The following changes since commit 4ad41baed6236d499804cbfc4f174042d84fce97:
sound-theme-freedesktop: Update SRC_URI (2024-10-13 11:19:56 -0400)
are available in the Git repository at:
git://git.openembedded.org/meta-openembedded kirkstone-next
for you to fetch changes up to 7b3fdcdfaab2fc964bbf9eec2cce4e03001fa8cf:
libgsf: Upgrade 1.14.49 -> 1.14.53 (2024-12-08 15:04:56 -0500)
----------------------------------------------------------------
Archana Polampalli (1):
apache2: Upgrade 2.4.60 -> 2.4.62
Chen Qi (1):
protobuf: fix CVE-2024-7254
Haixiao Yan (3):
wireguard-tools: clean the do_fecth warning
openvpn: upgrade 2.5.6 -> 2.5.11
freeradius: upgrade 3.0.21 -> 3.0.27
Jiaying Song (2):
openipmi: upgrade 2.0.32->2.0.36
python3-aiohttp: fix
CVE-2023-49081/CVE-2024-30251/CVE-2024-52304/CVE-2023-49082/CVE-2024-27306
Khem Raj (1):
gitpkgv: Fix python deprecation warning
Martin Jansa (5):
flatbuffers: fix native build with gcc-14 on host
python3-lxml: ignore incompatible-pointer-types issues in native
build
libjs-jquery-cookie: update branch from master to main
poco: use main instead of master branch
python3-geomet: fix branch parameter
Mingli Yu (1):
mbedtls: Upgrade 2.28.8 -> 2.28.9
Peter Marko (3):
squid: conditionally set status of CVE-2024-45802
nss: patch CVE-2024-6602
nss: patch CVE-2024-6609
Ramax Lo (1):
vk-gl-cts: Fix branch names
Rohini Sangam (1):
freeradius: Security fix for CVE-2024-3596
Yi Zhao (2):
open-vm-tools: Security fixes CVE-2023-34059
hostapd: Security fix for CVE-2023-52160
Yogita Urade (1):
php: upgrade 8.1.29 -> 8.1.30
Zhang Peng (2):
frr: fix multiple CVEs
libgsf: Upgrade 1.14.49 -> 1.14.53
hongxu (3):
indent: fix CVE-2024-0911
ntfs-3g-ntfsprogs: fix CVE-2023-52890
p7zip: Fix CVE-2023-52169 and CVE-2023-52168
...0001-unistr.c-Fix-use-after-free-in-ntfs_uppercase_mbs.patch | 42 ++
.../ntfs-3g-ntfsprogs/ntfs-3g-ntfsprogs_2022.10.3.bb | 1 +
.../libgsf/{libgsf_1.14.49.bb => libgsf_1.14.53.bb} | 9 +-
.../freeradius/files/0001-Add-autogen.sh.patch | 47 ++
...-Enable-and-change-user-and-group-of-freeradius-serve.patch} | 12 +-
...on.patch => 0003-configure.ac-allow-cross-compilation.patch} | 10 +-
...libtool-detection.patch => 0004-Fix-libtool-detection.patch} | 33 +-
...bcap.patch => 0005-configure.ac-add-option-for-libcap.patch} | 12 +-
...ing-host-dirs.patch => 0006-Avoid-searching-host-dirs.patch} | 57 +-
...patch => 0007-rlm_python-add-PY_INC_DIR-in-search-dir.patch} | 12 +-
...se-jlibtool.patch => 0008-libtool-do-not-use-jlibtool.patch} | 24 +-
...r-BUILT_WITH.patch => 0009-Fix-quoting-for-BUILD_WITH.patch} | 13 +-
... => 0010-fix-error-for-expansion-of-macro-in-thread.h.patch} | 6 +-
...-rlm_mschap-Use-includedir-instead-of-hardcoding-usr-.patch} | 17 +-
...-raddb-certs-Makefile-fix-the-existed-certificate-err.patch} | 10 +-
...-raddb-certs-Makefile-fix-the-occasional-verification.patch} | 17 +-
...-2.7.patch => 0014-Workaround-error-with-autoconf-2.7.patch} | 14 +-
...tch => 0015-bootstrap-check-commands-of-openssl-exist.patch} | 10 +-
...flags.patch => 0016-version.c-don-t-print-build-flags.patch} | 6 +-
.../recipes-connectivity/freeradius/files/CVE-2022-41860.patch | 118
