[kirkstone,1/1] python3: Upgrade 3.10.14 -> 3.10.15

From: Divya Chellam <divya.chellam@windriver.com>

Includes security fixes for CVE-2024-7592, CVE-2024-4032, CVE-2024-8088
CVE-2024-6232, CVE-2024-6923 and other bug fixes.

Release Notes:
https://www.python.org/downloads/release/python-31015/

Signed-off-by: Divya Chellam <divya.chellam@windriver.com>
---
 .../python/{python3_3.10.14.bb => python3_3.10.15.bb}           | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)
 rename meta/recipes-devtools/python/{python3_3.10.14.bb => python3_3.10.15.bb} (99%)

This fails at build time:

ERROR: python3-3.10.15-r0 do_patch: Applying patch
'CVE-2024-8088.patch' on target directory
'/home/steve/builds/poky-contrib-kirkstone/build/tmp/work/core2-64-poky-linux/python3/3.10.15-r0/Python-3.10.15'
CmdError('quilt --quiltrc
/home/steve/builds/poky-contrib-kirkstone/build/tmp/work/core2-64-poky-linux/python3/3.10.15-r0/recipe-sysroot-native/etc/quiltrc
push', 0, 'stdout: Applying patch CVE-2024-8088.patch
patching file Lib/test/test_zipfile.py
Hunk #1 succeeded at 3331 with fuzz 2 (offset 51 lines).
patching file Lib/zipfile.py
Hunk #1 FAILED at 9.
Hunk #2 succeeded at 2188 (offset 6 lines).
1 out of 2 hunks FAILED -- rejects in file Lib/zipfile.py
Patch CVE-2024-8088.patch does not apply (enforce with -f)

stderr: ')
ERROR: Logfile of failure stored in:
/home/steve/builds/poky-contrib-kirkstone/build/tmp/work/core2-64-poky-linux/python3/3.10.15-r0/temp/log.do_patch.1201652
ERROR: Task (/home/steve/builds/poky-contrib-kirkstone/meta/recipes-devtools/python/python3_3.10.15.bb:do_patch)
failed with exit code '1'

You'll need to remove the CVE patches that are no longer required.
Please send a V2

Thanks,

Steve

On Wed, Sep 11, 2024 at 11:42 PM dchellam via lists.openembedded.org
<Divya.Chellam=windriver.com@lists.openembedded.org> wrote:
>
> From: Divya Chellam <divya.chellam@windriver.com>
>
> Includes security fixes for CVE-2024-7592, CVE-2024-4032, CVE-2024-8088
> CVE-2024-6232, CVE-2024-6923 and other bug fixes.
>
> Release Notes:
> https://www.python.org/downloads/release/python-31015/
>
> Signed-off-by: Divya Chellam <divya.chellam@windriver.com>
> ---
>  .../python/{python3_3.10.14.bb => python3_3.10.15.bb}           | 2 +-
>  1 file changed, 1 insertion(+), 1 deletion(-)
>  rename meta/recipes-devtools/python/{python3_3.10.14.bb => python3_3.10.15.bb} (99%)
>
> diff --git a/meta/recipes-devtools/python/python3_3.10.14.bb b/meta/recipes-devtools/python/python3_3.10.15.bb
> similarity index 99%
> rename from meta/recipes-devtools/python/python3_3.10.14.bb
> rename to meta/recipes-devtools/python/python3_3.10.15.bb
> index 14ab3f6155..e3b4dad180 100644
> --- a/meta/recipes-devtools/python/python3_3.10.14.bb
> +++ b/meta/recipes-devtools/python/python3_3.10.15.bb
> @@ -45,7 +45,7 @@ SRC_URI:append:class-native = " \
>             file://12-distutils-prefix-is-inside-staging-area.patch \
>             file://0001-Don-t-search-system-for-headers-libraries.patch \
>             "
> -SRC_URI[sha256sum] = "9c50481faa8c2832329ba0fc8868d0a606a680fc4f60ec48d26ce8e076751fda"
> +SRC_URI[sha256sum] = "aab0950817735172601879872d937c1e4928a57c409ae02369ec3d91dccebe79"
>
>  # exclude pre-releases for both python 2.x and 3.x
>  UPSTREAM_CHECK_REGEX = "[Pp]ython-(?P<pver>\d+(\.\d+)+).tar"
> --
> 2.40.0
>
>
> -=-=-=-=-=-=-=-=-=-=-=-
> Links: You receive all messages sent to this group.
> View/Reply Online (#204423): https://lists.openembedded.org/g/openembedded-core/message/204423
> Mute This Topic: https://lists.openembedded.org/mt/108408659/3620601
> Group Owner: openembedded-core+owner@lists.openembedded.org
> Unsubscribe: https://lists.openembedded.org/g/openembedded-core/unsub [steve@sakoman.com]
> -=-=-=-=-=-=-=-=-=-=-=-
>