Please review this set of changes for nanbield and have comments back by end of day Monday, February 19
Passed a-full on autobuilder: https://autobuilder.yoctoproject.org/typhoon/#/builders/83/builds/6568 The following changes since commit 0584d01f623e1f9b0fef4dfa95dd66de6cbfb7b3: build-appliance-image: Update to nanbield head revision (2024-02-08 03:49:03 -1000) are available in the Git repository at: https://git.openembedded.org/openembedded-core-contrib stable/nanbield-nut https://git.openembedded.org/openembedded-core-contrib/log/?h=stable/nanbield-nut Alexander Sverdlin (1): linux-firmware: upgrade 20231030 -> 20231211 Benjamin Bara (1): glibc: stable 2.38 branch updates Chen Qi (1): multilib_global.bbclass: fix parsing error with no kernel module split Jonathan GUILLOT (1): udev-extraconf: fix unmount directories containing octal-escaped chars Julien Stephan (1): externalsrc: fix task dependency for do_populate_lic Kai Kang (1): xserver-xorg: 21.1.9 -> 21.1.11 Peter Marko (1): zlib: ignore CVE-2023-6992 Richard Purdie (3): allarch: Fix allarch corner case reproducible: Fix race with externalsrc/devtool over lockfile pseudo: Update to pull in gcc14 fix and missing statvfs64 intercept Robert Joslyn (1): gtk: Set CVE_PRODUCT Ross Burton (3): libssh2: backport fix for CVE-2023-48795 cve_check: handle CVE_STATUS being set to the empty string cve_check: cleanup logging Simone Weiß (1): gcc: Update status of CVE-2023-4039 Wang Mingyu (3): at-spi2-core: upgrade 2.50.0 -> 2.50.1 cpio: upgrade 2.14 -> 2.15 gstreamer: upgrade 1.22.8 -> 1.22.9 Yogita Urade (2): tiff: fix CVE-2023-6228 tiff: fix CVE-2023-52355 and CVE-2023-52356 [email protected] (1): overlayfs: add missing closing parenthesis in selftest .../overlayfs-user/overlayfs-user.bb | 2 +- meta/classes-recipe/allarch.bbclass | 4 +- meta/classes/externalsrc.bbclass | 1 + meta/classes/multilib_global.bbclass | 1 + meta/lib/oe/cve_check.py | 17 +- meta/lib/oe/reproducible.py | 3 + meta/recipes-core/glibc/glibc-version.inc | 5 +- .../recipes-core/udev/udev-extraconf/mount.sh | 2 +- meta/recipes-core/zlib/zlib_1.3.bb | 1 + meta/recipes-devtools/gcc/gcc-13.2.inc | 1 + .../pseudo/files/glibc238.patch | 13 - meta/recipes-devtools/pseudo/pseudo_git.bb | 2 +- .../cpio/{cpio_2.14.bb => cpio_2.15.bb} | 3 +- ...e-needed-header-for-major-minor-macr.patch | 48 -- meta/recipes-gnome/gtk+/gtk+3_3.24.38.bb | 2 + meta/recipes-gnome/gtk+/gtk4_4.12.3.bb | 2 + ...xorg_21.1.9.bb => xserver-xorg_21.1.11.bb} | 2 +- ...20231030.bb => linux-firmware_20231211.bb} | 7 +- ...tools_1.22.8.bb => gst-devtools_1.22.9.bb} | 2 +- ...1.22.8.bb => gstreamer1.0-libav_1.22.9.bb} | 2 +- ...x_1.22.8.bb => gstreamer1.0-omx_1.22.9.bb} | 2 +- ....bb => gstreamer1.0-plugins-bad_1.22.9.bb} | 2 +- ...bb => gstreamer1.0-plugins-base_1.22.9.bb} | 2 +- ...bb => gstreamer1.0-plugins-good_1.22.9.bb} | 2 +- ...bb => gstreamer1.0-plugins-ugly_1.22.9.bb} | 3 +- ....22.8.bb => gstreamer1.0-python_1.22.9.bb} | 2 +- ....bb => gstreamer1.0-rtsp-server_1.22.9.bb} | 2 +- ...1.22.8.bb => gstreamer1.0-vaapi_1.22.9.bb} | 2 +- ...er1.0_1.22.8.bb => gstreamer1.0_1.22.9.bb} | 2 +- .../libtiff/tiff/CVE-2023-52355-0001.patch | 238 +++++++++ .../libtiff/tiff/CVE-2023-52355-0002.patch | 28 ++ .../libtiff/tiff/CVE-2023-52356.patch | 49 ++ .../libtiff/tiff/CVE-2023-6228.patch | 31 ++ meta/recipes-multimedia/libtiff/tiff_4.6.0.bb | 4 + ...-core_2.50.0.bb => at-spi2-core_2.50.1.bb} | 2 +- .../libssh2/libssh2/CVE-2023-48795.patch | 466 ++++++++++++++++++ .../recipes-support/libssh2/libssh2_1.11.0.bb | 1 + 37 files changed, 864 insertions(+), 94 deletions(-) rename meta/recipes-extended/cpio/{cpio_2.14.bb => cpio_2.15.bb} (94%) delete mode 100644 meta/recipes-extended/cpio/files/0001-configure-Include-needed-header-for-major-minor-macr.patch rename meta/recipes-graphics/xorg-xserver/{xserver-xorg_21.1.9.bb => xserver-xorg_21.1.11.bb} (92%) rename meta/recipes-kernel/linux-firmware/{linux-firmware_20231030.bb => linux-firmware_20231211.bb} (99%) rename meta/recipes-multimedia/gstreamer/{gst-devtools_1.22.8.bb => gst-devtools_1.22.9.bb} (95%) rename meta/recipes-multimedia/gstreamer/{gstreamer1.0-libav_1.22.8.bb => gstreamer1.0-libav_1.22.9.bb} (91%) rename meta/recipes-multimedia/gstreamer/{gstreamer1.0-omx_1.22.8.bb => gstreamer1.0-omx_1.22.9.bb} (95%) rename meta/recipes-multimedia/gstreamer/{gstreamer1.0-plugins-bad_1.22.8.bb => gstreamer1.0-plugins-bad_1.22.9.bb} (98%) rename meta/recipes-multimedia/gstreamer/{gstreamer1.0-plugins-base_1.22.8.bb => gstreamer1.0-plugins-base_1.22.9.bb} (98%) rename meta/recipes-multimedia/gstreamer/{gstreamer1.0-plugins-good_1.22.8.bb => gstreamer1.0-plugins-good_1.22.9.bb} (97%) rename meta/recipes-multimedia/gstreamer/{gstreamer1.0-plugins-ugly_1.22.8.bb => gstreamer1.0-plugins-ugly_1.22.9.bb} (94%) rename meta/recipes-multimedia/gstreamer/{gstreamer1.0-python_1.22.8.bb => gstreamer1.0-python_1.22.9.bb} (91%) rename meta/recipes-multimedia/gstreamer/{gstreamer1.0-rtsp-server_1.22.8.bb => gstreamer1.0-rtsp-server_1.22.9.bb} (90%) rename meta/recipes-multimedia/gstreamer/{gstreamer1.0-vaapi_1.22.8.bb => gstreamer1.0-vaapi_1.22.9.bb} (95%) rename meta/recipes-multimedia/gstreamer/{gstreamer1.0_1.22.8.bb => gstreamer1.0_1.22.9.bb} (97%) create mode 100644 meta/recipes-multimedia/libtiff/tiff/CVE-2023-52355-0001.patch create mode 100644 meta/recipes-multimedia/libtiff/tiff/CVE-2023-52355-0002.patch create mode 100644 meta/recipes-multimedia/libtiff/tiff/CVE-2023-52356.patch create mode 100644 meta/recipes-multimedia/libtiff/tiff/CVE-2023-6228.patch rename meta/recipes-support/atk/{at-spi2-core_2.50.0.bb => at-spi2-core_2.50.1.bb} (95%) create mode 100644 meta/recipes-support/libssh2/libssh2/CVE-2023-48795.patch -- 2.34.1
-=-=-=-=-=-=-=-=-=-=-=- Links: You receive all messages sent to this group. View/Reply Online (#195520): https://lists.openembedded.org/g/openembedded-core/message/195520 Mute This Topic: https://lists.openembedded.org/mt/104375631/21656 Group Owner: [email protected] Unsubscribe: https://lists.openembedded.org/g/openembedded-core/unsub [[email protected]] -=-=-=-=-=-=-=-=-=-=-=-
