[CG-Fix-CVE-2021-44906] Patching on thrift.0.14.1 for package minimist #10555
Conversation
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
richardyu-ms
force-pushed
the
thrift_014_minimist_fix
branch
from
efd9833
to
4af7a5d
Compare
richardyu-ms
changed the title
richardyu-ms
force-pushed
the
thrift_014_minimist_fix
branch
from
4af7a5d
to
1fdd945
Compare
Signed-off-by: richardyu-ms <richard.yu@microsoft.com>
richardyu-ms
force-pushed
the
thrift_014_minimist_fix
branch
from
1fdd945
to
d3ba87e
Compare
|
Please select 202111 branch to backport |
msosyak
previously approved these changes
Apr 12, 2022
richardyu-ms
added
the
Request for 202111 Branch
xumia
previously approved these changes
Apr 13, 2022
richardyu-ms
force-pushed
the
thrift_014_minimist_fix
branch
from
2652b03
to
5144485
Compare
richardyu-ms
force-pushed
the
thrift_014_minimist_fix
branch
from
db07053
to
1aa8b31
Compare
Signed-off-by: richardyu-ms <richard.yu@microsoft.com>
Signed-off-by: richardyu-ms <richard.yu@microsoft.com>
richardyu-ms
force-pushed
the
thrift_014_minimist_fix
branch
from
1aa8b31
to
eabe38d
Compare
qiluo-msft
reviewed
Apr 14, 2022
qiluo-msft
reviewed
Apr 14, 2022
richardyu-ms
force-pushed
the
thrift_014_minimist_fix
branch
from
e246deb
to
7ea2d09
Compare
|
/azp run |
|
You have several pipelines (over 10) configured to build pull requests in this repository. Specify which pipelines you would like to run by using /azp run [pipelines] command. You can specify multiple pipelines using a comma separated list. |
qiluo-msft
approved these changes
Apr 20, 2022
liushilongbuaa
pushed a commit
to liushilongbuaa/sonic-buildimage
that referenced
this pull request
Apr 22, 2022
sonic-net#10555) * [CG-Fix-CVE-2021-44906] Patching on thrift.0.14.1 for package minimist Signed-off-by: richardyu-ms <richard.yu@microsoft.com> * add more information in patch Signed-off-by: richardyu-ms <richard.yu@microsoft.com> * Update 0003-Remove-minimist-packages.patch * change the thrift 0.14.1 to package download Signed-off-by: richardyu-ms <richard.yu@microsoft.com> * use the series file for patching * fix a code defect
6 tasks
liushilongbuaa
added a commit
that referenced
this pull request
Apr 23, 2022
#10555) (#10650) * [CG-Fix-CVE-2021-44906] Patching on thrift.0.14.1 for package minimist Signed-off-by: richardyu-ms <richard.yu@microsoft.com> * add more information in patch Signed-off-by: richardyu-ms <richard.yu@microsoft.com> * Update 0003-Remove-minimist-packages.patch * change the thrift 0.14.1 to package download Signed-off-by: richardyu-ms <richard.yu@microsoft.com> * use the series file for patching * fix a code defect Co-authored-by: Richard.Yu <richard.yu@microsoft.com>
judyjoseph
removed
the
Request for 202111 Branch
liushilongbuaa
pushed a commit
to liushilongbuaa/sonic-buildimage
that referenced
this pull request
Jun 20, 2022
Related work items: #49, #58, #107, sonic-net#247, sonic-net#249, sonic-net#277, sonic-net#593, sonic-net#597, sonic-net#1035, sonic-net#2130, sonic-net#2150, sonic-net#2165, sonic-net#2169, sonic-net#2178, sonic-net#2179, sonic-net#2187, sonic-net#2188, sonic-net#2191, sonic-net#2195, sonic-net#2197, sonic-net#2198, sonic-net#2200, sonic-net#2202, sonic-net#2206, sonic-net#2209, sonic-net#2211, sonic-net#2216, sonic-net#7909, sonic-net#8927, sonic-net#9681, sonic-net#9733, sonic-net#9746, sonic-net#9850, sonic-net#9967, sonic-net#10104, sonic-net#10152, sonic-net#10168, sonic-net#10228, sonic-net#10266, sonic-net#10288, sonic-net#10294, sonic-net#10313, sonic-net#10394, sonic-net#10403, sonic-net#10404, sonic-net#10421, sonic-net#10431, sonic-net#10437, sonic-net#10445, sonic-net#10457, sonic-net#10458, sonic-net#10465, sonic-net#10467, sonic-net#10469, sonic-net#10470, sonic-net#10474, sonic-net#10477, sonic-net#10478, sonic-net#10482, sonic-net#10485, sonic-net#10488, sonic-net#10489, sonic-net#10492, sonic-net#10494, sonic-net#10498, sonic-net#10501, sonic-net#10509, sonic-net#10512, sonic-net#10514, sonic-net#10516, sonic-net#10517, sonic-net#10523, sonic-net#10525, sonic-net#10531, sonic-net#10532, sonic-net#10538, sonic-net#10555, sonic-net#10557, sonic-net#10559, sonic-net#10561, sonic-net#10565, sonic-net#10572, sonic-net#10574, sonic-net#10576, sonic-net#10578, sonic-net#10581, sonic-net#10585, sonic-net#10587, sonic-net#10599, sonic-net#10607, sonic-net#10611, sonic-net#10616, sonic-net#10618, sonic-net#10619, sonic-net#10623, sonic-net#10624, sonic-net#10633, sonic-net#10646, sonic-net#10655, sonic-net#10660, sonic-net#10664, sonic-net#10680, sonic-net#10683
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
Signed-off-by: richardyu-ms richard.yu@microsoft.com
Why I did it
resolve alert CVE-2021-44906
How I did it
Patching on thrift.0.14.1 for package minimist
How to verify it
build thrift 0.14.1 in build docker
build barefoot, broadcom and mellanox images
Which release branch to backport (provide reason below if selected)
Description for the changelog
Link to config_db schema for YANG module changes
A picture of a cute animal (not mandatory but encouraged)