[oe-commits] [openembedded-core] branch warrior updated (279c4da -> a63d59f)
git at git.openembedded.org
git at git.openembedded.org
Tue Jan 28 11:51:42 UTC 2020
This is an automated email from the git hooks/post-receive script.
rpurdie pushed a change to branch warrior
in repository openembedded-core.
from 279c4da stress: update SRC_URI
new 1b69d14 python: Whitelist CVE-2017-17522 CVE-2017-18207 CVE-2015-5652
new a250760 python/python3: Whitelist CVE-2019-18348
new 262ac0c python3: Upgrade 3.7.5 -> 3.7.6
new 04297ee python3: RDEPEND on libgcc
new 4b764c2 wpa-supplicant: fix CVE-2019-16275
new dcd3406 binutils: fix CVE-2019-17450
new 02c5485 binutils: fix CVE-2019-17451
new a45f9d2 bind: Whitelist CVE-2019-6470
new 536a265 gdb: Fix CVE-2019-1010180
new b4628dd libarchive: fix CVE-2019-19221
new de04ec5 glibc: fix CVE-2019-19126
new abc2d1f lighttpd: Backport the CVE-2019-11072 fix
new 9c4d7a9 glib-2.0: Backport the CVE-2019-12450 fix
new 021c8ae nasm: fix CVE-2018-19755
new 49dca79 nasm: fix CVE-2019-14248
new a8adb7d go: fix CVE-2019-17596
new 86f196d base.bbclass: add dependency on pseudo from do_prepare_recipe_sysroot
new 7f8f018 sysstat: fix CVE-2019-19725
new ca4fc78 lz4: Whitelist CVE-2014-4715
new 7c51ca8 iputils: Whitelist CVE-2000-1213 CVE-2000-1214
new d328696 systemd: Whitelist CVE-2018-21029 CVE-2019-3843 CVE-2019-3844
new 9160dc4 systemd: Upgrade to a more recent snapshot from the 241 branch
new 3402c00 openssl: Upgrade 1.1.1b -> 1.1.1c
new d9f1bfe openssl: Upgrade 1.1.1c -> 1.1.1d
new b9fb291 openssl: Enable os option for with-rand-seed as well
new 8e76d25 openssl: Whitelist CVE-2019-0190
new 392e029 openssl: fix CVE-2019-1551
new 9b92d5f populate_sdk_ext.bbclass: No longer needed to clean away conf/sanity_info
new a63d59f sanity.bbclass: Move sanity_info from conf to cache
The 29 revisions listed above as "new" are entirely new to this
repository and will be described in separate emails. The revisions
listed as "add" were already present in the repository and have only
been added to this reference.
Summary of changes:
meta/classes/base.bbclass | 1 +
meta/classes/populate_sdk_ext.bbclass | 2 +-
meta/classes/sanity.bbclass | 2 +-
meta/lib/oeqa/buildperf/base.py | 2 +-
meta/recipes-connectivity/bind/bind_9.11.5-P4.bb | 4 +
.../openssl/openssl/CVE-2019-1543.patch | 69 --
.../openssl/openssl/CVE-2019-1551.patch | 758 +++++++++++++++++++++
.../openssl/openssl/afalg.patch | 6 +-
.../{openssl_1.1.1b.bb => openssl_1.1.1d.bb} | 16 +-
...-ignore-management-frame-from-unexpected-.patch | 82 +++
.../wpa-supplicant/wpa-supplicant_2.7.bb | 1 +
...-gfile-Limit-access-to-files-when-copying.patch | 57 ++
meta/recipes-core/glib-2.0/glib-2.0_2.58.3.bb | 1 +
meta/recipes-core/glibc/glibc/CVE-2019-19126.patch | 32 +
meta/recipes-core/glibc/glibc_2.29.bb | 1 +
meta/recipes-core/systemd/systemd.inc | 9 +-
meta/recipes-devtools/binutils/binutils-2.32.inc | 2 +
.../binutils/binutils/CVE-2019-17450.patch | 99 +++
.../binutils/binutils/CVE-2019-17451.patch | 51 ++
meta/recipes-devtools/gdb/gdb-8.2.1.inc | 1 +
.../gdb/gdb/CVE-2019-1010180.patch | 132 ++++
meta/recipes-devtools/go/go-1.12.inc | 1 +
.../go/go-1.12/0010-fix-CVE-2019-17596.patch | 42 ++
.../nasm/nasm/CVE-2018-19755.patch | 116 ++++
.../nasm/nasm/CVE-2019-14248.patch | 43 ++
meta/recipes-devtools/nasm/nasm_2.14.02.bb | 5 +-
meta/recipes-devtools/python/python.inc | 13 +
.../python/{python3_3.7.5.bb => python3_3.7.6.bb} | 9 +-
meta/recipes-extended/iputils/iputils_s20180629.bb | 4 +
.../libarchive/libarchive/CVE-2019-19221.patch | 101 +++
.../libarchive/libarchive_3.3.3.bb | 1 +
...re-fix-abort-in-http-parseopts-fixes-2945.patch | 54 ++
meta/recipes-extended/lighttpd/lighttpd_1.4.53.bb | 1 +
.../sysstat/sysstat/CVE-2019-19725.patch | 28 +
meta/recipes-extended/sysstat/sysstat_12.1.3.bb | 4 +-
meta/recipes-support/lz4/lz4_1.8.3.bb | 3 +
36 files changed, 1667 insertions(+), 86 deletions(-)
delete mode 100644 meta/recipes-connectivity/openssl/openssl/CVE-2019-1543.patch
create mode 100644 meta/recipes-connectivity/openssl/openssl/CVE-2019-1551.patch
rename meta/recipes-connectivity/openssl/{openssl_1.1.1b.bb => openssl_1.1.1d.bb} (92%)
create mode 100644 meta/recipes-connectivity/wpa-supplicant/wpa-supplicant/0001-AP-Silently-ignore-management-frame-from-unexpected-.patch
create mode 100644 meta/recipes-core/glib-2.0/glib-2.0/0001-gfile-Limit-access-to-files-when-copying.patch
create mode 100644 meta/recipes-core/glibc/glibc/CVE-2019-19126.patch
create mode 100644 meta/recipes-devtools/binutils/binutils/CVE-2019-17450.patch
create mode 100644 meta/recipes-devtools/binutils/binutils/CVE-2019-17451.patch
create mode 100644 meta/recipes-devtools/gdb/gdb/CVE-2019-1010180.patch
create mode 100644 meta/recipes-devtools/go/go-1.12/0010-fix-CVE-2019-17596.patch
create mode 100644 meta/recipes-devtools/nasm/nasm/CVE-2018-19755.patch
create mode 100644 meta/recipes-devtools/nasm/nasm/CVE-2019-14248.patch
rename meta/recipes-devtools/python/{python3_3.7.5.bb => python3_3.7.6.bb} (97%)
create mode 100644 meta/recipes-extended/libarchive/libarchive/CVE-2019-19221.patch
create mode 100644 meta/recipes-extended/lighttpd/lighttpd/0001-core-fix-abort-in-http-parseopts-fixes-2945.patch
create mode 100644 meta/recipes-extended/sysstat/sysstat/CVE-2019-19725.patch
--
To stop receiving notification emails like this one, please contact
the administrator of this repository.
More information about the Openembedded-commits
mailing list