* [OE-core][dunfell 00/16] Pull request (cover letter only)
@ 2020-05-28 3:04 Steve Sakoman
0 siblings, 0 replies; 8+ messages in thread
From: Steve Sakoman @ 2020-05-28 3:04 UTC (permalink / raw)
To: openembedded-core
The following changes since commit 5bfdb6bfbd6f1de10d415228e5a5ebe01a623e2a:
file: add PACKAGECONFIG for auto options (2020-05-14 06:33:16 -1000)
are available in the Git repository at:
git://git.openembedded.org/openembedded-core-contrib stable/dunfell-next
http://cgit.openembedded.org/openembedded-core-contrib/log/?h=stable/dunfell-next
Adrian Bunk (2):
git: Upgrade 2.24.1 -> 2.24.3
wireless-regdb: Upgrade 2019.06.03 -> 2020.04.29
Alexander Kanavin (1):
testresults.json: add duration of the tests as well
Aníbal Limón (3):
recipes-kernel/linux-firmware: Add wlanmdsp.mbn to qcom-modem package
recipes-kernel/linux-firmware: Add adreno-a630 firmware package
linux-firmware: Update to 20200122 -> 20200421
Jan-Simon Moeller (1):
file: add bzip2-replacement-native to DEPENDS to fix sstate issue
Kai Kang (1):
gcr: depends on gnupg-native
Lee Chee Yang (1):
qemu: fix CVE-2020-11869
Marek Vasut (1):
libubootenv: Depend on zlib
Mingli Yu (2):
bison: fix the parallel build
python3-setuptools: add the missing rdepends
Paul Barker (2):
archiver.bbclass: Make do_deploy_archives a recursive dependency
avahi: Don't advertise example services by default
Quentin Schulz (1):
base/insane: Check pkgs lics are subset of recipe lics only once
zhengruoqin (1):
make-mod-scripts: Fix dependence error.
meta/classes/archiver.bbclass | 4 +-
meta/classes/base.bbclass | 13 ---
meta/classes/insane.bbclass | 21 +++-
meta/lib/oeqa/core/runner.py | 6 +-
meta/recipes-bsp/u-boot/libubootenv_0.2.bb | 2 +-
meta/recipes-connectivity/avahi/avahi.inc | 5 +
.../0001-bison-fix-the-parallel-build.patch | 63 ++++++++++++
meta/recipes-devtools/bison/bison_3.5.3.bb | 1 +
meta/recipes-devtools/file/file_5.38.bb | 2 +-
meta/recipes-devtools/git/git_2.24.1.bb | 11 ---
meta/recipes-devtools/git/git_2.24.3.bb | 9 ++
.../python/python-setuptools.inc | 2 +
meta/recipes-devtools/qemu/qemu.inc | 1 +
.../qemu/qemu/CVE-2020-11869.patch | 97 +++++++++++++++++++
meta/recipes-gnome/gcr/gcr_3.34.0.bb | 2 +-
...20200122.bb => linux-firmware_20200421.bb} | 12 ++-
.../make-mod-scripts/make-mod-scripts_1.0.bb | 2 +
....06.03.bb => wireless-regdb_2020.04.29.bb} | 3 +-
18 files changed, 219 insertions(+), 37 deletions(-)
create mode 100644 meta/recipes-devtools/bison/bison/0001-bison-fix-the-parallel-build.patch
delete mode 100644 meta/recipes-devtools/git/git_2.24.1.bb
create mode 100644 meta/recipes-devtools/git/git_2.24.3.bb
create mode 100644 meta/recipes-devtools/qemu/qemu/CVE-2020-11869.patch
rename meta/recipes-kernel/linux-firmware/{linux-firmware_20200122.bb => linux-firmware_20200421.bb} (98%)
rename meta/recipes-kernel/wireless-regdb/{wireless-regdb_2019.06.03.bb => wireless-regdb_2020.04.29.bb} (91%)
--
2.17.1
^ permalink raw reply [flat|nested] 8+ messages in thread
* [OE-core][dunfell 00/16] Pull request (cover letter only)
@ 2020-10-30 3:48 Steve Sakoman
0 siblings, 0 replies; 8+ messages in thread
From: Steve Sakoman @ 2020-10-30 3:48 UTC (permalink / raw)
To: openembedded-core
The following changes since commit 89e6fc44a378cb3489376d7193672cdf94c504b6:
qemu: change TLBs number to 64 in 34Kf mips cpu model (2020-10-21 04:42:42 -1000)
