[OE-core] [warrior 00/29] Merge request
Armin Kuster
akuster808 at gmail.com
Sun Jan 26 16:24:25 UTC 2020
Please consider this for warrior.
All changes have already been posted on list
The following changes since commit 279c4da2e5f46dccfeff0c898c2205940be9e174:
stress: update SRC_URI (2020-01-11 19:39:37 -0800)
are available in the Git repository at:
git://git.openembedded.org/openembedded-core-contrib stable/warrior-next
http://cgit.openembedded.org//log/?h=stable/warrior-next
Adrian Bunk (13):
python: Whitelist CVE-2017-17522 CVE-2017-18207 CVE-2015-5652
python/python3: Whitelist CVE-2019-18348
python3: Upgrade 3.7.5 -> 3.7.6
bind: Whitelist CVE-2019-6470
lighttpd: Backport the CVE-2019-11072 fix
glib-2.0: Backport the CVE-2019-12450 fix
lz4: Whitelist CVE-2014-4715
iputils: Whitelist CVE-2000-1213 CVE-2000-1214
systemd: Whitelist CVE-2018-21029 CVE-2019-3843 CVE-2019-3844
systemd: Upgrade to a more recent snapshot from the 241 branch
openssl: Upgrade 1.1.1b -> 1.1.1c
openssl: Upgrade 1.1.1c -> 1.1.1d
openssl: Whitelist CVE-2019-0190
Anuj Mittal (6):
libarchive: fix CVE-2019-19221
glibc: fix CVE-2019-19126
nasm: fix CVE-2018-19755
nasm: fix CVE-2019-14248
sysstat: fix CVE-2019-19725
openssl: fix CVE-2019-1551
Hongxu Jia (1):
go: fix CVE-2019-17596
Joshua Watt (1):
python3: RDEPEND on libgcc
Khem Raj (1):
openssl: Enable os option for with-rand-seed as well
Mattias Hansson (1):
base.bbclass: add dependency on pseudo from do_prepare_recipe_sysroot
Peter Kjellerstedt (2):
populate_sdk_ext.bbclass: No longer needed to clean away
conf/sanity_info
sanity.bbclass: Move sanity_info from conf to cache
Ross Burton (1):
wpa-supplicant: fix CVE-2019-16275
Trevor Gamblin (2):
binutils: fix CVE-2019-17450
binutils: fix CVE-2019-17451
Vinay Kumar (1):
gdb: Fix CVE-2019-1010180
meta/classes/base.bbclass | 1 +
meta/classes/populate_sdk_ext.bbclass | 2 +-
meta/classes/sanity.bbclass | 2 +-
meta/lib/oeqa/buildperf/base.py | 2 +-
.../bind/bind_9.11.5-P4.bb | 4 +
.../openssl/openssl/CVE-2019-1543.patch | 69 --
.../openssl/openssl/CVE-2019-1551.patch | 758 ++++++++++++++++++
.../openssl/openssl/afalg.patch | 6 +-
.../{openssl_1.1.1b.bb => openssl_1.1.1d.bb} | 16 +-
...re-management-frame-from-unexpected-.patch | 82 ++
.../wpa-supplicant/wpa-supplicant_2.7.bb | 1 +
...e-Limit-access-to-files-when-copying.patch | 57 ++
meta/recipes-core/glib-2.0/glib-2.0_2.58.3.bb | 1 +
.../glibc/glibc/CVE-2019-19126.patch | 32 +
meta/recipes-core/glibc/glibc_2.29.bb | 1 +
meta/recipes-core/systemd/systemd.inc | 9 +-
.../binutils/binutils-2.32.inc | 2 +
.../binutils/binutils/CVE-2019-17450.patch | 99 +++
.../binutils/binutils/CVE-2019-17451.patch | 51 ++
meta/recipes-devtools/gdb/gdb-8.2.1.inc | 1 +
.../gdb/gdb/CVE-2019-1010180.patch | 132 +++
meta/recipes-devtools/go/go-1.12.inc | 1 +
.../go/go-1.12/0010-fix-CVE-2019-17596.patch | 42 +
.../nasm/nasm/CVE-2018-19755.patch | 116 +++
.../nasm/nasm/CVE-2019-14248.patch | 43 +
meta/recipes-devtools/nasm/nasm_2.14.02.bb | 5 +-
meta/recipes-devtools/python/python.inc | 13 +
.../{python3_3.7.5.bb => python3_3.7.6.bb} | 9 +-
.../iputils/iputils_s20180629.bb | 4 +
.../libarchive/CVE-2019-19221.patch | 101 +++
.../libarchive/libarchive_3.3.3.bb | 1 +
...x-abort-in-http-parseopts-fixes-2945.patch | 54 ++
.../lighttpd/lighttpd_1.4.53.bb | 1 +
.../sysstat/sysstat/CVE-2019-19725.patch | 28 +
.../sysstat/sysstat_12.1.3.bb | 4 +-
meta/recipes-support/lz4/lz4_1.8.3.bb | 3 +
36 files changed, 1667 insertions(+), 86 deletions(-)
delete mode 100644 meta/recipes-connectivity/openssl/openssl/CVE-2019-1543.patch
create mode 100644 meta/recipes-connectivity/openssl/openssl/CVE-2019-1551.patch
rename meta/recipes-connectivity/openssl/{openssl_1.1.1b.bb => openssl_1.1.1d.bb} (92%)
create mode 100644 meta/recipes-connectivity/wpa-supplicant/wpa-supplicant/0001-AP-Silently-ignore-management-frame-from-unexpected-.patch
create mode 100644 meta/recipes-core/glib-2.0/glib-2.0/0001-gfile-Limit-access-to-files-when-copying.patch
create mode 100644 meta/recipes-core/glibc/glibc/CVE-2019-19126.patch
create mode 100644 meta/recipes-devtools/binutils/binutils/CVE-2019-17450.patch
create mode 100644 meta/recipes-devtools/binutils/binutils/CVE-2019-17451.patch
create mode 100644 meta/recipes-devtools/gdb/gdb/CVE-2019-1010180.patch
create mode 100644 meta/recipes-devtools/go/go-1.12/0010-fix-CVE-2019-17596.patch
create mode 100644 meta/recipes-devtools/nasm/nasm/CVE-2018-19755.patch
create mode 100644 meta/recipes-devtools/nasm/nasm/CVE-2019-14248.patch
rename meta/recipes-devtools/python/{python3_3.7.5.bb => python3_3.7.6.bb} (97%)
create mode 100644 meta/recipes-extended/libarchive/libarchive/CVE-2019-19221.patch
create mode 100644 meta/recipes-extended/lighttpd/lighttpd/0001-core-fix-abort-in-http-parseopts-fixes-2945.patch
create mode 100644 meta/recipes-extended/sysstat/sysstat/CVE-2019-19725.patch
--
2.17.1
More information about the Openembedded-core
mailing list