Please review this set of changes for mickledore and have comments back by end of day Friday, November 10
Passed a-full on autobuilder: https://autobuilder.yoctoproject.org/typhoon/#/builders/83/builds/6156 The following changes since commit e9ca1405b732720ff72d379e0262a78bfd2e7d53: busybox: Set PATH in syslog initscript (2023-10-19 04:34:38 -1000) are available in the Git repository at: https://git.openembedded.org/openembedded-core-contrib stable/mickledore-nut https://git.openembedded.org/openembedded-core-contrib/log/?h=stable/mickledore-nut Chen Qi (1): systemd: backport patch to fix warning in systemd-vconsole-setup Mingli Yu (1): curl: Fix CVE-2023-38039 Peter Marko (1): openssl: Upgrade 3.1.3 -> 3.1.4 Ross Burton (4): pixman: ignore CVE-2023-37769 cve-check: sort the package list in the JSON report cve-check: slightly more verbose warning when adding the same package twice cve-check: don't warn if a patch is remote Soumya Sambu (1): libwebp: Fix CVE-2023-4863 Xiangyu Chen (2): shadow: Fix CVE-2023-4641 linux-yocto: make sure the pahole-native available before do_kernel_configme meta/classes/cve-check.bbclass | 2 + meta/lib/oe/cve_check.py | 13 +- .../{openssl_3.1.3.bb => openssl_3.1.4.bb} | 2 +- ...l-return-0-for-missing-creds-in-read.patch | 139 ++++++++++++ meta/recipes-core/systemd/systemd_253.1.bb | 1 + .../shadow/files/CVE-2023-4641.patch | 147 ++++++++++++ meta/recipes-extended/shadow/shadow.inc | 1 + .../xorg-lib/pixman_0.42.2.bb | 2 + meta/recipes-kernel/linux/linux-yocto.inc | 5 +- ...23-5129.patch => CVE-2023-4863-0001.patch} | 20 +- .../webp/files/CVE-2023-4863-0002.patch | 53 +++++ meta/recipes-multimedia/webp/libwebp_1.3.1.bb | 3 +- .../curl/curl/CVE-2023-38039.patch | 209 ++++++++++++++++++ meta/recipes-support/curl/curl_8.0.1.bb | 1 + 14 files changed, 580 insertions(+), 18 deletions(-) rename meta/recipes-connectivity/openssl/{openssl_3.1.3.bb => openssl_3.1.4.bb} (99%) create mode 100644 meta/recipes-core/systemd/systemd/0001-shared-creds-util-return-0-for-missing-creds-in-read.patch create mode 100644 meta/recipes-extended/shadow/files/CVE-2023-4641.patch rename meta/recipes-multimedia/webp/files/{CVE-2023-5129.patch => CVE-2023-4863-0001.patch} (97%) create mode 100644 meta/recipes-multimedia/webp/files/CVE-2023-4863-0002.patch create mode 100644 meta/recipes-support/curl/curl/CVE-2023-38039.patch -- 2.34.1
-=-=-=-=-=-=-=-=-=-=-=- Links: You receive all messages sent to this group. View/Reply Online (#190326): https://lists.openembedded.org/g/openembedded-core/message/190326 Mute This Topic: https://lists.openembedded.org/mt/102463461/21656 Group Owner: [email protected] Unsubscribe: https://lists.openembedded.org/g/openembedded-core/unsub [[email protected]] -=-=-=-=-=-=-=-=-=-=-=-
