* [OE-core][dunfell 00/32] Pull request (cover letter only)
@ 2020-06-25 0:57 Steve Sakoman
0 siblings, 0 replies; 2+ messages in thread
From: Steve Sakoman @ 2020-06-25 0:57 UTC (permalink / raw)
To: openembedded-core
The following changes since commit 6372f78c2456a9b57ef5f8ff9b975426bd1a46be:
u-boot-tools: backport patch from upstream to fix gcc 10 builds (2020-06-18 04:34:55 -1000)
are available in the Git repository at:
git://git.openembedded.org/openembedded-core-contrib stable/dunfell-next
http://cgit.openembedded.org/openembedded-core-contrib/log/?h=stable/dunfell-next
Alex Kiernan (1):
recipetool: Fix list concatenation when using edit
Alexander Kanavin (3):
patchelf: switch to git
powertop: switch to Arjan's git
apr-util: make gdbm optional
Andreas M?ller (1):
meson.bbclass: avoid unexpected operating-system names
Chen Qi (1):
vim: restore the 'chmod -x' workaround in do_install
Dan McGregor (1):
buildhistory-collect-srcrevs: sort directories
Joshua Watt (1):
classes/archiver: Create patched archive before configuring
Kai Kang (3):
mdadm: remove service template from SYSTEMD_SERVICE
wpa-supplicant: remove service templates from SYSTEMD_SERVICE
encodings: clear postinst script
Lee Chee Yang (1):
qemu: fix CVE-2020-13361
Martin Jansa (1):
net-tools: backport a patch from upstream to use the same ifconfig
format as debian/ubuntu
Otavio Salvador (6):
systemd: Sync systemd-serialgetty@.service with upstream
mtd-utils: Fix return value of ubiformat
go-mod.bbclass: Add class for `go mod` support
glide: Avoid use of 'go mod' support
go-dep: Avoid use of 'go mod' support
go.bbclass: Add `-trimpath` to default build flags
Peter Kjellerstedt (1):
relocatable.bbclass: Avoid an exception if an empty pkgconfig dir
exist
Richard Purdie (2):
ltp: Add missing dependencies on coreutils, bc, e2fsprogs and gdb
perl: Fix host specific modules problems
Ross Burton (4):
install-buildtools: fail if an error occurs
install-buildtools: remove hardcoded x86-64 architecture
common-licenses: add BSD-2-Clause-Patent
gstreamer1.0-plugins-bad: add support for vdpau
Steve Sakoman (1):
buildtools-tarball: export OPENSSL_CONF in environment setup
Tuomas Salokanto (1):
recipetool: create: fix SRCBRANCH not being passed to params
Yongxin Liu (1):
linux-firmware: add ice for Intel E800 series driver
akuster (1):
bind: update to 9.11.19
haiqing (1):
libpam: Remove option 'obscure' from common-password
wenlin.kang@windriver.com (1):
populate_sdk_base.bbclass: fix warning: name not matched
meta/classes/archiver.bbclass | 2 +-
meta/classes/go-mod.bbclass | 20 +
meta/classes/go.bbclass | 2 +-
meta/classes/meson.bbclass | 3 +
meta/classes/populate_sdk_base.bbclass | 2 +-
meta/classes/relocatable.bbclass | 20 +-
.../common-licenses/BSD-2-Clause-Patent.txt | 47 +++
.../bind/bind/CVE-2020-8616.patch | 206 ----------
.../bind/bind/CVE-2020-8617.patch | 29 --
.../bind/{bind_9.11.13.bb => bind_9.11.19.bb} | 7 +-
.../wpa-supplicant/wpa-supplicant_2.9.bb | 6 +-
meta/recipes-core/meta/buildtools-tarball.bb | 1 +
.../systemd-serialgetty/serial-getty@.service | 14 +-