are available in the Git repository at:
git://git.openembedded.org/openembedded-core-contrib stable/dunfell-next
http://cgit.openembedded.org/openembedded-core-contrib/log/?h=stable/dunfell-next
Jose Quaresma (12):
gstreamer1.0: Fix reproducibility issue around libcap
gstreamer1.0: Update 1.16.2 -> Update 1.16.3
gstreamer1.0-plugins-base: Update 1.16.2 -> Update 1.16.3
gstreamer1.0-plugins-good: Update 1.16.2 -> Update 1.16.3
gstreamer1.0-plugins-bad: Update 1.16.2 -> Update 1.16.3
gstreamer1.0-plugins-ugly: Update 1.16.2 -> Update 1.16.3
gstreamer1.0-libav: Update 1.16.2 -> Update 1.16.3
gstreamer1.0-vaapi: Update 1.16.2 -> Update 1.16.3
gstreamer1.0-rtsp-server: Update 1.16.2 -> Update 1.16.3
gstreamer1.0-omx: Update 1.16.2 -> Update 1.16.3
gstreamer1.0-python: Update 1.16.2 -> Update 1.16.3
gst-validate: Update 1.16.2 -> Update 1.16.3
Lee Chee Yang (1):
ffmpeg: fix CVE-2020-12284
Richard Purdie (1):
oeqa: Add sync call to command execution
Ross Burton (2):
gcc: mitigate the Straight-line Speculation attack
glib-2.0: fix parsing of slim encoded tzdata
meta/lib/oeqa/selftest/cases/runcmd.py | 16 +-
meta/lib/oeqa/utils/commands.py | 8 +-
.../glib-2.0/glib-2.0/tzdata-update.patch | 458 ++++++++++++
meta/recipes-core/glib-2.0/glib-2.0_2.62.6.bb | 1 +
meta/recipes-devtools/gcc/gcc-9.3.inc | 3 +
...ight-Line-Speculation-SLS-mitigation.patch | 204 ++++++
...e-SLS-mitigation-for-RET-and-BR-inst.patch | 600 ++++++++++++++++
...h64-Mitigate-SLS-for-BLR-instruction.patch | 659 ++++++++++++++++++
.../ffmpeg/ffmpeg/CVE-2020-12284.patch | 36 +
.../recipes-multimedia/ffmpeg/ffmpeg_4.2.2.bb | 1 +
...idate_1.16.2.bb => gst-validate_1.16.3.bb} | 4 +-
...1.16.2.bb => gstreamer1.0-libav_1.16.3.bb} | 4 +-
...x_1.16.2.bb => gstreamer1.0-omx_1.16.3.bb} | 4 +-
....bb => gstreamer1.0-plugins-bad_1.16.3.bb} | 4 +-
...bb => gstreamer1.0-plugins-base_1.16.3.bb} | 4 +-
...bb => gstreamer1.0-plugins-good_1.16.3.bb} | 4 +-
...bb => gstreamer1.0-plugins-ugly_1.16.3.bb} | 4 +-
...son.build-fix-builds-with-python-3.8.patch | 24 -
....16.2.bb => gstreamer1.0-python_1.16.3.bb} | 8 +-
....bb => gstreamer1.0-rtsp-server_1.16.3.bb} | 4 +-
...1.16.2.bb => gstreamer1.0-vaapi_1.16.3.bb} | 4 +-
.../gstreamer/gstreamer1.0/capfix.patch | 37 -
...er1.0_1.16.2.bb => gstreamer1.0_1.16.3.bb} | 9 +-
23 files changed, 2002 insertions(+), 98 deletions(-)
create mode 100644 meta/recipes-core/glib-2.0/glib-2.0/tzdata-update.patch
create mode 100644 meta/recipes-devtools/gcc/gcc-9.3/0001-aarch64-New-Straight-Line-Speculation-SLS-mitigation.patch
create mode 100644 meta/recipes-devtools/gcc/gcc-9.3/0002-aarch64-Introduce-SLS-mitigation-for-RET-and-BR-inst.patch
create mode 100644 meta/recipes-devtools/gcc/gcc-9.3/0003-aarch64-Mitigate-SLS-for-BLR-instruction.patch
create mode 100644 meta/recipes-multimedia/ffmpeg/ffmpeg/CVE-2020-12284.patch
rename meta/recipes-multimedia/gstreamer/{gst-validate_1.16.2.bb => gst-validate_1.16.3.bb} (87%)
rename meta/recipes-multimedia/gstreamer/{gstreamer1.0-libav_1.16.2.bb => gstreamer1.0-libav_1.16.3.bb} (90%)
rename meta/recipes-multimedia/gstreamer/{gstreamer1.0-omx_1.16.2.bb => gstreamer1.0-omx_1.16.3.bb} (92%)
rename meta/recipes-multimedia/gstreamer/{gstreamer1.0-plugins-bad_1.16.2.bb => gstreamer1.0-plugins-bad_1.16.3.bb} (98%)
rename meta/recipes-multimedia/gstreamer/{gstreamer1.0-plugins-base_1.16.2.bb => gstreamer1.0-plugins-base_1.16.3.bb} (96%)
rename meta/recipes-multimedia/gstreamer/{gstreamer1.0-plugins-good_1.16.2.bb => gstreamer1.0-plugins-good_1.16.3.bb} (96%)
rename meta/recipes-multimedia/gstreamer/{gstreamer1.0-plugins-ugly_1.16.2.bb => gstreamer1.0-plugins-ugly_1.16.3.bb} (90%)
delete mode 100644 meta/recipes-multimedia/gstreamer/gstreamer1.0-python/0001-meson.build-fix-builds-with-python-3.8.patch
rename meta/recipes-multimedia/gstreamer/{gstreamer1.0-python_1.16.2.bb => gstreamer1.0-python_1.16.3.bb} (80%)
rename meta/recipes-multimedia/gstreamer/{gstreamer1.0-rtsp-server_1.16.2.bb => gstreamer1.0-rtsp-server_1.16.3.bb} (86%)
rename meta/recipes-multimedia/gstreamer/{gstreamer1.0-vaapi_1.16.2.bb => gstreamer1.0-vaapi_1.16.3.bb} (93%)
delete mode 100644 meta/recipes-multimedia/gstreamer/gstreamer1.0/capfix.patch
rename meta/recipes-multimedia/gstreamer/{gstreamer1.0_1.16.2.bb => gstreamer1.0_1.16.3.bb} (90%)
--
2.17.1
^ permalink raw reply [flat|nested] 8+ messages in thread
* [OE-core][dunfell 00/16] Pull request (cover letter only)
@ 2020-11-17 23:44 Steve Sakoman
0 siblings, 0 replies; 8+ messages in thread
From: Steve Sakoman @ 2020-11-17 23:44 UTC (permalink / raw)
To: openembedded-core
The following changes since commit 4f395ad49ef9035954d0fda7b7df14dea18b49a0:
grub: clean up CVE patches (2020-11-08 16:51:24 -1000)
are available in the Git repository at:
git://git.openembedded.org/openembedded-core-contrib stable/dunfell-next
http://cgit.openembedded.org/openembedded-core-contrib/log/?h=stable/dunfell-next
Alexander Kanavin (1):
clutter-gst-3.0: do not call out to host gstreamer plugin scanner
Denys Zagorui (1):
binutils: reproducibility: reuse debug-prefix-map for stabs
Diego Santa Cruz (1):
freetype: fix CVE-2020-15999, backport from 2.10.4
Gratian Crisan (1):
kernel-module-split.bbclass: identify kernel modconf files as
configuration files
Jose Quaresma (1):
gstreamer1.0: warn the user when something is wrong with GstBufferPool
Konrad Weihmann (3):
oeqa/core/context: expose results as variable
oeqa/core/context: initialize _run_end_time
testimage: print results for interrupted runs
Nathan Rossi (1):
diffstat: add nativesdk to BBCLASSEXTEND
Ricardo Salveti (1):
dosfstools: add mkfs.vfat to ALTERNATIVE
Richard Purdie (3):
ptest-runner: Fix license as it contains 'or later' clause
libdnf: Fix license as it contains 'or later' clause
alsa-utils: Fix license to GPLv2 only
Ross Burton (1):
syslinux: add link to upstream discussion in patch
Steve Sakoman (1):
openssh: whitelist CVE-2014-9278
akash hadke (1):
systemd: udev SECLABEL{selinux} crash fix
meta/classes/kernel-module-split.bbclass | 1 +
meta/classes/testimage.bbclass | 19 ++++---
meta/lib/oeqa/core/context.py | 4 ++
.../openssh/openssh_8.2p1.bb | 4 ++
...temd-udev-seclabel-options-crash-fix.patch | 30 +++++++++++
meta/recipes-core/systemd/systemd_244.3.bb | 1 +
.../binutils/binutils-2.34.inc | 1 +
...oducibility-for-stabs-debugging-data.patch | 32 ++++++++++++
.../diffstat/diffstat_1.63.bb | 2 +
.../dosfstools/dosfstools_4.1.bb | 6 ++-
meta/recipes-devtools/libdnf/libdnf_0.28.1.bb | 2 +-
...nux-syslinux-support-ext2-3-4-device.patch | 2 +-
.../clutter/clutter-gst-3.0.inc | 2 +
...-sfnt-Fix-heap-buffer-overflow-59308.patch | 51 +++++++++++++++++++
.../freetype/freetype_2.10.1.bb | 1 +
.../alsa/alsa-utils_1.2.1.bb | 3 +-
...size-in-reset-when-maxsize-is-larger.patch | 49 ++++++++++++++++++
.../gstreamer/gstreamer1.0_1.16.3.bb | 1 +
.../ptest-runner/ptest-runner_2.3.2.bb | 2 +-
19 files changed, 200 insertions(+), 13 deletions(-)
create mode 100644 meta/recipes-core/systemd/systemd/systemd-udev-seclabel-options-crash-fix.patch
create mode 100644 meta/recipes-devtools/binutils/binutils/0001-gas-improve-reproducibility-for-stabs-debugging-data.patch
create mode 100644 meta/recipes-graphics/freetype/freetype/0001-sfnt-Fix-heap-buffer-overflow-59308.patch
create mode 100644 meta/recipes-multimedia/gstreamer/gstreamer1.0/0005-bufferpool-only-resize-in-reset-when-maxsize-is-larger.patch
--
2.17.1
^ permalink raw reply [flat|nested] 8+ messages in thread
* [OE-core][dunfell 00/16] Pull request (cover letter only)
@ 2020-12-03 23:46 Steve Sakoman
0 siblings, 0 replies; 8+ messages in thread
From: Steve Sakoman @ 2020-12-03 23:46 UTC (permalink / raw)
To: openembedded-core
The following changes since commit b885888df67eb5cdb3b82f4f0a07369a449e223b:
build-appliance-image: Update to dunfell head revision (2020-11-25 23:25:31 +0000)
are available in the Git repository at:
git://git.openembedded.org/openembedded-core-contrib stable/dunfell-next
http://cgit.openembedded.org/openembedded-core-contrib/log/?h=stable/dunfell-next
Anuj Mittal (1):
distutils-common-base: fix LINKSHARED expansion
Bruce Ashfield (2):
kernel: provide module.lds for out of tree builds in v5.10+
kernel: relocate copy of module.lds to module compilation task
Fedor Ross (2):
sysvinit: remove bashism to be compatible with dash
eudev: remove bashism to be compatible with dash
Loic Domaigne (1):
roofs_*.bbclass: fix missing vardeps for do_rootfs
Max Krummenacher (1):
linux-firmware: rdepend on license for all nvidia packages
Richard Purdie (2):
fs-perms: Ensure /usr/src/debug/ file modes are correct
e2fsprogs: Fix a ptest permissions determinism issue
Ross Burton (4):
cve-check: show real PN/PV
python3: add CVE-2007-4559 to whitelist
gstreamer1.0-rtsp-server: set CVE_PRODUCT
gstreamer1.0-plugins-base: set CVE_PRODUCT
Steve Sakoman (1):
sqlite3: add CVE-2015-3717 to whitelist
Vyacheslav Yurkov (1):
license_image.bbclass: use canonical name for license files
Wonmin Jung (1):
kernel: Set proper LD in KERNEL_KCONFIG_COMMAND
meta/classes/cve-check.bbclass | 9 ++++++---
meta/classes/distutils-common-base.bbclass | 2 +-
meta/classes/kernel.bbclass | 6 +++++-
meta/classes/license_image.bbclass | 3 ++-
meta/classes/package.bbclass | 2 +-
meta/classes/rootfs_deb.bbclass | 2 +-
meta/classes/rootfs_ipk.bbclass | 2 +-
meta/classes/rootfs_rpm.bbclass | 2 +-
meta/conf/abi_version.conf | 2 +-
meta/files/fs-perms-persistent-log.txt | 2 +-
meta/files/fs-perms.txt | 2 +-
meta/recipes-core/sysvinit/sysvinit/rc | 2 +-
meta/recipes-core/udev/eudev/init | 2 +-
meta/recipes-devtools/e2fsprogs/e2fsprogs_1.45.4.bb | 2 ++
meta/recipes-devtools/python/python3_3.8.2.bb | 2 ++
.../linux-firmware/linux-firmware_20201022.bb | 1 +
meta/recipes-kernel/linux/kernel-devsrc.bb | 6 ++++++
.../gstreamer/gstreamer1.0-plugins-base_1.16.3.bb | 2 ++
.../gstreamer/gstreamer1.0-rtsp-server_1.16.3.bb | 2 ++
meta/recipes-support/sqlite/sqlite3_3.31.1.bb | 2 ++
20 files changed, 40 insertions(+), 15 deletions(-)
--
2.17.1
^ permalink raw reply [flat|nested] 8+ messages in thread
