[oe] kirkstone merge request: Jan 24th

Armin Kuster via lists.openembedded.org Fri, 24 Jan 2025 08:25:02 -0800

The following changes since commit 66ec16850573a7ec69248b81f9904cdfba79b930:

packagegroup-meta-multimedia: Remove library only packages from rdeps(2025-01-01 09:13:52 -0500)


are available in the Git repository at:

  https://git.openembedded.org/meta-openembedded kirkstone-next

for you to fetch changes up to de8681b4a2a101b99dd2c48d89a7de2ccd9a961f:

  python3-sqlparse: Fix CVE-2024-4340 (2025-01-22 19:29:37 -0500)

----------------------------------------------------------------
Soumya Sambu (11):
      python3-django: Fix CVE-2024-38875
      python3-django: upgrade 4.2.15 -> 4.2.17
      python3-django: Fix CVE-2023-23969
      python3-django: Fix CVE-2024-39614
      python3-django: Fix CVE-2024-41989
      python3-django: Fix CVE-2024-41990
      python3-django: Fix CVE-2024-41991
      python3-django: Fix CVE-2024-45230
      python3-django: Fix CVE-2024-45231
      python3-django: Fix CVE-2024-53907
      python3-sqlparse: Fix CVE-2024-4340

Wang Mingyu (1):
      libsass: upgrade 3.6.5 -> 3.6.6

Yogita Urade (2):
      poppler: fix CVE-2024-6239
      poppler: fix CVE-2024-56378

Zhang Peng (11):
      glade: fix CVE-2020-36774
      openjpeg: fix CVE-2024-56826
      openjpeg: fix CVE-2024-56827
      opensc: fix CVE-2024-1454
      opensc: fix CVE-2024-8443
      opensc: fix CVE-2024-45615
      opensc: fix CVE-2024-45616
      opensc: fix CVE-2024-45617
      opensc: fix CVE-2024-45618
      opensc: fix CVE-2024-45619
      opensc: fix CVE-2024-45620

akash hadke (1):
      meta-oe: Remove True option to getVar calls

 meta-oe/recipes-devtools/glade/glade/CVE-2020-36774.patch       | 54 ++
 meta-oe/recipes-devtools/glade/glade_3.22.2.bb |    1 +
 meta-oe/recipes-devtools/nodejs/nodejs_16.20.2.bb |    2 +-
 meta-oe/recipes-devtools/suitesparse/suitesparse_5.10.1.bb      | 12 +-
 ...1-opj_j2k_add_tlmarker-validate-that-current-tile-part.patch | 33 +
 ...1-sycc422_to_rgb-fix-out-of-bounds-read-accesses-when-.patch | 130 +++
 meta-oe/recipes-graphics/openjpeg/openjpeg_2.4.0.bb |    2 +
 meta-oe/recipes-kernel/spidev-test/spidev-test.bb |    2 +-
 meta-oe/recipes-kernel/usbip-tools/usbip-tools.bb |    2 +-
 meta-oe/recipes-support/opensc/files/CVE-2024-1454.patch        | 37 +
 meta-oe/recipes-support/opensc/files/CVE-2024-45615-0001.patch  | 67 ++
 meta-oe/recipes-support/opensc/files/CVE-2024-45615-0002.patch  | 36 +
 meta-oe/recipes-support/opensc/files/CVE-2024-45615-0003.patch  | 35 +
 meta-oe/recipes-support/opensc/files/CVE-2024-45615-0004.patch  | 36 +
 meta-oe/recipes-support/opensc/files/CVE-2024-45615-0005.patch  | 34 +
 meta-oe/recipes-support/opensc/files/CVE-2024-45616-0001.patch  | 52 ++
 meta-oe/recipes-support/opensc/files/CVE-2024-45616-0002.patch  | 48 +
 meta-oe/recipes-support/opensc/files/CVE-2024-45616-0003.patch  | 42 +
 meta-oe/recipes-support/opensc/files/CVE-2024-45616-0004.patch  | 43 +
 meta-oe/recipes-support/opensc/files/CVE-2024-45616-0005.patch  | 34 +
 meta-oe/recipes-support/opensc/files/CVE-2024-45616-0006.patch  | 50 ++
 meta-oe/recipes-support/opensc/files/CVE-2024-45616-0007.patch  | 56 ++
 meta-oe/recipes-support/opensc/files/CVE-2024-45616-0008.patch  | 74 ++
 meta-oe/recipes-support/opensc/files/CVE-2024-45616-0009.patch  | 68 ++
 meta-oe/recipes-support/opensc/files/CVE-2024-45616-0010.patch  | 33 +
 meta-oe/recipes-support/opensc/files/CVE-2024-45617-0001.patch  | 38 +
 meta-oe/recipes-support/opensc/files/CVE-2024-45617-0002.patch  | 33 +
 meta-oe/recipes-support/opensc/files/CVE-2024-45617-0003.patch  | 33 +
 meta-oe/recipes-support/opensc/files/CVE-2024-45618-0001.patch  | 42 +
 meta-oe/recipes-support/opensc/files/CVE-2024-45618-0002.patch  | 42 +
 meta-oe/recipes-support/opensc/files/CVE-2024-45619-0001.patch  | 34 +
 meta-oe/recipes-support/opensc/files/CVE-2024-45619-0002.patch  | 91 ++
 meta-oe/recipes-support/opensc/files/CVE-2024-45619-0003.patch  | 83 ++
 meta-oe/recipes-support/opensc/files/CVE-2024-45619-0004.patch  | 49 ++
 meta-oe/recipes-support/opensc/files/CVE-2024-45619-0005.patch  | 33 +
 meta-oe/recipes-support/opensc/files/CVE-2024-45619-0006.patch  | 63 ++
 meta-oe/recipes-support/opensc/files/CVE-2024-45620-0001.patch  | 42 +
 meta-oe/recipes-support/opensc/files/CVE-2024-45620-0002.patch  | 34 +
 meta-oe/recipes-support/opensc/files/CVE-2024-45620-0003.patch  | 50 ++
 meta-oe/recipes-support/opensc/files/CVE-2024-8443-0001.patch   | 60 ++
 meta-oe/recipes-support/opensc/files/CVE-2024-8443-0002.patch   | 55 ++
 meta-oe/recipes-support/opensc/opensc_0.22.0.bb                 | 32 +
 meta-oe/recipes-support/poppler/poppler/CVE-2024-56378.patch    | 78 ++

.../recipes-support/poppler/poppler/CVE-2024-6239-0001.patch | 1255+++++++++++++++++++++++++++

 .../recipes-support/poppler/poppler/CVE-2024-6239-0002.patch    | 112 +++
 meta-oe/recipes-support/poppler/poppler_22.04.0.bb |    5 +-
 meta-oe/recipes-support/sass/libsass_git.bb |    4 +-
 .../recipes-devtools/python/python3-django/CVE-2023-23969.patch | 108 +++
 .../recipes-devtools/python/python3-django/CVE-2024-38875.patch | 161 ++++
 .../recipes-devtools/python/python3-django/CVE-2024-39614.patch | 138 +++
 .../python/python3-django/CVE-2024-41989-0001.patch             | 48 +
 .../python/python3-django/CVE-2024-41989-0002.patch             | 48 +
 .../python/python3-django/CVE-2024-41989-0003.patch             | 57 ++
 .../python/python3-django/CVE-2024-41989-0004.patch             | 81 ++
 .../recipes-devtools/python/python3-django/CVE-2024-41990.patch | 69 ++
 .../recipes-devtools/python/python3-django/CVE-2024-41991.patch | 122 +++
 .../recipes-devtools/python/python3-django/CVE-2024-45230.patch | 137 +++
 .../recipes-devtools/python/python3-django/CVE-2024-45231.patch | 120 +++
 .../recipes-devtools/python/python3-django/CVE-2024-53907.patch | 92 ++
 meta-python/recipes-devtools/python/python3-django_2.2.28.bb    | 12 +
 .../{python3-django_4.2.15.bb => python3-django_4.2.17.bb} |    4 +-
 .../python/python3-sqlparse/CVE-2024-4340.patch                 | 48 +
 meta-python/recipes-devtools/python/python3-sqlparse_0.4.2.bb |    1 +
 63 files changed, 4483 insertions(+), 14 deletions(-)

create mode 100644meta-oe/recipes-devtools/glade/glade/CVE-2020-36774.patch create mode 100644meta-oe/recipes-graphics/openjpeg/openjpeg/0001-opj_j2k_add_tlmarker-validate-that-current-tile-part.patch create mode 100644meta-oe/recipes-graphics/openjpeg/openjpeg/0001-sycc422_to_rgb-fix-out-of-bounds-read-accesses-when-.patch create mode 100644meta-oe/recipes-support/opensc/files/CVE-2024-1454.patch create mode 100644meta-oe/recipes-support/opensc/files/CVE-2024-45615-0001.patch create mode 100644meta-oe/recipes-support/opensc/files/CVE-2024-45615-0002.patch create mode 100644meta-oe/recipes-support/opensc/files/CVE-2024-45615-0003.patch create mode 100644meta-oe/recipes-support/opensc/files/CVE-2024-45615-0004.patch create mode 100644meta-oe/recipes-support/opensc/files/CVE-2024-45615-0005.patch create mode 100644meta-oe/recipes-support/opensc/files/CVE-2024-45616-0001.patch create mode 100644meta-oe/recipes-support/opensc/files/CVE-2024-45616-0002.patch create mode 100644meta-oe/recipes-support/opensc/files/CVE-2024-45616-0003.patch create mode 100644meta-oe/recipes-support/opensc/files/CVE-2024-45616-0004.patch create mode 100644meta-oe/recipes-support/opensc/files/CVE-2024-45616-0005.patch create mode 100644meta-oe/recipes-support/opensc/files/CVE-2024-45616-0006.patch create mode 100644meta-oe/recipes-support/opensc/files/CVE-2024-45616-0007.patch create mode 100644meta-oe/recipes-support/opensc/files/CVE-2024-45616-0008.patch create mode 100644meta-oe/recipes-support/opensc/files/CVE-2024-45616-0009.patch create mode 100644meta-oe/recipes-support/opensc/files/CVE-2024-45616-0010.patch create mode 100644meta-oe/recipes-support/opensc/files/CVE-2024-45617-0001.patch create mode 100644meta-oe/recipes-support/opensc/files/CVE-2024-45617-0002.patch create mode 100644meta-oe/recipes-support/opensc/files/CVE-2024-45617-0003.patch create mode 100644meta-oe/recipes-support/opensc/files/CVE-2024-45618-0001.patch create mode 100644meta-oe/recipes-support/opensc/files/CVE-2024-45618-0002.patch create mode 100644meta-oe/recipes-support/opensc/files/CVE-2024-45619-0001.patch create mode 100644meta-oe/recipes-support/opensc/files/CVE-2024-45619-0002.patch create mode 100644meta-oe/recipes-support/opensc/files/CVE-2024-45619-0003.patch create mode 100644meta-oe/recipes-support/opensc/files/CVE-2024-45619-0004.patch create mode 100644meta-oe/recipes-support/opensc/files/CVE-2024-45619-0005.patch create mode 100644meta-oe/recipes-support/opensc/files/CVE-2024-45619-0006.patch create mode 100644meta-oe/recipes-support/opensc/files/CVE-2024-45620-0001.patch create mode 100644meta-oe/recipes-support/opensc/files/CVE-2024-45620-0002.patch create mode 100644meta-oe/recipes-support/opensc/files/CVE-2024-45620-0003.patch create mode 100644meta-oe/recipes-support/opensc/files/CVE-2024-8443-0001.patch create mode 100644meta-oe/recipes-support/opensc/files/CVE-2024-8443-0002.patch create mode 100644meta-oe/recipes-support/poppler/poppler/CVE-2024-56378.patch create mode 100644meta-oe/recipes-support/poppler/poppler/CVE-2024-6239-0001.patch create mode 100644meta-oe/recipes-support/poppler/poppler/CVE-2024-6239-0002.patch create mode 100644meta-python/recipes-devtools/python/python3-django/CVE-2023-23969.patch create mode 100644meta-python/recipes-devtools/python/python3-django/CVE-2024-38875.patch create mode 100644meta-python/recipes-devtools/python/python3-django/CVE-2024-39614.patch create mode 100644meta-python/recipes-devtools/python/python3-django/CVE-2024-41989-0001.patch create mode 100644meta-python/recipes-devtools/python/python3-django/CVE-2024-41989-0002.patch create mode 100644meta-python/recipes-devtools/python/python3-django/CVE-2024-41989-0003.patch create mode 100644meta-python/recipes-devtools/python/python3-django/CVE-2024-41989-0004.patch create mode 100644meta-python/recipes-devtools/python/python3-django/CVE-2024-41990.patch create mode 100644meta-python/recipes-devtools/python/python3-django/CVE-2024-41991.patch create mode 100644meta-python/recipes-devtools/python/python3-django/CVE-2024-45230.patch create mode 100644meta-python/recipes-devtools/python/python3-django/CVE-2024-45231.patch create mode 100644meta-python/recipes-devtools/python/python3-django/CVE-2024-53907.patch rename meta-python/recipes-devtools/python/{python3-django_4.2.15.bb=> python3-django_4.2.17.bb} (61%) create mode 100644meta-python/recipes-devtools/python/python3-sqlparse/CVE-2024-4340.patch

-=-=-=-=-=-=-=-=-=-=-=-
Links: You receive all messages sent to this group.
View/Reply Online (#115066): 
https://lists.openembedded.org/g/openembedded-devel/message/115066
Mute This Topic: https://lists.openembedded.org/mt/110792977/21656
Group Owner: [email protected]
Unsubscribe: https://lists.openembedded.org/g/openembedded-devel/unsub 
[[email protected]]
-=-=-=-=-=-=-=-=-=-=-=-

[oe] kirkstone merge request: Jan 24th

Reply via email to