meta/recipes-devtools/glide/glide_0.13.3.bb | 4 +
meta/recipes-devtools/go/go-dep_0.5.4.bb | 4 +
...-utils-Fix-return-value-of-ubiformat.patch | 62 +++
meta/recipes-devtools/mtd/mtd-utils_git.bb | 1 +
.../patchelf/patchelf_0.10.bb | 7 +-
meta/recipes-devtools/perl/perl_5.30.1.bb | 2 +-
meta/recipes-devtools/qemu/qemu.inc | 1 +
.../qemu/qemu/CVE-2020-13361.patch | 61 +++
meta/recipes-extended/ltp/ltp_20200120.bb | 4 +
meta/recipes-extended/mdadm/mdadm_4.1.bb | 6 +-
...-to-unsigned-long-long-constants-to-.patch | 381 ++++++++++++++++++
.../net-tools/net-tools_1.60-26.bb | 1 +
.../pam/libpam/pam.d/common-password | 5 +-
.../xorg-font/encodings_1.0.5.bb | 4 +
.../linux-firmware/linux-firmware_20200519.bb | 9 +
meta/recipes-kernel/powertop/powertop_2.10.bb | 13 +-
.../gstreamer1.0-plugins-bad_1.16.2.bb | 4 +-
meta/recipes-support/apr/apr-util_1.6.1.bb | 6 +-
meta/recipes-support/vim/vim.inc | 6 +
scripts/buildhistory-collect-srcrevs | 1 +
scripts/install-buildtools | 20 +-
scripts/lib/recipetool/create.py | 1 +
scripts/lib/recipetool/edit.py | 2 +-
36 files changed, 672 insertions(+), 292 deletions(-)
create mode 100644 meta/classes/go-mod.bbclass
create mode 100644 meta/files/common-licenses/BSD-2-Clause-Patent.txt
delete mode 100644 meta/recipes-connectivity/bind/bind/CVE-2020-8616.patch
delete mode 100644 meta/recipes-connectivity/bind/bind/CVE-2020-8617.patch
rename meta/recipes-connectivity/bind/{bind_9.11.13.bb => bind_9.11.19.bb} (94%)
create mode 100644 meta/recipes-devtools/mtd/mtd-utils/0001-mtd-utils-Fix-return-value-of-ubiformat.patch
create mode 100644 meta/recipes-devtools/qemu/qemu/CVE-2020-13361.patch
create mode 100644 meta/recipes-extended/net-tools/net-tools/0001-added-ull-prefix-to-unsigned-long-long-constants-to-.patch
--
2.17.1
^ permalink raw reply [flat|nested] 2+ messages in thread* [OE-core][dunfell 00/32] Pull request (cover letter only)
@ 2020-11-11 0:32 Steve Sakoman
0 siblings, 0 replies; 2+ messages in thread
From: Steve Sakoman @ 2020-11-11 0:32 UTC (permalink / raw)
To: openembedded-core
The following changes since commit 5f644082fc3c2bbd89b898d5ca7cd4414cda4a64:
nasm: update 2.14.02 -> 2.15.03 for CVE fixes (2020-11-02 04:05:13 -1000)
are available in the Git repository at:
git://git.openembedded.org/openembedded-core-contrib stable/dunfell-next
http://cgit.openembedded.org/openembedded-core-contrib/log/?h=stable/dunfell-next
Alexander Kanavin (1):
linux-firmware: upgrade 20200817 -> 20201022
Andrey Zhizhikin (1):
insane: add GitLab /archive/ tests
Changqing Li (1):
timezone: upgrade to 2020d
Chee Yang Lee (2):
bluez5: update to 5.55 to fix CVE-2020-27153
ruby: fix CVE-2020-25613
Joshua Watt (1):
jquery: Upgrade 3.4.1 -> 3.5.0 to fix CVE-2020-11022 and
CVE-2020-11023
Khem Raj (1):
qemuboot.bbclass: Fix a typo
Mark Jonas (4):
Add license text for PSF-2.0
Map license names PSF and PSFv2 to PSF-2.0
libsdl2: Fix directfb syntax error
libsdl2: Fix directfb SDL_RenderFillRect
Martin Jansa (3):
lib/oe/patch: prevent applying patches without any subject
lib/oe/patch: GitApplyTree: save 1 echo in commit-msg hook
Revert "lib/oe/patch: fix handling of patches with no header"
