Please review this set of changes for kirkstone and have comments back by end of day Tuesday, February 27
Passed a-full on autobuilder: https://autobuilder.yoctoproject.org/typhoon/#/builders/83/builds/6610 The following changes since commit 59cc2e75c15f8c6371a4c4a3b7bd2e6c3f145fbc: Revert "kernel: fix localversion in v6.3+" (2024-02-15 15:45:23 -1000) are available in the Git repository at: https://git.openembedded.org/openembedded-core-contrib stable/kirkstone-nut https://git.openembedded.org/openembedded-core-contrib/log/?h=stable/kirkstone-nut Alexander Kanavin (1): runqemu: direct mesa to use its own drivers, rather than ones provided by host distro Bruce Ashfield (13): linux-yocto/5.10: update to v5.10.203 linux-yocto/5.10: update to v5.10.205 linux-yocto/5.10: update to v5.10.206 linux-yocto/5.10: update to v5.10.209 linux-yocto/5.15: update to v5.15.141 linux-yocto/5.15: update to v5.15.142 linux-yocto/5.15: update to v5.15.145 linux-yocto/5.15: update to v5.15.146 linux-yocto/5.15: update CVE exclusions linux-yocto/5.15: update to v5.15.147 linux-yocto/5.15: update CVE exclusions linux-yocto/5.15: update to v5.15.148 linux-yocto/5.15: update CVE exclusions Fabien Mahot (1): ldconfig-native: Fix to point correctly on the DT_NEEDED entries in an ELF file Hugo SIMELIERE (1): libuv: fix CVE-2024-24806 Ming Liu (1): go: add a complementary fix for CVE-2023-29406 Ross Burton (2): curl: don't enable debug builds oeqa/selftest/runtime_test: only run the virgl tests on qemux86-64 Steve Sakoman (1): cve-exclusion_5.10.inc: update for 5.10.209 Tim Orling (1): vim: upgrade v9.0.2130 -> v9.0.2190 Zahir Hussain (1): cmake: Unset CMAKE_CXX_IMPLICIT_INCLUDE_DIRECTORIES meta/lib/oeqa/selftest/cases/runtime_test.py | 5 +- .../libuv/libuv/CVE-2024-24806-1.patch | 56 +++ .../libuv/libuv/CVE-2024-24806-2.patch | 44 +++ .../libuv/libuv/CVE-2024-24806-3.patch | 31 ++ .../libuv/libuv_1.44.2.bb | 6 +- ...-.dynstr-located-in-separate-segment.patch | 178 +++++++++ .../glibc/ldconfig-native_2.12.1.bb | 1 + .../cmake/cmake/OEToolchainConfig.cmake | 3 + meta/recipes-devtools/go/go-1.17.13.inc | 3 +- ...023-29406.patch => CVE-2023-29406-1.patch} | 0 .../go/go-1.18/CVE-2023-29406-2.patch | 114 ++++++ .../linux/cve-exclusion_5.10.inc | 199 +++++++++- .../linux/cve-exclusion_5.15.inc | 372 ++++++++++++++++-- .../linux/linux-yocto-rt_5.10.bb | 6 +- .../linux/linux-yocto-rt_5.15.bb | 6 +- .../linux/linux-yocto-tiny_5.10.bb | 8 +- .../linux/linux-yocto-tiny_5.15.bb | 6 +- meta/recipes-kernel/linux/linux-yocto_5.10.bb | 24 +- meta/recipes-kernel/linux/linux-yocto_5.15.bb | 26 +- meta/recipes-support/curl/curl_7.82.0.bb | 4 +- meta/recipes-support/vim/vim.inc | 4 +- scripts/runqemu | 34 +- 22 files changed, 1013 insertions(+), 117 deletions(-) create mode 100644 meta/recipes-connectivity/libuv/libuv/CVE-2024-24806-1.patch create mode 100644 meta/recipes-connectivity/libuv/libuv/CVE-2024-24806-2.patch create mode 100644 meta/recipes-connectivity/libuv/libuv/CVE-2024-24806-3.patch create mode 100644 meta/recipes-core/glibc/ldconfig-native-2.12.1/ldconfig-handle-.dynstr-located-in-separate-segment.patch rename meta/recipes-devtools/go/go-1.18/{CVE-2023-29406.patch => CVE-2023-29406-1.patch} (100%) create mode 100644 meta/recipes-devtools/go/go-1.18/CVE-2023-29406-2.patch -- 2.34.1
-=-=-=-=-=-=-=-=-=-=-=- Links: You receive all messages sent to this group. View/Reply Online (#196152): https://lists.openembedded.org/g/openembedded-core/message/196152 Mute This Topic: https://lists.openembedded.org/mt/104571823/21656 Group Owner: [email protected] Unsubscribe: https://lists.openembedded.org/g/openembedded-core/unsub [[email protected]] -=-=-=-=-=-=-=-=-=-=-=-
