* [OE-core][dunfell 00/23] Pull request (cover letter only)
@ 2020-07-22 0:52 Steve Sakoman
0 siblings, 0 replies; 3+ messages in thread
From: Steve Sakoman @ 2020-07-22 0:52 UTC (permalink / raw)
To: openembedded-core
Final set of changes for dunfell 3.1.2 release.
The following changes since commit c2ad3af9da9bb3a98c1d5d1b3d21eb8db643c189:
coreutils: don't split stdbuf to own package with single-binary (2020-07-13 17:14:28 -1000)
are available in the Git repository at:
git://git.openembedded.org/openembedded-core-contrib stable/dunfell-next
http://cgit.openembedded.org/openembedded-core-contrib/log/?h=stable/dunfell-next
Alexander Kanavin (1):
babeltrace: correct the git SRC_URI
Charlie Davies (1):
u-boot: fix condition to allow use of *.cfg
Christian Eggers (1):
avahi: Fix typo in recipe
Douglas (2):
nativesdk: clear MACHINE_FEATURES
nativesdk: Set the CXXFLAGS to the BUILDSDK_CXXFLAGS
Jens Rehsack (2):
subversion: extend for nativesdk
serf: extend for nativesdk
Khem Raj (2):
go: Disbale CGO for riscv64
go-dep: Fix build on riscv64
Konrad Weihmann (1):
ptest: append to FILES
Lee Chee Yang (2):
bison: fix Argument list too long error
systemd : fix CVE-2020-13776
Rahul Chauhan (1):
busybox: Security Fix For CVE-2018-1000500
Richard Purdie (4):
oeqa/selftest/sstatetests: Avoid polluting DL_DIR
qemurunner: Ensure pid location is deterministic
qemurunner: Add extra debug info when qemu fails to start
oeqa/utils/qemurunner: Fix missing pid file tracebacks
Ross Burton (1):
insane: consolidate skipping of temporary do_package files
Tim Orling (2):
lib/oe/recipeutils.py: add AUTHOR; BBCLASSEXTEND
scripts/lib/recipetool/create.py: fix regex strings
Yongxin Liu (2):
linux-firmware: fix the wrong file path for ibt-misc
linux-firmware: move ibt-misc to the end of ibt packages
akuster (1):
glibc: whitelist CVE-2010-10029
meta/classes/insane.bbclass | 13 +-
meta/classes/nativesdk.bbclass | 3 +-
meta/classes/ptest.bbclass | 2 +-
meta/lib/oe/recipeutils.py | 2 +-
meta/lib/oeqa/selftest/cases/sstatetests.py | 5 +-
meta/lib/oeqa/utils/qemurunner.py | 15 +-
meta/recipes-bsp/u-boot/u-boot.inc | 2 +-
meta/recipes-connectivity/avahi/avahi_0.7.bb | 2 +-
.../busybox/busybox-CVE-2018-1000500.patch | 98 +
meta/recipes-core/busybox/busybox_1.31.1.bb | 1 +
meta/recipes-core/glibc/glibc_2.31.bb | 2 +
.../systemd/systemd/CVE-2020-13776.patch | 96 +
meta/recipes-core/systemd/systemd_244.3.bb | 1 +
meta/recipes-devtools/bison/bison_3.5.3.bb | 2 +-
.../0001-Update-sys-module-to-latest.patch | 145574 +++++++++++++++
meta/recipes-devtools/go/go-dep_0.5.4.bb | 1 +
meta/recipes-devtools/go/go-runtime_1.14.bb | 1 +
meta/recipes-devtools/go/go_1.14.bb | 2 +-
.../subversion/subversion_1.13.0.bb | 2 +-
.../linux-firmware/linux-firmware_20200619.bb | 5 +-
.../recipes-kernel/lttng/babeltrace2_2.0.2.bb | 2 +-
meta/recipes-kernel/lttng/babeltrace_1.5.8.bb | 2 +-
meta/recipes-support/serf/serf_1.3.9.bb | 2 +-
scripts/lib/recipetool/create.py | 10 +-
24 files changed, 145819 insertions(+), 26 deletions(-)
create mode 100644 meta/recipes-core/busybox/busybox/busybox-CVE-2018-1000500.patch
create mode 100644 meta/recipes-core/systemd/systemd/CVE-2020-13776.patch
create mode 100644 meta/recipes-devtools/go/go-dep/0001-Update-sys-module-to-latest.patch
--
2.17.1
^ permalink raw reply [flat|nested] 3+ messages in thread
* [OE-core][dunfell 00/23] Pull request (cover letter only)
@ 2020-09-17 3:28 Steve Sakoman
0 siblings, 0 replies; 3+ messages in thread
From: Steve Sakoman @ 2020-09-17 3:28 UTC (permalink / raw)
To: openembedded-core
The following changes since commit 210ebed1e9c2285d6e457bf03d1f1a1f3ddc7fda:
package: get_package_mapping: avoid dependency mapping if renamed package provides original name (2020-09-04 04:31:45 -1000)
are available in the Git repository at:
git://git.openembedded.org/openembedded-core-contrib stable/dunfell-next
http://cgit.openembedded.org/openembedded-core-contrib/log/?h=stable/dunfell-next
Adrian Freihofer (1):
oe-publish-sdk: fix layers init via ssh
Chris Laplante (4):
cve-update-db-native: add progress handler
cve-check/cve-update-db-native: use lockfile to fix usage under
multiconfig
cve-update-db-native: use context manager for cve_f
cve-check: avoid FileNotFoundError if no do_cve_check task has run
Khem Raj (2):
uninative: Upgrade to 2.9
rpcbind: Use update-alternatives for rpcinfo
Lee Chee Yang (3):
xserver-xorg: fix CVE-2020-14347
qemu: fix CVE-2020-14364 CVE-2020-14415
libx11 : fix CVE-2020-14344
Matt Madison (1):
image.bbclass: fix REPRODUCIBLE_TIMESTAMP_ROOTFS reference
Oleksandr Kravchuk (1):
ell: update to 0.33
Ovidiu Panait (1):
libxml2: Fix CVE-2020-24977
Richard Purdie (3):
runqemu: Add a hook to allow it to renice
selftest/signing: Ensure build path relocation is safe
oeqa/concurrencytest: Improve builddir path manipulations
Ross Burton (5):
gdk-pixbuf: add tests PACKAGECONFIG
insane: only load real files as ELF
autoconf: consolidate DEPENDS
curl: add vendors to CVE_PRODUCT to exclude false positives
cmake: whitelist CVE-2016-10642
Zhixiong Chi (1):
gnutls: CVE-2020-24659
akuster (1):
cve-check.bbclass: always save cve report
meta/classes/cve-check.bbclass | 34 ++
meta/classes/image.bbclass | 2 +-
meta/classes/insane.bbclass | 13 +-
meta/conf/distro/include/yocto-uninative.inc | 10 +-
meta/lib/oeqa/selftest/cases/signing.py | 4 +-
meta/lib/oeqa/selftest/context.py | 4 +-
.../ell/{ell_0.32.bb => ell_0.33.bb} | 2 +-
.../libxml/libxml2/CVE-2020-24977.patch | 41 +++
meta/recipes-core/libxml/libxml2_2.9.10.bb | 1 +
.../recipes-core/meta/cve-update-db-native.bb | 96 +++---
meta/recipes-devtools/autoconf/autoconf.inc | 5 +-
meta/recipes-devtools/cmake/cmake.inc | 4 +
meta/recipes-devtools/qemu/qemu.inc | 2 +
.../qemu/qemu/CVE-2020-14364.patch | 93 +++++
.../qemu/qemu/CVE-2020-14415.patch | 37 ++
