From mboxrd@z Thu Jan 1 00:00:00 1970 Received: from mga14.intel.com (mga14.intel.com [192.55.52.115]) by mx.groups.io with SMTP id smtpd.web11.1788.1596415821171804822 for ; Sun, 02 Aug 2020 17:50:21 -0700 Authentication-Results: mx.groups.io; dkim=missing; spf=pass (domain: intel.com, ip: 192.55.52.115, mailfrom: anuj.mittal@intel.com) IronPort-SDR: uE09a+f52TROm1truw1P4Dof2AfN5kufKhxO/yW5yvLfae6I8+7oJf8l9OHywrq5IIJbE5AuAq utbzIWggf1CA== X-IronPort-AV: E=McAfee;i="6000,8403,9701"; a="151234140" X-IronPort-AV: E=Sophos;i="5.75,428,1589266800"; d="scan'208";a="151234140" X-Amp-Result: SKIPPED(no attachment in message) X-Amp-File-Uploaded: False Received: from orsmga004.jf.intel.com ([10.7.209.38]) by fmsmga103.fm.intel.com with ESMTP/TLS/ECDHE-RSA-AES256-GCM-SHA384; 02 Aug 2020 17:50:20 -0700 IronPort-SDR: j5OGge7irp6D0vAjYIER6pVDVwqpHZKU9kPoyDlHkBAJ08EkBQjLSW67K54BJt5bH/jws2gk8p asE1dEC01Heg== X-IronPort-AV: E=Sophos;i="5.75,428,1589266800"; d="scan'208";a="436029579" Received: from yoo-mobl.gar.corp.intel.com (HELO anmitta2-mobl1.gar.corp.intel.com) ([10.255.137.64]) by orsmga004-auth.jf.intel.com with ESMTP/TLS/ECDHE-RSA-AES256-GCM-SHA384; 02 Aug 2020 17:50:18 -0700 From: "Anuj Mittal" To: openembedded-core@lists.openembedded.org, richard.purdie@linuxfoundation.org Subject: [zeus][PATCH 00/32] zeus pull request - cover letter only Date: Mon, 3 Aug 2020 08:50:06 +0800 Message-Id: X-Mailer: git-send-email 2.25.4 MIME-Version: 1.0 Content-Transfer-Encoding: 8bit Please consider merging these changes in zeus. Thanks, Anuj The following changes since commit f5b90eeed7366432b39c7cd8c6ee8c23e2d4abe8: libpam: Remove option 'obscure' from common-password (2020-06-29 13:51:38 +0800) are available in the Git repository at: git://push.openembedded.org/openembedded-core-contrib stable/zeus-next Adrian Bunk (2): python3: Upgrade 3.7.7 -> 3.7.8 python3-numpy: Stop shipping manual config files Ahmad Fatoum (1): core: glib-2.0: fix requested libmount/mkostemp/selinux not being linked in Alexander Kanavin (1): bind: update 9.11.5-P4 -> 9.11.13 Anuj Mittal (1): gstreamer1.0: fix builds with make 4.3 Armin Kuster (1): wpa-supplicant: Security fix CVE-2020-12695 Bruce Ashfield (1): perf: fix build for v5.5+ Charles-Antoine Couret (1): utils: fix gcc 10 version detection He Zhe (1): perf: Correct the substitution of python shebangs Hongxu Jia (1): iso-codes: switch upstream branch master -> main Jan-Simon Moeller (1): file: add bzip2-replacement-native to DEPENDS to fix sstate issue Joe Slater (1): vim: _FORTIFY_SOURCE=2 be gone Kai Kang (3): gcr: depends on gnupg-native wpa-supplicant: remove service templates from SYSTEMD_SERVICE encodings: clear postinst script Khem Raj (1): cve-check: Run it after do_fetch Konrad Weihmann (1): cve-update: handle baseMetricV2 as optional Lee Chee Yang (4): libexif: fix CVE-2020-13114 dbus: fix CVE-2020-12049 perl: fix CVE-2020-10543 & CVE-2020-10878 python3: fix CVE-2020-14422 Otavio Salvador (1): mtd-utils: Fix return value of ubiformat Ovidiu Panait (1): nss: Fix CVE-2020-12399 Pierre-Jean Texier (1): timezone: upgrade 2019c -> 2020a Ralph Siemsen (1): cve-check: include epoch in product version output Richard Purdie (3): patchelf: Add patch to address corrupt shared library issue perl: Fix host specific modules problems selftest/context: Avoid