[OE-core] [PATCH] unzip: Port debian fixes for two CVEs

Add two fixes from debian for two CVEs. From: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1010355 I wans't able to get the reproducers to work but the added error checking isn't probably a bad thing. Signed-off-by: Richard Purdie --- .../unzip/unzip/CVE-2022-0529.patch | 39 +++

Re: [OE-core] [PATCH v2] packagegroup-core-ssh-dropbear: Add openssh-sftp-server recommendation

Hi Richard, On Fri, 24 Jun 2022 14:58:17 +0100 "Richard Purdie" wrote: > Seems sad to have to do this but openssh is moving to use sftp instead > of scp to move files. This means scp from Fedora 36 will no longer be > able to move files to/from a dropbear based image. This breaks a number > of o

[OE-core] [meta-oe][PATCH 2/2] ccid: upgrade 1.4.33 -> 1.5.0

From: Julian Haller Signed-off-by: Julian Haller --- .../recipes-support/ccid/{ccid_1.4.33.bb => ccid_1.5.0.bb} | 6 +++--- 1 file changed, 3 insertions(+), 3 deletions(-) rename meta-oe/recipes-support/ccid/{ccid_1.4.33.bb => ccid_1.5.0.bb} (69%) diff --git a/meta-oe/recipes-support/ccid/cc

[OE-core] [meta-oe][PATCH 1/2] pcsc-lite: upgrade 1.9.0 -> 1.9.8

From: Julian Haller The python3 related patch is no longer due to similar changes in the project. This also requires changing the RDEPENDS to python3-core to avoid package QA warnings. Signed-off-by: Julian Haller --- .../0001-pcsc-spy-use-python3-only.patch | 43 --- ...{

[OE-core] [PATCH v2] packagegroup-core-ssh-dropbear: Add openssh-sftp-server recommendation

Seems sad to have to do this but openssh is moving to use sftp instead of scp to move files. This means scp from Fedora 36 will no longer be able to move files to/from a dropbear based image. This breaks a number of our key QA tests and I suspect will cause users pain too. The sftp server from ope

[OE-core] [PATCH] packagegroup-core-ssh-dropbear: Add openssh-sftp-server

Seems sad to have to do this but openssh is moving to use sftp instead of scp to move files. This means scp from Fedora 36 will no longer be able to move files to/from a dropbear based image. This breaks a number of our key QA tests and I suspect will cause users pain too. The sftp server from ope

[OE-core] [PATCH] oeqa/runtime/scp: Disable scp test for dropbear

Fedora is switching to use sftp as the backend for scp. This means the scp test fails on fedora36 hosts with a dropbear target as dropbear doesn't support sftp. The easiest way to resolve test failures in dropbear images is to stop testing this against dropbear as it is no longer expected to work

[OE-core] [dunfell][PATCH] golang: CVE-2021-31525 net/http: panic in ReadRequest and ReadResponse when reading a very large header

Source: https://github.com/argoheyard/lang-net MR: 114874 Type: Security Fix Disposition: Backport from https://github.com/argoheyard/lang-net/commit/701957006ef151feb43f86aa99c8a1f474f69282 ChangeID: bd3c4f9f44dd1c45e810172087004778522d28eb Description: CVE-2021-31525 golang: net/http: pan

[OE-core] [dunfell][PATCH] golang: CVE-2022-24675 encoding/pem: fix stack overflow in Decode

Source: https://go-review.googlesource.com/c/go MR: 117551 Type: Security Fix Disposition: Backport from https://go-review.googlesource.com/c/go/+/399816/ ChangeID: 347f22f93e8eaecb3d39f8d6c0fe5a70c5cf7b7c Description: CVE-2022-24675 golang: encoding/pem: fix stack overflow in Decode. Sign

Re: [OE-core] [PATCH 2/3] strace: Drop redundant oe_runmake parameter

Hi Niko, On Thu, 23 Jun 2022 19:53:58 +0300 "niko.ma...@vaisala.com via lists.openembedded.org" wrote: > On 6/23/22 12:30, Luca Ceresoli via lists.openembedded.org wrote: > > Unfortunately this patch does not apply as strace has been bumped to > > 5.18 by a recent commit. Could you send a v2 ser