Please review these patches for dunfell and have comments back by end of day Thursday.
Passed a-full on autobuilder: https://autobuilder.yoctoproject.org/typhoon/#/builders/83/builds/5073 The following changes since commit efb1a73a13907bed3acac8e06053aef3e2ef57f5: build-appliance-image: Update to dunfell head revision (2023-03-15 23:09:39 +0000) are available in the Git repository at: https://git.openembedded.org/openembedded-core-contrib stable/dunfell-nut http://cgit.openembedded.org/openembedded-core-contrib/log/?h=stable/dunfell-nut Alban Bedel (1): systemd: Fix systemd when used with busybox less Andrej Valek (1): libarchive: fix CVE-2022-26280 Chee Yang Lee (2): ghostscript: add CVE tag for check-stack-limits-after-function-evalution.patch libksba: fix CVE-2022-3515 Hitendra Prajapati (1): QEMU: CVE-2022-4144 QXL: qxl_phys2virt unsafe address translation can lead to out-of-bounds read Kenfe-Mickael Laventure (3): buildtools-tarball: Handle spaces within user $PATH toolchain-scripts: Handle spaces within user $PATH populate_sdk_ext: Handle spaces within user $PATH Richard Purdie (4): staging: Separate out different multiconfig manifests staging/multilib: Fix manifest corruption glibc: Add missing binutils dependency base-files: Drop localhost.localdomain from hosts file Ross Burton (2): vim: upgrade to 9.0.1403 vim: set modified-by to the recipe MAINTAINER meta/classes/multilib.bbclass | 1 + meta/classes/populate_sdk_ext.bbclass | 2 +- meta/classes/staging.bbclass | 4 + meta/classes/toolchain-scripts.bbclass | 2 +- meta/recipes-core/base-files/base-files/hosts | 2 +- meta/recipes-core/glibc/glibc.inc | 4 +- meta/recipes-core/meta/buildtools-tarball.bb | 2 +- .../systemd/systemd/systemd-pager.sh | 7 ++ meta/recipes-core/systemd/systemd_244.5.bb | 5 + meta/recipes-devtools/qemu/qemu.inc | 9 +- .../qemu/qemu/CVE-2022-4144.patch | 103 ++++++++++++++++++ ...tack-limits-after-function-evalution.patch | 2 +- .../libarchive/CVE-2022-26280.patch | 29 +++++ .../libarchive/libarchive_3.4.2.bb | 1 + .../libksba/libksba/CVE-2022-3515.patch | 47 ++++++++ meta/recipes-support/libksba/libksba_1.3.5.bb | 1 + meta/recipes-support/vim/vim.inc | 8 +- 17 files changed, 215 insertions(+), 14 deletions(-) create mode 100644 meta/recipes-core/systemd/systemd/systemd-pager.sh create mode 100644 meta/recipes-devtools/qemu/qemu/CVE-2022-4144.patch create mode 100644 meta/recipes-extended/libarchive/libarchive/CVE-2022-26280.patch create mode 100644 meta/recipes-support/libksba/libksba/CVE-2022-3515.patch -- 2.34.1
-=-=-=-=-=-=-=-=-=-=-=- Links: You receive all messages sent to this group. View/Reply Online (#178871): https://lists.openembedded.org/g/openembedded-core/message/178871 Mute This Topic: https://lists.openembedded.org/mt/97755697/21656 Group Owner: openembedded-core+ow...@lists.openembedded.org Unsubscribe: https://lists.openembedded.org/g/openembedded-core/unsub [arch...@mail-archive.com] -=-=-=-=-=-=-=-=-=-=-=-
