Please review this next set of patches for dunfell and have comments back by end of day Tuesday.
Passed a-full on autobuilder: https://autobuilder.yoctoproject.org/typhoon/#/builders/83/builds/1560 The following changes since commit 8d54034bb8e522f9827ec6422b32cbd4e5bf1346: sqlite3: fix CVE-2020-13632 (2020-11-05 04:07:15 -1000) are available in the Git repository at: git://git.openembedded.org/openembedded-core-contrib stable/dunfell-nut http://cgit.openembedded.org/openembedded-core-contrib/log/?h=stable/dunfell-nut Alexander Kanavin (1): linux-firmware: upgrade 20200817 -> 20201022 Chee Yang Lee (1): ruby: fix CVE-2020-25613 Khem Raj (1): qemuboot.bbclass: Fix a typo Max Krummenacher (2): linux-firmware: package marvel sdio 8997 firmware linux-firmware: package nvidia firmware Maxime Roussin-BĂ©langer (1): meta: fix some unresponsive homepages and bugtracker links Mingli Yu (1): update_udev_hwdb: clean hwdb.bin Neil Armstrong (1): linux-firmware: add Amlogic VDEC firmware package Steve Sakoman (2): netbase: update SRC_URI to reflect new file name netbase: bump PE to purge bogus hash equivalence from autobuilder Yongxin Liu (2): grub: fix several CVEs in grub 2.04 grub: clean up CVE patches meta/classes/qemuboot.bbclass | 2 +- ...308-calloc-Use-calloc-at-most-places.patch | 1863 +++++++++++++++++ ...low-checking-primitives-where-we-do-.patch | 1330 ++++++++++++ ...se-after-free-when-redefining-a-func.patch | 117 ++ ...er-overflows-in-initrd-size-handling.patch | 177 ++ ...-we-always-have-an-overflow-checking.patch | 246 +++ ...dd-LVM-cache-logical-volume-handling.patch | 287 +++ ...e-arithmetic-primitives-that-check-f.patch | 94 + ...used-fields-from-grub_script_functio.patch | 37 + meta/recipes-bsp/grub/grub2.inc | 8 + meta/recipes-bsp/v86d/v86d_0.1.10.bb | 2 +- .../recipes-connectivity/bind/bind_9.11.22.bb | 2 +- meta/recipes-connectivity/iw/iw_5.4.bb | 2 +- meta/recipes-core/netbase/netbase_6.1.bb | 9 +- meta/recipes-core/readline/readline.inc | 2 +- meta/recipes-core/util-linux/util-linux.inc | 4 +- meta/recipes-devtools/chrpath/chrpath_0.16.bb | 3 +- meta/recipes-devtools/ninja/ninja_1.10.0.bb | 2 +- .../ruby/ruby/CVE-2020-25613.patch | 40 + meta/recipes-devtools/ruby/ruby_2.7.1.bb | 1 + meta/recipes-extended/lsb/lsb-release_1.4.bb | 2 +- .../recipes-extended/minicom/minicom_2.7.1.bb | 2 +- meta/recipes-extended/pbzip2/pbzip2_1.1.13.bb | 2 +- meta/recipes-extended/which/which_2.21.bb | 2 +- meta/recipes-gnome/gnome/gconf_3.2.6.bb | 2 +- meta/recipes-gnome/gtk-doc/gtk-doc_1.32.bb | 3 +- meta/recipes-kernel/kmod/kmod.inc | 2 +- ...20200817.bb => linux-firmware_20201022.bb} | 51 +- .../wireless-regdb_2020.04.29.bb | 2 +- .../libvorbis/libvorbis_1.3.6.bb | 4 +- .../settings-daemon/settings-daemon_0.0.2.bb | 2 +- meta/recipes-support/atk/atk_2.34.1.bb | 5 +- .../bash-completion/bash-completion_2.10.bb | 4 +- meta/recipes-support/npth/npth_1.6.bb | 4 +- scripts/postinst-intercepts/update_udev_hwdb | 1 + 35 files changed, 4279 insertions(+), 37 deletions(-) create mode 100644 meta/recipes-bsp/grub/files/CVE-2020-14308-calloc-Use-calloc-at-most-places.patch create mode 100644 meta/recipes-bsp/grub/files/CVE-2020-14309-CVE-2020-14310-CVE-2020-14311-malloc-Use-overflow-checking-primitives-where-we-do-.patch create mode 100644 meta/recipes-bsp/grub/files/CVE-2020-15706-script-Avoid-a-use-after-free-when-redefining-a-func.patch create mode 100644 meta/recipes-bsp/grub/files/CVE-2020-15707-linux-Fix-integer-overflows-in-initrd-size-handling.patch create mode 100644 meta/recipes-bsp/grub/files/calloc-Make-sure-we-always-have-an-overflow-checking.patch create mode 100644 meta/recipes-bsp/grub/files/lvm-Add-LVM-cache-logical-volume-handling.patch create mode 100644 meta/recipes-bsp/grub/files/safemath-Add-some-arithmetic-primitives-that-check-f.patch create mode 100644 meta/recipes-bsp/grub/files/script-Remove-unused-fields-from-grub_script_functio.patch create mode 100644 meta/recipes-devtools/ruby/ruby/CVE-2020-25613.patch rename meta/recipes-kernel/linux-firmware/{linux-firmware_20200817.bb => linux-firmware_20201022.bb} (95%) -- 2.17.1
-=-=-=-=-=-=-=-=-=-=-=- Links: You receive all messages sent to this group. View/Reply Online (#144386): https://lists.openembedded.org/g/openembedded-core/message/144386 Mute This Topic: https://lists.openembedded.org/mt/78128513/21656 Group Owner: [email protected] Unsubscribe: https://lists.openembedded.org/g/openembedded-core/unsub [[email protected]] -=-=-=-=-=-=-=-=-=-=-=-
