kirkstone merge request: Sept 9th

Message ID	03a2bd82-a804-4794-9d1d-c42cc2f51cf8@gmail.com
State	New
Headers	show Return-Path: <akuster808@gmail.com> ip: 209.85.219.180, mailfrom: akuster808@gmail.com) Message-ID: <03a2bd82-a804-4794-9d1d-c42cc2f51cf8@gmail.com> Date: Mon, 9 Sep 2024 15:07:50 -0400 MIME-Version: 1.0 User-Agent: Mozilla Thunderbird Content-Language: en-US To: Khem Raj <raj.khem@gmail.com>, OpenEmbedded Devel List <openembedded-devel@lists.openembedded.org> From: akuster808 <akuster808@gmail.com> Subject: kirkstone merge request: Sept 9th Autocrypt: addr=akuster808@gmail.com; keydata= xsDNBGNNaZMBDAC6/Mhpw3EGOOTPtIpcUHT4lI974zN/QqccMPxH4oyBPRJbjVImYs9avXwV Ae9xoWKMM/vocEZWm6SOESZSGf+7l05Eo6MxU50cIQh0/bcOcdDAtFRDk4pZIL6X7vGzvFe6 17tfNwKrTPgDFSSvq6XLUOqukInaVMHPeZum5GNnfuJswSDEQdxGTgudLWhCYwwoJ1AsVhg1 nJXjQLOGUHFAZPYMhTak5jFXwG+CFzJ1OPpoAfcjQGYEYY5k5Yr1dESl/zgZSwwRLAAXo6JZ lm1rdd0c54XG4ah6fvZkd8r05uBVvbvmrdw5OohqqWzMq7RB9DAsszLvOaxN1epwUYnpkQ6x yYRBQxt766hLxtW6+bIXUZdinUsc0cD+MlLfynTzpT3eJPhvU9EtpTkA7hlFtHrhENRlT5rE F1ZCGykIhg5J/BL/JO3AISgliu0pPLg9r6tgZKu8r2LBf05LJ1vT2P1wVwlzpAdgHKAmTDF8 MFEASfeJ4o9TrVFGbt8+cA0AEQEAAc0hYWt1c3RlcjgwOCA8YWt1c3RlcjgwOEBnbWFpbC5j b20+wsEHBBMBCAAxFiEEztCAddKAZuvtYngBeSnycbzrke8FAmNNaZQCGwMECwkIBwUVCAkK CwUWAgMBAAAKCRB5KfJxvOuR703oDAC4coUucV3gE+pNQAJcNWqIQwZHiwxbMy2fBgvTP0bx TQj6ZFl4tkiXGydUy9c2lcOj4XfaJuG85Z24IIJE0d8hWZMOZkSv5bmyB/NxbM5xRnPkHb6M n58wMSRCfNj/fsOoJE9nj5s41ktg1CA9QFBl9Dt0/8J/Mq+TxOKqYvzL4L8KEIw9nsi/yHQX ukXDwI2V01hTPZ6P7a4cZsjuvzCVN/WK2N3LzoVhQZHOOHGgx3h8XmsXMZ2ZxKjIdFTO2gFS 