From: Steve Sakoman <steve@sakoman.com>
To: openembedded-core@lists.openembedded.org
Subject: [OE-core][kirkstone 00/29] Patch review
Date: Sun, 1 Jan 2023 07:37:22 -1000 [thread overview]
Message-ID: <cover.1672594521.git.steve@sakoman.com> (raw)
Please review this set of patches for kirkstone and have comments back by
end of day Tuesday.
Passed a-full on autobuilder:
https://autobuilder.yoctoproject.org/typhoon/#/builders/83/builds/4710
The following changes since commit ada5e64a97d5f269886772540e0bb0c324088b21:
efibootmgr: update compilation with musl (2022-12-17 04:10:41 -1000)
are available in the Git repository at:
https://git.openembedded.org/openembedded-core-contrib stable/kirkstone-nut
http://cgit.openembedded.org/openembedded-core-contrib/log/?h=stable/kirkstone-nut
Alejandro Hernandez Samaniego (1):
baremetal-image: Avoid overriding qemu variables from IMAGE_CLASSES
Alexander Kanavin (5):
libnewt: update 0.52.21 -> 0.52.23
ruby: merge .inc into .bb
ruby: update 3.1.2 -> 3.1.3
tzdata: update 2022d -> 2022g
devtool/upgrade: correctly handle recipes where S is a subdir of
upstream tree
Bruce Ashfield (3):
linux-yocto/5.10: update to v5.10.152
linux-yocto/5.10: update to v5.10.154
linux-yocto/5.10: update to v5.10.160
Hitendra Prajapati (2):
systemd: CVE-2022-45873 deadlock in systemd-coredump via a crash with
a long backtrace
libX11: CVE-2022-3554 & CVE-2022-3555 Fix memory leak
Jagadeesh Krishnanjanappa (1):
qemuboot.bbclass: make sure runqemu boots bundled initramfs kernel
image
Joshua Watt (1):
classes/create-spdx: Add SPDX_PRETTY option
Kai Kang (1):
webkitgtk: 2.36.7 -> 2.36.8
Martin Jansa (1):
libxml2: fix test data checksums
Ovidiu Panait (1):
kernel.bbclass: remove empty module directories to prevent QA issues
Quentin Schulz (1):
cairo: update patch for CVE-2019-6461 with upstream solution
Randy MacLeod (1):
valgrind: skip the boost_thread test on arm
Ranjitsinh Rathod (3):
curl: Correct LICENSE from MIT-open-group to curl
curl: Add patch to fix CVE-2022-43551
curl: Add patch to fix CVE-2022-43552
Richard Purdie (1):
oeqa/concurrencytest: Add number of failures to summary output
Robert Andersson (1):
go-crosssdk: avoid host contamination by GOCACHE
Ross Burton (1):
libepoxy: remove upstreamed patch
Vivek Kumbhar (1):
sqlite: fix CVE-2022-46908 safe mode authorizer callback allows
disallowed UDFs.
