Re: dunfell merge request: Feb 8th

Re: dunfell merge request: Feb 8th

[Khem Raj]

applied thanks

On Tue, Feb 8, 2022 at 6:29 PM akuster808 <akuster808@gmail.com> wrote:
>
> The following changes since commit ab9fca485e13f6f2f9761e1d2810f87c2e4f060a:
>
>    postfix: upgrade 3.4.12 -> 3.4.23 (2021-12-31 10:24:49 -0800)
>
> are available in the Git repository at:
>
>    https://git.openembedded.org/meta-openembedded dunfell-next
>
> for you to fetch changes up to ec978232732edbdd875ac367b5a9c04b881f2e19:
>
>    nodejs: Fix for CVE-2021-44532 (2022-02-06 11:01:44 -0800)
>
> ----------------------------------------------------------------
> Andre Carvalho (1):
>        netcat: Set CVE_PRODUCT
>
> Armin Kuster (2):
>        wireshark: Update to 3.2.18
>        c-ares: bump PV in recipe to 1.16.1
>
> Jeremy Puhlman (1):
>        CVE-2021-4034: polkit Local privilege escalation in pkexec due to
> incorrect handling of argument vector
>
> Leif Middelschulte (1):
>        dbus-daemon-proxy: add missing `return` statement
>
> Robert Joslyn (1):
>        linuxptp: Update to 2.0.1
>
> Virendra Thakur (4):
>        strongswan: Fix for CVE-2021-41990 and CVE-2021-41991
>        udisks2: Fix for CVE-2021-3802
>        p7zip: fix for CVE-2018-5996
>        nodejs: Fix for CVE-2021-44532
>
> wangmy (1):
>        apache2: upgrade 2.4.51 -> 2.4.52
>
>   meta-networking/recipes-support/netcat/netcat_0.7.1.bb |    2 +
>   meta-networking/recipes-support/strongswan/files/CVE-2021-41990.patch
> |   62 +
>   meta-networking/recipes-support/strongswan/files/CVE-2021-41991.patch
> |   41 +
>   meta-networking/recipes-support/strongswan/strongswan_5.8.4.bb |    2 +
>   meta-networking/recipes-support/wireshark/files/fix_lemon_path.patch
> |   22 +
>   meta-networking/recipes-support/wireshark/{wireshark_3.2.15.bb =>
> wireshark_3.2.18.bb} |    5 +-
>   meta-oe/recipes-connectivity/linuxptp/{linuxptp_2.0.bb =>
> linuxptp_2.0.1.bb}           |    5 +-
>   .../dbus-daemon-proxy/0001-dbus-daemon-proxy-Return-DBUS_HANDLER_RESULT_NOT_YET.patch |    2 +-
>   meta-oe/recipes-devtools/nodejs/nodejs/CVE-2021-44532.patch | 3090
> +++++++++++++++++++++++++++++++++++++++++
>   meta-oe/recipes-devtools/nodejs/nodejs_12.21.0.bb |    1 +
>   meta-oe/recipes-extended/p7zip/files/CVE-2018-5996.patch |  226 +++
>   meta-oe/recipes-extended/p7zip/p7zip_16.02.bb |    1 +
>   meta-oe/recipes-extended/polkit/files/CVE-2021-4034.patch |   74 +
>   meta-oe/recipes-extended/polkit/polkit_0.116.bb |    1 +
>   meta-oe/recipes-support/c-ares/c-ares_1.16.1.bb |    2 +-
>   meta-oe/recipes-support/udisks/udisks2/CVE-2021-3802.patch |   63 +
>   meta-oe/recipes-support/udisks/udisks2_git.bb |    1 +
>   meta-webserver/recipes-httpd/apache2/{apache2_2.4.51.bb =>
> apache2_2.4.52.bb}          |    2 +-
>   18 files changed, 3594 insertions(+), 8 deletions(-)
>   create mode 100644
> meta-networking/recipes-support/strongswan/files/CVE-2021-41990.patch
>   create mode 100644
> meta-networking/recipes-support/strongswan/files/CVE-2021-41991.patch
>   create mode 100644
> meta-networking/recipes-support/wireshark/files/fix_lemon_path.patch
>   rename meta-networking/recipes-support/wireshark/{wireshark_3.2.15.bb
> => wireshark_3.2.18.bb} (94%)
>   rename meta-oe/recipes-connectivity/linuxptp/{linuxptp_2.0.bb =>
> linuxptp_2.0.1.bb} (75%)
>   create mode 100644
> meta-oe/recipes-devtools/nodejs/nodejs/CVE-2021-44532.patch
>   create mode 100644
> meta-oe/recipes-extended/p7zip/files/CVE-2018-5996.patch
>   create mode 100644
> meta-oe/recipes-extended/polkit/files/CVE-2021-4034.patch
>   create mode 100644
> meta-oe/recipes-support/udisks/udisks2/CVE-2021-3802.patch
>   rename meta-webserver/recipes-httpd/apache2/{apache2_2.4.51.bb =>
> apache2_2.4.52.bb} (99%)