Message ID | cover.1687446532.git.steve@sakoman.com |
---|---|
State | Not Applicable, archived |
Headers | show |
On Thu, Jun 22, 2023 at 5:31 PM Steve Sakoman <steve@sakoman.com> wrote: > Please review this set of changes for dunfell and have comments back by > end of day Monday. > > Passed a-full on autobuilder: > > https://autobuilder.yoctoproject.org/typhoon/#/builders/83/builds/5493 > > The following changes since commit > 77f6fbfa18b4ad77c3756cfdc45d441a20210781: > > build-appliance-image: Update to dunfell head revision (2023-06-17 > 09:47:49 -1000) > > are available in the Git repository at: > > https://git.openembedded.org/openembedded-core-contrib > stable/dunfell-nut > > http://cgit.openembedded.org/openembedded-core-contrib/log/?h=stable/dunfell-nut > > Abdellatif El Khlifi (1): > kernel-fitimage: adding support for Initramfs bundle and u-boot script > > Andrej Valek (1): > kernel-fitimage: use correct kernel image > > Hitendra Prajapati (1): > openssl: CVE-2023-2650 Possible DoS translating ASN.1 object > identifiers > > Ian Ray (1): > systemd-systemctl: support instance expansion in WantedBy > > Jan Vermaete (1): > cve-update-nvd2-native: added the missing http import > > Marta Rybczynska (1): > cve-update-nvd2-native: new CVE database fetcher > > Martin Siegumfeldt (1): > systemd-systemctl: fix instance template WantedBy symlink construction > > Michael Halstead (4): > uninative: Upgrade to 3.8.1 to include libgcc > uninative: Upgrade to 3.9 to include glibc 2.37 > uninative: Upgrade to 3.10 to support gcc 13 > uninative: Upgrade to 4.0 to include latest gcc 13.1.1 > > Richard Purdie (1): > uninative: Ensure uninative is enabled in all cases for BuildStarted > event > > Sanjay Chitroda (1): > cups: Fix CVE-2023-32324 > > Steve Sakoman (1): > uninative.bbclass: handle read only files outside of patchelf > > meta/classes/cve-check.bbclass | 4 +- > meta/classes/kernel-fitimage.bbclass | 142 ++++++-- > meta/classes/uninative.bbclass | 4 + > meta/conf/distro/include/yocto-uninative.inc | 10 +- > .../openssl/openssl/CVE-2023-2650.patch | 122 +++++++ > .../openssl/openssl_1.1.1t.bb | 1 + > .../meta/cve-update-nvd2-native.bb | 334 ++++++++++++++++++ > .../systemd/systemd-systemctl/systemctl | 8 +- > meta/recipes-extended/cups/cups.inc | 1 + > .../cups/cups/CVE-2023-32324.patch | 36 ++ > 10 files changed, 629 insertions(+), 33 deletions(-) > create mode 100644 > meta/recipes-connectivity/openssl/openssl/CVE-2023-2650.patch > create mode 100644 meta/recipes-core/meta/cve-update-nvd2-native.bb > create mode 100644 meta/recipes-extended/cups/cups/CVE-2023-32324.patch > > Tested this version for the CVE fetcher backport to dunfell, no unexpected issues seen. Kind regards, Marta