Max Krummenacher (2):
linux-firmware: package marvel sdio 8997 firmware
linux-firmware: package nvidia firmware
Maxime Roussin-Bélanger (1):
meta: fix some unresponsive homepages and bugtracker links
Mingli Yu (1):
update_udev_hwdb: clean hwdb.bin
Neil Armstrong (1):
linux-firmware: add Amlogic VDEC firmware package
Richard Leitner (1):
xcb-proto: backport fix for python gcd function
Richard Purdie (1):
sstatesig: Log timestamps for hashequiv in reprodubile builds for
do_package
Steve Sakoman (7):
sqlite3: fix CVE-2020-13434
sqlite3: fix CVE-2020-13435
sqlite3: fix CVE-2020-13630
sqlite3: fix CVE-2020-13631
sqlite3: fix CVE-2020-13632
netbase: update SRC_URI to reflect new file name
netbase: bump PE to purge bogus hash equivalence from autobuilder
Yann E. MORIN (2):
common-licenses: add bzip2-1.0.4
recipes-core/busybox: fixup licensing information
Yongxin Liu (2):
grub: fix several CVEs in grub 2.04
grub: clean up CVE patches
meta/classes/insane.bbclass | 4 +-
meta/classes/qemuboot.bbclass | 2 +-
meta/conf/licenses.conf | 6 +-
meta/files/common-licenses/PSF-2.0 | 49 +
meta/files/common-licenses/bzip2-1.0.4 | 43 +
meta/lib/oe/patch.py | 13 +-
meta/lib/oe/sstatesig.py | 6 +
...308-calloc-Use-calloc-at-most-places.patch | 1863 +++++++++++++++++
...low-checking-primitives-where-we-do-.patch | 1330 ++++++++++++
...se-after-free-when-redefining-a-func.patch | 117 ++
...er-overflows-in-initrd-size-handling.patch | 177 ++
...-we-always-have-an-overflow-checking.patch | 246 +++
...dd-LVM-cache-logical-volume-handling.patch | 287 +++
...e-arithmetic-primitives-that-check-f.patch | 94 +
...used-fields-from-grub_script_functio.patch | 37 +
meta/recipes-bsp/grub/grub2.inc | 8 +
meta/recipes-bsp/v86d/v86d_0.1.10.bb | 2 +-
.../recipes-connectivity/bind/bind_9.11.22.bb | 2 +-
.../bluez5/{bluez5_5.54.bb => bluez5_5.55.bb} | 4 +-
meta/recipes-connectivity/iw/iw_5.4.bb | 2 +-
meta/recipes-core/busybox/busybox.inc | 7 +-
meta/recipes-core/netbase/netbase_6.1.bb | 9 +-
meta/recipes-core/readline/readline.inc | 2 +-
meta/recipes-core/util-linux/util-linux.inc | 4 +-
meta/recipes-devtools/chrpath/chrpath_0.16.bb | 3 +-
.../{jquery_3.4.1.bb => jquery_3.5.0.bb} | 8 +-
meta/recipes-devtools/ninja/ninja_1.10.0.bb | 2 +-
.../ruby/ruby/CVE-2020-25613.patch | 40 +
meta/recipes-devtools/ruby/ruby_2.7.1.bb | 1 +
meta/recipes-extended/lsb/lsb-release_1.4.bb | 2 +-
.../recipes-extended/minicom/minicom_2.7.1.bb | 2 +-
meta/recipes-extended/pbzip2/pbzip2_1.1.13.bb | 2 +-
meta/recipes-extended/timezone/timezone.inc | 6 +-
meta/recipes-extended/which/which_2.21.bb | 2 +-
meta/recipes-gnome/gnome/gconf_3.2.6.bb | 2 +-
meta/recipes-gnome/gtk-doc/gtk-doc_1.32.bb | 3 +-
.../libsdl2/directfb-renderfillrect-fix.patch | 33 +
...ectfb-spurious-curly-brace-missing-e.patch | 49 +
.../libsdl2/libsdl2_2.0.12.bb | 2 +
...1-xcbgen-use-math-gcd-for-python-3-5.patch | 40 +
.../xorg-proto/xcb-proto_1.13.bb | 3 +-
meta/recipes-kernel/kmod/kmod.inc | 2 +-
...20200817.bb => linux-firmware_20201022.bb} | 51 +-
.../wireless-regdb_2020.04.29.bb | 2 +-
.../libvorbis/libvorbis_1.3.6.bb | 4 +-
