| Message ID | 43576444-0a8a-4a50-baf9-5260bf0f2b33@gmail.com |
|---|---|
| State | New |
| Headers | show |
| Series | scarthgap merge request: Dec 31st | expand |
merged thanks Armin On Tue, Dec 31, 2024 at 4:15 AM akuster808 <akuster808@gmail.com> wrote: > > The following changes since commit b8d1a14f7f3b76457c36752202ea7ae5881b6654: > > freeradius: upgrade 3.2.3 -> 3.2.5 (2024-11-24 17:38:31 -0500) > > are available in the Git repository at: > > https://git.openembedded.org/meta-openembedded scarthgap-next > > for you to fetch changes up to 3c293e14492f01e22a64004e2330fb620c27578a: > > python3-tornado: Upgrade 6.4 -> 6.4.2 (2024-12-27 09:24:53 -0500) > > ---------------------------------------------------------------- > AmateurECE (1): > pipewire: Add glib-2.0-native dep for bluez5 > > Chen Qi (1): > protobuf: fix CVE-2024-7254 > > Fabrice Aeschbacher (1): > mosquitto: upgrade 2.0.18 -> 2.0.19 > > Jiaying Song (1): > xmlsec1: Switch SRC_URI to use github release > > Khem Raj (2): > ndisc: Remove buildpaths from binaries > ndisc6: Fix reproducible build > > Leon Anavi (1): > sip: Upgrade 6.8.3 -> 6.8.6 > > Libo Chen (1): > grpc: Fix CVE-2024-7246 > > Soumya Sambu (2): > python3-werkzeug: upgrade 3.0.3 -> 3.0.6 > python3-tornado: Upgrade 6.4 -> 6.4.2 > > Wang Mingyu (2): > redis: upgrade 7.2.4 -> 7.2.5 > mosquitto: upgrade 2.0.19 -> 2.0.20 > > Yi Zhao (2): > hostapd: Security fix for CVE-2023-52160 > redis: upgrade 7.2.5 -> 7.2.6 > > Yogita Urade (2): > php: upgrade 8.2.20 -> 8.2.24 > postgresql: upgrade 16.4 -> 16.5 > > Zhang Peng (6): > frr: fix CVE-2024-34088 > frr: fix CVE-2024-31950 > frr: fix CVE-2024-31951 > frr: fix CVE-2024-31948 > frr: fix CVE-2024-31949 > libgsf: upgrade 1.14.52 -> 1.14.53 > > hongxu (1): > p7zip: fix CVE-2023-52169 and CVE-2023-52168 > > .../libgsf/{libgsf_1.14.52.bb => libgsf_1.14.53.bb} | 4 +- > meta-multimedia/recipes-multimedia/pipewire/pipewire_1.0.5.bb | 2 +- > meta-networking/recipes-connectivity/mosquitto/files/1571.patch | 22 - > meta-networking/recipes-connectivity/mosquitto/files/2894.patch | 25 - > .../mosquitto/{mosquitto_2.0.18.bb => mosquitto_2.0.20.bb} | 4 +- > meta-networking/recipes-protocols/frr/frr/CVE-2024-31948.patch | 130 > +++++ > meta-networking/recipes-protocols/frr/frr/CVE-2024-31949.patch | 163 > ++++++ > meta-networking/recipes-protocols/frr/frr/CVE-2024-31950.patch | 68 +++ > meta-networking/recipes-protocols/frr/frr/CVE-2024-31951.patch | 110 ++++ > meta-networking/recipes-protocols/frr/frr/CVE-2024-34088.patch | 83 +++ > meta-networking/recipes-protocols/frr/frr_9.1.bb | 5 + > ...1-Remove-use-of-variables-indicating-buildtime-informa.patch | 85 +++ > meta-networking/recipes-support/ndisc6/ndisc6_1.0.8.bb | 5 + > .../recipes-connectivity/hostapd/hostapd/CVE-2023-52160.patch | 198 > +++++++ > meta-oe/recipes-connectivity/hostapd/hostapd_2.10.bb | 1 + > .../0003-configure.ac-bypass-autoconf-2.69-version-check.patch | 6 +- > .../postgresql/{postgresql_16.4.bb => postgresql_16.5.bb} | 2 +- > meta-oe/recipes-devtools/grpc/grpc/CVE-2024-7246.patch | 420 > +++++++++++++++ > meta-oe/recipes-devtools/grpc/grpc_1.60.1.bb | 1 + > .../php/php/0001-ext-opcache-config.m4-enable-opcache.patch | 15 +- > meta-oe/recipes-devtools/php/{php_8.2.20.bb => php_8.2.24.bb} | 2 +- > ...1-Add-recursion-check-when-parsing-unknown-fields-in-J.patch | 794 > ++++++++++++++++++++++++++++ > meta-oe/recipes-devtools/protobuf/protobuf_4.25.3.bb | 1 + > meta-oe/recipes-devtools/sip/{sip_6.8.3.bb => sip_6.8.6.bb} | 8 +- > .../files/0001-Fix-two-buffer-overflow-vulnerabilities.patch | 455 > ++++++++++++++++ > meta-oe/recipes-extended/p7zip/p7zip_16.02.bb | 1 + > .../0001-hiredis-use-default-CC-if-it-is-set.patch} | 7 +- > ...-lua-update-Makefile-to-use-environment-build-setting.patch} | 6 +- > .../0003-hack-to-force-use-of-libc-malloc.patch} | 7 +- > .../0004-src-Do-not-reset-FINAL_LIBS.patch} | 4 +- > ...5-Define-_GNU_SOURCE-to-get-PTHREAD_MUTEX_INITIALIZER.patch} | 6 +- > .../0006-Define-correct-gregs-for-RISCV32.patch | 4 +- > .../redis/{redis-7.2.4 => redis-7.2.6}/init-redis-server | 0 > .../redis/{redis-7.2.4 => redis-7.2.6}/redis.conf | 0 > .../redis/{redis-7.2.4 => redis-7.2.6}/redis.service | 0 > .../recipes-extended/redis/{redis_7.2.4.bb => redis_7.2.6.bb} | 17 +- > meta-oe/recipes-support/xmlsec1/xmlsec1_1.3.4.bb | 2 +- > .../python/{python3-tornado_6.4.bb => python3-tornado_6.4.2.bb} | 4 +- > .../{python3-werkzeug_3.0.3.bb => python3-werkzeug_3.0.6.bb} | 2 +- > 39 files changed, 2572 insertions(+), 97 deletions(-) > rename meta-gnome/recipes-gnome/libgsf/{libgsf_1.14.52.bb => > libgsf_1.14.53.bb} (72%) > delete mode 100644 > meta-networking/recipes-connectivity/mosquitto/files/1571.patch > delete mode 100644 > meta-networking/recipes-connectivity/mosquitto/files/2894.patch > rename > meta-networking/recipes-connectivity/mosquitto/{mosquitto_2.0.18.bb => > mosquitto_2.0.20.bb} (95%) > create mode 100644 > meta-networking/recipes-protocols/frr/frr/CVE-2024-31948.patch > create mode 100644 > meta-networking/recipes-protocols/frr/frr/CVE-2024-31949.patch > create mode 100644 > meta-networking/recipes-protocols/frr/frr/CVE-2024-31950.patch > create mode 100644 > meta-networking/recipes-protocols/frr/frr/CVE-2024-31951.patch > create mode 100644 > meta-networking/recipes-protocols/frr/frr/CVE-2024-34088.patch > create mode 100644 > meta-networking/recipes-support/ndisc6/ndisc6/0001-Remove-use-of-variables-indicating-buildtime-informa.patch > create mode 100644 > meta-oe/recipes-connectivity/hostapd/hostapd/CVE-2023-52160.patch > rename meta-oe/recipes-dbs/postgresql/{postgresql_16.4.bb => > postgresql_16.5.bb} (86%) > create mode 100644 meta-oe/recipes-devtools/grpc/grpc/CVE-2024-7246.patch > rename meta-oe/recipes-devtools/php/{php_8.2.20.bb => php_8.2.24.bb} (99%) > create mode 100644 > meta-oe/recipes-devtools/protobuf/protobuf/0001-Add-recursion-check-when-parsing-unknown-fields-in-J.patch > rename meta-oe/recipes-devtools/sip/{sip_6.8.3.bb => sip_6.8.6.bb} (64%) > create mode 100644 > meta-oe/recipes-extended/p7zip/files/0001-Fix-two-buffer-overflow-vulnerabilities.patch > rename > meta-oe/recipes-extended/redis/{redis-7.2.4/hiredis-use-default-CC-if-it-is-set.patch > => redis-7.2.6/0001-hiredis-use-default-CC-if-it-is-set.patch} (95%) > rename > meta-oe/recipes-extended/redis/{redis-7.2.4/lua-update-Makefile-to-use-environment-build-setting.patch > => > redis-7.2.6/0002-lua-update-Makefile-to-use-environment-build-setting.patch} > (97%) > rename > meta-oe/recipes-extended/redis/{redis-7.2.4/oe-use-libc-malloc.patch => > redis-7.2.6/0003-hack-to-force-use-of-libc-malloc.patch} (94%) > rename > meta-oe/recipes-extended/redis/{redis-7.2.4/0001-src-Do-not-reset-FINAL_LIBS.patch > => redis-7.2.6/0004-src-Do-not-reset-FINAL_LIBS.patch} (92%) > rename meta-oe/recipes-extended/redis/{redis-7.2.4/GNU_SOURCE-7.patch > => > redis-7.2.6/0005-Define-_GNU_SOURCE-to-get-PTHREAD_MUTEX_INITIALIZER.patch} > (88%) > rename meta-oe/recipes-extended/redis/{redis-7.2.4 => > redis-7.2.6}/0006-Define-correct-gregs-for-RISCV32.patch (97%) > rename meta-oe/recipes-extended/redis/{redis-7.2.4 => > redis-7.2.6}/init-redis-server (100%) > mode change 100755 => 100644 > rename meta-oe/recipes-extended/redis/{redis-7.2.4 => > redis-7.2.6}/redis.conf (100%) > rename meta-oe/recipes-extended/redis/{redis-7.2.4 => > redis-7.2.6}/redis.service (100%) > rename meta-oe/recipes-extended/redis/{redis_7.2.4.bb => > redis_7.2.6.bb} (81%) > rename meta-python/recipes-devtools/python/{python3-tornado_6.4.bb => > python3-tornado_6.4.2.bb} (90%) > rename meta-python/recipes-devtools/python/{python3-werkzeug_3.0.3.bb > => python3-werkzeug_3.0.6.bb} (90%) >
The following changes since commit b8d1a14f7f3b76457c36752202ea7ae5881b6654: freeradius: upgrade 3.2.3 -> 3.2.5 (2024-11-24 17:38:31 -0500) are available in the Git repository at: https://git.openembedded.org/meta-openembedded scarthgap-next for you to fetch changes up to 3c293e14492f01e22a64004e2330fb620c27578a: python3-tornado: Upgrade 6.4 -> 6.4.2 (2024-12-27 09:24:53 -0500) ---------------------------------------------------------------- AmateurECE (1): pipewire: Add glib-2.0-native dep for bluez5 Chen Qi (1): protobuf: fix CVE-2024-7254 Fabrice Aeschbacher (1): mosquitto: upgrade 2.0.18 -> 2.0.19 Jiaying Song (1): xmlsec1: Switch SRC_URI to use github release Khem Raj (2): ndisc: Remove buildpaths from binaries ndisc6: Fix reproducible build Leon Anavi (1): sip: Upgrade 6.8.3 -> 6.8.6 Libo Chen (1): grpc: Fix CVE-2024-7246 Soumya Sambu (2): python3-werkzeug: upgrade 3.0.3 -> 3.0.6 python3-tornado: Upgrade 6.4 -> 6.4.2 Wang Mingyu (2): redis: upgrade 7.2.4 -> 7.2.5 mosquitto: upgrade 2.0.19 -> 2.0.20 Yi Zhao (2): hostapd: Security fix for CVE-2023-52160 redis: upgrade 7.2.5 -> 7.2.6 Yogita Urade (2): php: upgrade 8.2.20 -> 8.2.24 postgresql: upgrade 16.4 -> 16.5 Zhang Peng (6): frr: fix CVE-2024-34088 frr: fix CVE-2024-31950 frr: fix CVE-2024-31951 frr: fix CVE-2024-31948 frr: fix CVE-2024-31949 libgsf: upgrade 1.14.52 -> 1.14.53 hongxu (1): p7zip: fix CVE-2023-52169 and CVE-2023-52168 .../libgsf/{libgsf_1.14.52.bb => libgsf_1.14.53.bb} | 4 +- meta-multimedia/recipes-multimedia/pipewire/pipewire_1.0.5.bb | 2 +- meta-networking/recipes-connectivity/mosquitto/files/1571.patch | 22 - meta-networking/recipes-connectivity/mosquitto/files/2894.patch | 25 - .../mosquitto/{mosquitto_2.0.18.bb => mosquitto_2.0.20.bb} | 4 +- meta-networking/recipes-protocols/frr/frr/CVE-2024-31948.patch | 130 +++++ meta-networking/recipes-protocols/frr/frr/CVE-2024-31949.patch | 163 ++++++ meta-networking/recipes-protocols/frr/frr/CVE-2024-31950.patch | 68 +++ meta-networking/recipes-protocols/frr/frr/CVE-2024-31951.patch | 110 ++++ meta-networking/recipes-protocols/frr/frr/CVE-2024-34088.patch | 83 +++ meta-networking/recipes-protocols/frr/frr_9.1.bb | 5 + ...1-Remove-use-of-variables-indicating-buildtime-informa.patch | 85 +++ meta-networking/recipes-support/ndisc6/ndisc6_1.0.8.bb | 5 + .../recipes-connectivity/hostapd/hostapd/CVE-2023-52160.patch | 198 +++++++ meta-oe/recipes-connectivity/hostapd/hostapd_2.10.bb | 1 + .../0003-configure.ac-bypass-autoconf-2.69-version-check.patch | 6 +- .../postgresql/{postgresql_16.4.bb => postgresql_16.5.bb} | 2 +- meta-oe/recipes-devtools/grpc/grpc/CVE-2024-7246.patch | 420 +++++++++++++++ meta-oe/recipes-devtools/grpc/grpc_1.60.1.bb | 1 + .../php/php/0001-ext-opcache-config.m4-enable-opcache.patch | 15 +- meta-oe/recipes-devtools/php/{php_8.2.20.bb => php_8.2.24.bb} | 2 +- ...1-Add-recursion-check-when-parsing-unknown-fields-in-J.patch | 794 ++++++++++++++++++++++++++++ meta-oe/recipes-devtools/protobuf/protobuf_4.25.3.bb | 1 + meta-oe/recipes-devtools/sip/{sip_6.8.3.bb => sip_6.8.6.bb} | 8 +- .../files/0001-Fix-two-buffer-overflow-vulnerabilities.patch | 455 ++++++++++++++++ meta-oe/recipes-extended/p7zip/p7zip_16.02.bb | 1 + .../0001-hiredis-use-default-CC-if-it-is-set.patch} | 7 +- ...-lua-update-Makefile-to-use-environment-build-setting.patch} | 6 +- .../0003-hack-to-force-use-of-libc-malloc.patch} | 7 +- .../0004-src-Do-not-reset-FINAL_LIBS.patch} | 4 +- ...5-Define-_GNU_SOURCE-to-get-PTHREAD_MUTEX_INITIALIZER.patch} | 6 +- .../0006-Define-correct-gregs-for-RISCV32.patch | 4 +- .../redis/{redis-7.2.4 => redis-7.2.6}/init-redis-server | 0 .../redis/{redis-7.2.4 => redis-7.2.6}/redis.conf | 0 .../redis/{redis-7.2.4 => redis-7.2.6}/redis.service | 0 .../recipes-extended/redis/{redis_7.2.4.bb => redis_7.2.6.bb} | 17 +- meta-oe/recipes-support/xmlsec1/xmlsec1_1.3.4.bb | 2 +- .../python/{python3-tornado_6.4.bb => python3-tornado_6.4.2.bb} | 4 +- .../{python3-werkzeug_3.0.3.bb => python3-werkzeug_3.0.6.bb} | 2 +- 39 files changed, 2572 insertions(+), 97 deletions(-) rename meta-gnome/recipes-gnome/libgsf/{libgsf_1.14.52.bb => libgsf_1.14.53.bb} (72%) delete mode 100644 meta-networking/recipes-connectivity/mosquitto/files/1571.patch delete mode 100644 meta-networking/recipes-connectivity/mosquitto/files/2894.patch rename meta-networking/recipes-connectivity/mosquitto/{mosquitto_2.0.18.bb => mosquitto_2.0.20.bb} (95%) create mode 100644 meta-networking/recipes-protocols/frr/frr/CVE-2024-31948.patch create mode 100644 meta-networking/recipes-protocols/frr/frr/CVE-2024-31949.patch create mode 100644 meta-networking/recipes-protocols/frr/frr/CVE-2024-31950.patch create mode 100644 meta-networking/recipes-protocols/frr/frr/CVE-2024-31951.patch create mode 100644 meta-networking/recipes-protocols/frr/frr/CVE-2024-34088.patch create mode 100644 meta-networking/recipes-support/ndisc6/ndisc6/0001-Remove-use-of-variables-indicating-buildtime-informa.patch create mode 100644 meta-oe/recipes-connectivity/hostapd/hostapd/CVE-2023-52160.patch rename meta-oe/recipes-dbs/postgresql/{postgresql_16.4.bb => postgresql_16.5.bb} (86%) create mode 100644 meta-oe/recipes-devtools/grpc/grpc/CVE-2024-7246.patch rename meta-oe/recipes-devtools/php/{php_8.2.20.bb => php_8.2.24.bb} (99%) create mode 100644 meta-oe/recipes-devtools/protobuf/protobuf/0001-Add-recursion-check-when-parsing-unknown-fields-in-J.patch rename meta-oe/recipes-devtools/sip/{sip_6.8.3.bb => sip_6.8.6.bb} (64%) create mode 100644 meta-oe/recipes-extended/p7zip/files/0001-Fix-two-buffer-overflow-vulnerabilities.patch rename meta-oe/recipes-extended/redis/{redis-7.2.4/hiredis-use-default-CC-if-it-is-set.patch => redis-7.2.6/0001-hiredis-use-default-CC-if-it-is-set.patch} (95%) rename meta-oe/recipes-extended/redis/{redis-7.2.4/lua-update-Makefile-to-use-environment-build-setting.patch => redis-7.2.6/0002-lua-update-Makefile-to-use-environment-build-setting.patch} (97%) rename meta-oe/recipes-extended/redis/{redis-7.2.4/oe-use-libc-malloc.patch => redis-7.2.6/0003-hack-to-force-use-of-libc-malloc.patch} (94%) rename meta-oe/recipes-extended/redis/{redis-7.2.4/0001-src-Do-not-reset-FINAL_LIBS.patch => redis-7.2.6/0004-src-Do-not-reset-FINAL_LIBS.patch} (92%) rename meta-oe/recipes-extended/redis/{redis-7.2.4/GNU_SOURCE-7.patch => redis-7.2.6/0005-Define-_GNU_SOURCE-to-get-PTHREAD_MUTEX_INITIALIZER.patch} (88%) rename meta-oe/recipes-extended/redis/{redis-7.2.4 => redis-7.2.6}/0006-Define-correct-gregs-for-RISCV32.patch (97%) rename meta-oe/recipes-extended/redis/{redis-7.2.4 => redis-7.2.6}/init-redis-server (100%) mode change 100755 => 100644 rename meta-oe/recipes-extended/redis/{redis-7.2.4 => redis-7.2.6}/redis.conf (100%) rename meta-oe/recipes-extended/redis/{redis-7.2.4 => redis-7.2.6}/redis.service (100%) rename meta-oe/recipes-extended/redis/{redis_7.2.4.bb => redis_7.2.6.bb} (81%) rename meta-python/recipes-devtools/python/{python3-tornado_6.4.bb => python3-tornado_6.4.2.bb} (90%) rename meta-python/recipes-devtools/python/{python3-werkzeug_3.0.3.bb => python3-werkzeug_3.0.6.bb} (90%)