| Message ID | 68215175-21a2-bd4e-fd1d-af4711dc4ad6@gmail.com |
|---|---|
| State | New |
| Headers | show |
| Series | dunfell merge request: July 14th | expand |
merged thanks Armin On Fri, Jul 14, 2023 at 4:16 AM akuster808 <akuster808@gmail.com> wrote: > > The following changes since commit 6334241447e461f849035c47f071fa4a2125fee1: > > c-ares: CVE-2023-31147 Insufficient randomness in generation of DNS > query IDs (2023-06-23 06:58:18 -0400) > > are available in the Git repository at: > > https://git.openembedded.org/meta-openembedded dunfell-next > > for you to fetch changes up to b5282ece919f016d91a1043769676efb02b4f0fb: > > openldap: fix CVE-2021-27212 Assertion failure in slapd (2023-07-14 > 07:08:54 -0400) > > ---------------------------------------------------------------- > Hitendra Prajapati (7): > wireshark: Fix Multiple CVEs > wireshark: Fix CVE-2023-0667 & CVE-2023-0668 > yajl: CVE-2023-33460 memory leak in yajl_tree_parse function > ntp: backport patch for 5 CVEs CVE-2023-26551/2/3/4/5 > multipath-tools: fix CVE-2022-41974 > quagga: CVE-2021-44038 unsafe chown/chmod operations may lead to > privileges escalation > openldap: fix CVE-2021-27212 Assertion failure in slapd > > Vijay Anusuri (1): > libssh: CVE-2020-16135 NULL pointer dereference in sftpserver.c > if ssh_buffer_new returns NULL > > virendra thakur (1): > c-ares: whitelist CVE-2023-31124 > > vkumbhar (1): > postgresql: fix CVE-2023-2454 & CVE-2023-2455 > > .../recipes-protocols/quagga/files/CVE-2021-44038.patch | 117 > ++++++++++ > meta-networking/recipes-protocols/quagga/quagga.inc | 2 +- > meta-networking/recipes-support/ntp/ntp/CVE-2023-2655x.patch | 340 > ++++++++++++++++++++++++++++ > meta-networking/recipes-support/ntp/ntp_4.2.8p15.bb | 10 +- > .../recipes-support/wireshark/files/CVE-2023-0667-pre1.patch | 153 > +++++++++++++ > .../recipes-support/wireshark/files/CVE-2023-0667.patch | 66 > ++++++ > .../recipes-support/wireshark/files/CVE-2023-0668.patch | 33 +++ > .../recipes-support/wireshark/files/CVE-2023-2855.patch | 117 > ++++++++++ > .../recipes-support/wireshark/files/CVE-2023-2856.patch | 68 > ++++++ > .../recipes-support/wireshark/files/CVE-2023-2858.patch | 94 > ++++++++ > .../recipes-support/wireshark/files/CVE-2023-2952.patch | 97 > ++++++++ > meta-networking/recipes-support/wireshark/wireshark_3.2.18.bb | 11 +- > meta-oe/recipes-dbs/postgresql/files/CVE-2023-2454.patch | 235 > +++++++++++++++++++ > meta-oe/recipes-dbs/postgresql/files/CVE-2023-2455.patch | 118 > ++++++++++ > meta-oe/recipes-dbs/postgresql/postgresql_12.9.bb | 2 + > meta-oe/recipes-devtools/yajl/yajl/CVE-2023-33460.patch | 29 +++ > meta-oe/recipes-devtools/yajl/yajl_2.1.0.bb | 4 +- > meta-oe/recipes-support/c-ares/c-ares_1.18.1.bb | 4 + > meta-oe/recipes-support/libssh/files/CVE-2020-16135-1.patch | 40 ++++ > meta-oe/recipes-support/libssh/files/CVE-2020-16135-2.patch | 42 ++++ > meta-oe/recipes-support/libssh/files/CVE-2020-16135-3.patch | 70 > ++++++ > meta-oe/recipes-support/libssh/files/CVE-2020-16135-4.patch | 34 +++ > meta-oe/recipes-support/libssh/libssh_0.8.9.bb | 8 +- > .../recipes-support/multipath-tools/files/CVE-2022-41974.patch | 162 > +++++++++++++ > .../recipes-support/multipath-tools/multipath-tools_0.8.4.bb | 1 + > meta-oe/recipes-support/openldap/openldap/CVE-2021-27212.patch | 31 +++ > meta-oe/recipes-support/openldap/openldap_2.4.57.bb | 1 + > 27 files changed, 1883 insertions(+), 6 deletions(-) > create mode 100644 > meta-networking/recipes-protocols/quagga/files/CVE-2021-44038.patch > create mode 100644 > meta-networking/recipes-support/ntp/ntp/CVE-2023-2655x.patch > create mode 100644 > meta-networking/recipes-support/wireshark/files/CVE-2023-0667-pre1.patch > create mode 100644 > meta-networking/recipes-support/wireshark/files/CVE-2023-0667.patch > create mode 100644 > meta-networking/recipes-support/wireshark/files/CVE-2023-0668.patch > create mode 100644 > meta-networking/recipes-support/wireshark/files/CVE-2023-2855.patch > create mode 100644 > meta-networking/recipes-support/wireshark/files/CVE-2023-2856.patch > create mode 100644 > meta-networking/recipes-support/wireshark/files/CVE-2023-2858.patch > create mode 100644 > meta-networking/recipes-support/wireshark/files/CVE-2023-2952.patch > create mode 100644 > meta-oe/recipes-dbs/postgresql/files/CVE-2023-2454.patch > create mode 100644 > meta-oe/recipes-dbs/postgresql/files/CVE-2023-2455.patch > create mode 100644 meta-oe/recipes-devtools/yajl/yajl/CVE-2023-33460.patch > create mode 100644 > meta-oe/recipes-support/libssh/files/CVE-2020-16135-1.patch > create mode 100644 > meta-oe/recipes-support/libssh/files/CVE-2020-16135-2.patch > create mode 100644 > meta-oe/recipes-support/libssh/files/CVE-2020-16135-3.patch > create mode 100644 > meta-oe/recipes-support/libssh/files/CVE-2020-16135-4.patch > create mode 100644 > meta-oe/recipes-support/multipath-tools/files/CVE-2022-41974.patch > create mode 100644 > meta-oe/recipes-support/openldap/openldap/CVE-2021-27212.patch >