Skip to content

Sync zed into 2023.1 #1158

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Merged
merged 10 commits into from
Jul 15, 2024
Merged

Sync zed into 2023.1 #1158

Show file tree
Hide file tree
Changes from all commits
Commits
Show all changes
10 commits
Select commit Hold shift + click to select a range
8beaadd
Merge pull request #1154 from stackhpc/zed-yoga-merge
markgoddard Jul 11, 2024
b3fd63a
zed: Build Glance from StackHPC fork
markgoddard Jul 11, 2024
bd622dd
zed: Fix CVE-2024-32498
markgoddard Jul 11, 2024
6fccd86
Merge pull request #1152 from stackhpc/zed-cve-2024-32498
markgoddard Jul 11, 2024
85ef912
CVE-2024-6387 use custom apt repo
MoteHue Jul 10, 2024
40cf24a
Merge pull request #1147 from stackhpc/2023.1-cve-2024-6387
MoteHue Jul 12, 2024
417fb35
Merge branch 'stackhpc/yoga' into sync-yoga-zed
Alex-Welsh Jul 12, 2024
90ead6b
Merge pull request #1156 from stackhpc/sync-yoga-zed
markgoddard Jul 12, 2024
3dee8f7
Merge branch 'stackhpc/zed' into sync-zed-2023.1
MoteHue Jul 12, 2024
2d0fcf6
Correct cve-2024-6387 reno
MoteHue Jul 12, 2024
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
5 changes: 5 additions & 0 deletions etc/kayobe/apt.yml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -56,6 +56,11 @@ stackhpc_apt_repositories:
suites: "{{ ansible_facts.distribution_release }}-security"
components: main restricted universe multiverse
architecture: amd64
- url: "{{ stackhpc_repo_ubuntu_jammy_cve_2024_6387_url }}"
suites: "pulp"
components: upload
architecture: amd64
trusted: yes
- url: "{{ stackhpc_repo_docker_ce_ubuntu_url }}"
suites: "{{ ansible_facts.distribution_release }}"
components: stable
Expand Down
1 change: 1 addition & 0 deletions etc/kayobe/environments/ci-aio/stackhpc-ci.yml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -30,6 +30,7 @@ stackhpc_repo_rabbitmq_erlang_version: "{{ stackhpc_pulp_repo_rabbitmq_erlang_ve
stackhpc_repo_rabbitmq_server_version: "{{ stackhpc_pulp_repo_rabbitmq_server_version }}"
stackhpc_repo_ubuntu_jammy_version: "{{ stackhpc_pulp_repo_ubuntu_jammy_version }}"
stackhpc_repo_ubuntu_jammy_security_version: "{{ stackhpc_pulp_repo_ubuntu_jammy_security_version }}"
stackhpc_repo_ubuntu_jammy_cve_2024_6387_version: ""
stackhpc_repo_ubuntu_cloud_archive_version: "{{ stackhpc_pulp_repo_ubuntu_cloud_archive_version }}"
stackhpc_repo_docker_ce_ubuntu_version: "{{ stackhpc_pulp_repo_docker_ce_ubuntu_version }}"
stackhpc_repo_centos_stream_9_nfv_openvswitch_version: "{{ stackhpc_pulp_repo_centos_stream_9_nfv_openvswitch_version }}"
Expand Down
1 change: 1 addition & 0 deletions etc/kayobe/environments/ci-builder/stackhpc-ci.yml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -50,6 +50,7 @@ stackhpc_repo_rabbitmq_erlang_version: "{{ stackhpc_pulp_repo_rabbitmq_erlang_ve
stackhpc_repo_rabbitmq_server_version: "{{ stackhpc_pulp_repo_rabbitmq_server_version }}"
stackhpc_repo_ubuntu_jammy_version: "{{ stackhpc_pulp_repo_ubuntu_jammy_version }}"
stackhpc_repo_ubuntu_jammy_security_version: "{{ stackhpc_pulp_repo_ubuntu_jammy_security_version }}"
stackhpc_repo_ubuntu_jammy_cve_2024_6387_version: ""
stackhpc_repo_ubuntu_cloud_archive_version: "{{ stackhpc_pulp_repo_ubuntu_cloud_archive_version }}"
stackhpc_repo_docker_ce_ubuntu_version: "{{ stackhpc_pulp_repo_docker_ce_ubuntu_version }}"
stackhpc_repo_centos_stream_9_nfv_openvswitch_version: "{{ stackhpc_pulp_repo_centos_stream_9_nfv_openvswitch_version }}"
Expand Down
1 change: 1 addition & 0 deletions etc/kayobe/environments/ci-multinode/stackhpc-ci.yml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -27,6 +27,7 @@ stackhpc_repo_rabbitmq_erlang_version: "{{ stackhpc_pulp_repo_rabbitmq_erlang_ve
stackhpc_repo_rabbitmq_server_version: "{{ stackhpc_pulp_repo_rabbitmq_server_version }}"
stackhpc_repo_ubuntu_jammy_version: "{{ stackhpc_pulp_repo_ubuntu_jammy_version }}"
stackhpc_repo_ubuntu_jammy_security_version: "{{ stackhpc_pulp_repo_ubuntu_jammy_security_version }}"
stackhpc_repo_ubuntu_jammy_cve_2024_6387_version: ""
stackhpc_repo_ubuntu_cloud_archive_version: "{{ stackhpc_pulp_repo_ubuntu_cloud_archive_version }}"
stackhpc_repo_docker_ce_ubuntu_version: "{{ stackhpc_pulp_repo_docker_ce_ubuntu_version }}"
stackhpc_repo_centos_stream_9_nfv_openvswitch_version: "{{ stackhpc_pulp_repo_centos_stream_9_nfv_openvswitch_version }}"
Expand Down
8 changes: 8 additions & 0 deletions etc/kayobe/pulp.yml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -96,6 +96,14 @@ stackhpc_pulp_deb_repos:
distributions: "jammy-security"
required: "{{ stackhpc_pulp_sync_ubuntu_jammy | bool }}"

- name: "Ubuntu jammy CVE-2024-6387"
url: "{{ stackhpc_release_pulp_content_url }}/ubuntu-jammy-cve-2024-6387/"
distribution_name: "ubuntu-jammy-cve-2024-6387-"
base_path: "ubuntu-jammy-cve-2024-6387/"
components: "upload"
distributions: "pulp"
required: "{{ stackhpc_pulp_sync_ubuntu_jammy | bool }}"

# Ubuntu Cloud Archive (UCA) repositories
- name: "Ubuntu Cloud Archive"
url: "{{ stackhpc_release_pulp_content_url }}/ubuntu-cloud-archive/{{ stackhpc_pulp_repo_ubuntu_cloud_archive_version }}"
Expand Down
4 changes: 4 additions & 0 deletions etc/kayobe/stackhpc.yml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -37,6 +37,10 @@ stackhpc_repo_ubuntu_jammy_version: "{{ stackhpc_repo_distribution }}"
stackhpc_repo_ubuntu_jammy_security_url: "{{ stackhpc_repo_mirror_url }}/pulp/content/ubuntu/jammy-security/{{ stackhpc_repo_ubuntu_jammy_security_version }}"
stackhpc_repo_ubuntu_jammy_security_version: "{{ stackhpc_repo_distribution }}"

# Ubuntu jammy CVE-3034-6287
stackhpc_repo_ubuntu_jammy_cve_2024_6387_url: "{{ stackhpc_repo_mirror_url }}/pulp/content/ubuntu-jammy-cve-2024-6387/{{ stackhpc_repo_ubuntu_jammy_cve_2024_6387_version }}"
stackhpc_repo_ubuntu_jammy_cve_2024_6387_version: "{{ stackhpc_repo_distribution }}"

# Ubuntu Cloud Archive
stackhpc_repo_ubuntu_cloud_archive_url: "{{ stackhpc_repo_mirror_url }}/pulp/content/ubuntu-cloud-archive/{{ stackhpc_repo_ubuntu_cloud_archive_version }}"
stackhpc_repo_ubuntu_cloud_archive_version: "{{ stackhpc_repo_distribution }}"
Expand Down
5 changes: 5 additions & 0 deletions releasenotes/notes/ubuntu-fix-cve-2024-6387-648efedaeb288023.yaml
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -0,0 +1,5 @@
---
security:
- |
Adds a custom Apt repository to address `CVE-2024-6387
<https://ubuntu.com/security/CVE-2024-6387>`__ in OpenSSH.
Loading