Mirror of git.openembedded.org/meta-openembedded https://git.enea.com/cgit/linux/meta-openembedded.git/atom?h=nanbield 2024-01-17T00:29:51+00:00 2024-01-17T00:29:51+00:00 Wang Mingyu wangmy@fujitsu.com 2024-01-02T07:02:33+00:00 urn:sha1:da9063bdfbe130f424ba487f167da68e0ce90e7d 0001-libgcrypt.c-Fix-prototype-of-des3_encrypt-des3_decry.patch 0001-tests-CMakeLists.txt-do-not-search-ssh-sshd-commands.patch refreshed for 0.10.6 Changelog: ========== * Fix CVE-2023-6004: Command injection using proxycommand * Fix CVE-2023-48795: Potential downgrade attack using strict kex * Fix CVE-2023-6918: Missing checks for return values of MD functions * Fix ssh_send_issue_banner() for CMD(PowerShell) * Avoid passing other events to callbacks when poll is called recursively (#202) * Allow @ in usernames when parsing from URI composes Signed-off-by: Wang Mingyu <wangmy@fujitsu.com> Signed-off-by: Khem Raj <raj.khem@gmail.com> (cherry picked from commit 1bea2e8c3053e7ecffb04adaaded54555f2afa0b) Signed-off-by: Armin Kuster <akuster808@gmail.com> 2024-01-17T00:28:54+00:00 Changqing Li changqing.li@windriver.com 2023-12-27T02:55:57+00:00 urn:sha1:a1b8c2ac48a5c9d267b11536673076778967ced9 Upgrade urgency SECURITY: See security fixes below. Security fixes: (CVE-2023-45145) The wrong order of listen(2) and chmod(2) calls creates a race condition that can be used by another process to bypass desired Unix socket permissions on startup. Signed-off-by: Changqing Li <changqing.li@windriver.com> Signed-off-by: Khem Raj <raj.khem@gmail.com> (cherry picked from commit 5b34766daadf8f1e8ef3d55b24e0037c4d0727f5) Signed-off-by: Armin Kuster <akuster808@gmail.com> 2024-01-17T00:28:29+00:00 Yi Zhao yi.zhao@windriver.com 2023-12-27T15:39:38+00:00 urn:sha1:d9f86ba48c4b72f5e6645236b26e935403b83658 This is the latest stable release of the Samba 4.18 release series. It contains the security-relevant bugfix CVE-2018-14628: Wrong ntSecurityDescriptor values for "CN=Deleted Objects" allow read of object tombstones over LDAP (Administrator action required!) https://www.samba.org/samba/security/CVE-2018-14628.html Release Notes: https://www.samba.org/samba/history/samba-4.18.9.html Signed-off-by: Yi Zhao <yi.zhao@windriver.com> Signed-off-by: Khem Raj <raj.khem@gmail.com> (cherry picked from commit f4c3c747d6df6015eb1231f2867ffe43ddb9620e) Signed-off-by: Armin Kuster <akuster808@gmail.com> 2024-01-17T00:28:02+00:00 Changqing Li changqing.li@windriver.com 2023-12-27T02:54:34+00:00 urn:sha1:f18f934d32823e46c8019b2cc268250d72eaa661 Refer https://www.postgresql.org/docs/release/15.5/ Signed-off-by: Changqing Li <changqing.li@windriver.com> Signed-off-by: Khem Raj <raj.khem@gmail.com> (cherry picked from commit bcedf9f99ca683764ef19ab008e042c82da616ff) Signed-off-by: Armin Kuster <akuster808@gmail.com> 2024-01-17T00:26:18+00:00 Wang Mingyu wangmy@fujitsu.com 2024-01-08T13:38:05+00:00 urn:sha1:9619c23c76d05522e1a2c8435cd3a2f548f74113 Signed-off-by: Wang Mingyu <wangmy@fujitsu.com> Signed-off-by: Khem Raj <raj.khem@gmail.com> (cherry picked from commit 466370a087534eded974a1eef2a4431dda6900b3) Signed-off-by: Armin Kuster <akuster808@gmail.com> 2024-01-17T00:26:07+00:00 Wang Mingyu wangmy@fujitsu.com 2023-12-15T05:57:25+00:00 urn:sha1:79c73a272efb52ec1af8cf727f3002c17aff37fc Changelog: =========== - Fix flickering while playing videos with DMA-BUF sink. - Fix color picker being triggered in the inspector when typing "tan". - Do not special case the "sans" font family name. - Fix build failure with libxml2 version 2.12.0 due to an API change. - Fix several crashes and rendering issues. Signed-off-by: Wang Mingyu <wangmy@fujitsu.com> Signed-off-by: Khem Raj <raj.khem@gmail.com> (cherry picked from commit 1a474db2702c59702c414f4c8ed4487251f10df6) Signed-off-by: Armin Kuster <akuster808@gmail.com> 2024-01-17T00:25:54+00:00 Wang Mingyu wangmy@fujitsu.com 2023-11-16T08:48:51+00:00 urn:sha1:007f93ba85a43b22d52140322a55012f3ab7a50c Changelog: ========== - Bump Safari version in user agent header. - Fix CSP regression that broke Unity WebGL applications. - Fix the build with GBM disabled. - Fix several crashes and rendering issues. Signed-off-by: Wang Mingyu <wangmy@fujitsu.com> Signed-off-by: Khem Raj <raj.khem@gmail.com> (cherry picked from commit 700e3a36fbc70ef7ecd5fa2bc820f0922df5a528) Signed-off-by: Armin Kuster <akuster808@gmail.com> 2024-01-17T00:25:47+00:00 Khem Raj raj.khem@gmail.com 2023-11-04T00:19:20+00:00 urn:sha1:f317702966a41869833a1a3c349610e553d1bfac Signed-off-by: Khem Raj <raj.khem@gmail.com> (cherry picked from commit 32bae13bb8b8edf6b4af12ee7057493101c5fb14) Signed-off-by: Armin Kuster <akuster808@gmail.com> 2024-01-17T00:22:02+00:00 Mingli Yu mingli.yu@windriver.com 2023-12-14T10:13:49+00:00 urn:sha1:5c88ef0935468d066d9481b211295797022cf217 Remove one patch as the logic is included in the new version [1] [2]. Upgrade mariadb to 10.11.6 [3]. [1] https://github.com/MariaDB/server/commit/f4cec369a392c8a6056207012992ad4a5639965a [2] https://github.com/MariaDB/server/commit/cd5808eb8da13c5626d4bdeb452cef6ada29cb1d [3] https://mariadb.com/kb/en/mariadb-10-11-6-release-notes/ Signed-off-by: Mingli Yu <mingli.yu@windriver.com> Signed-off-by: Khem Raj <raj.khem@gmail.com> (cherry picked from commit 702cf1dc114d7c65cde4fe1d3f19a3314fccb7ff) Signed-off-by: Armin Kuster <akuster808@gmail.com> 2024-01-17T00:21:40+00:00 Meenali Gupta meenali.gupta@windriver.com 2023-12-14T10:38:12+00:00 urn:sha1:732522fc1ff0739d18107636d7aa0af8433e9c5e Changelog: =========== https://nginx.org/en/CHANGES *) Change: improved detection of misbehaving clients when using HTTP/2. *) Feature: startup speedup when using a large number of locations. Thanks to Yusuke Nojima. *) Bugfix: a segmentation fault might occur in a worker process when using HTTP/2 without SSL; the bug had appeared in 1.25.1. *) Bugfix: the "Status" backend response header line with an empty reason phrase was handled incorrectly. *) Bugfix: memory leak during reconfiguration when using the PCRE2 library. Thanks to ZhenZhong Wu. *) Bugfixes and improvements in HTTP/3. Signed-off-by: Meenali Gupta <meenali.gupta@windriver.com> Signed-off-by: Khem Raj <raj.khem@gmail.com> (cherry picked from commit dc4bef4648ea5ff73230ff2d343f498c93bd333b) Signed-off-by: Armin Kuster <akuster808@gmail.com>