* [OE-core][dunfell 00/17] Pull request (cover letter only)
@ 2021-02-17 23:51 Steve Sakoman
0 siblings, 0 replies; 4+ messages in thread
From: Steve Sakoman @ 2021-02-17 23:51 UTC (permalink / raw)
To: openembedded-core
The following changes since commit 9efabaff73090b08233b4fcef22142b9ac0c11aa:
wic/selftest: test_permissions also test bitbake image (2021-02-09 06:12:09 -1000)
are available in the Git repository at:
git://git.openembedded.org/openembedded-core-contrib stable/dunfell-next
http://cgit.openembedded.org/openembedded-core-contrib/log/?h=stable/dunfell-next
Alexander Kanavin (6):
p11-kit: upgrade 0.23.20 -> 0.23.21
python3: split python target configuration into own class
python3-pycairo: use python3targetconfig
distutils3-base.bbclass: use python3targetconfig
meta: drop _PYTHON_SYSCONFIGDATA_NAME hacks
gpgme: use python3targetconfig
Dorinda (1):
oe-pkgdata-util: Check if environment script is initialized
Jon Mason (1):
gcc-9.3.inc: Fix potential runtime crash
Khem Raj (1):
python3targetconfig.bbclass: Make py3 dep and tasks only for target
recipes
Lee Chee Yang (1):
p11-kit: upgrade 0.23.21 -> 0.23.22
Martin Jansa (1):
image_types.bbclass: tar: use posix format instead of gnu
Michael Halstead (1):
uninative: Upgrade to 2.10
Richard Purdie (3):
image_types: Ensure tar archives are reproducible
opkg: Fix build reproducibility issue
opkg: Fix patch glitches
saloni (2):
libgcrypt: Whitelisted CVEs
libcroco: Added CVE
meta/classes/distutils3-base.bbclass | 2 +-
meta/classes/image_types.bbclass | 2 +-
meta/classes/python3native.bbclass | 2 -
meta/classes/python3targetconfig.bbclass | 17 ++
meta/classes/scons.bbclass | 3 -
meta/conf/distro/include/yocto-uninative.inc | 8 +-
meta/lib/oe/prservice.py | 4 -
meta/recipes-core/glib-2.0/glib.inc | 4 -
meta/recipes-devtools/gcc/gcc-9.3.inc | 1 +
...-PR-tree-optimization-97236-fix-bad-.patch | 119 +++++++++++
.../opkg/opkg/sourcedateepoch.patch | 24 +++
meta/recipes-devtools/opkg/opkg_0.4.2.bb | 1 +
.../python/python3-pycairo_1.19.0.bb | 2 +-
meta/recipes-graphics/mesa/mesa.inc | 5 -
meta/recipes-support/gpgme/gpgme_1.13.1.bb | 2 +-
.../libcroco/files/CVE-2020-12825.patch | 192 ++++++++++++++++++
.../libcroco/libcroco_0.6.13.bb | 3 +
.../libgcrypt/libgcrypt_1.8.5.bb | 3 +
...{p11-kit_0.23.20.bb => p11-kit_0.23.22.bb} | 7 +-
scripts/oe-pkgdata-util | 3 +
20 files changed, 375 insertions(+), 29 deletions(-)
create mode 100644 meta/classes/python3targetconfig.bbclass
create mode 100644 meta/recipes-devtools/gcc/gcc-9.3/0001-Backport-fix-for-PR-tree-optimization-97236-fix-bad-.patch
create mode 100644 meta/recipes-devtools/opkg/opkg/sourcedateepoch.patch
create mode 100644 meta/recipes-support/libcroco/files/CVE-2020-12825.patch
rename meta/recipes-support/p11-kit/{p11-kit_0.23.20.bb => p11-kit_0.23.22.bb} (75%)
--
2.25.1
^ permalink raw reply [flat|nested] 4+ messages in thread
* [OE-core][dunfell 00/17] Pull request (cover letter only)
@ 2022-04-01 0:32 Steve Sakoman
0 siblings, 0 replies; 4+ messages in thread
From: Steve Sakoman @ 2022-04-01 0:32 UTC (permalink / raw)
To: openembedded-core
Note: this also includes the patches from my previous pull request on Tuesday
The following changes since commit 71015408c60ddf2e9af00cc8574815971e1b689d:
oeqa/selftest/tinfoil: Improve tinfoil event test debugging (2022-03-21 04:17:02 -1000)
are available in the Git repository at:
git://git.openembedded.org/openembedded-core-contrib stable/dunfell-next
http://cgit.openembedded.org/openembedded-core-contrib/log/?h=stable/dunfell-next
Davide Gardenal (3):
qemu: backport patch fix for CVE-2020-13791
apt: backport patch fix for CVE-2020-3810
ghostscript: backport patch fix for CVE-2021-3781
Minjae Kim (2):
gnu-config: update SRC_URI
virglrenderer: update SRC_URI
Ralph Siemsen (1):
libxml2: fix CVE-2022-23308 regression
Richard Purdie (1):
oeqa/selftest/tinfoil: Fix intermittent event loss issue in test
Ross Burton (1):
python3: ignore CVE-2022-26488
Steve Sakoman (9):
libsolv: fix CVE: CVE-2021-44568-71 and CVE-2021-44573-77
ghostscript: fix CVE-2020-15900 and CVE-2021-45949 for -native
util-linux: fix CVE-2022-0563
xserver-xorg: update to 1.20.9
xserver-xorg: update to 1.20.10
xserver-xorg: update to 1.20.11
xserver-xorg: update to 1.20.12
xserver-xorg: update to 1.20.13
xserver-xorg: update to 1.20.14
meta/lib/oeqa/selftest/cases/tinfoil.py | 2 +-
.../CVE-2022-23308-fix-regression.patch | 98 ++++++++
meta/recipes-core/libxml/libxml2_2.9.10.bb | 1 +
.../util-linux/util-linux/CVE-2022-0563.patch | 161 ++++++++++++
.../util-linux/util-linux_2.35.1.bb | 1 +
meta/recipes-devtools/apt/apt.inc | 1 +
.../apt/apt/CVE-2020-3810.patch | 174 +++++++++++++
.../gnu-config/gnu-config_git.bb | 2 +-
.../recipes-devtools/python/python3_3.8.13.bb | 2 +-
meta/recipes-devtools/qemu/qemu.inc | 1 +
.../qemu/qemu/CVE-2020-13791.patch | 44 ++++
.../ghostscript/CVE-2021-3781_1.patch | 121 +++++++++
.../ghostscript/CVE-2021-3781_2.patch | 37 +++
.../ghostscript/CVE-2021-3781_3.patch | 238 ++++++++++++++++++
.../ghostscript/ghostscript_9.52.bb | 9 +-
.../libsolv/files/CVE-2021-3200.patch | 10 +
.../virglrenderer/virglrenderer_0.8.2.bb | 2 +-
.../xorg-xserver/xserver-xorg.inc | 2 +-
.../xserver-xorg/CVE-2020-14345.patch | 182 --------------
.../xserver-xorg/CVE-2020-14346.patch | 36 ---
.../xserver-xorg/CVE-2020-14347.patch | 38 ---
.../xserver-xorg/CVE-2020-14360.patch | 132 ----------
.../xserver-xorg/CVE-2020-14361.patch | 36 ---
.../xserver-xorg/CVE-2020-14362.patch | 70 ------
.../xserver-xorg/CVE-2020-25712.patch | 102 --------
...xorg_1.20.8.bb => xserver-xorg_1.20.14.bb} | 11 +-
26 files changed, 900 insertions(+), 613 deletions(-)
create mode 100644 meta/recipes-core/libxml/libxml2/CVE-2022-23308-fix-regression.patch
create mode 100644 meta/recipes-core/util-linux/util-linux/CVE-2022-0563.patch
create mode 100644 meta/recipes-devtools/apt/apt/CVE-2020-3810.patch
create mode 100644 meta/recipes-devtools/qemu/qemu/CVE-2020-13791.patch
create mode 100644 meta/recipes-extended/ghostscript/ghostscript/CVE-2021-3781_1.patch
create mode 100644 meta/recipes-extended/ghostscript/ghostscript/CVE-2021-3781_2.patch
create mode 100644 meta/recipes-extended/ghostscript/ghostscript/CVE-2021-3781_3.patch
delete mode 100644 meta/recipes-graphics/xorg-xserver/xserver-xorg/CVE-2020-14345.patch
delete mode 100644 meta/recipes-graphics/xorg-xserver/xserver-xorg/CVE-2020-14346.patch
delete mode 100644 meta/recipes-graphics/xorg-xserver/xserver-xorg/CVE-2020-14347.patch
delete mode 100644 meta/recipes-graphics/xorg-xserver/xserver-xorg/CVE-2020-14360.patch
delete mode 100644 meta/recipes-graphics/xorg-xserver/xserver-xorg/CVE-2020-14361.patch
delete mode 100644 meta/recipes-graphics/xorg-xserver/xserver-xorg/CVE-2020-14362.patch
delete mode 100644 meta/recipes-graphics/xorg-xserver/xserver-xorg/CVE-2020-25712.patch
rename meta/recipes-graphics/xorg-xserver/{xserver-xorg_1.20.8.bb => xserver-xorg_1.20.14.bb} (73%)
--
2.25.1
^ permalink raw reply [flat|nested] 4+ messages in thread
* [OE-core][dunfell 00/17] Pull request (cover letter only)
@ 2021-12-08 15:08 Steve Sakoman
0 siblings, 0 replies; 4+ messages in thread
From: Steve Sakoman @ 2021-12-08 15:08 UTC (permalink / raw)
To: openembedded-core
The following changes since commit f61fcb6e176f19f1e768ce63a693f238713c8887:
openssh: remove redundant BSD license (2021-12-02 05:11:21 -1000)
are available in the Git repository at:
git://git.openembedded.org/openembedded-core-contrib stable/dunfell-next
http://cgit.openembedded.org/openembedded-core-contrib/log/?h=stable/dunfell-next
Dhruva Gole (1):
scripts/checklayer/common.py: Fixed a minor grammatical error
Eero Aaltonen (1):
cmake: FindGTest: Add target for gmock library
Jate Sujjavanich (2):
libdnf: Backport bugfix for upgrade calc
dnf: Backport bugfix for upgrade
Khem Raj (1):
libunwind: Backport a fix for -fno-common option to compile
Neetika Singh (1):
glib-2.0: Add security fixes
Pavel Zhukov (2):
busybox: Fix for CVE-2021-42374
busybox: Fix for CVE-2021-42376
Quentin Schulz (1):
README.OE-Core.md: update URLs
Ranjitsinh Rathod (2):
ncurses: Fix for CVE-2021-39537
libsolv: update tag for missing CVEs
Richard Purdie (2):
buildhistory: Fix srcrevs output
oeqa/parselogs: Fix quoting
Ross Burton (1):
vim: fix CVE-2021-3968 and CVE-2021-3973
Steve Sakoman (3):
bind: update to 9.11.33
bind: update to 9.11.34
bind: update to 9.11.35
README.OE-Core | 10 +-
meta/classes/buildhistory.bbclass | 30 +-
meta/lib/oeqa/runtime/cases/parselogs.py | 14 +-
.../bind/{bind_9.11.32.bb => bind_9.11.35.bb} | 2 +-
.../busybox/busybox/CVE-2021-42374.patch | 53 +++
.../busybox/busybox/CVE-2021-42376.patch | 138 ++++++
meta/recipes-core/busybox/busybox_1.31.1.bb | 2 +
.../glib-2.0/glib-2.0/CVE-2021-27218.patch | 129 ++++++
.../glib-2.0/glib-2.0/CVE-2021-27219-01.patch | 170 +++++++
.../glib-2.0/glib-2.0/CVE-2021-27219-02.patch | 249 +++++++++++
.../glib-2.0/glib-2.0/CVE-2021-27219-03.patch | 131 ++++++
.../glib-2.0/glib-2.0/CVE-2021-27219-04.patch | 298 +++++++++++++
.../glib-2.0/glib-2.0/CVE-2021-27219-05.patch | 54 +++
.../glib-2.0/glib-2.0/CVE-2021-27219-06.patch | 101 +++++
.../glib-2.0/glib-2.0/CVE-2021-27219-07.patch | 76 ++++
.../glib-2.0/glib-2.0/CVE-2021-27219-08.patch | 101 +++++
.../glib-2.0/glib-2.0/CVE-2021-27219-09.patch | 100 +++++
.../glib-2.0/glib-2.0/CVE-2021-27219-10.patch | 59 +++
.../glib-2.0/glib-2.0/CVE-2021-27219-11.patch | 63 +++
.../glib-2.0/CVE-2021-27219-reg1-1.patch | 36 ++
.../glib-2.0/CVE-2021-27219-reg1-2.patch | 38 ++
.../glib-2.0/CVE-2021-27219-reg1-4.patch | 38 ++
.../glib-2.0/CVE-2021-27219-reg1-5.patch | 100 +++++
.../glib-2.0/CVE-2021-27219-reg2-1.patch | 49 ++
.../glib-2.0/CVE-2021-27219-reg2-2.patch | 43 ++
.../glib-2.0/CVE-2021-27219-reg2-3.patch | 232 ++++++++++
.../glib-2.0/glib-2.0/CVE-2021-28153-1.patch | 27 ++
.../glib-2.0/glib-2.0/CVE-2021-28153-2.patch | 42 ++
.../glib-2.0/glib-2.0/CVE-2021-28153-3.patch | 57 +++
.../glib-2.0/glib-2.0/CVE-2021-28153-4.patch | 265 +++++++++++
.../glib-2.0/glib-2.0/CVE-2021-28153-5.patch | 55 +++
meta/recipes-core/glib-2.0/glib-2.0_2.62.6.bb | 24 +
.../ncurses/files/CVE-2021-39537.patch | 30 ++
meta/recipes-core/ncurses/ncurses_6.2.bb | 1 +
.../cmake/cmake-native_3.16.5.bb | 1 +
...ndGTest-Add-target-for-gmock-library.patch | 255 +++++++++++
...ackages-in-upgrade-job-RhBug-1728252.patch | 60 +++
meta/recipes-devtools/dnf/dnf_4.2.2.bb | 1 +
...job-goal.upgrade-with-sltr-as-target.patch | 58 +++
meta/recipes-devtools/libdnf/libdnf_0.28.1.bb | 1 +
.../libsolv/files/CVE-2021-3200.patch | 9 +-
...0001-Fix-compilation-with-fno-common.patch | 420 ++++++++++++++++++
.../libunwind/libunwind_1.3.1.bb | 1 +
...rash-when-using-CTRL-W-f-without-fin.patch | 92 ++++
meta/recipes-support/vim/vim.inc | 4 +
scripts/lib/checklayer/cases/common.py | 2 +-
46 files changed, 3688 insertions(+), 33 deletions(-)
rename meta/recipes-connectivity/bind/{bind_9.11.32.bb => bind_9.11.35.bb} (98%)
create mode 100644 meta/recipes-core/busybox/busybox/CVE-2021-42374.patch
create mode 100644 meta/recipes-core/busybox/busybox/CVE-2021-42376.patch
create mode 100644 meta/recipes-core/glib-2.0/glib-2.0/CVE-2021-27218.patch
create mode 100644 meta/recipes-core/glib-2.0/glib-2.0/CVE-2021-27219-01.patch
create mode 100644 meta/recipes-core/glib-2.0/glib-2.0/CVE-2021-27219-02.patch
create mode 100644 meta/recipes-core/glib-2.0/glib-2.0/CVE-2021-27219-03.patch
create mode 100644 meta/recipes-core/glib-2.0/glib-2.0/CVE-2021-27219-04.patch
create mode 100644 meta/recipes-core/glib-2.0/glib-2.0/CVE-2021-27219-05.patch
create mode 100644 meta/recipes-core/glib-2.0/glib-2.0/CVE-2021-27219-06.patch
create mode 100644 meta/recipes-core/glib-2.0/glib-2.0/CVE-2021-27219-07.patch
create mode 100644 meta/recipes-core/glib-2.0/glib-2.0/CVE-2021-27219-08.patch
create mode 100644 meta/recipes-core/glib-2.0/glib-2.0/CVE-2021-27219-09.patch
create mode 100644 meta/recipes-core/glib-2.0/glib-2.0/CVE-2021-27219-10.patch
create mode 100644 meta/recipes-core/glib-2.0/glib-2.0/CVE-2021-27219-11.patch
create mode 100644 meta/recipes-core/glib-2.0/glib-2.0/CVE-2021-27219-reg1-1.patch
create mode 100644 meta/recipes-core/glib-2.0/glib-2.0/CVE-2021-27219-reg1-2.patch
create mode 100644 meta/recipes-core/glib-2.0/glib-2.0/CVE-2021-27219-reg1-4.patch
create mode 100644 meta/recipes-core/glib-2.0/glib-2.0/CVE-2021-27219-reg1-5.patch
create mode 100644 meta/recipes-core/glib-2.0/glib-2.0/CVE-2021-27219-reg2-1.patch
create mode 100644 meta/recipes-core/glib-2.0/glib-2.0/CVE-2021-27219-reg2-2.patch
create mode 100644 meta/recipes-core/glib-2.0/glib-2.0/CVE-2021-27219-reg2-3.patch
create mode 100644 meta/recipes-core/glib-2.0/glib-2.0/CVE-2021-28153-1.patch
create mode 100644 meta/recipes-core/glib-2.0/glib-2.0/CVE-2021-28153-2.patch
create mode 100644 meta/recipes-core/glib-2.0/glib-2.0/CVE-2021-28153-3.patch
create mode 100644 meta/recipes-core/glib-2.0/glib-2.0/CVE-2021-28153-4.patch
create mode 100644 meta/recipes-core/glib-2.0/glib-2.0/CVE-2021-28153-5.patch
create mode 100644 meta/recipes-core/ncurses/files/CVE-2021-39537.patch
create mode 100644 meta/recipes-devtools/cmake/cmake/0006-cmake-FindGTest-Add-target-for-gmock-library.patch
create mode 100644 meta/recipes-devtools/dnf/dnf/0040-Keep-installed-packages-in-upgrade-job-RhBug-1728252.patch
create mode 100644 meta/recipes-devtools/libdnf/libdnf/0040-Mark-job-goal.upgrade-with-sltr-as-target.patch
create mode 100644 meta/recipes-support/libunwind/libunwind/0001-Fix-compilation-with-fno-common.patch
create mode 100644 meta/recipes-support/vim/files/0002-patch-8.2.3611-crash-when-using-CTRL-W-f-without-fin.patch
--
2.25.1
^ permalink raw reply [flat|nested] 4+ messages in thread
* [OE-core][dunfell 00/17] Pull request (cover letter only)
@ 2020-07-30 3:42 Steve Sakoman
0 siblings, 0 replies; 4+ messages in thread
From: Steve Sakoman @ 2020-07-30 3:42 UTC (permalink / raw)
To: openembedded-core
The following changes since commit ea886d57db917a41a0d106a15e1e96c72d6407b0:
kernel-yocto: account for extracted defconfig in elements check (2020-07-23 04:07:37 -1000)
are available in the Git repository at:
git://git.openembedded.org/openembedded-core-contrib stable/dunfell-next
http://cgit.openembedded.org/openembedded-core-contrib/log/?h=stable/dunfell-next
Armin Kuster (1):
glibc: Secruity fix for CVE-2020-6096
Bruce Ashfield (2):
linux-yocto/5.4: update to v5.4.51
linux-yocto-rt/5.4: fix mmdrop stress test issues
Changqing Li (1):
gtk-immodules-cache.bbclass: fix post install scriptlet error
Chen Qi (1):
rpm: fix nativesdk's default var location
Daniel Ammann (1):
image.bbclass: improve wording when image size exceeds the specified
limit
Joshua Watt (2):
classes/cmake: Fix host detection
classes/package: Use HOST_OS for runtime dependencies
Kevin Hao (3):
wic/filemap: Drop the unused block_is_unmapped()
wic/filemap: Drop the unused get_unmapped_ranges()
wic/filemap: Fall back to standard copy when no way to get the block
map
Kurt Kiefer (1):
linux-firmware: add ibt-20 package
Lee Chee Yang (1):
buildhistory: use pid for temporary txt file name
Richard Purdie (1):
oeqa/qemurunner: Add priority/nice information for running processes
Robert Yang (1):
openssl: openssl-bin requires openssl-conf to run
Ross Burton (1):
startup-notification: add time_t type mismatch patch from upstream
Sakib Sajal (1):
busybox: make hwclock compatible with glibc 2.31
meta/classes/buildhistory.bbclass | 11 +-
meta/classes/cmake.bbclass | 19 +-
meta/classes/gtk-immodules-cache.bbclass | 1 +
meta/classes/image.bbclass | 4 +-
meta/classes/package.bbclass | 10 +-
meta/lib/oeqa/utils/qemurunner.py | 2 +-
meta/lib/oeqa/utils/qemutinyrunner.py | 2 +-
.../openssl/openssl_1.1.1g.bb | 2 +
...1-hwclock-make-glibc-2.31-compatible.patch | 83 ++++++++
meta/recipes-core/busybox/busybox_1.31.1.bb | 1 +
.../glibc/glibc/CVE-2020-6096.patch | 112 ++++++++++
.../glibc/glibc/CVE-2020-6096_2.patch | 194 ++++++++++++++++++
meta/recipes-core/glibc/glibc_2.31.bb | 2 +
meta/recipes-devtools/rpm/rpm_4.14.2.1.bb | 2 +-
.../startup-notification-0.12/time_t.patch | 108 ++++++++++
.../startup-notification_0.12.bb | 1 +
.../linux-firmware/linux-firmware_20200619.bb | 4 +
.../linux/linux-yocto-rt_5.4.bb | 6 +-
.../linux/linux-yocto-tiny_5.4.bb | 8 +-
meta/recipes-kernel/linux/linux-yocto_5.4.bb | 22 +-
scripts/lib/wic/filemap.py | 75 +++----
21 files changed, 580 insertions(+), 89 deletions(-)
create mode 100644 meta/recipes-core/busybox/busybox/0001-hwclock-make-glibc-2.31-compatible.patch
create mode 100644 meta/recipes-core/glibc/glibc/CVE-2020-6096.patch
create mode 100644 meta/recipes-core/glibc/glibc/CVE-2020-6096_2.patch
create mode 100644 meta/recipes-graphics/startup-notification/startup-notification-0.12/time_t.patch
--
2.17.1
^ permalink raw reply [flat|nested] 4+ messages in thread
end of thread, other threads:[~2022-04-01 0:32 UTC | newest]
Thread overview: 4+ messages (download: mbox.gz / follow: Atom feed)
-- links below jump to the message on this page --
2021-02-17 23:51 [OE-core][dunfell 00/17] Pull request (cover letter only) Steve Sakoman
-- strict thread matches above, loose matches on Subject: below --
2022-04-01 0:32 Steve Sakoman
2021-12-08 15:08 Steve Sakoman
2020-07-30 3:42 Steve Sakoman
This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.