tracebacks from tests using multiprocessing Sakib Sajal (1): sqlite: backport CVE fix Zhixiong Chi (1): glibc: CVE-2020-6096 akuster (1): bind: update to 9.11.19 wenlin.kang@windriver.com (1): systemd: fix CVE-2020-13776 meta/classes/cve-check.bbclass | 4 +- meta/lib/oe/utils.py | 2 +- meta/lib/oeqa/selftest/context.py | 6 +- .../bind/0001-bind-fix-CVE-2019-6471.patch | 64 -- ....in-remove-useless-L-use_openssl-lib.patch | 18 +- ...01-fix-enforcement-of-tcp-clients-v1.patch | 60 -- ...c-extend-DIRNAMESIZE-from-256-to-512.patch | 22 - ...001-lib-dns-gen.c-fix-too-long-error.patch | 31 - ...p-clients-could-still-be-exceeded-v2.patch | 670 ------------- ...rence-counter-for-pipeline-groups-v3.patch | 278 ------ ...accounting-and-client-mortality-chec.patch | 512 ---------- ...a-and-pipeline-refs-allow-special-ca.patch | 911 ------------------ ...allowance-for-tcp-clients-interfaces.patch | 80 -- ...perations-in-bin-named-client.c-with.patch | 140 --- .../bind/bind/CVE-2020-8616.patch | 206 ---- .../bind/bind/CVE-2020-8617.patch | 29 - ...ching-for-json-headers-searches-sysr.patch | 15 +- .../{bind_9.11.5-P4.bb => bind_9.11.19.bb} | 21 +- ...allow-event-subscriptions-with-URLs-.patch | 151 +++ ...nt-message-generation-using-a-long-U.patch | 62 ++ ...HTTP-initiation-failures-for-events-.patch | 50 + .../wpa-supplicant/wpa-supplicant_2.9.bb | 11 +- .../dbus/dbus/CVE-2020-12049.patch | 78 ++ meta/recipes-core/dbus/dbus_1.12.16.bb | 1 + ...ot-hardcode-linux-as-the-host-system.patch | 49 + meta/recipes-core/glib-2.0/glib-2.0_2.60.7.bb | 1 + .../glibc/glibc/CVE-2020-6096-1.patch | 193 ++++ .../glibc/glibc/CVE-2020-6096-2.patch | 111 +++ meta/recipes-core/glibc/glibc_2.30.bb | 2 + .../recipes-core/meta/cve-update-db-native.bb | 13 +- .../systemd/systemd/CVE-2020-13776.patch | 96 ++ meta/recipes-core/systemd/systemd_243.2.bb | 1 + meta/recipes-devtools/file/file_5.37.bb | 2 +- ...-utils-Fix-return-value-of-ubiformat.patch | 62 ++ meta/recipes-devtools/mtd/mtd-utils_git.bb | 1 + .../patchelf/patchelf/fix-phdrs.patch | 37 + .../patchelf/patchelf_0.10.bb | 1 + .../perl/files/CVE-2020-10543.patch | 36 + .../perl/files/CVE-2020-10878_1.patch | 152 +++ .../perl/files/CVE-2020-10878_2.patch | 36 + meta/recipes-devtools/perl/perl_5.30.1.bb | 5 +- .../python-numpy/files/aarch64/_numpyconfig.h | 32 - .../python-numpy/files/aarch64/config.h | 139 --- .../python-numpy/files/arm/config.h | 21 - .../python-numpy/files/arm/numpyconfig.h | 17 - .../python-numpy/files/armeb/config.h | 21 - .../python-numpy/files/armeb/numpyconfig.h | 17 - .../files/mipsarchn32eb/_numpyconfig.h | 32 - .../python-numpy/files/mipsarchn32eb/config.h | 139 --- .../files/mipsarchn32el/_numpyconfig.h | 31 - .../python-numpy/files/mipsarchn32el/config.h | 138 --- .../files/mipsarchn64eb/_numpyconfig.h | 32 - .../python-numpy/files/mipsarchn64eb/config.h | 139 --- .../files/mipsarchn64el/_numpyconfig.h | 32 - .../python-numpy/files/mipsarchn64el/config.h | 138 --- .../files/mipsarcho32eb/_numpyconfig.h | 32 - .../python-numpy/files/mipsarcho32eb/config.h | 139 --- .../python-numpy/files/mipsarcho32el/config.h | 21 - .../files/mipsarcho32el/numpyconfig.h | 18 - .../python-numpy/files/powerpc/_numpyconfig.h | 32 - .../python-numpy/files/powerpc/config.h | 139 --- .../files/powerpc64/_numpyconfig.h | 32 - .../python-numpy/files/powerpc64/config.h | 139 --- .../python-numpy/files/riscv64/_numpyconfig.h | 32 - .../python-numpy/files/riscv64/config.h | 139 --- .../python-numpy/files/x86-64/_numpyconfig.h | 32 - .../python-numpy/files/x86-64/config.h | 139 --- .../python-numpy/files/x86/config.h | 108 --- .../python-numpy/files/x86/numpyconfig.h | 24 - .../python-numpy/python-numpy.inc | 68 -- ...20-8492-Fix-AbstractBasicAuthHandler.patch | 248 ----- .../python/python3/CVE-2020-14422.patch | 79 ++ .../{python3_3.7.7.bb => python3_3.7.8.bb} | 6 +- meta/recipes-extended/timezone/timezone.inc | 10 +- meta/recipes-gnome/gcr/gcr_3.28.1.bb | 2 +- .../xorg-font/encodings_1.0.5.bb | 4 + meta/recipes-kernel/perf/perf.bb | 6 +- .../gstreamer/gstreamer1.0-plugins.inc | 2 +- .../gstreamer1.0-rtsp-server_1.16.2.bb | 2 +- .../gstreamer/gstreamer1.0_1.16.2.bb | 2 +- .../iso-codes/iso-codes_4.3.bb | 2 +- .../libexif/libexif/CVE-2020-13114.patch | 73 ++ .../recipes-support/libexif/libexif_0.6.21.bb | 4 +- ...e-a-fixed-length-for-DSA-exponentiat.patch | 110 +++ meta/recipes-support/nss/nss_3.45.bb | 1 + .../sqlite/files/CVE-2020-11655.patch | 32 + meta/recipes-support/sqlite/sqlite3_3.29.0.bb | 1 + meta/recipes-support/vim/vim_8.1.1518.bb | 5 + 88 files changed, 1492 insertions(+), 5339 deletions(-) delete mode 100644 meta/recipes-connectivity/bind/bind/0001-bind-fix-CVE-2019-6471.patch delete mode 100644 meta/recipes-connectivity/bind/bind/0001-fix-enforcement-of-tcp-clients-v1.patch delete mode 100644 meta/recipes-connectivity/bind/bind/0001-gen.c-extend-DIRNAMESIZE-from-256-to-512.patch delete mode 100644 meta/recipes-connectivity/bind/bind/0001-lib-dns-gen.c-fix-too-long-error.patch delete mode 100644 meta/recipes-connectivity/bind/bind/0002-tcp-clients-could-still-be-exceeded-v2.patch delete mode 100644 meta/recipes-connectivity/bind/bind/0003-use-reference-counter-for-pipeline-groups-v3.patch delete mode 100644 meta/recipes-connectivity/bind/bind/0004-better-tcpquota-accounting-and-client-mortality-chec.patch delete mode 100644 meta/recipes-connectivity/bind/bind/0005-refactor-tcpquota-and-pipeline-refs-allow-special-ca.patch delete mode 100644 meta/recipes-connectivity/bind/bind/0006-restore-allowance-for-tcp-clients-interfaces.patch delete mode 100644 meta/recipes-connectivity/bind/bind/0007-Replace-atomic-operations-in-bin-named-client.c-with.patch delete mode 100644 meta/recipes-connectivity/bind/bind/CVE-2020-8616.patch delete mode 100644 meta/recipes-connectivity/bind/bind/CVE-2020-8617.patch rename meta/recipes-connectivity/bind/{bind_9.11.5-P4.bb => bind_9.11.19.bb} (83%) create mode 100644 meta/recipes-connectivity/wpa-supplicant/wpa-supplicant/0001-WPS-UPnP-Do-not-allow-event-subscriptions-with-URLs-.patch create mode 100644 meta/recipes-connectivity/wpa-supplicant/wpa-supplicant/0002-WPS-UPnP-Fix-event-message-generation-using-a-long-U.patch create mode 100644 meta/recipes-connectivity/wpa-supplicant/wpa-supplicant/0003-WPS-UPnP-Handle-HTTP-initiation-failures-for-events-.patch create mode 100644 meta/recipes-core/dbus/dbus/CVE-2020-12049.patch create mode 100644 meta/recipes-core/glib-2.0/glib-2.0/0020-meson.build-do-not-hardcode-linux-as-the-host-system.patch create mode 100644 meta/recipes-core/glibc/glibc/CVE-2020-6096-1.patch create mode 100644 meta/recipes-core/glibc/glibc/CVE-2020-6096-2.patch