Skip to content

Sandbox/rdutta/3.0/update 3.0.20250423 3.0 v2#93

Closed
ranjan-dutta wants to merge 7225 commits into3.0-devfrom
sandbox/rdutta/3.0/update-3.0.20250423-3.0-v2
Closed

Sandbox/rdutta/3.0/update 3.0.20250423 3.0 v2#93
ranjan-dutta wants to merge 7225 commits into3.0-devfrom
sandbox/rdutta/3.0/update-3.0.20250423-3.0-v2

Conversation

@ranjan-dutta
Copy link
Copy Markdown
Contributor

@ranjan-dutta ranjan-dutta commented May 14, 2025

Merge Checklist

All boxes should be checked before merging the PR

  • [] The changes in the PR have been built and tested
  • [] cgmanifest file has been updated if required
  • [] Ready to merge

Description

This is for AZL update to 3.0.20250423-3.0-v2

Any Newly Introduced Dependencies

How Has This Been Tested?

jykanase and others added 30 commits March 2, 2025 20:06
@jykanase
Upgrade: libdvdread version to 6.1.3 (#11073)
2474815
@v-smalavathu
libthai: Update Version from 0.1.28 -> 0.1.29 (#11064)
c11f579
@SumitJenaHCL
Upgrade: libsmbios version to 2.4.3 (#11057)
dc3b671
@SumitJenaHCL
Upgrade: libsigsegv version to 2.14 (#11056)
5ceb2bf
@SumitJenaHCL
Upgrade: libsigc++20 version to 2.12.1 (#11046)
0abef50
@SumitJenaHCL
Upgrade: librabbitmq version to 0.14.0 (#11018)
89692b6
@SumitJenaHCL
Upgrade: libsass version to 3.6.6 (#11023)
315b6c7
@SumitJenaHCL
Upgrade: intel-cmt-cat version to 24.05 (#11001)
8c92369
@v-smalavathu
libteam: Upgrade Version from 1.30 -> 1.32 (#11040)
48b5aec
@SumitJenaHCL
Upgrade: libqb version to 2.0.8 (#11017)
3f21f28
@jykanase
libbsd :update version to 0.12.2 (#10953)
e0f0f2c
@kevin-b-lockwood
Update libipt to 2.1.1-1 (#10939)
9038469
@SumitJenaHCL
Upgrade: libpinyin version to 2.9.92 (#11014)
ccf0294
@SumitJenaHCL
Upgrade: indent version to 2.2.13 (#11000)
5b8e197
@SumitJenaHCL
Upgrade: efi-rpm-macros version to 5 (#10928)
9b95278
@kevin-b-lockwood
Upgrade libplist to 2.6.0 (#10884)
5ed4959
@kevin-b-lockwood
Upgrade hdf to 4.3.0 (#10864)
87b05a4
@SumitJenaHCL
Upgrade: edac-utils version to 0.18 (#10860)
15233b5
@jykanase
fetchmail: Update to version 6.4.39 (#10856)
6621bff
@SumitJenaHCL
Upgrade: drpm version to 0.5.2 (#10847)
3a6f8d4
@v-smalavathu
discount: Update Version from 2.2.4 -> 2.2.7 (#10844)
69a4c93
@SumitJenaHCL
Upgrade: dropwatch version to 1.5.4 (#10842)
a0f3668
@jykanase
exiv2: Update to version 0.28.3 (#10820)
0e06c52
@kevin-b-lockwood
Upgrade gssntlmssp to 1.3.1-1 (#10791)
9b598d3
@kevin-b-lockwood
Upgrade gssdp to 1.6.3 (#10790)
0167500
@durgajagadeesh
libid3tag: Update to 0.16.3 (#10843)
a8cebac 
Co-authored-by: dj_palli <dj_palli@microsoft.com>
@kevin-b-lockwood
Upgrade graphene to 1.10.8-1 (#10779)
32047b8
@kevin-b-lockwood
Upgrade libgphoto2 to latest upstream (#10775)
5f0ac64
@SumitJenaHCL
Upgrade: dotconf version to 1.4.1 (#10752)
787ecdd
@jykanase
Upgrade SuperLU version to 7.0.0 (#10744)
f07579d
CBL-Mariner-Bot and others added 18 commits March 31, 2025 15:05
@CBL-Mariner-Bot @Kanishk-Bansal
[AUTO-CHERRYPICK] Patch application-gateway-kubernetes-ingress for C…
52b3ad9 
…VE-2025-30204 [High] - branch 3.0-dev (#13230)

Co-authored-by: Kanishk Bansal <103916909+Kanishk-Bansal@users.noreply.github.com>
@CBL-Mariner-Bot @Kanishk-Bansal
[AUTO-CHERRYPICK] Patch coredns for CVE-2025-30204 [High] - branch …
fcd062f 
…3.0-dev (#13231)

Co-authored-by: Kanishk Bansal <103916909+Kanishk-Bansal@users.noreply.github.com>
@CBL-Mariner-Bot @Kanishk-Bansal
[AUTO-CHERRYPICK] Patch kubernetes for CVE-2025-30204 [High] - bran…
9a5b1e5 
…ch 3.0-dev (#13232)

Co-authored-by: Kanishk Bansal <103916909+Kanishk-Bansal@users.noreply.github.com>
@CBL-Mariner-Bot @Kanishk-Bansal
[AUTO-CHERRYPICK] Patch flannel for CVE-2025-30204 [High] - branch …
f7c2947 
…3.0-dev (#13234)

Co-authored-by: Kanishk Bansal <103916909+Kanishk-Bansal@users.noreply.github.com>
@CBL-Mariner-Bot @Kanishk-Bansal
[AUTO-CHERRYPICK] Patch keda for CVE-2025-30204, CVE-2025-29923 [Hi…
4d50670 
…gh] - branch 3.0-dev (#13235)

Co-authored-by: Kanishk Bansal <103916909+Kanishk-Bansal@users.noreply.github.com>
@CBL-Mariner-Bot @Kanishk-Bansal
[AUTO-CHERRYPICK] Patch telegraf for CVE-2025-30204 [High] - branch…
e467606 
… 3.0-dev (#13236)

Co-authored-by: Kanishk Bansal <103916909+Kanishk-Bansal@users.noreply.github.com>
@CBL-Mariner-Bot @Kanishk-Bansal
[AUTO-CHERRYPICK] Upgrade libreswan to 4.15 for CVE-2024-3652, CVE-…
a54213c 
…2024-2357, CVE-2023-30570 [High] - branch 3.0-dev (#13238)

Co-authored-by: Kanishk Bansal <103916909+Kanishk-Bansal@users.noreply.github.com>
@CBL-Mariner-Bot @Kanishk-Bansal
[AUTO-CHERRYPICK] Patch pytorch for CVE-2021-22569, CVE-2024-7776 […
7282abd 
…High] - branch 3.0-dev (#13239)

Co-authored-by: Kanishk Bansal <103916909+Kanishk-Bansal@users.noreply.github.com>
@CBL-Mariner-Bot
[AUTOPATCHER-CORE] Upgrade tzdata to 2025a upgrade to version 2025a (…
861fba8 
…#11994)
@CBL-Mariner-Bot
Prepare April 2025 Update (#13244)
64aa7ec
@CBL-Mariner-Bot @sindhu-karri
[AUTO-CHERRYPICK] Upgrade libxslt to fix CVE-2024-55549 and CVE-2025-…
2c7db7b 
…24855 [High] - branch 3.0-dev (#13243)

Co-authored-by: sindhu-karri <33163197+sindhu-karri@users.noreply.github.com>
@CBL-Mariner-Bot @Kanishk-Bansal @jslobodzian
[AUTO-CHERRYPICK] Patch prometheus for CVE-2025-30204 [High] - bran…
fb8d13a 
…ch 3.0-dev (#13233)

Co-authored-by: Kanishk Bansal <103916909+Kanishk-Bansal@users.noreply.github.com>
Co-authored-by: jslobodzian <joslobo@microsoft.com>
@manuelh-dev @CBL-Mariner-Bot
kata(-cc): upgrade kata-containers(-cc) to 3.2.0.azl5 (#13246)
4524ea4 
- Prevent hanging when ReadStreamRequest is blocked by policy
- Have the agent reformat CreateContainer requests in order to improve policy validation
- Fix for GHSA-qppj-fm5r-hxr3

Co-authored-by: CBL-Mariner Servicing Account <cblmargh@microsoft.com>
@CBL-Mariner-Bot
[AUTOPATCHER-CORE] Bugfix: 56213770, 56248605, upgrade cifs-utils to …
666e1f1 
…7.3 (#13116)
@rikenm1 @CBL-Mariner-Bot
Update Conda to 24.3.0 and bring missing runtime deps (#12648)
edf199a 
Co-authored-by: CBL-Mariner Servicing Account <cblmargh@microsoft.com>
@jslobodzian
Merge branch '3.0-dev' into joslobo/merge-for-april-update
0f6561e
@jslobodzian
Merge to 3.0 for April 2025 Update (#13256)
39cc18a
@ranjan-dutta
Merge tag '3.0.20250423-3.0' into 3.0-dev
d0248e8 
build tag "3.0.20250423-3.0"

* tag '3.0.20250423-3.0': (6844 commits)
  Update Conda to 24.3.0  and bring missing runtime deps (#12648)
  [AUTOPATCHER-CORE] Bugfix: 56213770, 56248605, upgrade cifs-utils to 7.3  (#13116)
  kata(-cc): upgrade kata-containers(-cc) to 3.2.0.azl5 (#13246)
  [AUTO-CHERRYPICK] Patch `prometheus` for CVE-2025-30204 [High] - branch 3.0-dev (#13233)
  [AUTO-CHERRYPICK] Upgrade libxslt to fix CVE-2024-55549 and CVE-2025-24855 [High] - branch 3.0-dev (#13243)
  Prepare April 2025 Update (#13244)
  [AUTOPATCHER-CORE] Upgrade tzdata to 2025a upgrade to version 2025a (#11994)
  [AUTO-CHERRYPICK] Patch `pytorch` for CVE-2021-22569, CVE-2024-7776 [High] - branch 3.0-dev (#13239)
  [AUTO-CHERRYPICK] Upgrade `libreswan` to 4.15 for CVE-2024-3652, CVE-2024-2357, CVE-2023-30570 [High] - branch 3.0-dev (#13238)
  [AUTO-CHERRYPICK] Patch `telegraf` for CVE-2025-30204 [High] - branch 3.0-dev (#13236)
  [AUTO-CHERRYPICK] Patch `keda` for CVE-2025-30204, CVE-2025-29923 [High] - branch 3.0-dev (#13235)
  [AUTO-CHERRYPICK] Patch `flannel` for CVE-2025-30204 [High] - branch 3.0-dev (#13234)
  [AUTO-CHERRYPICK] Patch `kubernetes` for CVE-2025-30204 [High] - branch 3.0-dev (#13232)
  [AUTO-CHERRYPICK] Patch `coredns` for CVE-2025-30204 [High] - branch 3.0-dev (#13231)
  [AUTO-CHERRYPICK] Patch `application-gateway-kubernetes-ingress` for CVE-2025-30204 [High] - branch 3.0-dev (#13230)
  [AUTO-CHERRYPICK] Patch `packer` for CVE-2025-30204 [High] - branch 3.0-dev (#13229)
  [AUTO-CHERRYPICK] Patch cert-manager for CVE-2025-30204 [High] - branch 3.0-dev (#13228)
  [AUTO-CHERRYPICK] Patch `azcopy` for CVE-2025-30204 [High] - branch 3.0-dev (#13227)
  [AUTO-CHERRYPICK] [AUTOPATCHER-CORE] Upgrade mariadb to 10.11.11 for CVE-2025-21490 - branch 3.0-dev (#13226)
  [AUTO-CHERRYPICK] [AUTOPATCHER-CORE] Upgrade libdwarf to 0.9.2 for CVE-2024-2002 [High] - branch 3.0-dev (#13225)
  ...
@ranjan-dutta ranjan-dutta requested a review from a team as a code owner May 14, 2025 04:09
github-advanced-security[bot]
github-advanced-security bot found potential problems May 14, 2025
View reviewed changes
@cheeyanglee
remove nvidia specific new specs
e59d927 
Signed-off-by: Lee Chee Yang <chee.yang.lee@intel.com>
@cheeyanglee
further specs clean up and amendment
99ccd0c 
clean up not required patch file

amend changelog

remove redundant minizip as renamed to minizip-ng:
microsoft/azurelinux@fcd89a6

Signed-off-by: Lee Chee Yang <chee.yang.lee@intel.com>
@cheeyanglee
update LICENSES-MAP
de05c31 
Signed-off-by: Lee Chee Yang <chee.yang.lee@intel.com>
@cheeyanglee cheeyanglee force-pushed the sandbox/rdutta/3.0/update-3.0.20250423-3.0-v2 branch from f5428db to de05c31 Compare May 15, 2025 03:33
@cheeyanglee
remove check-package-update-gate workflow
6d3a06b 
Signed-off-by: Lee Chee Yang <chee.yang.lee@intel.com>
@cheeyanglee
clean up ISSUE_TEMPLATE
da7f584 
Signed-off-by: Lee Chee Yang <chee.yang.lee@intel.com>
@cheeyanglee
kernel-uki: BuildRequired dracut-systemd-cryptsetup
bdc0624 
time="2025-05-15T20:14:27+08:00" level=debug msg="dracut[E]: Module 'dracut-systemd' depends on 'systemd-cryptsetup', which can't be installed"
time="2025-05-15T20:14:27+08:00" level=debug msg="dracut[E]: Module 'dracut-systemd' cannot be installed."

Signed-off-by: Lee Chee Yang <chee.yang.lee@intel.com>
@cheeyanglee
Copy link
Copy Markdown
Contributor

cheeyanglee commented May 16, 2025

merged V3
#99

@anujm1 anujm1 deleted the sandbox/rdutta/3.0/update-3.0.20250423-3.0-v2 branch May 19, 2025 07:22
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.