[oe-commits] [openembedded-core] branch thud-next updated (13ba663 -> aad245e)

git at git.openembedded.org git at git.openembedded.org
Mon Jul 29 09:25:56 UTC 2019 

This is an automated email from the git hooks/post-receive script.

rpurdie pushed a change to branch thud-next
in repository openembedded-core.

    from 13ba663  OpkgPM: use --add-ignore-recommends to process BAD_RECOMMENDATIONS
     new 2cfcb3b  libsdl: CVE fixes
     new 276567b  gstreamer1.0-plugins-base: fix CVE-2019-9928
     new 6cba048  libarchive: integrate security fixes
     new 7c0b2d2  bzip2: fix CVE-2019-12900
     new cf5d29d  ghostscript: Fix 3 CVEs
     new f5cf064  libcroco: fix CVE-2017-7961
     new aad245e  expat: fix CVE-2018-20843

The 7 revisions listed above as "new" are entirely new to this
repository and will be described in separate emails.  The revisions
listed as "add" were already present in the repository and have only
been added to this reference.


Summary of changes:
 meta/recipes-core/expat/expat/CVE-2018-20843.patch |  26 ++
 meta/recipes-core/expat/expat_2.2.6.bb             |   1 +
 .../bzip2/bzip2-1.0.6/CVE-2019-12900.patch         |  33 +++
 .../fix-regression-CVE-2019-12900.patch            |  82 ++++++
 meta/recipes-extended/bzip2/bzip2_1.0.6.bb         |   2 +
 .../ghostscript/CVE-2019-3835-0001.patch           |  99 +++++++
 .../ghostscript/CVE-2019-3835-0002.patch           |  71 +++++
 .../ghostscript/CVE-2019-3835-0003.patch           | 295 +++++++++++++++++++++
 .../ghostscript/CVE-2019-3835-0004.patch           | 167 ++++++++++++
 .../ghostscript/CVE-2019-3838-0001.patch           |  34 +++
 .../ghostscript/CVE-2019-3838-0002.patch           |  30 +++
 .../ghostscript/ghostscript_9.26.bb                |   6 +
 .../libarchive/libarchive/CVE-2018-1000877.patch   |  38 +++
 .../libarchive/libarchive/CVE-2018-1000878.patch   |  79 ++++++
 .../libarchive/libarchive/CVE-2018-1000879.patch   |  50 ++++
 .../libarchive/libarchive/CVE-2018-1000880.patch   |  44 +++
 .../libarchive/libarchive/CVE-2019-1000019.patch   |  59 +++++
 .../libarchive/libarchive/CVE-2019-1000020.patch   |  61 +++++
 .../libarchive/libarchive_3.3.3.bb                 |   6 +
 .../libsdl/libsdl-1.2.15/CVE-2019-7572.patch       | 114 ++++++++
 .../libsdl/libsdl-1.2.15/CVE-2019-7574.patch       |  68 +++++
 .../libsdl/libsdl-1.2.15/CVE-2019-7575.patch       |  81 ++++++
 .../libsdl/libsdl-1.2.15/CVE-2019-7576.patch       |  80 ++++++
 .../libsdl/libsdl-1.2.15/CVE-2019-7577.patch       | 123 +++++++++
 .../libsdl/libsdl-1.2.15/CVE-2019-7578.patch       |  64 +++++
 .../libsdl/libsdl-1.2.15/CVE-2019-7635.patch       |  63 +++++
 .../libsdl/libsdl-1.2.15/CVE-2019-7637.patch       | 192 ++++++++++++++
 .../libsdl/libsdl-1.2.15/CVE-2019-7638.patch       |  38 +++
 meta/recipes-graphics/libsdl/libsdl_1.2.15.bb      |   9 +
 .../gstreamer1.0-plugins-base/CVE-2019-9928.patch  |  33 +++
 .../gstreamer/gstreamer1.0-plugins-base_1.14.4.bb  |   1 +
 .../libcroco/libcroco/CVE-2017-7961.patch          |  45 ++++
 meta/recipes-support/libcroco/libcroco_0.6.12.bb   |   4 +-
 33 files changed, 2097 insertions(+), 1 deletion(-)
 create mode 100644 meta/recipes-core/expat/expat/CVE-2018-20843.patch
 create mode 100644 meta/recipes-extended/bzip2/bzip2-1.0.6/CVE-2019-12900.patch
 create mode 100644 meta/recipes-extended/bzip2/bzip2-1.0.6/fix-regression-CVE-2019-12900.patch
 create mode 100644 meta/recipes-extended/ghostscript/ghostscript/CVE-2019-3835-0001.patch
 create mode 100644 meta/recipes-extended/ghostscript/ghostscript/CVE-2019-3835-0002.patch
 create mode 100644 meta/recipes-extended/ghostscript/ghostscript/CVE-2019-3835-0003.patch
 create mode 100644 meta/recipes-extended/ghostscript/ghostscript/CVE-2019-3835-0004.patch
 create mode 100644 meta/recipes-extended/ghostscript/ghostscript/CVE-2019-3838-0001.patch
 create mode 100644 meta/recipes-extended/ghostscript/ghostscript/CVE-2019-3838-0002.patch
 create mode 100644 meta/recipes-extended/libarchive/libarchive/CVE-2018-1000877.patch
 create mode 100644 meta/recipes-extended/libarchive/libarchive/CVE-2018-1000878.patch
 create mode 100644 meta/recipes-extended/libarchive/libarchive/CVE-2018-1000879.patch
 create mode 100644 meta/recipes-extended/libarchive/libarchive/CVE-2018-1000880.patch
 create mode 100644 meta/recipes-extended/libarchive/libarchive/CVE-2019-1000019.patch
 create mode 100644 meta/recipes-extended/libarchive/libarchive/CVE-2019-1000020.patch
 create mode 100644 meta/recipes-graphics/libsdl/libsdl-1.2.15/CVE-2019-7572.patch
 create mode 100644 meta/recipes-graphics/libsdl/libsdl-1.2.15/CVE-2019-7574.patch
 create mode 100644 meta/recipes-graphics/libsdl/libsdl-1.2.15/CVE-2019-7575.patch
 create mode 100644 meta/recipes-graphics/libsdl/libsdl-1.2.15/CVE-2019-7576.patch
 create mode 100644 meta/recipes-graphics/libsdl/libsdl-1.2.15/CVE-2019-7577.patch
 create mode 100644 meta/recipes-graphics/libsdl/libsdl-1.2.15/CVE-2019-7578.patch
 create mode 100644 meta/recipes-graphics/libsdl/libsdl-1.2.15/CVE-2019-7635.patch
 create mode 100644 meta/recipes-graphics/libsdl/libsdl-1.2.15/CVE-2019-7637.patch
 create mode 100644 meta/recipes-graphics/libsdl/libsdl-1.2.15/CVE-2019-7638.patch
 create mode 100644 meta/recipes-multimedia/gstreamer/gstreamer1.0-plugins-base/CVE-2019-9928.patch
 create mode 100644 meta/recipes-support/libcroco/libcroco/CVE-2017-7961.patch

-- 
To stop receiving notification emails like this one, please contact
the administrator of this repository.

More information about the Openembedded-commits mailing list