From: Steve Sakoman <steve@sakoman.com>
To: openembedded-core@lists.openembedded.org
Subject: [OE-core][scarthgap 00/28] Patch review
Date: Wed, 12 Mar 2025 12:55:21 -0700 [thread overview]
Message-ID: <cover.1741809252.git.steve@sakoman.com> (raw)
Please review this set of changes for scarthgap and have comments back by
end of day Friday, March 14
Passed a-full on autobuilder:
https://autobuilder.yoctoproject.org/valkyrie/#/builders/29/builds/1176
The following changes since commit cd2b6080a4c0f2ed2c9939ec0b87763aef595048:
build-appliance-image: Update to scarthgap head revision (2025-03-10 12:32:35 -0700)
are available in the Git repository at:
https://git.openembedded.org/openembedded-core-contrib stable/scarthgap-nut
https://git.openembedded.org/openembedded-core-contrib/log/?h=stable/scarthgap-nut
Archana Polampalli (1):
openssh: fix CVE-2025-26465
Ashish Sharma (1):
ruby: Fix CVE-2025-27219
Changqing Li (2):
babeltrace: extend to nativesdk
babeltrace2: extend to nativesdk
Divya Chellam (1):
vim: Upgrade 9.1.1043 -> 9.1.1115
Niko Mauno (1):
cve-check.bbclass: Mitigate symlink related error
Peter Marko (17):
grub: drop obsolete CVE statuses
grub: backport strlcpy function
grup: patch CVE-2024-45781
grub: patch CVE-2024-45782 and CVE-2024-56737
grub: patch CVE-2024-45780
grub: patch CVE-2024-45783
grub: patch CVE-2025-0624
grub: patch CVE-2024-45774
grub: patch CVE-2024-45775
grub: patch CVE-2025-0622
grub: patch CVE-2024-45776
grub: patch CVE-2024-45777
grub: patch CVE-2025-0690
grub: patch CVE-2025-1118
grub: patch CVE-2024-45778 and CVE-2024-45779
grub: patch CVE-2025-0677, CVE-2025-0684, CVE-2025-0685, CVE-2025-0686
and CVE-2025-0689
grub: patch CVE-2025-0678 and CVE-2025-1125
Ross Burton (3):
puzzles: ignore three new CVEs for a different puzzles
xserver-xf86-config: add a configuration fragment to disable screen
blanking
xserver-xf86-config: remove obsolete configuration files
Vijay Anusuri (1):
xserver-xorg: upgrade 21.1.15 -> 21.1.16
Wang Mingyu (1):
xserver-xorg: upgrade 21.1.14 -> 21.1.15
meta/classes/cve-check.bbclass | 6 +-
.../0001-misc-Implement-grub_strlcpy.patch | 68 ++++
.../grub/files/CVE-2024-45774.patch | 37 ++
.../grub/files/CVE-2024-45775.patch | 38 ++
.../grub/files/CVE-2024-45776.patch | 39 ++
.../grub/files/CVE-2024-45777.patch | 57 +++
.../files/CVE-2024-45778_CVE-2024-45779.patch | 55 +++
.../grub/files/CVE-2024-45780.patch | 93 +++++
.../grub/files/CVE-2024-45781.patch | 35 ++
.../files/CVE-2024-45782_CVE-2024-56737.patch | 36 ++
.../grub/files/CVE-2024-45783.patch | 39 ++
.../grub/files/CVE-2025-0622-01.patch | 35 ++
.../grub/files/CVE-2025-0622-02.patch | 41 ++
.../grub/files/CVE-2025-0622-03.patch | 38 ++
.../grub/files/CVE-2025-0624.patch | 84 ++++
...025-0685_CVE-2025-0686_CVE-2025-0689.patch | 377 ++++++++++++++++++
.../files/CVE-2025-0678_CVE-2025-1125.patch | 87 ++++
.../grub/files/CVE-2025-0690.patch | 73 ++++
.../grub/files/CVE-2025-1118.patch | 37 ++
meta/recipes-bsp/grub/grub2.inc | 21 +-
.../openssh/openssh/CVE-2025-26465.patch | 169 ++++++++
.../openssh/openssh_9.6p1.bb | 1 +
.../ruby/ruby/CVE-2025-27219.patch | 31 ++
meta/recipes-devtools/ruby/ruby_3.3.5.bb | 1 +
.../xserver-xf86-config/qemuall/noblank.conf | 7 +
.../xserver-xf86-config/qemuarm/xorg.conf | 42 --
.../xserver-xf86-config/qemuppc/xorg.conf | 42 --
.../xserver-xf86-config/qemush4/xorg.conf | 42 --
.../xserver-xf86-config/qemux86-64/xorg.conf | 37 --
.../xserver-xf86-config/qemux86/xorg.conf | 37 --
.../xorg-xserver/xserver-xf86-config_0.1.bb | 6 +
...org_21.1.14.bb => xserver-xorg_21.1.16.bb} | 2 +-
.../recipes-kernel/lttng/babeltrace2_2.0.6.bb | 12 +
.../recipes-kernel/lttng/babeltrace_1.5.11.bb | 2 +
meta/recipes-sato/puzzles/puzzles_git.bb | 3 +
meta/recipes-support/vim/vim.inc | 4 +-
36 files changed, 1526 insertions(+), 208 deletions(-)
create mode 100644 meta/recipes-bsp/grub/files/0001-misc-Implement-grub_strlcpy.patch
create mode 100644 meta/recipes-bsp/grub/files/CVE-2024-45774.patch
create mode 100644 meta/recipes-bsp/grub/files/CVE-2024-45775.patch
create mode 100644 meta/recipes-bsp/grub/files/CVE-2024-45776.patch
create mode 100644 meta/recipes-bsp/grub/files/CVE-2024-45777.patch
create mode 100644 meta/recipes-bsp/grub/files/CVE-2024-45778_CVE-2024-45779.patch
create mode 100644 meta/recipes-bsp/grub/files/CVE-2024-45780.patch
create mode 100644 meta/recipes-bsp/grub/files/CVE-2024-45781.patch
create mode 100644 meta/recipes-bsp/grub/files/CVE-2024-45782_CVE-2024-56737.patch
create mode 100644 meta/recipes-bsp/grub/files/CVE-2024-45783.patch
create mode 100644 meta/recipes-bsp/grub/files/CVE-2025-0622-01.patch
create mode 100644 meta/recipes-bsp/grub/files/CVE-2025-0622-02.patch
create mode 100644 meta/recipes-bsp/grub/files/CVE-2025-0622-03.patch
create mode 100644 meta/recipes-bsp/grub/files/CVE-2025-0624.patch
create mode 100644 meta/recipes-bsp/grub/files/CVE-2025-0677_CVE-2025-0684_CVE-2025-0685_CVE-2025-0686_CVE-2025-0689.patch
create mode 100644 meta/recipes-bsp/grub/files/CVE-2025-0678_CVE-2025-1125.patch
create mode 100644 meta/recipes-bsp/grub/files/CVE-2025-0690.patch
create mode 100644 meta/recipes-bsp/grub/files/CVE-2025-1118.patch
create mode 100644 meta/recipes-connectivity/openssh/openssh/CVE-2025-26465.patch
create mode 100644 meta/recipes-devtools/ruby/ruby/CVE-2025-27219.patch
create mode 100644 meta/recipes-graphics/xorg-xserver/xserver-xf86-config/qemuall/noblank.conf
delete mode 100644 meta/recipes-graphics/xorg-xserver/xserver-xf86-config/qemuarm/xorg.conf
delete mode 100644 meta/recipes-graphics/xorg-xserver/xserver-xf86-config/qemuppc/xorg.conf
delete mode 100644 meta/recipes-graphics/xorg-xserver/xserver-xf86-config/qemush4/xorg.conf
delete mode 100644 meta/recipes-graphics/xorg-xserver/xserver-xf86-config/qemux86-64/xorg.conf
delete mode 100644 meta/recipes-graphics/xorg-xserver/xserver-xf86-config/qemux86/xorg.conf
rename meta/recipes-graphics/xorg-xserver/{xserver-xorg_21.1.14.bb => xserver-xorg_21.1.16.bb} (92%)
--
2.43.0
next reply other threads:[~2025-03-12 19:55 UTC|newest]
Thread overview: 29+ messages / expand[flat|nested] mbox.gz Atom feed top
2025-03-12 19:55 Steve Sakoman [this message]
2025-03-12 19:55 ` [OE-core][scarthgap 01/28] openssh: fix CVE-2025-26465 Steve Sakoman
2025-03-12 19:55 ` [OE-core][scarthgap 02/28] ruby: Fix CVE-2025-27219 Steve Sakoman
2025-03-12 19:55 ` [OE-core][scarthgap 03/28] puzzles: ignore three new CVEs for a different puzzles Steve Sakoman
2025-03-12 19:55 ` [OE-core][scarthgap 04/28] cve-check.bbclass: Mitigate symlink related error Steve Sakoman
2025-03-12 19:55 ` [OE-core][scarthgap 05/28] grub: drop obsolete CVE statuses Steve Sakoman
2025-03-12 19:55 ` [OE-core][scarthgap 06/28] grub: backport strlcpy function Steve Sakoman
2025-03-12 19:55 ` [OE-core][scarthgap 07/28] grup: patch CVE-2024-45781 Steve Sakoman
2025-03-12 19:55 ` [OE-core][scarthgap 08/28] grub: patch CVE-2024-45782 and CVE-2024-56737 Steve Sakoman
2025-03-12 19:55 ` [OE-core][scarthgap 09/28] grub: patch CVE-2024-45780 Steve Sakoman
2025-03-12 19:55 ` [OE-core][scarthgap 10/28] grub: patch CVE-2024-45783 Steve Sakoman
2025-03-12 19:55 ` [OE-core][scarthgap 11/28] grub: patch CVE-2025-0624 Steve Sakoman
2025-03-12 19:55 ` [OE-core][scarthgap 12/28] grub: patch CVE-2024-45774 Steve Sakoman
2025-03-12 19:55 ` [OE-core][scarthgap 13/28] grub: patch CVE-2024-45775 Steve Sakoman
2025-03-12 19:55 ` [OE-core][scarthgap 14/28] grub: patch CVE-2025-0622 Steve Sakoman
2025-03-12 19:55 ` [OE-core][scarthgap 15/28] grub: patch CVE-2024-45776 Steve Sakoman
2025-03-12 19:55 ` [OE-core][scarthgap 16/28] grub: patch CVE-2024-45777 Steve Sakoman
2025-03-12 19:55 ` [OE-core][scarthgap 17/28] grub: patch CVE-2025-0690 Steve Sakoman
2025-03-12 19:55 ` [OE-core][scarthgap 18/28] grub: patch CVE-2025-1118 Steve Sakoman
2025-03-12 19:55 ` [OE-core][scarthgap 19/28] grub: patch CVE-2024-45778 and CVE-2024-45779 Steve Sakoman
2025-03-12 19:55 ` [OE-core][scarthgap 20/28] grub: patch CVE-2025-0677, CVE-2025-0684, CVE-2025-0685, CVE-2025-0686 and CVE-2025-0689 Steve Sakoman
2025-03-12 19:55 ` [OE-core][scarthgap 21/28] grub: patch CVE-2025-0678 and CVE-2025-1125 Steve Sakoman
2025-03-12 19:55 ` [OE-core][scarthgap 22/28] vim: Upgrade 9.1.1043 -> 9.1.1115 Steve Sakoman
2025-03-12 19:55 ` [OE-core][scarthgap 23/28] xserver-xorg: upgrade 21.1.14 -> 21.1.15 Steve Sakoman
2025-03-12 19:55 ` [OE-core][scarthgap 24/28] xserver-xf86-config: add a configuration fragment to disable screen blanking Steve Sakoman
2025-03-12 19:55 ` [OE-core][scarthgap 25/28] xserver-xf86-config: remove obsolete configuration files Steve Sakoman
2025-03-12 19:55 ` [OE-core][scarthgap 26/28] xserver-xorg: upgrade 21.1.15 -> 21.1.16 Steve Sakoman
2025-03-12 19:55 ` [OE-core][scarthgap 27/28] babeltrace: extend to nativesdk Steve Sakoman
2025-03-12 19:55 ` [OE-core][scarthgap 28/28] babeltrace2: " Steve Sakoman
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=cover.1741809252.git.steve@sakoman.com \
--to=steve@sakoman.com \
--cc=openembedded-core@lists.openembedded.org \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox