From: Steve Sakoman <steve@sakoman.com>
To: openembedded-core@lists.openembedded.org
Subject: [OE-core][kirkstone 00/19] Patch review
Date: Tue, 29 Oct 2024 11:59:33 -0700 [thread overview]
Message-ID: <cover.1730228268.git.steve@sakoman.com> (raw)
Please review this set of changes for kirkstone and have comments back by
end of day Thursday, October 31
Passed a-full on autobuilder:
https://valkyrie.yoctoproject.org/#/builders/29/builds/362
The following changes since commit 983e3efb51ab22f1fa5f90cbbfba2d701aa425fc:
kmscube: create_framebuffer: backport modifier fix (2024-10-16 06:55:13 -0700)
are available in the Git repository at:
https://git.openembedded.org/openembedded-core-contrib stable/kirkstone-nut
https://git.openembedded.org/openembedded-core-contrib/log/?h=stable/kirkstone-nut
Antoine Lubineau (1):
cve-check: add CVSS vector string to CVE database and reports
Ashish Sharma (1):
ghostscript: Backport CVE-2024-29508
Eilís 'pidge' Ní Fhlannagáin (1):
nativesdk-intercept: Fix bad intercept chgrp/chown logic
Khem Raj (3):
zip: Make configure checks to be more robust
zip: Fix build with gcc-14
util-linux: Define pidfd_* function signatures
Martin Jansa (3):
vala: add -Wno-error=incompatible-pointer-types work around
libffi: backport a fix to build libffi-native with gcc-14
at-spi2-core: backport a patch to fix build with gcc-14 on host
Peter Marko (3):
openssl: patch CVE-2024-9143
python3: ignore fixed CVEs
cve-check: add support for cvss v4.0
Rohini Sangam (1):
vim: Upgrade 9.1.0698 -> 9.1.0764
Siddharth Doshi (1):
vim: Upgrade 9.1.0682 -> 9.1.0698
Steve Sakoman (1):
bmap-tools: update HOMEPAGE and SRC_URI
Wang Mingyu (1):
orc: upgrade 0.4.39 -> 0.4.40
Yogita Urade (1):
qemu: fix CVE-2023-3019
Zoltan Boszormenyi (1):
cracklib: Modify patch to compile with GCC 14
baruch@tkos.co.il (1):
overlayfs-etc: add option to skip creation of mount dirs
meta/classes/cve-check.bbclass | 12 +-
meta/classes/overlayfs-etc.bbclass | 5 +-
meta/files/overlayfs-etc-preinit.sh.in | 16 +-
.../openssl/openssl/CVE-2024-9143.patch | 202 ++++++
.../openssl/openssl_3.0.15.bb | 1 +
.../meta/cve-update-nvd2-native.bb | 19 +-
meta/recipes-core/util-linux/util-linux.inc | 1 +
.../0001-check-for-sys-pidfd.h.patch | 50 ++
.../orc/{orc_0.4.39.bb => orc_0.4.40.bb} | 2 +-
.../python/python3_3.10.15.bb | 2 +
meta/recipes-devtools/qemu/qemu.inc | 18 +-
.../qemu/qemu/CVE-2023-3019-0001.patch | 622 ++++++++++++++++++
.../qemu/qemu/CVE-2023-3019-0002.patch | 91 +++
meta/recipes-devtools/vala/vala.inc | 4 +
...port-dictionary-byte-order-dependent.patch | 2 +-
.../ghostscript/CVE-2024-29508-1.patch | 308 +++++++++
.../ghostscript/CVE-2024-29508-2.patch | 29 +
.../ghostscript/ghostscript_9.55.0.bb | 2 +
...e-dirent.h-for-closedir-opendir-APIs.patch | 45 ++
...y-correct-function-signatures-and-de.patch | 134 ++++
meta/recipes-extended/zip/zip_3.0.bb | 2 +
.../0001-Fix-function-prototype.patch | 27 +
.../atk/at-spi2-core_2.42.0.bb | 1 +
.../bmap-tools/bmap-tools_git.bb | 4 +-
...ward-declare-open_temp_exec_file-764.patch | 47 ++
meta/recipes-support/libffi/libffi_3.4.4.bb | 1 +
meta/recipes-support/vim/vim.inc | 4 +-
scripts/nativesdk-intercept/chgrp | 5 +-
scripts/nativesdk-intercept/chown | 5 +-
29 files changed, 1630 insertions(+), 31 deletions(-)
create mode 100755 meta/recipes-connectivity/openssl/openssl/CVE-2024-9143.patch
create mode 100644 meta/recipes-core/util-linux/util-linux/0001-check-for-sys-pidfd.h.patch
rename meta/recipes-devtools/orc/{orc_0.4.39.bb => orc_0.4.40.bb} (92%)
create mode 100644 meta/recipes-devtools/qemu/qemu/CVE-2023-3019-0001.patch
create mode 100644 meta/recipes-devtools/qemu/qemu/CVE-2023-3019-0002.patch
create mode 100644 meta/recipes-extended/ghostscript/ghostscript/CVE-2024-29508-1.patch
create mode 100644 meta/recipes-extended/ghostscript/ghostscript/CVE-2024-29508-2.patch
create mode 100644 meta/recipes-extended/zip/zip-3.0/0001-configure-Include-dirent.h-for-closedir-opendir-APIs.patch
create mode 100644 meta/recipes-extended/zip/zip-3.0/0001-configure-Specify-correct-function-signatures-and-de.patch
create mode 100644 meta/recipes-support/atk/at-spi2-core/0001-Fix-function-prototype.patch
create mode 100644 meta/recipes-support/libffi/libffi/0001-Forward-declare-open_temp_exec_file-764.patch
--
2.34.1
next reply other threads:[~2024-10-29 19:00 UTC|newest]
Thread overview: 26+ messages / expand[flat|nested] mbox.gz Atom feed top
2024-10-29 18:59 Steve Sakoman [this message]
2024-10-29 18:59 ` [OE-core][kirkstone 01/19] ghostscript: Backport CVE-2024-29508 Steve Sakoman
2024-10-29 18:59 ` [OE-core][kirkstone 02/19] openssl: patch CVE-2024-9143 Steve Sakoman
2024-10-29 18:59 ` [OE-core][kirkstone 03/19] qemu: fix CVE-2023-3019 Steve Sakoman
2024-10-29 18:59 ` [OE-core][kirkstone 04/19] python3: ignore fixed CVEs Steve Sakoman
2024-10-29 18:59 ` [OE-core][kirkstone 05/19] cve-check: add CVSS vector string to CVE database and reports Steve Sakoman
2024-10-29 18:59 ` [OE-core][kirkstone 06/19] cve-check: add support for cvss v4.0 Steve Sakoman
2024-10-29 18:59 ` [OE-core][kirkstone 07/19] vim: Upgrade 9.1.0682 -> 9.1.0698 Steve Sakoman
2024-10-29 18:59 ` [OE-core][kirkstone 08/19] vim: Upgrade 9.1.0698 -> 9.1.0764 Steve Sakoman
2024-10-29 18:59 ` [OE-core][kirkstone 09/19] orc: upgrade 0.4.39 -> 0.4.40 Steve Sakoman
2024-10-29 18:59 ` [OE-core][kirkstone 10/19] overlayfs-etc: add option to skip creation of mount dirs Steve Sakoman
2024-10-29 18:59 ` [OE-core][kirkstone 11/19] bmap-tools: update HOMEPAGE and SRC_URI Steve Sakoman
2024-10-29 18:59 ` [OE-core][kirkstone 12/19] nativesdk-intercept: Fix bad intercept chgrp/chown logic Steve Sakoman
2024-10-29 18:59 ` [OE-core][kirkstone 13/19] zip: Make configure checks to be more robust Steve Sakoman
2024-10-29 18:59 ` [OE-core][kirkstone 14/19] zip: Fix build with gcc-14 Steve Sakoman
2024-10-29 18:59 ` [OE-core][kirkstone 15/19] vala: add -Wno-error=incompatible-pointer-types work around Steve Sakoman
2024-10-29 18:59 ` [OE-core][kirkstone 16/19] cracklib: Modify patch to compile with GCC 14 Steve Sakoman
2024-10-29 18:59 ` [OE-core][kirkstone 17/19] libffi: backport a fix to build libffi-native with gcc-14 Steve Sakoman
2024-10-29 18:59 ` [OE-core][kirkstone 18/19] at-spi2-core: backport a patch to fix build with gcc-14 on host Steve Sakoman
2024-10-29 18:59 ` [OE-core][kirkstone 19/19] util-linux: Define pidfd_* function signatures Steve Sakoman
-- strict thread matches above, loose matches on Subject: below --
2025-01-07 18:08 [OE-core][kirkstone 00/19] Patch review Steve Sakoman
2024-11-22 21:26 Steve Sakoman
2024-11-13 3:15 Steve Sakoman
2022-12-18 16:12 Steve Sakoman
2022-08-31 14:39 Steve Sakoman
2022-05-25 14:29 Steve Sakoman
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=cover.1730228268.git.steve@sakoman.com \
--to=steve@sakoman.com \
--cc=openembedded-core@lists.openembedded.org \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox