From: Steve Sakoman <steve@sakoman.com>
To: openembedded-core@lists.openembedded.org
Subject: [OE-core][scarthgap 00/21] Patch review
Date: Sat, 1 Jun 2024 05:24:26 -0700 [thread overview]
Message-ID: <cover.1717243719.git.steve@sakoman.com> (raw)
Please review this set of changes for scarthgap and have comments back by
end of day Tuesday, June 4
Passed a-full on autobuilder:
https://autobuilder.yoctoproject.org/typhoon/#/builders/83/builds/6993
with two exceptions, the first a known reproducibility issue also present
on master:
https://bugzilla.yoctoproject.org/show_bug.cgi?id=15491
and the second is a failure on meta-agl-core, which will require an update
to the ptest-runner override in meta-agl once "ptest-runner: Bump to 2.4.4 (95f528c)"
merges.
The following changes since commit 0795169be206f1d4d140fe378e2476a44d0ce02b:
oeqa/selftest/debuginfod: use localpkgfeed to speed server startup (2024-05-19 13:50:01 -0700)
are available in the Git repository at:
https://git.openembedded.org/openembedded-core-contrib stable/scarthgap-nut
https://git.openembedded.org/openembedded-core-contrib/log/?h=stable/scarthgap-nut
Archana Polampalli (5):
ghostscript: fix CVE-2024-33870
ghostscript: fix CVE-2024-33869
ghostscript: fix CVE-2024-33871
ghostscript: fix CVE-2024-29510
xserver-xorg: upgrade 21.1.11 -> 21.1.12
Changqing Li (1):
ptest-runner: Bump to 2.4.4 (95f528c)
Julien Stephan (2):
devtool: standard: update-recipe/finish: fix update localfile in
another layer
oeqa/selftest/devtool: add test for updating local files into another
layer
Khem Raj (3):
llvm: Upgrade to 18.1.4
llvm: Upgrade to 18.1.5
llvm: Switch to using release tarballs
Marek Vasut (1):
gstreamer1.0-plugins-good: Include qttools-native during the build
with qt5 PACKAGECONFIG
Mark Hatle (1):
gcc: Fix for CVE-2024-0151
Peter Marko (2):
ttyrun: define CVE_PRODUCT
update-rc.d: add +git to PV
Philip Lorenz (2):
lib/package_manager/ipk: Do not hardcode payload compression algorithm
ipk: Fix clean up of extracted IPK payload
Rasmus Villemoes (1):
git: set --with-gitconfig=/etc/gitconfig for -native builds
Ricardo Simoes (1):
libusb1: Set CVE_PRODUCT
Soumya Sambu (1):
ncurses: Fix CVE-2023-45918
Yogita Urade (1):
libarchive: upgrade 3.7.2 -> 3.7.4
meta/lib/oe/package_manager/ipk/__init__.py | 14 +-
meta/lib/oeqa/selftest/cases/devtool.py | 20 +-
.../ncurses/files/CVE-2023-45918.patch | 180 ++++++++++
meta/recipes-core/ncurses/ncurses_6.4.bb | 1 +
meta/recipes-core/ttyrun/ttyrun_2.31.0.bb | 2 +
.../update-rc.d/update-rc.d_0.8.bb | 1 +
meta/recipes-devtools/gcc/gcc-13.2.inc | 1 +
.../gcc/gcc/CVE-2024-0151.patch | 315 ++++++++++++++++++
meta/recipes-devtools/git/git_2.44.0.bb | 1 +
.../llvm/{llvm_git.bb => llvm_18.1.5.bb} | 13 +-
.../ghostscript/CVE-2024-29510.patch | 84 +++++
.../ghostscript/CVE-2024-33869-0001.patch | 39 +++
.../ghostscript/CVE-2024-33869-0002.patch | 52 +++
.../ghostscript/CVE-2024-33870.patch | 99 ++++++
.../ghostscript/CVE-2024-33871.patch | 43 +++
.../ghostscript/ghostscript_10.02.1.bb | 5 +
.../libarchive/libarchive/configurehack.patch | 19 +-
...ibarchive_3.7.2.bb => libarchive_3.7.4.bb} | 2 +-
...org_21.1.11.bb => xserver-xorg_21.1.12.bb} | 2 +-
.../gstreamer1.0-plugins-good_1.22.11.bb | 2 +-
meta/recipes-support/libusb/libusb1_1.0.27.bb | 2 +
...-runner_2.4.3.bb => ptest-runner_2.4.4.bb} | 2 +-
scripts/lib/devtool/standard.py | 23 +-
23 files changed, 888 insertions(+), 34 deletions(-)
create mode 100644 meta/recipes-core/ncurses/files/CVE-2023-45918.patch
create mode 100644 meta/recipes-devtools/gcc/gcc/CVE-2024-0151.patch
rename meta/recipes-devtools/llvm/{llvm_git.bb => llvm_18.1.5.bb} (93%)
create mode 100644 meta/recipes-extended/ghostscript/ghostscript/CVE-2024-29510.patch
create mode 100644 meta/recipes-extended/ghostscript/ghostscript/CVE-2024-33869-0001.patch
create mode 100644 meta/recipes-extended/ghostscript/ghostscript/CVE-2024-33869-0002.patch
create mode 100644 meta/recipes-extended/ghostscript/ghostscript/CVE-2024-33870.patch
create mode 100644 meta/recipes-extended/ghostscript/ghostscript/CVE-2024-33871.patch
rename meta/recipes-extended/libarchive/{libarchive_3.7.2.bb => libarchive_3.7.4.bb} (96%)
rename meta/recipes-graphics/xorg-xserver/{xserver-xorg_21.1.11.bb => xserver-xorg_21.1.12.bb} (92%)
rename meta/recipes-support/ptest-runner/{ptest-runner_2.4.3.bb => ptest-runner_2.4.4.bb} (95%)
--
2.34.1
next reply other threads:[~2024-06-01 12:24 UTC|newest]
Thread overview: 25+ messages / expand[flat|nested] mbox.gz Atom feed top
2024-06-01 12:24 Steve Sakoman [this message]
2024-06-01 12:24 ` [OE-core][scarthgap 01/21] ttyrun: define CVE_PRODUCT Steve Sakoman
2024-06-01 12:24 ` [OE-core][scarthgap 02/21] ncurses: Fix CVE-2023-45918 Steve Sakoman
2024-06-01 12:24 ` [OE-core][scarthgap 03/21] libusb1: Set CVE_PRODUCT Steve Sakoman
2024-06-01 12:24 ` [OE-core][scarthgap 04/21] ghostscript: fix CVE-2024-33870 Steve Sakoman
2024-06-01 12:24 ` [OE-core][scarthgap 05/21] ghostscript: fix CVE-2024-33869 Steve Sakoman
2024-06-01 12:24 ` [OE-core][scarthgap 06/21] ghostscript: fix CVE-2024-33871 Steve Sakoman
2024-06-01 12:24 ` [OE-core][scarthgap 07/21] ghostscript: fix CVE-2024-29510 Steve Sakoman
2024-06-01 12:24 ` [OE-core][scarthgap 08/21] gcc: Fix for CVE-2024-0151 Steve Sakoman
2024-06-01 12:24 ` [OE-core][scarthgap 09/21] xserver-xorg: upgrade 21.1.11 -> 21.1.12 Steve Sakoman
2024-06-01 12:24 ` [OE-core][scarthgap 10/21] llvm: Upgrade to 18.1.4 Steve Sakoman
2024-06-01 12:24 ` [OE-core][scarthgap 11/21] llvm: Upgrade to 18.1.5 Steve Sakoman
2024-06-01 12:24 ` [OE-core][scarthgap 12/21] llvm: Switch to using release tarballs Steve Sakoman
2024-06-01 12:24 ` [OE-core][scarthgap 13/21] ptest-runner: Bump to 2.4.4 (95f528c) Steve Sakoman
2024-06-01 12:24 ` [OE-core][scarthgap 14/21] libarchive: upgrade 3.7.2 -> 3.7.4 Steve Sakoman
2024-06-01 12:24 ` [OE-core][scarthgap 15/21] devtool: standard: update-recipe/finish: fix update localfile in another layer Steve Sakoman
2024-06-01 12:24 ` [OE-core][scarthgap 16/21] oeqa/selftest/devtool: add test for updating local files into " Steve Sakoman
2024-06-01 12:24 ` [OE-core][scarthgap 17/21] gstreamer1.0-plugins-good: Include qttools-native during the build with qt5 PACKAGECONFIG Steve Sakoman
2024-06-01 12:24 ` [OE-core][scarthgap 18/21] update-rc.d: add +git to PV Steve Sakoman
2024-06-01 12:24 ` [OE-core][scarthgap 19/21] lib/package_manager/ipk: Do not hardcode payload compression algorithm Steve Sakoman
2024-06-01 12:24 ` [OE-core][scarthgap 20/21] ipk: Fix clean up of extracted IPK payload Steve Sakoman
2024-06-01 12:24 ` [OE-core][scarthgap 21/21] git: set --with-gitconfig=/etc/gitconfig for -native builds Steve Sakoman
-- strict thread matches above, loose matches on Subject: below --
2025-11-22 22:14 [OE-core][scarthgap 00/21] Patch review Steve Sakoman
2024-07-04 12:26 Steve Sakoman
2024-05-20 13:33 Steve Sakoman
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=cover.1717243719.git.steve@sakoman.com \
--to=steve@sakoman.com \
--cc=openembedded-core@lists.openembedded.org \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox