dunfell merge request: March 19th

Message ID	dcbbd8eb-4864-7514-563b-a79f722e820e@gmail.com
State	New
Headers	show Return-Path: <akuster808@gmail.com> ip: 209.85.219.42, mailfrom: akuster808@gmail.com) Message-ID: <dcbbd8eb-4864-7514-563b-a79f722e820e@gmail.com> Date: Sun, 19 Mar 2023 08:08:49 -0400 MIME-Version: 1.0 User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:102.0) Gecko/20100101 Thunderbird/102.7.1 Content-Language: en-US To: Khem Raj <raj.khem@gmail.com>, OpenEmbedded Devel List <openembedded-devel@lists.openembedded.org> From: akuster808 <akuster808@gmail.com> Subject: dunfell merge request: March 19th Content-Type: text/plain; charset=UTF-8; format=flowed Content-Transfer-Encoding: 8bit
Series	dunfell merge request: March 19th \| expand dunfell merge request: March 19th

Message ID

dcbbd8eb-4864-7514-563b-a79f722e820e@gmail.com

State

New

Headers

Message-ID: <dcbbd8eb-4864-7514-563b-a79f722e820e@gmail.com>
Date: Sun, 19 Mar 2023 08:08:49 -0400
MIME-Version: 1.0
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:102.0) Gecko/20100101
 Thunderbird/102.7.1
Content-Language: en-US
To: Khem Raj <raj.khem@gmail.com>,
 OpenEmbedded Devel List <openembedded-devel@lists.openembedded.org>
From: akuster808 <akuster808@gmail.com>
Subject: dunfell merge request: March 19th
Content-Type: text/plain; charset=UTF-8; format=flowed
Content-Transfer-Encoding: 8bit

Series

dunfell merge request: March 19th | expand

Message

akuster808 March 19, 2023, 12:08 p.m. UTC

The following changes since commit 87571345059f82fb7599e3aa82e6fdcfbd361098:

   zeromq: 4.3.2 -> 4.3.4 (2023-02-22 11:24:23 -0500)

are available in the Git repository at:

   https://git.openembedded.org/meta-openembedded dunfell-next

for you to fetch changes up to 7ae42df58f2bcc730153715c3339a6875b0b2497:

   xterm: Remove undeclared variables introduced by backport (2023-03-18 
16:16:42 -0400)

----------------------------------------------------------------
Chris Rogers (1):
       xterm: Remove undeclared variables introduced by backport

Poonam Jadhav (4):
       nodejs: Fix CVE-2022-32212
       nodejs: Fix CVE-2022-35255
       nodejs: Fix CVE-2022-43548
       nodejs: Fix CVEs for nodejs

Priyal Doshi (1):
       open-vm-tools: Security fix for CVE-2022-31676

  meta-oe/recipes-devtools/nodejs/nodejs/CVE-2022-32212.patch     | 133 +
  meta-oe/recipes-devtools/nodejs/nodejs/CVE-2022-35255.patch     | 237 ++
  meta-oe/recipes-devtools/nodejs/nodejs/CVE-2022-43548.patch     | 214 ++
  meta-oe/recipes-devtools/nodejs/nodejs/CVE-llhttp.patch         | 4348 
+++++++++++++++++++++++++++
  meta-oe/recipes-devtools/nodejs/nodejs_12.22.12.bb |    4 +
  meta-oe/recipes-graphics/xorg-app/xterm/CVE-2022-45063.patch    | 21 +-
  ...1-Properly-check-authorization-on-incoming-guestOps-re.patch | 39 +
  meta-oe/recipes-support/open-vm-tools/open-vm-tools_11.0.1.bb |    1 +
  8 files changed, 4982 insertions(+), 15 deletions(-)
  create mode 100644 
meta-oe/recipes-devtools/nodejs/nodejs/CVE-2022-32212.patch
  create mode 100644 
meta-oe/recipes-devtools/nodejs/nodejs/CVE-2022-35255.patch
  create mode 100644 
meta-oe/recipes-devtools/nodejs/nodejs/CVE-2022-43548.patch
  create mode 100644 meta-oe/recipes-devtools/nodejs/nodejs/CVE-llhttp.patch
  create mode 100644 
meta-oe/recipes-support/open-vm-tools/open-vm-tools/0001-Properly-check-authorization-on-incoming-guestOps-re.patch

Comments

Khem Raj March 19, 2023, 4:19 p.m. UTC | #1

applied thanks.

On Sun, Mar 19, 2023 at 5:08 AM akuster808 <akuster808@gmail.com> wrote:
>
> The following changes since commit 87571345059f82fb7599e3aa82e6fdcfbd361098:
>
>    zeromq: 4.3.2 -> 4.3.4 (2023-02-22 11:24:23 -0500)
>
> are available in the Git repository at:
>
>    https://git.openembedded.org/meta-openembedded dunfell-next
>
> for you to fetch changes up to 7ae42df58f2bcc730153715c3339a6875b0b2497:
>
>    xterm: Remove undeclared variables introduced by backport (2023-03-18
> 16:16:42 -0400)
>
> ----------------------------------------------------------------
> Chris Rogers (1):
>        xterm: Remove undeclared variables introduced by backport
>
> Poonam Jadhav (4):
>        nodejs: Fix CVE-2022-32212
>        nodejs: Fix CVE-2022-35255
>        nodejs: Fix CVE-2022-43548
>        nodejs: Fix CVEs for nodejs
>
> Priyal Doshi (1):
>        open-vm-tools: Security fix for CVE-2022-31676
>
>   meta-oe/recipes-devtools/nodejs/nodejs/CVE-2022-32212.patch     | 133 +
>   meta-oe/recipes-devtools/nodejs/nodejs/CVE-2022-35255.patch     | 237 ++
>   meta-oe/recipes-devtools/nodejs/nodejs/CVE-2022-43548.patch     | 214 ++
>   meta-oe/recipes-devtools/nodejs/nodejs/CVE-llhttp.patch         | 4348
> +++++++++++++++++++++++++++
>   meta-oe/recipes-devtools/nodejs/nodejs_12.22.12.bb |    4 +
>   meta-oe/recipes-graphics/xorg-app/xterm/CVE-2022-45063.patch    | 21 +-
>   ...1-Properly-check-authorization-on-incoming-guestOps-re.patch | 39 +
>   meta-oe/recipes-support/open-vm-tools/open-vm-tools_11.0.1.bb |    1 +
>   8 files changed, 4982 insertions(+), 15 deletions(-)
>   create mode 100644
> meta-oe/recipes-devtools/nodejs/nodejs/CVE-2022-32212.patch
>   create mode 100644
> meta-oe/recipes-devtools/nodejs/nodejs/CVE-2022-35255.patch
>   create mode 100644
> meta-oe/recipes-devtools/nodejs/nodejs/CVE-2022-43548.patch
>   create mode 100644 meta-oe/recipes-devtools/nodejs/nodejs/CVE-llhttp.patch
>   create mode 100644
> meta-oe/recipes-support/open-vm-tools/open-vm-tools/0001-Properly-check-authorization-on-incoming-guestOps-re.patch
>

dunfell merge request: March 19th

Pull-request

Message

Comments