Wang Mingyu (2):
libpng: upgrade 1.6.38 -> 1.6.39
gstreamer1.0: upgrade 1.20.4 -> 1.20.5
Xiangyu Chen (1):
openssh: remove RRECOMMENDS to rng-tools for sshd package
Yash.Shinde@windriver.com (1):
binutils : Fix CVE-2022-4285
meta/classes/baremetal-image.bbclass | 11 ++
meta/classes/create-spdx.bbclass | 22 +++-
meta/classes/kernel.bbclass | 4 +-
meta/classes/qemuboot.bbclass | 3 +-
meta/lib/oe/sbom.py | 4 +-
meta/lib/oeqa/core/utils/concurrencytest.py | 4 +-
.../openssh/openssh_8.9p1.bb | 10 +-
meta/recipes-core/libxml/libxml2_2.9.14.bb | 4 +-
.../systemd/systemd/CVE-2022-45873.patch | 124 ++++++++++++++++++
meta/recipes-core/systemd/systemd_250.5.bb | 1 +
.../binutils/binutils-2.38.inc | 1 +
.../binutils/0019-CVE-2022-4285.patch | 37 ++++++
meta/recipes-devtools/go/go-crosssdk.inc | 2 +
meta/recipes-devtools/ruby/ruby.inc | 39 ------
...001-Remove-dependency-on-libcapstone.patch | 36 -----
.../ruby/{ruby_3.1.2.bb => ruby_3.1.3.bb} | 48 ++++++-
.../valgrind/valgrind/remove-for-aarch64 | 1 +
.../0001-detect-gold-as-GNU-linker-too.patch | 14 +-
...-t-ignore-CFLAGS-when-building-snack.patch | 29 ----
...{libnewt_0.52.21.bb => libnewt_0.52.23.bb} | 4 +-
meta/recipes-extended/timezone/timezone.inc | 7 +-
.../cairo/cairo/CVE-2019-6461.patch | 35 ++++-
...atch_common.h-define-also-EGL_NO_X11.patch | 27 ----
.../libepoxy/libepoxy_1.5.10.bb | 4 +-
.../xorg-lib/libx11/CVE-2022-3554.patch | 58 ++++++++
.../xorg-lib/libx11/CVE-2022-3555.patch | 40 ++++++
.../xorg-lib/libx11_1.7.3.1.bb | 2 +
.../linux/linux-yocto-rt_5.10.bb | 6 +-
.../linux/linux-yocto-tiny_5.10.bb | 8 +-
meta/recipes-kernel/linux/linux-yocto_5.10.bb | 24 ++--
...tools_1.20.4.bb => gst-devtools_1.20.5.bb} | 2 +-
...1.20.4.bb => gstreamer1.0-libav_1.20.5.bb} | 2 +-
...x_1.20.4.bb => gstreamer1.0-omx_1.20.5.bb} | 2 +-
....bb => gstreamer1.0-plugins-bad_1.20.5.bb} | 2 +-
...bb => gstreamer1.0-plugins-base_1.20.5.bb} | 2 +-
...bb => gstreamer1.0-plugins-good_1.20.5.bb} | 2 +-
...bb => gstreamer1.0-plugins-ugly_1.20.5.bb} | 2 +-
....20.4.bb => gstreamer1.0-python_1.20.5.bb} | 2 +-
....bb => gstreamer1.0-rtsp-server_1.20.5.bb} | 2 +-
...1.20.4.bb => gstreamer1.0-vaapi_1.20.5.bb} | 2 +-
...er1.0_1.20.4.bb => gstreamer1.0_1.20.5.bb} | 2 +-
.../{libpng_1.6.38.bb => libpng_1.6.39.bb} | 2 +-
...ebkitgtk_2.36.7.bb => webkitgtk_2.36.8.bb} | 4 +-
.../curl/curl/CVE-2022-43551.patch | 35 +++++
.../curl/curl/CVE-2022-43552.patch | 80 +++++++++++
meta/recipes-support/curl/curl_7.82.0.bb | 4 +-
.../sqlite/files/CVE-2022-46908.patch | 39 ++++++
meta/recipes-support/sqlite/sqlite3_3.38.5.bb | 1 +
scripts/lib/devtool/standard.py | 19 +--
scripts/lib/devtool/upgrade.py | 18 ++-
50 files changed, 595 insertions(+), 238 deletions(-)
create mode 100644 meta/recipes-core/systemd/systemd/CVE-2022-45873.patch
create mode 100644 meta/recipes-devtools/binutils/binutils/0019-CVE-2022-4285.patch
delete mode 100644 meta/recipes-devtools/ruby/ruby.inc
