Граф коммитов

6119 Коммитов

Автор SHA1 Сообщение Дата
Andrew Phelps aa119add30
gdb: fix package tests (#10169) 2024-08-19 10:01:52 -07:00
Cameron E Baird 2f4184f1c1
dracut: Drop dracut multiple confdirs patch (#10071) 2024-08-19 09:21:56 -07:00
Andrew Phelps a20efa9465
bash: fix package tests (#10165) 2024-08-16 16:08:36 -07:00
aadhar-agarwal 9e1ba9cf45
Add patch for CVE-2024-43168 in unbound (#10158) 2024-08-16 11:46:54 -07:00
amritakohli 38b087bb08
image customizer: docs for run.sh (#10159) 2024-08-16 10:55:30 -07:00
Mandeep Plaha 2e1c93534d
fix function to publish containers (#10160) 2024-08-15 18:48:01 -07:00
Maxwell McKee 07789e73f9
Update SymCrypt-OpenSSL to 1.5.0 (#10156) 2024-08-15 18:38:46 -07:00
aadhar-agarwal 8d2001c2a0
Patch CVE-2024-7006 in libtiff (#10139) 2024-08-15 16:03:09 -07:00
Mandeep Plaha 70d5339d18
Mandeepsplaha/fix container build failures (#10151) 2024-08-15 13:34:33 -07:00
amritakohli 776fb13214
image customizer: fix typos (#10135) (#10153) 2024-08-15 10:42:28 -07:00
Lanze Liu 960eab0606
ImageCustomizer: Bugfix Verity dependency handling in Azl3. (#10150)
Co-authored-by: lanzeliu <lanzeliu@microsoft.com>
2024-08-14 17:17:00 -07:00
amritakohli 04855a942b
image customizer: test mic container script (#10147) 2024-08-14 14:42:34 -07:00
Chris Gunn 5c1227b649
Image Customizer: Account for GPT footer when validating partitions. (#10134)
For disks partitioned with the GPT partitioning scheme, the last few sectors of the disk are used for storing the GPT footer (which contains the backup partition table). The Image Customizer tool does fail if you try to use this space for a partition, but only because `parted` is doing the check. This change properly accounts for this footer in the config validation, so that a nicer error message can be provided to the user.
2024-08-14 14:40:11 -07:00
Cameron E Baird aa27157dc6
WaLinuxAgent: Package dracut setup script with WaLinuxAgent (#10146) 2024-08-14 13:23:56 -07:00
Devin Anderson bd89859ce5
Fix ABI compatibiity errors between `abseil-cpp` and dependent packages. (#10003) 2024-08-14 11:28:48 -07:00
Daniel McIlvaney e7a6d3e691
Don't include epoch in rpm name when resolving conflicts (#9914) 2024-08-14 10:58:37 -07:00
Devin Anderson 079344045b
Upgrade `distribution-gpg-keys` to version 1.104, a more recent version that includes the Azure Linux keys. (#10011) 2024-08-14 09:37:08 -07:00
Devin Anderson e43e7b7b73
Add missing runtime dependencies to `python-poetry-core`. (#10046) 2024-08-13 23:40:44 -07:00
Daniel McIlvaney da1c934dd5
Move grub2-rpm-macros to azurelinux-rpm-macros package (#10132)
Co-authored-by: Pawel Winogrodzki <pawelwi@microsoft.com>
2024-08-13 16:16:45 -07:00
Chris Gunn 911793f8c3
Enable xattr and acl support in coreutils. (#10101)
Currently, coreutils does not have xattr and acl support enabled. This means that commands like `cp --preserve=xattr` will fail. This is annoying when trying to preserve filecaps and SELinux labels. This change fixes this.
2024-08-13 15:42:10 -07:00
alejandro-microsoft 1c06c17b69
Ruby CVE-2024-41946: upgrade ruby version to 3.3.3 (#10089) 2024-08-13 15:33:03 -07:00
Chris Gunn ac5f00de6b
Image Customizer: Add check for installed kernel. (#10116)
Add a check to ensure the user didn't uninstall the kernel package without installing a substitute package.
2024-08-13 13:30:19 -07:00
CBL-Mariner-Bot 3d2ea8cbf0
[AUTOUPGRADE-CORE] Upgrade ca-certificates Msft cert change (#10123)
Co-authored-by: Pawel Winogrodzki <pawelwi@microsoft.com>
2024-08-13 11:42:17 -07:00
sindhu-karri efe8917742
Fix libldb build failure by upgrading to build with Python 3.12 in 3.0 (#10054) 2024-08-13 11:57:22 +05:30
Rohit Rawat f94a924668
Fix CVE-2024-41110 in moby-engine (#9953) 2024-08-13 11:20:46 +05:30
Sumynwa 90c6588d48
tpm2-tss: Bump version to 4.0.2 to resolve CVE-2024-29040 (#10106) 2024-08-13 10:55:36 +05:30
Muhammad Falak R Wani 3f78e74e22
busybox: address CVE-2021-42380, CVE-2023-42363, CVE-2023-42364 & CVE-2023-42365 (#10107)
Signed-off-by: Muhammad Falak R Wani <falakreyaz@gmail.com>
2024-08-13 08:11:20 +05:30
Daniel McIlvaney 71a14ddda5
Fix error when doing password hashing for aarch64 offline image builds (#10111) 2024-08-12 16:13:28 -07:00
Betty 9ccf3dcc55
edk2: not apply patch with warning suppress if azl (#10115)
Co-authored-by: Betty Lakes <bettylakes@microsoft.com>
2024-08-12 15:01:39 -07:00
corvus-callidus 2a498e5c50
Patch CVE-2024-32884 and CVE-2024-31852 in rust (#10099) 2024-08-12 14:55:43 -07:00
CBL-Mariner-Bot 2fc034e6eb
[AUTOPATCHER-CORE] Upgrade postgresql to 16.4 CVE-2024-7348 (#10113) 2024-08-12 14:06:35 -07:00
Chris Gunn 714f02e046
Image Customizer: Improve error message for missing filesystem entry. (#10095)
Add a pre-check for the case where a partition is specified but there isn't a corresponding filesystem entry. This both reports the problem earlier and provides a more useful error message.
2024-08-12 13:30:59 -07:00
amritakohli 317d8f9898
Image Customizer: Create and log image uuid in release file (#10098) 2024-08-12 13:05:36 -07:00
Daniel McIlvaney 8148d9a21a
Fix perl(AutoLoader) capitalization for perl-NetAddr-IP BR (#10108) 2024-08-12 10:46:25 -07:00
Pawel Winogrodzki bd778e0a07
Disabled PR check debug mode by default. (CP: #9795) (#10097) 2024-08-12 10:11:26 -07:00
Thien Trung Vuong fd623fa162
kernel-uki: include systemd-cryptsetup in initrd (#10103)
Signed-off-by: Thien Trung Vuong <tvuong@microsoft.com>
2024-08-12 09:45:44 -04:00
Christopher Co 78c58334ae
Add stress-ng to SPECS-EXTENDED (#10102)
Introduce stress-ng into SPECS-EXTENDED. stress-ng is a stress testing tool to exercise the OS & HW and collect metrics. The packaging is initially from Fedora 41.

stress-ng will stress test a computer system in various selectable ways. It was designed to exercise various physical subsystems of a computer as well as the various operating system kernel interfaces.

Signed-off-by: Chris Co <chrco@microsoft.com>
2024-08-12 01:43:00 -07:00
Sumynwa 19f3a92bb5
libtiff: Add patch to resolve CVE-2023-6277 (#10049) 2024-08-12 11:20:55 +05:30
Muhammad Falak R Wani 74d191b5a1
iperf3: upgrade version 3.16 -> 3.17.1 to address CVE-2024-26306 (#10084)
Signed-off-by: Muhammad Falak R Wani <falakreyaz@gmail.com>
2024-08-12 11:19:11 +05:30
CBL-Mariner-Bot 96d042a4d7
[AUTOPATCHER-kernel-rt] Kernel RT upgrade to version 6.6.43.1-rt38 - branch 3.0-dev (#9972) 2024-08-09 19:31:16 -04:00
Henry Beberman b59f9280e0
moby-engine: remove daemon.json with backported fix (#10094) 2024-08-09 15:23:35 -07:00
Daniel McIlvaney 9298212577
Ignore bogus case-insensitive provides results from repocloner (#10020)
Co-authored-by: Pawel Winogrodzki <pawelwi@microsoft.com>
2024-08-09 15:04:48 -07:00
amritakohli 1e62465186
js-jquery: Patch CVE-2019-20149 in kind-of (#10091) 2024-08-09 14:22:11 -07:00
Tobias Brick f028b4d828
containerized-rpmbuild: switch up strategy for defaults and return command exit codes (#10061)
This change simplifies the containerized-rpmbuild scripts in a few ways, which makes it easier to maintain and simpler to use.

Completely remove azl-3_repo and the associated settings. It ends up being the same as the "real" repo, so it only added complexity.
Switched from using a MACROS environment variable that wrapper functions like rpmspec and rpm had to use in favor of a macros.with-check file that gets copied to the appropriate place and does the same thing without the need to use the environment variable. This allowed me to completely remove the rpmspec wrapper function.
Similar with TDNF_ARGS. Since we no longer need to point to azl-3_repo, all it had was --releasever=3.0. So instead, we install azurelinux-release, which sets that up properly. This allowed me to completely remove the tdnf wrapper function.
Changed the remaining wrapper functions rpm and rpmbuild to return the exit code from the function they wrap, to allow scripts to use the exit code properly.
2024-08-09 08:31:00 -07:00
CBL-Mariner-Bot 717cb7d2e9
Prepare August 2024 Update 1 (#10068) 2024-08-09 09:54:41 -04:00
sindhu-karri 8aa515193e
Fix libtdb build issue by upgrading to build with Python 3.12 in 3.0 (#10053) 2024-08-09 16:19:30 +05:30
Archana Choudhary 5feb4e129b
azcopy: upgrade version to 10.25.1 to fix CVE-2024-35255 (#10032) 2024-08-09 16:07:00 +05:30
Sumynwa ccf617a5a6
vim: Add patch to resolve CVE-2024-41957 & CVE-2024-41965 (#10082) 2024-08-09 15:03:35 +05:30
CBL-Mariner-Bot 8e19401b3c
[AUTOPATCHER-kernel] Kernel CVE - branch 3.0-dev - CVE-2024-36288 CVE-2024-42075 CVE-2024-42071 CVE-2024-42078 CVE-2024-42083 CVE-2024-42072 CVE-2024-42226 (#10078) 2024-08-09 00:10:45 -07:00
Davis Goodin ac23a450e2
Bump golang version to 1.22.6-1 (#10058) 2024-08-08 17:05:41 -07:00