[Bug 1222319] New: kernel-firmware-* packages have duplicate WHENCE license files
https://bugzilla.suse.com/show_bug.cgi?id=1222319 Bug ID: 1222319 Summary: kernel-firmware-* packages have duplicate WHENCE license files Classification: openSUSE Product: openSUSE Tumbleweed Version: Current Hardware: Other OS: Other Status: NEW Severity: Minor Priority: P5 - None Component: Kernel Assignee: kernel-bugs@opensuse.org Reporter: fvogt@suse.com QA Contact: qa-bugs@suse.de CC: tiwai@suse.com Target Milestone: --- Found By: --- Blocker: --- The "WHENCE" file is >300K and included as %license in all kernel-firmware-* packages: /usr/share/licenses/kernel-firmware-usb-network/WHENCE /usr/share/licenses/kernel-firmware-ueagle/WHENCE /usr/share/licenses/kernel-firmware-ti/WHENCE /usr/share/licenses/kernel-firmware-sound/WHENCE /usr/share/licenses/kernel-firmware-serial/WHENCE /usr/share/licenses/kernel-firmware-realtek/WHENCE /usr/share/licenses/kernel-firmware-radeon/WHENCE /usr/share/licenses/kernel-firmware-qcom/WHENCE /usr/share/licenses/kernel-firmware-platform/WHENCE /usr/share/licenses/kernel-firmware-nfp/WHENCE /usr/share/licenses/kernel-firmware-network/WHENCE /usr/share/licenses/kernel-firmware-mwifiex/WHENCE /usr/share/licenses/kernel-firmware-mediatek/WHENCE /usr/share/licenses/kernel-firmware-media/WHENCE /usr/share/licenses/kernel-firmware-marvell/WHENCE /usr/share/licenses/kernel-firmware-intel/WHENCE /usr/share/licenses/kernel-firmware-i915/WHENCE /usr/share/licenses/kernel-firmware-dpaa2/WHENCE /usr/share/licenses/kernel-firmware-bnx2/WHENCE /usr/share/licenses/kernel-firmware-bluetooth/WHENCE /usr/share/licenses/kernel-firmware-atheros/WHENCE /usr/share/licenses/kernel-firmware-ath12k/WHENCE /usr/share/licenses/kernel-firmware-ath11k/WHENCE /usr/share/licenses/kernel-firmware-ath10k/WHENCE /usr/share/licenses/kernel-firmware-amdgpu/WHENCE This could be optimized by moving common files into a separate package or maybe not shipping this at all. I'm not sure whether the info inside is actually necessary, it mostly just links to the actual license files? -- You are receiving this mail because: You are on the CC list for the bug.
https://bugzilla.suse.com/show_bug.cgi?id=1222319 https://bugzilla.suse.com/show_bug.cgi?id=1222319#c1 --- Comment #1 from Takashi Iwai <tiwai@suse.com> --- We may move them to kernel-firmware-all and kernel-firmware(-uncompressed) packages. -- You are receiving this mail because: You are on the CC list for the bug.
https://bugzilla.suse.com/show_bug.cgi?id=1222319 https://bugzilla.suse.com/show_bug.cgi?id=1222319#c2 --- Comment #2 from Takashi Iwai <tiwai@suse.com> --- Actually kernel-firmware-all and kernel-firmware already contain WHENCE, so we can just drop them from other kernel-firmware-* packages. The original intention was to cover the license texts in each sub package; the licenses aren't always provided as external text files but sometimes shown in texts in WHENCE file. But it makes little sense to pack it in each subpackage, indeed. -- You are receiving this mail because: You are on the CC list for the bug.
https://bugzilla.suse.com/show_bug.cgi?id=1222319 https://bugzilla.suse.com/show_bug.cgi?id=1222319#c3 Takashi Iwai <tiwai@suse.com> changed: What |Removed |Added ---------------------------------------------------------------------------- Status|NEW |RESOLVED Resolution|--- |FIXED --- Comment #3 from Takashi Iwai <tiwai@suse.com> --- The fix submitted to TW. -- You are receiving this mail because: You are on the CC list for the bug.
https://bugzilla.suse.com/show_bug.cgi?id=1222319 https://bugzilla.suse.com/show_bug.cgi?id=1222319#c5 --- Comment #5 from Maintenance Automation <maint-coord+maintenance-robot@suse.de> --- SUSE-SU-2024:2575-1: An update that solves two vulnerabilities and has two security fixes can now be installed. URL: https://www.suse.com/support/update/announcement/2024/suse-su-20242575-1 Category: security (moderate) Bug References: 1219458, 1222319, 1225600, 1225601 CVE References: CVE-2023-38417, CVE-2023-47210 Maintenance Incident: [SUSE:Maintenance:34796](https://smelt.suse.de/incident/34796/) Sources used: openSUSE Leap 15.6 (src): kernel-firmware-20240712-150600.3.3.1 Basesystem Module 15-SP6 (src): kernel-firmware-20240712-150600.3.3.1 NOTE: This line indicates an update has been released for the listed product(s). At times this might be only a partial fix. If you have questions please reach out to maintenance coordination. -- You are receiving this mail because: You are on the CC list for the bug.
participants (1)
-
bugzilla_noreply@suse.com