.../recipes-extended/rpcbind/rpcbind_1.2.5.bb | 5 +-
.../gdk-pixbuf/gdk-pixbuf_2.40.0.bb | 8 +-
.../xorg-lib/libx11/CVE-2020-14344.patch | 321 ++++++++++++++++++
.../recipes-graphics/xorg-lib/libx11_1.6.9.bb | 4 +-
.../xserver-xorg/CVE-2020-14347.patch | 38 +++
.../xorg-xserver/xserver-xorg_1.20.8.bb | 1 +
meta/recipes-support/curl/curl_7.69.1.bb | 4 +-
.../gnutls/gnutls/CVE-2020-24659.patch | 117 +++++++
meta/recipes-support/gnutls/gnutls_3.6.14.bb | 1 +
scripts/oe-publish-sdk | 2 +-
scripts/runqemu | 5 +
26 files changed, 781 insertions(+), 73 deletions(-)
rename meta/recipes-core/ell/{ell_0.32.bb => ell_0.33.bb} (89%)
create mode 100644 meta/recipes-core/libxml/libxml2/CVE-2020-24977.patch
create mode 100644 meta/recipes-devtools/qemu/qemu/CVE-2020-14364.patch
create mode 100644 meta/recipes-devtools/qemu/qemu/CVE-2020-14415.patch
create mode 100644 meta/recipes-graphics/xorg-lib/libx11/CVE-2020-14344.patch
create mode 100644 meta/recipes-graphics/xorg-xserver/xserver-xorg/CVE-2020-14347.patch
create mode 100644 meta/recipes-support/gnutls/gnutls/CVE-2020-24659.patch
--
2.17.1
^ permalink raw reply [flat|nested] 3+ messages in thread
* [OE-core][dunfell 00/23] Pull request (cover letter only)
@ 2023-03-10 2:48 Steve Sakoman
0 siblings, 0 replies; 3+ messages in thread
From: Steve Sakoman @ 2023-03-10 2:48 UTC (permalink / raw)
To: openembedded-core
The following changes since commit a3f31997c633e8476bad68c81fac0dcd0750c7d4:
busybox: rm temporary files if do_compile was interrupted (2023-02-20 05:51:44 -1000)
are available in the Git repository at:
https://git.openembedded.org/openembedded-core-contrib stable/dunfell-next
http://cgit.openembedded.org/openembedded-core-contrib/log/?h=stable/dunfell-next
Alexander Kanavin (6):
vim: update 9.0.1211 -> 9.0.1293 to resolve open CVEs
linux-firmware: upgrade 20221214 -> 20230117
linux-firmware: upgrade 20230117 -> 20230210
wireless-regdb: upgrade 2022.08.12 -> 2023.02.13
apr: update 1.7.0 -> 1.7.2
apr-util: update 1.6.1 -> 1.6.3
Chee Yang Lee (1):
tiff: fix multiple CVEs
Dmitry Baryshkov (2):
linux-firmware: properly set license for all Qualcomm firmware
linux-firmware: add yamato fw files to qcom-adreno-a2xx package
Hitendra Prajapati (1):
curl: fix CVE-2022-43552 Use-after-free triggered by an HTTP proxy
deny response
Hugo SIMELIERE (2):
bluez5: Exclude CVE-2022-39177 from cve-check
openssl: upgrade 1.1.1s to 1.1.1t
Khem Raj (2):
apr: Use correct strerror_r implementation based on libc type
apr: Cache configure tests which use AC_TRY_RUN
Mauro Queiros (1):
image.bbclass: print all QA functions exceptions
Peter Kjellerstedt (1):
devshell: Do not add scripts/git-intercept to PATH
Richard Purdie (2):
apr: Fix to work with autoconf 2.70
apr-util: Fix CFLAGS used in build
Rodolfo Quesada Zumbado (1):
tar: CVE-2022-48303
Shubham Kulkarni (1):
glibc: Security fix for CVE-2023-0687
Ulrich Ölmann (1):
kernel-yocto: fix kernel-meta data detection
