mbox series

kirkstone merge request: June 22nd

Message ID 5b6db4a5-9c0f-e83d-f6de-9ae7551aed56@gmail.com
State New
Headers show
Series kirkstone merge request: June 22nd | expand

Pull-request

https://git.openembedded.org/meta-openembedded kirkstone-next

Message

akuster808 June 22, 2023, 9:52 a.m. UTC
The following changes since commit bdad2a789e30703a825b876279665720d06d55dc:

   python3-werkzeug: fix for CVE-2023-23934 (2023-06-11 11:43:33 -0400)

are available in the Git repository at:

   https://git.openembedded.org/meta-openembedded kirkstone-next

for you to fetch changes up to a82d92c8a6525da01524bf8f4a60bf6b35dcbb3d:

   ExprTk: Update package to release/0.0.2 (2023-06-19 09:17:01 -0400)

----------------------------------------------------------------
Adrian Zaharia (1):
       lapack: add packageconfig for lapacke

Arash Partow (1):
       ExprTk: Update package to release/0.0.2

Ashish Sharma (1):
       openldap: Fix CVE-2023-2953

Chen Qi (1):
       redis: use the files path correctly

Hitendra Prajapati (1):
       wireshark: CVE-2023-2952 XRA dissector infinite loop

Narpat Mali (3):
       python3-django: fix for CVE-2023-31047
       python3-django: upgrade 3.2.12 -> 3.2.19
       python3-sqlparse: fix for CVE-2023-30608

Peter Marko (1):
       c-ares: ignore CVE-2023-31124

Polampalli, Archana (2):
       samba: fix CVE-2022-41916
       samba: fix CVE-2021-44758

Polampalli, Archana A (1):
       samba: fix CVE-2022-3437

Polampalli, Archana ñ (1):
       samba: fix CVE-2022-45142

Soumya (1):
       opencv: Fix for CVE-2023-2617

Xiangyu Chen (1):
       meta-oe: add pahole to NON_MULTILIB_RECIPES

sana kazi (1):
       Googletest: Adapt googletest 1.11.0 with gcc11

  .../recipes-connectivity/samba/samba/CVE-2021-44758.patch      | 72 ++++++
  .../recipes-connectivity/samba/samba/CVE-2022-3437-0001.patch  | 77 ++++++
  .../recipes-connectivity/samba/samba/CVE-2022-3437-0002.patch  | 35 +++
  .../recipes-connectivity/samba/samba/CVE-2022-3437-0003.patch  | 50 ++++
  .../recipes-connectivity/samba/samba/CVE-2022-3437-0004.patch  | 57 +++++
  .../recipes-connectivity/samba/samba/CVE-2022-3437-0005.patch  | 37 +++
  .../recipes-connectivity/samba/samba/CVE-2022-3437-0006.patch  | 65 +++++
  .../recipes-connectivity/samba/samba/CVE-2022-3437-0007.patch  | 39 +++
  .../recipes-connectivity/samba/samba/CVE-2022-3437-0008.patch  | 48 ++++
  .../recipes-connectivity/samba/samba/CVE-2022-41916.patch      | 38 +++
  .../recipes-connectivity/samba/samba/CVE-2022-45142.patch      | 51 ++++
  meta-networking/recipes-connectivity/samba/samba_4.14.14.bb    | 11 +
  .../recipes-support/wireshark/files/CVE-2023-2952.patch        | 98 
++++++++
  meta-networking/recipes-support/wireshark/wireshark_3.4.12.bb  | 1 +
  meta-oe/conf/layer.conf                                        | 2 +-
  meta-oe/recipes-devtools/exprtk/exprtk_git.bb                  | 4 +-
  meta-oe/recipes-devtools/lapack/lapack_3.10.0.bb               | 3 +
  .../0001-src-Do-not-reset-FINAL_LIBS.patch                     | 0
  .../0006-Define-correct-gregs-for-RISCV32.patch                | 0
  .../redis/{redis-7 => redis-7.0.11}/GNU_SOURCE-7.patch |   0
  .../hiredis-use-default-CC-if-it-is-set.patch                  | 0
  .../redis/{redis-7 => redis-7.0.11}/init-redis-server |   0
  .../lua-update-Makefile-to-use-environment-build-setting.patch | 0
  .../redis/{redis-7 => redis-7.0.11}/oe-use-libc-malloc.patch |   0
  .../redis/{redis-7 => redis-7.0.11}/redis.conf |   0
  .../redis/{redis-7 => redis-7.0.11}/redis.service |   0
  meta-oe/recipes-extended/redis/redis_7.0.11.bb                 | 2 -
  meta-oe/recipes-support/c-ares/c-ares_1.18.1.bb                | 4 +
  meta-oe/recipes-support/opencv/opencv/CVE-2023-2617.patch      | 88 
+++++++
  meta-oe/recipes-support/opencv/opencv_4.5.5.bb                 | 1 +
  .../recipes-support/openldap/openldap/CVE-2023-2953-1.patch    | 30 +++
  .../recipes-support/openldap/openldap/CVE-2023-2953-2.patch    | 76 ++++++
  meta-oe/recipes-support/openldap/openldap_2.5.12.bb            | 2 +
  .../googletest/files/0001-work-around-GCC-6-11-ADL-bug.patch   | 42 ++++
  meta-oe/recipes-test/googletest/googletest_git.bb              | 3 +-
  .../python/python3-django/CVE-2023-31047.patch                 | 352 
++++++++++++++++++++++++++++
  meta-python/recipes-devtools/python/python3-django_2.2.28.bb   | 2 +
  .../{python3-django_3.2.12.bb => python3-django_3.2.19.bb} |   2 +-
  .../python/python3-sqlparse/CVE-2023-30608.patch               | 75 ++++++
  meta-python/recipes-devtools/python/python3-sqlparse_0.4.2.bb  | 1 +
  40 files changed, 1361 insertions(+), 7 deletions(-)
  create mode 100644 
meta-networking/recipes-connectivity/samba/samba/CVE-2021-44758.patch
  create mode 100644 
meta-networking/recipes-connectivity/samba/samba/CVE-2022-3437-0001.patch
  create mode 100644 
meta-networking/recipes-connectivity/samba/samba/CVE-2022-3437-0002.patch
  create mode 100644 
meta-networking/recipes-connectivity/samba/samba/CVE-2022-3437-0003.patch
  create mode 100644 
meta-networking/recipes-connectivity/samba/samba/CVE-2022-3437-0004.patch
  create mode 100644 
meta-networking/recipes-connectivity/samba/samba/CVE-2022-3437-0005.patch
  create mode 100644 
meta-networking/recipes-connectivity/samba/samba/CVE-2022-3437-0006.patch
  create mode 100644 
meta-networking/recipes-connectivity/samba/samba/CVE-2022-3437-0007.patch
  create mode 100644 
meta-networking/recipes-connectivity/samba/samba/CVE-2022-3437-0008.patch
  create mode 100644 
meta-networking/recipes-connectivity/samba/samba/CVE-2022-41916.patch
  create mode 100644 
meta-networking/recipes-connectivity/samba/samba/CVE-2022-45142.patch
  create mode 100644 
meta-networking/recipes-support/wireshark/files/CVE-2023-2952.patch
  rename meta-oe/recipes-extended/redis/{redis-7 => 
redis-7.0.11}/0001-src-Do-not-reset-FINAL_LIBS.patch (100%)
  rename meta-oe/recipes-extended/redis/{redis-7 => 
redis-7.0.11}/0006-Define-correct-gregs-for-RISCV32.patch (100%)
  rename meta-oe/recipes-extended/redis/{redis-7 => 
redis-7.0.11}/GNU_SOURCE-7.patch (100%)
  rename meta-oe/recipes-extended/redis/{redis-7 => 
redis-7.0.11}/hiredis-use-default-CC-if-it-is-set.patch (100%)
  rename meta-oe/recipes-extended/redis/{redis-7 => 
redis-7.0.11}/init-redis-server (100%)
  rename meta-oe/recipes-extended/redis/{redis-7 => 
redis-7.0.11}/lua-update-Makefile-to-use-environment-build-setting.patch 
(100%)
  rename meta-oe/recipes-extended/redis/{redis-7 => 
redis-7.0.11}/oe-use-libc-malloc.patch (100%)
  rename meta-oe/recipes-extended/redis/{redis-7 => 
redis-7.0.11}/redis.conf (100%)
  rename meta-oe/recipes-extended/redis/{redis-7 => 
redis-7.0.11}/redis.service (100%)
  create mode 100644 
meta-oe/recipes-support/opencv/opencv/CVE-2023-2617.patch
  create mode 100644 
meta-oe/recipes-support/openldap/openldap/CVE-2023-2953-1.patch
  create mode 100644 
meta-oe/recipes-support/openldap/openldap/CVE-2023-2953-2.patch
  create mode 100644 
meta-oe/recipes-test/googletest/files/0001-work-around-GCC-6-11-ADL-bug.patch
  create mode 100644 
meta-python/recipes-devtools/python/python3-django/CVE-2023-31047.patch
  rename meta-python/recipes-devtools/python/{python3-django_3.2.12.bb 
=> python3-django_3.2.19.bb} (77%)
  create mode 100644 
meta-python/recipes-devtools/python/python3-sqlparse/CVE-2023-30608.patch

Comments

Khem Raj June 22, 2023, 3:05 p.m. UTC | #1
merged. thanks Armin.

On Thu, Jun 22, 2023 at 2:52 AM akuster808 <akuster808@gmail.com> wrote:
>
> The following changes since commit bdad2a789e30703a825b876279665720d06d55dc:
>
>    python3-werkzeug: fix for CVE-2023-23934 (2023-06-11 11:43:33 -0400)
>
> are available in the Git repository at:
>
>    https://git.openembedded.org/meta-openembedded kirkstone-next
>
> for you to fetch changes up to a82d92c8a6525da01524bf8f4a60bf6b35dcbb3d:
>
>    ExprTk: Update package to release/0.0.2 (2023-06-19 09:17:01 -0400)
>
> ----------------------------------------------------------------
> Adrian Zaharia (1):
>        lapack: add packageconfig for lapacke
>
> Arash Partow (1):
>        ExprTk: Update package to release/0.0.2
>
> Ashish Sharma (1):
>        openldap: Fix CVE-2023-2953
>
> Chen Qi (1):
>        redis: use the files path correctly
>
> Hitendra Prajapati (1):
>        wireshark: CVE-2023-2952 XRA dissector infinite loop
>
> Narpat Mali (3):
>        python3-django: fix for CVE-2023-31047
>        python3-django: upgrade 3.2.12 -> 3.2.19
>        python3-sqlparse: fix for CVE-2023-30608
>
> Peter Marko (1):
>        c-ares: ignore CVE-2023-31124
>
> Polampalli, Archana (2):
>        samba: fix CVE-2022-41916
>        samba: fix CVE-2021-44758
>
> Polampalli, Archana A (1):
>        samba: fix CVE-2022-3437
>
> Polampalli, Archana ñ (1):
>        samba: fix CVE-2022-45142
>
> Soumya (1):
>        opencv: Fix for CVE-2023-2617
>
> Xiangyu Chen (1):
>        meta-oe: add pahole to NON_MULTILIB_RECIPES
>
> sana kazi (1):
>        Googletest: Adapt googletest 1.11.0 with gcc11
>
>   .../recipes-connectivity/samba/samba/CVE-2021-44758.patch      | 72 ++++++
>   .../recipes-connectivity/samba/samba/CVE-2022-3437-0001.patch  | 77 ++++++
>   .../recipes-connectivity/samba/samba/CVE-2022-3437-0002.patch  | 35 +++
>   .../recipes-connectivity/samba/samba/CVE-2022-3437-0003.patch  | 50 ++++
>   .../recipes-connectivity/samba/samba/CVE-2022-3437-0004.patch  | 57 +++++
>   .../recipes-connectivity/samba/samba/CVE-2022-3437-0005.patch  | 37 +++
>   .../recipes-connectivity/samba/samba/CVE-2022-3437-0006.patch  | 65 +++++
>   .../recipes-connectivity/samba/samba/CVE-2022-3437-0007.patch  | 39 +++
>   .../recipes-connectivity/samba/samba/CVE-2022-3437-0008.patch  | 48 ++++
>   .../recipes-connectivity/samba/samba/CVE-2022-41916.patch      | 38 +++
>   .../recipes-connectivity/samba/samba/CVE-2022-45142.patch      | 51 ++++
>   meta-networking/recipes-connectivity/samba/samba_4.14.14.bb    | 11 +
>   .../recipes-support/wireshark/files/CVE-2023-2952.patch        | 98
> ++++++++
>   meta-networking/recipes-support/wireshark/wireshark_3.4.12.bb  | 1 +
>   meta-oe/conf/layer.conf                                        | 2 +-
>   meta-oe/recipes-devtools/exprtk/exprtk_git.bb                  | 4 +-
>   meta-oe/recipes-devtools/lapack/lapack_3.10.0.bb               | 3 +
>   .../0001-src-Do-not-reset-FINAL_LIBS.patch                     | 0
>   .../0006-Define-correct-gregs-for-RISCV32.patch                | 0
>   .../redis/{redis-7 => redis-7.0.11}/GNU_SOURCE-7.patch |   0
>   .../hiredis-use-default-CC-if-it-is-set.patch                  | 0
>   .../redis/{redis-7 => redis-7.0.11}/init-redis-server |   0
>   .../lua-update-Makefile-to-use-environment-build-setting.patch | 0
>   .../redis/{redis-7 => redis-7.0.11}/oe-use-libc-malloc.patch |   0
>   .../redis/{redis-7 => redis-7.0.11}/redis.conf |   0
>   .../redis/{redis-7 => redis-7.0.11}/redis.service |   0
>   meta-oe/recipes-extended/redis/redis_7.0.11.bb                 | 2 -
>   meta-oe/recipes-support/c-ares/c-ares_1.18.1.bb                | 4 +
>   meta-oe/recipes-support/opencv/opencv/CVE-2023-2617.patch      | 88
> +++++++
>   meta-oe/recipes-support/opencv/opencv_4.5.5.bb                 | 1 +
>   .../recipes-support/openldap/openldap/CVE-2023-2953-1.patch    | 30 +++
>   .../recipes-support/openldap/openldap/CVE-2023-2953-2.patch    | 76 ++++++
>   meta-oe/recipes-support/openldap/openldap_2.5.12.bb            | 2 +
>   .../googletest/files/0001-work-around-GCC-6-11-ADL-bug.patch   | 42 ++++
>   meta-oe/recipes-test/googletest/googletest_git.bb              | 3 +-
>   .../python/python3-django/CVE-2023-31047.patch                 | 352
> ++++++++++++++++++++++++++++
>   meta-python/recipes-devtools/python/python3-django_2.2.28.bb   | 2 +
>   .../{python3-django_3.2.12.bb => python3-django_3.2.19.bb} |   2 +-
>   .../python/python3-sqlparse/CVE-2023-30608.patch               | 75 ++++++
>   meta-python/recipes-devtools/python/python3-sqlparse_0.4.2.bb  | 1 +
>   40 files changed, 1361 insertions(+), 7 deletions(-)
>   create mode 100644
> meta-networking/recipes-connectivity/samba/samba/CVE-2021-44758.patch
>   create mode 100644
> meta-networking/recipes-connectivity/samba/samba/CVE-2022-3437-0001.patch
>   create mode 100644
> meta-networking/recipes-connectivity/samba/samba/CVE-2022-3437-0002.patch
>   create mode 100644
> meta-networking/recipes-connectivity/samba/samba/CVE-2022-3437-0003.patch
>   create mode 100644
> meta-networking/recipes-connectivity/samba/samba/CVE-2022-3437-0004.patch
>   create mode 100644
> meta-networking/recipes-connectivity/samba/samba/CVE-2022-3437-0005.patch
>   create mode 100644
> meta-networking/recipes-connectivity/samba/samba/CVE-2022-3437-0006.patch
>   create mode 100644
> meta-networking/recipes-connectivity/samba/samba/CVE-2022-3437-0007.patch
>   create mode 100644
> meta-networking/recipes-connectivity/samba/samba/CVE-2022-3437-0008.patch
>   create mode 100644
> meta-networking/recipes-connectivity/samba/samba/CVE-2022-41916.patch
>   create mode 100644
> meta-networking/recipes-connectivity/samba/samba/CVE-2022-45142.patch
>   create mode 100644
> meta-networking/recipes-support/wireshark/files/CVE-2023-2952.patch
>   rename meta-oe/recipes-extended/redis/{redis-7 =>
> redis-7.0.11}/0001-src-Do-not-reset-FINAL_LIBS.patch (100%)
>   rename meta-oe/recipes-extended/redis/{redis-7 =>
> redis-7.0.11}/0006-Define-correct-gregs-for-RISCV32.patch (100%)
>   rename meta-oe/recipes-extended/redis/{redis-7 =>
> redis-7.0.11}/GNU_SOURCE-7.patch (100%)
>   rename meta-oe/recipes-extended/redis/{redis-7 =>
> redis-7.0.11}/hiredis-use-default-CC-if-it-is-set.patch (100%)
>   rename meta-oe/recipes-extended/redis/{redis-7 =>
> redis-7.0.11}/init-redis-server (100%)
>   rename meta-oe/recipes-extended/redis/{redis-7 =>
> redis-7.0.11}/lua-update-Makefile-to-use-environment-build-setting.patch
> (100%)
>   rename meta-oe/recipes-extended/redis/{redis-7 =>
> redis-7.0.11}/oe-use-libc-malloc.patch (100%)
>   rename meta-oe/recipes-extended/redis/{redis-7 =>
> redis-7.0.11}/redis.conf (100%)
>   rename meta-oe/recipes-extended/redis/{redis-7 =>
> redis-7.0.11}/redis.service (100%)
>   create mode 100644
> meta-oe/recipes-support/opencv/opencv/CVE-2023-2617.patch
>   create mode 100644
> meta-oe/recipes-support/openldap/openldap/CVE-2023-2953-1.patch
>   create mode 100644
> meta-oe/recipes-support/openldap/openldap/CVE-2023-2953-2.patch
>   create mode 100644
> meta-oe/recipes-test/googletest/files/0001-work-around-GCC-6-11-ADL-bug.patch
>   create mode 100644
> meta-python/recipes-devtools/python/python3-django/CVE-2023-31047.patch
>   rename meta-python/recipes-devtools/python/{python3-django_3.2.12.bb
> => python3-django_3.2.19.bb} (77%)
>   create mode 100644
> meta-python/recipes-devtools/python/python3-sqlparse/CVE-2023-30608.patch