* [OE-core][dunfell 0/5] Patch review @ 2024-04-10 13:10 Steve Sakoman 2024-04-10 13:10 ` [OE-core][dunfell 1/5] ncurses: Backport fix for CVE-2023-50495 Steve Sakoman ` (4 more replies) 0 siblings, 5 replies; 23+ messages in thread From: Steve Sakoman @ 2024-04-10 13:10 UTC (permalink / raw) To: openembedded-core Please review this set of changes for dunfell and have comments back by end of day Friday, April 12 Passed a-full on autobuilder: https://autobuilder.yoctoproject.org/typhoon/#/builders/83/builds/6774 The following changes since commit 47ce772102b45db14dc21112367534ea1c37e33c: perf: bump PR to deal with sstate corruption on autobuilder (2024-04-02 05:46:56 -1000) are available in the Git repository at: https://git.openembedded.org/openembedded-core-contrib stable/dunfell-nut http://cgit.openembedded.org/openembedded-core-contrib/log/?h=stable/dunfell-nut Ashish Sharma (3): go: Backport fix for CVE-2024-24784 xserver-xorg: Backport fix for CVE-2024-31081 xserver-xorg: Backport fix for CVE-2024-31080 Colin McAllister (1): licenses.conf: Add missing LGPLv2.0+ license Vijay Anusuri (1): ncurses: Backport fix for CVE-2023-50495 meta/conf/licenses.conf | 1 + .../ncurses/files/CVE-2023-50495.patch | 79 +++++++ meta/recipes-core/ncurses/ncurses_6.2.bb | 1 + meta/recipes-devtools/go/go-1.14.inc | 1 + .../go/go-1.14/CVE-2024-24784.patch | 205 ++++++++++++++++++ .../xserver-xorg/CVE-2024-31080.patch | 49 +++++ .../xserver-xorg/CVE-2024-31081.patch | 47 ++++ .../xorg-xserver/xserver-xorg_1.20.14.bb | 2 + 8 files changed, 385 insertions(+) create mode 100644 meta/recipes-core/ncurses/files/CVE-2023-50495.patch create mode 100644 meta/recipes-devtools/go/go-1.14/CVE-2024-24784.patch create mode 100644 meta/recipes-graphics/xorg-xserver/xserver-xorg/CVE-2024-31080.patch create mode 100644 meta/recipes-graphics/xorg-xserver/xserver-xorg/CVE-2024-31081.patch -- 2.34.1 ^ permalink raw reply [flat|nested] 23+ messages in thread
* [OE-core][dunfell 1/5] ncurses: Backport fix for CVE-2023-50495 2024-04-10 13:10 [OE-core][dunfell 0/5] Patch review Steve Sakoman @ 2024-04-10 13:10 ` Steve Sakoman 2024-04-10 13:10 ` [OE-core][dunfell 2/5] go: Backport fix for CVE-2024-24784 Steve Sakoman ` (3 subsequent siblings) 4 siblings, 0 replies; 23+ messages in thread From: Steve Sakoman @ 2024-04-10 13:10 UTC (permalink / raw) To: openembedded-core From: Vijay Anusuri <vanusuri@mvista.com> Upstream-Status: Backport from https://github.com/ThomasDickey/ncurses-snapshots/commit/efe9674ee14b14b788f9618941f97d31742f0adc Reference: https://invisible-island.net/archives/ncurses/6.4/ncurses-6.4-20230424.patch.gz Signed-off-by: Vijay Anusuri <vanusuri@mvista.com> Signed-off-by: Steve Sakoman <steve@sakoman.com> --- .../ncurses/files/CVE-2023-50495.patch | 79 +++++++++++++++++++ meta/recipes-core/ncurses/ncurses_6.2.bb | 1 + 2 files changed, 80 insertions(+) create mode 100644 meta/recipes-core/ncurses/files/CVE-2023-50495.patch diff --git a/meta/recipes-core/ncurses/files/CVE-2023-50495.patch b/meta/recipes-core/ncurses/files/CVE-2023-50495.patch new file mode 100644 index 0000000000..58c23866d1 --- /dev/null +++ b/meta/recipes-core/ncurses/files/CVE-2023-50495.patch @@ -0,0 +1,79 @@ +Fix for CVE-2023-50495 from upstream: +https://github.com/ThomasDickey/ncurses-snapshots/commit/efe9674ee14b14b788f9618941f97d31742f0adc + +Reference: +https://invisible-island.net/archives/ncurses/6.4/ncurses-6.4-20230424.patch.gz + +Upstream-Status: Backport [import from suse ftp.pbone.net/mirror/ftp.opensuse.org/update/leap-micro/5.3/sle/src/ncurses-6.1-150000.5.20.1.src.rpm +Upstream commit https://github.com/ThomasDickey/ncurses-snapshots/commit/efe9674ee14b14b788f9618941f97d31742f0adc] +CVE: CVE-2023-50495 +Signed-off-by: Vijay Anusuri <vanusuri@mvista.com> +--- + ncurses/tinfo/parse_entry.c | 23 ++++++++++++++++------- + 1 file changed, 16 insertions(+), 7 deletions(-) + +diff --git a/ncurses/tinfo/parse_entry.c b/ncurses/tinfo/parse_entry.c +index 23574b66..56ba9ae6 100644 +--- a/ncurses/tinfo/parse_entry.c ++++ b/ncurses/tinfo/parse_entry.c +@@ -110,7 +110,7 @@ _nc_extend_names(ENTRY * entryp, const char *name, int token_type) + /* Well, we are given a cancel for a name that we don't recognize */ + return _nc_extend_names(entryp, name, STRING); + default: +- return 0; ++ return NULL; + } + + /* Adjust the 'offset' (insertion-point) to keep the lists of extended +@@ -142,6 +142,11 @@ _nc_extend_names(ENTRY * entryp, const char *name, int token_type) + for (last = (unsigned) (max - 1); last > tindex; last--) + + if (!found) { ++ char *saved; ++ ++ if ((saved = _nc_save_str(name)) == NULL) ++ return NULL; ++ + switch (token_type) { + case BOOLEAN: + tp->ext_Booleans++; +@@ -169,7 +174,7 @@ _nc_extend_names(ENTRY * entryp, const char *name, int token_type) + TYPE_REALLOC(char *, actual, tp->ext_Names); + while (--actual > offset) + tp->ext_Names[actual] = tp->ext_Names[actual - 1]; +- tp->ext_Names[offset] = _nc_save_str(name); ++ tp->ext_Names[offset] = saved; + } + + temp.nte_name = tp->ext_Names[offset]; +@@ -337,6 +342,8 @@ _nc_parse_entry(ENTRY * entryp, int literal, bool silent) + bool is_use = (strcmp(_nc_curr_token.tk_name, "use") == 0); + bool is_tc = !is_use && (strcmp(_nc_curr_token.tk_name, "tc") == 0); + if (is_use || is_tc) { ++ char *saved; ++ + if (!VALID_STRING(_nc_curr_token.tk_valstring) + || _nc_curr_token.tk_valstring[0] == '\0') { + _nc_warning("missing name for use-clause"); +@@ -350,11 +357,13 @@ _nc_parse_entry(ENTRY * entryp, int literal, bool silent) + _nc_curr_token.tk_valstring); + continue; + } +- entryp->uses[entryp->nuses].name = _nc_save_str(_nc_curr_token.tk_valstring); +- entryp->uses[entryp->nuses].line = _nc_curr_line; +- entryp->nuses++; +- if (entryp->nuses > 1 && is_tc) { +- BAD_TC_USAGE ++ if ((saved = _nc_save_str(_nc_curr_token.tk_valstring)) != NULL) { ++ entryp->uses[entryp->nuses].name = saved; ++ entryp->uses[entryp->nuses].line = _nc_curr_line; ++ entryp->nuses++; ++ if (entryp->nuses > 1 && is_tc) { ++ BAD_TC_USAGE ++ } + } + } else { + /* normal token lookup */ +-- +2.25.1 + diff --git a/meta/recipes-core/ncurses/ncurses_6.2.bb b/meta/recipes-core/ncurses/ncurses_6.2.bb index 33285bcb5b..dbff149f55 100644 --- a/meta/recipes-core/ncurses/ncurses_6.2.bb +++ b/meta/recipes-core/ncurses/ncurses_6.2.bb @@ -6,6 +6,7 @@ SRC_URI += "file://0001-tic-hang.patch \ file://CVE-2021-39537.patch \ file://CVE-2022-29458.patch \ file://CVE-2023-29491.patch \ + file://CVE-2023-50495.patch \ " # commit id corresponds to the revision in package version SRCREV = "a669013cd5e9d6434e5301348ea51baf306c93c4" -- 2.34.1 ^ permalink raw reply related [flat|nested] 23+ messages in thread
* [OE-core][dunfell 2/5] go: Backport fix for CVE-2024-24784 2024-04-10 13:10 [OE-core][dunfell 0/5] Patch review Steve Sakoman 2024-04-10 13:10 ` [OE-core][dunfell 1/5] ncurses: Backport fix for CVE-2023-50495 Steve Sakoman @ 2024-04-10 13:10 ` Steve Sakoman 2024-04-10 13:10 ` [OE-core][dunfell 3/5] xserver-xorg: Backport fix for CVE-2024-31081 Steve Sakoman ` (2 subsequent siblings) 4 siblings, 0 replies; 23+ messages in thread From: Steve Sakoman @ 2024-04-10 13:10 UTC (permalink / raw) To: openembedded-core From: Ashish Sharma <asharma@mvista.com> Upstream-Status: Backport [https://github.com/golang/go/commit/5330cd225ba54c7dc78c1b46dcdf61a4671a632c] Signed-off-by: Ashish Sharma <asharma@mvista.com> Signed-off-by: Steve Sakoman <steve@sakoman.com> --- meta/recipes-devtools/go/go-1.14.inc | 1 + .../go/go-1.14/CVE-2024-24784.patch | 205 ++++++++++++++++++ 2 files changed, 206 insertions(+) create mode 100644 meta/recipes-devtools/go/go-1.14/CVE-2024-24784.patch diff --git a/meta/recipes-devtools/go/go-1.14.inc b/meta/recipes-devtools/go/go-1.14.inc index 69b65f3eb2..9c7ceda891 100644 --- a/meta/recipes-devtools/go/go-1.14.inc +++ b/meta/recipes-devtools/go/go-1.14.inc @@ -91,6 +91,7 @@ SRC_URI += "\ file://CVE-2023-45289.patch \ file://CVE-2023-45290.patch \ file://CVE-2024-24785.patch \ + file://CVE-2024-24784.patch \ " SRC_URI_append_libc-musl = " file://0009-ld-replace-glibc-dynamic-linker-with-musl.patch" diff --git a/meta/recipes-devtools/go/go-1.14/CVE-2024-24784.patch b/meta/recipes-devtools/go/go-1.14/CVE-2024-24784.patch new file mode 100644 index 0000000000..e9d9d972b9 --- /dev/null +++ b/meta/recipes-devtools/go/go-1.14/CVE-2024-24784.patch @@ -0,0 +1,205 @@ +From 5330cd225ba54c7dc78c1b46dcdf61a4671a632c Mon Sep 17 00:00:00 2001 +From: Roland Shoemaker <bracewell@google.com> +Date: Wed, 10 Jan 2024 11:02:14 -0800 +Subject: [PATCH] [release-branch.go1.22] net/mail: properly handle special + characters in phrase and obs-phrase + +Fixes a couple of misalignments with RFC 5322 which introduce +significant diffs between (mostly) conformant parsers. + +This change reverts the changes made in CL50911, which allowed certain +special RFC 5322 characters to appear unquoted in the "phrase" syntax. +It is unclear why this change was made in the first place, and created +a divergence from comformant parsers. In particular this resulted in +treating comments in display names incorrectly. + +Additionally properly handle trailing malformed comments in the group +syntax. + +For #65083 +Fixed #65849 + +Change-Id: I00dddc044c6ae3381154e43236632604c390f672 +Reviewed-on: https://go-review.googlesource.com/c/go/+/555596 +Reviewed-by: Damien Neil <dneil@google.com> +LUCI-TryBot-Result: Go LUCI <golang-scoped@luci-project-accounts.iam.gserviceaccount.com> +Reviewed-on: https://go-review.googlesource.com/c/go/+/566215 +Reviewed-by: Carlos Amedee <carlos@golang.org> + +Upstream-Status: Backport [https://github.com/golang/go/commit/5330cd225ba54c7dc78c1b46dcdf61a4671a632c] +CVE: CVE-2024-24784 +Signed-off-by: Ashish Sharma <asharma@mvista.com> + + src/net/mail/message.go | 30 +++++++++++++++------------ + src/net/mail/message_test.go | 40 ++++++++++++++++++++++++++---------- + 2 files changed, 46 insertions(+), 24 deletions(-) + +diff --git a/src/net/mail/message.go b/src/net/mail/message.go +index af516fc30f470..fc2a9e46f811b 100644 +--- a/src/net/mail/message.go ++++ b/src/net/mail/message.go +@@ -280,7 +280,7 @@ func (a *Address) String() string { + // Add quotes if needed + quoteLocal := false + for i, r := range local { +- if isAtext(r, false, false) { ++ if isAtext(r, false) { + continue + } + if r == '.' { +@@ -444,7 +444,7 @@ func (p *addrParser) parseAddress(handleGroup bool) ([]*Address, error) { + if !p.consume('<') { + atext := true + for _, r := range displayName { +- if !isAtext(r, true, false) { ++ if !isAtext(r, true) { + atext = false + break + } +@@ -479,7 +479,9 @@ func (p *addrParser) consumeGroupList() ([]*Address, error) { + // handle empty group. + p.skipSpace() + if p.consume(';') { +- p.skipCFWS() ++ if !p.skipCFWS() { ++ return nil, errors.New("mail: misformatted parenthetical comment") ++ } + return group, nil + } + +@@ -496,7 +498,9 @@ func (p *addrParser) consumeGroupList() ([]*Address, error) { + return nil, errors.New("mail: misformatted parenthetical comment") + } + if p.consume(';') { +- p.skipCFWS() ++ if !p.skipCFWS() { ++ return nil, errors.New("mail: misformatted parenthetical comment") ++ } + break + } + if !p.consume(',') { +@@ -566,6 +570,12 @@ func (p *addrParser) consumePhrase() (phrase string, err error) { + var words []string + var isPrevEncoded bool + for { ++ // obs-phrase allows CFWS after one word ++ if len(words) > 0 { ++ if !p.skipCFWS() { ++ return "", errors.New("mail: misformatted parenthetical comment") ++ } ++ } + // word = atom / quoted-string + var word string + p.skipSpace() +@@ -661,7 +671,6 @@ Loop: + // If dot is true, consumeAtom parses an RFC 5322 dot-atom instead. + // If permissive is true, consumeAtom will not fail on: + // - leading/trailing/double dots in the atom (see golang.org/issue/4938) +-// - special characters (RFC 5322 3.2.3) except '<', '>', ':' and '"' (see golang.org/issue/21018) + func (p *addrParser) consumeAtom(dot bool, permissive bool) (atom string, err error) { + i := 0 + +@@ -672,7 +681,7 @@ Loop: + case size == 1 && r == utf8.RuneError: + return "", fmt.Errorf("mail: invalid utf-8 in address: %q", p.s) + +- case size == 0 || !isAtext(r, dot, permissive): ++ case size == 0 || !isAtext(r, dot): + break Loop + + default: +@@ -850,18 +859,13 @@ func (e charsetError) Error() string { + + // isAtext reports whether r is an RFC 5322 atext character. + // If dot is true, period is included. +-// If permissive is true, RFC 5322 3.2.3 specials is included, +-// except '<', '>', ':' and '"'. +-func isAtext(r rune, dot, permissive bool) bool { ++func isAtext(r rune, dot bool) bool { + switch r { + case '.': + return dot + + // RFC 5322 3.2.3. specials +- case '(', ')', '[', ']', ';', '@', '\\', ',': +- return permissive +- +- case '<', '>', '"', ':': ++ case '(', ')', '<', '>', '[', ']', ':', ';', '@', '\\', ',', '"': // RFC 5322 3.2.3. specials + return false + } + return isVchar(r) +diff --git a/src/net/mail/message_test.go b/src/net/mail/message_test.go +index 1e1bb4092f659..1f2f62afbf406 100644 +--- a/src/net/mail/message_test.go ++++ b/src/net/mail/message_test.go +@@ -385,8 +385,11 @@ func TestAddressParsingError(t *testing.T) { + 13: {"group not closed: null@example.com", "expected comma"}, + 14: {"group: first@example.com, second@example.com;", "group with multiple addresses"}, + 15: {"john.doe", "missing '@' or angle-addr"}, +- 16: {"john.doe@", "no angle-addr"}, ++ 16: {"john.doe@", "missing '@' or angle-addr"}, + 17: {"John Doe@foo.bar", "no angle-addr"}, ++ 18: {" group: null@example.com; (asd", "misformatted parenthetical comment"}, ++ 19: {" group: ; (asd", "misformatted parenthetical comment"}, ++ 20: {`(John) Doe <jdoe@machine.example>`, "missing word in phrase:"}, + } + + for i, tc := range mustErrTestCases { +@@ -436,24 +439,19 @@ func TestAddressParsing(t *testing.T) { + Address: "john.q.public@example.com", + }}, + }, +- { +- `"John (middle) Doe" <jdoe@machine.example>`, +- []*Address{{ +- Name: "John (middle) Doe", +- Address: "jdoe@machine.example", +- }}, +- }, ++ // Comment in display name + { + `John (middle) Doe <jdoe@machine.example>`, + []*Address{{ +- Name: "John (middle) Doe", ++ Name: "John Doe", + Address: "jdoe@machine.example", + }}, + }, ++ // Display name is quoted string, so comment is not a comment + { +- `John !@M@! Doe <jdoe@machine.example>`, ++ `"John (middle) Doe" <jdoe@machine.example>`, + []*Address{{ +- Name: "John !@M@! Doe", ++ Name: "John (middle) Doe", + Address: "jdoe@machine.example", + }}, + }, +@@ -788,6 +786,26 @@ func TestAddressParsing(t *testing.T) { + }, + }, + }, ++ // Comment in group display name ++ { ++ `group (comment:): a@example.com, b@example.com;`, ++ []*Address{ ++ { ++ Address: "a@example.com", ++ }, ++ { ++ Address: "b@example.com", ++ }, ++ }, ++ }, ++ { ++ `x(:"):"@a.example;("@b.example;`, ++ []*Address{ ++ { ++ Address: `@a.example;(@b.example`, ++ }, ++ }, ++ }, + } + for _, test := range tests { + if len(test.exp) == 1 { -- 2.34.1 ^ permalink raw reply related [flat|nested] 23+ messages in thread
* [OE-core][dunfell 3/5] xserver-xorg: Backport fix for CVE-2024-31081 2024-04-10 13:10 [OE-core][dunfell 0/5] Patch review Steve Sakoman 2024-04-10 13:10 ` [OE-core][dunfell 1/5] ncurses: Backport fix for CVE-2023-50495 Steve Sakoman 2024-04-10 13:10 ` [OE-core][dunfell 2/5] go: Backport fix for CVE-2024-24784 Steve Sakoman @ 2024-04-10 13:10 ` Steve Sakoman 2024-04-10 13:10 ` [OE-core][dunfell 4/5] xserver-xorg: Backport fix for CVE-2024-31080 Steve Sakoman 2024-04-10 13:10 ` [OE-core][dunfell 5/5] licenses.conf: Add missing LGPLv2.0+ license Steve Sakoman 4 siblings, 0 replies; 23+ messages in thread From: Steve Sakoman @ 2024-04-10 13:10 UTC (permalink / raw) To: openembedded-core From: Ashish Sharma <asharma@mvista.com> Upstream-Status: Backport [https://gitlab.freedesktop.org/xorg/xserver/-/commit/3e77295f888c67fc7645db5d0c00926a29ffecee] Signed-off-by: Ashish Sharma <asharma@mvista.com> Signed-off-by: Steve Sakoman <steve@sakoman.com> --- .../xserver-xorg/CVE-2024-31081.patch | 47 +++++++++++++++++++ .../xorg-xserver/xserver-xorg_1.20.14.bb | 1 + 2 files changed, 48 insertions(+) create mode 100644 meta/recipes-graphics/xorg-xserver/xserver-xorg/CVE-2024-31081.patch diff --git a/meta/recipes-graphics/xorg-xserver/xserver-xorg/CVE-2024-31081.patch b/meta/recipes-graphics/xorg-xserver/xserver-xorg/CVE-2024-31081.patch new file mode 100644 index 0000000000..d2c551a0e5 --- /dev/null +++ b/meta/recipes-graphics/xorg-xserver/xserver-xorg/CVE-2024-31081.patch @@ -0,0 +1,47 @@ +From 3e77295f888c67fc7645db5d0c00926a29ffecee Mon Sep 17 00:00:00 2001 +From: Alan Coopersmith <alan.coopersmith@oracle.com> +Date: Fri, 22 Mar 2024 18:56:27 -0700 +Subject: [PATCH] Xi: ProcXIPassiveGrabDevice needs to use unswapped length to + send reply + +CVE-2024-31081 + +Fixes: d220d6907 ("Xi: add GrabButton and GrabKeysym code.") +Signed-off-by: Alan Coopersmith <alan.coopersmith@oracle.com> +Part-of: <https://gitlab.freedesktop.org/xorg/xserver/-/merge_requests/1463> + +Upstream-Status: Backport [https://gitlab.freedesktop.org/xorg/xserver/-/commit/3e77295f888c67fc7645db5d0c00926a29ffecee] +CVE: CVE-2024-31081 +Signed-off-by: Ashish Sharma <asharma@mvista.com> + + Xi/xipassivegrab.c | 5 ++++- + 1 file changed, 4 insertions(+), 1 deletion(-) + +diff --git a/Xi/xipassivegrab.c b/Xi/xipassivegrab.c +index c9ac2f8553..896233bec2 100644 +--- a/Xi/xipassivegrab.c ++++ b/Xi/xipassivegrab.c +@@ -93,6 +93,7 @@ ProcXIPassiveGrabDevice(ClientPtr client) + GrabParameters param; + void *tmp; + int mask_len; ++ uint32_t length; + + REQUEST(xXIPassiveGrabDeviceReq); + REQUEST_FIXED_SIZE(xXIPassiveGrabDeviceReq, +@@ -247,9 +248,11 @@ ProcXIPassiveGrabDevice(ClientPtr client) + } + } + ++ /* save the value before SRepXIPassiveGrabDevice swaps it */ ++ length = rep.length; + WriteReplyToClient(client, sizeof(rep), &rep); + if (rep.num_modifiers) +- WriteToClient(client, rep.length * 4, modifiers_failed); ++ WriteToClient(client, length * 4, modifiers_failed); + + out: + free(modifiers_failed); +-- +GitLab + diff --git a/meta/recipes-graphics/xorg-xserver/xserver-xorg_1.20.14.bb b/meta/recipes-graphics/xorg-xserver/xserver-xorg_1.20.14.bb index d6c6c5bd45..ade250542f 100644 --- a/meta/recipes-graphics/xorg-xserver/xserver-xorg_1.20.14.bb +++ b/meta/recipes-graphics/xorg-xserver/xserver-xorg_1.20.14.bb @@ -30,6 +30,7 @@ SRC_URI += "file://0001-xf86pciBus.c-use-Intel-ddx-only-for-pre-gen4-hardwar.pat file://CVE-2024-21886-2.patch \ file://CVE-2024-0408.patch \ file://CVE-2024-0409.patch \ + file://CVE-2024-31081.patch \ " SRC_URI[md5sum] = "453fc86aac8c629b3a5b77e8dcca30bf" SRC_URI[sha256sum] = "54b199c9280ff8bf0f73a54a759645bd0eeeda7255d1c99310d5b7595f3ac066" -- 2.34.1 ^ permalink raw reply related [flat|nested] 23+ messages in thread
* [OE-core][dunfell 4/5] xserver-xorg: Backport fix for CVE-2024-31080 2024-04-10 13:10 [OE-core][dunfell 0/5] Patch review Steve Sakoman ` (2 preceding siblings ...) 2024-04-10 13:10 ` [OE-core][dunfell 3/5] xserver-xorg: Backport fix for CVE-2024-31081 Steve Sakoman @ 2024-04-10 13:10 ` Steve Sakoman 2024-04-10 13:10 ` [OE-core][dunfell 5/5] licenses.conf: Add missing LGPLv2.0+ license Steve Sakoman 4 siblings, 0 replies; 23+ messages in thread From: Steve Sakoman @ 2024-04-10 13:10 UTC (permalink / raw) To: openembedded-core From: Ashish Sharma <asharma@mvista.com> Upstream-Status: Backport [https://gitlab.freedesktop.org/xorg/xserver/-/commit/96798fc1967491c80a4d0c8d9e0a80586cb2152b] Signed-off-by: Ashish Sharma <asharma@mvista.com> Signed-off-by: Steve Sakoman <steve@sakoman.com> --- .../xserver-xorg/CVE-2024-31080.patch | 49 +++++++++++++++++++ .../xorg-xserver/xserver-xorg_1.20.14.bb | 1 + 2 files changed, 50 insertions(+) create mode 100644 meta/recipes-graphics/xorg-xserver/xserver-xorg/CVE-2024-31080.patch diff --git a/meta/recipes-graphics/xorg-xserver/xserver-xorg/CVE-2024-31080.patch b/meta/recipes-graphics/xorg-xserver/xserver-xorg/CVE-2024-31080.patch new file mode 100644 index 0000000000..da735efb2b --- /dev/null +++ b/meta/recipes-graphics/xorg-xserver/xserver-xorg/CVE-2024-31080.patch @@ -0,0 +1,49 @@ +From 96798fc1967491c80a4d0c8d9e0a80586cb2152b Mon Sep 17 00:00:00 2001 +From: Alan Coopersmith <alan.coopersmith@oracle.com> +Date: Fri, 22 Mar 2024 18:51:45 -0700 +Subject: [PATCH] Xi: ProcXIGetSelectedEvents needs to use unswapped length to + send reply + +CVE-2024-31080 + +Reported-by: https://debbugs.gnu.org/cgi/bugreport.cgi?bug=69762 +Fixes: 53e821ab4 ("Xi: add request processing for XIGetSelectedEvents.") +Signed-off-by: Alan Coopersmith <alan.coopersmith@oracle.com> +Part-of: <https://gitlab.freedesktop.org/xorg/xserver/-/merge_requests/1463> + +Upstream-Status: Backport [https://gitlab.freedesktop.org/xorg/xserver/-/commit/96798fc1967491c80a4d0c8d9e0a80586cb2152b] +CVE: CVE-2024-31080 +Signed-off-by: Ashish Sharma <asharma@mvista.com> + + Xi/xiselectev.c | 5 ++++- + 1 file changed, 4 insertions(+), 1 deletion(-) + +diff --git a/Xi/xiselectev.c b/Xi/xiselectev.c +index edcb8a0d36..ac14949871 100644 +--- a/Xi/xiselectev.c ++++ b/Xi/xiselectev.c +@@ -349,6 +349,7 @@ ProcXIGetSelectedEvents(ClientPtr client) + InputClientsPtr others = NULL; + xXIEventMask *evmask = NULL; + DeviceIntPtr dev; ++ uint32_t length; + + REQUEST(xXIGetSelectedEventsReq); + REQUEST_SIZE_MATCH(xXIGetSelectedEventsReq); +@@ -418,10 +419,12 @@ ProcXIGetSelectedEvents(ClientPtr client) + } + } + ++ /* save the value before SRepXIGetSelectedEvents swaps it */ ++ length = reply.length; + WriteReplyToClient(client, sizeof(xXIGetSelectedEventsReply), &reply); + + if (reply.num_masks) +- WriteToClient(client, reply.length * 4, buffer); ++ WriteToClient(client, length * 4, buffer); + + free(buffer); + return Success; +-- +GitLab + diff --git a/meta/recipes-graphics/xorg-xserver/xserver-xorg_1.20.14.bb b/meta/recipes-graphics/xorg-xserver/xserver-xorg_1.20.14.bb index ade250542f..04a6e734ef 100644 --- a/meta/recipes-graphics/xorg-xserver/xserver-xorg_1.20.14.bb +++ b/meta/recipes-graphics/xorg-xserver/xserver-xorg_1.20.14.bb @@ -31,6 +31,7 @@ SRC_URI += "file://0001-xf86pciBus.c-use-Intel-ddx-only-for-pre-gen4-hardwar.pat file://CVE-2024-0408.patch \ file://CVE-2024-0409.patch \ file://CVE-2024-31081.patch \ + file://CVE-2024-31080.patch \ " SRC_URI[md5sum] = "453fc86aac8c629b3a5b77e8dcca30bf" SRC_URI[sha256sum] = "54b199c9280ff8bf0f73a54a759645bd0eeeda7255d1c99310d5b7595f3ac066" -- 2.34.1 ^ permalink raw reply related [flat|nested] 23+ messages in thread
* [OE-core][dunfell 5/5] licenses.conf: Add missing LGPLv2.0+ license 2024-04-10 13:10 [OE-core][dunfell 0/5] Patch review Steve Sakoman ` (3 preceding siblings ...) 2024-04-10 13:10 ` [OE-core][dunfell 4/5] xserver-xorg: Backport fix for CVE-2024-31080 Steve Sakoman @ 2024-04-10 13:10 ` Steve Sakoman 4 siblings, 0 replies; 23+ messages in thread From: Steve Sakoman @ 2024-04-10 13:10 UTC (permalink / raw) To: openembedded-core From: Colin McAllister <colin.mcallister@garmin.com> Adds LGPLv2.0+ license variation to match LGPLv2+. Signed-off-by: Colin McAllister <colin.mcallister@garmin.com> Signed-off-by: Steve Sakoman <steve@sakoman.com> --- meta/conf/licenses.conf | 1 + 1 file changed, 1 insertion(+) diff --git a/meta/conf/licenses.conf b/meta/conf/licenses.conf index d14c365977..c78823e847 100644 --- a/meta/conf/licenses.conf +++ b/meta/conf/licenses.conf @@ -37,6 +37,7 @@ SPDXLICENSEMAP[GPL-3.0-only] = "GPL-3.0" SPDXLICENSEMAP[LGPLv2] = "LGPL-2.0" SPDXLICENSEMAP[LGPLv2+] = "LGPL-2.0+" SPDXLICENSEMAP[LGPLv2.0] = "LGPL-2.0" +SPDXLICENSEMAP[LGPLv2.0+] = "LGPL-2.0+" SPDXLICENSEMAP[LGPL-2.0-only] = "LGPL-2.0" SPDXLICENSEMAP[LGPL2.1] = "LGPL-2.1" SPDXLICENSEMAP[LGPLv2.1] = "LGPL-2.1" -- 2.34.1 ^ permalink raw reply related [flat|nested] 23+ messages in thread
* [OE-core][dunfell 0/5] Patch review @ 2024-01-05 14:03 Steve Sakoman 0 siblings, 0 replies; 23+ messages in thread From: Steve Sakoman @ 2024-01-05 14:03 UTC (permalink / raw) To: openembedded-core Please review this set of changes for dunfell and have comments back by end of day Tuesday, January 9 Passed a-full on autobuilder: https://autobuilder.yoctoproject.org/typhoon/#/builders/83/builds/6418 The following changes since commit 3ea36d92800b139eaaf75995cdd59912b63db9ee: tzdata: Upgrade to 2023d (2024-01-02 03:43:26 -1000) are available in the Git repository at: https://git.openembedded.org/openembedded-core-contrib stable/dunfell-nut http://cgit.openembedded.org/openembedded-core-contrib/log/?h=stable/dunfell-nut Dhairya Nagodra (2): cve-update-nvd2-native: faster requests with API keys cve-update-nvd2-native: increase the delay between subsequent request failures Dmitry Baryshkov (1): linux-firmware: upgrade 20230804 -> 20231030 Peter Marko (2): cve-update-nvd2-native: remove unused variable CVE_SOCKET_TIMEOUT cve-update-nvd2-native: make number of fetch attemtps configurable .../meta/cve-update-nvd2-native.bb | 27 +++++++++++++------ ...20230804.bb => linux-firmware_20231030.bb} | 4 +-- 2 files changed, 21 insertions(+), 10 deletions(-) rename meta/recipes-kernel/linux-firmware/{linux-firmware_20230804.bb => linux-firmware_20231030.bb} (99%) -- 2.34.1 ^ permalink raw reply [flat|nested] 23+ messages in thread
* [OE-core][dunfell 0/5] Patch review @ 2023-12-19 13:48 Steve Sakoman 0 siblings, 0 replies; 23+ messages in thread From: Steve Sakoman @ 2023-12-19 13:48 UTC (permalink / raw) To: openembedded-core Please review this set of changes for dunfell and have comments back by end of day Thursday, December 21 Passed a-full on autobuilder: https://autobuilder.yoctoproject.org/typhoon/#/builders/83/builds/6348 The following changes since commit 55157aa2f8b157b1cc63e1134d9eba6db0cf16da: build-appliance-image: Update to dunfell head revision (2023-12-11 05:13:51 -1000) are available in the Git repository at: https://git.openembedded.org/openembedded-core-contrib stable/dunfell-nut http://cgit.openembedded.org/openembedded-core-contrib/log/?h=stable/dunfell-nut Bhabu Bindu (1): glibc: Fix CVE-2023-4813 Lee Chee Yang (2): perl: fix CVE-2023-31484/47038/47100 binutils: Fix CVE-2023-25584 Vijay Anusuri (1): libxml2: Backport fix for CVE-2021-3516 Vivek Kumbhar (1): libsndfile: fix CVE-2021-4156 heap out-of-bounds read in src/flac.c in flac_buffer_copy .../glibc/glibc/CVE-2023-4813.patch | 986 ++++++++++++++++++ meta/recipes-core/glibc/glibc_2.31.bb | 1 + .../libxml/libxml2/CVE-2021-3516.patch | 35 + meta/recipes-core/libxml/libxml2_2.9.10.bb | 1 + .../binutils/binutils-2.34.inc | 1 + .../binutils/binutils/CVE-2023-25584.patch | 530 ++++++++++ .../perl/files/CVE-2023-31484.patch | 27 + .../perl/files/CVE-2023-47038.patch | 121 +++ meta/recipes-devtools/perl/perl_5.30.1.bb | 2 + .../libsndfile1/CVE-2021-4156.patch | 30 + .../libsndfile/libsndfile1_1.0.28.bb | 1 + 11 files changed, 1735 insertions(+) create mode 100644 meta/recipes-core/glibc/glibc/CVE-2023-4813.patch create mode 100644 meta/recipes-core/libxml/libxml2/CVE-2021-3516.patch create mode 100644 meta/recipes-devtools/binutils/binutils/CVE-2023-25584.patch create mode 100644 meta/recipes-devtools/perl/files/CVE-2023-31484.patch create mode 100644 meta/recipes-devtools/perl/files/CVE-2023-47038.patch create mode 100644 meta/recipes-multimedia/libsndfile/libsndfile1/CVE-2021-4156.patch -- 2.34.1 ^ permalink raw reply [flat|nested] 23+ messages in thread
* [OE-core][dunfell 0/5] Patch review @ 2023-09-04 14:22 Steve Sakoman 0 siblings, 0 replies; 23+ messages in thread From: Steve Sakoman @ 2023-09-04 14:22 UTC (permalink / raw) To: openembedded-core Please review this set of changes for dunfell and have comments back by end of day Wednesday, September 6. Passed a-full on autobuilder: https://autobuilder.yoctoproject.org/typhoon/#/builders/83/builds/5815 The following changes since commit 3575290c4cc937ae2f2c5604a5619ac6de9aa071: grub2.inc: remove '-O2' from CFLAGS (2023-08-27 06:30:22 -1000) are available in the Git repository at: https://git.openembedded.org/openembedded-core-contrib stable/dunfell-nut http://cgit.openembedded.org/openembedded-core-contrib/log/?h=stable/dunfell-nut Ross Burton (3): linux-yocto: add script to generate kernel CVE_CHECK_WHITELIST entries linux/cve-exclusion: add generated CVE_CHECK_WHITELISTs linux/cve-exclusion: remove obsolete manual entries Vijay Anusuri (2): inetutils: Backport fix for CVE-2023-40303 go: Backport fix for CVE-2023-29409 ...tpd-rcp-rlogin-rsh-rshd-uucpd-fix-ch.patch | 283 + ...03-Indent-changes-in-previous-commit.patch | 254 + .../inetutils/inetutils_1.9.4.bb | 2 + meta/recipes-devtools/go/go-1.14.inc | 1 + .../go/go-1.14/CVE-2023-29409.patch | 175 + meta/recipes-kernel/linux/cve-exclusion.inc | 1827 ----- .../linux/cve-exclusion_5.4.inc | 7164 +++++++++++++++++ .../linux/generate-cve-exclusions.py | 101 + meta/recipes-kernel/linux/linux-yocto_5.4.bb | 1 + 9 files changed, 7981 insertions(+), 1827 deletions(-) create mode 100644 meta/recipes-connectivity/inetutils/inetutils/0001-CVE-2023-40303-ftpd-rcp-rlogin-rsh-rshd-uucpd-fix-ch.patch create mode 100644 meta/recipes-connectivity/inetutils/inetutils/0002-CVE-2023-40303-Indent-changes-in-previous-commit.patch create mode 100644 meta/recipes-devtools/go/go-1.14/CVE-2023-29409.patch create mode 100644 meta/recipes-kernel/linux/cve-exclusion_5.4.inc create mode 100755 meta/recipes-kernel/linux/generate-cve-exclusions.py -- 2.34.1 ^ permalink raw reply [flat|nested] 23+ messages in thread
* [OE-core][dunfell 0/5] Patch review @ 2023-06-14 14:04 Steve Sakoman 0 siblings, 0 replies; 23+ messages in thread From: Steve Sakoman @ 2023-06-14 14:04 UTC (permalink / raw) To: openembedded-core Please review this set of changes for dunfell and have comments back by end of day Friday. Passed a-full on autobuilder: https://autobuilder.yoctoproject.org/typhoon/#/builders/83/builds/5460 The following changes since commit 96798603273bbab40a7e19bbb67a9a5398648c21: openssh: Move sshdgenkeys.service to sshd.socket (2023-06-07 05:49:27 -1000) are available in the Git repository at: https://git.openembedded.org/openembedded-core-contrib stable/dunfell-nut http://cgit.openembedded.org/openembedded-core-contrib/log/?h=stable/dunfell-nut Martin Siegumfeldt (1): systemd-systemctl: fix instance template WantedBy symlink construction Nikhil R (1): libwebp: Fix CVE-2023-1999 Qiu Tingting (1): e2fsprogs: fix ptest bug for second running Randy MacLeod (1): vim: upgrade 9.0.1429 -> 9.0.1527 Richard Purdie (1): selftest/reproducible: Allow native/cross reuse in test meta/lib/oeqa/selftest/cases/reproducible.py | 4 +- .../systemd/systemd-systemctl/systemctl | 13 ++++- .../e2fsprogs/e2fsprogs/run-ptest | 1 + .../e2fsprogs/e2fsprogs_1.45.7.bb | 3 + .../webp/files/CVE-2023-1999.patch | 55 +++++++++++++++++++ meta/recipes-multimedia/webp/libwebp_1.1.0.bb | 4 ++ meta/recipes-support/vim/vim.inc | 4 +- 7 files changed, 77 insertions(+), 7 deletions(-) create mode 100644 meta/recipes-multimedia/webp/files/CVE-2023-1999.patch -- 2.34.1 ^ permalink raw reply [flat|nested] 23+ messages in thread
* [OE-core][dunfell 0/5] Patch review @ 2022-09-22 21:47 Steve Sakoman 0 siblings, 0 replies; 23+ messages in thread From: Steve Sakoman @ 2022-09-22 21:47 UTC (permalink / raw) To: openembedded-core Please review this set of patches for dunfell and have comments back by end of day Friday. Passed a-full on autobuilder: https://autobuilder.yoctoproject.org/typhoon/#/builders/83/builds/4259 The following changes since commit f547c9610f8c17c3da9ca3f7a79902d2ffbfca49: qemu: Add PACKAGECONFIG for brlapi (2022-09-20 11:09:59 -1000) are available in the Git repository at: git://git.openembedded.org/openembedded-core-contrib stable/dunfell-nut http://cgit.openembedded.org/openembedded-core-contrib/log/?h=stable/dunfell-nut Bruce Ashfield (2): linux-yocto/5.4: update to v5.4.212 linux-yocto/5.4: update to v5.4.213 Lee Chee Yang (1): subversion: fix CVE-2021-28544 Sana Kazi (1): sqlite3: Fix CVE-2021-20223 Virendra Thakur (1): expat: Fix CVE-2022-40674 .../expat/expat/CVE-2022-40674.patch | 53 +++++++ meta/recipes-core/expat/expat_2.2.9.bb | 1 + .../subversion/CVE-2021-28544.patch | 146 ++++++++++++++++++ .../subversion/subversion_1.13.0.bb | 1 + .../linux/linux-yocto-rt_5.4.bb | 6 +- .../linux/linux-yocto-tiny_5.4.bb | 8 +- meta/recipes-kernel/linux/linux-yocto_5.4.bb | 22 +-- .../sqlite/files/CVE-2021-20223.patch | 23 +++ meta/recipes-support/sqlite/sqlite3_3.31.1.bb | 1 + 9 files changed, 243 insertions(+), 18 deletions(-) create mode 100644 meta/recipes-core/expat/expat/CVE-2022-40674.patch create mode 100644 meta/recipes-devtools/subversion/subversion/CVE-2021-28544.patch create mode 100644 meta/recipes-support/sqlite/files/CVE-2021-20223.patch -- 2.25.1 ^ permalink raw reply [flat|nested] 23+ messages in thread
* [OE-core][dunfell 0/5] Patch review @ 2021-09-07 14:44 Steve Sakoman 0 siblings, 0 replies; 23+ messages in thread From: Steve Sakoman @ 2021-09-07 14:44 UTC (permalink / raw) To: openembedded-core Please review this next set of changes for dunfell and have comments back by end of day Thursday. Passed a-full on autobuilder: https://autobuilder.yoctoproject.org/typhoon/#/builders/83/builds/2554 The following changes since commit b46b059a306b2823624e64adecded9f76430471a: layer.conf: fix syntax error in PATH setting (2021-09-03 04:05:12 -1000) are available in the Git repository at: git://git.openembedded.org/openembedded-core-contrib stable/dunfell-nut http://cgit.openembedded.org/openembedded-core-contrib/log/?h=stable/dunfell-nut Changqing Li (1): gdk-pixbuf: fix CVE-2021-20240 Martin Jansa (1): default-distrovars.inc: Set BBINCLUDELOGS to empty to disable printing failed task output multiple times Purushottam Choudhary (1): lighttpd: Add patch for reuse large memory chunks Richard Purdie (2): xdg-utils: Add fix for CVE-2020-27748 oeqa/runtime/parselogs: Make DVD ata error apply to all qemux86 machines .../distro/include/default-distrovars.inc | 6 +- meta/conf/documentation.conf | 2 +- meta/lib/oeqa/runtime/cases/parselogs.py | 2 +- ...or-pcre-dependency-instead-of-config.patch | 10 +- ...-mem-chunks-fix-mem-usage-fixes-3033.patch | 224 ++++++++++++++++++ .../lighttpd/default-chunk-size-8k.patch | 35 +++ .../lighttpd/lighttpd_1.4.55.bb | 2 + ...9813e0eb0246f63b54e9e154970e609575af.patch | 58 +++++ .../xdg-utils/xdg-utils_1.1.3.bb | 1 + .../gdk-pixbuf/CVE-2021-20240.patch | 40 ++++ .../gdk-pixbuf/gdk-pixbuf_2.40.0.bb | 1 + 11 files changed, 371 insertions(+), 10 deletions(-) create mode 100644 meta/recipes-extended/lighttpd/lighttpd/0001-core-reuse-large-mem-chunks-fix-mem-usage-fixes-3033.patch create mode 100644 meta/recipes-extended/lighttpd/lighttpd/default-chunk-size-8k.patch create mode 100644 meta/recipes-extended/xdg-utils/xdg-utils/1f199813e0eb0246f63b54e9e154970e609575af.patch create mode 100644 meta/recipes-gnome/gdk-pixbuf/gdk-pixbuf/CVE-2021-20240.patch -- 2.25.1 ^ permalink raw reply [flat|nested] 23+ messages in thread
* [OE-core][dunfell 0/5] Patch review @ 2021-09-03 14:10 Steve Sakoman 0 siblings, 0 replies; 23+ messages in thread From: Steve Sakoman @ 2021-09-03 14:10 UTC (permalink / raw) To: openembedded-core Please review this next set of patches for dunfell and have comments back by end of day Monday. Passed a-full on autobuilder: https://autobuilder.yoctoproject.org/typhoon/#/builders/83/builds/2540 The following changes since commit 448e0271ed831582bb5833486fc17b131676fb53: selftest: disable virgl headless test (2021-08-27 04:58:08 -1000) are available in the Git repository at: git://git.openembedded.org/openembedded-core-contrib stable/dunfell-nut http://cgit.openembedded.org/openembedded-core-contrib/log/?h=stable/dunfell-nut Andrej Valek (1): vim: add option to disable NLS support Armin Kuster (1): lz4: Security Fix for CVE-2021-3520 Matt Madison (1): layer.conf: fix syntax error in PATH setting Richard Purdie (1): sdk: Decouple default install path from built in path Ross Burton (1): cpio: backport fix for CVE-2021-38185 meta/classes/populate_sdk_base.bbclass | 1 + meta/conf/bitbake.conf | 4 +- meta/conf/layer.conf | 2 +- meta/files/toolchain-shar-extract.sh | 3 +- meta/files/toolchain-shar-relocate.sh | 2 +- .../cpio/cpio-2.13/CVE-2021-38185.patch | 581 ++++++++++++++++++ meta/recipes-extended/cpio/cpio_2.13.bb | 1 + .../lz4/files/CVE-2021-3520.patch | 27 + meta/recipes-support/lz4/lz4_1.9.2.bb | 1 + meta/recipes-support/vim/vim.inc | 4 +- 10 files changed, 621 insertions(+), 5 deletions(-) create mode 100644 meta/recipes-extended/cpio/cpio-2.13/CVE-2021-38185.patch create mode 100644 meta/recipes-support/lz4/files/CVE-2021-3520.patch -- 2.25.1 ^ permalink raw reply [flat|nested] 23+ messages in thread
* [OE-core][dunfell 0/5] Patch review @ 2020-11-21 0:13 Steve Sakoman 0 siblings, 0 replies; 23+ messages in thread From: Steve Sakoman @ 2020-11-21 0:13 UTC (permalink / raw) To: openembedded-core Please review this next set of patches for dunfell and have comments back by end of day Monday. Passed a-full on autobuilder: https://autobuilder.yoctoproject.org/typhoon/#/builders/83/builds/1611 The following changes since commit 84e1a32096db9deb98d282a652beec95dbfe80f1: python3: add ldconfig rdepends for python3-ctypes (2020-11-17 07:34:27 -1000) are available in the Git repository at: git://git.openembedded.org/openembedded-core-contrib stable/dunfell-nut http://cgit.openembedded.org/openembedded-core-contrib/log/?h=stable/dunfell-nut Lee Chee Yang (5): libproxy: fix CVE-2020-26154 bison: update to 3.5.4 for CVE-2020-14150 python3: whitelist CVE-2020-15523 python3: fix CVE-2020-27619 qemu: fix CVE-2020-24352 .../bison/{bison_3.5.3.bb => bison_3.5.4.bb} | 2 +- .../python/python3/CVE-2020-27619.patch | 70 +++++++++++++ meta/recipes-devtools/python/python3_3.8.2.bb | 4 + meta/recipes-devtools/qemu/qemu.inc | 1 + .../qemu/qemu/CVE-2020-24352.patch | 52 ++++++++++ .../libproxy/libproxy/CVE-2020-26154.patch | 98 +++++++++++++++++++ .../libproxy/libproxy_0.4.15.bb | 1 + 7 files changed, 227 insertions(+), 1 deletion(-) rename meta/recipes-devtools/bison/{bison_3.5.3.bb => bison_3.5.4.bb} (94%) create mode 100644 meta/recipes-devtools/python/python3/CVE-2020-27619.patch create mode 100644 meta/recipes-devtools/qemu/qemu/CVE-2020-24352.patch create mode 100644 meta/recipes-support/libproxy/libproxy/CVE-2020-26154.patch -- 2.17.1 ^ permalink raw reply [flat|nested] 23+ messages in thread
* [OE-core][dunfell 0/5] Patch review @ 2020-06-03 15:33 Steve Sakoman 2020-06-03 17:33 ` akuster 0 siblings, 1 reply; 23+ messages in thread From: Steve Sakoman @ 2020-06-03 15:33 UTC (permalink / raw) To: openembedded-core Pending final approval for an exception to LTS policy in this case please review this patch series and have comments back by end of day Thursday. For details on the motivation for this change see: https://lists.openembedded.org/g/openembedded-architecture/message/1085 The following changes since commit ef5af31f406076107402694f5d6afb27b240eba6: linux-yocto/5.4: update to v5.4.43 (2020-06-01 07:19:09 -1000) are available in the Git repository at: git://git.openembedded.org/openembedded-core-contrib stable/dunfell-nut http://cgit.openembedded.org/openembedded-core-contrib/log/?h=stable/dunfell-nut Joshua Watt (5): pycryptodome: Import from meta-python pyelftools: Import from meta-python python3-pycryptodome(x): Upgrade 3.9.4 -> 3.9.7 python3-pyelftools: Upgrade 0.25 -> 0.26 layer.conf: Bump OE-Core layer version meta/conf/distro/include/maintainers.inc | 5 +++- meta/conf/layer.conf | 2 +- .../python/python-pycryptodome.inc | 26 +++++++++++++++++++ .../python/python3-pycryptodome_3.9.7.bb | 5 ++++ .../python/python3-pycryptodomex_3.9.7.bb | 9 +++++++ .../python/python3-pyelftools_0.26.bb | 14 ++++++++++ 6 files changed, 59 insertions(+), 2 deletions(-) create mode 100644 meta/recipes-devtools/python/python-pycryptodome.inc create mode 100644 meta/recipes-devtools/python/python3-pycryptodome_3.9.7.bb create mode 100644 meta/recipes-devtools/python/python3-pycryptodomex_3.9.7.bb create mode 100644 meta/recipes-devtools/python/python3-pyelftools_0.26.bb -- 2.17.1 ^ permalink raw reply [flat|nested] 23+ messages in thread
* Re: [OE-core][dunfell 0/5] Patch review 2020-06-03 15:33 Steve Sakoman @ 2020-06-03 17:33 ` akuster 2020-06-03 17:36 ` Denys Dmytriyenko 0 siblings, 1 reply; 23+ messages in thread From: akuster @ 2020-06-03 17:33 UTC (permalink / raw) To: Steve Sakoman, openembedded-core [-- Attachment #1: Type: text/plain, Size: 1818 bytes --] Does someone have the complementary set of patches for meta-openbedded to remove these? - armin On 6/3/20 8:33 AM, Steve Sakoman wrote: > Pending final approval for an exception to LTS policy in this case please > review this patch series and have comments back by end of day Thursday. > > For details on the motivation for this change see: > > https://lists.openembedded.org/g/openembedded-architecture/message/1085 > > The following changes since commit ef5af31f406076107402694f5d6afb27b240eba6: > > linux-yocto/5.4: update to v5.4.43 (2020-06-01 07:19:09 -1000) > > are available in the Git repository at: > > git://git.openembedded.org/openembedded-core-contrib stable/dunfell-nut > http://cgit.openembedded.org/openembedded-core-contrib/log/?h=stable/dunfell-nut > > Joshua Watt (5): > pycryptodome: Import from meta-python > pyelftools: Import from meta-python > python3-pycryptodome(x): Upgrade 3.9.4 -> 3.9.7 > python3-pyelftools: Upgrade 0.25 -> 0.26 > layer.conf: Bump OE-Core layer version > > meta/conf/distro/include/maintainers.inc | 5 +++- > meta/conf/layer.conf | 2 +- > .../python/python-pycryptodome.inc | 26 +++++++++++++++++++ > .../python/python3-pycryptodome_3.9.7.bb | 5 ++++ > .../python/python3-pycryptodomex_3.9.7.bb | 9 +++++++ > .../python/python3-pyelftools_0.26.bb | 14 ++++++++++ > 6 files changed, 59 insertions(+), 2 deletions(-) > create mode 100644 meta/recipes-devtools/python/python-pycryptodome.inc > create mode 100644 meta/recipes-devtools/python/python3-pycryptodome_3.9.7.bb > create mode 100644 meta/recipes-devtools/python/python3-pycryptodomex_3.9.7.bb > create mode 100644 meta/recipes-devtools/python/python3-pyelftools_0.26.bb > > > [-- Attachment #2: Type: text/html, Size: 2498 bytes --] ^ permalink raw reply [flat|nested] 23+ messages in thread
* Re: [OE-core][dunfell 0/5] Patch review 2020-06-03 17:33 ` akuster @ 2020-06-03 17:36 ` Denys Dmytriyenko 2020-06-03 17:45 ` akuster 2020-06-03 18:17 ` akuster 0 siblings, 2 replies; 23+ messages in thread From: Denys Dmytriyenko @ 2020-06-03 17:36 UTC (permalink / raw) To: akuster; +Cc: Steve Sakoman, openembedded-core On Wed, Jun 03, 2020 at 10:33:55AM -0700, akuster wrote: > Does someone have the complementary set of patches for meta-openbedded > to remove these? https://git.openembedded.org/meta-openembedded/commit/?id=a8f3c00d8d113b46a49584682e10435157d516ca https://git.openembedded.org/meta-openembedded/commit/?id=7aee545a61c4f91d5e462d5b46b1b8f9a8bad1e3 Do you want me to re-submit them with [dunfell] tag? > - armin > > On 6/3/20 8:33 AM, Steve Sakoman wrote: > > Pending final approval for an exception to LTS policy in this case please > > review this patch series and have comments back by end of day Thursday. > > > > For details on the motivation for this change see: > > > > https://lists.openembedded.org/g/openembedded-architecture/message/1085 > > > > The following changes since commit ef5af31f406076107402694f5d6afb27b240eba6: > > > > linux-yocto/5.4: update to v5.4.43 (2020-06-01 07:19:09 -1000) > > > > are available in the Git repository at: > > > > git://git.openembedded.org/openembedded-core-contrib stable/dunfell-nut > > http://cgit.openembedded.org/openembedded-core-contrib/log/?h=stable/dunfell-nut > > > > Joshua Watt (5): > > pycryptodome: Import from meta-python > > pyelftools: Import from meta-python > > python3-pycryptodome(x): Upgrade 3.9.4 -> 3.9.7 > > python3-pyelftools: Upgrade 0.25 -> 0.26 > > layer.conf: Bump OE-Core layer version > > > > meta/conf/distro/include/maintainers.inc | 5 +++- > > meta/conf/layer.conf | 2 +- > > .../python/python-pycryptodome.inc | 26 +++++++++++++++++++ > > .../python/python3-pycryptodome_3.9.7.bb | 5 ++++ > > .../python/python3-pycryptodomex_3.9.7.bb | 9 +++++++ > > .../python/python3-pyelftools_0.26.bb | 14 ++++++++++ > > 6 files changed, 59 insertions(+), 2 deletions(-) > > create mode 100644 meta/recipes-devtools/python/python-pycryptodome.inc > > create mode 100644 meta/recipes-devtools/python/python3-pycryptodome_3.9.7.bb > > create mode 100644 meta/recipes-devtools/python/python3-pycryptodomex_3.9.7.bb > > create mode 100644 meta/recipes-devtools/python/python3-pyelftools_0.26.bb > > > > > > > > ^ permalink raw reply [flat|nested] 23+ messages in thread
* Re: [OE-core][dunfell 0/5] Patch review 2020-06-03 17:36 ` Denys Dmytriyenko @ 2020-06-03 17:45 ` akuster 2020-06-03 23:33 ` Martin Jansa 2020-06-03 18:17 ` akuster 1 sibling, 1 reply; 23+ messages in thread From: akuster @ 2020-06-03 17:45 UTC (permalink / raw) To: Denys Dmytriyenko; +Cc: Steve Sakoman, openembedded-core On 6/3/20 10:36 AM, Denys Dmytriyenko wrote: > On Wed, Jun 03, 2020 at 10:33:55AM -0700, akuster wrote: >> Does someone have the complementary set of patches for meta-openbedded >> to remove these? > https://git.openembedded.org/meta-openembedded/commit/?id=a8f3c00d8d113b46a49584682e10435157d516ca > https://git.openembedded.org/meta-openembedded/commit/?id=7aee545a61c4f91d5e462d5b46b1b8f9a8bad1e3 > > Do you want me to re-submit them with [dunfell] tag? nah, the commits work of me. Thanks - armin > > >> - armin >> >> On 6/3/20 8:33 AM, Steve Sakoman wrote: >>> Pending final approval for an exception to LTS policy in this case please >>> review this patch series and have comments back by end of day Thursday. >>> >>> For details on the motivation for this change see: >>> >>> https://lists.openembedded.org/g/openembedded-architecture/message/1085 >>> >>> The following changes since commit ef5af31f406076107402694f5d6afb27b240eba6: >>> >>> linux-yocto/5.4: update to v5.4.43 (2020-06-01 07:19:09 -1000) >>> >>> are available in the Git repository at: >>> >>> git://git.openembedded.org/openembedded-core-contrib stable/dunfell-nut >>> http://cgit.openembedded.org/openembedded-core-contrib/log/?h=stable/dunfell-nut >>> >>> Joshua Watt (5): >>> pycryptodome: Import from meta-python >>> pyelftools: Import from meta-python >>> python3-pycryptodome(x): Upgrade 3.9.4 -> 3.9.7 >>> python3-pyelftools: Upgrade 0.25 -> 0.26 >>> layer.conf: Bump OE-Core layer version >>> >>> meta/conf/distro/include/maintainers.inc | 5 +++- >>> meta/conf/layer.conf | 2 +- >>> .../python/python-pycryptodome.inc | 26 +++++++++++++++++++ >>> .../python/python3-pycryptodome_3.9.7.bb | 5 ++++ >>> .../python/python3-pycryptodomex_3.9.7.bb | 9 +++++++ >>> .../python/python3-pyelftools_0.26.bb | 14 ++++++++++ >>> 6 files changed, 59 insertions(+), 2 deletions(-) >>> create mode 100644 meta/recipes-devtools/python/python-pycryptodome.inc >>> create mode 100644 meta/recipes-devtools/python/python3-pycryptodome_3.9.7.bb >>> create mode 100644 meta/recipes-devtools/python/python3-pycryptodomex_3.9.7.bb >>> create mode 100644 meta/recipes-devtools/python/python3-pyelftools_0.26.bb >>> >>> >>> >> ^ permalink raw reply [flat|nested] 23+ messages in thread
* Re: [OE-core][dunfell 0/5] Patch review 2020-06-03 17:45 ` akuster @ 2020-06-03 23:33 ` Martin Jansa 2020-06-04 0:11 ` Joshua Watt 0 siblings, 1 reply; 23+ messages in thread From: Martin Jansa @ 2020-06-03 23:33 UTC (permalink / raw) To: akuster, Joshua Watt Cc: Denys Dmytriyenko, Steve Sakoman, Patches and discussions about the oe-core layer [-- Attachment #1: Type: text/plain, Size: 2755 bytes --] I think we still need corresponding LAYERDEPENDS_meta-python update which isn't in master yet (and I haven't noticed it on the list). Joshua: did I overlook it somewhere or should I send it? On Wed, Jun 3, 2020 at 7:45 PM akuster <akuster808@gmail.com> wrote: > > > On 6/3/20 10:36 AM, Denys Dmytriyenko wrote: > > On Wed, Jun 03, 2020 at 10:33:55AM -0700, akuster wrote: > >> Does someone have the complementary set of patches for meta-openbedded > >> to remove these? > > > https://git.openembedded.org/meta-openembedded/commit/?id=a8f3c00d8d113b46a49584682e10435157d516ca > > > https://git.openembedded.org/meta-openembedded/commit/?id=7aee545a61c4f91d5e462d5b46b1b8f9a8bad1e3 > > > > Do you want me to re-submit them with [dunfell] tag? > nah, the commits work of me. Thanks > > - armin > > > > > >> - armin > >> > >> On 6/3/20 8:33 AM, Steve Sakoman wrote: > >>> Pending final approval for an exception to LTS policy in this case > please > >>> review this patch series and have comments back by end of day Thursday. > >>> > >>> For details on the motivation for this change see: > >>> > >>> > https://lists.openembedded.org/g/openembedded-architecture/message/1085 > >>> > >>> The following changes since commit > ef5af31f406076107402694f5d6afb27b240eba6: > >>> > >>> linux-yocto/5.4: update to v5.4.43 (2020-06-01 07:19:09 -1000) > >>> > >>> are available in the Git repository at: > >>> > >>> git://git.openembedded.org/openembedded-core-contrib > stable/dunfell-nut > >>> > http://cgit.openembedded.org/openembedded-core-contrib/log/?h=stable/dunfell-nut > >>> > >>> Joshua Watt (5): > >>> pycryptodome: Import from meta-python > >>> pyelftools: Import from meta-python > >>> python3-pycryptodome(x): Upgrade 3.9.4 -> 3.9.7 > >>> python3-pyelftools: Upgrade 0.25 -> 0.26 > >>> layer.conf: Bump OE-Core layer version > >>> > >>> meta/conf/distro/include/maintainers.inc | 5 +++- > >>> meta/conf/layer.conf | 2 +- > >>> .../python/python-pycryptodome.inc | 26 +++++++++++++++++++ > >>> .../python/python3-pycryptodome_3.9.7.bb | 5 ++++ > >>> .../python/python3-pycryptodomex_3.9.7.bb | 9 +++++++ > >>> .../python/python3-pyelftools_0.26.bb | 14 ++++++++++ > >>> 6 files changed, 59 insertions(+), 2 deletions(-) > >>> create mode 100644 > meta/recipes-devtools/python/python-pycryptodome.inc > >>> create mode 100644 meta/recipes-devtools/python/ > python3-pycryptodome_3.9.7.bb > >>> create mode 100644 meta/recipes-devtools/python/ > python3-pycryptodomex_3.9.7.bb > >>> create mode 100644 meta/recipes-devtools/python/ > python3-pyelftools_0.26.bb > >>> > >>> > >>> > >> > > > [-- Attachment #2: Type: text/html, Size: 4744 bytes --] ^ permalink raw reply [flat|nested] 23+ messages in thread
* Re: [OE-core][dunfell 0/5] Patch review 2020-06-03 23:33 ` Martin Jansa @ 2020-06-04 0:11 ` Joshua Watt 2020-06-04 0:38 ` Martin Jansa 0 siblings, 1 reply; 23+ messages in thread From: Joshua Watt @ 2020-06-04 0:11 UTC (permalink / raw) To: Martin Jansa Cc: akuster, Denys Dmytriyenko, Steve Sakoman, Patches and discussions about the oe-core layer [-- Attachment #1: Type: text/plain, Size: 3078 bytes --] On Wed, Jun 3, 2020, 6:33 PM Martin Jansa <martin.jansa@gmail.com> wrote: > I think we still need corresponding LAYERDEPENDS_meta-python update which > isn't in master yet (and I haven't noticed it on the list). > > Joshua: did I overlook it somewhere or should I send it? > I didn't send it because the layer version bump wasn't added to oe-core until yesterday. If you can send the patch that would be great. Thanks > On Wed, Jun 3, 2020 at 7:45 PM akuster <akuster808@gmail.com> wrote: > >> >> >> On 6/3/20 10:36 AM, Denys Dmytriyenko wrote: >> > On Wed, Jun 03, 2020 at 10:33:55AM -0700, akuster wrote: >> >> Does someone have the complementary set of patches for meta-openbedded >> >> to remove these? >> > >> https://git.openembedded.org/meta-openembedded/commit/?id=a8f3c00d8d113b46a49584682e10435157d516ca >> > >> https://git.openembedded.org/meta-openembedded/commit/?id=7aee545a61c4f91d5e462d5b46b1b8f9a8bad1e3 >> > >> > Do you want me to re-submit them with [dunfell] tag? >> nah, the commits work of me. Thanks >> >> - armin >> > >> > >> >> - armin >> >> >> >> On 6/3/20 8:33 AM, Steve Sakoman wrote: >> >>> Pending final approval for an exception to LTS policy in this case >> please >> >>> review this patch series and have comments back by end of day >> Thursday. >> >>> >> >>> For details on the motivation for this change see: >> >>> >> >>> >> https://lists.openembedded.org/g/openembedded-architecture/message/1085 >> >>> >> >>> The following changes since commit >> ef5af31f406076107402694f5d6afb27b240eba6: >> >>> >> >>> linux-yocto/5.4: update to v5.4.43 (2020-06-01 07:19:09 -1000) >> >>> >> >>> are available in the Git repository at: >> >>> >> >>> git://git.openembedded.org/openembedded-core-contrib >> stable/dunfell-nut >> >>> >> http://cgit.openembedded.org/openembedded-core-contrib/log/?h=stable/dunfell-nut >> >>> >> >>> Joshua Watt (5): >> >>> pycryptodome: Import from meta-python >> >>> pyelftools: Import from meta-python >> >>> python3-pycryptodome(x): Upgrade 3.9.4 -> 3.9.7 >> >>> python3-pyelftools: Upgrade 0.25 -> 0.26 >> >>> layer.conf: Bump OE-Core layer version >> >>> >> >>> meta/conf/distro/include/maintainers.inc | 5 +++- >> >>> meta/conf/layer.conf | 2 +- >> >>> .../python/python-pycryptodome.inc | 26 >> +++++++++++++++++++ >> >>> .../python/python3-pycryptodome_3.9.7.bb | 5 ++++ >> >>> .../python/python3-pycryptodomex_3.9.7.bb | 9 +++++++ >> >>> .../python/python3-pyelftools_0.26.bb | 14 ++++++++++ >> >>> 6 files changed, 59 insertions(+), 2 deletions(-) >> >>> create mode 100644 >> meta/recipes-devtools/python/python-pycryptodome.inc >> >>> create mode 100644 meta/recipes-devtools/python/ >> python3-pycryptodome_3.9.7.bb >> >>> create mode 100644 meta/recipes-devtools/python/ >> python3-pycryptodomex_3.9.7.bb >> >>> create mode 100644 meta/recipes-devtools/python/ >> python3-pyelftools_0.26.bb >> >>> >> >>> >> >>> >> >> >> >> >> > [-- Attachment #2: Type: text/html, Size: 5695 bytes --] ^ permalink raw reply [flat|nested] 23+ messages in thread
* Re: [OE-core][dunfell 0/5] Patch review 2020-06-04 0:11 ` Joshua Watt @ 2020-06-04 0:38 ` Martin Jansa 0 siblings, 0 replies; 23+ messages in thread From: Martin Jansa @ 2020-06-04 0:38 UTC (permalink / raw) To: Joshua Watt Cc: akuster, Denys Dmytriyenko, Steve Sakoman, Patches and discussions about the oe-core layer [-- Attachment #1: Type: text/plain, Size: 3598 bytes --] I've sent the patch for meta-python now, but I see that I've sent it only for version 11 (not 12 from "layer.conf: Bump OE-Core layer version" which is being backported here and was merged to master just few hours ago in https://git.openembedded.org/openembedded-core/commit/?id=2d503b27e7c88cee9a37c79c4605c77b11f230b6). Sending v2 now. On Thu, Jun 4, 2020 at 2:11 AM Joshua Watt <jpewhacker@gmail.com> wrote: > > > On Wed, Jun 3, 2020, 6:33 PM Martin Jansa <martin.jansa@gmail.com> wrote: > >> I think we still need corresponding LAYERDEPENDS_meta-python update which >> isn't in master yet (and I haven't noticed it on the list). >> >> Joshua: did I overlook it somewhere or should I send it? >> > > I didn't send it because the layer version bump wasn't added to oe-core > until yesterday. If you can send the patch that would be great. > > Thanks > > >> On Wed, Jun 3, 2020 at 7:45 PM akuster <akuster808@gmail.com> wrote: >> >>> >>> >>> On 6/3/20 10:36 AM, Denys Dmytriyenko wrote: >>> > On Wed, Jun 03, 2020 at 10:33:55AM -0700, akuster wrote: >>> >> Does someone have the complementary set of patches for meta-openbedded >>> >> to remove these? >>> > >>> https://git.openembedded.org/meta-openembedded/commit/?id=a8f3c00d8d113b46a49584682e10435157d516ca >>> > >>> https://git.openembedded.org/meta-openembedded/commit/?id=7aee545a61c4f91d5e462d5b46b1b8f9a8bad1e3 >>> > >>> > Do you want me to re-submit them with [dunfell] tag? >>> nah, the commits work of me. Thanks >>> >>> - armin >>> > >>> > >>> >> - armin >>> >> >>> >> On 6/3/20 8:33 AM, Steve Sakoman wrote: >>> >>> Pending final approval for an exception to LTS policy in this case >>> please >>> >>> review this patch series and have comments back by end of day >>> Thursday. >>> >>> >>> >>> For details on the motivation for this change see: >>> >>> >>> >>> >>> https://lists.openembedded.org/g/openembedded-architecture/message/1085 >>> >>> >>> >>> The following changes since commit >>> ef5af31f406076107402694f5d6afb27b240eba6: >>> >>> >>> >>> linux-yocto/5.4: update to v5.4.43 (2020-06-01 07:19:09 -1000) >>> >>> >>> >>> are available in the Git repository at: >>> >>> >>> >>> git://git.openembedded.org/openembedded-core-contrib >>> stable/dunfell-nut >>> >>> >>> http://cgit.openembedded.org/openembedded-core-contrib/log/?h=stable/dunfell-nut >>> >>> >>> >>> Joshua Watt (5): >>> >>> pycryptodome: Import from meta-python >>> >>> pyelftools: Import from meta-python >>> >>> python3-pycryptodome(x): Upgrade 3.9.4 -> 3.9.7 >>> >>> python3-pyelftools: Upgrade 0.25 -> 0.26 >>> >>> layer.conf: Bump OE-Core layer version >>> >>> >>> >>> meta/conf/distro/include/maintainers.inc | 5 +++- >>> >>> meta/conf/layer.conf | 2 +- >>> >>> .../python/python-pycryptodome.inc | 26 >>> +++++++++++++++++++ >>> >>> .../python/python3-pycryptodome_3.9.7.bb | 5 ++++ >>> >>> .../python/python3-pycryptodomex_3.9.7.bb | 9 +++++++ >>> >>> .../python/python3-pyelftools_0.26.bb | 14 ++++++++++ >>> >>> 6 files changed, 59 insertions(+), 2 deletions(-) >>> >>> create mode 100644 >>> meta/recipes-devtools/python/python-pycryptodome.inc >>> >>> create mode 100644 meta/recipes-devtools/python/ >>> python3-pycryptodome_3.9.7.bb >>> >>> create mode 100644 meta/recipes-devtools/python/ >>> python3-pycryptodomex_3.9.7.bb >>> >>> create mode 100644 meta/recipes-devtools/python/ >>> python3-pyelftools_0.26.bb >>> >>> >>> >>> >>> >>> >>> >> >>> >>> >>> >> [-- Attachment #2: Type: text/html, Size: 6585 bytes --] ^ permalink raw reply [flat|nested] 23+ messages in thread
* Re: [OE-core][dunfell 0/5] Patch review 2020-06-03 17:36 ` Denys Dmytriyenko 2020-06-03 17:45 ` akuster @ 2020-06-03 18:17 ` akuster 2020-06-03 18:18 ` Denys Dmytriyenko 1 sibling, 1 reply; 23+ messages in thread From: akuster @ 2020-06-03 18:17 UTC (permalink / raw) To: Denys Dmytriyenko; +Cc: Steve Sakoman, openembedded-core On 6/3/20 10:36 AM, Denys Dmytriyenko wrote: > On Wed, Jun 03, 2020 at 10:33:55AM -0700, akuster wrote: >> Does someone have the complementary set of patches for meta-openbedded >> to remove these? > https://git.openembedded.org/meta-openembedded/commit/?id=a8f3c00d8d113b46a49584682e10435157d516ca > https://git.openembedded.org/meta-openembedded/commit/?id=7aee545a61c4f91d5e462d5b46b1b8f9a8bad1e3 > > Do you want me to re-submit them with [dunfell] tag? changes in stable/dunfell-nut for testing with my other backports. -armin > > >> - armin >> >> On 6/3/20 8:33 AM, Steve Sakoman wrote: >>> Pending final approval for an exception to LTS policy in this case please >>> review this patch series and have comments back by end of day Thursday. >>> >>> For details on the motivation for this change see: >>> >>> https://lists.openembedded.org/g/openembedded-architecture/message/1085 >>> >>> The following changes since commit ef5af31f406076107402694f5d6afb27b240eba6: >>> >>> linux-yocto/5.4: update to v5.4.43 (2020-06-01 07:19:09 -1000) >>> >>> are available in the Git repository at: >>> >>> git://git.openembedded.org/openembedded-core-contrib stable/dunfell-nut >>> http://cgit.openembedded.org/openembedded-core-contrib/log/?h=stable/dunfell-nut >>> >>> Joshua Watt (5): >>> pycryptodome: Import from meta-python >>> pyelftools: Import from meta-python >>> python3-pycryptodome(x): Upgrade 3.9.4 -> 3.9.7 >>> python3-pyelftools: Upgrade 0.25 -> 0.26 >>> layer.conf: Bump OE-Core layer version >>> >>> meta/conf/distro/include/maintainers.inc | 5 +++- >>> meta/conf/layer.conf | 2 +- >>> .../python/python-pycryptodome.inc | 26 +++++++++++++++++++ >>> .../python/python3-pycryptodome_3.9.7.bb | 5 ++++ >>> .../python/python3-pycryptodomex_3.9.7.bb | 9 +++++++ >>> .../python/python3-pyelftools_0.26.bb | 14 ++++++++++ >>> 6 files changed, 59 insertions(+), 2 deletions(-) >>> create mode 100644 meta/recipes-devtools/python/python-pycryptodome.inc >>> create mode 100644 meta/recipes-devtools/python/python3-pycryptodome_3.9.7.bb >>> create mode 100644 meta/recipes-devtools/python/python3-pycryptodomex_3.9.7.bb >>> create mode 100644 meta/recipes-devtools/python/python3-pyelftools_0.26.bb >>> >>> >>> >> ^ permalink raw reply [flat|nested] 23+ messages in thread
* Re: [OE-core][dunfell 0/5] Patch review 2020-06-03 18:17 ` akuster @ 2020-06-03 18:18 ` Denys Dmytriyenko 0 siblings, 0 replies; 23+ messages in thread From: Denys Dmytriyenko @ 2020-06-03 18:18 UTC (permalink / raw) To: akuster808; +Cc: Steve Sakoman, openembedded-core On Wed, Jun 03, 2020 at 11:17:20AM -0700, akuster808 wrote: > > > On 6/3/20 10:36 AM, Denys Dmytriyenko wrote: > > On Wed, Jun 03, 2020 at 10:33:55AM -0700, akuster wrote: > >> Does someone have the complementary set of patches for meta-openbedded > >> to remove these? > > https://git.openembedded.org/meta-openembedded/commit/?id=a8f3c00d8d113b46a49584682e10435157d516ca > > https://git.openembedded.org/meta-openembedded/commit/?id=7aee545a61c4f91d5e462d5b46b1b8f9a8bad1e3 > > > > Do you want me to re-submit them with [dunfell] tag? > > changes in stable/dunfell-nut for testing with my other backports. Thanks! > -armin > > > > > >> - armin > >> > >> On 6/3/20 8:33 AM, Steve Sakoman wrote: > >>> Pending final approval for an exception to LTS policy in this case please > >>> review this patch series and have comments back by end of day Thursday. > >>> > >>> For details on the motivation for this change see: > >>> > >>> https://lists.openembedded.org/g/openembedded-architecture/message/1085 > >>> > >>> The following changes since commit ef5af31f406076107402694f5d6afb27b240eba6: > >>> > >>> linux-yocto/5.4: update to v5.4.43 (2020-06-01 07:19:09 -1000) > >>> > >>> are available in the Git repository at: > >>> > >>> git://git.openembedded.org/openembedded-core-contrib stable/dunfell-nut > >>> http://cgit.openembedded.org/openembedded-core-contrib/log/?h=stable/dunfell-nut > >>> > >>> Joshua Watt (5): > >>> pycryptodome: Import from meta-python > >>> pyelftools: Import from meta-python > >>> python3-pycryptodome(x): Upgrade 3.9.4 -> 3.9.7 > >>> python3-pyelftools: Upgrade 0.25 -> 0.26 > >>> layer.conf: Bump OE-Core layer version > >>> > >>> meta/conf/distro/include/maintainers.inc | 5 +++- > >>> meta/conf/layer.conf | 2 +- > >>> .../python/python-pycryptodome.inc | 26 +++++++++++++++++++ > >>> .../python/python3-pycryptodome_3.9.7.bb | 5 ++++ > >>> .../python/python3-pycryptodomex_3.9.7.bb | 9 +++++++ > >>> .../python/python3-pyelftools_0.26.bb | 14 ++++++++++ > >>> 6 files changed, 59 insertions(+), 2 deletions(-) > >>> create mode 100644 meta/recipes-devtools/python/python-pycryptodome.inc > >>> create mode 100644 meta/recipes-devtools/python/python3-pycryptodome_3.9.7.bb > >>> create mode 100644 meta/recipes-devtools/python/python3-pycryptodomex_3.9.7.bb > >>> create mode 100644 meta/recipes-devtools/python/python3-pyelftools_0.26.bb > >>> > >>> > >>> > >> > ^ permalink raw reply [flat|nested] 23+ messages in thread
end of thread, other threads:[~2024-04-10 13:11 UTC | newest] Thread overview: 23+ messages (download: mbox.gz / follow: Atom feed) -- links below jump to the message on this page -- 2024-04-10 13:10 [OE-core][dunfell 0/5] Patch review Steve Sakoman 2024-04-10 13:10 ` [OE-core][dunfell 1/5] ncurses: Backport fix for CVE-2023-50495 Steve Sakoman 2024-04-10 13:10 ` [OE-core][dunfell 2/5] go: Backport fix for CVE-2024-24784 Steve Sakoman 2024-04-10 13:10 ` [OE-core][dunfell 3/5] xserver-xorg: Backport fix for CVE-2024-31081 Steve Sakoman 2024-04-10 13:10 ` [OE-core][dunfell 4/5] xserver-xorg: Backport fix for CVE-2024-31080 Steve Sakoman 2024-04-10 13:10 ` [OE-core][dunfell 5/5] licenses.conf: Add missing LGPLv2.0+ license Steve Sakoman -- strict thread matches above, loose matches on Subject: below -- 2024-01-05 14:03 [OE-core][dunfell 0/5] Patch review Steve Sakoman 2023-12-19 13:48 Steve Sakoman 2023-09-04 14:22 Steve Sakoman 2023-06-14 14:04 Steve Sakoman 2022-09-22 21:47 Steve Sakoman 2021-09-07 14:44 Steve Sakoman 2021-09-03 14:10 Steve Sakoman 2020-11-21 0:13 Steve Sakoman 2020-06-03 15:33 Steve Sakoman 2020-06-03 17:33 ` akuster 2020-06-03 17:36 ` Denys Dmytriyenko 2020-06-03 17:45 ` akuster 2020-06-03 23:33 ` Martin Jansa 2020-06-04 0:11 ` Joshua Watt 2020-06-04 0:38 ` Martin Jansa 2020-06-03 18:17 ` akuster 2020-06-03 18:18 ` Denys Dmytriyenko
This is an external index of several public inboxes, see mirroring instructions on how to clone and mirror all data and code used by this external index.