.../settings-daemon/settings-daemon_0.0.2.bb | 2 +-
meta/recipes-support/atk/atk_2.34.1.bb | 5 +-
.../bash-completion/bash-completion_2.10.bb | 4 +-
meta/recipes-support/npth/npth_1.6.bb | 4 +-
.../sqlite/files/CVE-2020-13434.patch | 48 +
.../sqlite/files/CVE-2020-13435.patch | 219 ++
.../sqlite/files/CVE-2020-13630.patch | 32 +
.../sqlite/files/CVE-2020-13631.patch | 99 +
.../sqlite/files/CVE-2020-13632.patch | 34 +
meta/recipes-support/sqlite/sqlite3_3.31.1.bb | 5 +
scripts/postinst-intercepts/update_udev_hwdb | 1 +
56 files changed, 4963 insertions(+), 63 deletions(-)
create mode 100644 meta/files/common-licenses/PSF-2.0
create mode 100644 meta/files/common-licenses/bzip2-1.0.4
create mode 100644 meta/recipes-bsp/grub/files/CVE-2020-14308-calloc-Use-calloc-at-most-places.patch
create mode 100644 meta/recipes-bsp/grub/files/CVE-2020-14309-CVE-2020-14310-CVE-2020-14311-malloc-Use-overflow-checking-primitives-where-we-do-.patch
create mode 100644 meta/recipes-bsp/grub/files/CVE-2020-15706-script-Avoid-a-use-after-free-when-redefining-a-func.patch
create mode 100644 meta/recipes-bsp/grub/files/CVE-2020-15707-linux-Fix-integer-overflows-in-initrd-size-handling.patch
create mode 100644 meta/recipes-bsp/grub/files/calloc-Make-sure-we-always-have-an-overflow-checking.patch
create mode 100644 meta/recipes-bsp/grub/files/lvm-Add-LVM-cache-logical-volume-handling.patch
create mode 100644 meta/recipes-bsp/grub/files/safemath-Add-some-arithmetic-primitives-that-check-f.patch
create mode 100644 meta/recipes-bsp/grub/files/script-Remove-unused-fields-from-grub_script_functio.patch
rename meta/recipes-connectivity/bluez5/{bluez5_5.54.bb => bluez5_5.55.bb} (91%)
rename meta/recipes-devtools/jquery/{jquery_3.4.1.bb => jquery_3.5.0.bb} (73%)
create mode 100644 meta/recipes-devtools/ruby/ruby/CVE-2020-25613.patch
create mode 100644 meta/recipes-graphics/libsdl2/libsdl2/directfb-renderfillrect-fix.patch
create mode 100644 meta/recipes-graphics/libsdl2/libsdl2/directfb-spurious-curly-brace-missing-e.patch
create mode 100644 meta/recipes-graphics/xorg-proto/xcb-proto/0001-xcbgen-use-math-gcd-for-python-3-5.patch
rename meta/recipes-kernel/linux-firmware/{linux-firmware_20200817.bb => linux-firmware_20201022.bb} (95%)
create mode 100644 meta/recipes-support/sqlite/files/CVE-2020-13434.patch
create mode 100644 meta/recipes-support/sqlite/files/CVE-2020-13435.patch
create mode 100644 meta/recipes-support/sqlite/files/CVE-2020-13630.patch
create mode 100644 meta/recipes-support/sqlite/files/CVE-2020-13631.patch
create mode 100644 meta/recipes-support/sqlite/files/CVE-2020-13632.patch
--
2.17.1
^ permalink raw reply [flat|nested] 2+ messages in thread
end of thread, other threads:[~2020-11-11 0:32 UTC | newest]
Thread overview: 2+ messages (download: mbox.gz follow: Atom feed
-- links below jump to the message on this page --
2020-06-25 0:57 [OE-core][dunfell 00/32] Pull request (cover letter only) Steve Sakoman
-- strict thread matches above, loose matches on Subject: below --
2020-11-11 0:32 Steve Sakoman
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox