mbox series

dunfell merge request: July 14th

Message ID 68215175-21a2-bd4e-fd1d-af4711dc4ad6@gmail.com
State New
Headers show
Series dunfell merge request: July 14th | expand

Pull-request

https://git.openembedded.org/meta-openembedded dunfell-next

Message

akuster808 July 14, 2023, 11:16 a.m. UTC
The following changes since commit 6334241447e461f849035c47f071fa4a2125fee1:

   c-ares: CVE-2023-31147 Insufficient randomness in generation of DNS 
query IDs (2023-06-23 06:58:18 -0400)

are available in the Git repository at:

   https://git.openembedded.org/meta-openembedded dunfell-next

for you to fetch changes up to b5282ece919f016d91a1043769676efb02b4f0fb:

   openldap: fix CVE-2021-27212 Assertion failure in slapd (2023-07-14 
07:08:54 -0400)

----------------------------------------------------------------
Hitendra Prajapati (7):
       wireshark: Fix Multiple CVEs
       wireshark: Fix CVE-2023-0667 & CVE-2023-0668
       yajl: CVE-2023-33460 memory leak in yajl_tree_parse function
       ntp: backport patch for 5 CVEs CVE-2023-26551/2/3/4/5
       multipath-tools: fix CVE-2022-41974
       quagga: CVE-2021-44038 unsafe chown/chmod operations may lead to 
privileges escalation
       openldap: fix CVE-2021-27212 Assertion failure in slapd

Vijay Anusuri (1):
       libssh: CVE-2020-16135 NULL pointer dereference in sftpserver.c 
if ssh_buffer_new returns NULL

virendra thakur (1):
       c-ares: whitelist CVE-2023-31124

vkumbhar (1):
       postgresql: fix CVE-2023-2454 & CVE-2023-2455

  .../recipes-protocols/quagga/files/CVE-2021-44038.patch         | 117 
++++++++++
  meta-networking/recipes-protocols/quagga/quagga.inc             | 2 +-
  meta-networking/recipes-support/ntp/ntp/CVE-2023-2655x.patch    | 340 
++++++++++++++++++++++++++++
  meta-networking/recipes-support/ntp/ntp_4.2.8p15.bb             | 10 +-
  .../recipes-support/wireshark/files/CVE-2023-0667-pre1.patch    | 153 
+++++++++++++
  .../recipes-support/wireshark/files/CVE-2023-0667.patch         | 66 
++++++
  .../recipes-support/wireshark/files/CVE-2023-0668.patch         | 33 +++
  .../recipes-support/wireshark/files/CVE-2023-2855.patch         | 117 
++++++++++
  .../recipes-support/wireshark/files/CVE-2023-2856.patch         | 68 
++++++
  .../recipes-support/wireshark/files/CVE-2023-2858.patch         | 94 
++++++++
  .../recipes-support/wireshark/files/CVE-2023-2952.patch         | 97 
++++++++
  meta-networking/recipes-support/wireshark/wireshark_3.2.18.bb   | 11 +-
  meta-oe/recipes-dbs/postgresql/files/CVE-2023-2454.patch        | 235 
+++++++++++++++++++
  meta-oe/recipes-dbs/postgresql/files/CVE-2023-2455.patch        | 118 
++++++++++
  meta-oe/recipes-dbs/postgresql/postgresql_12.9.bb               | 2 +
  meta-oe/recipes-devtools/yajl/yajl/CVE-2023-33460.patch         | 29 +++
  meta-oe/recipes-devtools/yajl/yajl_2.1.0.bb                     | 4 +-
  meta-oe/recipes-support/c-ares/c-ares_1.18.1.bb                 | 4 +
  meta-oe/recipes-support/libssh/files/CVE-2020-16135-1.patch     | 40 ++++
  meta-oe/recipes-support/libssh/files/CVE-2020-16135-2.patch     | 42 ++++
  meta-oe/recipes-support/libssh/files/CVE-2020-16135-3.patch     | 70 
++++++
  meta-oe/recipes-support/libssh/files/CVE-2020-16135-4.patch     | 34 +++
  meta-oe/recipes-support/libssh/libssh_0.8.9.bb                  | 8 +-
  .../recipes-support/multipath-tools/files/CVE-2022-41974.patch  | 162 
+++++++++++++
  .../recipes-support/multipath-tools/multipath-tools_0.8.4.bb    | 1 +
  meta-oe/recipes-support/openldap/openldap/CVE-2021-27212.patch  | 31 +++
  meta-oe/recipes-support/openldap/openldap_2.4.57.bb             | 1 +
  27 files changed, 1883 insertions(+), 6 deletions(-)
  create mode 100644 
meta-networking/recipes-protocols/quagga/files/CVE-2021-44038.patch
  create mode 100644 
meta-networking/recipes-support/ntp/ntp/CVE-2023-2655x.patch
  create mode 100644 
meta-networking/recipes-support/wireshark/files/CVE-2023-0667-pre1.patch
  create mode 100644 
meta-networking/recipes-support/wireshark/files/CVE-2023-0667.patch
  create mode 100644 
meta-networking/recipes-support/wireshark/files/CVE-2023-0668.patch
  create mode 100644 
meta-networking/recipes-support/wireshark/files/CVE-2023-2855.patch
  create mode 100644 
meta-networking/recipes-support/wireshark/files/CVE-2023-2856.patch
  create mode 100644 
meta-networking/recipes-support/wireshark/files/CVE-2023-2858.patch
  create mode 100644 
meta-networking/recipes-support/wireshark/files/CVE-2023-2952.patch
  create mode 100644 
meta-oe/recipes-dbs/postgresql/files/CVE-2023-2454.patch
  create mode 100644 
meta-oe/recipes-dbs/postgresql/files/CVE-2023-2455.patch
  create mode 100644 meta-oe/recipes-devtools/yajl/yajl/CVE-2023-33460.patch
  create mode 100644 
meta-oe/recipes-support/libssh/files/CVE-2020-16135-1.patch
  create mode 100644 
meta-oe/recipes-support/libssh/files/CVE-2020-16135-2.patch
  create mode 100644 
meta-oe/recipes-support/libssh/files/CVE-2020-16135-3.patch
  create mode 100644 
meta-oe/recipes-support/libssh/files/CVE-2020-16135-4.patch
  create mode 100644 
meta-oe/recipes-support/multipath-tools/files/CVE-2022-41974.patch
  create mode 100644 
meta-oe/recipes-support/openldap/openldap/CVE-2021-27212.patch

Comments

Khem Raj July 14, 2023, 2:21 p.m. UTC | #1
merged thanks Armin

On Fri, Jul 14, 2023 at 4:16 AM akuster808 <akuster808@gmail.com> wrote:
>
> The following changes since commit 6334241447e461f849035c47f071fa4a2125fee1:
>
>    c-ares: CVE-2023-31147 Insufficient randomness in generation of DNS
> query IDs (2023-06-23 06:58:18 -0400)
>
> are available in the Git repository at:
>
>    https://git.openembedded.org/meta-openembedded dunfell-next
>
> for you to fetch changes up to b5282ece919f016d91a1043769676efb02b4f0fb:
>
>    openldap: fix CVE-2021-27212 Assertion failure in slapd (2023-07-14
> 07:08:54 -0400)
>
> ----------------------------------------------------------------
> Hitendra Prajapati (7):
>        wireshark: Fix Multiple CVEs
>        wireshark: Fix CVE-2023-0667 & CVE-2023-0668
>        yajl: CVE-2023-33460 memory leak in yajl_tree_parse function
>        ntp: backport patch for 5 CVEs CVE-2023-26551/2/3/4/5
>        multipath-tools: fix CVE-2022-41974
>        quagga: CVE-2021-44038 unsafe chown/chmod operations may lead to
> privileges escalation
>        openldap: fix CVE-2021-27212 Assertion failure in slapd
>
> Vijay Anusuri (1):
>        libssh: CVE-2020-16135 NULL pointer dereference in sftpserver.c
> if ssh_buffer_new returns NULL
>
> virendra thakur (1):
>        c-ares: whitelist CVE-2023-31124
>
> vkumbhar (1):
>        postgresql: fix CVE-2023-2454 & CVE-2023-2455
>
>   .../recipes-protocols/quagga/files/CVE-2021-44038.patch         | 117
> ++++++++++
>   meta-networking/recipes-protocols/quagga/quagga.inc             | 2 +-
>   meta-networking/recipes-support/ntp/ntp/CVE-2023-2655x.patch    | 340
> ++++++++++++++++++++++++++++
>   meta-networking/recipes-support/ntp/ntp_4.2.8p15.bb             | 10 +-
>   .../recipes-support/wireshark/files/CVE-2023-0667-pre1.patch    | 153
> +++++++++++++
>   .../recipes-support/wireshark/files/CVE-2023-0667.patch         | 66
> ++++++
>   .../recipes-support/wireshark/files/CVE-2023-0668.patch         | 33 +++
>   .../recipes-support/wireshark/files/CVE-2023-2855.patch         | 117
> ++++++++++
>   .../recipes-support/wireshark/files/CVE-2023-2856.patch         | 68
> ++++++
>   .../recipes-support/wireshark/files/CVE-2023-2858.patch         | 94
> ++++++++
>   .../recipes-support/wireshark/files/CVE-2023-2952.patch         | 97
> ++++++++
>   meta-networking/recipes-support/wireshark/wireshark_3.2.18.bb   | 11 +-
>   meta-oe/recipes-dbs/postgresql/files/CVE-2023-2454.patch        | 235
> +++++++++++++++++++
>   meta-oe/recipes-dbs/postgresql/files/CVE-2023-2455.patch        | 118
> ++++++++++
>   meta-oe/recipes-dbs/postgresql/postgresql_12.9.bb               | 2 +
>   meta-oe/recipes-devtools/yajl/yajl/CVE-2023-33460.patch         | 29 +++
>   meta-oe/recipes-devtools/yajl/yajl_2.1.0.bb                     | 4 +-
>   meta-oe/recipes-support/c-ares/c-ares_1.18.1.bb                 | 4 +
>   meta-oe/recipes-support/libssh/files/CVE-2020-16135-1.patch     | 40 ++++
>   meta-oe/recipes-support/libssh/files/CVE-2020-16135-2.patch     | 42 ++++
>   meta-oe/recipes-support/libssh/files/CVE-2020-16135-3.patch     | 70
> ++++++
>   meta-oe/recipes-support/libssh/files/CVE-2020-16135-4.patch     | 34 +++
>   meta-oe/recipes-support/libssh/libssh_0.8.9.bb                  | 8 +-
>   .../recipes-support/multipath-tools/files/CVE-2022-41974.patch  | 162
> +++++++++++++
>   .../recipes-support/multipath-tools/multipath-tools_0.8.4.bb    | 1 +
>   meta-oe/recipes-support/openldap/openldap/CVE-2021-27212.patch  | 31 +++
>   meta-oe/recipes-support/openldap/openldap_2.4.57.bb             | 1 +
>   27 files changed, 1883 insertions(+), 6 deletions(-)
>   create mode 100644
> meta-networking/recipes-protocols/quagga/files/CVE-2021-44038.patch
>   create mode 100644
> meta-networking/recipes-support/ntp/ntp/CVE-2023-2655x.patch
>   create mode 100644
> meta-networking/recipes-support/wireshark/files/CVE-2023-0667-pre1.patch
>   create mode 100644
> meta-networking/recipes-support/wireshark/files/CVE-2023-0667.patch
>   create mode 100644
> meta-networking/recipes-support/wireshark/files/CVE-2023-0668.patch
>   create mode 100644
> meta-networking/recipes-support/wireshark/files/CVE-2023-2855.patch
>   create mode 100644
> meta-networking/recipes-support/wireshark/files/CVE-2023-2856.patch
>   create mode 100644
> meta-networking/recipes-support/wireshark/files/CVE-2023-2858.patch
>   create mode 100644
> meta-networking/recipes-support/wireshark/files/CVE-2023-2952.patch
>   create mode 100644
> meta-oe/recipes-dbs/postgresql/files/CVE-2023-2454.patch
>   create mode 100644
> meta-oe/recipes-dbs/postgresql/files/CVE-2023-2455.patch
>   create mode 100644 meta-oe/recipes-devtools/yajl/yajl/CVE-2023-33460.patch
>   create mode 100644
> meta-oe/recipes-support/libssh/files/CVE-2020-16135-1.patch
>   create mode 100644
> meta-oe/recipes-support/libssh/files/CVE-2020-16135-2.patch
>   create mode 100644
> meta-oe/recipes-support/libssh/files/CVE-2020-16135-3.patch
>   create mode 100644
> meta-oe/recipes-support/libssh/files/CVE-2020-16135-4.patch
>   create mode 100644
> meta-oe/recipes-support/multipath-tools/files/CVE-2022-41974.patch
>   create mode 100644
> meta-oe/recipes-support/openldap/openldap/CVE-2021-27212.patch
>