[OE-core] [PATCH] go: ignore CVE-2023-24532

Signed-off-by: Sakib Sajal --- meta/recipes-devtools/go/go-1.17.13.inc | 7 +++ 1 file changed, 7 insertions(+) diff --git a/meta/recipes-devtools/go/go-1.17.13.inc b/meta/recipes-devtools/go/go-1.17.13.inc index 91dd886cd0..480e6caa2c 100644 --- a/meta/recipes-devtools/go/go-1.17.13.inc

[OE-core] [PATCH] go: upgrade 1.20.6 -> 1.20.7

tps://github.com/golang/go/compare/go1.20.6...go1.20.7 Signed-off-by: Sakib Sajal --- meta/recipes-devtools/go/{go-1.20.6.inc => go-1.20.7.inc} | 2 +- ...o-binary-native_1.20.6.bb => go-binary-native_1.20.7.bb} | 6 +++--- ...cross-canadian_1.20.6.bb => go-cross-canadian_1.20.7.bb} | 0

[OE-core] [kirkstone][PATCH 3/3] go: fix CVE-2023-29406

Backport required patch to fix CVE-2023-29406. Signed-off-by: Sakib Sajal --- meta/recipes-devtools/go/go-1.17.13.inc | 1 + .../go/go-1.19/CVE-2023-29406.patch | 210 ++ 2 files changed, 211 insertions(+) create mode 100644 meta/recipes-devtools/go/go-1.19

[OE-core] [kirkstone][PATCH 1/3] go: fix CVE-2023-24536

Backport required patches to fix CVE-2023-24536. Signed-off-by: Sakib Sajal --- meta/recipes-devtools/go/go-1.17.13.inc | 3 + .../go/go-1.19/CVE-2023-24536_1.patch | 137 +++ .../go/go-1.19/CVE-2023-24536_2.patch | 187 ++ .../go/go-1.19/CVE-2023-24536_3

[OE-core] [kirkstone][PATCH 2/3] go: fix CVE-2023-24531

Backport required patches from go1.21 to fix CVE-2023-24531. Signed-off-by: Sakib Sajal --- meta/recipes-devtools/go/go-1.17.13.inc | 4 +- .../go/go-1.21/CVE-2023-24531_1.patch | 252 ++ .../go/go-1.21/CVE-2023-24531_2.patch | 47 3 files changed

[OE-core] [mickledore][PATCH] go: update 1.20.5 -> 1.20.6

8d8216d8c4d37cc0d9508eb644653f94fff8989c) Signed-off-by: Sakib Sajal --- meta/recipes-devtools/go/{go-1.20.5.inc => go-1.20.6.inc} | 2 +- ...o-binary-native_1.20.5.bb => go-binary-native_1.20.6.bb} | 6 +++--- ...cross-canadian_1.20.5.bb => go-cross-canadian_1.20.6.bb} | 0 .../go/{go-cross_1.20.5.bb => go-cro

[OE-core] [mickledore][PATCH] go: fix CVE-2023-24531

Backport required commits to fix CVE-2023-24531. Signed-off-by: Sakib Sajal --- meta/recipes-devtools/go/go-1.20.5.inc| 2 + .../go/go/CVE-2023-24531_1.patch | 266 ++ .../go/go/CVE-2023-24531_2.patch | 47 3 files changed, 315

[OE-core] [kirkstone][PATCH] blktrace: ask for python3 specifically

python2 has been deprecated, use python3 instead Signed-off-by: Sakib Sajal --- ...plot.py-Ask-for-python3-specifically.patch | 35 +++ meta/recipes-kernel/blktrace/blktrace_git.bb | 4 ++- 2 files changed, 38 insertions(+), 1 deletion(-) create mode 100644 meta/recipes

[OE-core] [mickledore][PATCH] bno_plot.py, btt_plot.py: Ask for python3 specifically

python2 has been deprecated, use python3 instead Signed-off-by: Sakib Sajal --- ...plot.py-Ask-for-python3-specifically.patch | 35 +++ meta/recipes-kernel/blktrace/blktrace_git.bb | 4 ++- 2 files changed, 38 insertions(+), 1 deletion(-) create mode 100644 meta/recipes

[OE-core] [PATCH] bno_plot.py, btt_plot.py: Ask for python3 specifically

python2 has been deprecated, use python3 instead Signed-off-by: Sakib Sajal --- ...plot.py-Ask-for-python3-specifically.patch | 35 +++ meta/recipes-kernel/blktrace/blktrace_git.bb | 4 ++- 2 files changed, 38 insertions(+), 1 deletion(-) create mode 100644 meta/recipes

[OE-core] [mickledore][PATCH] go: Upgrade 1.20.4 -> 1.20.5

ringCrypto for 4096 bit keys afbe101950 [release-branch.go1.20] cmd/compile: fix bswap/load rewrite rules Signed-off-by: Sakib Sajal Signed-off-by: Richard Purdie (cherry picked from commit 3ea1e9e9d7385c78bdd513e44cea5c36444529b2) Signed-off-by: Sakib Sajal --- meta/recipes-devtools/go/{go-1.20.4

[OE-core] [PATCH] go: Upgrade 1.20.4 -> 1.20.5

ringCrypto for 4096 bit keys afbe101950 [release-branch.go1.20] cmd/compile: fix bswap/load rewrite rules Signed-off-by: Sakib Sajal --- meta/recipes-devtools/go/{go-1.20.4.inc => go-1.20.5.inc} | 2 +- ...o-binary-native_1.20.4.bb => go-binary-native_1.20.5.bb} | 6 +++--- ...cross-canadian

[OE-core] [mickledore][PATCH v2 2/2] go: Use -no-pie to build target cgo

) Signed-off-by: Sakib Sajal --- meta/recipes-devtools/go/go_1.20.4.bb | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/meta/recipes-devtools/go/go_1.20.4.bb b/meta/recipes-devtools/go/go_1.20.4.bb index 587ee55944..46f5fbc6be 100644 --- a/meta/recipes-devtools/go/go_1.20.4.bb

[OE-core] [mickledore][PATCH v2 1/2] go: Upgrade 1.20.1 -> 1.20.4

://github.com/golang/go/issues?q=milestone%3AGo1.20.4+label%3ACherryPickApproved Signed-off-by: Khem Raj Signed-off-by: Richard Purdie (cherry picked from commit e043bfb42156c59c93c6a4816528a63cfdaccc3e) Signed-off-by: Sakib Sajal --- .../go/{go-1.20.1.inc => go-1.20.4.inc} | 5 +- ...e_1.20.1

Re: [OE-core] [kirkstone][PATCH] go: fix CVE-2023-24540

. Thanks for the patch and the review! Steve Thanks for the feedback, I will incorporate the changes in the upcoming patches! Sakib -Original Message- Backport from go-1.19: html/template: handle all JS whitespace characters Signed-off-by: Sakib Sajal --- meta/recipes-devtools/go

[OE-core] [PATCH] go: update 1.20.1 -> 1.20.4

calls 965e9ba0fb [release-branch.go1.20] cmd/compile: disable inline static init optimization 85ded85b78 [release-branch.go1.20] runtime: fix signature for linked functions 828b05cc64 [release-branch.go1.20] all: update vendored golang.org/x/net Signed-off-by: Sakib Sajal --- .../go/{go-

[OE-core] [kirkstone][PATCH] go: fix CVE-2023-24540

Backport from go-1.19: html/template: handle all JS whitespace characters Signed-off-by: Sakib Sajal --- meta/recipes-devtools/go/go-1.17.13.inc | 1 + .../go/go-1.19/CVE-2023-24540.patch | 93 +++ 2 files changed, 94 insertions(+) create mode 100644 meta

[OE-core] [mickledore][PATCH] go: update 1.20.1 -> 1.20.4

calls 965e9ba0fb [release-branch.go1.20] cmd/compile: disable inline static init optimization 85ded85b78 [release-branch.go1.20] runtime: fix signature for linked functions 828b05cc64 [release-branch.go1.20] all: update vendored golang.org/x/net Signed-off-by: Sakib Sajal --- .../go/{go-

Re: [OE-core] [kirkstone][PATCH v2] go: fix CVE-2022-2879 and CVE-2022-41720

On 2023-03-22 12:21, Steve Sakoman wrote: CAUTION: This email comes from a non Wind River email account! Do not click links or open attachments unless you recognize the sender and know the content is safe. On Tue, Mar 21, 2023 at 9:36 AM Sakib Sajal wrote: Backport appropriate patches

[OE-core] [kirkstone][PATCH v2] go: fix CVE-2022-2879 and CVE-2022-41720

Backport appropriate patches to fix CVE-2022-2879 and CVE-2022-41720. Modified the original fix for CVE-2022-2879 to remove a testdata tarball and any references to it since git binary diffs are not supported in quilt. Signed-off-by: Sakib Sajal --- meta/recipes-devtools/go/go-1.17.13.inc

[OE-core] [kirkstone][PATCH v2] go: fix CVE-2022-2879 and CVE-2022-41720

Backport appropriate patches to fix CVE-2022-2879 and CVE-2022-41720. Modified the original fix for CVE-2022-2879 to remove a testdata tarball and any references to it since git binary diffs are not supported in quilt. Signed-off-by: Sakib Sajal --- meta/recipes-devtools/go/go-1.17.13.inc

Re: [OE-core] [kirkstone][PATCH] go: fix CVE-2022-2879 and CVE-2022-41720

On 2023-03-20 17:05, Randy MacLeod wrote: On 2023-03-20 16:09, Sakib Sajal via lists.openembedded.org wrote: Backport appropriate patches to fix CVE-2022-2879 and CVE-2022-41720. Modified the original fix for CVE-2022-2879 to remove a testdata tarball and any references to it since git binary

[OE-core] [kirkstone][PATCH] go: fix CVE-2022-2879 and CVE-2022-41720

Backport appropriate patches to fix CVE-2022-2879 and CVE-2022-41720. Modified the original fix for CVE-2022-2879 to remove a testdata tarball and any references to it since git binary diffs are not supported in quilt. Signed-off-by: Sakib Sajal --- meta/recipes-devtools/go/go-1.17.13.inc

[OE-core] [kirkstone][PATCH] u-boot: fix CVE-2022-2347 and CVE-2022-30790

Backport appropriate patches to fix CVE-2022-2347 and CVE-2022-30790. Signed-off-by: Sakib Sajal --- .../u-boot/files/CVE-2022-2347_1.patch| 129 +++ .../u-boot/files/CVE-2022-2347_2.patch| 66 .../u-boot/files/CVE-2022-30790.patch | 149

[OE-core] [kirkstone][PATCH] git: upgrade 2.35.5 -> 2.35.7

Upgrade git to latest 2.37.x release to address security issues CVE-2022-23521 and CVE-2022-41903. Signed-off-by: Sakib Sajal --- meta/recipes-devtools/git/{git_2.35.5.bb => git_2.35.7.bb} | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) rename meta/recipes-devtools/git/{git_2.35.5

[OE-core] [langdale][PATCH] git: upgrade 2.37.4 -> 2.37.6

Upgrade git to latest 2.37.x release to address security issues CVE-2022-23521 and CVE-2022-41903. Signed-off-by: Sakib Sajal --- meta/recipes-devtools/git/{git_2.37.4.bb => git_2.37.6.bb} | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) rename meta/recipes-devtools/git/{git_2.37.4

[OE-core] [kirkstone][PATCH] go: fix CVE-2022-2880

Backport patch to fix CVE-2022-2880. Signed-off-by: Sakib Sajal --- meta/recipes-devtools/go/go-1.17.13.inc | 1 + ...util-avoid-query-parameter-smuggling.patch | 178 ++ 2 files changed, 179 insertions(+) create mode 100644 meta/recipes-devtools/go/go-1.18/0001-net

Re: [OE-core] [kirkstone][PATCH] blktrace: ask for python3 specifically

From: Alexander Kanavin Sent: November 3, 2022 4:06 PM To: Sajal, Sakib Cc: openembedded-core@lists.openembedded.org Subject: Re: [OE-core] [kirkstone][PATCH] blktrace: ask for python3 specifically > This patch should be sent upstream first. Same as in your

Re: [OE-core] [PATCH] blktrace: ask for python3 specifically

From: Alexander Kanavin Sent: November 3, 2022 3:00 PM To: Sajal, Sakib Cc: openembedded-core@lists.openembedded.org Subject: Re: [OE-core] [PATCH] blktrace: ask for python3 specifically On Thu, 3 Nov 2022 at 19:34, Sakib Sajal wrote: >> >>

[OE-core] [kirkstone][PATCH] blktrace: ask for python3 specifically

python2 has been deprecated, use python3 instead Signed-off-by: Sakib Sajal --- ...plot.py-ask-for-python3-specifically.patch | 35 +++ meta/recipes-kernel/blktrace/blktrace_git.bb | 5 ++- 2 files changed, 39 insertions(+), 1 deletion(-) create mode 100644 meta/recipes

[OE-core] [PATCH] blktrace: ask for python3 specifically

python2 has been deprecated, use python3 instead Signed-off-by: Sakib Sajal --- ...plot.py-ask-for-python3-specifically.patch | 35 +++ meta/recipes-kernel/blktrace/blktrace_git.bb | 5 ++- 2 files changed, 39 insertions(+), 1 deletion(-) create mode 100644 meta/recipes

[OE-core] [kirkstone][PATCH] lighttpd: upgrade 1.4.66 -> 1.4.67

Purdie (cherry picked from commit 7a399862bb2e1503fbffa18e7ec0767643f76132) Signed-off-by: Sakib Sajal --- .../lighttpd/{lighttpd_1.4.66.bb => lighttpd_1.4.67.bb} | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) rename meta/recipes-extended/lighttpd/{lighttpd_1.4.66

[OE-core] [PATCH] go: update 1.19.2 -> 1.19.3

Signed-off-by: Sakib Sajal --- meta/recipes-devtools/go/{go-1.19.2.inc => go-1.19.3.inc} | 2 +- ...o-binary-native_1.19.2.bb => go-binary-native_1.19.3.bb} | 6 +++--- ...cross-canadian_1.19.2.bb => go-cross-canadian_1.19.3.bb} | 0 .../go/{go-cross_1.19.2.bb => go-cro

[OE-core] [kirkstone][PATCH 1/2] lighttpd: upgrade 1.4.64 -> 1.4.65

s * [core] update cached tables with Priority header * [tests] test stubs for http_header.c and http_kv.c Signed-off-by: Wang Mingyu Signed-off-by: Alexandre Belloni Signed-off-by: Richard Purdie (cherry picked from commit 47188fa0dc19f160085554360c81bd9f363837d5) Signed-off-by: Sakib Sajal --- .../light

[OE-core] [kirkstone][PATCH 2/2] lighttpd: upgrade 1.4.65 -> 1.4.66

From: Alexander Kanavin Signed-off-by: Alexander Kanavin Signed-off-by: Alexandre Belloni Signed-off-by: Richard Purdie (cherry picked from commit 3163134b0f58c58aaabe4e957c30109e63b2d60f) Signed-off-by: Sakib Sajal --- .../lighttpd/{lighttpd_1.4.65.bb => lighttpd_1.4.66.bb}

[OE-core] [hardknott][meta-oe][PATCH] minicoredumper: retry elf parsing as long as needed

Maximum number of tries, in rare cases, is insufficient for elf parse. Backport patch that fixes the issue. Signed-off-by: Sakib Sajal Signed-off-by: Khem Raj (cherry picked from commit e231c86e282eefff0e8164551f75f8e01682abe6) Signed-off-by: Sakib Sajal --- ...-retry-elf-parsing-as-long

[OE-core] [kirkstone][meta-oe][PATCH] minicoredumper: retry elf parsing as long as needed

Maximum number of tries, in rare cases, is insufficient for elf parse. Backport patch that fixes the issue. Signed-off-by: Sakib Sajal Signed-off-by: Khem Raj (cherry picked from commit e231c86e282eefff0e8164551f75f8e01682abe6) Signed-off-by: Sakib Sajal --- ...-retry-elf-parsing-as-long

[OE-core] [hardknott][PATCH] dpkg: fix CVE-2022-1664

Backport patch to fix CVE-2022-1664. Signed-off-by: Sakib Sajal --- ...ive-Prevent-directory-traversal-for-.patch | 329 ++ meta/recipes-devtools/dpkg/dpkg_1.20.7.1.bb | 1 + 2 files changed, 330 insertions(+) create mode 100644 meta/recipes-devtools/dpkg/dpkg/0001-Dpkg

[OE-core] [PATCH 1/2] qemu: fix CVE-2021-3507

Backport required patches to fix CVE-2021-3507. Signed-off-by: Sakib Sajal --- meta/recipes-devtools/qemu/qemu.inc | 2 + .../qemu/qemu/CVE-2021-3507_1.patch | 92 ++ .../qemu/qemu/CVE-2021-3507_2.patch | 115 ++ 3 files changed, 209

[OE-core] [PATCH 2/2] qemu: fix CVE-2022-0216

Backport required patches to fix CVE-2022-0216. Signed-off-by: Sakib Sajal --- meta/recipes-devtools/qemu/qemu.inc | 2 + .../qemu/qemu/CVE-2022-0216_1.patch | 42 + .../qemu/qemu/CVE-2022-0216_2.patch | 146 ++ 3 files changed, 190

[OE-core] [kirkstone][PATCH] u-boot: fix CVE-2022-33967

Backport patch to fix CVE-2022-33967. Signed-off-by: Sakib Sajal --- ...s-squashfs-Use-kcalloc-when-relevant.patch | 64 +++ meta/recipes-bsp/u-boot/u-boot_2022.01.bb | 1 + 2 files changed, 65 insertions(+) create mode 100644 meta/recipes-bsp/u-boot/files/0001-fs

[OE-core] [kirkstone][PATCH] u-boot: fix CVE-2022-30552

Backport patch to fix CVE-2022-30552. Signed-off-by: Sakib Sajal --- ...e-minimum-IP-fragmented-datagram-siz.patch | 207 ++ meta/recipes-bsp/u-boot/u-boot_2022.01.bb | 1 + 2 files changed, 208 insertions(+) create mode 100644 meta/recipes-bsp/u-boot/files/0001-net

[OE-core] [kirkstone][PATCH] go: update v1.17.12 -> v1.17.13

hen last timer is deleted c25b12fb81 [release-branch.go1.17] runtime: use saved LR when unwinding through morestack 1ed3c127da (tag: go1.17.12) [release-branch.go1.17] go1.17.12 Signed-off-by: Sakib Sajal --- meta/recipes-devtools/go/{go-1.17.12.inc => go-1.17.13.inc} | 2 +- ...o-

Re: [OE-core] [kirkstone][PATCH] u-boot: fix CVE-2022-33103

On 2022-08-10 12:30, Steve Sakoman wrote: [Please note: This e-mail is from an EXTERNAL e-mail address] On Wed, Aug 10, 2022 at 5:35 AM Sakib Sajal wrote: Steve, did you miss this patch? I did :-( I've got it now. Sorry about that. No worries! :) Steve On 2022-07-26 15:18, Sakib

Re: [OE-core] [kirkstone][PATCH] u-boot: fix CVE-2022-33103

Steve, did you miss this patch? On 2022-07-26 15:18, Sakib Sajal wrote: Backport patch to resolve CVE-2022-33103. Signed-off-by: Sakib Sajal --- ..._read-Prevent-arbitrary-code-executi.patch | 80 +++ meta/recipes-bsp/u-boot/u-boot_2022.01.bb | 1 + 2 files changed

[OE-core] [kirkstone][PATCH 5/5] qemu: fix CVE-2022-0216

Backport relevant patches to fix CVE-2022-0216. Signed-off-by: Sakib Sajal --- meta/recipes-devtools/qemu/qemu.inc | 2 + .../qemu/qemu/CVE-2022-0216_1.patch | 42 +++ .../qemu/qemu/CVE-2022-0216_2.patch | 52 +++ 3 files changed, 96

[OE-core] [kirkstone][PATCH 2/5] qemu: fix CVE-2021-3929

Backport patch to fix CVE-2021-3929. Signed-off-by: Sakib Sajal --- meta/recipes-devtools/qemu/qemu.inc | 1 + .../qemu/qemu/CVE-2021-3929.patch | 70 +++ 2 files changed, 71 insertions(+) create mode 100644 meta/recipes-devtools/qemu/qemu/CVE-2021-3929

[OE-core] [kirkstone][PATCH 4/5] qemu: fix CVE-2022-0358

Backport patch to fix CVE-2022-0358. Signed-off-by: Sakib Sajal --- meta/recipes-devtools/qemu/qemu.inc | 1 + .../qemu/qemu/CVE-2022-0358.patch | 106 ++ 2 files changed, 107 insertions(+) create mode 100644 meta/recipes-devtools/qemu/qemu/CVE-2022-0358

[OE-core] [kirkstone][PATCH 1/5] qemu: fix CVE-2021-3507

Backport relevant patches to fix CVE-2021-3507. Signed-off-by: Sakib Sajal --- meta/recipes-devtools/qemu/qemu.inc | 2 + .../qemu/qemu/CVE-2021-3507_1.patch | 92 ++ .../qemu/qemu/CVE-2021-3507_2.patch | 115 ++ 3 files changed, 209

[OE-core] [kirkstone][PATCH 3/5] qemu: fix CVE-2021-4158

Backport patch to fix CVE-2021-4158. Signed-off-by: Sakib Sajal --- meta/recipes-devtools/qemu/qemu.inc | 1 + .../qemu/qemu/CVE-2021-4158.patch | 46 +++ 2 files changed, 47 insertions(+) create mode 100644 meta/recipes-devtools/qemu/qemu/CVE-2021-4158

[OE-core] [kirkstone][PATCH] u-boot: fix CVE-2022-33103

Backport patch to resolve CVE-2022-33103. Signed-off-by: Sakib Sajal --- ..._read-Prevent-arbitrary-code-executi.patch | 80 +++ meta/recipes-bsp/u-boot/u-boot_2022.01.bb | 1 + 2 files changed, 81 insertions(+) create mode 100644 meta/recipes-bsp/u-boot/files/0001-fs

[OE-core] [kirkstone][PATCH] git: upgrade v2.35.3 -> v2.35.4

Minor upgrade which includes fix for CVE-2022-29187. Signed-off-by: Sakib Sajal --- meta/recipes-devtools/git/{git_2.35.3.bb => git_2.35.4.bb} | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) rename meta/recipes-devtools/git/{git_2.35.3.bb => git_2.35.4.bb} (98%) diff --git

[OE-core] [kirkstone][PATCH] go: update v1.17.10 -> v1.17.12

PWD when executing a command in a different directory 0e7138a102 [release-branch.go1.17] runtime: mark TestGcSys as flaky Signed-off-by: Sakib Sajal --- meta/recipes-devtools/go/{go-1.17.10.inc => go-1.17.12.inc} | 2 +- ...o-binary-native_1.17.10.bb => go-binary-native_1.17.12.bb} | 4 ++-- ..

[OE-core] [kirkstone][PATCH] dpkg: fix CVE-2022-1664

Backport patch to fix CVE-2022-1664. Signed-off-by: Sakib Sajal --- ...ive-Prevent-directory-traversal-for-.patch | 328 ++ meta/recipes-devtools/dpkg/dpkg_1.21.4.bb | 1 + 2 files changed, 329 insertions(+) create mode 100644 meta/recipes-devtools/dpkg/dpkg/0001-Dpkg

[OE-core] [PATCH][V2] u-boot: upgrade 2022.04 -> 2022.07

License change came due to U-Boot commit: fba0882bcd Add valgrind headers to U-Boot Signed-off-by: Sakib Sajal --- meta/recipes-bsp/u-boot/u-boot-common.inc | 4 ++-- .../{u-boot-tools_2022.04.bb => u-boot-tools_2022.07.bb} | 0 .../u-boot/{u-boot_2022.04.bb =

Re: [OE-core] [PATCH] u-boot: upgrade 2022.04 -> 2022.07

On 2022-07-12 04:41, ZHIZHIKIN Andrey wrote: [Please note: This e-mail is from an EXTERNAL e-mail address] Hello Sakib, Alex just chased me up, but nevertheless... -Original Message- From: Sakib Sajal Sent: Tuesday, July 12, 2022 4:37 AM To: openembedded-core@lists.openembedded.org

[OE-core] [PATCH] u-boot: upgrade 2022.04 -> 2022.07

Signed-off-by: Sakib Sajal --- meta/recipes-bsp/u-boot/u-boot-common.inc | 4 ++-- .../{u-boot-tools_2022.04.bb => u-boot-tools_2022.07.bb} | 0 .../u-boot/{u-boot_2022.04.bb => u-boot_2022.07.bb} | 0 3 files changed, 2 insertions(+), 2 deletions(-)

[OE-core] [kirkstone][PATCH] u-boot: fix CVE-2022-34835

Backport patch to fix CVE-2022-34835. Signed-off-by: Sakib Sajal --- ...ffer-overflow-vulnerability-in-i2c-m.patch | 126 ++ meta/recipes-bsp/u-boot/u-boot_2022.01.bb | 1 + 2 files changed, 127 insertions(+) create mode 100644 meta/recipes-bsp/u-boot/files/0001-i2c-fix

Re: [OE-core] [PATCH 1/4] qemu: fix CVE-2021-4145

This patch is for hardknott branch On 2022-05-31 18:08, Sakib Sajal wrote: Fix for CVE-2021-4145, commit 66fed30c9c, fixes another commit: d44dae1a7c ("block/mirror: fix active mirror dead-lock in mirror_wait_on_conflicts") Hence, backport both the patches to resolve the CVE.

Re: [OE-core] [PATCH 2/4] qemu: fix CVE-2021-3750

This set of patches is for hardknott branch. On 2022-05-31 18:08, Sakib Sajal wrote: Backport appropriate patches to resolve CVE-2021-3750. Signed-off-by: Sakib Sajal --- meta/recipes-devtools/qemu/qemu.inc | 3 + .../qemu/qemu/CVE-2021-3750_1.patch | 60

[OE-core][hardknott][PATCH 4/4] qemu: fix CVE-2021-4206

Backport fix to resolve CVE-2021-4206: fa892e9abb ui/cursor: fix integer overflow in cursor_alloc (CVE-2021-4206) Signed-off-by: Sakib Sajal --- meta/recipes-devtools/qemu/qemu.inc | 1 + .../qemu/qemu/CVE-2021-4206.patch | 89 +++ 2 files changed, 90

[OE-core][hardknott][PATCH 3/4] qemu: fix CVE-2022-26353

Backport fix to resolve CVE-2022-26353: abe300d9d8 virtio-net: fix map leaking on error during receive Signed-off-by: Sakib Sajal --- meta/recipes-devtools/qemu/qemu.inc | 1 + .../qemu/qemu/CVE-2022-26353.patch| 44 +++ 2 files changed, 45 insertions

[OE-core][hardknott][PATCH 1/4] qemu: fix CVE-2021-4145

Fix for CVE-2021-4145, commit 66fed30c9c, fixes another commit: d44dae1a7c ("block/mirror: fix active mirror dead-lock in mirror_wait_on_conflicts") Hence, backport both the patches to resolve the CVE. Signed-off-by: Sakib Sajal --- meta/recipes-devtools/qemu/qemu.inc

[OE-core][hardknott][PATCH 2/4] qemu: fix CVE-2021-3750

Backport appropriate patches to resolve CVE-2021-3750. Signed-off-by: Sakib Sajal --- meta/recipes-devtools/qemu/qemu.inc | 3 + .../qemu/qemu/CVE-2021-3750_1.patch | 60 +++ .../qemu/qemu/CVE-2021-3750_2.patch | 65 .../qemu/qemu/CVE-2021-3750_3

[OE-core] [PATCH 2/4] qemu: fix CVE-2021-3750

Backport appropriate patches to resolve CVE-2021-3750. Signed-off-by: Sakib Sajal --- meta/recipes-devtools/qemu/qemu.inc | 3 + .../qemu/qemu/CVE-2021-3750_1.patch | 60 +++ .../qemu/qemu/CVE-2021-3750_2.patch | 65 .../qemu/qemu/CVE-2021-3750_3

[OE-core] [PATCH 1/4] qemu: fix CVE-2021-4145

Fix for CVE-2021-4145, commit 66fed30c9c, fixes another commit: d44dae1a7c ("block/mirror: fix active mirror dead-lock in mirror_wait_on_conflicts") Hence, backport both the patches to resolve the CVE. Signed-off-by: Sakib Sajal --- meta/recipes-devtools/qemu/qemu.inc

[OE-core] [PATCH 3/4] qemu: fix CVE-2022-26353

Backport fix to resolve CVE-2022-26353: abe300d9d8 virtio-net: fix map leaking on error during receive Signed-off-by: Sakib Sajal --- meta/recipes-devtools/qemu/qemu.inc | 1 + .../qemu/qemu/CVE-2022-26353.patch| 44 +++ 2 files changed, 45 insertions

[OE-core] [PATCH 4/4] qemu: fix CVE-2021-4206

Backport fix to resolve CVE-2021-4206: fa892e9abb ui/cursor: fix integer overflow in cursor_alloc (CVE-2021-4206) Signed-off-by: Sakib Sajal --- meta/recipes-devtools/qemu/qemu.inc | 1 + .../qemu/qemu/CVE-2021-4206.patch | 89 +++ 2 files changed, 90

[OE-core] [hardknott][PATCH 2/2] qemu: fix CVE-2022-26354

Signed-off-by: Sakib Sajal --- meta/recipes-devtools/qemu/qemu.inc | 1 + .../qemu/qemu/CVE-2022-26354.patch| 59 +++ 2 files changed, 60 insertions(+) create mode 100644 meta/recipes-devtools/qemu/qemu/CVE-2022-26354.patch diff --git a/meta/recipes

[OE-core] [hardknott][PATCH 1/2] qemu: fix CVE-2021-4145

Fix CVE by backporting relevant patches. Signed-off-by: Sakib Sajal --- meta/recipes-devtools/qemu/qemu.inc | 2 + .../qemu/qemu/CVE-2021-4145_1.patch | 60 ++ .../qemu/qemu/CVE-2021-4145_2.patch | 83 +++ 3 files changed, 145

[OE-core] [PATCH] perl: generate alternative link for streamzip

streamzip is also provided by io-compress-perl, so add an alternative link for streamzip. Signed-off-by: Sakib Sajal --- meta/recipes-devtools/perl/perl_5.34.0.bb | 3 ++- 1 file changed, 2 insertions(+), 1 deletion(-) diff --git a/meta/recipes-devtools/perl/perl_5.34.0.bb b/meta/recipes

[OE-core] [hardknott][PATCH] go: upgrade 1.16.13 -> 1.16.14

go 1.16.14 release includes fix for CVE-2022-23806. Signed-off-by: Sakib Sajal --- meta/recipes-devtools/go/{go-1.16.13.inc => go-1.16.14.inc} | 4 ++-- ...o-binary-native_1.16.13.bb => go-binary-native_1.16.14.bb} | 4 ++-- ...cross-canadian_1.16.13.bb => go-cross-canadian_1.16.1

Re: [OE-core] [hardknott] qemu CVE backports

Hi Anuj, The patches did go through. However, the patches are sent in two different threads, the first patch in one thread and patches 2 to 8 in another thread. Please merge the commits accordingly. Sorry for the noise. Sakib On 2022-02-02 11:21, Sakib Sajal wrote: Hi, I am having

[OE-core] [hardknott] qemu CVE backports

Hi, I am having trouble sending multiple patches at a time. I will individually send the patches in reply to this mail. Sorry for the inconvenience. Sakib -=-=-=-=-=-=-=-=-=-=-=- Links: You receive all messages sent to this group. View/Reply Online (#161219):

[OE-core] [hardknott][PATCH 5/8] qemu: fix CVE-2021-3713

Signed-off-by: Sakib Sajal --- meta/recipes-devtools/qemu/qemu.inc | 1 + .../qemu/qemu/CVE-2021-3713.patch | 68 +++ 2 files changed, 69 insertions(+) create mode 100644 meta/recipes-devtools/qemu/qemu/CVE-2021-3713.patch diff --git a/meta/recipes

[OE-core] [hardknott][PATCH 8/8] qemu: fix CVE-2021-20196

Signed-off-by: Sakib Sajal --- meta/recipes-devtools/qemu/qemu.inc | 2 + .../qemu/qemu/CVE-2021-20196_1.patch | 54 +++ .../qemu/qemu/CVE-2021-20196_2.patch | 67 +++ 3 files changed, 123 insertions(+) create mode 100644 meta/recipes

[OE-core] [hardknott][PATCH 6/8] qemu: fix CVE-2021-3748

Signed-off-by: Sakib Sajal --- meta/recipes-devtools/qemu/qemu.inc | 1 + .../qemu/qemu/CVE-2021-3748.patch | 127 ++ 2 files changed, 128 insertions(+) create mode 100644 meta/recipes-devtools/qemu/qemu/CVE-2021-3748.patch diff --git a/meta/recipes

[OE-core] [hardknott][PATCH 3/8] qemu: fix CVE-2021-3595

Signed-off-by: Sakib Sajal --- meta/recipes-devtools/qemu/qemu.inc | 2 + .../qemu/qemu/CVE-2021-3595_1.patch | 41 +++ .../qemu/qemu/CVE-2021-3595_2.patch | 253 ++ 3 files changed, 296 insertions(+) create mode 100644 meta/recipes-devtools/qemu

[OE-core] [hardknott][PATCH 1/8] qemu: fix CVE-2021-3592

Signed-off-by: Sakib Sajal --- meta/recipes-devtools/qemu/qemu.inc | 3 + .../qemu/qemu/CVE-2021-3592_1.patch | 58 ++ .../qemu/qemu/CVE-2021-3592_2.patch | 165 ++ .../qemu/qemu/CVE-2021-3592_3.patch | 40 + 4 files changed

[OE-core] [hardknott][PATCH 2/8] qemu: fix CVE-2021-3593

Signed-off-by: Sakib Sajal --- meta/recipes-devtools/qemu/qemu.inc | 1 + .../qemu/qemu/CVE-2021-3593.patch | 40 +++ 2 files changed, 41 insertions(+) create mode 100644 meta/recipes-devtools/qemu/qemu/CVE-2021-3593.patch diff --git a/meta/recipes

[OE-core] [hardknott][PATCH 7/8] qemu: fix CVE-2021-3930

Signed-off-by: Sakib Sajal --- meta/recipes-devtools/qemu/qemu.inc | 1 + .../qemu/qemu/CVE-2021-3930.patch | 53 +++ 2 files changed, 54 insertions(+) create mode 100644 meta/recipes-devtools/qemu/qemu/CVE-2021-3930.patch diff --git a/meta/recipes

[OE-core] [hardknott][PATCH 4/8] qemu: fix CVE-2021-3594

Signed-off-by: Sakib Sajal --- meta/recipes-devtools/qemu/qemu.inc | 1 + .../qemu/qemu/CVE-2021-3594.patch | 40 +++ 2 files changed, 41 insertions(+) create mode 100644 meta/recipes-devtools/qemu/qemu/CVE-2021-3594.patch diff --git a/meta/recipes

Re: [OE-core] [hardknott][PATCH 2/8] qemu: fix CVE-2021-3593

Please disregard, sorry for the barrage of incomplete patch set. On 2022-01-14 1:03 p.m., Sakib Sajal wrote: Signed-off-by: Sakib Sajal --- meta/recipes-devtools/qemu/qemu.inc | 1 + .../qemu/qemu/CVE-2021-3593.patch | 40 +++ 2 files changed, 41

Re: [OE-core] [hardknott][PATCH 4/8] qemu: fix CVE-2021-3594

Please disregard, sorry for the barrage of incomplete patch set. On 2022-01-14 1:03 p.m., Sakib Sajal wrote: Signed-off-by: Sakib Sajal --- meta/recipes-devtools/qemu/qemu.inc | 1 + .../qemu/qemu/CVE-2021-3594.patch | 40 +++ 2 files changed, 41

[OE-core] [hardknott][PATCH 8/8] qemu: fix CVE-2021-20196

Signed-off-by: Sakib Sajal --- meta/recipes-devtools/qemu/qemu.inc | 2 + .../qemu/qemu/CVE-2021-20196_1.patch | 54 +++ .../qemu/qemu/CVE-2021-20196_2.patch | 67 +++ 3 files changed, 123 insertions(+) create mode 100644 meta/recipes

[OE-core] [hardknott][PATCH 4/8] qemu: fix CVE-2021-3594

Signed-off-by: Sakib Sajal --- meta/recipes-devtools/qemu/qemu.inc | 1 + .../qemu/qemu/CVE-2021-3594.patch | 40 +++ 2 files changed, 41 insertions(+) create mode 100644 meta/recipes-devtools/qemu/qemu/CVE-2021-3594.patch diff --git a/meta/recipes

[OE-core] [hardknott][PATCH 6/8] qemu: fix CVE-2021-3748

Signed-off-by: Sakib Sajal --- meta/recipes-devtools/qemu/qemu.inc | 1 + .../qemu/qemu/CVE-2021-3748.patch | 127 ++ 2 files changed, 128 insertions(+) create mode 100644 meta/recipes-devtools/qemu/qemu/CVE-2021-3748.patch diff --git a/meta/recipes

[OE-core] [hardknott][PATCH 2/8] qemu: fix CVE-2021-3593

Signed-off-by: Sakib Sajal --- meta/recipes-devtools/qemu/qemu.inc | 1 + .../qemu/qemu/CVE-2021-3593.patch | 40 +++ 2 files changed, 41 insertions(+) create mode 100644 meta/recipes-devtools/qemu/qemu/CVE-2021-3593.patch diff --git a/meta/recipes

[OE-core] [hardknott][PATCH 1/8] qemu: fix CVE-2021-3592

Signed-off-by: Sakib Sajal --- meta/recipes-devtools/qemu/qemu.inc | 3 + .../qemu/qemu/CVE-2021-3592_1.patch | 58 ++ .../qemu/qemu/CVE-2021-3592_2.patch | 165 ++ .../qemu/qemu/CVE-2021-3592_3.patch | 40 + 4 files changed

[OE-core] [hardknott][PATCH] go: upgrade 1.16.10 -> 1.16.13

Release 1.16.13 includes fixes for CVE-2021-44716 and CVE-2021-44717. Signed-off-by: Sakib Sajal --- meta/recipes-devtools/go/{go-1.16.10.inc => go-1.16.13.inc} | 4 ++-- ...o-binary-native_1.16.10.bb => go-binary-native_1.16.13.bb} | 4 ++-- ...cross-canadian_1.16.10.bb =>

Re: [OE-core] [hardknott][PATCH 3/8] qemu: CVE-2021-3595

Please disregard this set of patches, somehow it failed to send the first 2 and one in the middle. sending a V3. Sorry for inconvenience On 2022-01-13 7:06 p.m., Sakib Sajal wrote: Signed-off-by: Sakib Sajal --- meta/recipes-devtools/qemu/qemu.inc | 2 + .../qemu/qemu/CVE-2021

[OE-core] [hardknott][PATCH 8/8] qemu: CVE-2021-20196

Signed-off-by: Sakib Sajal --- meta/recipes-devtools/qemu/qemu.inc | 2 + .../qemu/qemu/CVE-2021-20196_1.patch | 54 +++ .../qemu/qemu/CVE-2021-20196_2.patch | 67 +++ 3 files changed, 123 insertions(+) create mode 100644 meta/recipes

[OE-core] [hardknott][PATCH 6/8] qemu: CVE-2021-3748

Signed-off-by: Sakib Sajal --- meta/recipes-devtools/qemu/qemu.inc | 1 + .../qemu/qemu/CVE-2021-3748.patch | 127 ++ 2 files changed, 128 insertions(+) create mode 100644 meta/recipes-devtools/qemu/qemu/CVE-2021-3748.patch diff --git a/meta/recipes

[OE-core] [hardknott][PATCH 3/8] qemu: CVE-2021-3595

Signed-off-by: Sakib Sajal --- meta/recipes-devtools/qemu/qemu.inc | 2 + .../qemu/qemu/CVE-2021-3595_1.patch | 41 +++ .../qemu/qemu/CVE-2021-3595_2.patch | 253 ++ 3 files changed, 296 insertions(+) create mode 100644 meta/recipes-devtools/qemu

[OE-core] [hardknott][PATCH 4/8] qemu: CVE-2021-3594

Signed-off-by: Sakib Sajal --- meta/recipes-devtools/qemu/qemu.inc | 1 + .../qemu/qemu/CVE-2021-3594.patch | 40 +++ 2 files changed, 41 insertions(+) create mode 100644 meta/recipes-devtools/qemu/qemu/CVE-2021-3594.patch diff --git a/meta/recipes

Re: [OE-core] [hardknott][PATCH 4/8] qemu: CVE-2021-3594

Please disregard this set of patches, somehow it failed to send the first 3. sending a V2. Sorry for inconvenience On 2022-01-13 6:35 p.m., Sakib Sajal wrote: Signed-off-by: Sakib Sajal --- meta/recipes-devtools/qemu/qemu.inc | 1 + .../qemu/qemu/CVE-2021-3594.patch

[OE-core] [hardknott][PATCH 6/8] qemu: CVE-2021-3748

Signed-off-by: Sakib Sajal --- meta/recipes-devtools/qemu/qemu.inc | 1 + .../qemu/qemu/CVE-2021-3748.patch | 127 ++ 2 files changed, 128 insertions(+) create mode 100644 meta/recipes-devtools/qemu/qemu/CVE-2021-3748.patch diff --git a/meta/recipes

[OE-core] [hardknott][PATCH 8/8] qemu: CVE-2021-20196

Signed-off-by: Sakib Sajal --- meta/recipes-devtools/qemu/qemu.inc | 2 + .../qemu/qemu/CVE-2021-20196_1.patch | 54 +++ .../qemu/qemu/CVE-2021-20196_2.patch | 67 +++ 3 files changed, 123 insertions(+) create mode 100644 meta/recipes

[OE-core] [hardknott][PATCH 5/8] qemu: CVE-2021-3713

Signed-off-by: Sakib Sajal --- meta/recipes-devtools/qemu/qemu.inc | 1 + .../qemu/qemu/CVE-2021-3713.patch | 68 +++ 2 files changed, 69 insertions(+) create mode 100644 meta/recipes-devtools/qemu/qemu/CVE-2021-3713.patch diff --git a/meta/recipes

[OE-core] [hardknott][PATCH 7/8] qemu: CVE-2021-3930

Signed-off-by: Sakib Sajal --- meta/recipes-devtools/qemu/qemu.inc | 1 + .../qemu/qemu/CVE-2021-3930.patch | 53 +++ 2 files changed, 54 insertions(+) create mode 100644 meta/recipes-devtools/qemu/qemu/CVE-2021-3930.patch diff --git a/meta/recipes

  1   2   >