[OE-core] [warrior 00/28] Patch review
Armin Kuster
akuster808 at gmail.com
Mon Jan 13 15:29:59 UTC 2020
Please have review comments back by Wednesday
The following changes since commit 7009d823a0799ce7132bd77329b273a476718c8c:
python: update to 2.7.17 (2019-11-23 21:01:39 -0800)
are available in the Git repository at:
git://git.openembedded.org/openembedded-core-contrib stable/warrior-nut
http://cgit.openembedded.org//log/?h=stable/warrior-nut
Alexander Kanavin (1):
sudo: correct SRC_URI
Anuj Mittal (1):
openssl: set CVE vendor to openssl
Armin Kuster (1):
stress: update SRC_URI
Chen Qi (2):
libxfont2: set CVE_PRODUCT
webkitgtk: set CVE_PRODUCT
Ferry Toth (1):
sudo: Fix fetching sources
Khem Raj (1):
sdk: Install nativesdk locales for all TCLIBC variants
Niko Mauno (1):
cve-check: Switch to NVD CVE JSON feed version 1.1
Oleksandr Kravchuk (1):
popt: fix SRC_URI
Ross Burton (18):
flex: set CVE_PRODUCT to include vendor
git: set CVE vendor to git-scm
subversion: set CVE vendor to Apache
ed: set CVE vendor to avoid false positives
boost: set CVE vendor to Boost
libpam: set CVE_PRODUCT
libsndfile1: whitelist CVE-2018-13419
procps: whitelist CVE-2018-1121
cve-check: ensure all known CVEs are in the report
cve-check: failure to parse versions should be more visible
cve-check: we don't actually need to unpack to check
cve-update-db-native: don't refresh more than once an hour
cve-update-db-native: don't hardcode the database name
cve-update-db-native: add an index on the CVE ID column
cve-update-db-native: clean up proxy handling
cve-check: rewrite look to fix false negatives
cve-check: neaten get_cve_info
cve-check: fetch CVE data once at a time instead of in a single call
Zang Ruochen (1):
libpcap: upgrade 1.9.0 -> 1.9.1
meta/classes/cve-check.bbclass | 105 +++++++++---------
meta/lib/oe/sdk.py | 4 -
...-add-missing-limits.h-for-musl-syste.patch | 29 -----
.../{libpcap_1.9.0.bb => libpcap_1.9.1.bb} | 5 +-
.../openssl/openssl_1.1.1b.bb | 2 +
.../recipes-core/meta/cve-update-db-native.bb | 46 +++-----
meta/recipes-devtools/flex/flex_2.6.0.bb | 3 +
meta/recipes-devtools/git/git.inc | 2 +
.../subversion/subversion_1.11.1.bb | 2 +
meta/recipes-extended/ed/ed_1.15.bb | 2 +
meta/recipes-extended/pam/libpam_1.3.0.bb | 2 +
meta/recipes-extended/procps/procps_3.3.15.bb | 3 +
meta/recipes-extended/stress/stress_1.0.4.bb | 2 +-
meta/recipes-extended/sudo/sudo_1.8.27.bb | 2 +-
.../xorg-lib/libxfont2_2.0.3.bb | 2 +
.../libsndfile/libsndfile1_1.0.28.bb | 3 +
meta/recipes-sato/webkit/webkitgtk_2.22.7.bb | 2 +
meta/recipes-support/boost/boost.inc | 2 +
meta/recipes-support/popt/popt_1.16.bb | 2 +-
19 files changed, 101 insertions(+), 119 deletions(-)
delete mode 100644 meta/recipes-connectivity/libpcap/libpcap/0001-pcap-usb-linux.c-add-missing-limits.h-for-musl-syste.patch
rename meta/recipes-connectivity/libpcap/{libpcap_1.9.0.bb => libpcap_1.9.1.bb} (88%)
--
2.17.1
More information about the Openembedded-core
mailing list