mbox series

kirkstone merge request: April 28th

Message ID 8848eecd-9588-40ab-8806-0cafc2cf7554@gmail.com
State New
Headers show
Series kirkstone merge request: April 28th | expand

Pull-request

https://git.openembedded.org/meta-openembedded kirkstone-next

Message

akuster808 April 28, 2024, 5:14 p.m. UTC 
The following changes since commit 8bb16533532b6abc2eded7d9961ab2a108fd7a5b:

   dnsmasq: Upgrade 2.87 -> 2.90 (2024-03-25 07:11:05 -0400)

are available in the Git repository at:

   https://git.openembedded.org/meta-openembedded kirkstone-next

for you to fetch changes up to 5a6f7925bd2b885955c942573f70a5594f231563:

   python3-twisted: Add python3-typing-extensions to RDEPENDS 
(2024-04-28 13:10:23 -0400)

----------------------------------------------------------------
Ashish Sharma (1):
       wireshark: Backport fix for CVE-2024-2955

Derek Straka (1):
       python3-pyyaml-include: add initial recipe for version 1.3.2

Hains van den Bosch (2):
       python3-twisted: Add python3-asyncio to RDEPENDS
       python3-twisted: Add python3-typing-extensions to RDEPENDS

Hitendra Prajapati (1):
       wireshark: fix CVE-2023-6175

Mingli Yu (1):
       python3-pyyaml-include: Upgrade 1.3.2 -> 1.4.1

Rahul Janani Pandi (3):
       python3-pillow: Fix CVE-2023-50447
       python3-django: fix CVE-2024-24680
       python3-aiohttp: Fix CVE-2024-23334

Rohini Sangam (1):
       xterm: Security fix for CVE-2023-40359

Soumya Sambu (2):
       iniparser: Fix CVE-2023-33461
       apache2: Upgrade v2.4.58 -> v2.4.59

Tim Orling (1):
       python3-pyyaml-include: switch to pytest --automake

Xiangyu Chen (1):
       bats: fix bats-format-pretty report error when multilib enabled

nikhil (1):
       giflib: Fix CVE CVE-2022-28506

  .../recipes-support/wireshark/files/CVE-2023-6175.patch         | 246 
++++++++++++++++++
  .../recipes-support/wireshark/files/CVE-2024-2955.patch         | 52 ++++
  meta-networking/recipes-support/wireshark/wireshark_3.4.12.bb   | 2 +
  meta-oe/recipes-devtools/giflib/files/CVE-2022-28506.patch      | 40 +++
  meta-oe/recipes-devtools/giflib/giflib_5.2.1.bb                 | 4 +-
  meta-oe/recipes-graphics/xorg-app/xterm/CVE-2023-40359.patch    | 388 
++++++++++++++++++++++++++++
  meta-oe/recipes-graphics/xorg-app/xterm_372.bb                  | 1 +
  .../recipes-support/iniparser/iniparser/CVE-2023-33461.patch    | 51 ++++
  meta-oe/recipes-support/iniparser/iniparser_4.1.bb              | 4 +-
  meta-oe/recipes-test/bats/bats_1.6.1.bb                         | 1 +
  .../python/python3-aiohttp/CVE-2024-23334.patch                 | 222 
++++++++++++++++
  meta-python/recipes-devtools/python/python3-aiohttp_3.8.6.bb    | 3 +
  .../recipes-devtools/python/python3-django/CVE-2024-24680.patch | 48 ++++
  meta-python/recipes-devtools/python/python3-django_2.2.28.bb    | 1 +
  .../python/python3-pillow/CVE-2023-50447-1.patch                | 29 +++
  .../python/python3-pillow/CVE-2023-50447-2.patch                | 31 +++
  .../python/python3-pillow/CVE-2023-50447-3.patch                | 56 ++++
  .../python/python3-pillow/CVE-2023-50447-4.patch                | 66 +++++
  meta-python/recipes-devtools/python/python3-pillow_9.4.0.bb     | 4 +
  .../recipes-devtools/python/python3-pyyaml-include/run-ptest    | 3 +
  .../recipes-devtools/python/python3-pyyaml-include_1.4.1.bb     | 29 +++
  meta-python/recipes-devtools/python/python3-twisted_22.2.0.bb   | 2 +
  .../0004-apache2-log-the-SELinux-context-at-startup.patch       | 16 +-
  .../apache2/0007-apache2-allow-to-disable-selinux-support.patch | 10 +-
  .../apache2/{apache2_2.4.58.bb => apache2_2.4.59.bb} |   2 +-
  25 files changed, 1295 insertions(+), 16 deletions(-)
  create mode 100644 
meta-networking/recipes-support/wireshark/files/CVE-2023-6175.patch
  create mode 100644 
meta-networking/recipes-support/wireshark/files/CVE-2024-2955.patch
  create mode 100644 
meta-oe/recipes-devtools/giflib/files/CVE-2022-28506.patch
  create mode 100644 
meta-oe/recipes-graphics/xorg-app/xterm/CVE-2023-40359.patch
  create mode 100644 
meta-oe/recipes-support/iniparser/iniparser/CVE-2023-33461.patch
  create mode 100644 
meta-python/recipes-devtools/python/python3-aiohttp/CVE-2024-23334.patch
  create mode 100644 
meta-python/recipes-devtools/python/python3-django/CVE-2024-24680.patch
  create mode 100644 
meta-python/recipes-devtools/python/python3-pillow/CVE-2023-50447-1.patch
  create mode 100644 
meta-python/recipes-devtools/python/python3-pillow/CVE-2023-50447-2.patch
  create mode 100644 
meta-python/recipes-devtools/python/python3-pillow/CVE-2023-50447-3.patch
  create mode 100644 
meta-python/recipes-devtools/python/python3-pillow/CVE-2023-50447-4.patch
  create mode 100755 
meta-python/recipes-devtools/python/python3-pyyaml-include/run-ptest
  create mode 100644 
meta-python/recipes-devtools/python/python3-pyyaml-include_1.4.1.bb
  rename meta-webserver/recipes-httpd/apache2/{apache2_2.4.58.bb => 
apache2_2.4.59.bb} (99%)

Comments

Khem Raj April 28, 2024, 5:55 p.m. UTC | #1 
merged thanks Armin.

On Sun, Apr 28, 2024 at 10:14 AM akuster808 <akuster808@gmail.com> wrote:
>
> The following changes since commit 8bb16533532b6abc2eded7d9961ab2a108fd7a5b:
>
>    dnsmasq: Upgrade 2.87 -> 2.90 (2024-03-25 07:11:05 -0400)
>
> are available in the Git repository at:
>
>    https://git.openembedded.org/meta-openembedded kirkstone-next
>
> for you to fetch changes up to 5a6f7925bd2b885955c942573f70a5594f231563:
>
>    python3-twisted: Add python3-typing-extensions to RDEPENDS
> (2024-04-28 13:10:23 -0400)
>
> ----------------------------------------------------------------
> Ashish Sharma (1):
>        wireshark: Backport fix for CVE-2024-2955
>
> Derek Straka (1):
>        python3-pyyaml-include: add initial recipe for version 1.3.2
>
> Hains van den Bosch (2):
>        python3-twisted: Add python3-asyncio to RDEPENDS
>        python3-twisted: Add python3-typing-extensions to RDEPENDS
>
> Hitendra Prajapati (1):
>        wireshark: fix CVE-2023-6175
>
> Mingli Yu (1):
>        python3-pyyaml-include: Upgrade 1.3.2 -> 1.4.1
>
> Rahul Janani Pandi (3):
>        python3-pillow: Fix CVE-2023-50447
>        python3-django: fix CVE-2024-24680
>        python3-aiohttp: Fix CVE-2024-23334
>
> Rohini Sangam (1):
>        xterm: Security fix for CVE-2023-40359
>
> Soumya Sambu (2):
>        iniparser: Fix CVE-2023-33461
>        apache2: Upgrade v2.4.58 -> v2.4.59
>
> Tim Orling (1):
>        python3-pyyaml-include: switch to pytest --automake
>
> Xiangyu Chen (1):
>        bats: fix bats-format-pretty report error when multilib enabled
>
> nikhil (1):
>        giflib: Fix CVE CVE-2022-28506
>
>   .../recipes-support/wireshark/files/CVE-2023-6175.patch         | 246
> ++++++++++++++++++
>   .../recipes-support/wireshark/files/CVE-2024-2955.patch         | 52 ++++
>   meta-networking/recipes-support/wireshark/wireshark_3.4.12.bb   | 2 +
>   meta-oe/recipes-devtools/giflib/files/CVE-2022-28506.patch      | 40 +++
>   meta-oe/recipes-devtools/giflib/giflib_5.2.1.bb                 | 4 +-
>   meta-oe/recipes-graphics/xorg-app/xterm/CVE-2023-40359.patch    | 388
> ++++++++++++++++++++++++++++
>   meta-oe/recipes-graphics/xorg-app/xterm_372.bb                  | 1 +
>   .../recipes-support/iniparser/iniparser/CVE-2023-33461.patch    | 51 ++++
>   meta-oe/recipes-support/iniparser/iniparser_4.1.bb              | 4 +-
>   meta-oe/recipes-test/bats/bats_1.6.1.bb                         | 1 +
>   .../python/python3-aiohttp/CVE-2024-23334.patch                 | 222
> ++++++++++++++++
>   meta-python/recipes-devtools/python/python3-aiohttp_3.8.6.bb    | 3 +
>   .../recipes-devtools/python/python3-django/CVE-2024-24680.patch | 48 ++++
>   meta-python/recipes-devtools/python/python3-django_2.2.28.bb    | 1 +
>   .../python/python3-pillow/CVE-2023-50447-1.patch                | 29 +++
>   .../python/python3-pillow/CVE-2023-50447-2.patch                | 31 +++
>   .../python/python3-pillow/CVE-2023-50447-3.patch                | 56 ++++
>   .../python/python3-pillow/CVE-2023-50447-4.patch                | 66 +++++
>   meta-python/recipes-devtools/python/python3-pillow_9.4.0.bb     | 4 +
>   .../recipes-devtools/python/python3-pyyaml-include/run-ptest    | 3 +
>   .../recipes-devtools/python/python3-pyyaml-include_1.4.1.bb     | 29 +++
>   meta-python/recipes-devtools/python/python3-twisted_22.2.0.bb   | 2 +
>   .../0004-apache2-log-the-SELinux-context-at-startup.patch       | 16 +-
>   .../apache2/0007-apache2-allow-to-disable-selinux-support.patch | 10 +-
>   .../apache2/{apache2_2.4.58.bb => apache2_2.4.59.bb} |   2 +-
>   25 files changed, 1295 insertions(+), 16 deletions(-)
>   create mode 100644
> meta-networking/recipes-support/wireshark/files/CVE-2023-6175.patch
>   create mode 100644
> meta-networking/recipes-support/wireshark/files/CVE-2024-2955.patch
>   create mode 100644
> meta-oe/recipes-devtools/giflib/files/CVE-2022-28506.patch
>   create mode 100644
> meta-oe/recipes-graphics/xorg-app/xterm/CVE-2023-40359.patch
>   create mode 100644
> meta-oe/recipes-support/iniparser/iniparser/CVE-2023-33461.patch
>   create mode 100644
> meta-python/recipes-devtools/python/python3-aiohttp/CVE-2024-23334.patch
>   create mode 100644
> meta-python/recipes-devtools/python/python3-django/CVE-2024-24680.patch
>   create mode 100644
> meta-python/recipes-devtools/python/python3-pillow/CVE-2023-50447-1.patch
>   create mode 100644
> meta-python/recipes-devtools/python/python3-pillow/CVE-2023-50447-2.patch
>   create mode 100644
> meta-python/recipes-devtools/python/python3-pillow/CVE-2023-50447-3.patch
>   create mode 100644
> meta-python/recipes-devtools/python/python3-pillow/CVE-2023-50447-4.patch
>   create mode 100755
> meta-python/recipes-devtools/python/python3-pyyaml-include/run-ptest
>   create mode 100644
> meta-python/recipes-devtools/python/python3-pyyaml-include_1.4.1.bb
>   rename meta-webserver/recipes-httpd/apache2/{apache2_2.4.58.bb =>
> apache2_2.4.59.bb} (99%)
>