[yocto-security] [OE-core CVE] branch warrior-next updated. f4ccdf2bc3fe4f00778629088baab840c868e36b

cve-notice at lists.openembedded.org cve-notice at lists.openembedded.org
Wed Oct 9 11:27:39 PDT 2019


This is an automated email from the git hooks/post-receive script. It was
generated because a ref change was pushed to the repository containing
the project "".

The branch, warrior-next has been updated
       via  f4ccdf2bc3fe4f00778629088baab840c868e36b (commit)
       via  dc66a2a10c3bc0e1491ddd656eff10bac521d862 (commit)
      from  6f4dcd00ce677d9df3fed7e12d87a4588dc65661 (commit)

Those revisions listed above that are new to this repository have
not appeared on any other notification email; so we list those
revisions in full, below.

- Log -----------------------------------------------------------------
commit f4ccdf2bc3fe4f00778629088baab840c868e36b
Author: Denys Dmytriyenko <denys at ti.com>
Date:   Fri Sep 27 20:56:39 2019 -0400

    mariadb: update SRC_URI to use archive.mariadb.org
    
    archive.mariadb.org does not go 404 on releases over time
    
    Signed-off-by: Denys Dmytriyenko <denys at ti.com>
    Signed-off-by: Khem Raj <raj.khem at gmail.com>
    Signed-off-by: Armin Kuster <akuster808 at gmail.com>

commit dc66a2a10c3bc0e1491ddd656eff10bac521d862
Author: Trevor Gamblin <trevor.gamblin at windriver.com>
Date:   Thu Oct 3 14:58:51 2019 -0400

    gd: fix CVE-2019-6978
    
    CVE: CVE-2019-6978
    
    Signed-off-by: Trevor Gamblin <trevor.gamblin at windriver.com>
    Signed-off-by: Khem Raj <raj.khem at gmail.com>
    Signed-off-by: Armin Kuster <akuster808 at gmail.com>

-----------------------------------------------------------------------

Summary of changes:
 meta-oe/recipes-dbs/mysql/mariadb.inc             |   2 +-
 meta-oe/recipes-support/gd/gd/CVE-2019-6978.patch | 299 ++++++++++++++++++++++
 meta-oe/recipes-support/gd/gd_2.2.5.bb            |   1 +
 3 files changed, 301 insertions(+), 1 deletion(-)
 create mode 100644 meta-oe/recipes-support/gd/gd/CVE-2019-6978.patch


hooks/post-receive
-- 



More information about the yocto-security mailing list