Vijay Anusuri (1):
git: Security fix for CVE-2022-41903
Virendra Thakur (1):
gcc: Fix inconsistent noexcept specifier for valarray in libstdc++
meta/classes/devshell.bbclass | 2 -
meta/classes/image.bbclass | 2 +-
meta/classes/kernel-yocto.bbclass | 2 +-
meta/lib/oeqa/selftest/cases/reproducible.py | 1 -
.../bluez5/bluez5_5.55.bb | 7 +
.../{openssl_1.1.1s.bb => openssl_1.1.1t.bb} | 2 +-
.../glibc/glibc/CVE-2023-0687.patch | 82 +++
meta/recipes-core/glibc/glibc_2.31.bb | 1 +
meta/recipes-devtools/gcc/gcc-9.5.inc | 1 +
...nsistent-noexcept-specific-for-valar.patch | 44 ++
.../git/files/CVE-2022-41903-01.patch | 39 ++
.../git/files/CVE-2022-41903-02.patch | 187 +++++
.../git/files/CVE-2022-41903-03.patch | 146 ++++
.../git/files/CVE-2022-41903-04.patch | 150 ++++
.../git/files/CVE-2022-41903-05.patch | 98 +++
.../git/files/CVE-2022-41903-06.patch | 90 +++
.../git/files/CVE-2022-41903-07.patch | 123 ++++
.../git/files/CVE-2022-41903-08.patch | 67 ++
.../git/files/CVE-2022-41903-09.patch | 162 +++++
.../git/files/CVE-2022-41903-10.patch | 99 +++
.../git/files/CVE-2022-41903-11.patch | 90 +++
.../git/files/CVE-2022-41903-12.patch | 124 ++++
meta/recipes-devtools/git/git.inc | 12 +
.../tar/tar/CVE-2022-48303.patch | 43 ++
meta/recipes-extended/tar/tar_1.32.bb | 1 +
...20221214.bb => linux-firmware_20230210.bb} | 42 +-
....08.12.bb => wireless-regdb_2023.02.13.bb} | 2 +-
.../libtiff/files/CVE-2022-3570_3598.patch | 659 ++++++++++++++++++
.../files/CVE-2022-3597_3626_3627.patch | 123 ++++
.../libtiff/files/CVE-2022-3599.patch | 277 ++++++++
.../libtiff/files/CVE-2022-3970.patch | 45 ++
.../libtiff/files/CVE-2022-48281.patch | 26 +
.../CVE-2023-0795_0796_0797_0798_0799.patch | 157 +++++
.../CVE-2023-0800_0801_0802_0803_0804.patch | 135 ++++
meta/recipes-multimedia/libtiff/tiff_4.1.0.bb | 7 +
.../0001-Fix-error-handling-in-gdbm.patch | 135 ----
.../{apr-util_1.6.1.bb => apr-util_1.6.3.bb} | 8 +-
...ion-to-disable-timed-dependant-tests.patch | 20 +-
...-runtime-test-for-mmap-that-can-map-.patch | 58 ++
...ir-path-references-from-installed-ap.patch | 25 +-
...configure.in-support-cross-compiling.patch | 63 --
...ze-doesn-t-match-in-glibc-when-cross.patch | 76 --
.../apr/apr/CVE-2021-35940.patch | 58 --
.../apr/apr/libtoolize_check.patch | 21 +-
.../apr/{apr_1.7.0.bb => apr_1.7.2.bb} | 24 +-
.../curl/curl/CVE-2022-43552.patch | 82 +++
meta/recipes-support/curl/curl_7.69.1.bb | 1 +
meta/recipes-support/vim/vim.inc | 4 +-
48 files changed, 3238 insertions(+), 385 deletions(-)
rename meta/recipes-connectivity/openssl/{openssl_1.1.1s.bb => openssl_1.1.1t.bb} (98%)
create mode 100644 meta/recipes-core/glibc/glibc/CVE-2023-0687.patch
create mode 100644 meta/recipes-devtools/gcc/gcc-9.5/0002-libstdc-Fix-inconsistent-noexcept-specific-for-valar.patch
create mode 100644 meta/recipes-devtools/git/files/CVE-2022-41903-01.patch
