<feed xmlns='http://www.w3.org/2005/Atom'>
<title>linux/meta-openembedded.git/meta-webserver, branch styhead</title>
<subtitle>Mirror of git.openembedded.org/meta-openembedded</subtitle>
<id>https://git.enea.com/cgit/linux/meta-openembedded.git/atom?h=styhead</id>
<link rel='self' href='https://git.enea.com/cgit/linux/meta-openembedded.git/atom?h=styhead'/>
<link rel='alternate' type='text/html' href='https://git.enea.com/cgit/linux/meta-openembedded.git/'/>
<updated>2025-01-16T14:17:32+00:00</updated>
<entry>
<title>apache2: ignore disputed CVE CVE-2007-0086</title>
<updated>2025-01-16T14:17:32+00:00</updated>
<author>
<name>Peter Marko</name>
<email>peter.marko@siemens.com</email>
</author>
<published>2024-12-19T20:48:58+00:00</published>
<link rel='alternate' type='text/html' href='https://git.enea.com/cgit/linux/meta-openembedded.git/commit/?id=3eb5952ed1718b7454474695f3a4e414909fb44a'/>
<id>urn:sha1:3eb5952ed1718b7454474695f3a4e414909fb44a</id>
<content type='text'>
This CVE is officially disputed by Redhat with official statement in
https://nvd.nist.gov/vuln/detail/CVE-2007-0086

Red Hat does not consider this issue to be a security vulnerability.
The pottential attacker has to send acknowledgement packets periodically
to make server generate traffic. Exactly the same effect could be
achieved by simply downloading the file. The statement that setting the
TCP window size to arbitrarily high value would permit the attacker to
disconnect and stop sending ACKs is false, because Red Hat Enterprise
Linux limits the size of the TCP send buffer to 4MB by default.

Signed-off-by: Peter Marko &lt;peter.marko@siemens.com&gt;
Signed-off-by: Khem Raj &lt;raj.khem@gmail.com&gt;
(cherry picked from commit da2b5e8b93c248363581b1bd4ff67ff1d8357c41)
Signed-off-by: Armin Kuster &lt;akuster808@gmail.com&gt;
</content>
</entry>
<entry>
<title>monkey: ignore CVE-2013-1771</title>
<updated>2025-01-16T14:17:32+00:00</updated>
<author>
<name>Peter Marko</name>
<email>peter.marko@siemens.com</email>
</author>
<published>2024-12-19T20:48:55+00:00</published>
<link rel='alternate' type='text/html' href='https://git.enea.com/cgit/linux/meta-openembedded.git/commit/?id=3e066952da004c7b005f2e8a0c424f51211821aa'/>
<id>urn:sha1:3e066952da004c7b005f2e8a0c424f51211821aa</id>
<content type='text'>
This is gentoo specific CVE.
NVD tracks this as version-less CVE.

Signed-off-by: Peter Marko &lt;peter.marko@siemens.com&gt;
Signed-off-by: Khem Raj &lt;raj.khem@gmail.com&gt;
(cherry picked from commit 36a7e409d8dcee804f911174291a0c72b8037934)
Signed-off-by: Armin Kuster &lt;akuster808@gmail.com&gt;
</content>
</entry>
<entry>
<title>apache2: remove old version references from CVEs</title>
<updated>2025-01-16T14:17:32+00:00</updated>
<author>
<name>Peter Marko</name>
<email>peter.marko@siemens.com</email>
</author>
<published>2024-12-19T20:48:52+00:00</published>
<link rel='alternate' type='text/html' href='https://git.enea.com/cgit/linux/meta-openembedded.git/commit/?id=caed65ef7347501d3622c0e7ba50514863a61dc8'/>
<id>urn:sha1:caed65ef7347501d3622c0e7ba50514863a61dc8</id>
<content type='text'>
These were not updated on recipe upgrade.
To make maintenance easier, remove exact versions.

Signed-off-by: Peter Marko &lt;peter.marko@siemens.com&gt;
Signed-off-by: Khem Raj &lt;raj.khem@gmail.com&gt;
(cherry picked from commit 0e7733f1b8f51949ec91d82267d5d864ac0be16a)
Signed-off-by: Armin Kuster &lt;akuster808@gmail.com&gt;
</content>
</entry>
<entry>
<title>apache2: ignore CVE-1999-0678 and CVE-1999-1412</title>
<updated>2025-01-16T14:17:32+00:00</updated>
<author>
<name>Peter Marko</name>
<email>peter.marko@siemens.com</email>
</author>
<published>2024-12-19T20:48:51+00:00</published>
<link rel='alternate' type='text/html' href='https://git.enea.com/cgit/linux/meta-openembedded.git/commit/?id=158e1ae385609296e8722ee2975f4156bf5a2361'/>
<id>urn:sha1:158e1ae385609296e8722ee2975f4156bf5a2361</id>
<content type='text'>
These CVEs are specific to Debian and MAC OS X respectively.

Signed-off-by: Peter Marko &lt;peter.marko@siemens.com&gt;
Signed-off-by: Khem Raj &lt;raj.khem@gmail.com&gt;
(cherry picked from commit 1b86a60f6283b08acadc50914075d93dd362700b)
Signed-off-by: Armin Kuster &lt;akuster808@gmail.com&gt;
</content>
</entry>
<entry>
<title>nginx: Upgrade mainline release version 1.27.1 -&gt; 1.27.3</title>
<updated>2025-01-16T14:17:32+00:00</updated>
<author>
<name>Derek Straka</name>
<email>derek@asterius.io</email>
</author>
<published>2024-12-10T21:33:34+00:00</published>
<link rel='alternate' type='text/html' href='https://git.enea.com/cgit/linux/meta-openembedded.git/commit/?id=f1a8f14706c00dd073f419fe898f12055a4aecd9'/>
<id>urn:sha1:f1a8f14706c00dd073f419fe898f12055a4aecd9</id>
<content type='text'>
License-Update: License file negative and empty space changes

Signed-off-by: Derek Straka &lt;derek@asterius.io&gt;
Signed-off-by: Khem Raj &lt;raj.khem@gmail.com&gt;
(cherry picked from commit 1f4b413ebe623810007d430a73cc6f8a26c8f578)
Signed-off-by: Armin Kuster &lt;akuster808@gmail.com&gt;
</content>
</entry>
<entry>
<title>apache2: do not depend on zlib header and libs from host</title>
<updated>2024-11-19T21:13:27+00:00</updated>
<author>
<name>Valeria Petrov</name>
<email>valeria.petrov@spinetix.com</email>
</author>
<published>2024-10-09T07:49:55+00:00</published>
<link rel='alternate' type='text/html' href='https://git.enea.com/cgit/linux/meta-openembedded.git/commit/?id=03443b8fb12e69bae622da9100db000bb4607bee'/>
<id>urn:sha1:03443b8fb12e69bae622da9100db000bb4607bee</id>
<content type='text'>
This commit modifies the PACKAGECONFIG entry for zlib to ensure that the
mod_deflate module is enabled with the appropriate zlib configuration.
By adding the --with-zlib=${STAGING_LIBDIR}/../ option, we direct the
configure script to use the zlib library from the staging directory
instead of relying on the host system's zlib installation.

Without that configure will search the host for zlib headers and lib.

This change resolves build failures related to zlib dependency when
mod_deflate is enabled and ensures a consistent build environment across
different host configurations.

Signed-off-by: Valeria Petrov &lt;valeria.petrov@spinetix.com&gt;
Signed-off-by: Khem Raj &lt;raj.khem@gmail.com&gt;
(cherry picked from commit ac5855c74d1cb2252efdb347969c450637f95c58)
Signed-off-by: Armin Kuster &lt;akuster808@gmail.com&gt;
</content>
</entry>
<entry>
<title>meta-openemnedded: Add myself as styhead maintainer</title>
<updated>2024-09-29T20:58:53+00:00</updated>
<author>
<name>Armin Kuster</name>
<email>akuster808@gmail.com</email>
</author>
<published>2024-09-29T16:10:48+00:00</published>
<link rel='alternate' type='text/html' href='https://git.enea.com/cgit/linux/meta-openembedded.git/commit/?id=461d85a1831318747af5abe86da193bcde3fd9b4'/>
<id>urn:sha1:461d85a1831318747af5abe86da193bcde3fd9b4</id>
<content type='text'>
Signed-off-by: Armin Kuster &lt;akuster808@gmail.com&gt;
Signed-off-by: Khem Raj &lt;raj.khem@gmail.com&gt;
</content>
</entry>
<entry>
<title>nginx: Upgrade mainline 1.25.3 -&gt; 1.27.1</title>
<updated>2024-09-17T22:46:33+00:00</updated>
<author>
<name>Peter Marko</name>
<email>peter.marko@siemens.com</email>
</author>
<published>2024-09-17T22:30:59+00:00</published>
<link rel='alternate' type='text/html' href='https://git.enea.com/cgit/linux/meta-openembedded.git/commit/?id=12a36136fec555ab7b6cf882017baca4cce6118e'/>
<id>urn:sha1:12a36136fec555ab7b6cf882017baca4cce6118e</id>
<content type='text'>
Solves:
* CVE-2024-7347
* CVE-2024-24989
* CVE-2024-24990
* CVE-2024-31079
* CVE-2024-32760
* CVE-2024-34161
* CVE-2024-35200

License-Update: copyright year refreshed

Signed-off-by: Peter Marko &lt;peter.marko@siemens.com&gt;
Signed-off-by: Khem Raj &lt;raj.khem@gmail.com&gt;
</content>
</entry>
<entry>
<title>nginx: Upgrade stable 1.26.0 -&gt; 1.26.2</title>
<updated>2024-09-17T22:46:33+00:00</updated>
<author>
<name>Peter Marko</name>
<email>peter.marko@siemens.com</email>
</author>
<published>2024-09-17T22:30:58+00:00</published>
<link rel='alternate' type='text/html' href='https://git.enea.com/cgit/linux/meta-openembedded.git/commit/?id=d6504f150b0fb049bdb563d6082009652b66e157'/>
<id>urn:sha1:d6504f150b0fb049bdb563d6082009652b66e157</id>
<content type='text'>
Solves:
* CVE-2024-7347
* CVE-2024-31079
* CVE-2024-32760
* CVE-2024-34161
* CVE-2024-35200

Signed-off-by: Peter Marko &lt;peter.marko@siemens.com&gt;
Signed-off-by: Khem Raj &lt;raj.khem@gmail.com&gt;
</content>
</entry>
<entry>
<title>netdata: Add checks for 64-bit atomic builtins</title>
<updated>2024-09-17T14:50:23+00:00</updated>
<author>
<name>Khem Raj</name>
<email>raj.khem@gmail.com</email>
</author>
<published>2024-09-17T05:48:42+00:00</published>
<link rel='alternate' type='text/html' href='https://git.enea.com/cgit/linux/meta-openembedded.git/commit/?id=a2010f12fd3a0d615c021417b0494447560742a0'/>
<id>urn:sha1:a2010f12fd3a0d615c021417b0494447560742a0</id>
<content type='text'>
This helps in passing correct flags to h2o module compilation

Signed-off-by: Khem Raj &lt;raj.khem@gmail.com&gt;
</content>
</entry>
</feed>
