Please review this set of changes for mickledore and have comments back by end of day Thursday, September 28
Passed a-full on autobuilder: https://autobuilder.yoctoproject.org/typhoon/#/builders/83/builds/5950 The following changes since commit 72d3ecb22fea59d2520997b3f0a0651557d69ae7: cmake.bbclass: fix allarch override syntax (2023-09-18 04:52:03 -1000) are available in the Git repository at: https://git.openembedded.org/openembedded-core-contrib stable/mickledore-nut https://git.openembedded.org/openembedded-core-contrib/log/?h=stable/mickledore-nut Chen Qi (2): multilib.conf: explicitly make MULTILIB_VARIANTS vardeps on MULTILIBS gcc-crosssdk: ignore MULTILIB_VARIANTS in signature computation Jaeyoon Jung (1): cml1: Fix KCONFIG_CONFIG_COMMAND not conveyed fully in do_menuconfig Lee Chee Yang (2): bind: update to 9.18.19 ffmpeg: 5.1.2 -> 5.1.3 Narpat Mali (1): python3-git: upgrade 3.1.32 -> 3.1.37 Ross Burton (1): linux-yocto: update CVE exclusions Sanjay Chitroda (1): curl: Add CVE-2023-28320 follow-up fix Wang Mingyu (1): bind: upgrade 9.18.17 -> 9.18.18 Yash Shinde (1): glibc: fix CVE-2023-4527 meta/classes-recipe/cml1.bbclass | 2 +- meta/conf/multilib.conf | 1 + .../bind/{bind_9.18.17.bb => bind_9.18.19.bb} | 2 +- .../glibc/glibc/0023-CVE-2023-4527.patch | 219 ++++++++++++++++++ meta/recipes-core/glibc/glibc_2.37.bb | 1 + meta/recipes-devtools/gcc/gcc-crosssdk.inc | 2 + ...n3-git_3.1.32.bb => python3-git_3.1.37.bb} | 4 +- .../linux/cve-exclusion_6.1.inc | 157 ++++++++++--- ...c-stop-accessing-out-of-bounds-frame.patch | 89 ------- ...c-stop-accessing-out-of-bounds-frame.patch | 108 --------- .../ffmpeg/ffmpeg/ffmpeg-fix-vulkan.patch | 34 --- .../{ffmpeg_5.1.2.bb => ffmpeg_5.1.3.bb} | 5 +- .../curl/curl/CVE-2023-28320-fol1.patch | 80 +++++++ meta/recipes-support/curl/curl_8.0.1.bb | 1 + 14 files changed, 432 insertions(+), 273 deletions(-) rename meta/recipes-connectivity/bind/{bind_9.18.17.bb => bind_9.18.19.bb} (97%) create mode 100644 meta/recipes-core/glibc/glibc/0023-CVE-2023-4527.patch rename meta/recipes-devtools/python/{python3-git_3.1.32.bb => python3-git_3.1.37.bb} (86%) delete mode 100644 meta/recipes-multimedia/ffmpeg/ffmpeg/0001-avcodec-rpzaenc-stop-accessing-out-of-bounds-frame.patch delete mode 100644 meta/recipes-multimedia/ffmpeg/ffmpeg/0001-avcodec-smcenc-stop-accessing-out-of-bounds-frame.patch delete mode 100644 meta/recipes-multimedia/ffmpeg/ffmpeg/ffmpeg-fix-vulkan.patch rename meta/recipes-multimedia/ffmpeg/{ffmpeg_5.1.2.bb => ffmpeg_5.1.3.bb} (96%) create mode 100644 meta/recipes-support/curl/curl/CVE-2023-28320-fol1.patch -- 2.34.1
-=-=-=-=-=-=-=-=-=-=-=- Links: You receive all messages sent to this group. View/Reply Online (#188268): https://lists.openembedded.org/g/openembedded-core/message/188268 Mute This Topic: https://lists.openembedded.org/mt/101606094/21656 Group Owner: [email protected] Unsubscribe: https://lists.openembedded.org/g/openembedded-core/unsub [[email protected]] -=-=-=-=-=-=-=-=-=-=-=-
