[oe] kirkstone merge request: Jan 13th

Sat, 13 Jan 2024 05:05:03 -0800 

The following changes since commit 402affcc073db39f782c1ebfd718edd5f11eed4c:
  squid: fix CVE-2023-46847 Denial of Service in HTTP Digest Authentication (2023-12-13 13:35:51 -0500) 

are available in the Git repository at:

  https://git.openembedded.org/meta-openembedded kirkstone-next

for you to fetch changes up to 730e44900a0a86265bad93a16b5a5ff344a07266:
  proftpd: Fix CVE-2023-51713 Out-of-bounds buffer read (2024-01-12 07:14:16 -0500) 

----------------------------------------------------------------
Archana Polampalli (3):
      strongswan: upgrade 5.9.6 -> 5.9.12
      cjson: upgrade 1.7.15 -> 1.7.17
      samba: fix CVE-2023-42669

Hitendra Prajapati (1):
      proftpd: Fix CVE-2023-51713 Out-of-bounds buffer read

Jeffrey Pautler (1):
      apache2: add vendor to product name used for CVE checking

Martin Jansa (1):
      glmark2: inherit python3native to fix build with python-3.12 on build host 

Narpat Mali (4):
      python3-django: Fix for CVE-2023-43665 and CVE-2023-46695
      python3-django: upgrade 3.2.21 -> 3.2.23
      python3-django: upgrade 4.2.5 -> 4.2.7
      apache2: upgrade 2.4.57 -> 2.4.58

Rob Woolley (2):
      sip3: Add sipconfig.py
      sip3: Add py_ssize_t_clean argument

Soumya (1):
      yasm: fix CVE-2023-37732

Wentao Zhang (1):
      libbytesize: update github branch to 'main'

dnyandev (1):
      python3-pillow: Fix CVE-2023-44271

vkumbhar (2):
      wireshark: fix CVE-2023-1992 RPCoRDMA dissector crash
      wireshark: fix CVE-2022-4345 multiple (BPv6, OpenFlow, and Kafka protocol) dissector infinite loops 

 .../recipes-connectivity/samba/samba/CVE-2023-42669.patch |    94 +
 meta-networking/recipes-connectivity/samba/samba_4.14.14.bb |     1 +
 .../recipes-daemons/proftpd/files/CVE-2023-51713.patch          | 277 +
 meta-networking/recipes-daemons/proftpd/proftpd_1.3.7c.bb |     1 +
 .../strongswan/{strongswan_5.9.6.bb => strongswan_5.9.12.bb} |    12 +-
 .../recipes-support/wireshark/files/CVE-2022-4345.patch |    52 +
 .../recipes-support/wireshark/files/CVE-2023-1992.patch |    61 +
 meta-networking/recipes-support/wireshark/wireshark_3.4.12.bb |     2 +
 meta-oe/recipes-benchmark/glmark2/glmark2_git.bb |     2 +-
 .../recipes-devtools/cjson/{cjson_1.7.15.bb => cjson_1.7.17.bb} |     2 +-
 ...-the-py_ssize_t_clean-argument-to-the-module-directive.patch | 17679 ++++++++++++++++++++++++++ 
 meta-oe/recipes-devtools/sip/sip3_4.19.23.bb |    21 +-
 meta-oe/recipes-devtools/yasm/yasm/CVE-2023-37732.patch |    41 +
 meta-oe/recipes-devtools/yasm/yasm_git.bb |     1 +
 meta-oe/recipes-support/libbytesize/libbytesize_2.6.bb |     2 +-
 .../recipes-devtools/python/python3-django/CVE-2023-43665.patch | 199 +
 .../recipes-devtools/python/python3-django/CVE-2023-46695.patch |    90 +
 meta-python/recipes-devtools/python/python3-django_2.2.28.bb |     2 +
 .../{python3-django_3.2.21.bb => python3-django_3.2.23.bb} |     4 +-
 .../python/{python3-django_4.2.5.bb => python3-django_4.2.7.bb} |     4 +-
 .../recipes-devtools/python/python3-pillow/CVE-2023-44271.patch | 156 +
 meta-python/recipes-devtools/python/python3-pillow_9.4.0.bb |     1 +
 ...1-modules-mappers-config9.m4-Add-server-directory-to-i.patch |    31 -
 .../apache2/{apache2_2.4.57.bb => apache2_2.4.58.bb} |     5 +-
 24 files changed, 18693 insertions(+), 47 deletions(-)
 create mode 100644 meta-networking/recipes-connectivity/samba/samba/CVE-2023-42669.patch  create mode 100644 meta-networking/recipes-daemons/proftpd/files/CVE-2023-51713.patch  rename meta-networking/recipes-support/strongswan/{strongswan_5.9.6.bb => strongswan_5.9.12.bb} (96%)  create mode 100644 meta-networking/recipes-support/wireshark/files/CVE-2022-4345.patch  create mode 100644 meta-networking/recipes-support/wireshark/files/CVE-2023-1992.patch  rename meta-oe/recipes-devtools/cjson/{cjson_1.7.15.bb => cjson_1.7.17.bb} (91%)  create mode 100644 meta-oe/recipes-devtools/sip/sip3/added-the-py_ssize_t_clean-argument-to-the-module-directive.patch 
 create mode 100644 meta-oe/recipes-devtools/yasm/yasm/CVE-2023-37732.patch
 create mode 100644 meta-python/recipes-devtools/python/python3-django/CVE-2023-43665.patch  create mode 100644 meta-python/recipes-devtools/python/python3-django/CVE-2023-46695.patch  rename meta-python/recipes-devtools/python/{python3-django_3.2.21.bb => python3-django_3.2.23.bb} (61%)  rename meta-python/recipes-devtools/python/{python3-django_4.2.5.bb => python3-django_4.2.7.bb} (61%)  create mode 100644 meta-python/recipes-devtools/python/python3-pillow/CVE-2023-44271.patch  delete mode 100644 meta-webserver/recipes-httpd/apache2/apache2/0011-modules-mappers-config9.m4-Add-server-directory-to-i.patch  rename meta-webserver/recipes-httpd/apache2/{apache2_2.4.57.bb => apache2_2.4.58.bb} (97%) 


-=-=-=-=-=-=-=-=-=-=-=-
Links: You receive all messages sent to this group.
View/Reply Online (#108265): 
https://lists.openembedded.org/g/openembedded-devel/message/108265
Mute This Topic: https://lists.openembedded.org/mt/103701148/21656
Group Owner: [email protected]
Unsubscribe: https://lists.openembedded.org/g/openembedded-devel/unsub 
[[email protected]]
-=-=-=-=-=-=-=-=-=-=-=-

Reply via email to