Weekly portage-stable package updates 2024-01-01 #1535
Merged
Conversation
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
![github-actions[bot]](https://avatars.githubusercontent.com/in/15368?s=60&v=4){kind=small}
This was referenced Jan 5, 2024
krnowak
force-pushed
the
buildbot/weekly-portage-stable-package-updates-2024-01-01
branch
from
fd405c3
to
2718847
Compare
added 24 commits
January 8, 2024 17:42
It's from Gentoo commit 077a5e92894624e8af08d24c7ceb38883b1449e1.
It's from Gentoo commit 6bbc70df91176ab7e2a9b3fa27e188a39f52cc0e.
It's from Gentoo commit a588b3fffb05bf97c97f12d75e6554b5576b478e.
It's from Gentoo commit dfcc1f271fa3da8b8710c80737e85a7347f16ba0.
It's from Gentoo commit ea6ae9af5e74e4df9b27c472c6e9897e99d14a2c.
It's from Gentoo commit 23d377b24fb52e31275b9af7304eebdbc6f11939.
It's from Gentoo commit 23d377b24fb52e31275b9af7304eebdbc6f11939.
It's from Gentoo commit 62b38c216dc300d3300f24a19d8de5ff6fc644bb.
It's from Gentoo commit 548ab1d7f5566830a43948840a9ba2614414372f.
It's from Gentoo commit 7342a56cc60a99cd2b09f5d65deb633a1d2a4626.
It's from Gentoo commit 53d09cbf01518dc97781c94c8cd8181e4b184071.
It's from Gentoo commit ada41158ff3c251083836e2f019d7b8876bef3bb.
It's from Gentoo commit 1b1da7b6cea10c2b67e63bfbaa7e0786fe7df6f8.
It's from Gentoo commit 526881cc7883c46a353f6c78baaf3da45cd843f9.
It's from Gentoo commit 42508e7ef5e7385bedcfc10654bbe7d0bc4dfd50.
It's from Gentoo commit 104df0c4e7d6c52c8c88de0201dadd25643452c7.
It's from Gentoo commit 2f5452633816fc3d81e9e31224589fb7467ec1eb.
It's from Gentoo commit 18c35ad68e97345939dfbaa5957fbd1ca4e4233c.
It's from Gentoo commit 5b8fb04d43ce59a0c5de892b9796deb4c68a1eea.
It's from Gentoo commit ebea30ffef8da0929e15dc5f81591f98fc3b7ab9.
It's from Gentoo commit 64bacdbe9414f6f5715f37225026c1a9d31bc5fa.
It's from Gentoo commit da8495b42a9b6e1e144790cb2f2d6319e9b5f765.
It's from Gentoo commit 81a8cc22db07feeee4645b1deb16d2b2d06ab072.
It's from Gentoo commit 726a12cdacbc1fc8f612dbdf065285990cc0143b.
…ibpcre2 This became enabled by default now, so we need to explicitly disable it. We didn't need it before, we don't need it now.
The weekly package automation reverted the modifications done to the ebuild. That's the reason why modiyfing packages in portage-stable is a no-no. Add accept keywords to keep pulling in the 6.6 version of linux headers.
This is to pull in a security fix.
This is to pull in a security fix.
This is to pull in a security fix.
Updating it to 3.0.17 breaks the build. First there are some
signedness issues (which I fixed), but then there is some header
ordering issue which results in errors about some names being
undefined. This is because a header that defines those names includes
some other header before defining the names. That other header pulls
in some other header that end up referencing the not-yet-defined
names:
In file included from /usr/include/efi/efilib.h:22,
from Include/OpenSslSupport.h:19,
from Include/stddef.h:15,
from /usr/include/efi/x86_64/efibind.h:99,
from /usr/include/efi/efi.h:42,
from ./Library/BaseLib.h:1,
from ./InternalCryptLib.h:18,
from Hash/CryptMd4.c:15:
/usr/include/efi/efidebug.h:22:8: error: unknown type name ‘UINTN’
22 | extern UINTN EFIDebug;
/usr/include/efi/x86_64/efibind.h defines UINTN in line 124, but
includes stddef.h in line 99.
I'm not dealing with it knowing that Sayan is working on secure-boot
stuff which involves updating sys-boot/shim, so this bug should go
away soon.
This reverts commit e62ef80. Breaks sys-boot/shim.
There was a change in libdnet ebuilds about how tests are enabled/disabled through a configure flag. The change was correct for versions 1.16.4 and up, but not for earlier ones. So instead of waiting for the change to be reverted for older ebuilds, bump the version to 1.16.4 now - it should be stabilized soon.
dongsupark
force-pushed
the
buildbot/weekly-portage-stable-package-updates-2024-01-01
branch
from
db41218
to
fd405c3
Compare
krnowak
force-pushed
the
buildbot/weekly-portage-stable-package-updates-2024-01-01
branch
from
fd405c3
to
bdf9c33
Compare
dongsupark
approved these changes
Jan 11, 2024
| - gnutls ([CVE-2023-5981](https://nvd.nist.gov/vuln/detail/CVE-2023-5981)) | ||
| - curl ([CVE-2023-46218](https://nvd.nist.gov/vuln/detail/CVE-2023-46218), [CVE-2023-46219](https://nvd.nist.gov/vuln/detail/CVE-2023-46219)) | ||
| - binutils ([CVE-2023-1972](https://nvd.nist.gov/vuln/detail/CVE-2023-1972)) | ||
| - zlib ([CVE-2023-45853](https://nvd.nist.gov/vuln/detail/CVE-2023-45853)) |
There was a problem hiding this comment.
As Flatcar is not affected by the CVE, I would simply delete the zlib line.
| @@ -24,6 +24,9 @@ | |||
| # Needed by arm64-native SDK. | |||
| =app-emulation/open-vmdk-1.0 * | |||
|
|
|||
| # Needed for addressing CVE-2023-50246 and CVE-2023-50268. | |||
| =app-misc/jq-1.7.1 ~amd64 ~arm64 | |||
|
|
|||
There was a problem hiding this comment.
We do not need to add this line again here, because it already has the same line. That was done when I updated jq to 1.7.1.
There was a problem hiding this comment.
Dropped the duplicated line, but ordered it alphabetically.
krnowak
deleted the
buildbot/weekly-portage-stable-package-updates-2024-01-01
branch
|
Bah, forgot to actually push my changes to this branch. Please see #1566 for follow-up. |
|
Build action triggered: https://github.com/flatcar/scripts/actions/runs/7492579471 |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
CI: http://jenkins.infra.kinvolk.io:8080/job/container/job/sdk/1259/cldsv/
Closes flatcar/Flatcar#1302 (libxml2)
Closes flatcar/Flatcar#1291 (traceroute)
Closes flatcar/Flatcar#1288 (perl)
Closes flatcar/Flatcar#1287 (curl)
Closes flatcar/Flatcar#1277 (gnutls)
Partially addresses flatcar/Flatcar#1214 (vim) (will update the issue after this PR is merged)
Closes flatcar/Flatcar#1053 (binutils)
--
app-admin/eselect: [DEV]
app-alternatives/ninja:
app-arch/gzip: [DEV]
app-arch/libarchive: [PROD] [DEV]
app-containers/docker: [DEV]
app-containers/docker-cli: [DEV]
app-crypt/mhash: [DEV]
app-editors/vim: [PROD] [DEV]
app-editors/vim-core: [PROD] [DEV]
app-eselect/eselect-pinentry:
app-misc/pax-utils: [DEV]
app-portage/gentoolkit: [DEV]
app-portage/getuto: [DEV]
app-shells/bash: [PROD] [DEV]
dev-db/sqlite: [PROD] [DEV]
dev-lang/perl:
dev-lang/python: [DEV]
dev-lang/yasm: [DEV]
dev-libs/elfutils: [PROD] [DEV]
dev-libs/glib: [PROD] [DEV]
dev-libs/gmp: [PROD] [DEV]
dev-libs/gobject-introspection:
dev-libs/gobject-introspection-common:
dev-libs/json-c: [DEV]
dev-libs/jsoncpp: [DEV]
dev-libs/libdnet: [DEV]
dev-libs/libffi: [PROD] [DEV]
dev-libs/libgcrypt: [DEV]
dev-libs/libgpg-error: [PROD] [DEV]
dev-libs/libksba: [PROD] [DEV]
dev-libs/libpcre2: [DEV]
dev-libs/libsodium: [DEV]
dev-libs/libunistring: [DEV]
dev-libs/libusb: [DEV]
dev-libs/libxml2: [PROD] [DEV]
dev-libs/libxslt:
dev-libs/mpfr: [DEV]
dev-libs/nettle: [DEV]
dev-libs/protobuf: [DEV]
dev-libs/xmlsec:
dev-perl/Locale-gettext:
dev-python/certifi:
dev-python/cython:
dev-python/editables:
dev-python/hatchling:
dev-python/jaraco-functools:
dev-python/jaraco-text:
dev-python/lazy-object-proxy:
dev-python/pathspec:
dev-python/platformdirs:
dev-python/pluggy:
dev-python/pygments:
dev-python/setuptools:
dev-python/snakeoil:
dev-python/trove-classifiers:
dev-python/typing-extensions:
dev-python/wheel:
dev-util/cmake:
dev-util/desktop-file-utils:
dev-util/gdbus-codegen:
dev-util/glib-utils:
dev-util/ninja:
dev-util/perf: [DEV]
dev-util/pkgconf: [DEV]
dev-vcs/repo: [DEV]
eclass/autotools.eclass:
eclass/cargo.eclass:
eclass/distutils-r1.eclass:
eclass/flag-o-matic.eclass:
eclass/git-r3.eclass:
eclass/java-pkg-opt-2.eclass:
eclass/java-utils-2.eclass:
eclass/linux-mod.eclass:
eclass/llvm.eclass:
eclass/meson.eclass:
eclass/ninja-utils.eclass:
eclass/python-utils-r1.eclass:
eclass/toolchain-funcs.eclass:
licenses:
net-analyzer/nmap: [DEV]
net-analyzer/traceroute: [PROD] [DEV]
net-dns/bind-tools: [DEV]
net-firewall/ipset: [PROD] [DEV]
net-libs/gnutls: [PROD] [DEV]
net-libs/libnftnl: [DEV]
net-libs/libnsl: [DEV]
net-libs/libslirp: [DEV]
net-libs/nghttp2: [DEV]
net-misc/curl: [DEV]
net-misc/ntp: [DEV]
net-nds/openldap: [DEV]
profiles:
sys-apps/coreutils: [PROD] [DEV]
sys-apps/debianutils:
sys-apps/file: [DEV]
sys-apps/gawk: [PROD] [DEV]
sys-apps/groff: [DEV]
sys-apps/hwdata: [PROD] [DEV]
sys-apps/i2c-tools: [DEV]
sys-apps/iproute2: [PROD] [DEV]
sys-apps/kbd: [DEV]
sys-apps/kmod: [PROD] [DEV]
sys-apps/man-db: [DEV]
sys-apps/nvme-cli: [DEV]
sys-apps/portage: [DEV]
sys-apps/pv:
sys-apps/smartmontools: [DEV]
sys-apps/texinfo:
sys-apps/usbutils: [PROD] [DEV]
sys-apps/util-linux: [PROD] [DEV]
sys-block/parted: [PROD] [DEV]
sys-block/thin-provisioning-tools: [DEV]
sys-boot/gnu-efi:
sys-devel/automake: [DEV]
sys-devel/binutils: [DEV]
sys-devel/crossdev:
sys-devel/gdb: [DEV]
sys-devel/gettext: [PROD] [DEV]
sys-firmware/edk2-ovmf-bin: [DEV]
sys-fs/cryptsetup: [DEV]
sys-fs/fuse:
sys-fs/fuse-common: [DEV]
sys-kernel/installkernel-gentoo: [DEV]
sys-kernel/linux-headers: [PROD] [DEV]
sys-libs/binutils-libs: [PROD] [DEV]
sys-libs/ldb: [DEV]
sys-libs/libnvme: [DEV]
sys-libs/readline: [PROD] [DEV]
sys-libs/zlib: [PROD] [DEV]
sys-process/lsof: [PROD] [DEV]
virtual/editor: [PROD] [DEV]
virtual/perl-Unicode-Collate:
--