[OE-core] [PATCH 0/7] Consolidated zeus pull request
Anuj Mittal
anuj.mittal at intel.com
Sun Nov 10 14:54:09 UTC 2019
a-full passing on autobuilder for the series.
Adrian Bunk (1):
python3: Upgrade 3.7.4 -> 3.7.5
Joe Slater (1):
libxslt: fix CVE-2019-18197
Ross Burton (4):
libpng: whitelist CVE-2019-17371
procps: whitelist CVE-2018-1121
libsndfile1: whitelist CVE-2018-13419
libpam: set CVE_PRODUCT
Trevor Gamblin (1):
libgcrypt: fix CVE-2019-13627
...lib-as-location-for-site-packages-an.patch | 2 +-
...nt-parse-domains-containing-GH-13079.patch | 132 ------------------
...asename-to-replace-CC-for-checking-c.patch | 2 +-
.../{python3_3.7.4.bb => python3_3.7.5.bb} | 5 +-
meta/recipes-extended/pam/libpam_1.3.1.bb | 2 +
meta/recipes-extended/procps/procps_3.3.15.bb | 9 +-
.../libpng/libpng_1.6.37.bb | 3 +
.../libsndfile/libsndfile1_1.0.28.bb | 4 +
...cdsa-Fix-use-of-nonce-use-larger-one.patch | 128 +++++++++++++++++
...Add-mitigation-against-timing-attack.patch | 70 ++++++++++
.../libgcrypt/libgcrypt_1.8.4.bb | 2 +
.../libxslt/files/CVE-2019-18197.patch | 33 +++++
.../recipes-support/libxslt/libxslt_1.1.33.bb | 1 +
13 files changed, 253 insertions(+), 140 deletions(-)
delete mode 100644 meta/recipes-devtools/python/python3/0001-bpo-34155-Dont-parse-domains-containing-GH-13079.patch
rename meta/recipes-devtools/python/{python3_3.7.4.bb => python3_3.7.5.bb} (98%)
create mode 100644 meta/recipes-support/libgcrypt/files/0001-dsa-ecdsa-Fix-use-of-nonce-use-larger-one.patch
create mode 100644 meta/recipes-support/libgcrypt/files/0001-ecc-Add-mitigation-against-timing-attack.patch
create mode 100644 meta/recipes-support/libxslt/files/CVE-2019-18197.patch
--
2.21.0
More information about the Openembedded-core
mailing list