delete mode 100644 meta/recipes-devtools/ruby/ruby/0001-Remove-dependency-on-libcapstone.patch
rename meta/recipes-devtools/ruby/{ruby_3.1.2.bb => ruby_3.1.3.bb} (68%)
delete mode 100644 meta/recipes-extended/newt/files/0002-don-t-ignore-CFLAGS-when-building-snack.patch
rename meta/recipes-extended/newt/{libnewt_0.52.21.bb => libnewt_0.52.23.bb} (87%)
delete mode 100644 meta/recipes-graphics/libepoxy/files/0001-dispatch_common.h-define-also-EGL_NO_X11.patch
create mode 100644 meta/recipes-graphics/xorg-lib/libx11/CVE-2022-3554.patch
create mode 100644 meta/recipes-graphics/xorg-lib/libx11/CVE-2022-3555.patch
rename meta/recipes-multimedia/gstreamer/{gst-devtools_1.20.4.bb => gst-devtools_1.20.5.bb} (95%)
rename meta/recipes-multimedia/gstreamer/{gstreamer1.0-libav_1.20.4.bb => gstreamer1.0-libav_1.20.5.bb} (91%)
rename meta/recipes-multimedia/gstreamer/{gstreamer1.0-omx_1.20.4.bb => gstreamer1.0-omx_1.20.5.bb} (95%)
rename meta/recipes-multimedia/gstreamer/{gstreamer1.0-plugins-bad_1.20.4.bb => gstreamer1.0-plugins-bad_1.20.5.bb} (98%)
rename meta/recipes-multimedia/gstreamer/{gstreamer1.0-plugins-base_1.20.4.bb => gstreamer1.0-plugins-base_1.20.5.bb} (97%)
rename meta/recipes-multimedia/gstreamer/{gstreamer1.0-plugins-good_1.20.4.bb => gstreamer1.0-plugins-good_1.20.5.bb} (97%)
rename meta/recipes-multimedia/gstreamer/{gstreamer1.0-plugins-ugly_1.20.4.bb => gstreamer1.0-plugins-ugly_1.20.5.bb} (94%)
rename meta/recipes-multimedia/gstreamer/{gstreamer1.0-python_1.20.4.bb => gstreamer1.0-python_1.20.5.bb} (91%)
rename meta/recipes-multimedia/gstreamer/{gstreamer1.0-rtsp-server_1.20.4.bb => gstreamer1.0-rtsp-server_1.20.5.bb} (90%)
rename meta/recipes-multimedia/gstreamer/{gstreamer1.0-vaapi_1.20.4.bb => gstreamer1.0-vaapi_1.20.5.bb} (95%)
rename meta/recipes-multimedia/gstreamer/{gstreamer1.0_1.20.4.bb => gstreamer1.0_1.20.5.bb} (97%)
rename meta/recipes-multimedia/libpng/{libpng_1.6.38.bb => libpng_1.6.39.bb} (93%)
rename meta/recipes-sato/webkit/{webkitgtk_2.36.7.bb => webkitgtk_2.36.8.bb} (97%)
create mode 100644 meta/recipes-support/curl/curl/CVE-2022-43551.patch
create mode 100644 meta/recipes-support/curl/curl/CVE-2022-43552.patch
create mode 100644 meta/recipes-support/sqlite/files/CVE-2022-46908.patch
--
2.25.1
next reply other threads:[~2023-01-01 17:38 UTC|newest]
Thread overview: 33+ messages / expand[flat|nested] mbox.gz Atom feed top
2023-01-01 17:37 Steve Sakoman [this message]
2023-01-01 17:37 ` [OE-core][kirkstone 01/29] systemd: CVE-2022-45873 deadlock in systemd-coredump via a crash with a long backtrace Steve Sakoman
2023-01-01 17:37 ` [OE-core][kirkstone 02/29] sqlite: fix CVE-2022-46908 safe mode authorizer callback allows disallowed UDFs Steve Sakoman
2023-01-01 17:37 ` [OE-core][kirkstone 03/29] curl: Correct LICENSE from MIT-open-group to curl Steve Sakoman
2023-01-01 17:37 ` [OE-core][kirkstone 04/29] curl: Add patch to fix CVE-2022-43551 Steve Sakoman
2023-01-01 17:37 ` [OE-core][kirkstone 05/29] curl: Add patch to fix CVE-2022-43552 Steve Sakoman
2023-01-01 17:37 ` [OE-core][kirkstone 06/29] libX11: CVE-2022-3554 & CVE-2022-3555 Fix memory leak Steve Sakoman
2023-01-01 17:37 ` [OE-core][kirkstone 07/29] cairo: update patch for CVE-2019-6461 with upstream solution Steve Sakoman
2023-01-01 17:37 ` [OE-core][kirkstone 08/29] binutils : Fix CVE-2022-4285 Steve Sakoman
2023-01-01 17:37 ` [OE-core][kirkstone 09/29] linux-yocto/5.10: update to v5.10.152 Steve Sakoman
2023-01-01 17:37 ` [OE-core][kirkstone 10/29] linux-yocto/5.10: update to v5.10.154 Steve Sakoman
2023-01-01 17:37 ` [OE-core][kirkstone 11/29] linux-yocto/5.10: update to v5.10.160 Steve Sakoman
2023-01-01 17:37 ` [OE-core][kirkstone 12/29] libpng: upgrade 1.6.38 -> 1.6.39 Steve Sakoman
2023-01-01 17:37 ` [OE-core][kirkstone 13/29] webkitgtk: 2.36.7 -> 2.36.8 Steve Sakoman
2023-01-01 17:37 ` [OE-core][kirkstone 14/29] libnewt: update 0.52.21 -> 0.52.23 Steve Sakoman
2023-01-01 17:37 ` [OE-core][kirkstone 15/29] ruby: merge .inc into .bb Steve Sakoman
2023-01-01 17:37 ` [OE-core][kirkstone 16/29] ruby: update 3.1.2 -> 3.1.3 Steve Sakoman
2023-01-01 17:37 ` [OE-core][kirkstone 17/29] tzdata: update 2022d -> 2022g Steve Sakoman
2023-01-01 17:37 ` [OE-core][kirkstone 18/29] gstreamer1.0: upgrade 1.20.4 -> 1.20.5 Steve Sakoman
2023-01-01 17:37 ` [OE-core][kirkstone 19/29] openssh: remove RRECOMMENDS to rng-tools for sshd package Steve Sakoman
2023-01-01 17:37 ` [OE-core][kirkstone 20/29] baremetal-image: Avoid overriding qemu variables from IMAGE_CLASSES Steve Sakoman
2023-01-01 17:37 ` [OE-core][kirkstone 21/29] go-crosssdk: avoid host contamination by GOCACHE Steve Sakoman
2023-01-01 17:37 ` [OE-core][kirkstone 22/29] libepoxy: remove upstreamed patch Steve Sakoman
2023-01-01 17:37 ` [OE-core][kirkstone 23/29] classes/create-spdx: Add SPDX_PRETTY option Steve Sakoman
2023-01-01 17:37 ` [OE-core][kirkstone 24/29] libxml2: fix test data checksums Steve Sakoman
2023-01-01 17:37 ` [OE-core][kirkstone 25/29] kernel.bbclass: remove empty module directories to prevent QA issues Steve Sakoman
2023-01-01 17:37 ` [OE-core][kirkstone 26/29] devtool/upgrade: correctly handle recipes where S is a subdir of upstream tree Steve Sakoman
2023-01-01 17:37 ` [OE-core][kirkstone 27/29] qemuboot.bbclass: make sure runqemu boots bundled initramfs kernel image Steve Sakoman
2023-01-01 17:37 ` [OE-core][kirkstone 28/29] valgrind: skip the boost_thread test on arm Steve Sakoman
2023-01-01 17:37 ` [OE-core][kirkstone 29/29] oeqa/concurrencytest: Add number of failures to summary output Steve Sakoman
-- strict thread matches above, loose matches on Subject: below --
2023-06-28 14:12 [OE-core][kirkstone 00/29] Patch review Steve Sakoman
2023-03-03 16:16 Steve Sakoman
2022-07-29 14:46 Steve Sakoman
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=cover.1672594521.git.steve@sakoman.com \
--to=steve@sakoman.com \
--cc=openembedded-core@lists.openembedded.org \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox