mbox series

kirkstone merge request: Sept 30th

Message ID 75ff44f4-5540-ed6f-c293-641cba5c4a05@gmail.com
State New
Headers show
Series kirkstone merge request: Sept 30th | expand

Pull-request

https://git.openembedded.org/meta-openembedded kirkstone-next

Message

akuster808 Sept. 30, 2023, 11:53 a.m. UTC
The following changes since commit a88cb922f91fda95e8a584cee3092083d5ad3e98:

   hwloc: fix CVE-2022-47022 (2023-09-06 09:13:26 -0400)

are available in the Git repository at:

   https://git.openembedded.org/meta-openembedded kirkstone-next

for you to fetch changes up to 9c5541f7e18a1fac3b8dea71e1ebb8398d58e6ff:

   python3-django: upgrade 4.2.3 -> 4.2.5 (2023-09-27 10:23:28 -0400)

----------------------------------------------------------------
Armin Kuster (2):
       frr: Fix CVE-2023-41909
       openldap: update to 2.5.16

Hitendra Prajapati (1):
       wireshark: Fix CVE-2023-2906

Jose Quaresma (1):
       opensc: ignore CVE-2021-34193

Khem Raj (1):
       freeglut: Add packageconfigs for x11/wayland/gles

Mingli Yu (1):
       hdf5: Fix CVE-2021-37501

Narpat Mali (3):
       python3-django: fix CVE-2023-41164
       python3-django: upgrade 3.2.20 -> 3.2.21
       python3-django: upgrade 4.2.3 -> 4.2.5

Polampalli, Archana (1):
       redis: upgrade 7.0.12 -> 7.0.13

Shinu Chandran (1):
       c-ares: CVE-ID correction for CVE-2022-4904

Soumya Sambu (1):
       rabbitmq-c: Fix CVE-2023-35789

  meta-networking/recipes-protocols/frr/frr/CVE-2023-41909.patch  | 42 
+++++++++
  meta-networking/recipes-protocols/frr/frr_8.2.2.bb              | 1 +
  .../recipes-support/wireshark/files/CVE-2023-2906.patch         | 38 
++++++++
  meta-networking/recipes-support/wireshark/wireshark_3.4.12.bb   | 1 +
  .../recipes-connectivity/rabbitmq-c/files/CVE-2023-35789.patch  | 135 
++++++++++++++++++++++++++++
  meta-oe/recipes-connectivity/rabbitmq-c/rabbitmq-c_0.11.0.bb    | 4 +-
  .../0001-src-Do-not-reset-FINAL_LIBS.patch                      | 0
  .../0006-Define-correct-gregs-for-RISCV32.patch                 | 0
  .../redis/{redis-7.0.12 => redis-7.0.13}/GNU_SOURCE-7.patch |   0
  .../hiredis-use-default-CC-if-it-is-set.patch                   | 0
  .../redis/{redis-7.0.12 => redis-7.0.13}/init-redis-server |   0
  .../lua-update-Makefile-to-use-environment-build-setting.patch  | 0
  .../{redis-7.0.12 => redis-7.0.13}/oe-use-libc-malloc.patch |   0
  .../redis/{redis-7.0.12 => redis-7.0.13}/redis.conf |   0
  .../redis/{redis-7.0.12 => redis-7.0.13}/redis.service |   0
  .../recipes-extended/redis/{redis_7.0.12.bb => redis_7.0.13.bb} |   2 +-
  meta-oe/recipes-graphics/freeglut/freeglut_3.2.1.bb             | 18 +++-
  meta-oe/recipes-support/c-ares/c-ares/CVE-2022-4904.patch       | 2 +-
  meta-oe/recipes-support/hdf5/files/CVE-2021-37501.patch         | 37 
++++++++
  meta-oe/recipes-support/hdf5/hdf5_1.8.21.bb                     | 1 +
  .../openldap/0001-ldif-filter-fix-parallel-build-failure.patch  | 32 
-------
  .../0001-libraries-Makefile.in-ignore-the-mkdir-errors.patch    | 33 
-------
  ...1-librewrite-include-ldap_pvt_thread.h-before-redefini.patch | 54 
-----------
  meta-oe/recipes-support/openldap/openldap/CVE-2023-2953-1.patch | 30 
-------
  meta-oe/recipes-support/openldap/openldap/CVE-2023-2953-2.patch | 76 
----------------
  .../openldap/{openldap_2.5.12.bb => openldap_2.5.16.bb} |   7 +-
  meta-oe/recipes-support/opensc/opensc_0.22.0.bb                 | 5 ++
  .../recipes-devtools/python/python3-django/CVE-2023-41164.patch | 105 
++++++++++++++++++++++
  meta-python/recipes-devtools/python/python3-django_2.2.28.bb    | 1 +
  .../{python3-django_3.2.20.bb => python3-django_3.2.21.bb} |   4 +-
  .../python/{python3-django_4.2.3.bb => python3-django_4.2.5.bb} |   4 +-
  31 files changed, 390 insertions(+), 242 deletions(-)
  create mode 100644 
meta-networking/recipes-protocols/frr/frr/CVE-2023-41909.patch
  create mode 100644 
meta-networking/recipes-support/wireshark/files/CVE-2023-2906.patch
  create mode 100644 
meta-oe/recipes-connectivity/rabbitmq-c/files/CVE-2023-35789.patch
  rename meta-oe/recipes-extended/redis/{redis-7.0.12 => 
redis-7.0.13}/0001-src-Do-not-reset-FINAL_LIBS.patch (100%)
  rename meta-oe/recipes-extended/redis/{redis-7.0.12 => 
redis-7.0.13}/0006-Define-correct-gregs-for-RISCV32.patch (100%)
  rename meta-oe/recipes-extended/redis/{redis-7.0.12 => 
redis-7.0.13}/GNU_SOURCE-7.patch (100%)
  rename meta-oe/recipes-extended/redis/{redis-7.0.12 => 
redis-7.0.13}/hiredis-use-default-CC-if-it-is-set.patch (100%)
  rename meta-oe/recipes-extended/redis/{redis-7.0.12 => 
redis-7.0.13}/init-redis-server (100%)
  rename meta-oe/recipes-extended/redis/{redis-7.0.12 => 
redis-7.0.13}/lua-update-Makefile-to-use-environment-build-setting.patch 
(100%)
  rename meta-oe/recipes-extended/redis/{redis-7.0.12 => 
redis-7.0.13}/oe-use-libc-malloc.patch (100%)
  rename meta-oe/recipes-extended/redis/{redis-7.0.12 => 
redis-7.0.13}/redis.conf (100%)
  rename meta-oe/recipes-extended/redis/{redis-7.0.12 => 
redis-7.0.13}/redis.service (100%)
  rename meta-oe/recipes-extended/redis/{redis_7.0.12.bb => 
redis_7.0.13.bb} (96%)
  create mode 100644 meta-oe/recipes-support/hdf5/files/CVE-2021-37501.patch
  delete mode 100644 
meta-oe/recipes-support/openldap/openldap/0001-ldif-filter-fix-parallel-build-failure.patch
  delete mode 100644 
meta-oe/recipes-support/openldap/openldap/0001-libraries-Makefile.in-ignore-the-mkdir-errors.patch
  delete mode 100644 
meta-oe/recipes-support/openldap/openldap/0001-librewrite-include-ldap_pvt_thread.h-before-redefini.patch
  delete mode 100644 
meta-oe/recipes-support/openldap/openldap/CVE-2023-2953-1.patch
  delete mode 100644 
meta-oe/recipes-support/openldap/openldap/CVE-2023-2953-2.patch
  rename meta-oe/recipes-support/openldap/{openldap_2.5.12.bb => 
openldap_2.5.16.bb} (96%)
  create mode 100644 
meta-python/recipes-devtools/python/python3-django/CVE-2023-41164.patch
  rename meta-python/recipes-devtools/python/{python3-django_3.2.20.bb 
=> python3-django_3.2.21.bb} (61%)
  rename meta-python/recipes-devtools/python/{python3-django_4.2.3.bb => 
python3-django_4.2.5.bb} (61%)

Comments

Khem Raj Sept. 30, 2023, 2:31 p.m. UTC | #1
merged thanks Armin

On Sat, Sep 30, 2023 at 4:53 AM akuster808 <akuster808@gmail.com> wrote:
>
> The following changes since commit a88cb922f91fda95e8a584cee3092083d5ad3e98:
>
>    hwloc: fix CVE-2022-47022 (2023-09-06 09:13:26 -0400)
>
> are available in the Git repository at:
>
>    https://git.openembedded.org/meta-openembedded kirkstone-next
>
> for you to fetch changes up to 9c5541f7e18a1fac3b8dea71e1ebb8398d58e6ff:
>
>    python3-django: upgrade 4.2.3 -> 4.2.5 (2023-09-27 10:23:28 -0400)
>
> ----------------------------------------------------------------
> Armin Kuster (2):
>        frr: Fix CVE-2023-41909
>        openldap: update to 2.5.16
>
> Hitendra Prajapati (1):
>        wireshark: Fix CVE-2023-2906
>
> Jose Quaresma (1):
>        opensc: ignore CVE-2021-34193
>
> Khem Raj (1):
>        freeglut: Add packageconfigs for x11/wayland/gles
>
> Mingli Yu (1):
>        hdf5: Fix CVE-2021-37501
>
> Narpat Mali (3):
>        python3-django: fix CVE-2023-41164
>        python3-django: upgrade 3.2.20 -> 3.2.21
>        python3-django: upgrade 4.2.3 -> 4.2.5
>
> Polampalli, Archana (1):
>        redis: upgrade 7.0.12 -> 7.0.13
>
> Shinu Chandran (1):
>        c-ares: CVE-ID correction for CVE-2022-4904
>
> Soumya Sambu (1):
>        rabbitmq-c: Fix CVE-2023-35789
>
>   meta-networking/recipes-protocols/frr/frr/CVE-2023-41909.patch  | 42
> +++++++++
>   meta-networking/recipes-protocols/frr/frr_8.2.2.bb              | 1 +
>   .../recipes-support/wireshark/files/CVE-2023-2906.patch         | 38
> ++++++++
>   meta-networking/recipes-support/wireshark/wireshark_3.4.12.bb   | 1 +
>   .../recipes-connectivity/rabbitmq-c/files/CVE-2023-35789.patch  | 135
> ++++++++++++++++++++++++++++
>   meta-oe/recipes-connectivity/rabbitmq-c/rabbitmq-c_0.11.0.bb    | 4 +-
>   .../0001-src-Do-not-reset-FINAL_LIBS.patch                      | 0
>   .../0006-Define-correct-gregs-for-RISCV32.patch                 | 0
>   .../redis/{redis-7.0.12 => redis-7.0.13}/GNU_SOURCE-7.patch |   0
>   .../hiredis-use-default-CC-if-it-is-set.patch                   | 0
>   .../redis/{redis-7.0.12 => redis-7.0.13}/init-redis-server |   0
>   .../lua-update-Makefile-to-use-environment-build-setting.patch  | 0
>   .../{redis-7.0.12 => redis-7.0.13}/oe-use-libc-malloc.patch |   0
>   .../redis/{redis-7.0.12 => redis-7.0.13}/redis.conf |   0
>   .../redis/{redis-7.0.12 => redis-7.0.13}/redis.service |   0
>   .../recipes-extended/redis/{redis_7.0.12.bb => redis_7.0.13.bb} |   2 +-
>   meta-oe/recipes-graphics/freeglut/freeglut_3.2.1.bb             | 18 +++-
>   meta-oe/recipes-support/c-ares/c-ares/CVE-2022-4904.patch       | 2 +-
>   meta-oe/recipes-support/hdf5/files/CVE-2021-37501.patch         | 37
> ++++++++
>   meta-oe/recipes-support/hdf5/hdf5_1.8.21.bb                     | 1 +
>   .../openldap/0001-ldif-filter-fix-parallel-build-failure.patch  | 32
> -------
>   .../0001-libraries-Makefile.in-ignore-the-mkdir-errors.patch    | 33
> -------
>   ...1-librewrite-include-ldap_pvt_thread.h-before-redefini.patch | 54
> -----------
>   meta-oe/recipes-support/openldap/openldap/CVE-2023-2953-1.patch | 30
> -------
>   meta-oe/recipes-support/openldap/openldap/CVE-2023-2953-2.patch | 76
> ----------------
>   .../openldap/{openldap_2.5.12.bb => openldap_2.5.16.bb} |   7 +-
>   meta-oe/recipes-support/opensc/opensc_0.22.0.bb                 | 5 ++
>   .../recipes-devtools/python/python3-django/CVE-2023-41164.patch | 105
> ++++++++++++++++++++++
>   meta-python/recipes-devtools/python/python3-django_2.2.28.bb    | 1 +
>   .../{python3-django_3.2.20.bb => python3-django_3.2.21.bb} |   4 +-
>   .../python/{python3-django_4.2.3.bb => python3-django_4.2.5.bb} |   4 +-
>   31 files changed, 390 insertions(+), 242 deletions(-)
>   create mode 100644
> meta-networking/recipes-protocols/frr/frr/CVE-2023-41909.patch
>   create mode 100644
> meta-networking/recipes-support/wireshark/files/CVE-2023-2906.patch
>   create mode 100644
> meta-oe/recipes-connectivity/rabbitmq-c/files/CVE-2023-35789.patch
>   rename meta-oe/recipes-extended/redis/{redis-7.0.12 =>
> redis-7.0.13}/0001-src-Do-not-reset-FINAL_LIBS.patch (100%)
>   rename meta-oe/recipes-extended/redis/{redis-7.0.12 =>
> redis-7.0.13}/0006-Define-correct-gregs-for-RISCV32.patch (100%)
>   rename meta-oe/recipes-extended/redis/{redis-7.0.12 =>
> redis-7.0.13}/GNU_SOURCE-7.patch (100%)
>   rename meta-oe/recipes-extended/redis/{redis-7.0.12 =>
> redis-7.0.13}/hiredis-use-default-CC-if-it-is-set.patch (100%)
>   rename meta-oe/recipes-extended/redis/{redis-7.0.12 =>
> redis-7.0.13}/init-redis-server (100%)
>   rename meta-oe/recipes-extended/redis/{redis-7.0.12 =>
> redis-7.0.13}/lua-update-Makefile-to-use-environment-build-setting.patch
> (100%)
>   rename meta-oe/recipes-extended/redis/{redis-7.0.12 =>
> redis-7.0.13}/oe-use-libc-malloc.patch (100%)
>   rename meta-oe/recipes-extended/redis/{redis-7.0.12 =>
> redis-7.0.13}/redis.conf (100%)
>   rename meta-oe/recipes-extended/redis/{redis-7.0.12 =>
> redis-7.0.13}/redis.service (100%)
>   rename meta-oe/recipes-extended/redis/{redis_7.0.12.bb =>
> redis_7.0.13.bb} (96%)
>   create mode 100644 meta-oe/recipes-support/hdf5/files/CVE-2021-37501.patch
>   delete mode 100644
> meta-oe/recipes-support/openldap/openldap/0001-ldif-filter-fix-parallel-build-failure.patch
>   delete mode 100644
> meta-oe/recipes-support/openldap/openldap/0001-libraries-Makefile.in-ignore-the-mkdir-errors.patch
>   delete mode 100644
> meta-oe/recipes-support/openldap/openldap/0001-librewrite-include-ldap_pvt_thread.h-before-redefini.patch
>   delete mode 100644
> meta-oe/recipes-support/openldap/openldap/CVE-2023-2953-1.patch
>   delete mode 100644
> meta-oe/recipes-support/openldap/openldap/CVE-2023-2953-2.patch
>   rename meta-oe/recipes-support/openldap/{openldap_2.5.12.bb =>
> openldap_2.5.16.bb} (96%)
>   create mode 100644
> meta-python/recipes-devtools/python/python3-django/CVE-2023-41164.patch
>   rename meta-python/recipes-devtools/python/{python3-django_3.2.20.bb
> => python3-django_3.2.21.bb} (61%)
>   rename meta-python/recipes-devtools/python/{python3-django_4.2.3.bb =>
> python3-django_4.2.5.bb} (61%)
>