-
Notifications
You must be signed in to change notification settings - Fork 80
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Security Survey 20221017 #4290
Merged
Merged
Security Survey 20221017 #4290
Conversation
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
CamberLoid
force-pushed
the
security-survey-20221017
branch
from
November 10, 2022 07:35
fa0226a
to
fa73e6e
Compare
MingcongBai
added
upgrade
Topic/issue involves a package upgrade
security
Topic/issue involves a security issue/fixed
priority
High-priority issue/topic
0day
Topic/issue involves a 0-day security issue and must be addressed immediately
labels
Nov 11, 2022
MingcongBai
requested changes
Nov 11, 2022
MingcongBai
added
question
Question or suggestions needed
has-fix
Topic contains a fix for a known issue
labels
Nov 11, 2022
CamberLoid
force-pushed
the
security-survey-20221017
branch
2 times, most recently
from
November 12, 2022 13:40
53cdbc5
to
521aa8e
Compare
MingcongBai
requested changes
Nov 21, 2022
CamberLoid
force-pushed
the
security-survey-20221017
branch
2 times, most recently
from
November 23, 2022 05:16
9bea368
to
857ec31
Compare
MingcongBai
requested changes
Nov 26, 2022
MingcongBai
approved these changes
Nov 26, 2022
MingcongBai
previously approved these changes
Nov 27, 2022
MingcongBai
previously approved these changes
Nov 27, 2022
* Fixes CVE-2022-2068 and CVE-2022-1292 * Replace CROSS:-BUILD with ab_match_arch * Change build configuration for riscv64 to `linux64-riscv64` Signed-off-by: Camber Huang <camber@poi.science>
* Fixes CVE-2022-26691 Signed-off-by: Camber Huang <camber@poi.science>
* Fix multiple security issues regarding to the bind utility. Signed-off-by: Camber Huang <camber@poi.science>
* From this version ISC's dhcp will become EOL, which means unless severe security issue is founded the upstream may not release any further updates. Due to such reasons the package may be dropped in future. Users are suggested to switch another implementation like kea or dhcpcd. * Dropped unneeded/outdated patch 0002-iproute2.patch * Increase verbosity. Signed-off-by: Camber Huang <camber@poi.science>
Signed-off-by: Camber Huang <camber@poi.science>
Signed-off-by: Camber Huang <camber@poi.science>
* Fixes CVE-2022-{39253,39260} * Updated systemd unit file from Archlinux Ref: https://github.com/archlinux/svntogit-packages/blob/29f368bdeabc4dd6ae05a8f90ddfcab044c8c5b7/trunk/git-daemon@.service Signed-off-by: Camber Huang <camber@poi.science>
* Add a patch 0002-Ubuntu-CVE-2015-20107.patch to fix the security issue. Signed-off-by: Camber Huang <camber@poi.science>
This was referenced Nov 29, 2022
Closed
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Labels
0day
Topic/issue involves a 0-day security issue and must be addressed immediately
has-fix
Topic contains a fix for a known issue
priority
High-priority issue/topic
question
Question or suggestions needed
security
Topic/issue involves a security issue/fixed
upgrade
Topic/issue involves a package upgrade
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
Topic Description
The topic includes a series of security updates. See issues mentioned below to see details.
As the PR is created, the version of packages will be frozen unless major vulnerabilities were disclosed.
Package(s) Affected
Core
Non-core
Priority
Non-priority
Not an upgrade, but need to rebuild
Security Update?
Yes. TBA
Build Order
zlib aosc-aaa
openssl python-{2,3} git curl libxml2 bind dhcp autobuild3
cups squid kitty openjpeg poppler xz expat vim unzip xterm libilbc bcg729 ntfs-3g rpm libksba libtiff freerdp fcgi lighttpd nokogiri opensc libgcrypt mariadb virglrenderer sqlite xmlsec
open-vm-tools google-chrome chromium
gettext
$commonchromium
cryptography
$commongettext
$commonTest Build(s) Done
Primary Architectures
amd64
arm64
optenv32
Secondary Architectures
Architectural progress for "secondary," or experimental ports does not impede on merging of this topic.
loongson3
riscv64
Update(s) Uploaded to Stable
Primary Architectures
amd64
arm64
optenv32
Secondary Architectures
Architectural progress for "secondary," or experimental ports does not impede on merging of this topic.
loongson3
riscv64