[meta-oe,kirkstone,3/5] redis: upgrade 7.0.2 -> 7.0.4

Message ID	20220729150140.104164-3-akuster808@gmail.com
State	New
Headers	show Return-Path: <akuster808@gmail.com> ip: 209.85.216.43, mailfrom: akuster808@gmail.com) From: Armin Kuster <akuster808@gmail.com> To: openembedded-devel@lists.openembedded.org Cc: wangmy <wangmy@fujitsu.com>, Khem Raj <raj.khem@gmail.com> Subject: [meta-oe][kirkstone][PATCH 3/5] redis: upgrade 7.0.2 -> 7.0.4 Date: Fri, 29 Jul 2022 08:01:38 -0700 Message-Id: <20220729150140.104164-3-akuster808@gmail.com> In-Reply-To: <20220729150140.104164-1-akuster808@gmail.com> References: <20220729150140.104164-1-akuster808@gmail.com> MIME-Version: 1.0 Content-Transfer-Encoding: 8bit
Series	[meta-oe,kirkstone,1/5] stunnel: upgrade 5.63 -> 5.64 \| expand [meta-oe,kirkstone,1/5] stunnel: upgrade 5.63 -> 5.64 [meta-oe,kirkstone,2/5] stunnel: upgrade 5.64 -> 5.65 [meta-oe,kirkstone,3/5] redis: upgrade 7.0.2 -> 7.0.4 [meta-oe,kirkstone,4/5] tracker: upgrade 3.3.0 -> 3.3.1 [meta-oe,kirkstone,5/5] tracker: upgrade 3.3.1 -> 3.3.2

Message ID

20220729150140.104164-3-akuster808@gmail.com

State

New

Headers

From: Armin Kuster <akuster808@gmail.com>
To: openembedded-devel@lists.openembedded.org
Cc: wangmy <wangmy@fujitsu.com>,
	Khem Raj <raj.khem@gmail.com>
Subject: [meta-oe][kirkstone][PATCH 3/5] redis: upgrade 7.0.2 -> 7.0.4
Date: Fri, 29 Jul 2022 08:01:38 -0700
Message-Id: <20220729150140.104164-3-akuster808@gmail.com>
In-Reply-To: <20220729150140.104164-1-akuster808@gmail.com>
References: <20220729150140.104164-1-akuster808@gmail.com>
MIME-Version: 1.0
Content-Transfer-Encoding: 8bit

Series

[meta-oe,kirkstone,1/5] stunnel: upgrade 5.63 -> 5.64 | expand

Commit Message

akuster808 July 29, 2022, 3:01 p.m. UTC

From: wangmy <wangmy@fujitsu.com>

Changelog:
==========
Upgrade urgency: SECURITY, contains fixes to security issues.

Security Fixes:
----------------
    (CVE-2022-31144) A specially crafted XAUTOCLAIM command on a stream
    key in a specific state may result with heap overflow, and potentially
    remote code execution. The problem affects Redis versions 7.0.0 or newer.

Signed-off-by: Wang Mingyu <wangmy@fujitsu.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
(cherry picked from commit d9f8d015a45188c3cf2d6841ea05319032930dbc)
Signed-off-by: Armin Kuster <akuster808@gmail.com>
---
 .../recipes-extended/redis/{redis_7.0.2.bb => redis_7.0.4.bb}   | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)
 rename meta-oe/recipes-extended/redis/{redis_7.0.2.bb => redis_7.0.4.bb} (96%)

diff --git a/meta-oe/recipes-extended/redis/redis_7.0.2.bb b/meta-oe/recipes-extended/redis/redis_7.0.4.bb
similarity index 96%
rename from meta-oe/recipes-extended/redis/redis_7.0.2.bb
rename to meta-oe/recipes-extended/redis/redis_7.0.4.bb
index b188278e1c..993ff34b10 100644
--- a/meta-oe/recipes-extended/redis/redis_7.0.2.bb
+++ b/meta-oe/recipes-extended/redis/redis_7.0.4.bb
@@ -19,7 +19,7 @@  SRC_URI = "http://download.redis.io/releases/${BP}.tar.gz \
            file://GNU_SOURCE.patch \
            file://0006-Define-correct-gregs-for-RISCV32.patch \
            "
-SRC_URI[sha256sum] = "5e57eafe7d4ac5ecb6a7d64d6b61db775616dbf903293b3fcc660716dbda5eeb"
+SRC_URI[sha256sum] = "f0e65fda74c44a3dd4fa9d512d4d4d833dd0939c934e946a5c622a630d057f2f"
 
 inherit autotools-brokensep update-rc.d systemd useradd

[meta-oe,kirkstone,3/5] redis: upgrade 7.0.2 -> 7.0.4

Commit Message

Patch