Message ID | e1bc65d1-660e-4430-9adf-2d63989b2fe1@gmail.com |
---|---|
State | Accepted, archived |
Headers | show |
Series | dunfell merge request: Dec 17th | expand |
merged thanks Armin On Sun, Dec 17, 2023 at 12:45 PM akuster808 <akuster808@gmail.com> wrote: > > The following changes since commit 9135c7ea7350d5d241f4afc3b28087122ebe2d19: > > glmark2: fix compatibility with python-3.11 (2023-11-12 10:42:03 -0500) > > are available in the Git repository at: > > https://git.openembedded.org/meta-openembedded dunfell-next > > for you to fetch changes up to fc632d5bb0936e91e4e0191547b9aa8ca47b4ffe: > > wireshark: fix CVE-2022-4345 multiple (BPv6, OpenFlow, and Kafka > protocol) dissector infinite loops (2023-12-17 15:36:42 -0500) > > ---------------------------------------------------------------- > Ashish Sharma (1): > apache2: Backport fix for CVE-2023-45802 > > Bartosz Golaszewski (1): > python3-cson: fix run-time dependencies > > Davide Gardenal (2): > usrsctp: add CVE_VERSION to correctly check for CVEs > openflow: ignore CVE-2018-1078 > > Frieder Schrempf (1): > spirv-tools: Use main branch for all repos > > Hitendra Prajapati (3): > wireshark: Fix CVE-2022-0585-CVE-2023-2879 > php: CVE-2022-4900 fix potential buffer overflow > samba: fix CVE-2023-42669 denial of service > > Jasper Orschulko (1): > nginx: Mitigate HTTP/2 Stream Resets Flood impact > > Khem Raj (2): > emlog: Add PV > meta-python-image,meta-python-ptest-image: Use python3 packagegroups > > Richard Purdie (3): > meta-oe: Drop broken BBCLASSEXTEND variants > meta-perl: Drop broken BBCLASSEXTEND variants > meta-python: Drop broken BBCLASSEXTEND variants > > Vijay Anusuri (1): > traceroute: upgrade 2.1.0 -> 2.1.3 > > Yoann Congal (2): > emlog: ignore inapplicable CVEs > libusbmuxd: Add PV > > vkumbhar (2): > squid: fix CVE-2023-46847 Denial of Service in HTTP Digest > Authentication > wireshark: fix CVE-2022-4345 multiple (BPv6, OpenFlow, and Kafka > protocol) dissector infinite loops > > .../recipes-connectivity/samba/samba/CVE-2023-42669.patch | 93 > ++++++++++++++++++ > meta-networking/recipes-connectivity/samba/samba_4.10.18.bb | 1 + > .../recipes-daemons/squid/files/CVE-2023-46847.patch | 47 > ++++++++++ > meta-networking/recipes-daemons/squid/squid_4.9.bb | 1 + > meta-networking/recipes-protocols/openflow/openflow.inc | 4 + > meta-networking/recipes-protocols/usrsctp/usrsctp_git.bb | 2 + > .../traceroute/{traceroute_2.1.0.bb => traceroute_2.1.3.bb} | 3 +- > .../wireshark/files/CVE-2022-0585-CVE-2023-2879.patch | 93 > ++++++++++++++++++ > .../recipes-support/wireshark/files/CVE-2022-4345.patch | 52 > ++++++++++ > meta-networking/recipes-support/wireshark/wireshark_3.2.18.bb | 2 + > .../dynamic-layers/meta-python/recipes-support/smem/smem_1.5.bb | 2 - > meta-oe/recipes-connectivity/ser2net/ser2net_4.1.8.bb | 2 - > meta-oe/recipes-connectivity/zeromq/czmq_4.2.0.bb | 3 - > meta-oe/recipes-core/emlog/emlog.inc | 2 +- > meta-oe/recipes-core/emlog/emlog_git.bb | 13 +++ > meta-oe/recipes-devtools/nanopb/nanopb_0.4.0.bb | 2 +- > meta-oe/recipes-devtools/php/php/CVE-2022-4900.patch | 48 > ++++++++++ > meta-oe/recipes-devtools/php/php_7.4.33.bb | 1 + > meta-oe/recipes-extended/libimobiledevice/libusbmuxd_git.bb | 1 + > meta-oe/recipes-graphics/spir/spirv-tools_git.bb | 6 +- > meta-oe/recipes-graphics/xorg-app/xgamma_1.0.6.bb | 2 - > meta-oe/recipes-graphics/xorg-app/xkbutils_1.0.4.bb | 2 - > meta-oe/recipes-graphics/xorg-app/xsetroot_1.1.2.bb | 1 - > meta-oe/recipes-printing/cups/cups-filters.inc | 8 -- > .../recipes-perl/libconfig/libconfig-autoconf-perl_0.318.bb | 2 +- > meta-perl/recipes-perl/libio/libio-socket-ssl-perl_2.068.bb | 2 - > meta-perl/recipes-perl/libnet/libnet-dns-perl_1.24.bb | 2 - > meta-perl/recipes-perl/libnet/libnet-ldap-perl_0.66.bb | 2 - > meta-perl/recipes-perl/libstatgrab/libunix-statgrab_0.112.bb | 2 - > meta-python/recipes-core/images/meta-python-image.bb | 3 +- > meta-python/recipes-core/images/meta-python-ptest-image.bb | 2 +- > meta-python/recipes-devtools/python/python-pint.inc | 2 - > meta-python/recipes-devtools/python/python3-cmd2_0.9.23.bb | 2 - > meta-python/recipes-devtools/python/python3-matplotlib_3.2.1.bb | 2 - > meta-python/recipes-devtools/python/python3-pillow_6.2.1.bb | 2 - > meta-python/recipes-devtools/python/python3-pyflakes_2.1.1.bb | 2 - > .../python/python3-robotframework-seriallibrary_0.3.1.bb | 2 - > meta-python/recipes-extended/python-cson/python3-cson_git.bb | 3 +- > .../recipes-httpd/apache2/apache2/CVE-2023-45802.patch | 141 > ++++++++++++++++++++++++++++ > meta-webserver/recipes-httpd/apache2/apache2_2.4.57.bb | 1 + > .../files/0001-HTTP-2-per-iteration-stream-handling-limit.patch | 92 > ++++++++++++++++++ > meta-webserver/recipes-httpd/nginx/nginx_1.16.1.bb | 1 + > meta-webserver/recipes-httpd/nginx/nginx_1.17.8.bb | 2 + > 43 files changed, 605 insertions(+), 53 deletions(-) > create mode 100644 > meta-networking/recipes-connectivity/samba/samba/CVE-2023-42669.patch > create mode 100644 > meta-networking/recipes-daemons/squid/files/CVE-2023-46847.patch > rename meta-networking/recipes-support/traceroute/{traceroute_2.1.0.bb > => traceroute_2.1.3.bb} (92%) > create mode 100644 > meta-networking/recipes-support/wireshark/files/CVE-2022-0585-CVE-2023-2879.patch > create mode 100644 > meta-networking/recipes-support/wireshark/files/CVE-2022-4345.patch > create mode 100644 meta-oe/recipes-devtools/php/php/CVE-2022-4900.patch > create mode 100644 > meta-webserver/recipes-httpd/apache2/apache2/CVE-2023-45802.patch > create mode 100644 > meta-webserver/recipes-httpd/nginx/files/0001-HTTP-2-per-iteration-stream-handling-limit.patch >