| Message ID | 3ee2cd79-f05e-46bb-a33a-51415450b7d3@gmail.com |
|---|---|
| State | Accepted |
| Headers | show |
| Series | kirkstone merge request: Jan 13th | expand |
Merged. thanks Armin. On Sat, Jan 13, 2024 at 5:04 AM akuster808 <akuster808@gmail.com> wrote: > > The following changes since commit 402affcc073db39f782c1ebfd718edd5f11eed4c: > > squid: fix CVE-2023-46847 Denial of Service in HTTP Digest > Authentication (2023-12-13 13:35:51 -0500) > > are available in the Git repository at: > > https://git.openembedded.org/meta-openembedded kirkstone-next > > for you to fetch changes up to 730e44900a0a86265bad93a16b5a5ff344a07266: > > proftpd: Fix CVE-2023-51713 Out-of-bounds buffer read (2024-01-12 > 07:14:16 -0500) > > ---------------------------------------------------------------- > Archana Polampalli (3): > strongswan: upgrade 5.9.6 -> 5.9.12 > cjson: upgrade 1.7.15 -> 1.7.17 > samba: fix CVE-2023-42669 > > Hitendra Prajapati (1): > proftpd: Fix CVE-2023-51713 Out-of-bounds buffer read > > Jeffrey Pautler (1): > apache2: add vendor to product name used for CVE checking > > Martin Jansa (1): > glmark2: inherit python3native to fix build with python-3.12 on > build host > > Narpat Mali (4): > python3-django: Fix for CVE-2023-43665 and CVE-2023-46695 > python3-django: upgrade 3.2.21 -> 3.2.23 > python3-django: upgrade 4.2.5 -> 4.2.7 > apache2: upgrade 2.4.57 -> 2.4.58 > > Rob Woolley (2): > sip3: Add sipconfig.py > sip3: Add py_ssize_t_clean argument > > Soumya (1): > yasm: fix CVE-2023-37732 > > Wentao Zhang (1): > libbytesize: update github branch to 'main' > > dnyandev (1): > python3-pillow: Fix CVE-2023-44271 > > vkumbhar (2): > wireshark: fix CVE-2023-1992 RPCoRDMA dissector crash > wireshark: fix CVE-2022-4345 multiple (BPv6, OpenFlow, and Kafka > protocol) dissector infinite loops > > .../recipes-connectivity/samba/samba/CVE-2023-42669.patch | 94 + > meta-networking/recipes-connectivity/samba/samba_4.14.14.bb | 1 + > .../recipes-daemons/proftpd/files/CVE-2023-51713.patch | 277 + > meta-networking/recipes-daemons/proftpd/proftpd_1.3.7c.bb | 1 + > .../strongswan/{strongswan_5.9.6.bb => strongswan_5.9.12.bb} | 12 +- > .../recipes-support/wireshark/files/CVE-2022-4345.patch | 52 + > .../recipes-support/wireshark/files/CVE-2023-1992.patch | 61 + > meta-networking/recipes-support/wireshark/wireshark_3.4.12.bb | 2 + > meta-oe/recipes-benchmark/glmark2/glmark2_git.bb | 2 +- > .../recipes-devtools/cjson/{cjson_1.7.15.bb => cjson_1.7.17.bb} | 2 +- > ...-the-py_ssize_t_clean-argument-to-the-module-directive.patch | > 17679 ++++++++++++++++++++++++++ > meta-oe/recipes-devtools/sip/sip3_4.19.23.bb | 21 +- > meta-oe/recipes-devtools/yasm/yasm/CVE-2023-37732.patch | 41 + > meta-oe/recipes-devtools/yasm/yasm_git.bb | 1 + > meta-oe/recipes-support/libbytesize/libbytesize_2.6.bb | 2 +- > .../recipes-devtools/python/python3-django/CVE-2023-43665.patch | 199 + > .../recipes-devtools/python/python3-django/CVE-2023-46695.patch | 90 + > meta-python/recipes-devtools/python/python3-django_2.2.28.bb | 2 + > .../{python3-django_3.2.21.bb => python3-django_3.2.23.bb} | 4 +- > .../python/{python3-django_4.2.5.bb => python3-django_4.2.7.bb} | 4 +- > .../recipes-devtools/python/python3-pillow/CVE-2023-44271.patch | 156 + > meta-python/recipes-devtools/python/python3-pillow_9.4.0.bb | 1 + > ...1-modules-mappers-config9.m4-Add-server-directory-to-i.patch | 31 - > .../apache2/{apache2_2.4.57.bb => apache2_2.4.58.bb} | 5 +- > 24 files changed, 18693 insertions(+), 47 deletions(-) > create mode 100644 > meta-networking/recipes-connectivity/samba/samba/CVE-2023-42669.patch > create mode 100644 > meta-networking/recipes-daemons/proftpd/files/CVE-2023-51713.patch > rename meta-networking/recipes-support/strongswan/{strongswan_5.9.6.bb > => strongswan_5.9.12.bb} (96%) > create mode 100644 > meta-networking/recipes-support/wireshark/files/CVE-2022-4345.patch > create mode 100644 > meta-networking/recipes-support/wireshark/files/CVE-2023-1992.patch > rename meta-oe/recipes-devtools/cjson/{cjson_1.7.15.bb => > cjson_1.7.17.bb} (91%) > create mode 100644 > meta-oe/recipes-devtools/sip/sip3/added-the-py_ssize_t_clean-argument-to-the-module-directive.patch > create mode 100644 meta-oe/recipes-devtools/yasm/yasm/CVE-2023-37732.patch > create mode 100644 > meta-python/recipes-devtools/python/python3-django/CVE-2023-43665.patch > create mode 100644 > meta-python/recipes-devtools/python/python3-django/CVE-2023-46695.patch > rename meta-python/recipes-devtools/python/{python3-django_3.2.21.bb > => python3-django_3.2.23.bb} (61%) > rename meta-python/recipes-devtools/python/{python3-django_4.2.5.bb => > python3-django_4.2.7.bb} (61%) > create mode 100644 > meta-python/recipes-devtools/python/python3-pillow/CVE-2023-44271.patch > delete mode 100644 > meta-webserver/recipes-httpd/apache2/apache2/0011-modules-mappers-config9.m4-Add-server-directory-to-i.patch > rename meta-webserver/recipes-httpd/apache2/{apache2_2.4.57.bb => > apache2_2.4.58.bb} (97%) >
The following changes since commit 402affcc073db39f782c1ebfd718edd5f11eed4c: squid: fix CVE-2023-46847 Denial of Service in HTTP Digest Authentication (2023-12-13 13:35:51 -0500) are available in the Git repository at: https://git.openembedded.org/meta-openembedded kirkstone-next for you to fetch changes up to 730e44900a0a86265bad93a16b5a5ff344a07266: proftpd: Fix CVE-2023-51713 Out-of-bounds buffer read (2024-01-12 07:14:16 -0500) ---------------------------------------------------------------- Archana Polampalli (3): strongswan: upgrade 5.9.6 -> 5.9.12 cjson: upgrade 1.7.15 -> 1.7.17 samba: fix CVE-2023-42669 Hitendra Prajapati (1): proftpd: Fix CVE-2023-51713 Out-of-bounds buffer read Jeffrey Pautler (1): apache2: add vendor to product name used for CVE checking Martin Jansa (1): glmark2: inherit python3native to fix build with python-3.12 on build host Narpat Mali (4): python3-django: Fix for CVE-2023-43665 and CVE-2023-46695 python3-django: upgrade 3.2.21 -> 3.2.23 python3-django: upgrade 4.2.5 -> 4.2.7 apache2: upgrade 2.4.57 -> 2.4.58 Rob Woolley (2): sip3: Add sipconfig.py sip3: Add py_ssize_t_clean argument Soumya (1): yasm: fix CVE-2023-37732 Wentao Zhang (1): libbytesize: update github branch to 'main' dnyandev (1): python3-pillow: Fix CVE-2023-44271 vkumbhar (2): wireshark: fix CVE-2023-1992 RPCoRDMA dissector crash wireshark: fix CVE-2022-4345 multiple (BPv6, OpenFlow, and Kafka protocol) dissector infinite loops .../recipes-connectivity/samba/samba/CVE-2023-42669.patch | 94 + meta-networking/recipes-connectivity/samba/samba_4.14.14.bb | 1 + .../recipes-daemons/proftpd/files/CVE-2023-51713.patch | 277 + meta-networking/recipes-daemons/proftpd/proftpd_1.3.7c.bb | 1 + .../strongswan/{strongswan_5.9.6.bb => strongswan_5.9.12.bb} | 12 +- .../recipes-support/wireshark/files/CVE-2022-4345.patch | 52 + .../recipes-support/wireshark/files/CVE-2023-1992.patch | 61 + meta-networking/recipes-support/wireshark/wireshark_3.4.12.bb | 2 + meta-oe/recipes-benchmark/glmark2/glmark2_git.bb | 2 +- .../recipes-devtools/cjson/{cjson_1.7.15.bb => cjson_1.7.17.bb} | 2 +- ...-the-py_ssize_t_clean-argument-to-the-module-directive.patch | 17679 ++++++++++++++++++++++++++ meta-oe/recipes-devtools/sip/sip3_4.19.23.bb | 21 +- meta-oe/recipes-devtools/yasm/yasm/CVE-2023-37732.patch | 41 + meta-oe/recipes-devtools/yasm/yasm_git.bb | 1 + meta-oe/recipes-support/libbytesize/libbytesize_2.6.bb | 2 +- .../recipes-devtools/python/python3-django/CVE-2023-43665.patch | 199 + .../recipes-devtools/python/python3-django/CVE-2023-46695.patch | 90 + meta-python/recipes-devtools/python/python3-django_2.2.28.bb | 2 + .../{python3-django_3.2.21.bb => python3-django_3.2.23.bb} | 4 +- .../python/{python3-django_4.2.5.bb => python3-django_4.2.7.bb} | 4 +- .../recipes-devtools/python/python3-pillow/CVE-2023-44271.patch | 156 + meta-python/recipes-devtools/python/python3-pillow_9.4.0.bb | 1 + ...1-modules-mappers-config9.m4-Add-server-directory-to-i.patch | 31 - .../apache2/{apache2_2.4.57.bb => apache2_2.4.58.bb} | 5 +- 24 files changed, 18693 insertions(+), 47 deletions(-) create mode 100644 meta-networking/recipes-connectivity/samba/samba/CVE-2023-42669.patch create mode 100644 meta-networking/recipes-daemons/proftpd/files/CVE-2023-51713.patch rename meta-networking/recipes-support/strongswan/{strongswan_5.9.6.bb => strongswan_5.9.12.bb} (96%) create mode 100644 meta-networking/recipes-support/wireshark/files/CVE-2022-4345.patch create mode 100644 meta-networking/recipes-support/wireshark/files/CVE-2023-1992.patch rename meta-oe/recipes-devtools/cjson/{cjson_1.7.15.bb => cjson_1.7.17.bb} (91%) create mode 100644 meta-oe/recipes-devtools/sip/sip3/added-the-py_ssize_t_clean-argument-to-the-module-directive.patch create mode 100644 meta-oe/recipes-devtools/yasm/yasm/CVE-2023-37732.patch create mode 100644 meta-python/recipes-devtools/python/python3-django/CVE-2023-43665.patch create mode 100644 meta-python/recipes-devtools/python/python3-django/CVE-2023-46695.patch rename meta-python/recipes-devtools/python/{python3-django_3.2.21.bb => python3-django_3.2.23.bb} (61%) rename meta-python/recipes-devtools/python/{python3-django_4.2.5.bb => python3-django_4.2.7.bb} (61%) create mode 100644 meta-python/recipes-devtools/python/python3-pillow/CVE-2023-44271.patch delete mode 100644 meta-webserver/recipes-httpd/apache2/apache2/0011-modules-mappers-config9.m4-Add-server-directory-to-i.patch rename meta-webserver/recipes-httpd/apache2/{apache2_2.4.57.bb => apache2_2.4.58.bb} (97%)