48zXa4+LW/ZyJIUlnBIUdSnpS826wSq6Zn3TyvLJrFD3KSviX0N48htIfiYFJmTcGdDU+Zqr wKnPQWdZXgWLsv+3deGZ8z0UCdt3n/OSwRML3gFfYd7QBLazXIkFyplFmgOLwXkf+YifwSbu P3KTOpYN9bcl1Og2zU1dPTEg7RndDAvRUUA+XWrp7VM5gZgc0UFRNkrf4CZhxuMwATCJQVPj aII+TOxThBkx6NJqXD3tvlNozjLy4fLNZd8sAsrOwM0EY01plAEMAJ5IoQo1AbOAoMYUytqx zi1uOQa+ak48yVg4llEs55D9h9ANFEY8C5CyEYyXYKjHCgepUUHDRKIMIMxxzYLKDkd8bgvt +cmi1Jj36Wrzrf9qGFq5SvGL66IoUBCTsN64UexxbnNWMDF8qO2aXLvJZtfFJfYGc1ATDw8i 96pv+FpjE3N76RdYRSFv5UGRqSKhT6jGlVMHb+Z/h1BOIsEBmbtgCozzJ45zhOY9635B4D7w i6CB2Aau3/FycPrKk/ZvkSq28tGYWwuhr/fvfvowg+IeClP1oCdKbaWsEwkGTN/PsRM8dPPe n07jesJUgpiHCUTF9oY3wJ1a86otszmWbvtJieM7vOxP3YnzF/VVFgDhTzRS0VqAjNRNOMoF E7ENS8o7uj7jrrGPuuM9cOhuDqqHwla3Rh0VX+W0//8qGZJ61oGV9paoGUb4PoRqC8ZpLrMB Z+f1VQ4iH7rzSQTOLEqGMZ+A34266TtKZKgmBxyqgNFd1HEeO4PD46ycLpnZAQARAQABwsD2 BBgBCAAgFiEEztCAddKAZuvtYngBeSnycbzrke8FAmNNaZUCGwwACgkQeSnycbzrke+SWgv/ QvvX84fAHEl7dkhla/oPdqY2bULh+hOxpo3WZmFhHi+41z2GhOJ78S3mY3yD+O7rdXkQIgIu bZDOIBMJc0lY/qKfXGpFOg5b8/hW3pYdjmUP1NQmdFK4XRLRL4OhLttgxVgO2yqDtlt9x1o3 RLgTSJNsy/gQzUJw4m1zYs9qPRz7xglHwrn0OdDwgk6UofiS31cTZgz7txdNJ5pMNEOcjsaD KE+3jd6mAOz/VTG7mH3/5z0t+g9onQmfxBFpgxSM8HVtmjT4KWkqqUJzyXLtawbxhdv+fcUv 5qUSr9ktwA8NJHmIHHcXBqiZLtLWFMJrdsgTFvjCXmTpm3ncsHS9L+JLVwIVCmUQUUCN1LhG itDSpYIEGrZObj82rX1wvxf/ZQ8VXS+owIR2F4yeeqPH/CyrPA1ASdtt+Am28/dJ2krr72at J++uLxA0cein1kjcosFDpQscnDcPzohnGyyjgEd6VwelZboIS1jt4lIa1badtV+cWMGMgM8W ApZ86eOP Content-Type: text/plain; charset=UTF-8; format=flowed Content-Transfer-Encoding: 8bit
Series	kirkstone merge request: Sept 9th \| expand kirkstone merge request: Sept 9th

Message ID

03a2bd82-a804-4794-9d1d-c42cc2f51cf8@gmail.com

State

New

Headers

Message-ID: <03a2bd82-a804-4794-9d1d-c42cc2f51cf8@gmail.com>
Date: Mon, 9 Sep 2024 15:07:50 -0400
MIME-Version: 1.0
User-Agent: Mozilla Thunderbird
Content-Language: en-US
To: Khem Raj <raj.khem@gmail.com>,
 OpenEmbedded Devel List <openembedded-devel@lists.openembedded.org>
From: akuster808 <akuster808@gmail.com>
Subject: kirkstone merge request: Sept 9th
Autocrypt: addr=akuster808@gmail.com; keydata=
 xsDNBGNNaZMBDAC6/Mhpw3EGOOTPtIpcUHT4lI974zN/QqccMPxH4oyBPRJbjVImYs9avXwV
 Ae9xoWKMM/vocEZWm6SOESZSGf+7l05Eo6MxU50cIQh0/bcOcdDAtFRDk4pZIL6X7vGzvFe6
 17tfNwKrTPgDFSSvq6XLUOqukInaVMHPeZum5GNnfuJswSDEQdxGTgudLWhCYwwoJ1AsVhg1
 nJXjQLOGUHFAZPYMhTak5jFXwG+CFzJ1OPpoAfcjQGYEYY5k5Yr1dESl/zgZSwwRLAAXo6JZ
 lm1rdd0c54XG4ah6fvZkd8r05uBVvbvmrdw5OohqqWzMq7RB9DAsszLvOaxN1epwUYnpkQ6x
 yYRBQxt766hLxtW6+bIXUZdinUsc0cD+MlLfynTzpT3eJPhvU9EtpTkA7hlFtHrhENRlT5rE
 F1ZCGykIhg5J/BL/JO3AISgliu0pPLg9r6tgZKu8r2LBf05LJ1vT2P1wVwlzpAdgHKAmTDF8
 MFEASfeJ4o9TrVFGbt8+cA0AEQEAAc0hYWt1c3RlcjgwOCA8YWt1c3RlcjgwOEBnbWFpbC5j
 b20+wsEHBBMBCAAxFiEEztCAddKAZuvtYngBeSnycbzrke8FAmNNaZQCGwMECwkIBwUVCAkK
 CwUWAgMBAAAKCRB5KfJxvOuR703oDAC4coUucV3gE+pNQAJcNWqIQwZHiwxbMy2fBgvTP0bx
 TQj6ZFl4tkiXGydUy9c2lcOj4XfaJuG85Z24IIJE0d8hWZMOZkSv5bmyB/NxbM5xRnPkHb6M
 n58wMSRCfNj/fsOoJE9nj5s41ktg1CA9QFBl9Dt0/8J/Mq+TxOKqYvzL4L8KEIw9nsi/yHQX
 ukXDwI2V01hTPZ6P7a4cZsjuvzCVN/WK2N3LzoVhQZHOOHGgx3h8XmsXMZ2ZxKjIdFTO2gFS
 48zXa4+LW/ZyJIUlnBIUdSnpS826wSq6Zn3TyvLJrFD3KSviX0N48htIfiYFJmTcGdDU+Zqr
 wKnPQWdZXgWLsv+3deGZ8z0UCdt3n/OSwRML3gFfYd7QBLazXIkFyplFmgOLwXkf+YifwSbu
 P3KTOpYN9bcl1Og2zU1dPTEg7RndDAvRUUA+XWrp7VM5gZgc0UFRNkrf4CZhxuMwATCJQVPj
 aII+TOxThBkx6NJqXD3tvlNozjLy4fLNZd8sAsrOwM0EY01plAEMAJ5IoQo1AbOAoMYUytqx
 zi1uOQa+ak48yVg4llEs55D9h9ANFEY8C5CyEYyXYKjHCgepUUHDRKIMIMxxzYLKDkd8bgvt
 +cmi1Jj36Wrzrf9qGFq5SvGL66IoUBCTsN64UexxbnNWMDF8qO2aXLvJZtfFJfYGc1ATDw8i
 96pv+FpjE3N76RdYRSFv5UGRqSKhT6jGlVMHb+Z/h1BOIsEBmbtgCozzJ45zhOY9635B4D7w
 i6CB2Aau3/FycPrKk/ZvkSq28tGYWwuhr/fvfvowg+IeClP1oCdKbaWsEwkGTN/PsRM8dPPe
 n07jesJUgpiHCUTF9oY3wJ1a86otszmWbvtJieM7vOxP3YnzF/VVFgDhTzRS0VqAjNRNOMoF
 E7ENS8o7uj7jrrGPuuM9cOhuDqqHwla3Rh0VX+W0//8qGZJ61oGV9paoGUb4PoRqC8ZpLrMB
 Z+f1VQ4iH7rzSQTOLEqGMZ+A34266TtKZKgmBxyqgNFd1HEeO4PD46ycLpnZAQARAQABwsD2
 BBgBCAAgFiEEztCAddKAZuvtYngBeSnycbzrke8FAmNNaZUCGwwACgkQeSnycbzrke+SWgv/
 QvvX84fAHEl7dkhla/oPdqY2bULh+hOxpo3WZmFhHi+41z2GhOJ78S3mY3yD+O7rdXkQIgIu
 bZDOIBMJc0lY/qKfXGpFOg5b8/hW3pYdjmUP1NQmdFK4XRLRL4OhLttgxVgO2yqDtlt9x1o3
 RLgTSJNsy/gQzUJw4m1zYs9qPRz7xglHwrn0OdDwgk6UofiS31cTZgz7txdNJ5pMNEOcjsaD
 KE+3jd6mAOz/VTG7mH3/5z0t+g9onQmfxBFpgxSM8HVtmjT4KWkqqUJzyXLtawbxhdv+fcUv
 5qUSr9ktwA8NJHmIHHcXBqiZLtLWFMJrdsgTFvjCXmTpm3ncsHS9L+JLVwIVCmUQUUCN1LhG
 itDSpYIEGrZObj82rX1wvxf/ZQ8VXS+owIR2F4yeeqPH/CyrPA1ASdtt+Am28/dJ2krr72at
 J++uLxA0cein1kjcosFDpQscnDcPzohnGyyjgEd6VwelZboIS1jt4lIa1badtV+cWMGMgM8W
 ApZ86eOP
Content-Type: text/plain; charset=UTF-8; format=flowed
Content-Transfer-Encoding: 8bit

Series

kirkstone merge request: Sept 9th | expand

Message

Armin Kuster Sept. 9, 2024, 7:07 p.m. UTC

The following changes since commit 52ecd66835dcfd8b4e55c9cb6325908ccea6a4e7:

   nss: fix failed test of nss. (2024-07-30 09:45:11 -0400)

are available in the Git repository at:

   https://git.openembedded.org/meta-openembedded kirkstone-next

for you to fetch changes up to 9a24b7679810628b594cc5a9b52f77f53d37004f:

   python3-django: Upgrade 4.2.10 -> 4.2.15 (2024-08-25 18:12:52 -0400)

----------------------------------------------------------------
Ashish Sharma (1):
       nginx: Backport fix for CVE-2024-7347

Hitendra Prajapati (1):
       krb5: fix CVE-2024-26458 and CVE-2024-26461

Soumya Sambu (2):
       python3-django: Fix CVE-2024-42005
       python3-django: Upgrade 4.2.10 -> 4.2.15

Vijay Anusuri (1):
       postgresql: upgrade 14.11 -> 14.13

  .../krb5/krb5/CVE-2024-26458_CVE-2024-26461.patch               | 207 
++++++++++++++++++++++++++++
  meta-oe/recipes-connectivity/krb5/krb5_1.17.2.bb                | 1 +
  .../0001-configure.ac-bypass-autoconf-2.69-version-check.patch  | 4 +-
  .../postgresql/{postgresql_14.11.bb => postgresql_14.13.bb} |   2 +-
  .../recipes-devtools/python/python3-django/CVE-2024-42005.patch | 84 
+++++++++++
  meta-python/recipes-devtools/python/python3-django_2.2.28.bb    | 1 +
  .../{python3-django_4.2.10.bb => python3-django_4.2.15.bb} |   4 +-
  meta-webserver/recipes-httpd/nginx/files/CVE-2024-7347-1.patch  | 34 +++++
  meta-webserver/recipes-httpd/nginx/files/CVE-2024-7347-2.patch  | 52 
+++++++
  meta-webserver/recipes-httpd/nginx/nginx.inc                    | 2 +
  10 files changed, 386 insertions(+), 5 deletions(-)
  create mode 100644 
meta-oe/recipes-connectivity/krb5/krb5/CVE-2024-26458_CVE-2024-26461.patch
  rename meta-oe/recipes-dbs/postgresql/{postgresql_14.11.bb => 
postgresql_14.13.bb} (84%)
  create mode 100644 
meta-python/recipes-devtools/python/python3-django/CVE-2024-42005.patch
  rename meta-python/recipes-devtools/python/{python3-django_4.2.10.bb 
=> python3-django_4.2.15.bb} (59%)
  create mode 100644 
meta-webserver/recipes-httpd/nginx/files/CVE-2024-7347-1.patch
  create mode 100644 
meta-webserver/recipes-httpd/nginx/files/CVE-2024-7347-2.patch

Comments

Khem Raj Sept. 9, 2024, 7:18 p.m. UTC | #1

merged thanks Armin

On Mon, Sep 9, 2024 at 12:07 PM akuster808 <akuster808@gmail.com> wrote:
>
> The following changes since commit 52ecd66835dcfd8b4e55c9cb6325908ccea6a4e7:
>
>    nss: fix failed test of nss. (2024-07-30 09:45:11 -0400)
>
> are available in the Git repository at:
>
>    https://git.openembedded.org/meta-openembedded kirkstone-next
>
> for you to fetch changes up to 9a24b7679810628b594cc5a9b52f77f53d37004f:
>
>    python3-django: Upgrade 4.2.10 -> 4.2.15 (2024-08-25 18:12:52 -0400)
>
> ----------------------------------------------------------------
> Ashish Sharma (1):
>        nginx: Backport fix for CVE-2024-7347
>
> Hitendra Prajapati (1):
>        krb5: fix CVE-2024-26458 and CVE-2024-26461
>
> Soumya Sambu (2):
>        python3-django: Fix CVE-2024-42005
>        python3-django: Upgrade 4.2.10 -> 4.2.15
>
> Vijay Anusuri (1):
>        postgresql: upgrade 14.11 -> 14.13
>
>   .../krb5/krb5/CVE-2024-26458_CVE-2024-26461.patch               | 207
> ++++++++++++++++++++++++++++
>   meta-oe/recipes-connectivity/krb5/krb5_1.17.2.bb                | 1 +
>   .../0001-configure.ac-bypass-autoconf-2.69-version-check.patch  | 4 +-
>   .../postgresql/{postgresql_14.11.bb => postgresql_14.13.bb} |   2 +-
>   .../recipes-devtools/python/python3-django/CVE-2024-42005.patch | 84
> +++++++++++
>   meta-python/recipes-devtools/python/python3-django_2.2.28.bb    | 1 +
>   .../{python3-django_4.2.10.bb => python3-django_4.2.15.bb} |   4 +-
>   meta-webserver/recipes-httpd/nginx/files/CVE-2024-7347-1.patch  | 34 +++++
>   meta-webserver/recipes-httpd/nginx/files/CVE-2024-7347-2.patch  | 52
> +++++++
>   meta-webserver/recipes-httpd/nginx/nginx.inc                    | 2 +
>   10 files changed, 386 insertions(+), 5 deletions(-)
>   create mode 100644
> meta-oe/recipes-connectivity/krb5/krb5/CVE-2024-26458_CVE-2024-26461.patch
>   rename meta-oe/recipes-dbs/postgresql/{postgresql_14.11.bb =>
> postgresql_14.13.bb} (84%)
>   create mode 100644
> meta-python/recipes-devtools/python/python3-django/CVE-2024-42005.patch
>   rename meta-python/recipes-devtools/python/{python3-django_4.2.10.bb
> => python3-django_4.2.15.bb} (59%)
>   create mode 100644
> meta-webserver/recipes-httpd/nginx/files/CVE-2024-7347-1.patch
>   create mode 100644
> meta-webserver/recipes-httpd/nginx/files/CVE-2024-7347-2.patch
>

kirkstone merge request: Sept 9th

Pull-request

Message

Comments