Please review this set of changes for kirkstone and have comments back by end of day Friday, March 22
Passed a-full on autobuilder: https://autobuilder.yoctoproject.org/typhoon/#/builders/83/builds/6699 The following changes since commit 2501534c9581c6c3439f525d630be11554a57d24: build-appliance-image: Update to kirkstone head revision (2024-03-13 07:39:46 -1000) are available in the Git repository at: https://git.openembedded.org/openembedded-core-contrib stable/kirkstone-nut https://git.openembedded.org/openembedded-core-contrib/log/?h=stable/kirkstone-nut Alex Kiernan (1): wireless-regdb: Upgrade 2023.09.01 -> 2024.01.23 Alexander Kanavin (1): linux-firmware: upgrade 20231211 -> 20240220 Haitao Liu (1): glibc: Fix subscript typos for get_nscd_addresses Martin Jansa (1): stress-ng: avoid calling sync during do_compile Meenali Gupta (1): expat: fix CVE-2023-52426 Michael Halstead (1): yocto-uninative: Update to 4.4 for glibc 2.39 Peter Marko (1): expat: patch CVE-2024-28757 Vijay Anusuri (1): python3-cryptography: Backport fix for CVE-2024-26130 Wang Mingyu (1): wireless-regdb: upgrade 2023.05.03 -> 2023.09.01 Yoann Congal (6): cve-update-nvd2-native: Fix typo in comment cve-update-nvd2-native: Add an age threshold for incremental update cve-update-nvd2-native: Remove duplicated CVE_CHECK_DB_FILE definition cve-update-nvd2-native: nvd_request_next: Improve comment cve-update-nvd2-native: Fix CVE configuration update cve-update-nvd2-native: Remove rejected CVE from database meta/conf/distro/include/yocto-uninative.inc | 10 +- .../expat/expat/CVE-2023-52426-001.patch | 35 ++ .../expat/expat/CVE-2023-52426-002.patch | 72 +++ .../expat/expat/CVE-2023-52426-003.patch | 28 ++ .../expat/expat/CVE-2023-52426-004.patch | 429 ++++++++++++++++++ .../expat/expat/CVE-2023-52426-005.patch | 34 ++ .../expat/expat/CVE-2023-52426-006.patch | 174 +++++++ .../expat/expat/CVE-2023-52426-007.patch | 53 +++ .../expat/expat/CVE-2023-52426-008.patch | 37 ++ .../expat/expat/CVE-2023-52426-009.patch | 354 +++++++++++++++ .../expat/expat/CVE-2023-52426-010.patch | 50 ++ .../expat/expat/CVE-2023-52426-011.patch | 45 ++ .../expat/expat/CVE-2024-28757.patch | 58 +++ meta/recipes-core/expat/expat_2.5.0.bb | 12 + ...dresses-Fix-subscript-typos-BZ-29605.patch | 40 ++ meta/recipes-core/glibc/glibc_2.35.bb | 1 + .../meta/cve-update-nvd2-native.bb | 35 +- .../python3-cryptography/CVE-2024-26130.patch | 66 +++ .../python/python3-cryptography_36.0.2.bb | 1 + .../0001-Makefile-avoid-calling-sync.patch | 35 ++ .../stress-ng/stress-ng_0.13.12.bb | 1 + ...20231211.bb => linux-firmware_20240220.bb} | 6 +- ....05.03.bb => wireless-regdb_2024.01.23.bb} | 4 +- 23 files changed, 1562 insertions(+), 18 deletions(-) create mode 100644 meta/recipes-core/expat/expat/CVE-2023-52426-001.patch create mode 100644 meta/recipes-core/expat/expat/CVE-2023-52426-002.patch create mode 100644 meta/recipes-core/expat/expat/CVE-2023-52426-003.patch create mode 100644 meta/recipes-core/expat/expat/CVE-2023-52426-004.patch create mode 100644 meta/recipes-core/expat/expat/CVE-2023-52426-005.patch create mode 100644 meta/recipes-core/expat/expat/CVE-2023-52426-006.patch create mode 100644 meta/recipes-core/expat/expat/CVE-2023-52426-007.patch create mode 100644 meta/recipes-core/expat/expat/CVE-2023-52426-008.patch create mode 100644 meta/recipes-core/expat/expat/CVE-2023-52426-009.patch create mode 100644 meta/recipes-core/expat/expat/CVE-2023-52426-010.patch create mode 100644 meta/recipes-core/expat/expat/CVE-2023-52426-011.patch create mode 100755 meta/recipes-core/expat/expat/CVE-2024-28757.patch create mode 100644 meta/recipes-core/glibc/glibc/0002-get_nscd_addresses-Fix-subscript-typos-BZ-29605.patch create mode 100644 meta/recipes-devtools/python/python3-cryptography/CVE-2024-26130.patch create mode 100644 meta/recipes-extended/stress-ng/stress-ng-0.13.12/0001-Makefile-avoid-calling-sync.patch rename meta/recipes-kernel/linux-firmware/{linux-firmware_20231211.bb => linux-firmware_20240220.bb} (99%) rename meta/recipes-kernel/wireless-regdb/{wireless-regdb_2023.05.03.bb => wireless-regdb_2024.01.23.bb} (88%) -- 2.34.1
-=-=-=-=-=-=-=-=-=-=-=- Links: You receive all messages sent to this group. View/Reply Online (#197370): https://lists.openembedded.org/g/openembedded-core/message/197370 Mute This Topic: https://lists.openembedded.org/mt/105047725/21656 Group Owner: openembedded-core+ow...@lists.openembedded.org Unsubscribe: https://lists.openembedded.org/g/openembedded-core/unsub [arch...@mail-archive.com] -=-=-=-=-=-=-=-=-=-=-=-