Please review this set of changes for scarthgap and have comments back by end of day Friday, August 9
Passed a-full on autobuilder: https://autobuilder.yoctoproject.org/typhoon/#/builders/83/builds/7220 with the exception of a load related parsing failure on qemuarm64-armhost which passed on subsequent re-test: https://autobuilder.yoctoproject.org/typhoon/#/builders/97/builds/8717 The following changes since commit 136a25567499191b23a4d000a06bf83a473224ca: rust: Add new varaible RUST_ENABLE_EXTRA_TOOLS (2024-08-03 11:45:57 -0700) are available in the Git repository at: https://git.openembedded.org/openembedded-core-contrib stable/scarthgap-nut https://git.openembedded.org/openembedded-core-contrib/log/?h=stable/scarthgap-nut Archana Polampalli (1): ffmpeg: fix CVE-2024-31582 Ashish Sharma (1): bind: Upgrade 9.18.25 -> 9.18.28 Changqing Li (2): curl: correct the PACKAGECONFIG for native/nativesdk libpng: update SRC_URI Peter Marko (4): curl: Patch CVE-2024-6197 glibc: cleanup old cve status qemu: set cve status for CVE-2023-6683 libmnl: explicitly disable doxygen Richard Purdie (1): nasm: Upgrade 2.16.01 -> 2.16.03 Wang Mingyu (1): orc: upgrade 0.4.38 -> 0.4.39 .../bind/{bind_9.18.25.bb => bind_9.18.28.bb} | 2 +- meta/recipes-core/glibc/glibc-version.inc | 2 -- .../nasm/{nasm_2.16.01.bb => nasm_2.16.03.bb} | 2 +- .../orc/{orc_0.4.38.bb => orc_0.4.39.bb} | 2 +- meta/recipes-devtools/qemu/qemu.inc | 2 ++ meta/recipes-extended/libmnl/libmnl_1.0.5.bb | 2 ++ .../ffmpeg/ffmpeg/CVE-2024-31582.patch | 34 +++++++++++++++++++ .../recipes-multimedia/ffmpeg/ffmpeg_6.1.1.bb | 1 + .../libpng/libpng_1.6.42.bb | 2 +- .../curl/curl/CVE-2024-6197.patch | 24 +++++++++++++ meta/recipes-support/curl/curl_8.7.1.bb | 5 +-- 11 files changed, 70 insertions(+), 8 deletions(-) rename meta/recipes-connectivity/bind/{bind_9.18.25.bb => bind_9.18.28.bb} (97%) rename meta/recipes-devtools/nasm/{nasm_2.16.01.bb => nasm_2.16.03.bb} (88%) rename meta/recipes-devtools/orc/{orc_0.4.38.bb => orc_0.4.39.bb} (92%) create mode 100644 meta/recipes-multimedia/ffmpeg/ffmpeg/CVE-2024-31582.patch create mode 100644 meta/recipes-support/curl/curl/CVE-2024-6197.patch -- 2.34.1
-=-=-=-=-=-=-=-=-=-=-=- Links: You receive all messages sent to this group. View/Reply Online (#203100): https://lists.openembedded.org/g/openembedded-core/message/203100 Mute This Topic: https://lists.openembedded.org/mt/107781209/21656 Group Owner: [email protected] Unsubscribe: https://lists.openembedded.org/g/openembedded-core/unsub [[email protected]] -=-=-=-=-=-=-=-=-=-=-=-
