* [OE-core][dunfell 00/26] Pull request (cover letter only)
@ 2021-02-10 23:34 Steve Sakoman
0 siblings, 0 replies; 2+ messages in thread
From: Steve Sakoman @ 2021-02-10 23:34 UTC (permalink / raw)
To: openembedded-core
The following changes since commit e0cd2e1f9ae956d72b8033ce1c4403d8bd99d3d5:
staging: Clean up files installed into the sysroot (2021-01-29 04:48:10 -1000)
are available in the Git repository at:
git://git.openembedded.org/openembedded-core-contrib stable/dunfell-next
http://cgit.openembedded.org/openembedded-core-contrib/log/?h=stable/dunfell-next
Alexander Kanavin (1):
ca-certificates: correct upstream version check
Anatol Belski (1):
glib-2.0: Rename patch file for CVE-2020-35457
Awais Belal (1):
kernel.bbclass: fix deployment for initramfs images
Bruce Ashfield (3):
linux-yocto/5.4: update to v5.4.90
linux-yocto-rt/5.4: fix 5.4-stable caused build breakage
linux-yocto/5.4: update to v5.4.94
Dorinda (1):
sanity.bbclass: Check if PSEUDO_IGNORE_PATHS and paths under pseudo
control overlap
Julien Massot (1):
rng-tools: fix rngd_jitter initialization
Lee Chee Yang (4):
cve-check: replace Looseversion with custom version class
cve_check: add CVE_VERSION_SUFFIX to indicate suffix in versioning
openssl: set CVE_VERSION_SUFFIX
wic/selftest: test_permissions also test bitbake image
Mark Hatle (1):
package.bbclass: hash equivalency and pr service
Peter Bergin (1):
buildhistory.bbclass: avoid exception for empty BUILDHISTORY_FEATURES
variable
Ricardo Ribalda (1):
classes/image_types_wic: Reorder do_flush_pseudodb
Ricardo Ribalda Delgado (1):
oeqa: wic: Add tests for permissions and change-directory
Richard Purdie (3):
pseudo: Update to include passwd and file renaming fixes
package: Ensure do_packagedata is cleaned correctly
qemu.inc: Should depend on qemu-system-native, not qemu-native
Sourabh Banerjee (1):
layer.conf: fix sanity error for PATH variable in extensible SDK
workflow
Tomasz Dziendzielski (3):
python3: Use addtask statement instead of task dependencies
lib/oe/patch.py: Ignore scissors line on applying patch
sstatesig: Add descriptive error message to getpwuid/getgrgid "uid/gid
not found" KeyError
Vyacheslav Yurkov (1):
npm.bbclass: use python3 for npm config
Wang Mingyu (1):
ca-certificates: upgrade 20190110 -> 20200601
zhengruoqin (1):
ca-certificates: upgrade 20200601 -> 20210119
meta/classes/buildhistory.bbclass | 2 +-
meta/classes/cve-check.bbclass | 14 ++-
meta/classes/image_types_wic.bbclass | 2 +-
meta/classes/kernel.bbclass | 2 +-
meta/classes/npm.bbclass | 6 +-
meta/classes/package.bbclass | 59 ++++++++--
meta/classes/sanity.bbclass | 10 ++
meta/conf/bitbake.conf | 1 +
meta/conf/layer.conf | 4 +-
meta/conf/machine/include/qemu.inc | 2 +-
meta/lib/oe/cve_check.py | 60 ++++++++++
meta/lib/oe/patch.py | 2 +-
meta/lib/oe/sstatesig.py | 6 +-
meta/lib/oeqa/selftest/cases/cve_check.py | 36 ++++++
meta/lib/oeqa/selftest/cases/prservice.py | 8 +-
meta/lib/oeqa/selftest/cases/wic.py | 106 ++++++++++++++++++
.../openssl/openssl_1.1.1i.bb | 2 +
...onEntry-lis.patch => CVE-2020-35457.patch} | 0
meta/recipes-core/glib-2.0/glib-2.0_2.62.6.bb | 2 +-
meta/recipes-devtools/pseudo/pseudo_git.bb | 2 +-
meta/recipes-devtools/python/python3_3.8.2.bb | 5 +-
.../linux/linux-yocto-rt_5.4.bb | 6 +-
.../linux/linux-yocto-tiny_5.4.bb | 8 +-
meta/recipes-kernel/linux/linux-yocto_5.4.bb | 22 ++--
.../0001-certdata2pem.py-use-python3.patch | 37 ------
...0190110.bb => ca-certificates_20210119.bb} | 6 +-
...-O_NONBLOCK-setting-for-entropy-pipe.patch | 26 +++++
...ialize-AES-key-before-setting-the-en.patch | 38 +++++++
...ys-read-from-entropy-pipe-before-set.patch | 38 +++++++
.../rng-tools/rng-tools_6.9.bb | 3 +
30 files changed, 423 insertions(+), 92 deletions(-)
create mode 100644 meta/lib/oe/cve_check.py
create mode 100644 meta/lib/oeqa/selftest/cases/cve_check.py
rename meta/recipes-core/glib-2.0/glib-2.0/{0001-goption-Add-a-precondition-to-avoid-GOptionEntry-lis.patch => CVE-2020-35457.patch} (100%)
delete mode 100644 meta/recipes-support/ca-certificates/ca-certificates/0001-certdata2pem.py-use-python3.patch
rename meta/recipes-support/ca-certificates/{ca-certificates_20190110.bb => ca-certificates_20210119.bb} (93%)
create mode 100644 meta/recipes-support/rng-tools/rng-tools/0001-rngd_jitter-fix-O_NONBLOCK-setting-for-entropy-pipe.patch
create mode 100644 meta/recipes-support/rng-tools/rng-tools/0002-rngd_jitter-initialize-AES-key-before-setting-the-en.patch
create mode 100644 meta/recipes-support/rng-tools/rng-tools/0003-rngd_jitter-always-read-from-entropy-pipe-before-set.patch
--
2.25.1
^ permalink raw reply [flat|nested] 2+ messages in thread
* [OE-core][dunfell 00/26] Pull request (cover letter only)
@ 2021-06-03 14:14 Steve Sakoman
0 siblings, 0 replies; 2+ messages in thread
From: Steve Sakoman @ 2021-06-03 14:14 UTC (permalink / raw)
To: openembedded-core
The following changes since commit ecd636154e7cfc1349a7cfd8026a85eafa219535:
build-appliance-image: Update to dunfell head revision (2021-05-24 15:19:42 +0100)
are available in the Git repository at:
git://git.openembedded.org/openembedded-core-contrib stable/dunfell-next
http://cgit.openembedded.org/openembedded-core-contrib/log/?h=stable/dunfell-next
Bruce Ashfield (4):
kernel-yocto: provide debug / summary information for metadata
linux-yocto/5.4: update to v5.4.117
linux-yocto/5.4: update to v5.4.118
linux-yocto/5.4: update to v5.4.119
Changqing Li (2):
unfs3: correct configure option
pkgconfig: update SRC_URI
Daniel McGregor (2):
sstate: Ignore sstate signing key
lib/oe/gpg_sign.py: Fix gpg verification
Guillaume Champagne (1):
image-live.bbclass: order do_bootimg after do_rootfs
Ming Liu (2):
kernel-fitimage.bbclass: fix a wrong conditional check
initramfs-framework:rootfs: fix wrong indentions
Richard Purdie (7):
cve-extra-exclusions.inc: add exclusion list for intractable CVE's
cve-extra-exclusions: Fix typos
cve-extra-exclusions.inc: Clean up merged CPE updates
glibc: Add 8GB VM usage cap for usermode test suite
grub: Exclude CVE-2019-14865 from cve-check
oeqa/runtime/rpm: Drop log message counting test component
linux-firmware: upgrade 20210315 -> 20210511
Ross Burton (2):
cups: whitelist CVE-2021-25317
package_rpm: pass XZ_THREADS to rpm
Sana Kazi (1):
openssh: Add fixes for CVEs reported for openssh
Steve Sakoman (1):
expat: set CVE_PRODUCT
Tony Tascioglu (2):
libxml2: Reformat runtest.patch
libxml2: Add bash dependency for ptests.
Volker Vogelhuber (1):
busybox: make busybox's syslog.cfg depend on
VIRTUAL-RUNTIME_base-utils-syslog
akash hadke (1):
tiff: Add fix for CVE-2020-35521 and CVE-2020-35522
meta/classes/image-live.bbclass | 2 +-
meta/classes/kernel-fitimage.bbclass | 2 +-
meta/classes/kernel-yocto.bbclass | 17 ++
meta/classes/package_rpm.bbclass | 4 +-
meta/classes/sstate.bbclass | 2 +
.../distro/include/cve-extra-exclusions.inc | 73 +++++++++
meta/lib/oe/gpg_sign.py | 2 +-
meta/lib/oeqa/runtime/cases/rpm.py | 9 --
meta/recipes-bsp/grub/grub2.inc | 3 +
.../openssh/openssh/CVE-2020-14145.patch | 97 ++++++++++++
.../openssh/openssh_8.2p1.bb | 13 +-
meta/recipes-core/busybox/busybox_1.31.1.bb | 2 +-
meta/recipes-core/expat/expat_2.2.9.bb | 2 +
.../glibc/glibc/check-test-wrapper | 9 ++
.../initrdscripts/initramfs-framework/rootfs | 2 +-
.../recipes-core/libxml/libxml2/runtest.patch | 45 +++---
meta/recipes-core/libxml/libxml2_2.9.10.bb | 2 +-
.../pkgconfig/pkgconfig_git.bb | 2 +-
meta/recipes-devtools/unfs3/unfs3_git.bb | 2 +-
meta/recipes-extended/cups/cups.inc | 4 +
...20210315.bb => linux-firmware_20210511.bb} | 4 +-
.../linux/linux-yocto-rt_5.4.bb | 6 +-
.../linux/linux-yocto-tiny_5.4.bb | 8 +-
meta/recipes-kernel/linux/linux-yocto_5.4.bb | 22 +--
...or_CVE-2020-35521_and_CVE-2020-35522.patch | 148 ++++++++++++++++++
...or_CVE-2020-35521_and_CVE-2020-35522.patch | 27 ++++
.../CVE-2020-35521_and_CVE-2020-35522.patch | 119 ++++++++++++++
meta/recipes-multimedia/libtiff/tiff_4.1.0.bb | 3 +
28 files changed, 571 insertions(+), 60 deletions(-)
create mode 100644 meta/conf/distro/include/cve-extra-exclusions.inc
create mode 100644 meta/recipes-connectivity/openssh/openssh/CVE-2020-14145.patch
rename meta/recipes-kernel/linux-firmware/{linux-firmware_20210315.bb => linux-firmware_20210511.bb} (99%)
create mode 100644 meta/recipes-multimedia/libtiff/files/001_support_patch_for_CVE-2020-35521_and_CVE-2020-35522.patch
create mode 100644 meta/recipes-multimedia/libtiff/files/002_support_patch_for_CVE-2020-35521_and_CVE-2020-35522.patch
create mode 100644 meta/recipes-multimedia/libtiff/files/CVE-2020-35521_and_CVE-2020-35522.patch
--
2.25.1
^ permalink raw reply [flat|nested] 2+ messages in thread
end of thread, other threads:[~2021-06-03 14:14 UTC | newest]
Thread overview: 2+ messages (download: mbox.gz / follow: Atom feed)
-- links below jump to the message on this page --
2021-02-10 23:34 [OE-core][dunfell 00/26] Pull request (cover letter only) Steve Sakoman
2021-06-03 14:14 Steve Sakoman
This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.