From patchwork Fri May 9 10:22:24 2025 Content-Type: text/plain; charset="utf-8" MIME-Version: 1.0 Content-Transfer-Encoding: 7bit X-Patchwork-Submitter: "Polampalli, Archana" X-Patchwork-Id: 62667 X-Patchwork-Delegate: steve@sakoman.com Return-Path: X-Spam-Checker-Version: SpamAssassin 3.4.0 (2014-02-07) on aws-us-west-2-korg-lkml-1.web.codeaurora.org Received: from aws-us-west-2-korg-lkml-1.web.codeaurora.org (localhost.localdomain [127.0.0.1]) by smtp.lore.kernel.org (Postfix) with ESMTP id E438BC3ABC9 for ; Fri, 9 May 2025 10:22:35 +0000 (UTC) Received: from mx0a-0064b401.pphosted.com (mx0a-0064b401.pphosted.com [205.220.166.238]) by mx.groups.io with SMTP id smtpd.web11.11048.1746786152799856257 for ; Fri, 09 May 2025 03:22:32 -0700 Authentication-Results: mx.groups.io; dkim=none (message not signed); spf=permerror, err=parse error for token &{10 18 %{ir}.%{v}.%{d}.spf.has.pphosted.com}: invalid domain name (domain: windriver.com, ip: 205.220.166.238, mailfrom: prvs=7224ebccee=archana.polampalli@windriver.com) Received: from pps.filterd (m0250809.ppops.net [127.0.0.1]) by mx0a-0064b401.pphosted.com (8.18.1.2/8.18.1.2) with ESMTP id 54950Kou029334 for ; Fri, 9 May 2025 03:22:32 -0700 Received: from ala-exchng01.corp.ad.wrs.com (ala-exchng01.wrs.com [147.11.82.252]) by mx0a-0064b401.pphosted.com (PPS) with ESMTPS id 46djnjxyd2-1 (version=TLSv1.2 cipher=ECDHE-RSA-AES128-GCM-SHA256 bits=128 verify=NOT) for ; Fri, 09 May 2025 03:22:32 -0700 (PDT) Received: from ALA-EXCHNG02.corp.ad.wrs.com (147.11.82.254) by ala-exchng01.corp.ad.wrs.com (147.11.82.252) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256) id 15.1.2507.43; Fri, 9 May 2025 03:22:31 -0700 Received: from blr-linux-engg1.wrs.com (147.11.136.210) by ALA-EXCHNG02.corp.ad.wrs.com (147.11.82.254) with Microsoft SMTP Server id 15.1.2507.43 via Frontend Transport; Fri, 9 May 2025 03:22:30 -0700 From: To: Subject: [oe-core][Walnascar][PATCH 1/5] perlcross: 1.6 -> 1.6.2 Date: Fri, 9 May 2025 10:22:24 +0000 Message-ID: <20250509102228.3422688-1-archana.polampalli@windriver.com> X-Mailer: git-send-email 2.40.0 MIME-Version: 1.0 X-Proofpoint-Spam-Details-Enc: AW1haW4tMjUwNTA5MDEwMCBTYWx0ZWRfX2i31PJoE3ANw hqCZPYrI2+aewh1mMbSnZXztxNq9nPWFca21UbC+EI9MbLYTWK5mQC5C05faHo9L4zBiOe0ytuL QkV6WM4oefwRMXQdMYCpZerjzOU9nTrncF3C5bBbu6ykdOQnBrdD+KwechDIEP+/MbgtyDgIAW+ V9WiYQJNW0oQLzyBxAsTVkUTzKZCGR51WzNEO0XyJbb2whYWEwOtn4YzS2QNQwFC9UnRsWPqod4 GZYyckGGZ8tYOJb5fVxN9Sgea/6TATlgh9jYJoZQDlgqX2ZIq50eu70giyVdns/AXzZMUxeikZ4 GACfbm3W9qBgVfPZavFdUuhndVa/xCVI4rfW0F+wVT1Ykg5/KgaY6i0f0+QE09ADKFP/BYlnvvT xE5RcSrQO91O6LavIgqdjU8Bu0XIS0AXbe0DfK13U+qA26ZvZuvKF3dfr022d+kRZXewFPgK X-Proofpoint-ORIG-GUID: x1rfK2n7pkdKLIn8tG8PkBSGnHOuad0b X-Proofpoint-GUID: x1rfK2n7pkdKLIn8tG8PkBSGnHOuad0b X-Authority-Analysis: v=2.4 cv=KdHSsRYD c=1 sm=1 tr=0 ts=681dd768 cx=c_pps a=/ZJR302f846pc/tyiSlYyQ==:117 a=/ZJR302f846pc/tyiSlYyQ==:17 a=dt9VzEwgFbYA:10 a=NEAV23lmAAAA:8 a=t7CeM3EgAAAA:8 a=NTMw5P6yZUwW3rI8E4gA:9 a=FdTzh2GWekK77mhwV6Dw:22 X-Sensitive_Customer_Information: Yes X-Proofpoint-Virus-Version: vendor=baseguard engine=ICAP:2.0.293,Aquarius:18.0.1099,Hydra:6.0.736,FMLib:17.12.80.40 definitions=2025-05-09_04,2025-05-08_04,2025-02-21_01 X-Proofpoint-Spam-Details: rule=outbound_notspam policy=outbound score=0 clxscore=1015 mlxlogscore=999 suspectscore=0 spamscore=0 priorityscore=1501 impostorscore=0 lowpriorityscore=0 malwarescore=0 mlxscore=0 adultscore=0 phishscore=0 bulkscore=0 classifier=spam authscore=0 authtc=n/a authcc= route=outbound adjust=0 reason=mlx scancount=1 engine=8.21.0-2504070000 definitions=main-2505090100 List-Id: X-Webhook-Received: from li982-79.members.linode.com [45.33.32.79] by aws-us-west-2-korg-lkml-1.web.codeaurora.org with HTTPS for ; Fri, 09 May 2025 10:22:35 -0000 X-Groupsio-URL: https://lists.openembedded.org/g/openembedded-core/message/216192 From: Archana Polampalli Provide support for Perl 5.40.2 https://github.com/arsv/perl-cross/releases/tag/1.6.2 Signed-off-by: Archana Polampalli --- .../perl-cross/{perlcross_1.6.bb => perlcross_1.6.2.bb} | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) rename meta/recipes-devtools/perl-cross/{perlcross_1.6.bb => perlcross_1.6.2.bb} (92%) diff --git a/meta/recipes-devtools/perl-cross/perlcross_1.6.bb b/meta/recipes-devtools/perl-cross/perlcross_1.6.2.bb similarity index 92% rename from meta/recipes-devtools/perl-cross/perlcross_1.6.bb rename to meta/recipes-devtools/perl-cross/perlcross_1.6.2.bb index 34d9236cab..42ba15a572 100644 --- a/meta/recipes-devtools/perl-cross/perlcross_1.6.bb +++ b/meta/recipes-devtools/perl-cross/perlcross_1.6.2.bb @@ -18,7 +18,7 @@ SRC_URI = "${GITHUB_BASE_URI}/download/${PV}/perl-cross-${PV}.tar.gz;name=perl-c " GITHUB_BASE_URI = "https://github.com/arsv/perl-cross/releases/" -SRC_URI[perl-cross.sha256sum] = "5abf198ee50ce9e69eb68fede68c87f65241caa744e4203e97490fa59b45ed69" +SRC_URI[perl-cross.sha256sum] = "131f7496152ee32067dbac2bc9b44b2f582fc778140e545701b3b2faee782f1d" S = "${WORKDIR}/perl-cross-${PV}" From patchwork Fri May 9 10:22:25 2025 Content-Type: text/plain; charset="utf-8" MIME-Version: 1.0 Content-Transfer-Encoding: 7bit X-Patchwork-Submitter: "Polampalli, Archana" X-Patchwork-Id: 62666 X-Patchwork-Delegate: steve@sakoman.com Return-Path: X-Spam-Checker-Version: SpamAssassin 3.4.0 (2014-02-07) on aws-us-west-2-korg-lkml-1.web.codeaurora.org Received: from aws-us-west-2-korg-lkml-1.web.codeaurora.org (localhost.localdomain [127.0.0.1]) by smtp.lore.kernel.org (Postfix) with ESMTP id E4358C3ABC3 for ; Fri, 9 May 2025 10:22:35 +0000 (UTC) Received: from mx0a-0064b401.pphosted.com (mx0a-0064b401.pphosted.com [205.220.166.238]) by mx.groups.io with SMTP id smtpd.web11.11050.1746786154628187512 for ; Fri, 09 May 2025 03:22:34 -0700 Authentication-Results: mx.groups.io; dkim=none (message not signed); spf=permerror, err=parse error for token &{10 18 %{ir}.%{v}.%{d}.spf.has.pphosted.com}: invalid domain name (domain: windriver.com, ip: 205.220.166.238, mailfrom: prvs=7224ebccee=archana.polampalli@windriver.com) Received: from pps.filterd (m0250810.ppops.net [127.0.0.1]) by mx0a-0064b401.pphosted.com (8.18.1.2/8.18.1.2) with ESMTP id 5497XIOF024027 for ; Fri, 9 May 2025 03:22:34 -0700 Received: from ala-exchng01.corp.ad.wrs.com (ala-exchng01.wrs.com [147.11.82.252]) by mx0a-0064b401.pphosted.com (PPS) with ESMTPS id 46dee3f1hu-1 (version=TLSv1.2 cipher=ECDHE-RSA-AES128-GCM-SHA256 bits=128 verify=NOT) for ; Fri, 09 May 2025 03:22:34 -0700 (PDT) Received: from ALA-EXCHNG02.corp.ad.wrs.com (147.11.82.254) by ala-exchng01.corp.ad.wrs.com (147.11.82.252) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256) id 15.1.2507.43; Fri, 9 May 2025 03:22:33 -0700 Received: from blr-linux-engg1.wrs.com (147.11.136.210) by ALA-EXCHNG02.corp.ad.wrs.com (147.11.82.254) with Microsoft SMTP Server id 15.1.2507.43 via Frontend Transport; Fri, 9 May 2025 03:22:32 -0700 From: To: Subject: [oe-core][Walnascar][PATCH 2/5] perl: upgrade 5.40.0 -> 5.40.2 Date: Fri, 9 May 2025 10:22:25 +0000 Message-ID: <20250509102228.3422688-2-archana.polampalli@windriver.com> X-Mailer: git-send-email 2.40.0 In-Reply-To: <20250509102228.3422688-1-archana.polampalli@windriver.com> References: <20250509102228.3422688-1-archana.polampalli@windriver.com> MIME-Version: 1.0 X-Proofpoint-ORIG-GUID: -Oo12H4bf0_wlzBxXU5mdICmlnamcin- X-Authority-Analysis: v=2.4 cv=Pd3/hjhd c=1 sm=1 tr=0 ts=681dd76a cx=c_pps a=/ZJR302f846pc/tyiSlYyQ==:117 a=/ZJR302f846pc/tyiSlYyQ==:17 a=dt9VzEwgFbYA:10 a=wyjpycHzAAAA:8 a=t7CeM3EgAAAA:8 a=qcqivgu2rmkcyegf-EoA:9 a=ROKTiUA5NBresHysc1Cf:22 a=FdTzh2GWekK77mhwV6Dw:22 X-Proofpoint-GUID: -Oo12H4bf0_wlzBxXU5mdICmlnamcin- X-Proofpoint-Spam-Details-Enc: AW1haW4tMjUwNTA5MDEwMCBTYWx0ZWRfX67cKd24yk+VI Ft+kYP/WuPR4mWTZn6Z0lowlKBYLB1xKyZfSgdIJjX1o2kAGB8cSbjEr+uI2+Tmx+g4OBcgAub+ APnojfdbtXFx9bSR+6T5qwPIgja0QgfDALWxl9Ic/E8lNlv0sz4zycC8NUm2sulE8Rqwa0wq70+ hs76ELI1HBturKP++6E0ccPZ+LIgXdLlqjCgzaam1NdAMqzdRyUpgQrrPvBNfxNtSQIyPtfAKfT 2SYIjJLqv/HjlLHoZI7pk+LFEg0TbFKI4haB+QLjpQrJyOe87uhi60K78n/CZ9gS0cmz2eom9xn k5H9FN+26BhD5gUvZRhFl1/5nBItQTU+VCnmE+wKculAXGWqO6rSvbvzdvnB3DyGLA1Dds0ZaoD hY1kyEkApStWj+WJ8TFjgw9qEf7FJgKdVZIdgFetBdJhBFD/sIzBzsP4b1guMPVZG9q3lBsC X-Sensitive_Customer_Information: Yes X-Proofpoint-Virus-Version: vendor=baseguard engine=ICAP:2.0.293,Aquarius:18.0.1099,Hydra:6.0.736,FMLib:17.12.80.40 definitions=2025-05-09_04,2025-05-08_04,2025-02-21_01 X-Proofpoint-Spam-Details: rule=outbound_notspam policy=outbound score=0 adultscore=0 priorityscore=1501 mlxscore=0 suspectscore=0 spamscore=0 malwarescore=0 impostorscore=0 clxscore=1015 mlxlogscore=843 phishscore=0 bulkscore=0 lowpriorityscore=0 classifier=spam authscore=0 authtc=n/a authcc= route=outbound adjust=0 reason=mlx scancount=1 engine=8.21.0-2504070000 definitions=main-2505090100 List-Id: X-Webhook-Received: from li982-79.members.linode.com [45.33.32.79] by aws-us-west-2-korg-lkml-1.web.codeaurora.org with HTTPS for ; Fri, 09 May 2025 10:22:35 -0000 X-Groupsio-URL: https://lists.openembedded.org/g/openembedded-core/message/216193 From: Archana Polampalli https://metacpan.org/pod/perldelta This provides a fix for CVE-2024-56406 Signed-off-by: Archana Polampalli --- meta/recipes-devtools/perl/{perl_5.40.0.bb => perl_5.40.2.bb} | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) rename meta/recipes-devtools/perl/{perl_5.40.0.bb => perl_5.40.2.bb} (99%) diff --git a/meta/recipes-devtools/perl/perl_5.40.0.bb b/meta/recipes-devtools/perl/perl_5.40.2.bb similarity index 99% rename from meta/recipes-devtools/perl/perl_5.40.0.bb rename to meta/recipes-devtools/perl/perl_5.40.2.bb index 0d4338f29f..95c230060d 100644 --- a/meta/recipes-devtools/perl/perl_5.40.0.bb +++ b/meta/recipes-devtools/perl/perl_5.40.2.bb @@ -25,7 +25,7 @@ SRC_URI:append:class-target = " \ file://encodefix.patch \ " -SRC_URI[perl.sha256sum] = "c740348f357396327a9795d3e8323bafd0fe8a5c7835fc1cbaba0cc8dfe7161f" +SRC_URI[perl.sha256sum] = "10d4647cfbb543a7f9ae3e5f6851ec49305232ea7621aed24c7cfbb0bef4b70d" B = "${WORKDIR}/perl-${PV}-build" From patchwork Fri May 9 10:22:26 2025 Content-Type: text/plain; charset="utf-8" MIME-Version: 1.0 Content-Transfer-Encoding: 7bit X-Patchwork-Submitter: "Polampalli, Archana" X-Patchwork-Id: 62669 X-Patchwork-Delegate: steve@sakoman.com Return-Path: X-Spam-Checker-Version: SpamAssassin 3.4.0 (2014-02-07) on aws-us-west-2-korg-lkml-1.web.codeaurora.org Received: from aws-us-west-2-korg-lkml-1.web.codeaurora.org (localhost.localdomain [127.0.0.1]) by smtp.lore.kernel.org (Postfix) with ESMTP id C0961C3ABC3 for ; Fri, 9 May 2025 10:22:45 +0000 (UTC) Received: from mx0a-0064b401.pphosted.com (mx0a-0064b401.pphosted.com [205.220.166.238]) by mx.groups.io with SMTP id smtpd.web10.11120.1746786156813631887 for ; Fri, 09 May 2025 03:22:36 -0700 Authentication-Results: mx.groups.io; dkim=none (message not signed); spf=permerror, err=parse error for token &{10 18 %{ir}.%{v}.%{d}.spf.has.pphosted.com}: invalid domain name (domain: windriver.com, ip: 205.220.166.238, mailfrom: prvs=7224ebccee=archana.polampalli@windriver.com) Received: from pps.filterd (m0250809.ppops.net [127.0.0.1]) by mx0a-0064b401.pphosted.com (8.18.1.2/8.18.1.2) with ESMTP id 54950Kov029334 for ; Fri, 9 May 2025 03:22:36 -0700 Received: from ala-exchng01.corp.ad.wrs.com (ala-exchng01.wrs.com [147.11.82.252]) by mx0a-0064b401.pphosted.com (PPS) with ESMTPS id 46djnjxyd6-1 (version=TLSv1.2 cipher=ECDHE-RSA-AES128-GCM-SHA256 bits=128 verify=NOT) for ; Fri, 09 May 2025 03:22:36 -0700 (PDT) Received: from ALA-EXCHNG02.corp.ad.wrs.com (147.11.82.254) by ala-exchng01.corp.ad.wrs.com (147.11.82.252) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256) id 15.1.2507.43; Fri, 9 May 2025 03:22:35 -0700 Received: from blr-linux-engg1.wrs.com (147.11.136.210) by ALA-EXCHNG02.corp.ad.wrs.com (147.11.82.254) with Microsoft SMTP Server id 15.1.2507.43 via Frontend Transport; Fri, 9 May 2025 03:22:34 -0700 From: To: Subject: [oe-core][Walnascar][PATCH 3/5] go: upgrade 1.24.1 -> 1.24.2 Date: Fri, 9 May 2025 10:22:26 +0000 Message-ID: <20250509102228.3422688-3-archana.polampalli@windriver.com> X-Mailer: git-send-email 2.40.0 In-Reply-To: <20250509102228.3422688-1-archana.polampalli@windriver.com> References: <20250509102228.3422688-1-archana.polampalli@windriver.com> MIME-Version: 1.0 X-Proofpoint-Spam-Details-Enc: AW1haW4tMjUwNTA5MDEwMCBTYWx0ZWRfX/fybQUgXRQyl qOavlK0usyi38OUulVCswSAOFtrK7t9bMbEdz0Pe/ODbAcJuC3vh0AGIE28lfJNBhk/ng15AhwH orF9chx68+jiU249nCJYnjBseHPQVQvz1K6CnbjxHuFFbeEqR4JLdK9UO5rlJ8z6T9G2KEKh4+r 7C8uiHEF2dF1lJc46cdF5uf/CqMPg+RVbZvbnqH5GxvuCALzdGQlfixcyHzXMZUDnJkECfK/dUJ jQRx64MxYVIMxtHWbDQlxkHcmGBfG+itQamQuf2do2v1i4m1VgbceaTPoBoA5jfv3iqAJp+CK7w puUO8CM9uZCCet/uSCYTaMQBv0qspeoixUzv6mUH8NQ6r0EZ+8kEKGlvSLCqgGhhLd5WDsaP+mB 3f7SH/BNpV3KAXwwFQ9op1HudinGzPRth6J8Mmut0b44JfK41jlRNbH+lrefQB+y4xnTVBfF X-Proofpoint-ORIG-GUID: FORopTGLWjYt9-uvGirqHNxlb89NMe4Q X-Proofpoint-GUID: FORopTGLWjYt9-uvGirqHNxlb89NMe4Q X-Authority-Analysis: v=2.4 cv=KdHSsRYD c=1 sm=1 tr=0 ts=681dd76c cx=c_pps a=/ZJR302f846pc/tyiSlYyQ==:117 a=/ZJR302f846pc/tyiSlYyQ==:17 a=dt9VzEwgFbYA:10 a=NEAV23lmAAAA:8 a=plf8rDjJAAAA:8 a=1XWaLZrsAAAA:8 a=pM9yUfARAAAA:8 a=t7CeM3EgAAAA:8 a=wTbFulhFaOLR5d1XN8EA:9 a=rDGJdTlHWfUGzjU4:21 a=JWTSs7K9Rhv-lrTctFka:22 a=YH-7kEGJnRg4CV3apUU-:22 a=FdTzh2GWekK77mhwV6Dw:22 X-Sensitive_Customer_Information: Yes X-Proofpoint-Virus-Version: vendor=baseguard engine=ICAP:2.0.293,Aquarius:18.0.1099,Hydra:6.0.736,FMLib:17.12.80.40 definitions=2025-05-09_04,2025-05-08_04,2025-02-21_01 X-Proofpoint-Spam-Details: rule=outbound_notspam policy=outbound score=0 clxscore=1015 mlxlogscore=999 suspectscore=0 spamscore=0 priorityscore=1501 impostorscore=0 lowpriorityscore=0 malwarescore=0 mlxscore=0 adultscore=0 phishscore=0 bulkscore=0 classifier=spam authscore=0 authtc=n/a authcc= route=outbound adjust=0 reason=mlx scancount=1 engine=8.21.0-2504070000 definitions=main-2505090100 List-Id: X-Webhook-Received: from li982-79.members.linode.com [45.33.32.79] by aws-us-west-2-korg-lkml-1.web.codeaurora.org with HTTPS for ; Fri, 09 May 2025 10:22:45 -0000 X-Groupsio-URL: https://lists.openembedded.org/g/openembedded-core/message/216194 From: Archana Polampalli Fixes CVE-2025-22871 https://github.com/golang/go/compare/go1.24.1...go1.24.2 Signed-off-by: Archana Polampalli --- meta/recipes-devtools/go/{go-1.24.1.inc => go-1.24.2.inc} | 2 +- ...o-binary-native_1.24.1.bb => go-binary-native_1.24.2.bb} | 6 +++--- ...cross-canadian_1.24.1.bb => go-cross-canadian_1.24.2.bb} | 0 .../go/{go-cross_1.24.1.bb => go-cross_1.24.2.bb} | 0 .../go/{go-crosssdk_1.24.1.bb => go-crosssdk_1.24.2.bb} | 0 .../go/{go-runtime_1.24.1.bb => go-runtime_1.24.2.bb} | 0 meta/recipes-devtools/go/{go_1.24.1.bb => go_1.24.2.bb} | 0 7 files changed, 4 insertions(+), 4 deletions(-) rename meta/recipes-devtools/go/{go-1.24.1.inc => go-1.24.2.inc} (91%) rename meta/recipes-devtools/go/{go-binary-native_1.24.1.bb => go-binary-native_1.24.2.bb} (78%) rename meta/recipes-devtools/go/{go-cross-canadian_1.24.1.bb => go-cross-canadian_1.24.2.bb} (100%) rename meta/recipes-devtools/go/{go-cross_1.24.1.bb => go-cross_1.24.2.bb} (100%) rename meta/recipes-devtools/go/{go-crosssdk_1.24.1.bb => go-crosssdk_1.24.2.bb} (100%) rename meta/recipes-devtools/go/{go-runtime_1.24.1.bb => go-runtime_1.24.2.bb} (100%) rename meta/recipes-devtools/go/{go_1.24.1.bb => go_1.24.2.bb} (100%) diff --git a/meta/recipes-devtools/go/go-1.24.1.inc b/meta/recipes-devtools/go/go-1.24.2.inc similarity index 91% rename from meta/recipes-devtools/go/go-1.24.1.inc rename to meta/recipes-devtools/go/go-1.24.2.inc index 4cf66e705a..cb4ae9ef80 100644 --- a/meta/recipes-devtools/go/go-1.24.1.inc +++ b/meta/recipes-devtools/go/go-1.24.2.inc @@ -17,4 +17,4 @@ SRC_URI += "\ file://0010-cmd-go-clear-GOROOT-for-func-ldShared-when-trimpath-.patch \ file://6d265b008e3d106b2706645e5a88cd8e2fb98953.patch \ " -SRC_URI[main.sha256sum] = "8244ebf46c65607db10222b5806aeb31c1fcf8979c1b6b12f60c677e9a3c0656" +SRC_URI[main.sha256sum] = "9dc77ffadc16d837a1bf32d99c624cb4df0647cee7b119edd9e7b1bcc05f2e00" diff --git a/meta/recipes-devtools/go/go-binary-native_1.24.1.bb b/meta/recipes-devtools/go/go-binary-native_1.24.2.bb similarity index 78% rename from meta/recipes-devtools/go/go-binary-native_1.24.1.bb rename to meta/recipes-devtools/go/go-binary-native_1.24.2.bb index ffe3d50b7b..65ef93e2e0 100644 --- a/meta/recipes-devtools/go/go-binary-native_1.24.1.bb +++ b/meta/recipes-devtools/go/go-binary-native_1.24.2.bb @@ -9,10 +9,10 @@ PROVIDES = "go-native" # Checksums available at https://go.dev/dl/ SRC_URI = "https://dl.google.com/go/go${PV}.${BUILD_GOOS}-${BUILD_GOARCH}.tar.gz;name=go_${BUILD_GOTUPLE}" -SRC_URI[go_linux_amd64.sha256sum] = "cb2396bae64183cdccf81a9a6df0aea3bce9511fc21469fb89a0c00470088073" -SRC_URI[go_linux_arm64.sha256sum] = "8df5750ffc0281017fb6070fba450f5d22b600a02081dceef47966ffaf36a3af" -SRC_URI[go_linux_ppc64le.sha256sum] = "0fb522efcefabae6e37e69bdc444094e75bfe824ea6d4cc3cbc70c7ae1b16858" +SRC_URI[go_linux_amd64.sha256sum] = "68097bd680839cbc9d464a0edce4f7c333975e27a90246890e9f1078c7e702ad" +SRC_URI[go_linux_arm64.sha256sum] = "756274ea4b68fa5535eb9fe2559889287d725a8da63c6aae4d5f23778c229f4b" +SRC_URI[go_linux_ppc64le.sha256sum] = "5fff857791d541c71d8ea0171c73f6f99770d15ff7e2ad979104856d01f36563" UPSTREAM_CHECK_URI = "https://golang.org/dl/" UPSTREAM_CHECK_REGEX = "go(?P\d+(\.\d+)+)\.linux" diff --git a/meta/recipes-devtools/go/go-cross-canadian_1.24.1.bb b/meta/recipes-devtools/go/go-cross-canadian_1.24.2.bb similarity index 100% rename from meta/recipes-devtools/go/go-cross-canadian_1.24.1.bb rename to meta/recipes-devtools/go/go-cross-canadian_1.24.2.bb diff --git a/meta/recipes-devtools/go/go-cross_1.24.1.bb b/meta/recipes-devtools/go/go-cross_1.24.2.bb similarity index 100% rename from meta/recipes-devtools/go/go-cross_1.24.1.bb rename to meta/recipes-devtools/go/go-cross_1.24.2.bb diff --git a/meta/recipes-devtools/go/go-crosssdk_1.24.1.bb b/meta/recipes-devtools/go/go-crosssdk_1.24.2.bb similarity index 100% rename from meta/recipes-devtools/go/go-crosssdk_1.24.1.bb rename to meta/recipes-devtools/go/go-crosssdk_1.24.2.bb diff --git a/meta/recipes-devtools/go/go-runtime_1.24.1.bb b/meta/recipes-devtools/go/go-runtime_1.24.2.bb similarity index 100% rename from meta/recipes-devtools/go/go-runtime_1.24.1.bb rename to meta/recipes-devtools/go/go-runtime_1.24.2.bb diff --git a/meta/recipes-devtools/go/go_1.24.1.bb b/meta/recipes-devtools/go/go_1.24.2.bb similarity index 100% rename from meta/recipes-devtools/go/go_1.24.1.bb rename to meta/recipes-devtools/go/go_1.24.2.bb From patchwork Fri May 9 10:22:27 2025 Content-Type: text/plain; charset="utf-8" MIME-Version: 1.0 Content-Transfer-Encoding: 7bit X-Patchwork-Submitter: "Polampalli, Archana" X-Patchwork-Id: 62668 X-Patchwork-Delegate: steve@sakoman.com Return-Path: X-Spam-Checker-Version: SpamAssassin 3.4.0 (2014-02-07) on aws-us-west-2-korg-lkml-1.web.codeaurora.org Received: from aws-us-west-2-korg-lkml-1.web.codeaurora.org (localhost.localdomain [127.0.0.1]) by smtp.lore.kernel.org (Postfix) with ESMTP id C0990C3ABC9 for ; Fri, 9 May 2025 10:22:45 +0000 (UTC) Received: from mx0a-0064b401.pphosted.com (mx0a-0064b401.pphosted.com [205.220.166.238]) by mx.groups.io with SMTP id smtpd.web10.11121.1746786158758393059 for ; Fri, 09 May 2025 03:22:38 -0700 Authentication-Results: mx.groups.io; dkim=none (message not signed); spf=permerror, err=parse error for token &{10 18 %{ir}.%{v}.%{d}.spf.has.pphosted.com}: invalid domain name (domain: windriver.com, ip: 205.220.166.238, mailfrom: prvs=7224ebccee=archana.polampalli@windriver.com) Received: from pps.filterd (m0250809.ppops.net [127.0.0.1]) by mx0a-0064b401.pphosted.com (8.18.1.2/8.18.1.2) with ESMTP id 54950Kow029334 for ; Fri, 9 May 2025 03:22:38 -0700 Received: from ala-exchng01.corp.ad.wrs.com (ala-exchng01.wrs.com [147.11.82.252]) by mx0a-0064b401.pphosted.com (PPS) with ESMTPS id 46djnjxyda-1 (version=TLSv1.2 cipher=ECDHE-RSA-AES128-GCM-SHA256 bits=128 verify=NOT) for ; Fri, 09 May 2025 03:22:38 -0700 (PDT) Received: from ALA-EXCHNG02.corp.ad.wrs.com (147.11.82.254) by ala-exchng01.corp.ad.wrs.com (147.11.82.252) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256) id 15.1.2507.43; Fri, 9 May 2025 03:22:37 -0700 Received: from blr-linux-engg1.wrs.com (147.11.136.210) by ALA-EXCHNG02.corp.ad.wrs.com (147.11.82.254) with Microsoft SMTP Server id 15.1.2507.43 via Frontend Transport; Fri, 9 May 2025 03:22:36 -0700 From: To: Subject: [oe-core][Walnascar][PATCH 4/5] openssh: fix CVE-2025-32728 Date: Fri, 9 May 2025 10:22:27 +0000 Message-ID: <20250509102228.3422688-4-archana.polampalli@windriver.com> X-Mailer: git-send-email 2.40.0 In-Reply-To: <20250509102228.3422688-1-archana.polampalli@windriver.com> References: <20250509102228.3422688-1-archana.polampalli@windriver.com> MIME-Version: 1.0 X-Proofpoint-Spam-Details-Enc: AW1haW4tMjUwNTA5MDEwMCBTYWx0ZWRfX56J+YI3hE2NE mhKic09ZyUynKPOBp+gH/qaUEJae1KN4jVifxy4cuVmpalnjrzXsMlFjhb0Y8bgykbXLvAw/xww aticDaZGqXTwGb919jCnAqfv/eFNX0giKQB5kry11PVvu6ztq7zuWvelart7Qi4lWGuw6yctfMk wYwL1BwrhwafeBvilUrZDrdKGzE72qtandv3Vigf4fPgtq6oIzeKfDZC+r2Echdaa/no+Gm3oxw 47wcTPVNy3u759CLS2PHGTuwev+FfQPdWaOtFp1/nFGLV7MJEU1xh0+c3EGfz32N1+lC53hEUTH UvxQ1BbTJiKDlMKKdoEijhpG0cJwJZ2my5DLQRqx8QvsuoUaF5Se57NopI+6q5Ad3Ht2cZ0IFdb GHKLzCVtUfFUJZddbkNCYrVJzwqb74n6/3zLPN+Cs0zLDnCr0M3KtO/aCPaynqPxGa52WIsv X-Proofpoint-ORIG-GUID: cwkOq4WsTY4-Doi-h20lyfq4PhbpR-xP X-Proofpoint-GUID: cwkOq4WsTY4-Doi-h20lyfq4PhbpR-xP X-Authority-Analysis: v=2.4 cv=KdHSsRYD c=1 sm=1 tr=0 ts=681dd76e cx=c_pps a=/ZJR302f846pc/tyiSlYyQ==:117 a=/ZJR302f846pc/tyiSlYyQ==:17 a=dt9VzEwgFbYA:10 a=NEAV23lmAAAA:8 a=3tcz3bTJAAAA:8 a=t7CeM3EgAAAA:8 a=5G3tLGQadNnIt0CeWF8A:9 a=4EbjBm0RLgFgoQzmu6QD:22 a=FdTzh2GWekK77mhwV6Dw:22 X-Sensitive_Customer_Information: Yes X-Proofpoint-Virus-Version: vendor=baseguard engine=ICAP:2.0.293,Aquarius:18.0.1099,Hydra:6.0.736,FMLib:17.12.80.40 definitions=2025-05-09_04,2025-05-08_04,2025-02-21_01 X-Proofpoint-Spam-Details: rule=outbound_notspam policy=outbound score=0 clxscore=1015 mlxlogscore=999 suspectscore=0 spamscore=0 priorityscore=1501 impostorscore=0 lowpriorityscore=0 malwarescore=0 mlxscore=0 adultscore=0 phishscore=0 bulkscore=0 classifier=spam authscore=0 authtc=n/a authcc= route=outbound adjust=0 reason=mlx scancount=1 engine=8.21.0-2504070000 definitions=main-2505090100 List-Id: X-Webhook-Received: from li982-79.members.linode.com [45.33.32.79] by aws-us-west-2-korg-lkml-1.web.codeaurora.org with HTTPS for ; Fri, 09 May 2025 10:22:45 -0000 X-Groupsio-URL: https://lists.openembedded.org/g/openembedded-core/message/216195 From: Archana Polampalli In sshd in OpenSSH before 10.0, the DisableForwarding directive does not adhere to the documentation stating that it disables X11 and agent forwarding. Signed-off-by: Archana Polampalli --- .../openssh/openssh/CVE-2025-32728.patch | 43 +++++++++++++++++++ .../openssh/openssh_9.9p2.bb | 1 + 2 files changed, 44 insertions(+) create mode 100644 meta/recipes-connectivity/openssh/openssh/CVE-2025-32728.patch diff --git a/meta/recipes-connectivity/openssh/openssh/CVE-2025-32728.patch b/meta/recipes-connectivity/openssh/openssh/CVE-2025-32728.patch new file mode 100644 index 0000000000..db47947b42 --- /dev/null +++ b/meta/recipes-connectivity/openssh/openssh/CVE-2025-32728.patch @@ -0,0 +1,43 @@ +From fc86875e6acb36401dfc1dfb6b628a9d1460f367 Mon Sep 17 00:00:00 2001 +From: "djm@openbsd.org" +Date: Wed, 9 Apr 2025 07:00:03 +0000 +Subject: [PATCH] upstream: Fix logic error in DisableForwarding option. This + option + +was documented as disabling X11 and agent forwarding but it failed to do so. +Spotted by Tim Rice. + +OpenBSD-Commit-ID: fffc89195968f7eedd2fc57f0b1f1ef3193f5ed1 + +Upstream-Status: Backport [https://github.com/openssh/openssh-portable/commit/fc86875e6acb36401dfc1dfb6b628a9d1460f367] +CVE: CVE-2025-32728 +Signed-off-by: Archana Polampalli +--- + session.c | 5 +++-- + 1 file changed, 3 insertions(+), 2 deletions(-) + +diff --git a/session.c b/session.c +index aa342e8..eb932b8 100644 +--- a/session.c ++++ b/session.c +@@ -2191,7 +2191,8 @@ session_auth_agent_req(struct ssh *ssh, Session *s) + if ((r = sshpkt_get_end(ssh)) != 0) + sshpkt_fatal(ssh, r, "%s: parse packet", __func__); + if (!auth_opts->permit_agent_forwarding_flag || +- !options.allow_agent_forwarding) { ++ !options.allow_agent_forwarding || ++ options.disable_forwarding) { + debug_f("agent forwarding disabled"); + return 0; + } +@@ -2586,7 +2587,7 @@ session_setup_x11fwd(struct ssh *ssh, Session *s) + ssh_packet_send_debug(ssh, "X11 forwarding disabled by key options."); + return 0; + } +- if (!options.x11_forwarding) { ++ if (!options.x11_forwarding || options.disable_forwarding) { + debug("X11 forwarding disabled in server configuration file."); + return 0; + } +-- +2.25.1 diff --git a/meta/recipes-connectivity/openssh/openssh_9.9p2.bb b/meta/recipes-connectivity/openssh/openssh_9.9p2.bb index 5191725796..8d3ea4d632 100644 --- a/meta/recipes-connectivity/openssh/openssh_9.9p2.bb +++ b/meta/recipes-connectivity/openssh/openssh_9.9p2.bb @@ -25,6 +25,7 @@ SRC_URI = "https://ftp.openbsd.org/pub/OpenBSD/OpenSSH/portable/openssh-${PV}.ta file://sshd_check_keys \ file://0001-regress-banner.sh-log-input-and-output-files-on-erro.patch \ file://0001-regress-test-exec-use-the-absolute-path-in-the-SSH-e.patch \ + file://CVE-2025-32728.patch \ " SRC_URI[sha256sum] = "91aadb603e08cc285eddf965e1199d02585fa94d994d6cae5b41e1721e215673" From patchwork Fri May 9 10:22:28 2025 Content-Type: text/plain; charset="utf-8" MIME-Version: 1.0 Content-Transfer-Encoding: 7bit X-Patchwork-Submitter: "Polampalli, Archana" X-Patchwork-Id: 62670 X-Patchwork-Delegate: steve@sakoman.com Return-Path: X-Spam-Checker-Version: SpamAssassin 3.4.0 (2014-02-07) on aws-us-west-2-korg-lkml-1.web.codeaurora.org Received: from aws-us-west-2-korg-lkml-1.web.codeaurora.org (localhost.localdomain [127.0.0.1]) by smtp.lore.kernel.org (Postfix) with ESMTP id C6F53C3DA4A for ; Fri, 9 May 2025 10:22:45 +0000 (UTC) Received: from mx0a-0064b401.pphosted.com (mx0a-0064b401.pphosted.com [205.220.166.238]) by mx.groups.io with SMTP id smtpd.web11.11054.1746786160753065419 for ; Fri, 09 May 2025 03:22:40 -0700 Authentication-Results: mx.groups.io; dkim=none (message not signed); spf=permerror, err=parse error for token &{10 18 %{ir}.%{v}.%{d}.spf.has.pphosted.com}: invalid domain name (domain: windriver.com, ip: 205.220.166.238, mailfrom: prvs=7224ebccee=archana.polampalli@windriver.com) Received: from pps.filterd (m0250810.ppops.net [127.0.0.1]) by mx0a-0064b401.pphosted.com (8.18.1.2/8.18.1.2) with ESMTP id 54971AVq009161 for ; Fri, 9 May 2025 03:22:40 -0700 Received: from ala-exchng01.corp.ad.wrs.com (ala-exchng01.wrs.com [147.11.82.252]) by mx0a-0064b401.pphosted.com (PPS) with ESMTPS id 46dee3f1j2-1 (version=TLSv1.2 cipher=ECDHE-RSA-AES128-GCM-SHA256 bits=128 verify=NOT) for ; Fri, 09 May 2025 03:22:40 -0700 (PDT) Received: from ALA-EXCHNG02.corp.ad.wrs.com (147.11.82.254) by ala-exchng01.corp.ad.wrs.com (147.11.82.252) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256) id 15.1.2507.43; Fri, 9 May 2025 03:22:39 -0700 Received: from blr-linux-engg1.wrs.com (147.11.136.210) by ALA-EXCHNG02.corp.ad.wrs.com (147.11.82.254) with Microsoft SMTP Server id 15.1.2507.43 via Frontend Transport; Fri, 9 May 2025 03:22:38 -0700 From: To: Subject: [oe-core][Walnascar][PATCH 5/5] ffmpeg: fix CVE-2025-22921 Date: Fri, 9 May 2025 10:22:28 +0000 Message-ID: <20250509102228.3422688-5-archana.polampalli@windriver.com> X-Mailer: git-send-email 2.40.0 In-Reply-To: <20250509102228.3422688-1-archana.polampalli@windriver.com> References: <20250509102228.3422688-1-archana.polampalli@windriver.com> MIME-Version: 1.0 X-Proofpoint-ORIG-GUID: UFgpBjy0qh8rQKzg4_2SBMZij0dVit2U X-Authority-Analysis: v=2.4 cv=Pd3/hjhd c=1 sm=1 tr=0 ts=681dd770 cx=c_pps a=/ZJR302f846pc/tyiSlYyQ==:117 a=/ZJR302f846pc/tyiSlYyQ==:17 a=dt9VzEwgFbYA:10 a=emhf11hzAAAA:8 a=t7CeM3EgAAAA:8 a=pGLkceISAAAA:8 a=TaeZFPWVGmNClD1ZK8cA:9 a=HLUCug_QN4oeKp6PugZw:22 a=FdTzh2GWekK77mhwV6Dw:22 X-Proofpoint-GUID: UFgpBjy0qh8rQKzg4_2SBMZij0dVit2U X-Proofpoint-Spam-Details-Enc: AW1haW4tMjUwNTA5MDEwMCBTYWx0ZWRfX3hATQRKlppNa /dRq95cBmhoihJwOfQFKUy5d/WQTS+ydLUkS9dq0R8Q6luNs/h5cJT/Gtz2YaM2dDiwyVfc9wLW aVz0FwtMGNg7kXChfpdFQAmR6+dbpbGL79fAi82lgyi7wdOjfs0e7OWu2sD/u6wjCdkVaiRhZXh 92Xtftdtb7WUO8baxroWlAVYinbVtRKCJaUGEbAgEufqIkFIuCrnKzcOQE+oWgkhk9A0vX4FMro P+k17WsU5f8Pe59r4u7GXEttruVM0Fu2NuQFJIhw+VCUFxNh7D+E6mZi8aWy8BlTqiXXB2K103b 8reVO8bwGEnSHq2hQzhY+NlPQQrHEYY2xOiCrFbUfO67tUMBkh8JfZlunplI4ONr4piggTnJW4O SakRfe5+DEd7j4ssizKdLkNBpwFiDs6Pz7s4UnsUjsamFyOlnCqdyqdXreaZH+rqjpOpdMIN X-Sensitive_Customer_Information: Yes X-Proofpoint-Virus-Version: vendor=baseguard engine=ICAP:2.0.293,Aquarius:18.0.1099,Hydra:6.0.736,FMLib:17.12.80.40 definitions=2025-05-09_04,2025-05-08_04,2025-02-21_01 X-Proofpoint-Spam-Details: rule=outbound_notspam policy=outbound score=0 adultscore=0 priorityscore=1501 mlxscore=0 suspectscore=0 spamscore=0 malwarescore=0 impostorscore=0 clxscore=1015 mlxlogscore=747 phishscore=0 bulkscore=0 lowpriorityscore=0 classifier=spam authscore=0 authtc=n/a authcc= route=outbound adjust=0 reason=mlx scancount=1 engine=8.21.0-2504070000 definitions=main-2505090100 List-Id: X-Webhook-Received: from li982-79.members.linode.com [45.33.32.79] by aws-us-west-2-korg-lkml-1.web.codeaurora.org with HTTPS for ; Fri, 09 May 2025 10:22:45 -0000 X-Groupsio-URL: https://lists.openembedded.org/g/openembedded-core/message/216196 From: Archana Polampalli FFmpeg git-master,N-113007-g8d24a28d06 was discovered to contain a segmentation violation via the component /libavcodec/jpeg2000dec.c. Signed-off-by: Archana Polampalli --- .../ffmpeg/ffmpeg/CVE-2025-22921.patch | 34 +++++++++++++++++++ .../recipes-multimedia/ffmpeg/ffmpeg_7.1.1.bb | 4 ++- 2 files changed, 37 insertions(+), 1 deletion(-) create mode 100644 meta/recipes-multimedia/ffmpeg/ffmpeg/CVE-2025-22921.patch diff --git a/meta/recipes-multimedia/ffmpeg/ffmpeg/CVE-2025-22921.patch b/meta/recipes-multimedia/ffmpeg/ffmpeg/CVE-2025-22921.patch new file mode 100644 index 0000000000..20fac68d01 --- /dev/null +++ b/meta/recipes-multimedia/ffmpeg/ffmpeg/CVE-2025-22921.patch @@ -0,0 +1,34 @@ +From 7f9c7f9849a2155224711f0ff57ecdac6e4bfb57 Mon Sep 17 00:00:00 2001 +From: James Almer +Date: Wed, 1 Jan 2025 23:58:39 -0300 +Subject: [PATCH] avcodec/jpeg2000dec: clear array length when freeing it + +Fixes NULL pointer dereferences. +Fixes ticket #11393. + +Reviewed-by: Michael Niedermayer +Signed-off-by: James Almer + +CVE: CVE-2025-22921 + +Upstream-Status: Backport [https://git.ffmpeg.org/gitweb/ffmpeg.git/commit/7f9c7f9849a2155224711f0ff57ecdac6e4bfb57] + +Signed-off-by: Archana Polampalli +--- + libavcodec/jpeg2000dec.c | 1 + + 1 file changed, 1 insertion(+) + +diff --git a/libavcodec/jpeg2000dec.c b/libavcodec/jpeg2000dec.c +index 691cfbd..b56902c 100644 +--- a/libavcodec/jpeg2000dec.c ++++ b/libavcodec/jpeg2000dec.c +@@ -1223,6 +1223,7 @@ static int jpeg2000_decode_packet(Jpeg2000DecoderContext *s, Jpeg2000Tile *tile, + } + } + av_freep(&cblk->lengthinc); ++ cblk->nb_lengthinc = 0; + } + } + // Save state of stream +-- +2.40.0 diff --git a/meta/recipes-multimedia/ffmpeg/ffmpeg_7.1.1.bb b/meta/recipes-multimedia/ffmpeg/ffmpeg_7.1.1.bb index 4314ab9f31..d5252bfbdd 100644 --- a/meta/recipes-multimedia/ffmpeg/ffmpeg_7.1.1.bb +++ b/meta/recipes-multimedia/ffmpeg/ffmpeg_7.1.1.bb @@ -22,7 +22,9 @@ LIC_FILES_CHKSUM = "file://COPYING.GPLv2;md5=b234ee4d69f5fce4486a80fdaf4a4263 \ file://COPYING.LGPLv2.1;md5=bd7a443320af8c812e4c18d1b79df004 \ file://COPYING.LGPLv3;md5=e6a600fd5e1d9cbde2d983680233ad02" -SRC_URI = "https://www.ffmpeg.org/releases/${BP}.tar.xz" +SRC_URI = "https://www.ffmpeg.org/releases/${BP}.tar.xz \ + file://CVE-2025-22921.patch \ + " SRC_URI[sha256sum] = "733984395e0dbbe5c046abda2dc49a5544e7e0e1e2366bba849222ae9e3a03b1"