* [OE-core][dunfell 00/16] Pull request (cover letter only)
@ 2021-08-17 2:53 Steve Sakoman
0 siblings, 0 replies; 8+ messages in thread
From: Steve Sakoman @ 2021-08-17 2:53 UTC (permalink / raw)
To: openembedded-core
The following changes since commit bae9c6482271d53dc28d3c801fba467e268003bd:
sstate: Fix rebuilds when changing layer config (2021-08-04 09:57:23 -1000)
are available in the Git repository at:
git://git.openembedded.org/openembedded-core-contrib stable/dunfell-next
http://cgit.openembedded.org/openembedded-core-contrib/log/?h=stable/dunfell-next
Jose Quaresma (1):
sstate.bbclass: fix error handling when sstate mirrors is ro
Lee Chee Yang (2):
aspell: fix CVE-2019-25051
libsolv: fix CVE-2021-3200
Matthias Klein (1):
runqemu: Fix typo in error message
Michael Opdenacker (4):
cve-check: fix comments
cve-check: update link to NVD website for CVE details
cve-check: improve comment about CVE patch file names
cve-check: remove deprecated CVE_CHECK_CVE_WHITELIST
Minjae Kim (1):
ruby: 2.7.3 -> 2.7.4
Paul Barker (1):
kernel-yocto: Simplify no git repo case in do_kernel_checkout
Ralph Siemsen (1):
glibc: Document and whitelist CVE-2021-35942
Ranjitsinh Rathod (1):
systemd: Add fix for CVE-2020-13529 and CVE-2021-33910
Richard Purdie (1):
license: Exclude COPYING.MIT from pseudo
Ross Burton (2):
e2fsprogs: ensure small images have 256-byte inodes
wic: don't forcibly pass -T default
akuster (1):
cve-check: add include/exclude layers
meta/classes/cve-check.bbclass | 37 +++++--
meta/classes/kernel-yocto.bbclass | 30 +++---
meta/classes/license.bbclass | 4 +-
meta/classes/sstate.bbclass | 2 +
meta/recipes-core/glibc/glibc_2.31.bb | 10 ++
.../systemd/systemd/CVE-2020-13529.patch | 42 ++++++++
.../systemd/systemd/CVE-2021-33910.patch | 67 ++++++++++++
meta/recipes-core/systemd/systemd_244.5.bb | 2 +
.../e2fsprogs/big-inodes-for-small-fs.patch | 22 ++++
.../e2fsprogs/e2fsprogs_1.45.4.bb | 1 +
.../ruby/{ruby_2.7.3.bb => ruby_2.7.4.bb} | 4 +-
.../libsolv/files/CVE-2021-3200.patch | 67 ++++++++++++
.../libsolv/libsolv_0.7.10.bb | 1 +
meta/recipes-support/aspell/aspell_0.60.8.bb | 4 +-
.../aspell/files/CVE-2019-25051.patch | 101 ++++++++++++++++++
scripts/lib/wic/canned-wks/common.wks.inc | 2 +-
scripts/lib/wic/canned-wks/directdisk-gpt.wks | 2 +-
scripts/lib/wic/canned-wks/mkefidisk.wks | 2 +-
scripts/runqemu | 2 +-
19 files changed, 368 insertions(+), 34 deletions(-)
create mode 100644 meta/recipes-core/systemd/systemd/CVE-2020-13529.patch
create mode 100644 meta/recipes-core/systemd/systemd/CVE-2021-33910.patch
create mode 100644 meta/recipes-devtools/e2fsprogs/e2fsprogs/big-inodes-for-small-fs.patch
rename meta/recipes-devtools/ruby/{ruby_2.7.3.bb => ruby_2.7.4.bb} (95%)
create mode 100644 meta/recipes-extended/libsolv/files/CVE-2021-3200.patch
create mode 100644 meta/recipes-support/aspell/files/CVE-2019-25051.patch
--
2.25.1
^ permalink raw reply [flat|nested] 8+ messages in thread
* [OE-core][dunfell 00/16] Pull request (cover letter only)
@ 2022-10-26 23:03 Steve Sakoman
0 siblings, 0 replies; 8+ messages in thread
From: Steve Sakoman @ 2022-10-26 23:03 UTC (permalink / raw)
To: openembedded-core
The following changes since commit dbad46a0079843b380cf3dda6008b12ab9526688:
build-appliance-image: Update to dunfell head revision (2022-10-06 23:23:20 +0100)
are available in the Git repository at:
