From: Massimiliano Minella
[Backport from OE-Core: 40f85de590c188c9c3985e64a83efaf06b0b4fbc]
zstd is dual-licensed under BSD _OR_ GPLv2 which was updated in the README for
v1.5.6.
License wording in the README for v1.5.2 is misleading, but license headers in
the code
clearly state that there i
From: Priyal Doshi
Signed-off-by: Priyal Doshi
Signed-off-by: Alexandre Belloni
(cherry picked from commit 5abbd0abf992ce8d11f3ae31fb1d83d97f5319fa)
Signed-off-by: Shubham Kulkarni
---
meta/recipes-extended/timezone/timezone.inc | 6 +++---
1 file changed, 3 insertions(+), 3 deletions(-)
dif
92913
> >> >
> >> > Can you please check if this patch can be accepted in the dunfell-nut
> branch of oe-core-contrib.
> >>
> >> I can take it now that it has been merged to the master branch.
> >>
> >> Steve
> >>
> >
ou please check if this patch can be accepted in the dunfell-nut
> branch of oe-core-contrib.
>
> I can take it now that it has been merged to the master branch.
>
> Steve
>
>
> > On Tue, Dec 26, 2023 at 10:44 PM Shubham Kulkarni via
> lists.openembedded.org
> wrote:
of oe-core-contrib.
Thanks,
Shubham Kulkarni
On Tue, Dec 26, 2023 at 10:44 PM Shubham Kulkarni via lists.openembedded.org
wrote:
> From: Shubham Kulkarni
>
> Signed-off-by: Shubham Kulkarni
> ---
> meta/recipes-extended/timezone/timezone.inc | 6 +++---
> 1 file changed,
From: Shubham Kulkarni
Signed-off-by: Shubham Kulkarni
---
meta/recipes-extended/timezone/timezone.inc | 6 +++---
1 file changed, 3 insertions(+), 3 deletions(-)
diff --git a/meta/recipes-extended/timezone/timezone.inc
b/meta/recipes-extended/timezone/timezone.inc
index 2960bfefe3..75f13cfc9
From: Shubham Kulkarni
Signed-off-by: Shubham Kulkarni
---
meta/recipes-extended/timezone/timezone.inc | 6 +++---
1 file changed, 3 insertions(+), 3 deletions(-)
diff --git a/meta/recipes-extended/timezone/timezone.inc
b/meta/recipes-extended/timezone/timezone.inc
index 14a1ce18f3..2774e5e73
From: Shubham Kulkarni
Add missing files in fix for CVE-2023-24538 & CVE-2023-39318
Upstream Link -
CVE-2023-24538:
https://github.com/golang/go/commit/b1e3ecfa06b67014429a197ec5e134ce4303ad9b
CVE-2023-39318:
https://github.com/golang/go/commit/023b542edf38e2a1f87fcefb9f75ff2f99401b4c
Signed-
From: Shubham Kulkarni
Add missing files in fix for CVE-2023-24538 & CVE-2023-39318
Upstream Link -
CVE-2023-24538:
https://github.com/golang/go/commit/b1e3ecfa06b67014429a197ec5e134ce4303ad9b
CVE-2023-39318:
https://github.com/golang/go/commit/023b542edf38e2a1f87fcefb9f75ff2f99401b4c
Signed-
From: Shubham Kulkarni
Add missing files in fix for CVE-2023-24538 & CVE-2023-39318
Upstream Link -
CVE-2023-24538:
https://github.com/golang/go/commit/b1e3ecfa06b67014429a197ec5e134ce4303ad9b
CVE-2023-39318:
https://github.com/golang/go/commit/023b542edf38e2a1f87fcefb9f75ff2f99401b4c
Signed-
From: Shubham Kulkarni
Add missing files in fix for CVE-2023-24538 & CVE-2023-39318
Upstream Link -
CVE-2023-24538:
https://github.com/golang/go/commit/b1e3ecfa06b67014429a197ec5e134ce4303ad9b
CVE-2023-39318:
https://github.com/golang/go/commit/023b542edf38e2a1f87fcefb9f75ff2f99401b4c
Signed-
Thank you for the update Steve!
Thanks,
Shubham Kulkarni
On Fri, Sep 29, 2023 at 9:18 PM Steve Sakoman wrote:
> On Fri, Sep 29, 2023 at 4:47 AM Shubham Kulkarni
> wrote:
> >
> > Hi Steve,
> >
> > Is there any update on this?
>
> It is in my current test queue:
>
>
> https://git.openembedded.or
Hi Steve,
Is there any update on this?
Thanks,
Shubham Kulkarni
On Tue, Sep 26, 2023 at 9:38 AM Siddharth via lists.openembedded.org
wrote:
> From: Siddharth Doshi
>
> Upstream-Status: Backport from [
> https://github.com/golang/go/commit/023b542edf38e2a1f87fcefb9f75ff2f99401b4c
> ]
> CVE: CV
From: Shubham Kulkarni
The PKCS#11 feature in ssh-agent in OpenSSH before 9.3p2 has an
insufficiently trustworthy search path, leading to remote code
execution if an agent is forwarded to an attacker-controlled system.
(Code in /usr/lib is not necessarily safe for loading into ssh-agent.)
NOTE: t
14 matches
Mail list logo
