Passed A-full build & test Please merge this into Zeus mailine for 3.0.1 update
The following changes since commit 6431e869998baa1ddfe04d2d1fb7a81f60725ed2: iputils: Whitelist CVE-2000-1213 CVE-2000-1214 (2019-11-19 00:24:12 +0000) are available in the git repository at: git://git.openembedded.org/openembedded-core-contrib stable/zeus-next http://cgit.openembedded.org/openembedded-core-contrib/log/?h=stable/zeus-next Adrian Bunk (1): lz4: Whitelist CVE-2014-4715 Alexander Kanavin (4): Revert "devtool/standard.py: Not filtering devtool workspace for devtool finish" python: update to 2.7.17 cairo: the component is dual licensed selftest: check that 'devtool upgrade' correctly drops backported patches Anuj Mittal (1): boost: fix build for x32 Carlos Rafael Giani (12): gstreamer1.0: upgrade to version 1.16.1 gstreamer1.0-plugins-base: upgrade to version 1.16.1 gstreamer1.0-plugins-good: upgrade to version 1.16.1 gstreamer1.0-plugins-bad: upgrade to version 1.16.1 gstreamer1.0-plugins-ugly: upgrade to version 1.16.1 gstreamer1.0-libav: upgrade to version 1.16.1 gstreamer1.0-vaapi: upgrade to version 1.16.1 gstreamer1.0-omx: upgrade to version 1.16.1 gstreamer1.0-python: upgrade to version 1.16.1 gstreamer1.0-rtsp-server: upgrade to version 1.16.1 gst-validate: upgrade to version 1.16.1 gstreamer: Change SRC_URI to use HTTPS access instead of HTTP Joshua Watt (1): oeqa: reproducible: Add option to capture bad packages Kai Kang (1): bind: fix CVE-2019-6471 and CVE-2018-5743 Richard Purdie (5): opkg: Add upstream fixes for empty packages opkg-utils: Fix silent empty/broken opkg package creation core-image-full-cmdline: Add less sanity: Add check for tar older than 1.28 oeqa/selftest/sstatetests: Ensure we don't use hashequiv for sstatesigs tests Ross Burton (9): libsoup: set CVE_PRODUCT cve-check: we don't actually need to unpack to check cve-update-db-native: don't refresh more than once an hour cve-update-db-native: don't hardcode the database name cve-update-db-native: add an index on the CVE ID column cve-update-db-native: clean up proxy handling cve-check: rewrite look to fix false negatives cve-check: neaten get_cve_info cve-check: fetch CVE data once at a time instead of in a single call Zheng Ruoqin (1): tiff: Refresh patch .../devtool-upgrade-test1-1.5.3/backported.patch | 37 + .../devtool/devtool-upgrade-test1_1.5.3.bb | 4 +- .../devtool-upgrade-test1_1.5.3.bb.upgraded | 4 +- meta/classes/cve-check.bbclass | 98 ++- meta/classes/sanity.bbclass | 5 +- meta/lib/oeqa/selftest/cases/devtool.py | 25 +- meta/lib/oeqa/selftest/cases/reproducible.py | 20 + meta/lib/oeqa/selftest/cases/sstatetests.py | 12 + .../bind/bind/0001-bind-fix-CVE-2019-6471.patch | 64 ++ .../0001-fix-enforcement-of-tcp-clients-v1.patch | 60 ++ ...02-tcp-clients-could-still-be-exceeded-v2.patch | 670 +++++++++++++++ ...-reference-counter-for-pipeline-groups-v3.patch | 278 +++++++ ...uota-accounting-and-client-mortality-chec.patch | 512 ++++++++++++ ...pquota-and-pipeline-refs-allow-special-ca.patch | 911 +++++++++++++++++++++ ...tore-allowance-for-tcp-clients-interfaces.patch | 80 ++ ...mic-operations-in-bin-named-client.c-with.patch | 140 ++++ meta/recipes-connectivity/bind/bind_9.11.5-P4.bb | 8 + meta/recipes-core/meta/cve-update-db-native.bb | 44 +- .../opkg-utils/opkg-utils/pipefail.patch | 31 + .../opkg-utils/opkg-utils_0.4.1.bb | 3 + meta/recipes-devtools/opkg/opkg/open_inner.patch | 46 ++ meta/recipes-devtools/opkg/opkg/opkg_archive.patch | 54 ++ meta/recipes-devtools/opkg/opkg_0.4.1.bb | 2 + ...ative-fix-one-do_populate_sysroot-warning.patch | 25 +- ...on-native_2.7.16.bb => python-native_2.7.17.bb} | 2 +- meta/recipes-devtools/python/python.inc | 10 +- ...55-Dont-parse-domains-containing-GH-13079.patch | 90 -- ...43-Escape-the-server-title-of-DocXMLRPCSe.patch | 101 --- ...thon-Resolve-intermediate-staging-issues.patch} | 53 +- .../python/python/CVE-2018-20852.patch | 123 --- .../python/python/CVE-2019-9740.patch | 216 ----- .../python/bpo-35907-cve-2019-9948-fix.patch | 55 -- .../python/python/bpo-35907-cve-2019-9948.patch | 55 -- .../python/bpo-36216-cve-2019-9636-fix.patch | 28 - .../python/python/bpo-36216-cve-2019-9636.patch | 111 --- .../python/python/bpo-36742-cve-2019-10160.patch | 81 -- .../python/{python_2.7.16.bb => python_2.7.17.bb} | 3 - .../packagegroup-core-full-cmdline.bb | 1 + meta/recipes-graphics/cairo/cairo_1.16.0.bb | 12 +- ...t-validate_1.16.0.bb => gst-validate_1.16.1.bb} | 4 +- .../gstreamer1.0-libav/gtkdoc-no-tree.patch | 35 - ...ibav_1.16.0.bb => gstreamer1.0-libav_1.16.1.bb} | 7 +- ....0-omx_1.16.0.bb => gstreamer1.0-omx_1.16.1.bb} | 6 +- ....16.0.bb => gstreamer1.0-plugins-bad_1.16.1.bb} | 6 +- ...16.0.bb => gstreamer1.0-plugins-base_1.16.1.bb} | 6 +- ...Advertise-interleaved-layout-in-caps-temp.patch | 37 - .../gstreamer1.0-plugins-good/headerfix.patch | 43 - ...16.0.bb => gstreamer1.0-plugins-good_1.16.1.bb} | 8 +- ...16.0.bb => gstreamer1.0-plugins-ugly_1.16.1.bb} | 6 +- ...hon_1.16.0.bb => gstreamer1.0-python_1.16.1.bb} | 6 +- ....16.0.bb => gstreamer1.0-rtsp-server_1.16.1.bb} | 6 +- ...aapi_1.16.0.bb => gstreamer1.0-vaapi_1.16.1.bb} | 4 +- ...treamer1.0_1.16.0.bb => gstreamer1.0_1.16.1.bb} | 6 +- .../libtiff/tiff/CVE-2019-7663.patch | 71 +- .../0001-dont-setup-compiler-flags-m32-m64.patch | 42 + meta/recipes-support/boost/boost_1.71.0.bb | 1 + meta/recipes-support/libsoup/libsoup-2.4_2.66.2.bb | 2 + meta/recipes-support/lz4/lz4_1.9.2.bb | 3 + scripts/lib/devtool/standard.py | 2 +- 59 files changed, 3186 insertions(+), 1189 deletions(-) create mode 100644 meta-selftest/recipes-test/devtool/devtool-upgrade-test1-1.5.3/backported.patch create mode 100644 meta/recipes-connectivity/bind/bind/0001-bind-fix-CVE-2019-6471.patch create mode 100644 meta/recipes-connectivity/bind/bind/0001-fix-enforcement-of-tcp-clients-v1.patch create mode 100644 meta/recipes-connectivity/bind/bind/0002-tcp-clients-could-still-be-exceeded-v2.patch create mode 100644 meta/recipes-connectivity/bind/bind/0003-use-reference-counter-for-pipeline-groups-v3.patch create mode 100644 meta/recipes-connectivity/bind/bind/0004-better-tcpquota-accounting-and-client-mortality-chec.patch create mode 100644 meta/recipes-connectivity/bind/bind/0005-refactor-tcpquota-and-pipeline-refs-allow-special-ca.patch create mode 100644 meta/recipes-connectivity/bind/bind/0006-restore-allowance-for-tcp-clients-interfaces.patch create mode 100644 meta/recipes-connectivity/bind/bind/0007-Replace-atomic-operations-in-bin-named-client.c-with.patch create mode 100644 meta/recipes-devtools/opkg-utils/opkg-utils/pipefail.patch create mode 100644 meta/recipes-devtools/opkg/opkg/open_inner.patch create mode 100644 meta/recipes-devtools/opkg/opkg/opkg_archive.patch rename meta/recipes-devtools/python/{python-native_2.7.16.bb => python-native_2.7.17.bb} (97%) delete mode 100644 meta/recipes-devtools/python/python/0001-2.7-bpo-34155-Dont-parse-domains-containing-GH-13079.patch delete mode 100644 meta/recipes-devtools/python/python/0001-2.7-bpo-38243-Escape-the-server-title-of-DocXMLRPCSe.patch rename meta/recipes-devtools/python/python/{builddir.patch => 0001-python-Resolve-intermediate-staging-issues.patch} (58%) delete mode 100644 meta/recipes-devtools/python/python/CVE-2018-20852.patch delete mode 100644 meta/recipes-devtools/python/python/CVE-2019-9740.patch delete mode 100644 meta/recipes-devtools/python/python/bpo-35907-cve-2019-9948-fix.patch delete mode 100644 meta/recipes-devtools/python/python/bpo-35907-cve-2019-9948.patch delete mode 100644 meta/recipes-devtools/python/python/bpo-36216-cve-2019-9636-fix.patch delete mode 100644 meta/recipes-devtools/python/python/bpo-36216-cve-2019-9636.patch delete mode 100644 meta/recipes-devtools/python/python/bpo-36742-cve-2019-10160.patch rename meta/recipes-devtools/python/{python_2.7.16.bb => python_2.7.17.bb} (97%) rename meta/recipes-multimedia/gstreamer/{gst-validate_1.16.0.bb => gst-validate_1.16.1.bb} (87%) delete mode 100644 meta/recipes-multimedia/gstreamer/gstreamer1.0-libav/gtkdoc-no-tree.patch rename meta/recipes-multimedia/gstreamer/{gstreamer1.0-libav_1.16.0.bb => gstreamer1.0-libav_1.16.1.bb} (91%) rename meta/recipes-multimedia/gstreamer/{gstreamer1.0-omx_1.16.0.bb => gstreamer1.0-omx_1.16.1.bb} (89%) rename meta/recipes-multimedia/gstreamer/{gstreamer1.0-plugins-bad_1.16.0.bb => gstreamer1.0-plugins-bad_1.16.1.bb} (96%) rename meta/recipes-multimedia/gstreamer/{gstreamer1.0-plugins-base_1.16.0.bb => gstreamer1.0-plugins-base_1.16.1.bb} (94%) delete mode 100644 meta/recipes-multimedia/gstreamer/gstreamer1.0-plugins-good/0001-scaletempo-Advertise-interleaved-layout-in-caps-temp.patch delete mode 100644 meta/recipes-multimedia/gstreamer/gstreamer1.0-plugins-good/headerfix.patch rename meta/recipes-multimedia/gstreamer/{gstreamer1.0-plugins-good_1.16.0.bb => gstreamer1.0-plugins-good_1.16.1.bb} (89%) rename meta/recipes-multimedia/gstreamer/{gstreamer1.0-plugins-ugly_1.16.0.bb => gstreamer1.0-plugins-ugly_1.16.1.bb} (83%) rename meta/recipes-multimedia/gstreamer/{gstreamer1.0-python_1.16.0.bb => gstreamer1.0-python_1.16.1.bb} (82%) rename meta/recipes-multimedia/gstreamer/{gstreamer1.0-rtsp-server_1.16.0.bb => gstreamer1.0-rtsp-server_1.16.1.bb} (81%) rename meta/recipes-multimedia/gstreamer/{gstreamer1.0-vaapi_1.16.0.bb => gstreamer1.0-vaapi_1.16.1.bb} (93%) rename meta/recipes-multimedia/gstreamer/{gstreamer1.0_1.16.0.bb => gstreamer1.0_1.16.1.bb} (94%) create mode 100644 meta/recipes-support/boost/boost/0001-dont-setup-compiler-flags-m32-m64.patch -- 2.7.4 -- _______________________________________________ Openembedded-core mailing list [email protected] http://lists.openembedded.org/mailman/listinfo/openembedded-core
