linux/meta-virtualization.git/recipes-extended, branch dunfell Mirror of git.yoctoproject.org/meta-virtualization https://git.enea.com/cgit/linux/meta-virtualization.git/atom?h=dunfell 2022-09-14T01:46:58+00:00 libvirt: CVE-2021-3975 segmentation fault during VM shutdown can lead to vdsm hang 2022-09-14T01:46:58+00:00 Hitendra Prajapati hprajapati@mvista.com 2022-09-13T07:21:15+00:00 urn:sha1:cb95344976dd44081078abd83d8821e01b10c211 Source: https://gitlab.com/libvirt/libvirt MR: 121161 Type: Security Fix Disposition: Backport from https://github.com/libvirt/libvirt/commit/1ac703a7d0789e46833f4013a3876c2e3af18ec7 ChangeID: 747f58e69ce4b1dc4b77277a6acf4e5742d19fad Description: CVE-2021-3975 libvirt: segmentation fault during VM shutdown can lead to vdsm hang. Affects libvirt < 7.1 Signed-off-by: Hitendra Prajapati <hprajapati@mvista.com> Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> libvirt: CVE-2022-0897 missing locking in nwfilterConnectNumOfNWFilters can lead to denial of service 2022-07-05T20:28:15+00:00 Hitendra Prajapati hprajapati@mvista.com 2022-06-29T05:38:55+00:00 urn:sha1:a63a54df3170fed387f810f23cdc2f483ad587df Source: https://gitlab.com/libvirt/libvirt MR: 116994 Type: Security Fix Disposition: Backport from https://gitlab.com/libvirt/libvirt/-/commit/a4947e8f63c3e6b7b067b444f3d6cf674c0d7f36 ChangeID: 628f3cc089ee965dda670aa8f9ab169cec5cb63a Description: CVE-2022-0897 libvirt: missing locking in nwfilterConnectNumOfNWFilters can lead to denial of service. Affects "libvirt < 6.1" Signed-off-by: Hitendra Prajapati <hprajapati@mvista.com> Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> libvirt: CVE-2021-3667 Improper locking on ACL failure 2022-07-05T20:28:05+00:00 Hitendra Prajapati hprajapati@mvista.com 2022-06-29T05:21:37+00:00 urn:sha1:ab3bbe30b60c51b8df4b568c253d559328c8750f Source: https://gitlab.com/libvirt/libvirt MR: 116398 Type: Security Fix Disposition: Backport from https://gitlab.com/libvirt/libvirt/-/commit/447f69dec47e1b0bd15ecd7cd49a9fd3b050fb87 ChangeID: 342935ee7e30ea636d14f2d53c503da511c4a04e Description: CVE-2021-3667 libvirt: Improper locking on ACL failure in virStoragePoolLookupByTargetPath API. Affects libvirt < 6.1 Signed-off-by: Hitendra Prajapati <hprajapati@mvista.com> Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> global: convert github SRC_URIs to use https protocol 2021-11-03T14:02:21+00:00 Bruce Ashfield bruce.ashfield@gmail.com 2021-11-02T13:24:33+00:00 urn:sha1:37051fe0b480b3cabde1caede83e95d6815fe3ec github is removing git:// access, and fetches will start experiencing interruptions in service, and eventually will fail completely. bitbake will also begin to warn on github src_uri's that don't use https. So we convert the meta-virt instances to use protocol=https (done using the oe-core contrib conversion script) Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> libvirt: Security fix for CVE-2021-3631 2021-09-16T22:21:32+00:00 Armin Kuster akuster@mvista.com 2021-09-16T21:23:05+00:00 urn:sha1:9e9868ef3d6e5da7f0ecd0680fcd69324593842b Source: https://libvirt.org/git/libvirt.git MR: 112956 Type: Security Fix Disposition: Backport from https://gitlab.com/libvirt/libvirt/-/commit/15073504dbb624d3f6c911e85557019d3620fdb2 ChangeID: 314727e329e5b1351326737eb9c9232f465db184 Description: Signed-off-by: Armin Kuster <akuster@mvista.com> Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> libvirt: Security fix for CVE-2020-25637 2021-09-16T22:21:32+00:00 Armin Kuster akuster@mvista.com 2021-09-16T21:23:04+00:00 urn:sha1:d0c49b8326c6c53baf2928d10060db39ad1e3bde Source: https://libvirt.org/git/libvirt.git MR: 105864 Type: Security Fix Disposition: Backport from https://libvirt.org/git/libvirt.git ChangeID: 99bb9b4fc1b608e4e9a56b9d2308bfa54d9ba33c Description: * https://libvirt.org/git/?p=libvirt.git;a=commit;h=955029bd0ad7ef96000f529ac38204a8f4a96401 * https://libvirt.org/git/?p=libvirt.git;a=commit;h=50864dcda191eb35732dbd80fb6ca251a6bba923 * https://libvirt.org/git/?p=libvirt.git;a=commit;h=e4116eaa44cb366b59f7fe98f4b88d04c04970ad * https://libvirt.org/git/?p=libvirt.git;a=commit;h=a63b48c5ecef077bf0f909a85f453a605600cf05 Affects <= 6.3.0 Signed-off-by: Armin Kuster <akuster@mvista.com> Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> libvirt: Security fix for CVE-2020-10701 2021-09-16T22:21:32+00:00 Armin Kuster akuster@mvista.com 2021-09-16T21:23:03+00:00 urn:sha1:1c80e22533e69e2d098c726fb9280b652237d7b6 Source: https://libvirt.org/git/libvirt.git MR: 110898 Type: Security Fix Disposition: Backport from https://libvirt.org/git/?p=libvirt.git;a=commit;h=4cc90c2e62df653e909ad31fd810224bf8bcf913 ChangeID: 73bff4861d76b0674547ead4d4b251b60705bb8c Description: Affect libvirt < 6.2.0 Signed-off-by: Armin Kuster <akuster@mvista.com> Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> uxen-guest-tools: inherit dos2unix to fix do_patch failure 2021-07-23T16:56:13+00:00 Martin Jansa Martin.Jansa@gmail.com 2021-07-23T12:46:25+00:00 urn:sha1:758868633be479f38d19c3602be0094289fc1a75 * fixes: ERROR: uxen-guest-tools-4.1.7-r0 do_patch: Command Error: 'quilt --quiltrc /OE/build/oe-core/tmp-glibc/work/qemux86_64-oe-linux/uxen-guest-tools/4.1.7-r0/recipe-sysroot-native/etc/quiltrc push' exited with 0 Output: stdout: Applying patch fix-Makefile-for-OE-kernel-build.patch patching file Makefile Hunk #1 FAILED at 1 (different line endings). Hunk #2 FAILED at 19 (different line endings). 2 out of 2 hunks FAILED -- rejects in file Makefile Patch fix-Makefile-for-OE-kernel-build.patch does not apply (enforce with -f) Signed-off-by: Martin Jansa <Martin.Jansa@gmail.com> Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> libvirt-python: inherit python3targetconfig 2021-02-19T15:48:52+00:00 Martin Jansa Martin.Jansa@gmail.com 2021-02-09T08:09:15+00:00 urn:sha1:502b81ae3ae11bf4d889b7eff6239fb9e6c55994 * otherwise libvirt build will incorrectly use host's gcc and fail with: gcc: error: unrecognized command line option "-fmacro-prefix-map=/OE/libvirt/6.1.0-r0=/usr/src/debug/libvirt/6.1.0-r0" Signed-off-by: Martin Jansa <Martin.Jansa@gmail.com> Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> libvirt: fix install error without qemu 2020-08-08T02:20:03+00:00 Lavocat, Nicolas Nicolas.Lavocat@harman.com 2020-08-06T08:38:59+00:00 urn:sha1:ff997b6b3ba800978546098ab3cdaa113b6695e1 An error occurs during the install step of libvirt when the variable PACKAGECONFIG does not contain qemu. Indeed, in this case, the operation "chown -R qemu:qemu ${D}/${localstatedir}/lib/libvirt/qemu" fails, since the folder ${D}/${localstatedir}/lib/libvirt/qemu has not been created. The fix consist in doing this operation only if the variable “PACKAGECONFIG” contains “qemu”. remark: issue present since the Warrior release of yocto. Upstream-Status: Pending Signed-off-by: Nicolas Lavocat <nicolas.lavocat@harman.com> Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>