Please review this set of patches for kirkstone and have comments back by end of day Thursday.
Passed a-full on autobuilder: https://autobuilder.yoctoproject.org/typhoon/#/builders/83/builds/5285 The following changes since commit 5fca673d8fe0ee97dc37ed2c9941696842cd667a: run-postinsts: Set dependency for ldconfig to avoid boot issues (2023-05-08 04:15:11 -1000) are available in the Git repository at: https://git.openembedded.org/openembedded-core-contrib stable/kirkstone-nut http://cgit.openembedded.org/openembedded-core-contrib/log/?h=stable/kirkstone-nut Archana Polampalli (2): git: fix CVE-2023-29007 git: fix CVE-2023-25652 Bruce Ashfield (1): kernel: improve initramfs bundle processing time Dmitry Baryshkov (1): linux-firmware: upgrade 20230210 -> 20230404 Martin Jansa (1): populate_sdk_ext.bbclass: set METADATA_REVISION with an DISTRO override Peter Bergin (1): update-alternatives.bbclass: fix old override syntax Peter Marko (1): libxml2: patch CVE-2023-28484 and CVE-2023-29469 Piotr Ćobacz (1): libarchive: Enable acls, xattr for native as well as target Steve Sakoman (1): Revert "xserver-xorg: backport fix for CVE-2023-1393" Thomas Roos (1): oeqa/utils/metadata.py: Fix running oe-selftest running with no distro set Wang Mingyu (2): wpebackend-fdo: upgrade 1.14.0 -> 1.14.2 xserver-xorg: upgrade 21.1.7 -> 21.1.8 Yoann Congal (1): linux-yocto: Exclude 121 CVEs already fixed upstream Zhixiong Chi (1): libpam: Fix the xtests/tst-pam_motd[1|3] failures bkyleruss...@gmail.com (1): kernel-devsrc: depend on python3-core instead of python3 meta/classes/kernel.bbclass | 2 +- meta/classes/populate_sdk_ext.bbclass | 3 +- meta/classes/update-alternatives.bbclass | 4 +- meta/lib/oeqa/utils/metadata.py | 6 +- .../libxml/libxml2/CVE-2023-28484.patch | 79 ++ .../libxml/libxml2/CVE-2023-29469.patch | 42 + meta/recipes-core/libxml/libxml2_2.9.14.bb | 2 + .../git/git/CVE-2023-25652.patch | 94 ++ .../git/git/CVE-2023-29007.patch | 162 ++++ meta/recipes-devtools/git/git_2.35.7.bb | 2 + .../libarchive/libarchive_3.6.2.bb | 6 +- ...rely-on-all-filesystems-providing-a-.patch | 108 +++ meta/recipes-extended/pam/libpam_1.5.2.bb | 1 + ...posite-Fix-use-after-free-of-the-COW.patch | 46 - ...-xorg_21.1.7.bb => xserver-xorg_21.1.8.bb} | 5 +- ...20230210.bb => linux-firmware_20230404.bb} | 6 +- meta/recipes-kernel/linux/cve-exclusion.inc | 875 ++++++++++++++++++ meta/recipes-kernel/linux/kernel-devsrc.bb | 2 +- meta/recipes-kernel/linux/linux-yocto.inc | 3 + ...fdo_1.14.0.bb => wpebackend-fdo_1.14.2.bb} | 2 +- 20 files changed, 1384 insertions(+), 66 deletions(-) create mode 100644 meta/recipes-core/libxml/libxml2/CVE-2023-28484.patch create mode 100644 meta/recipes-core/libxml/libxml2/CVE-2023-29469.patch create mode 100644 meta/recipes-devtools/git/git/CVE-2023-25652.patch create mode 100644 meta/recipes-devtools/git/git/CVE-2023-29007.patch create mode 100644 meta/recipes-extended/pam/libpam/0001-pam_motd-do-not-rely-on-all-filesystems-providing-a-.patch delete mode 100644 meta/recipes-graphics/xorg-xserver/xserver-xorg/0001-composite-Fix-use-after-free-of-the-COW.patch rename meta/recipes-graphics/xorg-xserver/{xserver-xorg_21.1.7.bb => xserver-xorg_21.1.8.bb} (80%) rename meta/recipes-kernel/linux-firmware/{linux-firmware_20230210.bb => linux-firmware_20230404.bb} (99%) create mode 100644 meta/recipes-kernel/linux/cve-exclusion.inc rename meta/recipes-sato/webkit/{wpebackend-fdo_1.14.0.bb => wpebackend-fdo_1.14.2.bb} (90%) -- 2.34.1
-=-=-=-=-=-=-=-=-=-=-=- Links: You receive all messages sent to this group. View/Reply Online (#181085): https://lists.openembedded.org/g/openembedded-core/message/181085 Mute This Topic: https://lists.openembedded.org/mt/98795088/21656 Group Owner: openembedded-core+ow...@lists.openembedded.org Unsubscribe: https://lists.openembedded.org/g/openembedded-core/unsub [arch...@mail-archive.com] -=-=-=-=-=-=-=-=-=-=-=-
