Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

kirk: stable updates #430

Merged
merged 6 commits into from
Apr 11, 2024
Merged

kirk: stable updates #430

merged 6 commits into from
Apr 11, 2024

Conversation

quaresmajose
Copy link
Member

No description provided.

@quaresmajose
Copy link
Member Author

requires foundriesio/meta-lmp#1437

Relevant changes:
- 0dea41c go: only track the latest version
- e2235e3 go: upgrade 1.22.1 -> 1.22.2
- 85ec412 go: keep the patches in order
- 443303c go: Upgrade 1.22.0 -> 1.22.1
- 8fec2f8 go: filter out build specific path from the linker flags
- 382d38b go: fix-up arm64 sha256sum

Signed-off-by: Jose Quaresma <jose.quaresma@foundries.io>
Relevant changes:
- cb2bc17 openvswitch: Upgrade 2.17.6 -> 2.17.9

Signed-off-by: Jose Quaresma <jose.quaresma@foundries.io>
Relevant changes:
- 6c4feab Merge pull request foundriesio#99 from rborn-tx/fix-var-local-keeping-kirkstone
- 283c562 image_types_ostree: fix logic to maintain /var/local contents

Signed-off-by: Jose Quaresma <jose.quaresma@foundries.io>
Relevant changes:
- 8bb165335 dnsmasq: Upgrade 2.87 -> 2.90
- bb16c640d unixodbc: Fix CVE-2024-1013
- 9a22be426 openjpeg: Backport fix CVE-2021-3575
- 1a3b9da20 c-ares: fix CVE-2024-25629
- da98a75f3 opencv: fix reproducibility issues
- 938a3ff43 postgresql: Upgrade to 14.11
- 4f2d6f6a8 openvpn: ignore CVE-2023-7235

Signed-off-by: Jose Quaresma <jose.quaresma@foundries.io>
Relevant changes:
- 26a878cbfb common-licenses: Backport missing license
- 7af8e24d6c gcc: Backport sanitizer fix for 32-bit ALSR
- c473f32184 python3-urllib3: update to v1.26.18
- 4728df36bb tiff: fix CVE-2023-52356 CVE-2023-6277
- f099f9ff95 qemu: Fix for CVE-2023-6683
- 67026cbb62 curl: backport Debian patch for CVE-2024-2398
- 1bdcd10930 expat: fix CVE-2023-52425
- e8feba36e0 xwayland: fix CVE-2023-6816 CVE-2024-0408/0409
- 0156b57dcd nghttp2: fix CVE-2023-44487
- 1b5405955c glibc: Fix subscript typos for get_nscd_addresses
- b2de7d7569 stress-ng: avoid calling sync during do_compile
- d8e3d1eb48 yocto-uninative: Update to 4.4 for glibc 2.39
- e5956d94ba linux-firmware: upgrade 20231211 -> 20240220
- 11c9c6eec5 wireless-regdb: Upgrade 2023.09.01 -> 2024.01.23
- 3af65ed130 wireless-regdb: upgrade 2023.05.03 -> 2023.09.01
- 717f0df5f3 cve-update-nvd2-native: Remove rejected CVE from database
- 38402b5e89 cve-update-nvd2-native: Fix CVE configuration update
- a98387021d cve-update-nvd2-native: nvd_request_next: Improve comment
- b6285f0549 cve-update-nvd2-native: Remove duplicated CVE_CHECK_DB_FILE definition
- 5259971a47 cve-update-nvd2-native: Add an age threshold for incremental update
- 6f49c54a0e cve-update-nvd2-native: Fix typo in comment
- 7864c4605c python3-cryptography: Backport fix for CVE-2024-26130
- aa20dd9eb6 expat: fix CVE-2023-52426
- c02175e973 expat: patch CVE-2024-28757
- 2501534c95 build-appliance-image: Update to kirkstone head revision
- 8829495c71 librsvg: Fix do_package_qa error for librsvg
- 768ac24aff linux-yocto/5.15: fix partion scanning
- 253dd177e6 linux-yocto/5.15: update CVE exclusions (5.15.150)
- 024d077813 linux-yocto/5.15: update to v5.15.150
- 11abb97e51 linux-yocto/5.10: update to v5.10.210
- 66c369b3cc linux-yocto/5.15: update CVE exclusions
- 30082a7dd7 linux-yocto/5.15: update to v5.15.149
- 408f86a526 go: Backport fix CVE-2024-24784 & CVE-2024-24785
- e5aae8a371 golang: Fix CVE-2023-45289 & CVE-2023-45290
- 20c70400ea selftest: skip virgl gtk/sdl test on ubuntu 18.04
- 688ec6a245 useradd-example: do not use unsupported clear text password
- 18b76259d2 u-boot: Move UBOOT_INITIAL_ENV back to u-boot.inc

Signed-off-by: Jose Quaresma <jose.quaresma@foundries.io>
Relevant changes:
- 5e6c40680 base: dnsmasq: update bbappend for 2.90
- d6ccf9944 base: lmp: bump version for the 4.0.17 yocto release

Signed-off-by: Jose Quaresma <jose.quaresma@foundries.io>
@quaresmajose quaresmajose marked this pull request as ready for review April 9, 2024 17:11
@quaresmajose quaresmajose requested a review from a team April 9, 2024 17:12
@quaresmajose quaresmajose added the ok-to-test Requires OK for testing to proceed label Apr 9, 2024
Copy link
Contributor

@MrCry0 MrCry0 left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

LGTM

@quaresmajose quaresmajose requested a review from a team April 10, 2024 10:24
@quaresmajose quaresmajose merged commit 24734cb into foundriesio:main Apr 11, 2024
56 checks passed
@quaresmajose quaresmajose deleted the stable branch April 11, 2024 10:00
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
ok-to-test Requires OK for testing to proceed
Projects
None yet
Development

Successfully merging this pull request may close these issues.

None yet

2 participants