* [hardknott][PATCH 00/17] Pull request (cover letter only)
@ 2021-09-17 15:46 Anuj Mittal
0 siblings, 0 replies; 3+ messages in thread
From: Anuj Mittal @ 2021-09-17 15:46 UTC (permalink / raw)
To: openembedded-core
Please merge these changes.
Thanks,
Anuj
The following changes since commit 567dd35d893c5d8969d41f263a24da8fbae3fc2f:
build-appliance-image: Update to hardknott head revision (2021-09-09 10:19:49 +0100)
are available in the Git repository at:
git://push.openembedded.org/openembedded-core-contrib stable/hardknott-next
Armin Kuster (1):
apr: Security fix for CVE-2021-35940
Bruce Ashfield (4):
linux-yocto/5.10: update to v5.10.61
linux-yocto/5.10: update to v5.10.63
linux-yocto/5.4: update to v5.4.143
linux-yocto/5.4: update to v5.4.144
Changqing Li (1):
sqlite3: fix CVE-2021-36690
Kai Kang (2):
mc: fix CVE-2021-36370
squashfs-tools: fix CVE-2021-40153
Kiran Surendran (2):
ffmpeg: fix CVE-2021-38291
ffmpeg: fix CVE-2021-38171
Mingli Yu (1):
ruby: fix CVE-2021-31799
Richard Purdie (4):
tcl: Exclude CVE-2021-35331 from checks
flex: Add CVE-2019-6293 to exclusions for checks
go: Exclude CVE-2021-29923 from report list
systemtap: Fix headers issue with x86 and 5.13 headers
Trevor Gamblin (1):
bluez5: fix CVE-2021-0129
Yi Zhao (1):
ruby: Security fixes for CVE-2021-31810/CVE-2021-32066
meta/recipes-connectivity/bluez5/bluez5.inc | 1 +
...er-Fix-not-properly-checking-for-sec.patch | 113 ++++
meta/recipes-devtools/flex/flex_2.6.4.bb | 5 +
meta/recipes-devtools/go/go-1.16.7.inc | 5 +
.../ruby/ruby/CVE-2021-31799.patch | 57 ++
.../ruby/ruby/CVE-2021-31810.patch | 258 ++++++++
.../ruby/ruby/CVE-2021-32066.patch | 102 +++
meta/recipes-devtools/ruby/ruby_3.0.1.bb | 3 +
.../squashfs-tools/files/CVE-2021-40153.patch | 253 ++++++++
.../squashfs-tools/squashfs-tools_git.bb | 1 +
meta/recipes-devtools/tcltk/tcl_8.6.11.bb | 3 +
.../mc/files/CVE-2021-36370.patch | 609 ++++++++++++++++++
meta/recipes-extended/mc/mc_4.8.26.bb | 1 +
.../linux/linux-yocto-rt_5.10.bb | 4 +-
.../linux/linux-yocto-rt_5.4.bb | 6 +-
.../linux/linux-yocto-tiny_5.10.bb | 6 +-
.../linux/linux-yocto-tiny_5.4.bb | 8 +-
meta/recipes-kernel/linux/linux-yocto_5.10.bb | 22 +-
meta/recipes-kernel/linux/linux-yocto_5.4.bb | 22 +-
...8b9eda402e4e96c4e3ce01e7ff95d3e10470.patch | 26 +
.../systemtap/systemtap_git.inc | 1 +
.../ffmpeg/ffmpeg/fix-CVE-2021-38171.patch | 40 ++
.../ffmpeg/ffmpeg/fix-CVE-2021-38291.patch | 54 ++
.../recipes-multimedia/ffmpeg/ffmpeg_4.3.2.bb | 2 +
.../apr/apr/CVE-2021-35940.patch | 58 ++
meta/recipes-support/apr/apr_1.7.0.bb | 1 +
.../sqlite/sqlite3/CVE-2021-36690.patch | 62 ++
meta/recipes-support/sqlite/sqlite3_3.35.0.bb | 4 +-
28 files changed, 1692 insertions(+), 35 deletions(-)
create mode 100644 meta/recipes-connectivity/bluez5/bluez5/0001-shared-gatt-server-Fix-not-properly-checking-for-sec.patch
create mode 100644 meta/recipes-devtools/ruby/ruby/CVE-2021-31799.patch
create mode 100644 meta/recipes-devtools/ruby/ruby/CVE-2021-31810.patch
create mode 100644 meta/recipes-devtools/ruby/ruby/CVE-2021-32066.patch
create mode 100644 meta/recipes-devtools/squashfs-tools/files/CVE-2021-40153.patch
create mode 100644 meta/recipes-extended/mc/files/CVE-2021-36370.patch
create mode 100644 meta/recipes-kernel/systemtap/systemtap/ef5a8b9eda402e4e96c4e3ce01e7ff95d3e10470.patch
create mode 100644 meta/recipes-multimedia/ffmpeg/ffmpeg/fix-CVE-2021-38171.patch
create mode 100644 meta/recipes-multimedia/ffmpeg/ffmpeg/fix-CVE-2021-38291.patch
create mode 100644 meta/recipes-support/apr/apr/CVE-2021-35940.patch
create mode 100644 meta/recipes-support/sqlite/sqlite3/CVE-2021-36690.patch
--
2.31.1
^ permalink raw reply [flat|nested] 3+ messages in thread
* [hardknott][PATCH 00/17] Pull request (cover letter only)
@ 2022-01-29 14:40 Anuj Mittal
0 siblings, 0 replies; 3+ messages in thread
From: Anuj Mittal @ 2022-01-29 14:40 UTC (permalink / raw)
To: openembedded-core
The following changes since commit 155c238d340fdc82420ba9f367cb23014c78b705:
cve-check: add lockfile to task (2022-01-17 10:37:09 +0800)
are available in the Git repository at:
git://push.openembedded.org/openembedded-core-contrib stable/hardknott-next
Bruce Ashfield (4):
linux-yocto/5.4: update to v5.4.169
linux-yocto/5.4: update to v5.4.170
linux-yocto/5.4: update to v5.4.171
linux-yocto/5.4: update to v5.4.172
Changqing Li (1):
pigz: fix one failure of command "unpigz -l"
Jagadeesh Krishnanjanappa (1):
tune-cortexa72: remove crypto for the default cortex-a72
Kai Kang (1):
speex: fix CVE-2020-23903
Kevin Hao (2):
tune-cortexa72: Enable the crc extension by default for cortexa72
tune-cortexa72: Drop the redundant cortexa72-crc tune
Mingli Yu (1):
socat: update SRC_URI
Pgowda (2):
binutils: upgrade binutils-2.36 to latest version
gcc: upgrade to gcc-10.3 version
Ross Burton (1):
lighttpd: backport a fix for CVE-2022-22707
Steve Sakoman (3):
expat fix CVE-2022-22822 through CVE-2022-22827
expat: fix CVE-2021-45960
expat: fix CVE-2021-46143
pgowda (1):
glibc: upgrade glibc-2.33 to latest version
meta/conf/distro/include/maintainers.inc | 2 +-
meta/conf/machine/include/tune-cortexa72.inc | 12 +-
.../socat/socat_1.7.4.1.bb | 2 +-
.../expat/expat/CVE-2021-45960.patch | 65 ++
.../expat/expat/CVE-2021-46143.patch | 43 ++
.../expat/expat/CVE-2022-22822-27.patch | 257 +++++++
meta/recipes-core/expat/expat_2.2.10.bb | 3 +
meta/recipes-core/glibc/glibc-version.inc | 2 +-
.../glibc/glibc/0031-CVE-2021-43396.patch | 182 -----
meta/recipes-core/glibc/glibc_2.33.bb | 1 -
.../binutils/binutils-2.36.inc | 5 +-
.../binutils/0001-CVE-2021-20197.patch | 201 ------
.../binutils/0001-CVE-2021-42574.patch | 4 +-
.../binutils/0002-CVE-2021-20197.patch | 170 -----
.../binutils/0003-CVE-2021-20197.patch | 171 -----
.../gcc/{gcc-10.2.inc => gcc-10.3.inc} | 12 +-
...ian_10.2.bb => gcc-cross-canadian_10.3.bb} | 0
.../{gcc-cross_10.2.bb => gcc-cross_10.3.bb} | 0
...-crosssdk_10.2.bb => gcc-crosssdk_10.3.bb} | 0
...cc-runtime_10.2.bb => gcc-runtime_10.3.bb} | 0
...itizers_10.2.bb => gcc-sanitizers_10.3.bb} | 0
...{gcc-source_10.2.bb => gcc-source_10.3.bb} | 0
.../gcc/gcc/0001-CVE-2021-35465.patch | 22 +-
...-up-__aarch64_cas16_acq_rel-fallback.patch | 66 --
...ight-Line-Speculation-SLS-mitigation.patch | 202 ------
...e-SLS-mitigation-for-RET-and-BR-inst.patch | 607 ----------------
...h64-Mitigate-SLS-for-BLR-instruction.patch | 658 ------------------
...gcc-Fix-argument-list-too-long-error.patch | 5 +-
...Re-introduce-spe-commandline-options.patch | 2 +-
...ngw32-Enable-operation_not_supported.patch | 4 +-
.../gcc/0038-arm-neoverse-n2-support.patch | 88 ---
.../gcc/0039-arm64-neoverse-n2-support.patch | 60 --
.../gcc/{gcc_10.2.bb => gcc_10.3.bb} | 0
...initial_10.2.bb => libgcc-initial_10.3.bb} | 0
.../gcc/{libgcc_10.2.bb => libgcc_10.3.bb} | 0
...ibgfortran_10.2.bb => libgfortran_10.3.bb} | 0
...ix-out-of-bounds-OOB-write-fixes-313.patch | 97 +++
.../lighttpd/lighttpd_1.4.59.bb | 1 +
...0001-Fix-bug-when-combining-l-with-d.patch | 50 ++
meta/recipes-extended/pigz/pigz_2.6.bb | 3 +-
.../linux/linux-yocto-rt_5.4.bb | 6 +-
.../linux/linux-yocto-tiny_5.4.bb | 8 +-
meta/recipes-kernel/linux/linux-yocto_5.4.bb | 22 +-
.../speex/speex/CVE-2020-23903.patch | 30 +
meta/recipes-multimedia/speex/speex_1.2.0.bb | 4 +-
45 files changed, 602 insertions(+), 2465 deletions(-)
create mode 100644 meta/recipes-core/expat/expat/CVE-2021-45960.patch
create mode 100644 meta/recipes-core/expat/expat/CVE-2021-46143.patch
create mode 100644 meta/recipes-core/expat/expat/CVE-2022-22822-27.patch
delete mode 100644 meta/recipes-core/glibc/glibc/0031-CVE-2021-43396.patch
delete mode 100644 meta/recipes-devtools/binutils/binutils/0001-CVE-2021-20197.patch
delete mode 100644 meta/recipes-devtools/binutils/binutils/0002-CVE-2021-20197.patch
delete mode 100644 meta/recipes-devtools/binutils/binutils/0003-CVE-2021-20197.patch
rename meta/recipes-devtools/gcc/{gcc-10.2.inc => gcc-10.3.inc} (90%)
rename meta/recipes-devtools/gcc/{gcc-cross-canadian_10.2.bb => gcc-cross-canadian_10.3.bb} (100%)
rename meta/recipes-devtools/gcc/{gcc-cross_10.2.bb => gcc-cross_10.3.bb} (100%)
rename meta/recipes-devtools/gcc/{gcc-crosssdk_10.2.bb => gcc-crosssdk_10.3.bb} (100%)
rename meta/recipes-devtools/gcc/{gcc-runtime_10.2.bb => gcc-runtime_10.3.bb} (100%)
rename meta/recipes-devtools/gcc/{gcc-sanitizers_10.2.bb => gcc-sanitizers_10.3.bb} (100%)
rename meta/recipes-devtools/gcc/{gcc-source_10.2.bb => gcc-source_10.3.bb} (100%)
delete mode 100644 meta/recipes-devtools/gcc/gcc/0001-aarch64-Fix-up-__aarch64_cas16_acq_rel-fallback.patch
delete mode 100644 meta/recipes-devtools/gcc/gcc/0001-aarch64-New-Straight-Line-Speculation-SLS-mitigation.patch
delete mode 100644 meta/recipes-devtools/gcc/gcc/0002-aarch64-Introduce-SLS-mitigation-for-RET-and-BR-inst.patch
delete mode 100644 meta/recipes-devtools/gcc/gcc/0003-aarch64-Mitigate-SLS-for-BLR-instruction.patch
delete mode 100644 meta/recipes-devtools/gcc/gcc/0038-arm-neoverse-n2-support.patch
delete mode 100644 meta/recipes-devtools/gcc/gcc/0039-arm64-neoverse-n2-support.patch
rename meta/recipes-devtools/gcc/{gcc_10.2.bb => gcc_10.3.bb} (100%)
rename meta/recipes-devtools/gcc/{libgcc-initial_10.2.bb => libgcc-initial_10.3.bb} (100%)
rename meta/recipes-devtools/gcc/{libgcc_10.2.bb => libgcc_10.3.bb} (100%)
rename meta/recipes-devtools/gcc/{libgfortran_10.2.bb => libgfortran_10.3.bb} (100%)
create mode 100644 meta/recipes-extended/lighttpd/lighttpd/0001-mod_extforward-fix-out-of-bounds-OOB-write-fixes-313.patch
create mode 100644 meta/recipes-extended/pigz/files/0001-Fix-bug-when-combining-l-with-d.patch
create mode 100644 meta/recipes-multimedia/speex/speex/CVE-2020-23903.patch
--
2.34.1
^ permalink raw reply [flat|nested] 3+ messages in thread
* [hardknott][PATCH 00/17] pull request (cover letter only)
@ 2021-06-15 7:17 Anuj Mittal
0 siblings, 0 replies; 3+ messages in thread
From: Anuj Mittal @ 2021-06-15 7:17 UTC (permalink / raw)
To: openembedded-core
Please merge these changes in hardknott.
Thanks,
Anuj
The following changes since commit 6ca1047e98a1c8bc305a3f40ad1919c5038e1698:
oeqa/runtime/rpm: Drop log message counting test component (2021-06-02 14:26:58 +0100)
are available in the Git repository at:
git://push.openembedded.org/openembedded-core-contrib stable/hardknott-next
Bruce Ashfield (11):
linux-yocto/5.10: update to v5.10.35
linux-yocto/5.4: update to v5.4.117
linux-yocto/5.10: ktypes/standard: disable obsolete crypto options by
default
linux-yocto/5.10: update to v5.10.36
linux-yocto/5.4: update to v5.4.118
linux-yocto/5.10: update to v5.10.37
linux-yocto/5.4: update to v5.4.119
linux-yocto/5.10: update to v5.10.38
linux-yocto/5.4: update to v5.4.120
linux-yocto/5.10: update to v5.10.41
linux-yocto/5.4: update to v5.4.123
Guillaume Champagne (1):
image-live.bbclass: order do_bootimg after do_rootfs
Joshua Watt (1):
classes/reproducible_build: Use atomic rename for SDE file
Kai Kang (1):
valgrind: fix a typo
Richard Purdie (1):
linux-firmware: upgrade 20210315 -> 20210511
Tony Tascioglu (1):
valgrind: Improve non-deterministic ptest reliability
Trevor Gamblin (1):
python3: upgrade 3.9.4 -> 3.9.5
meta/classes/image-live.bbclass | 2 +-
meta/classes/reproducible_build.bbclass | 13 +++++-----
.../{python3_3.9.4.bb => python3_3.9.5.bb} | 2 +-
.../valgrind/valgrind/run-ptest | 12 ++++++++++
.../valgrind/taskset_nondeterministic_tests | 4 ++++
.../valgrind/valgrind_3.16.1.bb | 2 +-
...20210315.bb => linux-firmware_20210511.bb} | 4 ++--
.../linux/linux-yocto-rt_5.10.bb | 6 ++---
.../linux/linux-yocto-rt_5.4.bb | 6 ++---
.../linux/linux-yocto-tiny_5.10.bb | 8 +++----
.../linux/linux-yocto-tiny_5.4.bb | 8 +++----
meta/recipes-kernel/linux/linux-yocto_5.10.bb | 24 +++++++++----------
meta/recipes-kernel/linux/linux-yocto_5.4.bb | 22 ++++++++---------
13 files changed, 64 insertions(+), 49 deletions(-)
rename meta/recipes-devtools/python/{python3_3.9.4.bb => python3_3.9.5.bb} (99%)
create mode 100644 meta/recipes-devtools/valgrind/valgrind/taskset_nondeterministic_tests
rename meta/recipes-kernel/linux-firmware/{linux-firmware_20210315.bb => linux-firmware_20210511.bb} (99%)
--
2.31.1
^ permalink raw reply [flat|nested] 3+ messages in thread
end of thread, other threads:[~2022-01-29 14:40 UTC | newest]
Thread overview: 3+ messages (download: mbox.gz / follow: Atom feed)
-- links below jump to the message on this page --
2021-09-17 15:46 [hardknott][PATCH 00/17] Pull request (cover letter only) Anuj Mittal
-- strict thread matches above, loose matches on Subject: below --
2022-01-29 14:40 Anuj Mittal
2021-06-15 7:17 [hardknott][PATCH 00/17] pull " Anuj Mittal
This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.