amritakohli
38b087bb08
image customizer: docs for run.sh ( #10159 )
2024-08-16 10:55:30 -07:00
Mandeep Plaha
2e1c93534d
fix function to publish containers ( #10160 )
2024-08-15 18:48:01 -07:00
Maxwell McKee
07789e73f9
Update SymCrypt-OpenSSL to 1.5.0 ( #10156 )
2024-08-15 18:38:46 -07:00
aadhar-agarwal
8d2001c2a0
Patch CVE-2024-7006 in libtiff ( #10139 )
2024-08-15 16:03:09 -07:00
Mandeep Plaha
70d5339d18
Mandeepsplaha/fix container build failures ( #10151 )
2024-08-15 13:34:33 -07:00
amritakohli
776fb13214
image customizer: fix typos ( #10135 ) ( #10153 )
2024-08-15 10:42:28 -07:00
Lanze Liu
960eab0606
ImageCustomizer: Bugfix Verity dependency handling in Azl3. ( #10150 )
...
Co-authored-by: lanzeliu <lanzeliu@microsoft.com>
2024-08-14 17:17:00 -07:00
amritakohli
04855a942b
image customizer: test mic container script ( #10147 )
2024-08-14 14:42:34 -07:00
Chris Gunn
5c1227b649
Image Customizer: Account for GPT footer when validating partitions. ( #10134 )
...
For disks partitioned with the GPT partitioning scheme, the last few sectors of the disk are used for storing the GPT footer (which contains the backup partition table). The Image Customizer tool does fail if you try to use this space for a partition, but only because `parted` is doing the check. This change properly accounts for this footer in the config validation, so that a nicer error message can be provided to the user.
2024-08-14 14:40:11 -07:00
Cameron E Baird
aa27157dc6
WaLinuxAgent: Package dracut setup script with WaLinuxAgent ( #10146 )
2024-08-14 13:23:56 -07:00
Devin Anderson
bd89859ce5
Fix ABI compatibiity errors between `abseil-cpp` and dependent packages. ( #10003 )
2024-08-14 11:28:48 -07:00
Daniel McIlvaney
e7a6d3e691
Don't include epoch in rpm name when resolving conflicts ( #9914 )
2024-08-14 10:58:37 -07:00
Devin Anderson
079344045b
Upgrade `distribution-gpg-keys` to version 1.104, a more recent version that includes the Azure Linux keys. ( #10011 )
2024-08-14 09:37:08 -07:00
Devin Anderson
e43e7b7b73
Add missing runtime dependencies to `python-poetry-core`. ( #10046 )
2024-08-13 23:40:44 -07:00
Daniel McIlvaney
da1c934dd5
Move grub2-rpm-macros to azurelinux-rpm-macros package ( #10132 )
...
Co-authored-by: Pawel Winogrodzki <pawelwi@microsoft.com>
2024-08-13 16:16:45 -07:00
Chris Gunn
911793f8c3
Enable xattr and acl support in coreutils. ( #10101 )
...
Currently, coreutils does not have xattr and acl support enabled. This means that commands like `cp --preserve=xattr` will fail. This is annoying when trying to preserve filecaps and SELinux labels. This change fixes this.
2024-08-13 15:42:10 -07:00
alejandro-microsoft
1c06c17b69
Ruby CVE-2024-41946: upgrade ruby version to 3.3.3 ( #10089 )
2024-08-13 15:33:03 -07:00
Chris Gunn
ac5f00de6b
Image Customizer: Add check for installed kernel. ( #10116 )
...
Add a check to ensure the user didn't uninstall the kernel package without installing a substitute package.
2024-08-13 13:30:19 -07:00
CBL-Mariner-Bot
3d2ea8cbf0
[AUTOUPGRADE-CORE] Upgrade ca-certificates Msft cert change ( #10123 )
...
Co-authored-by: Pawel Winogrodzki <pawelwi@microsoft.com>
2024-08-13 11:42:17 -07:00
sindhu-karri
efe8917742
Fix libldb build failure by upgrading to build with Python 3.12 in 3.0 ( #10054 )
2024-08-13 11:57:22 +05:30
Rohit Rawat
f94a924668
Fix CVE-2024-41110 in moby-engine ( #9953 )
2024-08-13 11:20:46 +05:30
Sumynwa
90c6588d48
tpm2-tss: Bump version to 4.0.2 to resolve CVE-2024-29040 ( #10106 )
2024-08-13 10:55:36 +05:30
Muhammad Falak R Wani
3f78e74e22
busybox: address CVE-2021-42380, CVE-2023-42363, CVE-2023-42364 & CVE-2023-42365 ( #10107 )
...
Signed-off-by: Muhammad Falak R Wani <falakreyaz@gmail.com>
2024-08-13 08:11:20 +05:30
Daniel McIlvaney
71a14ddda5
Fix error when doing password hashing for aarch64 offline image builds ( #10111 )
2024-08-12 16:13:28 -07:00
Betty
9ccf3dcc55
edk2: not apply patch with warning suppress if azl ( #10115 )
...
Co-authored-by: Betty Lakes <bettylakes@microsoft.com>
2024-08-12 15:01:39 -07:00
corvus-callidus
2a498e5c50
Patch CVE-2024-32884 and CVE-2024-31852 in rust ( #10099 )
2024-08-12 14:55:43 -07:00
CBL-Mariner-Bot
2fc034e6eb
[AUTOPATCHER-CORE] Upgrade postgresql to 16.4 CVE-2024-7348 ( #10113 )
2024-08-12 14:06:35 -07:00
Chris Gunn
714f02e046
Image Customizer: Improve error message for missing filesystem entry. ( #10095 )
...
Add a pre-check for the case where a partition is specified but there isn't a corresponding filesystem entry. This both reports the problem earlier and provides a more useful error message.
2024-08-12 13:30:59 -07:00
amritakohli
317d8f9898
Image Customizer: Create and log image uuid in release file ( #10098 )
2024-08-12 13:05:36 -07:00
Daniel McIlvaney
8148d9a21a
Fix perl(AutoLoader) capitalization for perl-NetAddr-IP BR ( #10108 )
2024-08-12 10:46:25 -07:00
Pawel Winogrodzki
bd778e0a07
Disabled PR check debug mode by default. (CP: #9795 ) ( #10097 )
2024-08-12 10:11:26 -07:00
Thien Trung Vuong
fd623fa162
kernel-uki: include systemd-cryptsetup in initrd ( #10103 )
...
Signed-off-by: Thien Trung Vuong <tvuong@microsoft.com>
2024-08-12 09:45:44 -04:00
Christopher Co
78c58334ae
Add stress-ng to SPECS-EXTENDED ( #10102 )
...
Introduce stress-ng into SPECS-EXTENDED. stress-ng is a stress testing tool to exercise the OS & HW and collect metrics. The packaging is initially from Fedora 41.
stress-ng will stress test a computer system in various selectable ways. It was designed to exercise various physical subsystems of a computer as well as the various operating system kernel interfaces.
Signed-off-by: Chris Co <chrco@microsoft.com>
2024-08-12 01:43:00 -07:00
Sumynwa
19f3a92bb5
libtiff: Add patch to resolve CVE-2023-6277 ( #10049 )
2024-08-12 11:20:55 +05:30
Muhammad Falak R Wani
74d191b5a1
iperf3: upgrade version 3.16 -> 3.17.1 to address CVE-2024-26306 ( #10084 )
...
Signed-off-by: Muhammad Falak R Wani <falakreyaz@gmail.com>
2024-08-12 11:19:11 +05:30
CBL-Mariner-Bot
96d042a4d7
[AUTOPATCHER-kernel-rt] Kernel RT upgrade to version 6.6.43.1-rt38 - branch 3.0-dev ( #9972 )
2024-08-09 19:31:16 -04:00
Henry Beberman
b59f9280e0
moby-engine: remove daemon.json with backported fix ( #10094 )
2024-08-09 15:23:35 -07:00
Daniel McIlvaney
9298212577
Ignore bogus case-insensitive provides results from repocloner ( #10020 )
...
Co-authored-by: Pawel Winogrodzki <pawelwi@microsoft.com>
2024-08-09 15:04:48 -07:00
amritakohli
1e62465186
js-jquery: Patch CVE-2019-20149 in kind-of ( #10091 )
2024-08-09 14:22:11 -07:00
Tobias Brick
f028b4d828
containerized-rpmbuild: switch up strategy for defaults and return command exit codes ( #10061 )
...
This change simplifies the containerized-rpmbuild scripts in a few ways, which makes it easier to maintain and simpler to use.
Completely remove azl-3_repo and the associated settings. It ends up being the same as the "real" repo, so it only added complexity.
Switched from using a MACROS environment variable that wrapper functions like rpmspec and rpm had to use in favor of a macros.with-check file that gets copied to the appropriate place and does the same thing without the need to use the environment variable. This allowed me to completely remove the rpmspec wrapper function.
Similar with TDNF_ARGS. Since we no longer need to point to azl-3_repo, all it had was --releasever=3.0. So instead, we install azurelinux-release, which sets that up properly. This allowed me to completely remove the tdnf wrapper function.
Changed the remaining wrapper functions rpm and rpmbuild to return the exit code from the function they wrap, to allow scripts to use the exit code properly.
2024-08-09 08:31:00 -07:00
CBL-Mariner-Bot
717cb7d2e9
Prepare August 2024 Update 1 ( #10068 )
2024-08-09 09:54:41 -04:00
sindhu-karri
8aa515193e
Fix libtdb build issue by upgrading to build with Python 3.12 in 3.0 ( #10053 )
2024-08-09 16:19:30 +05:30
Archana Choudhary
5feb4e129b
azcopy: upgrade version to 10.25.1 to fix CVE-2024-35255 ( #10032 )
2024-08-09 16:07:00 +05:30
Sumynwa
ccf617a5a6
vim: Add patch to resolve CVE-2024-41957 & CVE-2024-41965 ( #10082 )
2024-08-09 15:03:35 +05:30
CBL-Mariner-Bot
8e19401b3c
[AUTOPATCHER-kernel] Kernel CVE - branch 3.0-dev - CVE-2024-36288 CVE-2024-42075 CVE-2024-42071 CVE-2024-42078 CVE-2024-42083 CVE-2024-42072 CVE-2024-42226 ( #10078 )
2024-08-09 00:10:45 -07:00
Davis Goodin
ac23a450e2
Bump golang version to 1.22.6-1 ( #10058 )
2024-08-08 17:05:41 -07:00
Muhammad Falak R Wani
e1c8d40e72
nghttp2: upgrade version 1.59.0 -> 1.61.0 to address CVE-2024-28182 ( #10064 )
...
Signed-off-by: Muhammad Falak R Wani <falakreyaz@gmail.com>
2024-08-09 05:27:09 +05:30
Thien Trung Vuong
931a5425fe
toolkit: check for parted version before setting partition type ( #10072 )
...
Signed-off-by: Thien Trung Vuong <tvuong@microsoft.com>
2024-08-08 16:43:52 -07:00
George Mileka
d1cc8049d1
[mic][iso] Add curl to the list of required dependencies for iso creation. ( #10065 )
2024-08-08 16:07:47 -07:00
Betty
82a538df29
edk: upgrade to 20240524; hvloader: upgrade ekd2 version ( #10062 )
...
Co-authored-by: Betty Lakes <bettylakes@microsoft.com>
2024-08-08 15:52:13 -07:00