-----
.../recipes-connectivity/freeradius/files/CVE-2022-41861.patch | 53 --
.../freeradius/{freeradius_3.0.21.bb => freeradius_3.0.27.bb} | 37 +-
.../mbedtls/{mbedtls_2.28.8.bb => mbedtls_2.28.9.bb} | 2 +-
meta-networking/recipes-daemons/squid/squid_4.15.bb | 3 +
.../recipes-kernel/wireguard/wireguard-tools_1.0.20210914.bb | 2 +-
meta-networking/recipes-protocols/frr/frr/CVE-2024-27913.patch | 43 ++
meta-networking/recipes-protocols/frr/frr/CVE-2024-31948.patch | 130
+++++
meta-networking/recipes-protocols/frr/frr/CVE-2024-31950.patch | 69 +++
meta-networking/recipes-protocols/frr/frr/CVE-2024-31951.patch | 111 ++++
meta-networking/recipes-protocols/frr/frr/CVE-2024-34088.patch | 84 +++
meta-networking/recipes-protocols/frr/frr_8.2.2.bb | 7 +-
.../open-vm-tools/open-vm-tools/CVE-2023-34059.patch | 188
+++++++
.../recipes-support/open-vm-tools/open-vm-tools_11.3.5.bb | 1 +
.../0001-m4-ax_python_devel.m4-do-not-check-for-distutils.patch | 41 --
.../openipmi/files/fix-symlink-install-error-in-cmdlang.patch | 11 +-
.../files/openipmi-remove-host-path-from-la_LDFLAGS.patch | 49 --
.../openipmi/{openipmi_2.0.32.bb => openipmi_2.0.36.bb} | 15 +-
.../recipes-support/openvpn/openvpn/CVE-2024-24974.patch | 49 --
.../recipes-support/openvpn/openvpn/CVE-2024-27459.patch | 99 ----
.../recipes-support/openvpn/openvpn/CVE-2024-27903.patch | 119
-----
.../openvpn/{openvpn_2.5.6.bb => openvpn_2.5.11.bb} | 7 +-
meta-oe/classes/gitpkgv.bbclass | 2 +-
.../recipes-connectivity/hostapd/hostapd/CVE-2023-52160.patch | 198
+++++++
meta-oe/recipes-connectivity/hostapd/hostapd_2.10.bb | 1 +
...1-C-stl_emulation-span-count_-is-not-const-anymore-722.patch | 27 +
meta-oe/recipes-devtools/flatbuffers/flatbuffers_2.0.0.bb | 4 +-
meta-oe/recipes-devtools/php/{php_8.1.29.bb => php_8.1.30.bb} | 2 +-
...1-Add-recursion-check-when-parsing-unknown-fields-in-J.patch | 795
++++++++++++++++++++++++++++
meta-oe/recipes-devtools/protobuf/protobuf_3.19.6.bb | 1 +
.../0001-Fix-a-heap-buffer-underread-in-set_buf_break.patch | 123
+++++
meta-oe/recipes-extended/indent/indent_2.2.12.bb | 1 +
.../files/0001-Fix-two-buffer-overflow-vulnerabilities.patch | 455
++++++++++++++++
meta-oe/recipes-extended/p7zip/p7zip_16.02.bb | 1 +
meta-oe/recipes-graphics/vk-gl-cts/khronos-cts.inc | 6 +-
meta-oe/recipes-support/libjs/libjs-jquery-cookie_3.0.1.bb | 2 +-
meta-oe/recipes-support/nss/nss/CVE-2024-6602.patch | 65 +++
meta-oe/recipes-support/nss/nss/CVE-2024-6609.patch | 30 ++
meta-oe/recipes-support/nss/nss_3.74.bb | 2 +
meta-oe/recipes-support/poco/poco_1.11.2.bb | 2 +-
.../python/python3-aiohttp/CVE-2023-49081.patch | 96 ++++
.../python/python3-aiohttp/CVE-2023-49082.patch | 105 ++++
.../python/python3-aiohttp/CVE-2024-27306.patch | 81 +++
.../python/python3-aiohttp/CVE-2024-30251.patch | 522
++++++++++++++++++
.../python/python3-aiohttp/CVE-2024-52304.patch | 46 ++
meta-python/recipes-devtools/python/python3-aiohttp_3.8.6.bb | 5 +
meta-python/recipes-devtools/python/python3-geomet_0.3.0.bb | 5 +-
meta-python/recipes-devtools/python/python3-lxml_4.8.0.bb | 2 +
.../apache2/{apache2_2.4.60.bb => apache2_2.4.62.bb} | 2 +-
68 files changed, 3459 insertions(+), 712 deletions(-)
create mode 100644
meta-filesystems/recipes-filesystems/ntfs-3g-ntfsprogs/files/0001-unistr.c-Fix-use-after-free-in-ntfs_uppercase_mbs.patch
rename meta-gnome/recipes-gnome/libgsf/{libgsf_1.14.49.bb =>
libgsf_1.14.53.bb} (52%)
create mode 100644
meta-networking/recipes-connectivity/freeradius/files/0001-Add-autogen.sh.patch
rename
meta-networking/recipes-connectivity/freeradius/files/{freeradius-enble-user-in-conf.patch
=> 0002-Enable-and-change-user-and-group-of-freeradius-serve.patch} (67%)
rename
meta-networking/recipes-connectivity/freeradius/files/{freeradius-configure.ac-allow-cross-compilation.patch
=> 0003-configure.ac-allow-cross-compilation.patch} (85%)
rename
meta-networking/recipes-connectivity/freeradius/files/{freeradius-libtool-detection.patch
=> 0004-Fix-libtool-detection.patch} (73%)
rename
meta-networking/recipes-connectivity/freeradius/files/{freeradius-configure.ac-add-option-for-libcap.patch
=> 0005-configure.ac-add-option-for-libcap.patch} (87%)
rename
meta-networking/recipes-connectivity/freeradius/files/{freeradius-avoid-searching-host-dirs.patch
=> 0006-Avoid-searching-host-dirs.patch} (85%)
rename
meta-networking/recipes-connectivity/freeradius/files/{freeradius-rlm_python-add-PY_INC_DIR.patch
=> 0007-rlm_python-add-PY_INC_DIR-in-search-dir.patch} (81%)
rename
meta-networking/recipes-connectivity/freeradius/files/{freeradius-libtool-do-not-use-jlibtool.patch
=> 0008-libtool-do-not-use-jlibtool.patch} (91%)
rename
meta-networking/recipes-connectivity/freeradius/files/{freeradius-fix-quoting-for-BUILT_WITH.patch
=> 0009-Fix-quoting-for-BUILD_WITH.patch} (87%)
rename
meta-networking/recipes-connectivity/freeradius/files/{freeradius-fix-error-for-expansion-of-macro.patch
=> 0010-fix-error-for-expansion-of-macro-in-thread.h.patch} (95%)
rename
meta-networking/recipes-connectivity/freeradius/files/{0001-rlm_mschap-Use-includedir-instead-of-hardcoding-usr-.patch
=> 0011-rlm_mschap-Use-includedir-instead-of-hardcoding-usr-.patch} (59%)
rename
meta-networking/recipes-connectivity/freeradius/files/{0001-raddb-certs-Makefile-fix-the-existed-certificate-err.patch
=> 0012-raddb-certs-Makefile-fix-the-existed-certificate-err.patch} (92%)
rename
meta-networking/recipes-connectivity/freeradius/files/{0001-raddb-certs-Makefile-fix-the-occasional-verification.patch
=> 0013-raddb-certs-Makefile-fix-the-occasional-verification.patch} (94%)
rename
meta-networking/recipes-connectivity/freeradius/files/{0001-workaround-error-with-autoconf-2.7.patch
=> 0014-Workaround-error-with-autoconf-2.7.patch} (77%)
rename
meta-networking/recipes-connectivity/freeradius/files/{check-openssl-cmds-in-script-bootstrap.patch
=> 0015-bootstrap-check-commands-of-openssl-exist.patch} (81%)
rename
meta-networking/recipes-connectivity/freeradius/files/{0001-version.c-don-t-print-build-flags.patch
=> 0016-version.c-don-t-print-build-flags.patch} (86%)
delete mode 100644
meta-networking/recipes-connectivity/freeradius/files/CVE-2022-41860.patch
delete mode 100644
meta-networking/recipes-connectivity/freeradius/files/CVE-2022-41861.patch
rename
meta-networking/recipes-connectivity/freeradius/{freeradius_3.0.21.bb =>
freeradius_3.0.27.bb} (89%)
rename meta-networking/recipes-connectivity/mbedtls/{mbedtls_2.28.8.bb
=> mbedtls_2.28.9.bb} (97%)
create mode 100644
meta-networking/recipes-protocols/frr/frr/CVE-2024-27913.patch
create mode 100644
meta-networking/recipes-protocols/frr/frr/CVE-2024-31948.patch
create mode 100644
meta-networking/recipes-protocols/frr/frr/CVE-2024-31950.patch
create mode 100644
meta-networking/recipes-protocols/frr/frr/CVE-2024-31951.patch
create mode 100644
meta-networking/recipes-protocols/frr/frr/CVE-2024-34088.patch
create mode 100644
meta-networking/recipes-support/open-vm-tools/open-vm-tools/CVE-2023-34059.patch
delete mode 100644
meta-networking/recipes-support/openipmi/files/0001-m4-ax_python_devel.m4-do-not-check-for-distutils.patch
delete mode 100644
meta-networking/recipes-support/openipmi/files/openipmi-remove-host-path-from-la_LDFLAGS.patch
rename meta-networking/recipes-support/openipmi/{openipmi_2.0.32.bb =>
openipmi_2.0.36.bb} (87%)
delete mode 100644
meta-networking/recipes-support/openvpn/openvpn/CVE-2024-24974.patch
delete mode 100644
meta-networking/recipes-support/openvpn/openvpn/CVE-2024-27459.patch
delete mode 100644
meta-networking/recipes-support/openvpn/openvpn/CVE-2024-27903.patch
rename meta-networking/recipes-support/openvpn/{openvpn_2.5.6.bb =>
openvpn_2.5.11.bb} (92%)
create mode 100644
meta-oe/recipes-connectivity/hostapd/hostapd/CVE-2023-52160.patch
create mode 100644
meta-oe/recipes-devtools/flatbuffers/flatbuffers/0001-C-stl_emulation-span-count_-is-not-const-anymore-722.patch
rename meta-oe/recipes-devtools/php/{php_8.1.29.bb => php_8.1.30.bb} (99%)
create mode 100644
meta-oe/recipes-devtools/protobuf/protobuf/0001-Add-recursion-check-when-parsing-unknown-fields-in-J.patch
create mode 100644
meta-oe/recipes-extended/indent/indent/0001-Fix-a-heap-buffer-underread-in-set_buf_break.patch
create mode 100644
meta-oe/recipes-extended/p7zip/files/0001-Fix-two-buffer-overflow-vulnerabilities.patch
create mode 100644 meta-oe/recipes-support/nss/nss/CVE-2024-6602.patch
create mode 100644 meta-oe/recipes-support/nss/nss/CVE-2024-6609.patch
create mode 100644
meta-python/recipes-devtools/python/python3-aiohttp/CVE-2023-49081.patch
create mode 100644
meta-python/recipes-devtools/python/python3-aiohttp/CVE-2023-49082.patch
create mode 100644
meta-python/recipes-devtools/python/python3-aiohttp/CVE-2024-27306.patch
create mode 100644
meta-python/recipes-devtools/python/python3-aiohttp/CVE-2024-30251.patch
create mode 100644
meta-python/recipes-devtools/python/python3-aiohttp/CVE-2024-52304.patch
rename meta-webserver/recipes-httpd/apache2/{apache2_2.4.60.bb =>
apache2_2.4.62.bb} (99%)
-=-=-=-=-=-=-=-=-=-=-=-
Links: You receive all messages sent to this group.
View/Reply Online (#114279):
https://lists.openembedded.org/g/openembedded-devel/message/114279
Mute This Topic: https://lists.openembedded.org/mt/110061182/21656
Group Owner: [email protected]
Unsubscribe: https://lists.openembedded.org/g/openembedded-devel/unsub
[[email protected]]
-=-=-=-=-=-=-=-=-=-=-=-
