[OE-core][dunfell 00/19] Patch review

Openembedded Core Discussions
 help / color / mirror / Atom feed

From: "Steve Sakoman" <steve@sakoman.com>
To: openembedded-core@lists.openembedded.org
Subject: [OE-core][dunfell 00/19] Patch review
Date: Mon, 18 Jan 2021 12:36:08 -1000	[thread overview]
Message-ID: <cover.1611009050.git.steve@sakoman.com> (raw)

Please review this next set of patches for dunfell and have comments back by
end of day Wednesday.

Passed a-full on autobuilder:

https://autobuilder.yoctoproject.org/typhoon/#/builders/83/builds/1763

The following changes since commit 72431ee8de5e3a53d259cebf420a7713ac9e1f14:

  mobile-broadband-provider-info: upgrade 20190618 ->20201225 (2021-01-08 03:57:37 -1000)

are available in the Git repository at:

  git://git.openembedded.org/openembedded-core-contrib stable/dunfell-nut
  http://cgit.openembedded.org/openembedded-core-contrib/log/?h=stable/dunfell-nut

Adrian Herrera (1):
  scripts: oe-run-native, fix *-native directories

Andrey Mozzhuhin (1):
  toolchain-shar-extract.sh: Handle special characters in script path

Armin Kuster (2):
  xorg: Security fix for CVE-2020-14345
  glibc: Security fix for CVE-2020-29573

Bruce Ashfield (1):
  linux-yocto/5.4: update to v5.4.87

Chris Laplante (1):
  systemd.bbclass: improve error message when a service unit specified
    in SYSTEMD_SERVICE is not found

Joshua Watt (1):
  classes/waf: Add build and install arguments

Lee Chee Yang (1):
  curl: fix CVE-2020-8231/8284/8285/8286

Mans Rullgard (1):
  boost: drop arm-intrinsics.patch

Marek Vasut (2):
  meta: toolchain-shar-relocate.sh: Do not use $target_sdk_dir as regex
  meta: toolchain-shar-relocate.sh: Filter out post-relocate-setup
    script

Michael Ho (1):
  license_image.bbclass: fix missing recipeinfo on self

Mikko Rapeli (1):
  zip: whitelist CVE-2018-13410 and CVE-2018-13684

Robert Joslyn (1):
  ppp: Whitelist CVE-2020-15704

Ross Burton (1):
  waf: don't assume the waf intepretter is good

Sakib Sajal (1):
  buildstats.bbclass: add functionality to collect build system stats

Scott Murray (1):
  glibc: CVE-2019-25013

Thomas Perrot (1):
  go.bbclass: don't stage test data with sources of dependencies

Tomasz Dziendzielski (1):
  lib/oe/utils: Return empty string in parallel_make

 meta/classes/buildstats.bbclass               |   40 +-
 meta/classes/go.bbclass                       |    3 +-
 meta/classes/license_image.bbclass            |    3 +-
 meta/classes/systemd.bbclass                  |    3 +-
 meta/classes/waf.bbclass                      |   18 +-
 meta/files/toolchain-shar-extract.sh          |   12 +-
 meta/files/toolchain-shar-relocate.sh         |    5 +-
 meta/lib/oe/utils.py                          |    2 +-
 meta/recipes-connectivity/ppp/ppp_2.4.7.bb    |    4 +
 .../glibc/glibc/CVE-2019-25013.patch          |  135 ++
 .../glibc/glibc/CVE-2020-29573.patch          |  128 ++
 meta/recipes-core/glibc/glibc_2.31.bb         |    2 +
 meta/recipes-extended/zip/zip_3.0.bb          |    6 +
 .../xserver-xorg/CVE-2020-14345.patch         |  182 +++
 .../xorg-xserver/xserver-xorg_1.20.8.bb       |    1 +
 .../linux/linux-yocto-rt_5.4.bb               |    6 +-
 .../linux/linux-yocto-tiny_5.4.bb             |    8 +-
 meta/recipes-kernel/linux/linux-yocto_5.4.bb  |   22 +-
 .../boost/boost/arm-intrinsics.patch          |   55 -
 meta/recipes-support/boost/boost_1.72.0.bb    |    2 +-
 .../curl/curl/CVE-2020-8231.patch             | 1092 +++++++++++++++++
 .../curl/curl/CVE-2020-8284.patch             |  209 ++++
 .../curl/curl/CVE-2020-8285.patch             |  260 ++++
 .../curl/curl/CVE-2020-8286.patch             |  133 ++
 meta/recipes-support/curl/curl_7.69.1.bb      |    4 +
 scripts/oe-run-native                         |    2 +-
 26 files changed, 2244 insertions(+), 93 deletions(-)
 create mode 100644 meta/recipes-core/glibc/glibc/CVE-2019-25013.patch
 create mode 100644 meta/recipes-core/glibc/glibc/CVE-2020-29573.patch
 create mode 100644 meta/recipes-graphics/xorg-xserver/xserver-xorg/CVE-2020-14345.patch
 delete mode 100644 meta/recipes-support/boost/boost/arm-intrinsics.patch
 create mode 100644 meta/recipes-support/curl/curl/CVE-2020-8231.patch
 create mode 100644 meta/recipes-support/curl/curl/CVE-2020-8284.patch
 create mode 100644 meta/recipes-support/curl/curl/CVE-2020-8285.patch
 create mode 100644 meta/recipes-support/curl/curl/CVE-2020-8286.patch

-- 
2.17.1

next             reply	other threads:[~2021-01-18 22:36 UTC|newest]

Thread overview: 26+ messages / expand[flat|nested]  mbox.gz  Atom feed  top
2021-01-18 22:36 Steve Sakoman [this message]
2021-01-18 22:36 ` [OE-core][dunfell 01/19] go.bbclass: don't stage test data with sources of dependencies Steve Sakoman
2021-01-18 22:36 ` [OE-core][dunfell 02/19] meta: toolchain-shar-relocate.sh: Do not use $target_sdk_dir as regex Steve Sakoman
2021-01-18 22:36 ` [OE-core][dunfell 03/19] meta: toolchain-shar-relocate.sh: Filter out post-relocate-setup script Steve Sakoman
2021-01-18 22:36 ` [OE-core][dunfell 04/19] systemd.bbclass: improve error message when a service unit specified in SYSTEMD_SERVICE is not found Steve Sakoman
2021-01-18 22:36 ` [OE-core][dunfell 05/19] license_image.bbclass: fix missing recipeinfo on self Steve Sakoman
2021-01-18 22:36 ` [OE-core][dunfell 06/19] linux-yocto/5.4: update to v5.4.87 Steve Sakoman
2021-01-18 22:36 ` [OE-core][dunfell 07/19] scripts: oe-run-native, fix *-native directories Steve Sakoman
2021-01-18 22:36 ` [OE-core][dunfell 08/19] buildstats.bbclass: add functionality to collect build system stats Steve Sakoman
2021-01-18 23:34   ` Richard Purdie
2021-01-18 23:44     ` Steve Sakoman
2021-01-18 22:36 ` [OE-core][dunfell 09/19] toolchain-shar-extract.sh: Handle special characters in script path Steve Sakoman
2021-01-18 22:36 ` [OE-core][dunfell 10/19] lib/oe/utils: Return empty string in parallel_make Steve Sakoman
2021-01-18 22:36 ` [OE-core][dunfell 11/19] boost: drop arm-intrinsics.patch Steve Sakoman
2021-01-18 22:36 ` [OE-core][dunfell 12/19] classes/waf: Add build and install arguments Steve Sakoman
2021-01-18 22:36 ` [OE-core][dunfell 13/19] waf: don't assume the waf intepretter is good Steve Sakoman
2021-01-18 22:36 ` [OE-core][dunfell 14/19] curl: fix CVE-2020-8231/8284/8285/8286 Steve Sakoman
2021-01-18 22:36 ` [OE-core][dunfell 15/19] xorg: Security fix for CVE-2020-14345 Steve Sakoman
2021-01-18 22:36 ` [OE-core][dunfell 16/19] glibc: Security fix for CVE-2020-29573 Steve Sakoman
2021-01-18 22:36 ` [OE-core][dunfell 17/19] glibc: CVE-2019-25013 Steve Sakoman
2021-01-18 22:36 ` [OE-core][dunfell 18/19] zip: whitelist CVE-2018-13410 and CVE-2018-13684 Steve Sakoman
2021-01-18 22:36 ` [OE-core][dunfell 19/19] ppp: Whitelist CVE-2020-15704 Steve Sakoman
  -- strict thread matches above, loose matches on Subject: below --
2021-07-05 22:34 [OE-core][dunfell 00/19] Patch review Steve Sakoman
2021-04-23 13:58 Steve Sakoman
2020-08-10  2:59 Steve Sakoman
2020-05-18 16:48 Steve Sakoman

Reply instructions:

You may reply publicly to this message via plain-text email
using any one of the following methods:

* Save the following mbox file, import it into your mail client,
  and reply-to-all from there: mbox

  Avoid top-posting and favor interleaved quoting:
  https://en.wikipedia.org/wiki/Posting_style#Interleaved_style

* Reply using the --to, --cc, and --in-reply-to
  switches of git-send-email(1):

  git send-email \
    --in-reply-to=cover.1611009050.git.steve@sakoman.com \
    --to=steve@sakoman.com \
    --cc=openembedded-core@lists.openembedded.org \
    /path/to/YOUR_REPLY

  https://kernel.org/pub/software/scm/git/docs/git-send-email.html

* If your mail client supports setting the In-Reply-To header
  via mailto: links, try the mailto: link

Be sure your reply has a Subject: header at the top and a blank line before the message body.

This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox