From: Steve Sakoman <steve@sakoman.com>
To: openembedded-core@lists.openembedded.org
Subject: [OE-core][scarthgap 00/16] Patch review
Date: Tue, 3 Dec 2024 05:37:04 -0800 [thread overview]
Message-ID: <cover.1733232895.git.steve@sakoman.com> (raw)
Please review this set of changes to scarthgap and have comments back by
end of day Thursday, December 5
Passed a-full on autobuilder:
https://valkyrie.yoctoproject.org/#/builders/29/builds/560
The following changes since commit dac630ab5ee7aa6c5c7c294093adbd11b116c765:
llvm: reduce size of -dbg package (2024-11-22 05:42:54 -0800)
are available in the Git repository at:
https://git.openembedded.org/openembedded-core-contrib stable/scarthgap-nut
https://git.openembedded.org/openembedded-core-contrib/log/?h=stable/scarthgap-nut
Aleksandar Nikolic (1):
scripts/install-buildtools: Update to 5.0.5
Changqing Li (2):
acpica: fix CVE-2024-24856
libsoup: fix CVE-2024-52530, CVE-2024-52531
Deepthi Hemraj (1):
glibc: stable 2.39 branch updates
Florian Kreutzer (1):
dropbear: backport fix for concurrent channel open/close
Gassner, Tobias.ext (1):
rootfs: Ensure run-postinsts is not uninstalled for
read-only-rootfs-delayed-postinsts
Hitendra Prajapati (1):
libsndfile: fix CVE-2024-50612
Jiaying Song (1):
python3-zipp: fix CVE-2024-5569
Jinfeng Wang (1):
tzdata&tzcode-native: upgrade 2024a -> 2024b
Markus Volk (2):
gcc: add a backport patch to fix an issue with tzdata 2024b
ninja: fix build with python 3.13
Peter Marko (1):
builder: set CVE_PRODUCT
Robert Yang (1):
libgcrypt: Fix building error with '-O2' in sysroot path
Soumya Sambu (1):
python3-requests: upgrade 2.32.1 -> 2.32.2
Trevor Gamblin (1):
python3-urllib3: upgrade 2.2.1 -> 2.2.2
Yogita Urade (1):
qemu: upgrade 8.2.3 -> 8.2.7
meta/lib/oe/rootfs.py | 4 +
meta/lib/oeqa/selftest/cases/overlayfs.py | 41 +-
...e-channels-when-a-PID-hasn-t-started.patch | 45 +
.../recipes-core/dropbear/dropbear_2022.83.bb | 1 +
.../glib-2.0/gdatetime-test-fail-0001.patch | 72 +
.../glib-2.0/gdatetime-test-fail-0002.patch | 65 +
.../glib-2.0/gdatetime-test-fail-0003.patch | 63 +
meta/recipes-core/glib-2.0/glib-2.0_2.78.6.bb | 3 +
meta/recipes-core/glibc/glibc-version.inc | 2 +-
meta/recipes-devtools/gcc/gcc-13.3.inc | 1 +
...4fffe3fc82a710bea66ad651720d71c938b8.patch | 549 ++++++++
...4efb41c039789b81f0dc0d67c1ed0faea17c.patch | 62 +
meta/recipes-devtools/ninja/ninja_1.11.1.bb | 5 +-
...s_2.31.0.bb => python3-requests_2.32.0.bb} | 2 +-
...lib3_2.2.1.bb => python3-urllib3_2.2.2.bb} | 2 +-
.../python/python3-zipp/CVE-2024-5569.patch | 138 ++
.../python/python3-zipp_3.17.0.bb | 1 +
...u-native_8.2.3.bb => qemu-native_8.2.7.bb} | 0
...e_8.2.3.bb => qemu-system-native_8.2.7.bb} | 0
meta/recipes-devtools/qemu/qemu.inc | 14 +-
...kvm-change-KVM_REG_RISCV_FP_F-to-u32.patch | 75 --
...kvm-change-KVM_REG_RISCV_FP_D-to-u64.patch | 73 -
...cv-kvm-change-timer-regs-size-to-u64.patch | 107 --
.../qemu/qemu/CVE-2024-4467-0001.patch | 112 --
.../qemu/qemu/CVE-2024-4467-0002.patch | 55 -
.../qemu/qemu/CVE-2024-4467-0003.patch | 57 -
.../qemu/qemu/CVE-2024-4467-0004.patch | 1187 -----------------
.../qemu/qemu/CVE-2024-4467-0005.patch | 239 ----
.../qemu/qemu/CVE-2024-7409-0001.patch | 167 ---
.../qemu/qemu/CVE-2024-7409-0002.patch | 175 ---
.../qemu/qemu/CVE-2024-7409-0003.patch | 126 --
.../qemu/qemu/CVE-2024-7409-0004.patch | 164 ---
.../qemu/{qemu_8.2.3.bb => qemu_8.2.7.bb} | 0
.../acpica/acpica_20240322.bb | 3 +-
.../acpica/files/CVE-2024-24856.patch | 31 +
meta/recipes-extended/timezone/timezone.inc | 6 +-
meta/recipes-graphics/builder/builder_0.1.bb | 3 +-
.../libsndfile1/CVE-2024-50612.patch | 412 ++++++
.../libsndfile/libsndfile1_1.2.2.bb | 1 +
...ilding-error-with-O2-in-sysroot-path.patch | 64 +
...ilding-error-with-O2-in-sysroot-path.patch | 39 -
.../libgcrypt/libgcrypt_1.10.3.bb | 2 +-
.../libsoup-3.4.4/CVE-2024-52530.patch | 150 +++
.../libsoup-3.4.4/CVE-2024-52531-1.patch | 116 ++
.../libsoup-3.4.4/CVE-2024-52531-2.patch | 40 +
.../libsoup-3.4.4/CVE-2024-52531-3.patch | 136 ++
meta/recipes-support/libsoup/libsoup_3.4.4.bb | 4 +
scripts/install-buildtools | 4 +-
48 files changed, 2016 insertions(+), 2602 deletions(-)
create mode 100644 meta/recipes-core/dropbear/dropbear/0007-Don-t-close-channels-when-a-PID-hasn-t-started.patch
create mode 100644 meta/recipes-core/glib-2.0/glib-2.0/gdatetime-test-fail-0001.patch
create mode 100644 meta/recipes-core/glib-2.0/glib-2.0/gdatetime-test-fail-0002.patch
create mode 100644 meta/recipes-core/glib-2.0/glib-2.0/gdatetime-test-fail-0003.patch
create mode 100644 meta/recipes-devtools/gcc/gcc/gcc.git-ab884fffe3fc82a710bea66ad651720d71c938b8.patch
create mode 100644 meta/recipes-devtools/ninja/ninja/885b4efb41c039789b81f0dc0d67c1ed0faea17c.patch
rename meta/recipes-devtools/python/{python3-requests_2.31.0.bb => python3-requests_2.32.0.bb} (84%)
rename meta/recipes-devtools/python/{python3-urllib3_2.2.1.bb => python3-urllib3_2.2.2.bb} (86%)
create mode 100644 meta/recipes-devtools/python/python3-zipp/CVE-2024-5569.patch
rename meta/recipes-devtools/qemu/{qemu-native_8.2.3.bb => qemu-native_8.2.7.bb} (100%)
rename meta/recipes-devtools/qemu/{qemu-system-native_8.2.3.bb => qemu-system-native_8.2.7.bb} (100%)
delete mode 100644 meta/recipes-devtools/qemu/qemu/0001-target-riscv-kvm-change-KVM_REG_RISCV_FP_F-to-u32.patch
delete mode 100644 meta/recipes-devtools/qemu/qemu/0002-target-riscv-kvm-change-KVM_REG_RISCV_FP_D-to-u64.patch
delete mode 100644 meta/recipes-devtools/qemu/qemu/0003-target-riscv-kvm-change-timer-regs-size-to-u64.patch
delete mode 100644 meta/recipes-devtools/qemu/qemu/CVE-2024-4467-0001.patch
delete mode 100644 meta/recipes-devtools/qemu/qemu/CVE-2024-4467-0002.patch
delete mode 100644 meta/recipes-devtools/qemu/qemu/CVE-2024-4467-0003.patch
delete mode 100644 meta/recipes-devtools/qemu/qemu/CVE-2024-4467-0004.patch
delete mode 100644 meta/recipes-devtools/qemu/qemu/CVE-2024-4467-0005.patch
delete mode 100644 meta/recipes-devtools/qemu/qemu/CVE-2024-7409-0001.patch
delete mode 100644 meta/recipes-devtools/qemu/qemu/CVE-2024-7409-0002.patch
delete mode 100644 meta/recipes-devtools/qemu/qemu/CVE-2024-7409-0003.patch
delete mode 100644 meta/recipes-devtools/qemu/qemu/CVE-2024-7409-0004.patch
rename meta/recipes-devtools/qemu/{qemu_8.2.3.bb => qemu_8.2.7.bb} (100%)
create mode 100644 meta/recipes-extended/acpica/files/CVE-2024-24856.patch
create mode 100644 meta/recipes-multimedia/libsndfile/libsndfile1/CVE-2024-50612.patch
create mode 100644 meta/recipes-support/libgcrypt/files/0001-Fix-building-error-with-O2-in-sysroot-path.patch
delete mode 100644 meta/recipes-support/libgcrypt/files/0002-libgcrypt-fix-building-error-with-O2-in-sysroot-path.patch
create mode 100644 meta/recipes-support/libsoup/libsoup-3.4.4/CVE-2024-52530.patch
create mode 100644 meta/recipes-support/libsoup/libsoup-3.4.4/CVE-2024-52531-1.patch
create mode 100644 meta/recipes-support/libsoup/libsoup-3.4.4/CVE-2024-52531-2.patch
create mode 100644 meta/recipes-support/libsoup/libsoup-3.4.4/CVE-2024-52531-3.patch
--
2.34.1
next reply other threads:[~2024-12-03 13:37 UTC|newest]
Thread overview: 23+ messages / expand[flat|nested] mbox.gz Atom feed top
2024-12-03 13:37 Steve Sakoman [this message]
2024-12-03 13:37 ` [OE-core][scarthgap 01/16] python3-zipp: fix CVE-2024-5569 Steve Sakoman
2024-12-03 13:37 ` [OE-core][scarthgap 02/16] acpica: fix CVE-2024-24856 Steve Sakoman
2024-12-03 13:37 ` [OE-core][scarthgap 03/16] builder: set CVE_PRODUCT Steve Sakoman
2024-12-03 13:37 ` [OE-core][scarthgap 04/16] libsndfile: fix CVE-2024-50612 Steve Sakoman
2024-12-03 13:37 ` [OE-core][scarthgap 05/16] libsoup: fix CVE-2024-52530, CVE-2024-52531 Steve Sakoman
2024-12-03 13:37 ` [OE-core][scarthgap 06/16] tzdata&tzcode-native: upgrade 2024a -> 2024b Steve Sakoman
2024-12-03 13:37 ` [OE-core][scarthgap 07/16] python3-urllib3: upgrade 2.2.1 -> 2.2.2 Steve Sakoman
2024-12-03 13:37 ` [OE-core][scarthgap 08/16] python3-requests: upgrade 2.32.1 -> 2.32.2 Steve Sakoman
2024-12-03 13:37 ` [OE-core][scarthgap 09/16] scripts/install-buildtools: Update to 5.0.5 Steve Sakoman
2024-12-03 13:37 ` [OE-core][scarthgap 10/16] glibc: stable 2.39 branch updates Steve Sakoman
2024-12-03 13:37 ` [OE-core][scarthgap 11/16] qemu: upgrade 8.2.3 -> 8.2.7 Steve Sakoman
2024-12-03 13:37 ` [OE-core][scarthgap 12/16] gcc: add a backport patch to fix an issue with tzdata 2024b Steve Sakoman
2024-12-03 13:37 ` [OE-core][scarthgap 13/16] ninja: fix build with python 3.13 Steve Sakoman
2024-12-03 13:37 ` [OE-core][scarthgap 14/16] libgcrypt: Fix building error with '-O2' in sysroot path Steve Sakoman
2024-12-03 13:37 ` [OE-core][scarthgap 15/16] dropbear: backport fix for concurrent channel open/close Steve Sakoman
2024-12-03 13:37 ` [OE-core][scarthgap 16/16] rootfs: Ensure run-postinsts is not uninstalled for read-only-rootfs-delayed-postinsts Steve Sakoman
-- strict thread matches above, loose matches on Subject: below --
2026-03-29 22:37 [OE-core][scarthgap 00/16] Patch review Yoann Congal
2026-03-29 22:41 ` Yoann Congal
2025-07-24 21:35 Steve Sakoman
2025-06-10 19:33 Steve Sakoman
2025-03-05 22:10 Steve Sakoman
2024-09-20 13:38 Steve Sakoman
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=cover.1733232895.git.steve@sakoman.com \
--to=steve@sakoman.com \
--cc=openembedded-core@lists.openembedded.org \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox