From: Steve Sakoman <steve@sakoman.com>
To: openembedded-core@lists.openembedded.org
Subject: [OE-core][kirkstone 00/19] Patch review
Date: Fri, 22 Nov 2024 13:26:19 -0800 [thread overview]
Message-ID: <cover.1732310669.git.steve@sakoman.com> (raw)
Please review this set of changes for kirkstone and have comments back by
end of day Tuesday, November 26
Passed a-full on autobuilder:
https://valkyrie.yoctoproject.org/#/builders/29/builds/505
The following changes since commit fb45c5cf8c2b663af293acb069d446610f77ff1a:
build-appliance-image: Update to kirkstone head revision (2024-11-15 12:18:46 -0800)
are available in the Git repository at:
https://git.openembedded.org/openembedded-core-contrib stable/kirkstone-nut
https://git.openembedded.org/openembedded-core-contrib/log/?h=stable/kirkstone-nut
Aleksandar Nikolic (1):
scripts/install-buildtools: Update to 4.0.22
Archana Polampalli (6):
ffmpeg: fix CVE-2024-32230
ffmpeg: fix CVE-2023-51793
ffmpeg: fix CVE-2023-50008
ffmpeg: fix CVE-2024-31582
ffmpeg: fix CVE-2024-31578
ffmpeg: fix CVE-2023-51794
Chen Qi (1):
toolchain-shar-extract.sh: exit when post-relocate-setup.sh fails
Khem Raj (1):
webkitgtk: Fix build on 32bit arm
Liyin Zhang (1):
lttng-modules: fix build error after kernel update to 5.15.171
Ovidiu Panait (1):
webkitgtk: fix perl-native dependency
Regis Dargent (1):
udev-extraconf: fix network.sh script did not configure hotplugged
interfaces
Ross Burton (1):
webkitgtk: reduce size of -dbg package
Steve Sakoman (1):
llvm: reduce size of -dbg package
Vijay Anusuri (4):
ghostscript: Backport fix for multiple CVE's
libsoup: Fix for CVE-2024-52530 and CVE-2024-52532
libsoup-2.4: Backport fix for CVE-2024-52530 and CVE-2024-52532
glib-2.0: Backport fix for CVE-2024-52533
Wang Mingyu (1):
wireless-regdb: upgrade 2024.07.04 -> 2024.10.07
meta/files/toolchain-shar-extract.sh | 4 +
.../glib-2.0/glib-2.0/CVE-2024-52533.patch | 49 +++
meta/recipes-core/glib-2.0/glib-2.0_2.72.3.bb | 1 +
.../udev/udev-extraconf/network.sh | 32 --
meta/recipes-devtools/llvm/llvm_git.bb | 2 +
.../ghostscript/CVE-2024-46951.patch | 31 ++
.../ghostscript/CVE-2024-46952.patch | 62 ++++
.../ghostscript/CVE-2024-46953.patch | 67 ++++
.../ghostscript/CVE-2024-46955.patch | 60 ++++
.../ghostscript/CVE-2024-46956.patch | 30 ++
.../ghostscript/ghostscript_9.55.0.bb | 5 +
...c-fix-tracepoint-mm_page_alloc_zone_.patch | 61 ++++
.../lttng/lttng-modules_2.13.14.bb | 1 +
....07.04.bb => wireless-regdb_2024.10.07.bb} | 2 +-
.../ffmpeg/ffmpeg/CVE-2023-50008.patch | 29 ++
.../ffmpeg/ffmpeg/CVE-2023-51793.patch | 67 ++++
.../ffmpeg/ffmpeg/CVE-2023-51794.patch | 35 +++
.../ffmpeg/ffmpeg/CVE-2024-31578.patch | 49 +++
.../ffmpeg/ffmpeg/CVE-2024-31582.patch | 34 ++
.../ffmpeg/ffmpeg/CVE-2024-32230.patch | 35 +++
.../recipes-multimedia/ffmpeg/ffmpeg_5.0.1.bb | 6 +
...44e17d258106617b0e6d783d073b188a2548.patch | 296 ++++++++++++++++++
meta/recipes-sato/webkit/webkitgtk_2.36.8.bb | 7 +-
.../libsoup/libsoup-2.4/CVE-2024-52530.patch | 149 +++++++++
.../libsoup-2.4/CVE-2024-52532-1.patch | 36 +++
.../libsoup-2.4/CVE-2024-52532-2.patch | 42 +++
.../libsoup/libsoup-2.4_2.74.2.bb | 3 +
.../libsoup/libsoup/CVE-2024-52530.patch | 149 +++++++++
.../libsoup/libsoup/CVE-2024-52532-1.patch | 36 +++
.../libsoup/libsoup/CVE-2024-52532-2.patch | 42 +++
meta/recipes-support/libsoup/libsoup_3.0.7.bb | 6 +-
scripts/install-buildtools | 4 +-
32 files changed, 1395 insertions(+), 37 deletions(-)
create mode 100644 meta/recipes-core/glib-2.0/glib-2.0/CVE-2024-52533.patch
create mode 100644 meta/recipes-extended/ghostscript/ghostscript/CVE-2024-46951.patch
create mode 100644 meta/recipes-extended/ghostscript/ghostscript/CVE-2024-46952.patch
create mode 100644 meta/recipes-extended/ghostscript/ghostscript/CVE-2024-46953.patch
create mode 100644 meta/recipes-extended/ghostscript/ghostscript/CVE-2024-46955.patch
create mode 100644 meta/recipes-extended/ghostscript/ghostscript/CVE-2024-46956.patch
create mode 100644 meta/recipes-kernel/lttng/lttng-modules/0001-fix-mm-page_alloc-fix-tracepoint-mm_page_alloc_zone_.patch
rename meta/recipes-kernel/wireless-regdb/{wireless-regdb_2024.07.04.bb => wireless-regdb_2024.10.07.bb} (94%)
create mode 100644 meta/recipes-multimedia/ffmpeg/ffmpeg/CVE-2023-50008.patch
create mode 100644 meta/recipes-multimedia/ffmpeg/ffmpeg/CVE-2023-51793.patch
create mode 100644 meta/recipes-multimedia/ffmpeg/ffmpeg/CVE-2023-51794.patch
create mode 100644 meta/recipes-multimedia/ffmpeg/ffmpeg/CVE-2024-31578.patch
create mode 100644 meta/recipes-multimedia/ffmpeg/ffmpeg/CVE-2024-31582.patch
create mode 100644 meta/recipes-multimedia/ffmpeg/ffmpeg/CVE-2024-32230.patch
create mode 100644 meta/recipes-sato/webkit/webkitgtk/0d3344e17d258106617b0e6d783d073b188a2548.patch
create mode 100644 meta/recipes-support/libsoup/libsoup-2.4/CVE-2024-52530.patch
create mode 100644 meta/recipes-support/libsoup/libsoup-2.4/CVE-2024-52532-1.patch
create mode 100644 meta/recipes-support/libsoup/libsoup-2.4/CVE-2024-52532-2.patch
create mode 100644 meta/recipes-support/libsoup/libsoup/CVE-2024-52530.patch
create mode 100644 meta/recipes-support/libsoup/libsoup/CVE-2024-52532-1.patch
create mode 100644 meta/recipes-support/libsoup/libsoup/CVE-2024-52532-2.patch
--
2.34.1
next reply other threads:[~2024-11-22 21:26 UTC|newest]
Thread overview: 26+ messages / expand[flat|nested] mbox.gz Atom feed top
2024-11-22 21:26 Steve Sakoman [this message]
2024-11-22 21:26 ` [OE-core][kirkstone 01/19] ghostscript: Backport fix for multiple CVE's Steve Sakoman
2024-11-22 21:26 ` [OE-core][kirkstone 02/19] libsoup: Fix for CVE-2024-52530 and CVE-2024-52532 Steve Sakoman
2024-11-22 21:26 ` [OE-core][kirkstone 03/19] libsoup-2.4: Backport fix " Steve Sakoman
2024-11-22 21:26 ` [OE-core][kirkstone 04/19] glib-2.0: Backport fix for CVE-2024-52533 Steve Sakoman
2024-11-22 21:26 ` [OE-core][kirkstone 05/19] ffmpeg: fix CVE-2024-32230 Steve Sakoman
2024-11-22 21:26 ` [OE-core][kirkstone 06/19] ffmpeg: fix CVE-2023-51793 Steve Sakoman
2024-11-22 21:26 ` [OE-core][kirkstone 07/19] ffmpeg: fix CVE-2023-50008 Steve Sakoman
2024-11-22 21:26 ` [OE-core][kirkstone 08/19] ffmpeg: fix CVE-2024-31582 Steve Sakoman
2024-11-22 21:26 ` [OE-core][kirkstone 09/19] ffmpeg: fix CVE-2024-31578 Steve Sakoman
2024-11-22 21:26 ` [OE-core][kirkstone 10/19] ffmpeg: fix CVE-2023-51794 Steve Sakoman
2024-11-22 21:26 ` [OE-core][kirkstone 11/19] wireless-regdb: upgrade 2024.07.04 -> 2024.10.07 Steve Sakoman
2024-11-22 21:26 ` [OE-core][kirkstone 12/19] scripts/install-buildtools: Update to 4.0.22 Steve Sakoman
2024-11-22 21:26 ` [OE-core][kirkstone 13/19] webkitgtk: Fix build on 32bit arm Steve Sakoman
2024-11-22 21:26 ` [OE-core][kirkstone 14/19] webkitgtk: fix perl-native dependency Steve Sakoman
2024-11-22 21:26 ` [OE-core][kirkstone 15/19] lttng-modules: fix build error after kernel update to 5.15.171 Steve Sakoman
2024-11-22 21:26 ` [OE-core][kirkstone 16/19] webkitgtk: reduce size of -dbg package Steve Sakoman
2024-11-22 21:26 ` [OE-core][kirkstone 17/19] llvm: " Steve Sakoman
2024-11-22 21:26 ` [OE-core][kirkstone 18/19] toolchain-shar-extract.sh: exit when post-relocate-setup.sh fails Steve Sakoman
2024-11-22 21:26 ` [OE-core][kirkstone 19/19] udev-extraconf: fix network.sh script did not configure hotplugged interfaces Steve Sakoman
-- strict thread matches above, loose matches on Subject: below --
2025-01-07 18:08 [OE-core][kirkstone 00/19] Patch review Steve Sakoman
2024-11-13 3:15 Steve Sakoman
2024-10-29 18:59 Steve Sakoman
2022-12-18 16:12 Steve Sakoman
2022-08-31 14:39 Steve Sakoman
2022-05-25 14:29 Steve Sakoman
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=cover.1732310669.git.steve@sakoman.com \
--to=steve@sakoman.com \
--cc=openembedded-core@lists.openembedded.org \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox