Hello, this email is a notification from the Auto Upgrade Helper that the automatic attempt to upgrade the recipe *cups* to *2.4.5* has Succeeded.
Next steps:
- apply the patch: git am 0001-cups-upgrade-2.4.2-2.4.5.patch
- check the changes to upstream patches and summarize them in the commit
message,
- compile an image that contains the package
- perform some basic sanity tests
- amend the patch and sign it off: git commit -s --reset-author --amend
- send it to the appropriate mailing list
Alternatively, if you believe the recipe should not be upgraded at this time,
you can fill RECIPE_NO_UPDATE_REASON in respective recipe file so that
automatic upgrades would no longer be attempted.
Please review the attached files for further information and build/update
failures.
Any problem please file a bug at
https://bugzilla.yoctoproject.org/enter_bug.cgi?product=Automated%20Update%20Handler
Regards,
The Upgrade Helper
-- >8 --
From b258fc3f863defcd07454bfd6cec2389629fe81a Mon Sep 17 00:00:00 2001
From: Upgrade Helper <[email protected]>
Date: Thu, 15 Jun 2023 15:32:46 +0000
Subject: [PATCH] cups: upgrade 2.4.2 -> 2.4.5
---
meta/recipes-extended/cups/cups.inc | 1 -
.../cups/cups/CVE-2023-32324.patch | 36 -------------------
.../cups/{cups_2.4.2.bb => cups_2.4.5.bb} | 2 +-
3 files changed, 1 insertion(+), 38 deletions(-)
delete mode 100644 meta/recipes-extended/cups/cups/CVE-2023-32324.patch
rename meta/recipes-extended/cups/{cups_2.4.2.bb => cups_2.4.5.bb} (51%)
diff --git a/meta/recipes-extended/cups/cups.inc
b/meta/recipes-extended/cups/cups.inc
index d77758fd3f..da320b1085 100644
--- a/meta/recipes-extended/cups/cups.inc
+++ b/meta/recipes-extended/cups/cups.inc
@@ -15,7 +15,6 @@ SRC_URI =
"${GITHUB_BASE_URI}/download/v${PV}/cups-${PV}-source.tar.gz \
file://0004-cups-fix-multilib-install-file-conflicts.patch \
file://volatiles.99_cups \
file://cups-volatiles.conf \
- file://CVE-2023-32324.patch \
"
GITHUB_BASE_URI = "https://github.com/OpenPrinting/cups/releases";
diff --git a/meta/recipes-extended/cups/cups/CVE-2023-32324.patch
b/meta/recipes-extended/cups/cups/CVE-2023-32324.patch
deleted file mode 100644
index 40b89c9899..0000000000
--- a/meta/recipes-extended/cups/cups/CVE-2023-32324.patch
+++ /dev/null
@@ -1,36 +0,0 @@
-From 07cbffd11107eed3aaf1c64e35552aec20f792da Mon Sep 17 00:00:00 2001
-From: Zdenek Dohnal <[email protected]>
-Date: Thu, 1 Jun 2023 12:04:00 +0200
-Subject: [PATCH] cups/string.c: Return if `size` is 0 (fixes CVE-2023-32324)
-
-CVE: CVE-2023-32324
-Upstream-Status: Backport
[https://github.com/OpenPrinting/cups/commit/fd8bc2d32589]
-
-(cherry picked from commit fd8bc2d32589d1fd91fe1c0521be2a7c0462109e)
-Signed-off-by: Sanjay Chitroda <[email protected]>
----
- cups/string.c | 4 ++++
- 1 file changed, 4 insertions(+)
-
-diff --git a/cups/string.c b/cups/string.c
-index 93cdad19..6ef58515 100644
---- a/cups/string.c
-+++ b/cups/string.c
-@@ -1,6 +1,7 @@
- /*
- * String functions for CUPS.
- *
-+ * Copyright © 2023 by OpenPrinting.
- * Copyright © 2007-2019 by Apple Inc.
- * Copyright © 1997-2007 by Easy Software Products.
- *
-@@ -730,6 +731,9 @@ _cups_strlcpy(char *dst, /* O -
Destination string */
- size_t srclen; /* Length of source string */
-
-
-+ if (size == 0)
-+ return (0);
-+
- /*
- * Figure out how much room is needed...
- */
diff --git a/meta/recipes-extended/cups/cups_2.4.2.bb
b/meta/recipes-extended/cups/cups_2.4.5.bb
similarity index 51%
rename from meta/recipes-extended/cups/cups_2.4.2.bb
rename to meta/recipes-extended/cups/cups_2.4.5.bb
index f5ca749bac..e1bb43aa3c 100644
--- a/meta/recipes-extended/cups/cups_2.4.2.bb
+++ b/meta/recipes-extended/cups/cups_2.4.5.bb
@@ -2,4 +2,4 @@ require cups.inc
LIC_FILES_CHKSUM = "file://LICENSE;md5=3b83ef96387f14655fc854ddc3c6bd57"
-SRC_URI[sha256sum] =
"f03ccb40b087d1e30940a40e0141dcbba263f39974c20eb9f2521066c9c6c908"
+SRC_URI[sha256sum] =
"9a404de55f74525b0a6851df0cfdebfa1215aec0e7c2f7be6b9b09b6916fb000"
--
2.39.2
0001-cups-upgrade-2.4.2-2.4.5.patch
Description: Binary data
packages/core2-32-poky-linux/cups/cups-dbg: PV changed from "2.4.2" to "2.4.5" packages/core2-32-poky-linux/cups/cups-dbg: PKGSIZE changed from 6635660 to 6645896 (+0%) packages/core2-32-poky-linux/cups/cups-dbg: PKGV changed from 2.4.2 [default] to 2.4.5 [default] packages/core2-32-poky-linux/cups/cups-dev: PV changed from "2.4.2" to "2.4.5" packages/core2-32-poky-linux/cups/cups-dev: PKGSIZE changed from 188118 to 188119 (+0%) packages/core2-32-poky-linux/cups/cups-dev: PKGV changed from 2.4.2 [default] to 2.4.5 [default] packages/core2-32-poky-linux/cups/cups-doc: PV changed from "2.4.2" to "2.4.5" packages/core2-32-poky-linux/cups/cups-doc: PKGSIZE changed from 225807 to 225888 (+0%) packages/core2-32-poky-linux/cups/cups-doc: PKGV changed from 2.4.2 [default] to 2.4.5 [default] packages/core2-32-poky-linux/cups/cups-lib: PV changed from "2.4.2" to "2.4.5" packages/core2-32-poky-linux/cups/cups-lib: PKGV changed from 2.4.2 [default] to 2.4.5 [default] packages/core2-32-poky-linux/cups/cups-libimage: PV changed from "2.4.2" to "2.4.5" packages/core2-32-poky-linux/cups/cups-libimage: PKGV changed from 2.4.2 [default] to 2.4.5 [default] packages/core2-32-poky-linux/cups/cups-locale-ca: PV changed from "2.4.2" to "2.4.5" packages/core2-32-poky-linux/cups/cups-locale-ca: PKGV changed from 2.4.2 [default] to 2.4.5 [default] packages/core2-32-poky-linux/cups/cups-locale-cs: PV changed from "2.4.2" to "2.4.5" packages/core2-32-poky-linux/cups/cups-locale-cs: PKGV changed from 2.4.2 [default] to 2.4.5 [default] packages/core2-32-poky-linux/cups/cups-locale-da: PV changed from "2.4.2" to "2.4.5" packages/core2-32-poky-linux/cups/cups-locale-da: PKGV changed from 2.4.2 [default] to 2.4.5 [default] packages/core2-32-poky-linux/cups/cups-locale-de: PV changed from "2.4.2" to "2.4.5" packages/core2-32-poky-linux/cups/cups-locale-de: PKGSIZE changed from 374840 to 374842 (+0%) packages/core2-32-poky-linux/cups/cups-locale-de: PKGV changed from 2.4.2 [default] to 2.4.5 [default] packages/core2-32-poky-linux/cups/cups-locale-en: PV changed from "2.4.2" to "2.4.5" packages/core2-32-poky-linux/cups/cups-locale-en: PKGV changed from 2.4.2 [default] to 2.4.5 [default] packages/core2-32-poky-linux/cups/cups-locale-es: PV changed from "2.4.2" to "2.4.5" packages/core2-32-poky-linux/cups/cups-locale-es: PKGV changed from 2.4.2 [default] to 2.4.5 [default] packages/core2-32-poky-linux/cups/cups-locale-fr: PV changed from "2.4.2" to "2.4.5" packages/core2-32-poky-linux/cups/cups-locale-fr: PKGV changed from 2.4.2 [default] to 2.4.5 [default] packages/core2-32-poky-linux/cups/cups-locale-it: PV changed from "2.4.2" to "2.4.5" packages/core2-32-poky-linux/cups/cups-locale-it: PKGV changed from 2.4.2 [default] to 2.4.5 [default] packages/core2-32-poky-linux/cups/cups-locale-ja: PV changed from "2.4.2" to "2.4.5" packages/core2-32-poky-linux/cups/cups-locale-ja: PKGV changed from 2.4.2 [default] to 2.4.5 [default] packages/core2-32-poky-linux/cups/cups-locale-pt-br: PV changed from "2.4.2" to "2.4.5" packages/core2-32-poky-linux/cups/cups-locale-pt-br: PKGV changed from 2.4.2 [default] to 2.4.5 [default] packages/core2-32-poky-linux/cups/cups-locale-ru: PV changed from "2.4.2" to "2.4.5" packages/core2-32-poky-linux/cups/cups-locale-ru: PKGV changed from 2.4.2 [default] to 2.4.5 [default] packages/core2-32-poky-linux/cups/cups-locale-zh-cn: PV changed from "2.4.2" to "2.4.5" packages/core2-32-poky-linux/cups/cups-locale-zh-cn: PKGSIZE changed from 343139 to 343945 (+0%) packages/core2-32-poky-linux/cups/cups-locale-zh-cn: PKGV changed from 2.4.2 [default] to 2.4.5 [default] packages/core2-32-poky-linux/cups/cups-src: PV changed from "2.4.2" to "2.4.5" packages/core2-32-poky-linux/cups/cups-src: PKGSIZE changed from 5880869 to 5904164 (+0%) packages/core2-32-poky-linux/cups/cups-src: PKGV changed from 2.4.2 [default] to 2.4.5 [default] packages/core2-32-poky-linux/cups/cups-staticdev: PV changed from "2.4.2" to "2.4.5" packages/core2-32-poky-linux/cups/cups-staticdev: PKGV changed from 2.4.2 [default] to 2.4.5 [default] packages/core2-32-poky-linux/cups/cups-webif: PV changed from "2.4.2" to "2.4.5" packages/core2-32-poky-linux/cups/cups-webif: PKGSIZE changed from 1565527 to 1565612 (+0%) packages/core2-32-poky-linux/cups/cups-webif: PKGV changed from 2.4.2 [default] to 2.4.5 [default] packages/core2-32-poky-linux/cups/cups: PV changed from "2.4.2" to "2.4.5" packages/core2-32-poky-linux/cups/cups: PKGSIZE changed from 7845091 to 7854048 (+0%) packages/core2-32-poky-linux/cups/cups: PKGV changed from 2.4.2 [default] to 2.4.5 [default] packages/core2-32-poky-linux/cups: PV changed from "2.4.2" to "2.4.5" packages/core2-32-poky-linux/cups: PKGV changed from 2.4.2 [default] to 2.4.5 [default] packages/core2-32-poky-linux/cups: SRC_URI changed from "https://github.com/OpenPrinting/cups/releases/download/v2.4.2/cups-2.4.2-source.tar.gz file://0001-use-echo-only-in-init.patch file://0002-don-t-try-to-run-generated-binaries.patch file://libexecdir.patch file://0004-cups-fix-multilib-install-file-conflicts.patch file://volatiles.99_cups file://cups-volatiles.conf file://CVE-2023-32324.patch" to "https://github.com/OpenPrinting/cups/releases/download/v2.4.5/cups-2.4.5-source.tar.gz file://0001-use-echo-only-in-init.patch file://0002-don-t-try-to-run-generated-binaries.patch file://libexecdir.patch file://0004-cups-fix-multilib-install-file-conflicts.patch file://volatiles.99_cups file://cups-volatiles.conf"
-=-=-=-=-=-=-=-=-=-=-=- Links: You receive all messages sent to this group. View/Reply Online (#182955): https://lists.openembedded.org/g/openembedded-core/message/182955 Mute This Topic: https://lists.openembedded.org/mt/99563887/21656 Group Owner: [email protected] Unsubscribe: https://lists.openembedded.org/g/openembedded-core/unsub [[email protected]] -=-=-=-=-=-=-=-=-=-=-=-
