kirkstone merge request: July 31st


Armin Kuster
 

The following changes since commit a47ef046619d639dfbd3be2a13ef6d5b40fd40a1:

  openflow: ignore unrelated CVEs (2022-07-18 07:02:41 -0700)

are available in the Git repository at:

  https://git.openembedded.org/meta-openembedded kirkstone-next

for you to fetch changes up to 8f2dc1023482863e2630d1b94052c41ce748b38f:

  tracker: upgrade 3.3.1 -> 3.3.2 (2022-07-26 07:27:26 -0700)

----------------------------------------------------------------
Armin Kuster (1):
      bigbuckbunny-1080p: update SRC_URI

Aryaman Gupta (1):
      rsyslog: update 8.2202->8.2206

Chen Qi (1):
      catfish: fix buildpaths issue

Davide Gardenal (6):
      libplist: ignore patched CVEs
      meta-oe: ignore patched CVEs
      mongodb: ignore unrelated CVEs
      php: ignore patched CVEs
      postgresql: ignore unrelated CVE
      openjpeg: ignore CVE-2015-1239

Wang Mingyu (3):
      php: upgrade 8.1.7 -> 8.1.8
      ndisc6: upgrade 1.0.5 -> 1.0.6
      tracker: upgrade 3.3.0 -> 3.3.1

Yue Tao (1):
      python3-lxml: Security fix CVE-2022-2309

wangmy (4):
      stunnel: upgrade 5.63 -> 5.64
      stunnel: upgrade 5.64 -> 5.65
      redis: upgrade 7.0.2 -> 7.0.4
      tracker: upgrade 3.3.1 -> 3.3.2

 .../tracker/{tracker_3.3.0.bb => tracker_3.3.2.bb}       |  2 +-
 .../sample-content/bigbuckbunny-1080p.bb                 |  2 +-
 .../ndisc6/{ndisc6_git.bb => ndisc6_1.0.6.bb}            |  3 +-
 .../stunnel/stunnel/fix-openssl-no-des.patch             | 24 ++++--
 .../stunnel/{stunnel_5.63.bb => stunnel_5.65.bb}         |  2 +-
 .../meta-python/recipes-dbs/mongodb/mongodb_git.bb       |  6 ++
 .../recipes-connectivity/libtorrent/libtorrent_git.bb    |  4 +
 meta-oe/recipes-dbs/postgresql/postgresql_14.4.bb        |  4 +
 .../recipes-devtools/php/{php_8.1.7.bb => php_8.1.8.bb}  |  8 +-
 meta-oe/recipes-devtools/uw-imap/uw-imap_2007f.bb        |  4 +
 .../recipes-extended/libimobiledevice/libplist_2.2.0.bb  |  6 ++
 .../redis/{redis_7.0.2.bb => redis_7.0.4.bb}             |  2 +-
 .../rsyslog/{rsyslog_8.2202.0.bb => rsyslog_8.2206.0.bb} |  2 +-
 meta-oe/recipes-extended/sanlock/sanlock_3.8.4.bb        |  4 +
 meta-oe/recipes-extended/sblim-sfcb/sblim-sfcb_1.4.9.bb  |  4 +
 meta-oe/recipes-graphics/graphviz/graphviz_2.50.0.bb     |  4 +
 meta-oe/recipes-graphics/jasper/jasper_2.0.33.bb         |  4 +
 meta-oe/recipes-graphics/openjpeg/openjpeg_2.4.0.bb      |  4 +
 meta-oe/recipes-support/atop/atop_2.4.0.bb               |  4 +
 meta-oe/recipes-support/emacs/emacs_27.2.bb              |  4 +
 meta-oe/recipes-support/pidgin/pidgin_2.14.2.bb          |  5 ++
 .../python/python3-lxml/CVE-2022-2309.patch              | 99 +++++++++++++++++++++++++
 .../recipes-devtools/python/python3-lxml_4.8.0.bb        |  3 +-
 meta-xfce/recipes-apps/catfish/catfish_4.16.3.bb         |  9 +++
 24 files changed, 197 insertions(+), 16 deletions(-)
 rename meta-gnome/recipes-gnome/tracker/{tracker_3.3.0.bb => tracker_3.3.2.bb} (93%)
 rename meta-networking/recipes-support/ndisc6/{ndisc6_git.bb => ndisc6_1.0.6.bb} (97%)
 rename meta-networking/recipes-support/stunnel/{stunnel_5.63.bb => stunnel_5.65.bb} (93%)
 rename meta-oe/recipes-devtools/php/{php_8.1.7.bb => php_8.1.8.bb} (98%)
 rename meta-oe/recipes-extended/redis/{redis_7.0.2.bb => redis_7.0.4.bb} (96%)
 rename meta-oe/recipes-extended/rsyslog/{rsyslog_8.2202.0.bb => rsyslog_8.2206.0.bb} (98%)
 create mode 100644 meta-python/recipes-devtools/python/python3-lxml/CVE-2022-2309.patch


Khem Raj
 

merged thanks.

On 7/31/22 06:53, akuster808 wrote:
The following changes since commit a47ef046619d639dfbd3be2a13ef6d5b40fd40a1:
  openflow: ignore unrelated CVEs (2022-07-18 07:02:41 -0700)
are available in the Git repository at:
  https://git.openembedded.org/meta-openembedded kirkstone-next
for you to fetch changes up to 8f2dc1023482863e2630d1b94052c41ce748b38f:
  tracker: upgrade 3.3.1 -> 3.3.2 (2022-07-26 07:27:26 -0700)
----------------------------------------------------------------
Armin Kuster (1):
      bigbuckbunny-1080p: update SRC_URI
Aryaman Gupta (1):
      rsyslog: update 8.2202->8.2206
Chen Qi (1):
      catfish: fix buildpaths issue
Davide Gardenal (6):
      libplist: ignore patched CVEs
      meta-oe: ignore patched CVEs
      mongodb: ignore unrelated CVEs
      php: ignore patched CVEs
      postgresql: ignore unrelated CVE
      openjpeg: ignore CVE-2015-1239
Wang Mingyu (3):
      php: upgrade 8.1.7 -> 8.1.8
      ndisc6: upgrade 1.0.5 -> 1.0.6
      tracker: upgrade 3.3.0 -> 3.3.1
Yue Tao (1):
      python3-lxml: Security fix CVE-2022-2309
wangmy (4):
      stunnel: upgrade 5.63 -> 5.64
      stunnel: upgrade 5.64 -> 5.65
      redis: upgrade 7.0.2 -> 7.0.4
      tracker: upgrade 3.3.1 -> 3.3.2
 .../tracker/{tracker_3.3.0.bb => tracker_3.3.2.bb}       |  2 +-
 .../sample-content/bigbuckbunny-1080p.bb                 |  2 +-
 .../ndisc6/{ndisc6_git.bb => ndisc6_1.0.6.bb}            |  3 +-
 .../stunnel/stunnel/fix-openssl-no-des.patch             | 24 ++++--
 .../stunnel/{stunnel_5.63.bb => stunnel_5.65.bb}         |  2 +-
 .../meta-python/recipes-dbs/mongodb/mongodb_git.bb       |  6 ++
 .../recipes-connectivity/libtorrent/libtorrent_git.bb    |  4 +
 meta-oe/recipes-dbs/postgresql/postgresql_14.4.bb        |  4 +
 .../recipes-devtools/php/{php_8.1.7.bb => php_8.1.8.bb}  |  8 +-
 meta-oe/recipes-devtools/uw-imap/uw-imap_2007f.bb        |  4 +
 .../recipes-extended/libimobiledevice/libplist_2.2.0.bb  |  6 ++
 .../redis/{redis_7.0.2.bb => redis_7.0.4.bb}             |  2 +-
 .../rsyslog/{rsyslog_8.2202.0.bb => rsyslog_8.2206.0.bb} |  2 +-
 meta-oe/recipes-extended/sanlock/sanlock_3.8.4.bb        |  4 +
 meta-oe/recipes-extended/sblim-sfcb/sblim-sfcb_1.4.9.bb  |  4 +
 meta-oe/recipes-graphics/graphviz/graphviz_2.50.0.bb     |  4 +
 meta-oe/recipes-graphics/jasper/jasper_2.0.33.bb         |  4 +
 meta-oe/recipes-graphics/openjpeg/openjpeg_2.4.0.bb      |  4 +
 meta-oe/recipes-support/atop/atop_2.4.0.bb               |  4 +
 meta-oe/recipes-support/emacs/emacs_27.2.bb              |  4 +
 meta-oe/recipes-support/pidgin/pidgin_2.14.2.bb          |  5 ++
 .../python/python3-lxml/CVE-2022-2309.patch              | 99 +++++++++++++++++++++++++
 .../recipes-devtools/python/python3-lxml_4.8.0.bb        |  3 +-
 meta-xfce/recipes-apps/catfish/catfish_4.16.3.bb         |  9 +++
 24 files changed, 197 insertions(+), 16 deletions(-)
 rename meta-gnome/recipes-gnome/tracker/{tracker_3.3.0.bb => tracker_3.3.2.bb} (93%)
 rename meta-networking/recipes-support/ndisc6/{ndisc6_git.bb => ndisc6_1.0.6.bb} (97%)
 rename meta-networking/recipes-support/stunnel/{stunnel_5.63.bb => stunnel_5.65.bb} (93%)
 rename meta-oe/recipes-devtools/php/{php_8.1.7.bb => php_8.1.8.bb} (98%)
 rename meta-oe/recipes-extended/redis/{redis_7.0.2.bb => redis_7.0.4.bb} (96%)
 rename meta-oe/recipes-extended/rsyslog/{rsyslog_8.2202.0.bb => rsyslog_8.2206.0.bb} (98%)
 create mode 100644 meta-python/recipes-devtools/python/python3-lxml/CVE-2022-2309.patch