1.0 CBL-Mariner October 2020 Update
jslobodzian
released this
05 Nov 07:42
·
5006 commits
to main
since this release
This is the October 2020 cumulative update for the CBL Mariner 1.0 release that includes tooling and CVE fixes.
Changes include:
- Ability to build Mariner Toolchain and Packages from the Preview Repository.
- Fixed issue where additionalfiles were improperly handled during iso image build
- Fix CVE-2020-14342 in cifs-utils
- Fix CVE-2020-26159 in oniguruma
- Fix CVE-2019-12735 in vim
- Patch lua CVE-2019-6706, CVE-2020-15888
- Patch unbound CVE-2020-12662 and CVE-2020-12663
- Patch gnutls CVE-2020-24659
- Upgrade ruby to 2.6.6 to resolve CVE-2019-16255, CVE-2019-16201, CVE-2020-10933, CVE-2020-5247, CVE-2019-15845, CVE-2019-16254
- Update fontconfig to 2.13.91
- Added several packages: gflags, rocksdb, syslog-ng, tinyxml2, toml11 tracelogging zipper mm-common libxml++ liblogging nlohmann-json msgpack span-lite telegraf jsonbuilder babeltrace2 lttng-consume pugixml rapidjson bond fluent-bit ivykis azure-storage omi ccache clamav auoms
- Enable QAT kernel configs in CBL-Mariner
- Fixed multiple SPEC files so %check sections are valid