create mode 100644 meta/recipes-core/systemd/systemd/CVE-2020-13776.patch create mode 100644 meta/recipes-devtools/mtd/mtd-utils/0001-mtd-utils-Fix-return-value-of-ubiformat.patch create mode 100644 meta/recipes-devtools/patchelf/patchelf/fix-phdrs.patch create mode 100644 meta/recipes-devtools/perl/files/CVE-2020-10543.patch create mode 100644 meta/recipes-devtools/perl/files/CVE-2020-10878_1.patch create mode 100644 meta/recipes-devtools/perl/files/CVE-2020-10878_2.patch delete mode 100644 meta/recipes-devtools/python-numpy/files/aarch64/_numpyconfig.h delete mode 100644 meta/recipes-devtools/python-numpy/files/aarch64/config.h delete mode 100644 meta/recipes-devtools/python-numpy/files/arm/config.h delete mode 100644 meta/recipes-devtools/python-numpy/files/arm/numpyconfig.h delete mode 100644 meta/recipes-devtools/python-numpy/files/armeb/config.h delete mode 100644 meta/recipes-devtools/python-numpy/files/armeb/numpyconfig.h delete mode 100644 meta/recipes-devtools/python-numpy/files/mipsarchn32eb/_numpyconfig.h delete mode 100644 meta/recipes-devtools/python-numpy/files/mipsarchn32eb/config.h delete mode 100644 meta/recipes-devtools/python-numpy/files/mipsarchn32el/_numpyconfig.h delete mode 100644 meta/recipes-devtools/python-numpy/files/mipsarchn32el/config.h delete mode 100644 meta/recipes-devtools/python-numpy/files/mipsarchn64eb/_numpyconfig.h delete mode 100644 meta/recipes-devtools/python-numpy/files/mipsarchn64eb/config.h delete mode 100644 meta/recipes-devtools/python-numpy/files/mipsarchn64el/_numpyconfig.h delete mode 100644 meta/recipes-devtools/python-numpy/files/mipsarchn64el/config.h delete mode 100644 meta/recipes-devtools/python-numpy/files/mipsarcho32eb/_numpyconfig.h delete mode 100644 meta/recipes-devtools/python-numpy/files/mipsarcho32eb/config.h delete mode 100644 meta/recipes-devtools/python-numpy/files/mipsarcho32el/config.h delete mode 100644 meta/recipes-devtools/python-numpy/files/mipsarcho32el/numpyconfig.h delete mode 100644 meta/recipes-devtools/python-numpy/files/powerpc/_numpyconfig.h delete mode 100644 meta/recipes-devtools/python-numpy/files/powerpc/config.h delete mode 100644 meta/recipes-devtools/python-numpy/files/powerpc64/_numpyconfig.h delete mode 100644 meta/recipes-devtools/python-numpy/files/powerpc64/config.h delete mode 100644 meta/recipes-devtools/python-numpy/files/riscv64/_numpyconfig.h delete mode 100644 meta/recipes-devtools/python-numpy/files/riscv64/config.h delete mode 100644 meta/recipes-devtools/python-numpy/files/x86-64/_numpyconfig.h delete mode 100644 meta/recipes-devtools/python-numpy/files/x86-64/config.h delete mode 100644 meta/recipes-devtools/python-numpy/files/x86/config.h delete mode 100644 meta/recipes-devtools/python-numpy/files/x86/numpyconfig.h delete mode 100644 meta/recipes-devtools/python/files/0001-bpo-39503-CVE-2020-8492-Fix-AbstractBasicAuthHandler.patch create mode 100644 meta/recipes-devtools/python/python3/CVE-2020-14422.patch rename meta/recipes-devtools/python/{python3_3.7.7.bb => python3_3.7.8.bb} (98%) create mode 100644 meta/recipes-support/libexif/libexif/CVE-2020-13114.patch create mode 100644 meta/recipes-support/nss/nss/0001-Bug-1631576-Force-a-fixed-length-for-DSA-exponentiat.patch create mode 100644 meta/recipes-support/sqlite/files/CVE-2020-11655.patch -- 2.25.4