openembedded-devel@lists.openembedded.org | [kisrkstone] merge request: July 21

Armin Kuster

The following changes since commit b9bbc38bfba702194a71c5a9dcb747ddacc9d66b:

  protobuf-c: update to 1.4.1 fix CVE-2022-33070 (2022-07-14 09:06:29 -0700)

are available in the Git repository at:

  https://git.openembedded.org/meta-openembedded kirkstone-next

for you to fetch changes up to a47ef046619d639dfbd3be2a13ef6d5b40fd40a1:

  openflow: ignore unrelated CVEs (2022-07-18 07:02:41 -0700)

----------------------------------------------------------------
Changqing Li (4):
      redis: upgrade 6.2.6 -> 6.2.7
      redis: upgrade 7.0-rc3 -> 7.0.2
      apache2: upgrade 2.4.53 -> 2.4.54
      zabbix: upgrade 5.2.6 -> 5.4.12

Davide Gardenal (9):
      usrsctp: add CVE_VERSION to correctly check for CVEs
      openflow: ignore CVE-2018-1078
      ntp: ignore many CVEs
      wireshark: upgrade 3.4.11 -> 3.4.12
      thrift: add CVE_PRODUCT to fix CVE reporting
      spice: ignore patched CVEs
      quagga: ignore CVE-2016-4049
      freeradius: ignore patched CVEs
      openflow: ignore unrelated CVEs

 .../recipes-connectivity/freeradius/freeradius_3.0.21.bb |  5 +++++
 meta-networking/recipes-protocols/openflow/openflow.inc |  9 +++++++++
 meta-networking/recipes-protocols/quagga/quagga_1.2.4.bb |  4 ++++
 meta-networking/recipes-protocols/usrsctp/usrsctp_git.bb |  2 ++
 meta-networking/recipes-support/ntp/ntp_4.2.8p15.bb | 26 +++++++++++++++++++++++++-
 meta-networking/recipes-support/spice/spice_git.bb |  6 ++++++
 .../wireshark/{wireshark_3.4.11.bb => wireshark_3.4.12.bb}         |  2 +-
 meta-oe/recipes-connectivity/thrift/thrift_0.16.0.bb |  2 ++
 .../zabbix/{zabbix_5.2.6.bb => zabbix_5.4.12.bb}                   |  6 +++---
 meta-oe/recipes-extended/redis/redis/GNU_SOURCE.patch | 14 ++++++++------
 meta-oe/recipes-extended/redis/{redis_6.2.6.bb => redis_6.2.7.bb}  |  2 +-
 .../recipes-extended/redis/{redis_7.0-rc3.bb => redis_7.0.2.bb}    |  2 +-
 .../apache2/0004-apache2-log-the-SELinux-context-at-startup.patch |  8 ++++----
 .../recipes-httpd/apache2/{apache2_2.4.53.bb => apache2_2.4.54.bb} |  2 +-
 14 files changed, 72 insertions(+), 18 deletions(-)
 rename meta-networking/recipes-support/wireshark/{wireshark_3.4.11.bb => wireshark_3.4.12.bb} (97%)
 rename meta-oe/recipes-connectivity/zabbix/{zabbix_5.2.6.bb => zabbix_5.4.12.bb} (92%)
 rename meta-oe/recipes-extended/redis/{redis_6.2.6.bb => redis_6.2.7.bb} (96%)
 rename meta-oe/recipes-extended/redis/{redis_7.0-rc3.bb => redis_7.0.2.bb} (96%)
 rename meta-webserver/recipes-httpd/apache2/{apache2_2.4.53.bb => apache2_2.4.54.bb} (99%)

Khem Raj

#97920

merged thanks Armin.

Show quoted text

On Thu, Jul 21, 2022 at 10:08 AM akuster808 <akuster808@...> wrote:

The following changes since commit b9bbc38bfba702194a71c5a9dcb747ddacc9d66b:

   protobuf-c: update to 1.4.1 fix CVE-2022-33070 (2022-07-14 09:06:29
-0700)

are available in the Git repository at:

   https://git.openembedded.org/meta-openembedded kirkstone-next

for you to fetch changes up to a47ef046619d639dfbd3be2a13ef6d5b40fd40a1:

   openflow: ignore unrelated CVEs (2022-07-18 07:02:41 -0700)

----------------------------------------------------------------
Changqing Li (4):
       redis: upgrade 6.2.6 -> 6.2.7
       redis: upgrade 7.0-rc3 -> 7.0.2
       apache2: upgrade 2.4.53 -> 2.4.54
       zabbix: upgrade 5.2.6 -> 5.4.12

Davide Gardenal (9):
       usrsctp: add CVE_VERSION to correctly check for CVEs
       openflow: ignore CVE-2018-1078
       ntp: ignore many CVEs
       wireshark: upgrade 3.4.11 -> 3.4.12
       thrift: add CVE_PRODUCT to fix CVE reporting
       spice: ignore patched CVEs
       quagga: ignore CVE-2016-4049
       freeradius: ignore patched CVEs
       openflow: ignore unrelated CVEs

  .../recipes-connectivity/freeradius/freeradius_3.0.21.bb |  5 +++++
  meta-networking/recipes-protocols/openflow/openflow.inc |  9 +++++++++
  meta-networking/recipes-protocols/quagga/quagga_1.2.4.bb |  4 ++++
  meta-networking/recipes-protocols/usrsctp/usrsctp_git.bb |  2 ++
  meta-networking/recipes-support/ntp/ntp_4.2.8p15.bb | 26
+++++++++++++++++++++++++-
  meta-networking/recipes-support/spice/spice_git.bb |  6 ++++++
  .../wireshark/{wireshark_3.4.11.bb => wireshark_3.4.12.bb}         |  2 +-
  meta-oe/recipes-connectivity/thrift/thrift_0.16.0.bb |  2 ++
  .../zabbix/{zabbix_5.2.6.bb => zabbix_5.4.12.bb}                   |
6 +++---
  meta-oe/recipes-extended/redis/redis/GNU_SOURCE.patch | 14 ++++++++------
  meta-oe/recipes-extended/redis/{redis_6.2.6.bb => redis_6.2.7.bb}  |  2 +-
  .../recipes-extended/redis/{redis_7.0-rc3.bb => redis_7.0.2.bb}    |  2 +-
  .../apache2/0004-apache2-log-the-SELinux-context-at-startup.patch |  8
++++----
  .../recipes-httpd/apache2/{apache2_2.4.53.bb => apache2_2.4.54.bb} |  2 +-
  14 files changed, 72 insertions(+), 18 deletions(-)
  rename meta-networking/recipes-support/wireshark/{wireshark_3.4.11.bb
=> wireshark_3.4.12.bb} (97%)
  rename meta-oe/recipes-connectivity/zabbix/{zabbix_5.2.6.bb =>
zabbix_5.4.12.bb} (92%)
  rename meta-oe/recipes-extended/redis/{redis_6.2.6.bb =>
redis_6.2.7.bb} (96%)
  rename meta-oe/recipes-extended/redis/{redis_7.0-rc3.bb =>
redis_7.0.2.bb} (96%)
  rename meta-webserver/recipes-httpd/apache2/{apache2_2.4.53.bb =>
apache2_2.4.54.bb} (99%)