On 2023-06-06 07:38, Soumya via lists.openembedded.org wrote:
This is for kirkstone branch. Attached is the updated patch.
Soumya,
We don't usually take patches as attachments since we
like to see the changes in email easily for review so
unless Steve makes an exception this time, please
resend following the workflow documented here:
https://www.openembedded.org/wiki/How_to_submit_a_patch_to_OpenEmbedded
See and read the section mentioning:
git send-email ... --subject-prefix="<BRANCH_NAME>][PATCH"
and the rest of the document and links therein.
../Randy
Regards,
Soumya
------------------------------------------------------------------------
*From:* Richard Purdie <[email protected]>
*Sent:* Tuesday, June 6, 2023 4:35 PM
*To:* Sambu, Soumya <[email protected]>;
[email protected]
<[email protected]>
*Subject:* Re: [OE-core] [PATCH] perl: fix CVE-2023-31484
CAUTION: This email comes from a non Wind River email account!
Do not click links or open attachments unless you recognize the sender
and know the content is safe.
On Mon, 2023-06-05 at 17:46 +0000, Soumya via lists.openembedded.org
wrote:
> CPAN.pm before 2.35 does not verify TLS certificates when downloading
> distributions over HTTPS.
>
> Signed-off-by: Soumya <[email protected]>
> ---
> .../perl/files/CVE-2023-31484.patch | 29 +++++++++++++++++++
> meta/recipes-devtools/perl/perl_5.34.1.bb | 1 +
> 2 files changed, 30 insertions(+)
> create mode 100644
meta/recipes-devtools/perl/files/CVE-2023-31484.patch
Which release is this patch against?
Cheers,
Richard
--
# Randy MacLeod
# Wind River Linux
-=-=-=-=-=-=-=-=-=-=-=-
Links: You receive all messages sent to this group.
View/Reply Online (#182448):
https://lists.openembedded.org/g/openembedded-core/message/182448
Mute This Topic: https://lists.openembedded.org/mt/99345985/21656
Group Owner: [email protected]
Unsubscribe: https://lists.openembedded.org/g/openembedded-core/unsub
[[email protected]]
-=-=-=-=-=-=-=-=-=-=-=-