https://git.openembedded.org/openembedded-core-contrib stable/dunfell-next
http://cgit.openembedded.org/openembedded-core-contrib/log/?h=stable/dunfell-next
Bruce Ashfield (2):
linux-yocto/5.4: update to v5.4.216
linux-yocto/5.4: update to v5.4.219
Hitendra Prajapati (2):
dhcp: Fix CVE-2022-2928 & CVE-2022-2929
qemu: CVE-2021-3750 hcd-ehci: DMA reentrancy issue leads to
use-after-free
John Edward Broadbent (1):
externalsrc: git submodule--helper list unsupported
Michael Halstead (1):
uninative: Upgrade to 3.7 to work with glibc 2.36
Omkar (1):
dbus: upgrade 1.12.22 -> 1.12.24
Paul Eggleton (1):
classes/kernel-fitimage: add ability to add additional signing options
Richard Purdie (1):
qemu: Avoid accidental librdmacm linkage
Steve Sakoman (5):
selftest: skip virgl test on ubuntu 22.04
qemu: Avoid accidental libvdeplug linkage
qemu: Add PACKAGECONFIG for rbd
devtool: add HostKeyAlgorithms option to ssh and scp commands
selftest: skip virgl test on all Alma Linux
Tim Orling (1):
python3: upgrade 3.8.13 -> 3.8.14
wangmy (1):
dbus: upgrade 1.12.20 -> 1.12.22
meta/classes/externalsrc.bbclass | 19 +-
meta/classes/kernel-fitimage.bbclass | 6 +-
meta/conf/distro/include/yocto-uninative.inc | 10 +-
meta/lib/oeqa/selftest/cases/devtool.py | 2 +-
meta/lib/oeqa/selftest/cases/runtime_test.py | 6 +-
.../dhcp/dhcp/CVE-2022-2928.patch | 120 ++++++++++++
.../dhcp/dhcp/CVE-2022-2929.patch | 40 ++++
meta/recipes-connectivity/dhcp/dhcp_4.4.2.bb | 2 +
...s-test_1.12.20.bb => dbus-test_1.12.24.bb} | 0
meta/recipes-core/dbus/dbus.inc | 3 +-
.../dbus/{dbus_1.12.20.bb => dbus_1.12.24.bb} | 0
.../python/python3/CVE-2021-28861.patch | 135 -------------
.../{python3_3.8.13.bb => python3_3.8.14.bb} | 5 +-
meta/recipes-devtools/qemu/qemu.inc | 4 +
.../qemu/qemu/CVE-2021-3750.patch | 180 ++++++++++++++++++
.../linux/linux-yocto-rt_5.4.bb | 6 +-
.../linux/linux-yocto-tiny_5.4.bb | 8 +-
meta/recipes-kernel/linux/linux-yocto_5.4.bb | 22 +--
scripts/lib/devtool/deploy.py | 8 +-
19 files changed, 396 insertions(+), 180 deletions(-)
create mode 100644 meta/recipes-connectivity/dhcp/dhcp/CVE-2022-2928.patch
create mode 100644 meta/recipes-connectivity/dhcp/dhcp/CVE-2022-2929.patch
rename meta/recipes-core/dbus/{dbus-test_1.12.20.bb => dbus-test_1.12.24.bb} (100%)
rename meta/recipes-core/dbus/{dbus_1.12.20.bb => dbus_1.12.24.bb} (100%)
delete mode 100644 meta/recipes-devtools/python/python3/CVE-2021-28861.patch
rename meta/recipes-devtools/python/{python3_3.8.13.bb => python3_3.8.14.bb} (98%)
create mode 100644 meta/recipes-devtools/qemu/qemu/CVE-2021-3750.patch
--
2.25.1
^ permalink raw reply [flat|nested] 8+ messages in thread
* [OE-core][dunfell 00/16] Pull request (cover letter only)
@ 2023-01-28 2:22 Steve Sakoman
0 siblings, 0 replies; 8+ messages in thread
From: Steve Sakoman @ 2023-01-28 2:22 UTC (permalink / raw)
To: openembedded-core
The following changes since commit db81e3c7e7f1d4d9eba52ac35ac97627d0240b63:
build-appliance-image: Update to dunfell head revision (2023-01-13 18:11:40 +0000)
are available in the Git repository at:
https://git.openembedded.org/openembedded-core-contrib stable/dunfell-next
http://cgit.openembedded.org/openembedded-core-contrib/log/?h=stable/dunfell-next
Alexander Kanavin (2):
linux-firmware: upgrade 20221109 -> 20221214
selftest/virgl: use pkg-config from the host
Benoît Mauduit (1):
lib/oe/reproducible: Use git log without gpg signature
Bhabu Bindu (1):
ffmpeg: Fix CVE-2022-3109
Hitendra Prajapati (2):
QEMU: CVE-2022-4144 QXL: qxl_phys2virt unsafe address translation can
lead to out-of-bounds read
xserver-xorg: Fix Multiple CVEs
Jan Kircher (1):
toolchain-scripts: compatibility with unbound variable protection
Jermain Horsman (1):
cve-check: write the cve manifest to IMGDEPLOYDIR
Marta Rybczynska (1):
cve-update-db-native: avoid incomplete updates
Niko Mauno (1):
systemd: Consider PACKAGECONFIG in RRECOMMENDS
Quentin Schulz (1):
cairo: fix CVE patches assigned wrong CVE number
Randy MacLeod (1):
vim: upgrade 9.0.0947 -> 9.0.1211
Ross Burton (2):
cve-update-db-native: add more logging when fetching
cve-update-db-native: show IP on failure
Steve Sakoman (1):
python3: fix packaging of Windows distutils installer stubs
jan (1):
cve-update-db-native: Allow to overrule the URL in a bbappend.
meta/classes/cve-check.bbclass | 6 +-
meta/classes/toolchain-scripts.bbclass | 2 +-
meta/lib/oe/reproducible.py | 3 +-
meta/lib/oeqa/selftest/cases/runtime_test.py | 2 +-
.../recipes-core/meta/cve-update-db-native.bb | 97 ++++++++++++-----
meta/recipes-core/systemd/systemd_244.5.bb | 4 +-
.../python/python3/python3-manifest.json | 4 +-
meta/recipes-devtools/qemu/qemu.inc | 1 +
.../qemu/qemu/CVE-2022-4144.patch | 103 ++++++++++++++++++
.../cairo/cairo/CVE-2019-6461.patch | 46 +++-----
.../cairo/cairo/CVE-2019-6462.patch | 46 +++++---
.../xserver-xorg/CVE-2022-4283.patch | 39 +++++++
.../xserver-xorg/CVE-2022-46340.patch | 55 ++++++++++
.../xserver-xorg/CVE-2022-46341.patch | 86 +++++++++++++++
.../xserver-xorg/CVE-2022-46342.patch | 78 +++++++++++++
.../xserver-xorg/CVE-2022-46343.patch | 51 +++++++++
.../xserver-xorg/CVE-2022-46344.patch | 75 +++++++++++++
.../xorg-xserver/xserver-xorg_1.20.14.bb | 8 +-
...20221109.bb => linux-firmware_20221214.bb} | 4 +-
.../ffmpeg/ffmpeg/CVE-2022-3109.patch | 41 +++++++
.../recipes-multimedia/ffmpeg/ffmpeg_4.2.2.bb | 1 +
meta/recipes-support/vim/vim.inc | 4 +-
22 files changed, 670 insertions(+), 86 deletions(-)
create mode 100644 meta/recipes-devtools/qemu/qemu/CVE-2022-4144.patch
create mode 100644 meta/recipes-graphics/xorg-xserver/xserver-xorg/CVE-2022-4283.patch
create mode 100644 meta/recipes-graphics/xorg-xserver/xserver-xorg/CVE-2022-46340.patch
create mode 100644 meta/recipes-graphics/xorg-xserver/xserver-xorg/CVE-2022-46341.patch
create mode 100644 meta/recipes-graphics/xorg-xserver/xserver-xorg/CVE-2022-46342.patch
create mode 100644 meta/recipes-graphics/xorg-xserver/xserver-xorg/CVE-2022-46343.patch
create mode 100644 meta/recipes-graphics/xorg-xserver/xserver-xorg/CVE-2022-46344.patch
rename meta/recipes-kernel/linux-firmware/{linux-firmware_20221109.bb => linux-firmware_20221214.bb} (99%)
create mode 100644 meta/recipes-multimedia/ffmpeg/ffmpeg/CVE-2022-3109.patch
--
2.25.1
^ permalink raw reply [flat|nested] 8+ messages in thread
* [OE-core][dunfell 00/16] Pull request (cover letter only)
@ 2023-02-23 14:13 Steve Sakoman
0 siblings, 0 replies; 8+ messages in thread
From: Steve Sakoman @ 2023-02-23 14:13 UTC (permalink / raw)
To: openembedded-core
The following changes since commit daaee6fcb0d201f041678af433d8e1cd6f924d09:
build-appliance-image: Update to dunfell head revision (2023-02-13 07:48:21 +0000)
are available in the Git repository at:
