From: "Steve Sakoman" <steve@sakoman.com>
To: openembedded-core@lists.openembedded.org
Subject: [OE-core][dunfell 00/17] Patch review
Date: Fri, 13 Aug 2021 04:29:42 -1000 [thread overview]
Message-ID: <cover.1628863869.git.steve@sakoman.com> (raw)
Please review this next set of patches for dunfell and have comments back by
end of day Monday.
Passed a-full on autobuilder:
https://autobuilder.yoctoproject.org/typhoon/#/builders/83/builds/2441
The following changes since commit bae9c6482271d53dc28d3c801fba467e268003bd:
sstate: Fix rebuilds when changing layer config (2021-08-04 09:57:23 -1000)
are available in the Git repository at:
git://git.openembedded.org/openembedded-core-contrib stable/dunfell-nut
http://cgit.openembedded.org/openembedded-core-contrib/log/?h=stable/dunfell-nut
Jose Quaresma (1):
sstate.bbclass: fix error handling when sstate mirrors is ro
Lee Chee Yang (2):
aspell: fix CVE-2019-25051
libsolv: fix CVE-2021-3200
Matthias Klein (1):
runqemu: Fix typo in error message
Michael Opdenacker (4):
cve-check: fix comments
cve-check: update link to NVD website for CVE details
cve-check: improve comment about CVE patch file names
cve-check: remove deprecated CVE_CHECK_CVE_WHITELIST
Minjae Kim (1):
ruby: 2.7.3 -> 2.7.4
Paul Barker (1):
kernel-yocto: Simplify no git repo case in do_kernel_checkout
Ralph Siemsen (1):
glibc: Document and whitelist CVE-2021-35942
Ranjitsinh Rathod (1):
systemd: Add fix for CVE-2020-13529 and CVE-2021-33910
Richard Purdie (2):
license: Exclude COPYING.MIT from pseudo
image: Drop COMPRESS_CMD
Ross Burton (2):
e2fsprogs: ensure small images have 256-byte inodes
wic: don't forcibly pass -T default
akuster (1):
cve-check: add include/exclude layers
meta/classes/cve-check.bbclass | 37 +++++--
meta/classes/image.bbclass | 3 +-
meta/classes/kernel-yocto.bbclass | 30 +++---
meta/classes/license.bbclass | 4 +-
meta/classes/sstate.bbclass | 2 +
meta/recipes-core/glibc/glibc_2.31.bb | 10 ++
.../systemd/systemd/CVE-2020-13529.patch | 42 ++++++++
.../systemd/systemd/CVE-2021-33910.patch | 67 ++++++++++++
meta/recipes-core/systemd/systemd_244.5.bb | 2 +
.../e2fsprogs/big-inodes-for-small-fs.patch | 22 ++++
.../e2fsprogs/e2fsprogs_1.45.4.bb | 1 +
.../ruby/{ruby_2.7.3.bb => ruby_2.7.4.bb} | 4 +-
.../libsolv/files/CVE-2021-3200.patch | 67 ++++++++++++
.../libsolv/libsolv_0.7.10.bb | 1 +
meta/recipes-support/aspell/aspell_0.60.8.bb | 4 +-
.../aspell/files/CVE-2019-25051.patch | 101 ++++++++++++++++++
scripts/lib/wic/canned-wks/common.wks.inc | 2 +-
scripts/lib/wic/canned-wks/directdisk-gpt.wks | 2 +-
scripts/lib/wic/canned-wks/mkefidisk.wks | 2 +-
scripts/runqemu | 2 +-
20 files changed, 369 insertions(+), 36 deletions(-)
create mode 100644 meta/recipes-core/systemd/systemd/CVE-2020-13529.patch
create mode 100644 meta/recipes-core/systemd/systemd/CVE-2021-33910.patch
create mode 100644 meta/recipes-devtools/e2fsprogs/e2fsprogs/big-inodes-for-small-fs.patch
rename meta/recipes-devtools/ruby/{ruby_2.7.3.bb => ruby_2.7.4.bb} (95%)
create mode 100644 meta/recipes-extended/libsolv/files/CVE-2021-3200.patch
create mode 100644 meta/recipes-support/aspell/files/CVE-2019-25051.patch
--
2.25.1
next reply other threads:[~2021-08-13 14:30 UTC|newest]
Thread overview: 25+ messages / expand[flat|nested] mbox.gz Atom feed top
2021-08-13 14:29 Steve Sakoman [this message]
2021-08-13 14:29 ` [OE-core][dunfell 01/17] aspell: fix CVE-2019-25051 Steve Sakoman
2021-08-13 14:29 ` [OE-core][dunfell 02/17] systemd: Add fix for CVE-2020-13529 and CVE-2021-33910 Steve Sakoman
2021-08-13 14:29 ` [OE-core][dunfell 03/17] glibc: Document and whitelist CVE-2021-35942 Steve Sakoman
2021-08-13 14:29 ` [OE-core][dunfell 04/17] libsolv: fix CVE-2021-3200 Steve Sakoman
2021-08-13 14:29 ` [OE-core][dunfell 05/17] ruby: 2.7.3 -> 2.7.4 Steve Sakoman
2021-08-13 14:29 ` [OE-core][dunfell 06/17] license: Exclude COPYING.MIT from pseudo Steve Sakoman
2021-08-13 14:29 ` [OE-core][dunfell 07/17] image: Drop COMPRESS_CMD Steve Sakoman
2021-08-13 21:56 ` Richard Purdie
2021-08-13 22:00 ` Steve Sakoman
2021-08-13 14:29 ` [OE-core][dunfell 08/17] kernel-yocto: Simplify no git repo case in do_kernel_checkout Steve Sakoman
2021-08-13 14:29 ` [OE-core][dunfell 09/17] runqemu: Fix typo in error message Steve Sakoman
2021-08-13 14:29 ` [OE-core][dunfell 10/17] cve-check: add include/exclude layers Steve Sakoman
2021-08-13 14:29 ` [OE-core][dunfell 11/17] cve-check: fix comments Steve Sakoman
2021-08-13 14:29 ` [OE-core][dunfell 12/17] cve-check: update link to NVD website for CVE details Steve Sakoman
2021-08-13 14:29 ` [OE-core][dunfell 13/17] cve-check: improve comment about CVE patch file names Steve Sakoman
2021-08-13 14:29 ` [OE-core][dunfell 14/17] cve-check: remove deprecated CVE_CHECK_CVE_WHITELIST Steve Sakoman
2021-08-13 14:29 ` [OE-core][dunfell 15/17] e2fsprogs: ensure small images have 256-byte inodes Steve Sakoman
2021-08-13 14:29 ` [OE-core][dunfell 16/17] wic: don't forcibly pass -T default Steve Sakoman
2021-08-13 14:29 ` [OE-core][dunfell 17/17] sstate.bbclass: fix error handling when sstate mirrors is ro Steve Sakoman
-- strict thread matches above, loose matches on Subject: below --
2023-11-15 3:17 [OE-core][dunfell 00/17] Patch review Steve Sakoman
2023-07-08 15:55 Steve Sakoman
2021-02-15 14:37 Steve Sakoman
2020-12-28 22:15 Steve Sakoman
2020-05-25 22:36 Steve Sakoman
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=cover.1628863869.git.steve@sakoman.com \
--to=steve@sakoman.com \
--cc=openembedded-core@lists.openembedded.org \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox