Please review this set of changes for scarthgap and have comments back by end of day Monday, July 21
Passed a-full on autobuilder: https://autobuilder.yoctoproject.org/typhoon/#/builders/83/builds/7150 The following changes since commit bf3fe8c01c5cc00ada22049f4f0abb485e2a626f: webkitgtk: fix do_compile errors on beaglebone-yocto (2024-07-13 07:07:10 -0700) are available in the Git repository at: https://git.openembedded.org/openembedded-core-contrib stable/scarthgap-nut https://git.openembedded.org/openembedded-core-contrib/log/?h=stable/scarthgap-nut Archana Polampalli (1): less: fix CVE-2024-32487 Changqing Li (4): vulkan-samples: fix do_compile error when -Og enabled multilib.conf: remove appending to PKG_CONFIG_PATH gettext: fix a parallel build issue pixman: fixing inline failure with -Og Deepthi Hemraj (1): binutils: stable 2.42 branch updates Hitendra Prajapati (1): vte: fix CVE-2024-37535 Jose Quaresma (1): go: upgrade 1.22.4 -> 1.22.5 Peter Marko (2): busybox: Patch CVE-2021-42380 busybox: Patch CVE-2023-42363 Steve Sakoman (1): Revert "apt: runtime error: filename too long (tmpdir length)" Vijay Anusuri (1): openssh: fix CVE-2024-39894 meta/conf/multilib.conf | 9 -- .../openssh/openssh/CVE-2024-39894.patch | 35 ++++ .../openssh/openssh_9.6p1.bb | 1 + ...-fix-segfault-when-compiled-by-clang.patch | 41 +++++ .../busybox/busybox/CVE-2021-42380.patch | 151 ++++++++++++++++++ .../busybox/busybox/CVE-2023-42363.patch | 67 ++++++++ meta/recipes-core/busybox/busybox_1.36.1.bb | 3 + ...1-intl-Fix-build-failure-with-make-j.patch | 35 ++++ meta/recipes-core/gettext/gettext_0.22.5.bb | 1 + ...he-filename-can-t-be-longer-than-255.patch | 40 ----- meta/recipes-devtools/apt/apt_2.6.1.bb | 1 - .../binutils/binutils-2.42.inc | 2 +- .../go/{go-1.22.4.inc => go-1.22.5.inc} | 2 +- ...e_1.22.4.bb => go-binary-native_1.22.5.bb} | 6 +- ..._1.22.4.bb => go-cross-canadian_1.22.5.bb} | 0 ...{go-cross_1.22.4.bb => go-cross_1.22.5.bb} | 0 ...osssdk_1.22.4.bb => go-crosssdk_1.22.5.bb} | 0 ...runtime_1.22.4.bb => go-runtime_1.22.5.bb} | 0 ...ent-based-hash-generation-less-pedan.patch | 11 +- ...OOLDIR-to-be-overridden-in-the-envir.patch | 12 +- ...3-ld-add-soname-to-shareable-objects.patch | 9 +- ...de-CC-when-building-dist-and-go_boot.patch | 10 +- ...dist-separate-host-and-target-builds.patch | 9 +- ...d-go-make-GOROOT-precious-by-default.patch | 13 +- ...ut-build-specific-paths-from-linker-.patch | 12 +- ...ldgo.go-do-not-hardcode-host-compile.patch | 11 +- ...uild-paths-on-staticly-linked-arches.patch | 9 +- .../go/{go_1.22.4.bb => go_1.22.5.bb} | 0 .../less/files/CVE-2024-32487.patch | 74 +++++++++ meta/recipes-extended/less/less_643.bb | 1 + ...ce-FORCE_INLINE_TEMPLATE-with-inline.patch | 52 ++++++ .../vulkan/vulkan-samples_git.bb | 1 + ...loat.c-fix-inlining-failed-in-call-t.patch | 56 +++++++ .../xorg-lib/pixman_0.42.2.bb | 1 + .../vte/vte/CVE-2024-37535-01.patch | 64 ++++++++ .../vte/vte/CVE-2024-37535-02.patch | 85 ++++++++++ meta/recipes-support/vte/vte_0.74.2.bb | 5 +- 37 files changed, 711 insertions(+), 118 deletions(-) create mode 100644 meta/recipes-connectivity/openssh/openssh/CVE-2024-39894.patch create mode 100644 meta/recipes-core/busybox/busybox/0001-awk-fix-segfault-when-compiled-by-clang.patch create mode 100644 meta/recipes-core/busybox/busybox/CVE-2021-42380.patch create mode 100644 meta/recipes-core/busybox/busybox/CVE-2023-42363.patch create mode 100644 meta/recipes-core/gettext/gettext/0001-intl-Fix-build-failure-with-make-j.patch delete mode 100644 meta/recipes-devtools/apt/apt/0001-strutl.cc-the-filename-can-t-be-longer-than-255.patch rename meta/recipes-devtools/go/{go-1.22.4.inc => go-1.22.5.inc} (89%) rename meta/recipes-devtools/go/{go-binary-native_1.22.4.bb => go-binary-native_1.22.5.bb} (78%) rename meta/recipes-devtools/go/{go-cross-canadian_1.22.4.bb => go-cross-canadian_1.22.5.bb} (100%) rename meta/recipes-devtools/go/{go-cross_1.22.4.bb => go-cross_1.22.5.bb} (100%) rename meta/recipes-devtools/go/{go-crosssdk_1.22.4.bb => go-crosssdk_1.22.5.bb} (100%) rename meta/recipes-devtools/go/{go-runtime_1.22.4.bb => go-runtime_1.22.5.bb} (100%) rename meta/recipes-devtools/go/{go_1.22.4.bb => go_1.22.5.bb} (100%) create mode 100644 meta/recipes-extended/less/files/CVE-2024-32487.patch create mode 100644 meta/recipes-graphics/vulkan/vulkan-samples/0001-zstd.c-replace-FORCE_INLINE_TEMPLATE-with-inline.patch create mode 100644 meta/recipes-graphics/xorg-lib/pixman/0001-pixman-combine-float.c-fix-inlining-failed-in-call-t.patch create mode 100644 meta/recipes-support/vte/vte/CVE-2024-37535-01.patch create mode 100644 meta/recipes-support/vte/vte/CVE-2024-37535-02.patch -- 2.34.1
-=-=-=-=-=-=-=-=-=-=-=- Links: You receive all messages sent to this group. View/Reply Online (#202213): https://lists.openembedded.org/g/openembedded-core/message/202213 Mute This Topic: https://lists.openembedded.org/mt/107416840/21656 Group Owner: [email protected] Unsubscribe: https://lists.openembedded.org/g/openembedded-core/unsub [[email protected]] -=-=-=-=-=-=-=-=-=-=-=-