create mode 100644 meta/recipes-devtools/git/files/CVE-2022-41903-02.patch
create mode 100644 meta/recipes-devtools/git/files/CVE-2022-41903-03.patch
create mode 100644 meta/recipes-devtools/git/files/CVE-2022-41903-04.patch
create mode 100644 meta/recipes-devtools/git/files/CVE-2022-41903-05.patch
create mode 100644 meta/recipes-devtools/git/files/CVE-2022-41903-06.patch
create mode 100644 meta/recipes-devtools/git/files/CVE-2022-41903-07.patch
create mode 100644 meta/recipes-devtools/git/files/CVE-2022-41903-08.patch
create mode 100644 meta/recipes-devtools/git/files/CVE-2022-41903-09.patch
create mode 100644 meta/recipes-devtools/git/files/CVE-2022-41903-10.patch
create mode 100644 meta/recipes-devtools/git/files/CVE-2022-41903-11.patch
create mode 100644 meta/recipes-devtools/git/files/CVE-2022-41903-12.patch
create mode 100644 meta/recipes-extended/tar/tar/CVE-2022-48303.patch
rename meta/recipes-kernel/linux-firmware/{linux-firmware_20221214.bb => linux-firmware_20230210.bb} (96%)
rename meta/recipes-kernel/wireless-regdb/{wireless-regdb_2022.08.12.bb => wireless-regdb_2023.02.13.bb} (94%)
create mode 100644 meta/recipes-multimedia/libtiff/files/CVE-2022-3570_3598.patch
create mode 100644 meta/recipes-multimedia/libtiff/files/CVE-2022-3597_3626_3627.patch
create mode 100644 meta/recipes-multimedia/libtiff/files/CVE-2022-3599.patch
create mode 100644 meta/recipes-multimedia/libtiff/files/CVE-2022-3970.patch
create mode 100644 meta/recipes-multimedia/libtiff/files/CVE-2022-48281.patch
create mode 100644 meta/recipes-multimedia/libtiff/files/CVE-2023-0795_0796_0797_0798_0799.patch
create mode 100644 meta/recipes-multimedia/libtiff/files/CVE-2023-0800_0801_0802_0803_0804.patch
delete mode 100644 meta/recipes-support/apr/apr-util/0001-Fix-error-handling-in-gdbm.patch
rename meta/recipes-support/apr/{apr-util_1.6.1.bb => apr-util_1.6.3.bb} (92%)
create mode 100644 meta/recipes-support/apr/apr/0001-configure-Remove-runtime-test-for-mmap-that-can-map-.patch
delete mode 100644 meta/recipes-support/apr/apr/0003-Makefile.in-configure.in-support-cross-compiling.patch
delete mode 100644 meta/recipes-support/apr/apr/0006-apr-fix-off_t-size-doesn-t-match-in-glibc-when-cross.patch
delete mode 100644 meta/recipes-support/apr/apr/CVE-2021-35940.patch
rename meta/recipes-support/apr/{apr_1.7.0.bb => apr_1.7.2.bb} (80%)
create mode 100644 meta/recipes-support/curl/curl/CVE-2022-43552.patch
--
2.34.1
^ permalink raw reply [flat|nested] 3+ messages in thread
end of thread, other threads:[~2023-03-10 2:49 UTC | newest]
Thread overview: 3+ messages (download: mbox.gz follow: Atom feed
-- links below jump to the message on this page --
2020-07-22 0:52 [OE-core][dunfell 00/23] Pull request (cover letter only) Steve Sakoman
-- strict thread matches above, loose matches on Subject: below --
2020-09-17 3:28 Steve Sakoman
2023-03-10 2:48 Steve Sakoman
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox