From: Steve Sakoman <steve@sakoman.com>
To: openembedded-core@lists.openembedded.org
Subject: [OE-core][kirkstone 00/12] Patch review
Date: Tue, 18 Feb 2025 13:09:53 -0800 [thread overview]
Message-ID: <cover.1739912869.git.steve@sakoman.com> (raw)
Please review this set of changes for kirkstone and have comments back by
end of day Thursday, February 20
Passed a-full on autobuilder:
https://autobuilder.yoctoproject.org/valkyrie/#/builders/29/builds/1038
The following changes since commit 5a794fd244f7fdeb426bd5e3def6b4effc0e8c62:
build-appliance-image: Update to kirkstone head revision (2025-02-15 06:06:50 -0800)
are available in the Git repository at:
https://git.openembedded.org/openembedded-core-contrib stable/kirkstone-nut
https://git.openembedded.org/openembedded-core-contrib/log/?h=stable/kirkstone-nut
Aleksandar Nikolic (1):
scripts/install-buildtools: Update to 4.0.24
Archana Polampalli (5):
gnutls: fix CVE-2024-12243
ffmpeg: CVE-2025-0518
ffmpeg: fix CVE-2024-36613
ffmpeg: fix CVE-2024-36616
ffmpeg: fix CVE-2024-36617
Divya Chellam (1):
ruby: fix CVE-2024-41946
Mingli Yu (1):
procps: replaced one use of fputs(3) with a write(2) call
Peter Marko (2):
subversion: ignore CVE-2024-45720
libpcre2: ignore CVE-2022-1586
Richard Purdie (1):
scritps/runqemu: Ensure we only have two serial ports
Vijay Anusuri (1):
libxml2: Fix for CVE-2022-49043
.../libxml/libxml2/CVE-2022-49043.patch | 38 +
meta/recipes-core/libxml/libxml2_2.9.14.bb | 1 +
.../ruby/ruby/CVE-2024-41946.patch | 117 ++
meta/recipes-devtools/ruby/ruby_3.1.3.bb | 1 +
.../subversion/subversion_1.14.2.bb | 3 +
...x-for-the-bye_bye-function-merge-127.patch | 58 +
...e-use-of-fputs-3-with-a-write-2-call.patch | 50 +
meta/recipes-extended/procps/procps_3.3.17.bb | 2 +
.../ffmpeg/ffmpeg/CVE-2024-36613.patch | 38 +
.../ffmpeg/ffmpeg/CVE-2024-36616.patch | 37 +
.../ffmpeg/ffmpeg/CVE-2024-36617.patch | 38 +
.../ffmpeg/ffmpeg/CVE-2025-0518.patch | 34 +
.../recipes-multimedia/ffmpeg/ffmpeg_5.0.1.bb | 4 +
.../gnutls/gnutls/CVE-2024-12243.patch | 1160 +++++++++++++++++
meta/recipes-support/gnutls/gnutls_3.7.4.bb | 1 +
.../recipes-support/libpcre/libpcre2_10.40.bb | 4 +
scripts/install-buildtools | 4 +-
scripts/runqemu | 17 +-
18 files changed, 1601 insertions(+), 6 deletions(-)
create mode 100644 meta/recipes-core/libxml/libxml2/CVE-2022-49043.patch
create mode 100644 meta/recipes-devtools/ruby/ruby/CVE-2024-41946.patch
create mode 100644 meta/recipes-extended/procps/procps/0001-top-fix-a-fix-for-the-bye_bye-function-merge-127.patch
create mode 100644 meta/recipes-extended/procps/procps/0001-top-replaced-one-use-of-fputs-3-with-a-write-2-call.patch
create mode 100644 meta/recipes-multimedia/ffmpeg/ffmpeg/CVE-2024-36613.patch
create mode 100644 meta/recipes-multimedia/ffmpeg/ffmpeg/CVE-2024-36616.patch
create mode 100644 meta/recipes-multimedia/ffmpeg/ffmpeg/CVE-2024-36617.patch
create mode 100644 meta/recipes-multimedia/ffmpeg/ffmpeg/CVE-2025-0518.patch
create mode 100644 meta/recipes-support/gnutls/gnutls/CVE-2024-12243.patch
--
2.43.0
next reply other threads:[~2025-02-18 21:10 UTC|newest]
Thread overview: 15+ messages / expand[flat|nested] mbox.gz Atom feed top
2025-02-18 21:09 Steve Sakoman [this message]
2025-02-18 21:09 ` [OE-core][kirkstone 01/12] subversion: ignore CVE-2024-45720 Steve Sakoman
2025-02-18 21:09 ` [OE-core][kirkstone 02/12] libpcre2: ignore CVE-2022-1586 Steve Sakoman
2025-02-18 21:09 ` [OE-core][kirkstone 03/12] libxml2: Fix for CVE-2022-49043 Steve Sakoman
2025-02-18 21:09 ` [OE-core][kirkstone 04/12] ruby: fix CVE-2024-41946 Steve Sakoman
2025-02-18 21:09 ` [OE-core][kirkstone 05/12] gnutls: fix CVE-2024-12243 Steve Sakoman
2025-02-18 21:09 ` [OE-core][kirkstone 06/12] ffmpeg: CVE-2025-0518 Steve Sakoman
2025-02-18 21:10 ` [OE-core][kirkstone 07/12] ffmpeg: fix CVE-2024-36613 Steve Sakoman
2025-02-18 21:10 ` [OE-core][kirkstone 08/12] ffmpeg: fix CVE-2024-36616 Steve Sakoman
2025-02-18 21:10 ` [OE-core][kirkstone 09/12] ffmpeg: fix CVE-2024-36617 Steve Sakoman
2025-02-18 21:10 ` [OE-core][kirkstone 10/12] scripts/install-buildtools: Update to 4.0.24 Steve Sakoman
2025-02-18 21:10 ` [OE-core][kirkstone 11/12] scritps/runqemu: Ensure we only have two serial ports Steve Sakoman
2025-02-18 21:10 ` [OE-core][kirkstone 12/12] procps: replaced one use of fputs(3) with a write(2) call Steve Sakoman
-- strict thread matches above, loose matches on Subject: below --
2025-05-24 13:36 [OE-core][kirkstone 00/12] Patch review Steve Sakoman
2022-12-08 22:42 Steve Sakoman
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=cover.1739912869.git.steve@sakoman.com \
--to=steve@sakoman.com \
--cc=openembedded-core@lists.openembedded.org \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox