Please review this set of changes for kirkstone and have comments back by end of day Thursday, January 9
Passed a-full on autobuilder: https://valkyrie.yoctoproject.org/#/builders/29/builds/751 The following changes since commit a20b02fdfe64c005f7587a1d9077bdc282f7b6b1: base-passwd: Add the sgx group (2024-12-18 07:06:28 -0800) are available in the Git repository at: https://git.openembedded.org/openembedded-core-contrib stable/kirkstone-nut https://git.openembedded.org/openembedded-core-contrib/log/?h=stable/kirkstone-nut Archana Polampalli (3): ffmpeg: fix CVE-2024-35366 ffmpeg: fix CVE-2024-35367 ffmpeg: fix CVE-2024-35368 Mikko Rapeli (1): ovmf-native: remove .pyc files from install Peter Marko (6): ghostscript: ignore CVE-2024-46954 tiff: ignore CVE-2023-2731 tiff: patch CVE-2023-3164 gstreame1.0: ignore CVEs from gstreamer1.0-plugins-bad xwayland: patch CVE-2023-5380 CVE-2024-0229 python3: upgrade 3.10.15 -> 3.10.16 Rohini Sangam (1): webkitgtk: Security fix for CVE-2024-40776 and CVE-2024-40780 Vijay Anusuri (1): libsndfile1: Backport fix for CVE-2022-33065 aszh07 (1): libarchive: Fix CVE-2024-20696 meta/recipes-core/ovmf/ovmf_git.bb | 1 + ...-search-system-for-headers-libraries.patch | 2 +- ...{python3_3.10.15.bb => python3_3.10.16.bb} | 2 +- .../ghostscript/ghostscript_9.55.0.bb | 2 +- .../libarchive/CVE-2024-20696.patch | 114 +++++++++ .../libarchive/libarchive_3.6.2.bb | 1 + .../xwayland/xwayland/CVE-2023-5380.patch | 103 ++++++++ .../xwayland/xwayland/CVE-2024-0229-1.patch | 88 +++++++ .../xwayland/xwayland/CVE-2024-0229-2.patch | 222 +++++++++++++++++ .../xwayland/xwayland/CVE-2024-0229-3.patch | 42 ++++ .../xwayland/xwayland/CVE-2024-0229-4.patch | 46 ++++ .../xwayland/xwayland_22.1.8.bb | 5 + .../ffmpeg/ffmpeg/CVE-2024-35366.patch | 37 +++ .../ffmpeg/ffmpeg/CVE-2024-35367.patch | 47 ++++ .../ffmpeg/ffmpeg/CVE-2024-35368.patch | 41 ++++ .../recipes-multimedia/ffmpeg/ffmpeg_5.0.1.bb | 3 + .../gstreamer/gstreamer1.0_1.20.7.bb | 4 +- ...022-33065.patch => CVE-2022-33065-1.patch} | 0 .../libsndfile1/CVE-2022-33065-10.patch | 39 +++ .../libsndfile1/CVE-2022-33065-11.patch | 35 +++ .../libsndfile1/CVE-2022-33065-12.patch | 40 +++ .../libsndfile1/CVE-2022-33065-13.patch | 58 +++++ .../libsndfile1/CVE-2022-33065-2.patch | 58 +++++ .../libsndfile1/CVE-2022-33065-3.patch | 34 +++ .../libsndfile1/CVE-2022-33065-4.patch | 60 +++++ .../libsndfile1/CVE-2022-33065-5.patch | 39 +++ .../libsndfile1/CVE-2022-33065-6.patch | 82 +++++++ .../libsndfile1/CVE-2022-33065-7.patch | 48 ++++ .../libsndfile1/CVE-2022-33065-8.patch | 179 ++++++++++++++ .../libsndfile1/CVE-2022-33065-9.patch | 231 ++++++++++++++++++ .../libsndfile/libsndfile1_1.0.31.bb | 14 +- .../libtiff/tiff/CVE-2023-3164.patch | 114 +++++++++ meta/recipes-multimedia/libtiff/tiff_4.3.0.bb | 5 +- .../webkit/webkitgtk/CVE-2024-40776.patch | 141 +++++++++++ .../webkit/webkitgtk/CVE-2024-40780.patch | 94 +++++++ meta/recipes-sato/webkit/webkitgtk_2.36.8.bb | 2 + 36 files changed, 2025 insertions(+), 8 deletions(-) rename meta/recipes-devtools/python/{python3_3.10.15.bb => python3_3.10.16.bb} (99%) create mode 100644 meta/recipes-extended/libarchive/libarchive/CVE-2024-20696.patch create mode 100644 meta/recipes-graphics/xwayland/xwayland/CVE-2023-5380.patch create mode 100644 meta/recipes-graphics/xwayland/xwayland/CVE-2024-0229-1.patch create mode 100644 meta/recipes-graphics/xwayland/xwayland/CVE-2024-0229-2.patch create mode 100644 meta/recipes-graphics/xwayland/xwayland/CVE-2024-0229-3.patch create mode 100644 meta/recipes-graphics/xwayland/xwayland/CVE-2024-0229-4.patch create mode 100644 meta/recipes-multimedia/ffmpeg/ffmpeg/CVE-2024-35366.patch create mode 100644 meta/recipes-multimedia/ffmpeg/ffmpeg/CVE-2024-35367.patch create mode 100644 meta/recipes-multimedia/ffmpeg/ffmpeg/CVE-2024-35368.patch rename meta/recipes-multimedia/libsndfile/libsndfile1/{CVE-2022-33065.patch => CVE-2022-33065-1.patch} (100%) create mode 100644 meta/recipes-multimedia/libsndfile/libsndfile1/CVE-2022-33065-10.patch create mode 100644 meta/recipes-multimedia/libsndfile/libsndfile1/CVE-2022-33065-11.patch create mode 100644 meta/recipes-multimedia/libsndfile/libsndfile1/CVE-2022-33065-12.patch create mode 100644 meta/recipes-multimedia/libsndfile/libsndfile1/CVE-2022-33065-13.patch create mode 100644 meta/recipes-multimedia/libsndfile/libsndfile1/CVE-2022-33065-2.patch create mode 100644 meta/recipes-multimedia/libsndfile/libsndfile1/CVE-2022-33065-3.patch create mode 100644 meta/recipes-multimedia/libsndfile/libsndfile1/CVE-2022-33065-4.patch create mode 100644 meta/recipes-multimedia/libsndfile/libsndfile1/CVE-2022-33065-5.patch create mode 100644 meta/recipes-multimedia/libsndfile/libsndfile1/CVE-2022-33065-6.patch create mode 100644 meta/recipes-multimedia/libsndfile/libsndfile1/CVE-2022-33065-7.patch create mode 100644 meta/recipes-multimedia/libsndfile/libsndfile1/CVE-2022-33065-8.patch create mode 100644 meta/recipes-multimedia/libsndfile/libsndfile1/CVE-2022-33065-9.patch create mode 100644 meta/recipes-multimedia/libtiff/tiff/CVE-2023-3164.patch create mode 100644 meta/recipes-sato/webkit/webkitgtk/CVE-2024-40776.patch create mode 100644 meta/recipes-sato/webkit/webkitgtk/CVE-2024-40780.patch -- 2.43.0
-=-=-=-=-=-=-=-=-=-=-=- Links: You receive all messages sent to this group. View/Reply Online (#209453): https://lists.openembedded.org/g/openembedded-core/message/209453 Mute This Topic: https://lists.openembedded.org/mt/110476677/21656 Group Owner: openembedded-core+ow...@lists.openembedded.org Unsubscribe: https://lists.openembedded.org/g/openembedded-core/unsub [arch...@mail-archive.com] -=-=-=-=-=-=-=-=-=-=-=-
