From mboxrd@z Thu Jan 1 00:00:00 1970 Received: from mga06.intel.com (mga06.intel.com [134.134.136.31]) by mx.groups.io with SMTP id smtpd.web09.1057.1629822352109126146 for ; Tue, 24 Aug 2021 09:25:52 -0700 Authentication-Results: mx.groups.io; dkim=missing; spf=pass (domain: intel.com, ip: 134.134.136.31, mailfrom: anuj.mittal@intel.com) X-IronPort-AV: E=McAfee;i="6200,9189,10086"; a="278360188" X-IronPort-AV: E=Sophos;i="5.84,347,1620716400"; d="scan'208";a="278360188" Received: from fmsmga007.fm.intel.com ([10.253.24.52]) by orsmga104.jf.intel.com with ESMTP/TLS/ECDHE-RSA-AES256-GCM-SHA384; 24 Aug 2021 09:25:35 -0700 X-IronPort-AV: E=Sophos;i="5.84,347,1620716400"; d="scan'208";a="455658871" Received: from asmawa1x-mobl.gar.corp.intel.com (HELO anmitta2-mobl1.gar.corp.intel.com) ([10.215.233.13]) by fmsmga007-auth.fm.intel.com with ESMTP/TLS/ECDHE-RSA-AES256-GCM-SHA384; 24 Aug 2021 09:25:34 -0700 From: "Anuj Mittal" To: openembedded-core@lists.openembedded.org Subject: [hardknott][PATCH 00/28] Review request Date: Wed, 25 Aug 2021 00:25:02 +0800 Message-Id: X-Mailer: git-send-email 2.31.1 MIME-Version: 1.0 Content-Transfer-Encoding: 8bit Please review these next set of changes for hardknott. Except for a ptest failure in valgrind, no issues seen on autobuilder. https://autobuilder.yoctoproject.org/typhoon/#/builders/83/builds/2496 Thanks, Anuj The following changes since commit 01321ed982a8553672808afe2d9c1bee6628055d: gnutls: upgrade 3.7.1 -> 3.7.2 (2021-08-11 16:39:03 +0800) are available in the Git repository at: git://push.openembedded.org/openembedded-core-contrib anujm/hardknott Alexandre Belloni (1): oeqa/runtime/cases: make date.DateTest.test_date more reliable Anton Blanchard (1): kmod: use nonarch_base_libdir for depmod.d and modprobe.d Bruce Ashfield (6): linux-yocto/5.10: update to v5.10.55 linux-yocto/5.4: update to v5.4.137 linux-yocto/5.4: update to v5.4.139 linux-yocto/5.10: update to v5.10.57 kernel-devsrc: 5.14+ updates kernel-devsrc: fix 5.14+ objtool compilation Dmitry Baryshkov (1): linux-firmware: add more Qualcomm firmware packages Joe Slater (1): terminal.bbclass: force bash for devshell Jose Quaresma (1): sstate.bbclass: fix error handling when sstate mirrors is ro Khem Raj (1): sdk: Enable do_populate_sdk with multilibs Marta Rybczynska (1): lzo: add CVE_PRODUCT Michael Halstead (1): uninative: Upgrade to 3.3, support glibc 2.34 Oleksandr Popovych (1): utils: Reduce the number of calls to the "dirname" command Patrick Williams (1): pixman: re-disable iwmmxt Ross Burton (4): tar: ignore node-tar CVEs uninative: Improve glob to handle glibc 2.34 e2fsprogs: ensure small images have 256-byte inodes wic: don't forcibly pass -T default Sakib Sajal (1): go: upgrade 1.16.5 -> 1.16.7 Tony Tascioglu (5): ffmpeg: fix CVE-2020-20446 ffmpeg: fix CVE-2020-20453 ffmpeg: fix CVE-2020-22015 ffmpeg: fix CVE-2020-22021 ffmpeg: fix CVE-2020-22019 and CVE-2020-22033 Vinay Kumar (1): glibc: Fix CVE-2021-38604 hongxu (1): sdk: fix relocate symlink failed meta/classes/multilib.bbclass | 1 - meta/classes/populate_sdk_base.bbclass | 2 +- meta/classes/sstate.bbclass | 2 + meta/classes/terminal.bbclass | 5 +- meta/classes/uninative.bbclass | 2 +- meta/classes/utils.bbclass | 2 +- meta/conf/distro/include/yocto-uninative.inc | 10 +- meta/files/toolchain-shar-relocate.sh | 2 +- meta/lib/oeqa/runtime/cases/date.py | 9 +- .../glibc/glibc/0001-CVE-2021-38604.patch | 40 +++++ .../glibc/glibc/0002-CVE-2021-38604.patch | 147 ++++++++++++++++++ meta/recipes-core/glibc/glibc_2.33.bb | 2 + .../e2fsprogs/big-inodes-for-small-fs.patch | 22 +++ .../e2fsprogs/e2fsprogs_1.46.1.bb | 1 + .../go/{go-1.16.5.inc => go-1.16.7.inc} | 4 +- ...e_1.16.5.bb => go-binary-native_1.16.7.bb} | 4 +- ..._1.16.5.bb => go-cross-canadian_1.16.7.bb} | 0 ...{go-cross_1.16.5.bb => go-cross_1.16.7.bb} | 0 ...osssdk_1.16.5.bb => go-crosssdk_1.16.7.bb} | 0 ...o-native_1.16.5.bb => go-native_1.16.7.bb} | 0 ...runtime_1.16.5.bb => go-runtime_1.16.7.bb} | 0 .../go/{go_1.16.5.bb => go_1.16.7.bb} | 0 meta/recipes-extended/tar/tar_1.34.bb | 3 + .../xorg-lib/pixman_0.40.0.bb | 2 + meta/recipes-kernel/kmod/kmod_git.bb | 8 +- .../linux-firmware/linux-firmware_20210511.bb | 17 +- meta/recipes-kernel/linux/kernel-devsrc.bb | 10 +- .../linux/linux-yocto-rt_5.10.bb | 6 +- .../linux/linux-yocto-rt_5.4.bb | 6 +- .../linux/linux-yocto-tiny_5.10.bb | 8 +- .../linux/linux-yocto-tiny_5.4.bb | 8 +- meta/recipes-kernel/linux/linux-yocto_5.10.bb | 24 +-- meta/recipes-kernel/linux/linux-yocto_5.4.bb | 22 +-- .../ffmpeg/ffmpeg/fix-CVE-2020-20446.patch | 35 +++++ .../ffmpeg/ffmpeg/fix-CVE-2020-20453.patch | 42 +++++ .../ffmpeg/ffmpeg/fix-CVE-2020-22015.patch | 44 ++++++ .../ffmpeg/ffmpeg/fix-CVE-2020-22021.patch | 87 +++++++++++ .../fix-CVE-2020-22033-CVE-2020-22019.patch | 39 +++++ .../recipes-multimedia/ffmpeg/ffmpeg_4.3.2.bb | 5 + meta/recipes-support/lzo/lzo_2.10.bb | 2 + scripts/lib/wic/canned-wks/common.wks.inc | 2 +- scripts/lib/wic/canned-wks/directdisk-gpt.wks | 2 +- scripts/lib/wic/canned-wks/mkefidisk.wks | 2 +- 43 files changed, 559 insertions(+), 70 deletions(-) create mode 100644 meta/recipes-core/glibc/glibc/0001-CVE-2021-38604.patch create mode 100644 meta/recipes-core/glibc/glibc/0002-CVE-2021-38604.patch create mode 100644 meta/recipes-devtools/e2fsprogs/e2fsprogs/big-inodes-for-small-fs.patch rename meta/recipes-devtools/go/{go-1.16.5.inc => go-1.16.7.inc} (89%) rename meta/recipes-devtools/go/{go-binary-native_1.16.5.bb => go-binary-native_1.16.7.bb} (83%) rename meta/recipes-devtools/go/{go-cross-canadian_1.16.5.bb => go-cross-canadian_1.16.7.bb} (100%) rename meta/recipes-devtools/go/{go-cross_1.16.5.bb => go-cross_1.16.7.bb} (100%) rename meta/recipes-devtools/go/{go-crosssdk_1.16.5.bb => go-crosssdk_1.16.7.bb} (100%) rename meta/recipes-devtools/go/{go-native_1.16.5.bb => go-native_1.16.7.bb} (100%) rename meta/recipes-devtools/go/{go-runtime_1.16.5.bb => go-runtime_1.16.7.bb} (100%) rename meta/recipes-devtools/go/{go_1.16.5.bb => go_1.16.7.bb} (100%) create mode 100644 meta/recipes-multimedia/ffmpeg/ffmpeg/fix-CVE-2020-20446.patch create mode 100644 meta/recipes-multimedia/ffmpeg/ffmpeg/fix-CVE-2020-20453.patch create mode 100644 meta/recipes-multimedia/ffmpeg/ffmpeg/fix-CVE-2020-22015.patch create mode 100644 meta/recipes-multimedia/ffmpeg/ffmpeg/fix-CVE-2020-22021.patch create mode 100644 meta/recipes-multimedia/ffmpeg/ffmpeg/fix-CVE-2020-22033-CVE-2020-22019.patch -- 2.31.1