1.bb} (91%)
rename meta/recipes-multimedia/gstreamer/{gstreamer1.0-omx_1.16.0.bb => gstreamer1.0-omx_1.16.1.bb} (89%)
rename meta/recipes-multimedia/gstreamer/{gstreamer1.0-plugins-bad_1.16.0.bb => gstreamer1.0-plugins-bad_1.16.1.bb} (96%)
rename meta/recipes-multimedia/gstreamer/{gstreamer1.0-plugins-base_1.16.0.bb => gstreamer1.0-plugins-base_1.16.1.bb} (94%)
delete mode 100644 meta/recipes-multimedia/gstreamer/gstreamer1.0-plugins-good/0001-scaletempo-Advertise-interleaved-layout-in-caps-temp.patch
delete mode 100644 meta/recipes-multimedia/gstreamer/gstreamer1.0-plugins-good/headerfix.patch
rename meta/recipes-multimedia/gstreamer/{gstreamer1.0-plugins-good_1.16.0.bb => gstreamer1.0-plugins-good_1.16.1.bb} (89%)
rename meta/recipes-multimedia/gstreamer/{gstreamer1.0-plugins-ugly_1.16.0.bb => gstreamer1.0-plugins-ugly_1.16.1.bb} (83%)
rename meta/recipes-multimedia/gstreamer/{gstreamer1.0-python_1.16.0.bb => gstreamer1.0-python_1.16.1.bb} (82%)
rename meta/recipes-multimedia/gstreamer/{gstreamer1.0-rtsp-server_1.16.0.bb => gstreamer1.0-rtsp-server_1.16.1.bb} (81%)
rename meta/recipes-multimedia/gstreamer/{gstreamer1.0-vaapi_1.16.0.bb => gstreamer1.0-vaapi_1.16.1.bb} (93%)
rename meta/recipes-multimedia/gstreamer/{gstreamer1.0_1.16.0.bb => gstreamer1.0_1.16.1.bb} (94%)
create mode 100644 meta/recipes-support/boost/boost/0001-dont-setup-compiler-flags-m32-m64.patch
--
2.7.4
next reply other threads:[~2019-11-24 23:50 UTC|newest]
Thread overview: 36+ messages / expand[flat|nested] mbox.gz Atom feed top
2019-11-24 23:50 Armin Kuster [this message]
2019-11-24 23:50 ` [zeus 01/35] lz4: Whitelist CVE-2014-4715 Armin Kuster
2019-11-24 23:50 ` [zeus 02/35] libsoup: set CVE_PRODUCT Armin Kuster
2019-11-24 23:50 ` [zeus 03/35] cve-check: we don't actually need to unpack to check Armin Kuster
2019-11-24 23:50 ` [zeus 04/35] cve-update-db-native: don't refresh more than once an hour Armin Kuster
2019-11-24 23:50 ` [zeus 05/35] cve-update-db-native: don't hardcode the database name Armin Kuster
2019-11-24 23:50 ` [zeus 06/35] cve-update-db-native: add an index on the CVE ID column Armin Kuster
2019-11-24 23:50 ` [zeus 07/35] cve-update-db-native: clean up proxy handling Armin Kuster
2019-11-24 23:50 ` [zeus 08/35] cve-check: rewrite look to fix false negatives Armin Kuster
2019-11-24 23:50 ` [zeus 09/35] cve-check: neaten get_cve_info Armin Kuster
2019-11-24 23:50 ` [zeus 10/35] cve-check: fetch CVE data once at a time instead of in a single call Armin Kuster
2019-11-24 23:50 ` [zeus 11/35] boost: fix build for x32 Armin Kuster
2019-11-24 23:50 ` [zeus 12/35] Revert "devtool/standard.py: Not filtering devtool workspace for devtool finish" Armin Kuster
2019-11-24 23:50 ` [zeus 13/35] python: update to 2.7.17 Armin Kuster
2019-11-24 23:50 ` [zeus 14/35] tiff: Refresh patch Armin Kuster
2019-11-24 23:50 ` [zeus 15/35] bind: fix CVE-2019-6471 and CVE-2018-5743 Armin Kuster
2019-11-24 23:50 ` [zeus 16/35] gstreamer1.0: upgrade to version 1.16.1 Armin Kuster
2019-11-24 23:50 ` [zeus 17/35] gstreamer1.0-plugins-base: " Armin Kuster
2019-11-24 23:50 ` [zeus 18/35] gstreamer1.0-plugins-good: " Armin Kuster
2019-11-24 23:50 ` [zeus 19/35] gstreamer1.0-plugins-bad: " Armin Kuster
2019-11-24 23:50 ` [zeus 20/35] gstreamer1.0-plugins-ugly: " Armin Kuster
2019-11-24 23:50 ` [zeus 21/35] gstreamer1.0-libav: " Armin Kuster
2019-11-24 23:50 ` [zeus 22/35] gstreamer1.0-vaapi: " Armin Kuster
2019-11-24 23:50 ` [zeus 23/35] gstreamer1.0-omx: " Armin Kuster
2019-11-24 23:50 ` [zeus 24/35] gstreamer1.0-python: " Armin Kuster
2019-11-24 23:50 ` [zeus 25/35] gstreamer1.0-rtsp-server: " Armin Kuster
2019-11-24 23:50 ` [zeus 26/35] gst-validate: " Armin Kuster
2019-11-24 23:50 ` [zeus 27/35] gstreamer: Change SRC_URI to use HTTPS access instead of HTTP Armin Kuster
2019-11-24 23:50 ` [zeus 28/35] opkg: Add upstream fixes for empty packages Armin Kuster
2019-11-24 23:50 ` [zeus 29/35] opkg-utils: Fix silent empty/broken opkg package creation Armin Kuster
2019-11-24 23:50 ` [zeus 30/35] core-image-full-cmdline: Add less Armin Kuster
2019-11-24 23:50 ` [zeus 31/35] sanity: Add check for tar older than 1.28 Armin Kuster
2019-11-24 23:50 ` [zeus 32/35] oeqa/selftest/sstatetests: Ensure we don't use hashequiv for sstatesigs tests Armin Kuster
2019-11-24 23:50 ` [zeus 33/35] cairo: the component is dual licensed Armin Kuster
2019-11-24 23:50 ` [zeus 34/35] selftest: check that 'devtool upgrade' correctly drops backported patches Armin Kuster
2019-11-24 23:50 ` [zeus 35/35] oeqa: reproducible: Add option to capture bad packages Armin Kuster
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=cover.1574639349.git.akuster808@gmail.com \
--to=akuster808@gmail.com \
--cc=openembedded-core@lists.openembedded.org \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox