| Message ID | cover.1657772638.git.steve@sakoman.com |
|---|---|
| State | Not Applicable, archived |
| Headers | show |
At this point I've only seen this on kirkstone, but I suspect it is only a matter of time before we see it on master too. So we should probably consider this for master too. Steve On Wed, Jul 13, 2022 at 6:36 PM Steve Sakoman via lists.openembedded.org <steve=sakoman.com@lists.openembedded.org> wrote: > > Autobuilder workers were non-deterministically enabling capstone > depending on whether the worker had libcapstone installed. > > Add PACKAGECONFIG for capstone with default off, since ruby does not > require capstone support. > > Signed-off-by: Steve Sakoman <steve@sakoman.com> > --- > meta/recipes-devtools/ruby/ruby_3.1.2.bb | 1 + > 1 file changed, 1 insertion(+) > > diff --git a/meta/recipes-devtools/ruby/ruby_3.1.2.bb b/meta/recipes-devtools/ruby/ruby_3.1.2.bb > index 38ba46731b..6fc1f53b18 100644 > --- a/meta/recipes-devtools/ruby/ruby_3.1.2.bb > +++ b/meta/recipes-devtools/ruby/ruby_3.1.2.bb > @@ -25,6 +25,7 @@ PACKAGECONFIG[ipv6] = "--enable-ipv6, --disable-ipv6," > # rdoc is off by default due to non-reproducibility reported in > # https://bugs.ruby-lang.org/issues/18456 > PACKAGECONFIG[rdoc] = "--enable-install-rdoc,--disable-install-rdoc," > +PACKAGECONFIG[capstone] = "--with-capstone=yes, --with-capstone=no" > > EXTRA_OECONF = "\ > --disable-versioned-paths \ > -- > 2.25.1 > > > -=-=-=-=-=-=-=-=-=-=-=- > Links: You receive all messages sent to this group. > View/Reply Online (#167998): https://lists.openembedded.org/g/openembedded-core/message/167998 > Mute This Topic: https://lists.openembedded.org/mt/92373433/3620601 > Group Owner: openembedded-core+owner@lists.openembedded.org > Unsubscribe: https://lists.openembedded.org/g/openembedded-core/unsub [steve@sakoman.com] > -=-=-=-=-=-=-=-=-=-=-=- >
On Wed, 2022-07-13 at 18:42 -1000, Steve Sakoman wrote: > At this point I've only seen this on kirkstone, but I suspect it is > only a matter of time before we see it on master too. So we should > probably consider this for master too. No probably about it, I've queued for testing! Cheers, Richard
Please review this set of patches for kirkstone and have comments back by end of day Friday. Passed a-full on autobuilder: https://autobuilder.yoctoproject.org/typhoon/#/builders/83/builds/3911 with the exception of an intermittent autobuilder issue on qemumips-alt which passed on subsequent retest: https://autobuilder.yoctoproject.org/typhoon/#/builders/102/builds/3279 The following changes since commit 4667abcc925ae0c430cccb480ec530506f6201ae: dropbear: break dependency on base package for -dev package (2022-07-01 08:35:07 -1000) are available in the Git repository at: git://git.openembedded.org/openembedded-core-contrib stable/kirkstone-nut http://cgit.openembedded.org/openembedded-core-contrib/log/?h=stable/kirkstone-nut Alexander Kanavin (6): openssl: update 3.0.4 -> 3.0.5 gstreamer1.0: upgrade 1.20.2 -> 1.20.3 weston: update 10.0.0 -> 10.0.1 glib-2.0: upgrade 2.72.2 -> 2.72.3 glib-networking: upgrade 2.72.0 -> 2.72.1 libsoup: upgrade 3.0.6 -> 3.0.7 Richard Purdie (2): qemu: Avoid accidental librdmacm linkage glibc-tests: Avoid reproducibility issues Ross Burton (2): tiff: backport the fix for CVE-2022-2056, CVE-2022-2057, and CVE-2022-2058 vim: upgrade to 9.0.0021 Sakib Sajal (1): u-boot: fix CVE-2022-34835 Steve Sakoman (3): ruby: add PACKAGECONFIG for capstone qemu: add PACKAGECONFIG for capstone qemu: Avoid accidental libvdeplug linkage Sundeep KOKKONDA (2): glibc: stable 2.35 branch updates binutils : stable 2.38 branch updates Wentao Zhang (1): harfbuzz: fix CVE-2022-33068 wangmy (10): gst-devtools: upgrade 1.20.2 -> 1.20.3 gstreamer1.0-libav: upgrade 1.20.2 -> 1.20.3 gstreamer1.0-omx: upgrade 1.20.2 -> 1.20.3 gstreamer1.0-plugins-bad: upgrade 1.20.2 -> 1.20.3 gstreamer1.0-plugins-base: upgrade 1.20.2 -> 1.20.3 gstreamer1.0-plugins-good: upgrade 1.20.2 -> 1.20.3 gstreamer1.0-plugins-ugly: upgrade 1.20.2 -> 1.20.3 gstreamer1.0-python: upgrade 1.20.2 -> 1.20.3 gstreamer1.0-rtsp-server: upgrade 1.20.2 -> 1.20.3 gstreamer1.0-vaapi: upgrade 1.20.2 -> 1.20.3 ...ffer-overflow-vulnerability-in-i2c-m.patch | 126 ++++++++++++ meta/recipes-bsp/u-boot/u-boot_2022.01.bb | 1 + .../{openssl_3.0.4.bb => openssl_3.0.5.bb} | 2 +- .../glib-2.0/glib-2.0/relocate-modules.patch | 2 +- ...{glib-2.0_2.72.2.bb => glib-2.0_2.72.3.bb} | 2 +- ...ng_2.72.0.bb => glib-networking_2.72.1.bb} | 2 +- meta/recipes-core/glibc/glibc-tests_2.35.bb | 3 + meta/recipes-core/glibc/glibc-version.inc | 2 +- .../glibc/glibc/reproducible-paths.patch | 23 +++ .../binutils/binutils-2.38.inc | 2 +- meta/recipes-devtools/qemu/qemu.inc | 3 + meta/recipes-devtools/ruby/ruby_3.1.2.bb | 1 + .../harfbuzz/harfbuzz/CVE-2022-33068.patch | 35 ++++ .../harfbuzz/harfbuzz_4.0.1.bb | 3 +- .../{weston_10.0.0.bb => weston_10.0.1.bb} | 4 +- ...tools_1.20.2.bb => gst-devtools_1.20.3.bb} | 2 +- ...1.20.2.bb => gstreamer1.0-libav_1.20.3.bb} | 2 +- ...x_1.20.2.bb => gstreamer1.0-omx_1.20.3.bb} | 2 +- ....bb => gstreamer1.0-plugins-bad_1.20.3.bb} | 2 +- ...bb => gstreamer1.0-plugins-base_1.20.3.bb} | 2 +- ...bb => gstreamer1.0-plugins-good_1.20.3.bb} | 2 +- ...bb => gstreamer1.0-plugins-ugly_1.20.3.bb} | 2 +- ....20.2.bb => gstreamer1.0-python_1.20.3.bb} | 2 +- ....bb => gstreamer1.0-rtsp-server_1.20.3.bb} | 2 +- ...1.20.2.bb => gstreamer1.0-vaapi_1.20.3.bb} | 2 +- ...er1.0_1.20.2.bb => gstreamer1.0_1.20.3.bb} | 2 +- ...-the-FPE-in-tiffcrop-415-427-and-428.patch | 182 ++++++++++++++++++ meta/recipes-multimedia/libtiff/tiff_4.3.0.bb | 1 + .../{libsoup_3.0.6.bb => libsoup_3.0.7.bb} | 2 +- meta/recipes-support/vim/vim.inc | 4 +- 30 files changed, 399 insertions(+), 23 deletions(-) create mode 100644 meta/recipes-bsp/u-boot/files/0001-i2c-fix-stack-buffer-overflow-vulnerability-in-i2c-m.patch rename meta/recipes-connectivity/openssl/{openssl_3.0.4.bb => openssl_3.0.5.bb} (99%) rename meta/recipes-core/glib-2.0/{glib-2.0_2.72.2.bb => glib-2.0_2.72.3.bb} (96%) rename meta/recipes-core/glib-networking/{glib-networking_2.72.0.bb => glib-networking_2.72.1.bb} (93%) create mode 100644 meta/recipes-core/glibc/glibc/reproducible-paths.patch create mode 100644 meta/recipes-graphics/harfbuzz/harfbuzz/CVE-2022-33068.patch rename meta/recipes-graphics/wayland/{weston_10.0.0.bb => weston_10.0.1.bb} (97%) rename meta/recipes-multimedia/gstreamer/{gst-devtools_1.20.2.bb => gst-devtools_1.20.3.bb} (95%) rename meta/recipes-multimedia/gstreamer/{gstreamer1.0-libav_1.20.2.bb => gstreamer1.0-libav_1.20.3.bb} (91%) rename meta/recipes-multimedia/gstreamer/{gstreamer1.0-omx_1.20.2.bb => gstreamer1.0-omx_1.20.3.bb} (95%) rename meta/recipes-multimedia/gstreamer/{gstreamer1.0-plugins-bad_1.20.2.bb => gstreamer1.0-plugins-bad_1.20.3.bb} (98%) rename meta/recipes-multimedia/gstreamer/{gstreamer1.0-plugins-base_1.20.2.bb => gstreamer1.0-plugins-base_1.20.3.bb} (97%) rename meta/recipes-multimedia/gstreamer/{gstreamer1.0-plugins-good_1.20.2.bb => gstreamer1.0-plugins-good_1.20.3.bb} (97%) rename meta/recipes-multimedia/gstreamer/{gstreamer1.0-plugins-ugly_1.20.2.bb => gstreamer1.0-plugins-ugly_1.20.3.bb} (94%) rename meta/recipes-multimedia/gstreamer/{gstreamer1.0-python_1.20.2.bb => gstreamer1.0-python_1.20.3.bb} (91%) rename meta/recipes-multimedia/gstreamer/{gstreamer1.0-rtsp-server_1.20.2.bb => gstreamer1.0-rtsp-server_1.20.3.bb} (90%) rename meta/recipes-multimedia/gstreamer/{gstreamer1.0-vaapi_1.20.2.bb => gstreamer1.0-vaapi_1.20.3.bb} (95%) rename meta/recipes-multimedia/gstreamer/{gstreamer1.0_1.20.2.bb => gstreamer1.0_1.20.3.bb} (97%) create mode 100644 meta/recipes-multimedia/libtiff/tiff/0001-fix-the-FPE-in-tiffcrop-415-427-and-428.patch rename meta/recipes-support/libsoup/{libsoup_3.0.6.bb => libsoup_3.0.7.bb} (94%)