https://git.openembedded.org/openembedded-core-contrib stable/dunfell-next
http://cgit.openembedded.org/openembedded-core-contrib/log/?h=stable/dunfell-next
Alexander Kanavin (1):
oeqa/qemurunner: do not use Popen.poll() when terminating runqemu with
a signal
Antonin Godard (2):
busybox: always start do_compile with orig config files
busybox: rm temporary files if do_compile was interrupted
Hitendra Prajapati (1):
git: CVE-2022-23521 gitattributes parsing integer overflow
Martin Jansa (1):
meta: remove True option to getVar and getVarFlag calls (again)
Mikko Rapeli (1):
oeqa context.py: fix --target-ip comment to include ssh port number
Omkar Patil (1):
sudo: Fix CVE-2023-22809
Pawel Zalewski (1):
classes/fs-uuid: Fix command output decoding issue
Richard Purdie (3):
nativesdk: Handle chown/chgrp calls in nativesdk do_install tasks
make-mod-scripts: Ensure kernel build output is deterministic
libc-locale: Fix on target locale generation
Ross Burton (3):
quilt: fix intermittent failure in faildiff.test
quilt: use upstreamed faildiff.test fix
git: ignore CVE-2022-41953
Steve Sakoman (1):
qemu: Fix slirp determinism issue
Vivek Kumbhar (1):
qemu: fix CVE-2021-3929 nvme DMA reentrancy issue leads to
use-after-free
meta/classes/fs-uuid.bbclass | 2 +-
meta/classes/image.bbclass | 2 +-
meta/classes/libc-package.bbclass | 1 +
meta/classes/license_image.bbclass | 2 +-
meta/classes/nativesdk.bbclass | 2 +
meta/lib/oeqa/runtime/context.py | 4 +-
meta/lib/oeqa/utils/qemurunner.py | 11 +-
meta/recipes-core/busybox/busybox.inc | 27 +-
.../git/files/CVE-2022-23521.patch | 367 ++++++++++++++++++
meta/recipes-devtools/git/git.inc | 4 +-
meta/recipes-devtools/go/go_1.14.bb | 4 +-
.../qemu/qemu-system-native_4.2.0.bb | 2 +-
meta/recipes-devtools/qemu/qemu.inc | 3 +
.../qemu/qemu/CVE-2021-3929.patch | 78 ++++
meta/recipes-devtools/qemu/qemu_4.2.0.bb | 4 +-
meta/recipes-devtools/quilt/quilt.inc | 1 +
.../quilt/quilt/faildiff-order.patch | 41 ++
.../sudo/files/CVE-2023-22809.patch | 113 ++++++
meta/recipes-extended/sudo/sudo_1.8.32.bb | 1 +
.../make-mod-scripts/make-mod-scripts_1.0.bb | 2 +-
scripts/lib/devtool/menuconfig.py | 2 +-
scripts/nativesdk-intercept/chgrp | 27 ++
scripts/nativesdk-intercept/chown | 27 ++
23 files changed, 702 insertions(+), 25 deletions(-)
create mode 100644 meta/recipes-devtools/git/files/CVE-2022-23521.patch
create mode 100644 meta/recipes-devtools/qemu/qemu/CVE-2021-3929.patch
create mode 100644 meta/recipes-devtools/quilt/quilt/faildiff-order.patch
create mode 100644 meta/recipes-extended/sudo/files/CVE-2023-22809.patch
create mode 100755 scripts/nativesdk-intercept/chgrp
create mode 100755 scripts/nativesdk-intercept/chown
--
2.34.1
^ permalink raw reply [flat|nested] 8+ messages in thread
end of thread, other threads:[~2023-02-23 14:13 UTC | newest]
Thread overview: 8+ messages (download: mbox.gz follow: Atom feed
-- links below jump to the message on this page --
2023-01-28 2:22 [OE-core][dunfell 00/16] Pull request (cover letter only) Steve Sakoman
-- strict thread matches above, loose matches on Subject: below --
2023-02-23 14:13 Steve Sakoman
2022-10-26 23:03 Steve Sakoman
2021-08-17 2:53 Steve Sakoman
2020-12-03 23:46 Steve Sakoman
2020-11-17 23:44 Steve Sakoman
2020-10-30 3:48 Steve Sakoman
2020-05-28 3:04 Steve Sakoman
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox