In message: [meta-virtualization][mickledore][PATCH 1/1] kubernetes: Upgrade v1.27.1 -> v1.27.5 on 19/10/2023 Soumya via lists.yoctoproject.org wrote:
> From: Soumya Sambu <[email protected]> > > Addresses CVE-2023-2431, CVE-2023-2727, CVE-2023-2728, > CVE-2023-3676, CVE-2023-3955 and few other bugs. Whenever targeting a CVE fix for a release branch, commits should state whether or not other branches are vulnerable, and at the same time confirm that there's a newer release available in those other branches (typically that is why they aren't vulnerable) > > Changelog: > https://github.com/kubernetes/kubernetes/blob/master/CHANGELOG/CHANGELOG-1.27.md#v1275 As you can tell from the other commits in the layer, linking to a changelog isn't the preferred way to document changes. They aren't searchable when done in this manner. I'll wait for a v2 with the changelog. Bruce > > Signed-off-by: Soumya Sambu <[email protected]> > --- > recipes-containers/kubernetes/kubernetes_git.bb | 4 ++-- > 1 file changed, 2 insertions(+), 2 deletions(-) > > diff --git a/recipes-containers/kubernetes/kubernetes_git.bb > b/recipes-containers/kubernetes/kubernetes_git.bb > index 3a6e7119..560fd8b7 100644 > --- a/recipes-containers/kubernetes/kubernetes_git.bb > +++ b/recipes-containers/kubernetes/kubernetes_git.bb > @@ -5,8 +5,8 @@ applications across multiple hosts, providing basic > mechanisms for deployment, \ > maintenance, and scaling of applications. \ > " > > -PV = "v1.27.1+git${SRCREV_kubernetes}" > -SRCREV_kubernetes = "2555e0f90e80a13628f47eca5cde34decc89babb" > +PV = "v1.27.5+git${SRCREV_kubernetes}" > +SRCREV_kubernetes = "93e0d7146fb9c3e9f68aa41b2b4265b2fcdb0a4c" > SRCREV_kubernetes-release = "21382abdbfa8e6a43fd417306fa649cb651cc06e" > PE = "1" > > -- > 2.40.0 > > > >
-=-=-=-=-=-=-=-=-=-=-=- Links: You receive all messages sent to this group. View/Reply Online (#8382): https://lists.yoctoproject.org/g/meta-virtualization/message/8382 Mute This Topic: https://lists.yoctoproject.org/mt/102057034/21656 Group Owner: [email protected] Unsubscribe: https://lists.yoctoproject.org/g/meta-virtualization/leave/6693005/21656/1014668956/xyzzy [[email protected]] -=-=-=-=-=-=-=-=-=-=-=-
