mbox series

kirkstone merge request: June 15th

Message ID c60a8966-4494-3a82-e4d9-efd8827a9b30@gmail.com
State New
Headers show
Series kirkstone merge request: June 15th | expand

Pull-request

https://git.openembedded.org/meta-openembedded kirkstone-next

Message

akuster808 June 15, 2023, 11:53 a.m. UTC
The following changes since commit f95484417e3d3e65ca15b460ba71dfd35773f0e4:

   python3-m2crypto: fix for CVE-2020-25657 (2023-06-03 07:55:37 -0400)

are available in the Git repository at:

   https://git.openembedded.org/meta-openembedded kirkstone-next

for you to fetch changes up to bdad2a789e30703a825b876279665720d06d55dc:

   python3-werkzeug: fix for CVE-2023-23934 (2023-06-11 11:43:33 -0400)

----------------------------------------------------------------
Hitendra Prajapati (3):
       wireshark: CVE-2023-2855 Candump log file parser crash
       wireshark: CVE-2023-2856 VMS TCPIPtrace file parser crash
       wireshark: Fix CVE-2023-2858 & CVE-2023-2879

Narpat Mali (1):
       python3-werkzeug: fix for CVE-2023-23934

schitrod=cisco.com@lists.openembedded.org (1):
       gnulib: Update recipe name to 2018-12-18

vkumbhar (1):
       c-ares: fix CVEs CVE-2023-32067 and CVE-2023-31130

  .../recipes-support/wireshark/files/CVE-2023-2855.patch         | 108 
+++++++++
  .../recipes-support/wireshark/files/CVE-2023-2856.patch         | 69 
++++++
  .../recipes-support/wireshark/files/CVE-2023-2858.patch         | 95 
++++++++
  .../recipes-support/wireshark/files/CVE-2023-2879.patch         | 37 ++++
  meta-networking/recipes-support/wireshark/wireshark_3.4.12.bb   | 4 +
  meta-oe/recipes-support/c-ares/c-ares/CVE-2023-31130.patch      | 328 
++++++++++++++++++++++++++++
  meta-oe/recipes-support/c-ares/c-ares/CVE-2023-32067.patch      | 85 
+++++++
  meta-oe/recipes-support/c-ares/c-ares_1.18.1.bb                 | 2 +
  .../gnulib/{gnulib_2018-03-07.03.bb => gnulib_2018-12-18.bb} |   0
  .../python/python3-werkzeug/CVE-2023-23934.patch                | 116 
++++++++++
  meta-python/recipes-devtools/python/python3-werkzeug_2.1.1.bb   | 3 +-
  11 files changed, 846 insertions(+), 1 deletion(-)
  create mode 100644 
meta-networking/recipes-support/wireshark/files/CVE-2023-2855.patch
  create mode 100644 
meta-networking/recipes-support/wireshark/files/CVE-2023-2856.patch
  create mode 100644 
meta-networking/recipes-support/wireshark/files/CVE-2023-2858.patch
  create mode 100644 
meta-networking/recipes-support/wireshark/files/CVE-2023-2879.patch
  create mode 100644 
meta-oe/recipes-support/c-ares/c-ares/CVE-2023-31130.patch
  create mode 100644 
meta-oe/recipes-support/c-ares/c-ares/CVE-2023-32067.patch
  rename meta-oe/recipes-support/gnulib/{gnulib_2018-03-07.03.bb => 
gnulib_2018-12-18.bb} (100%)
  create mode 100644 
meta-python/recipes-devtools/python/python3-werkzeug/CVE-2023-23934.patch

Comments

Khem Raj June 15, 2023, 2:50 p.m. UTC | #1
applied Thanks Armin

On Thu, Jun 15, 2023 at 4:53 AM akuster808 <akuster808@gmail.com> wrote:
>
> The following changes since commit f95484417e3d3e65ca15b460ba71dfd35773f0e4:
>
>    python3-m2crypto: fix for CVE-2020-25657 (2023-06-03 07:55:37 -0400)
>
> are available in the Git repository at:
>
>    https://git.openembedded.org/meta-openembedded kirkstone-next
>
> for you to fetch changes up to bdad2a789e30703a825b876279665720d06d55dc:
>
>    python3-werkzeug: fix for CVE-2023-23934 (2023-06-11 11:43:33 -0400)
>
> ----------------------------------------------------------------
> Hitendra Prajapati (3):
>        wireshark: CVE-2023-2855 Candump log file parser crash
>        wireshark: CVE-2023-2856 VMS TCPIPtrace file parser crash
>        wireshark: Fix CVE-2023-2858 & CVE-2023-2879
>
> Narpat Mali (1):
>        python3-werkzeug: fix for CVE-2023-23934
>
> schitrod=cisco.com@lists.openembedded.org (1):
>        gnulib: Update recipe name to 2018-12-18
>
> vkumbhar (1):
>        c-ares: fix CVEs CVE-2023-32067 and CVE-2023-31130
>
>   .../recipes-support/wireshark/files/CVE-2023-2855.patch         | 108
> +++++++++
>   .../recipes-support/wireshark/files/CVE-2023-2856.patch         | 69
> ++++++
>   .../recipes-support/wireshark/files/CVE-2023-2858.patch         | 95
> ++++++++
>   .../recipes-support/wireshark/files/CVE-2023-2879.patch         | 37 ++++
>   meta-networking/recipes-support/wireshark/wireshark_3.4.12.bb   | 4 +
>   meta-oe/recipes-support/c-ares/c-ares/CVE-2023-31130.patch      | 328
> ++++++++++++++++++++++++++++
>   meta-oe/recipes-support/c-ares/c-ares/CVE-2023-32067.patch      | 85
> +++++++
>   meta-oe/recipes-support/c-ares/c-ares_1.18.1.bb                 | 2 +
>   .../gnulib/{gnulib_2018-03-07.03.bb => gnulib_2018-12-18.bb} |   0
>   .../python/python3-werkzeug/CVE-2023-23934.patch                | 116
> ++++++++++
>   meta-python/recipes-devtools/python/python3-werkzeug_2.1.1.bb   | 3 +-
>   11 files changed, 846 insertions(+), 1 deletion(-)
>   create mode 100644
> meta-networking/recipes-support/wireshark/files/CVE-2023-2855.patch
>   create mode 100644
> meta-networking/recipes-support/wireshark/files/CVE-2023-2856.patch
>   create mode 100644
> meta-networking/recipes-support/wireshark/files/CVE-2023-2858.patch
>   create mode 100644
> meta-networking/recipes-support/wireshark/files/CVE-2023-2879.patch
>   create mode 100644
> meta-oe/recipes-support/c-ares/c-ares/CVE-2023-31130.patch
>   create mode 100644
> meta-oe/recipes-support/c-ares/c-ares/CVE-2023-32067.patch
>   rename meta-oe/recipes-support/gnulib/{gnulib_2018-03-07.03.bb =>
> gnulib_2018-12-18.bb} (100%)
>   create mode 100644
> meta-python/recipes-devtools/python/python3-werkzeug/CVE-2023-23934.patch
>