Age | Commit message (Collapse) | Author | Files | Lines |
|
meta-openembedded: ab9fca485e..fdd1dfe6b4:
Akash Hadke (1):
tcpreplay: Add fix for CVE-2020-24265 and CVE-2020-24266
Andre Carvalho (1):
netcat: Set CVE_PRODUCT
Armin Kuster (7):
wireshark: Update to 3.2.18
c-ares: bump PV in recipe to 1.16.1
pw-am.sh: update to new patcwork system
p7zip: refresh patches
breakpad: Update SRC_URI for protobuf and lss
spirv-tools: update SRC_URI for googletest to main
Mariadb: update to 10.4.24
Christian Ege (1):
cli11: switch from default master branch to main to fix do_fetch failure
Christian Eggers (1):
graphviz: native: create /usr/lib/graphviz/config6 in populate_sysroot
Daniel Stadelmann (1):
imagemagick: update SRC_URI branch from master to main
Jeremy Puhlman (1):
CVE-2021-4034: polkit Local privilege escalation in pkexec due to incorrect handling of argument vector
Khem Raj (1):
mongodb: Pass OBJCOPY to scons so it does not use it from host
Kristian Klausen (1):
cryptsetup: Add runtime dependency on lvm2-udevrules for udev
Leif Middelschulte (1):
dbus-daemon-proxy: add missing `return` statement
Mingli Yu (2):
polkit: fix CVE-2021-3560
geoip: Switch to use the main branch
Minjae Kim (1):
multipath-tools: update SRC_URI
Nisha Parrakat (2):
p7zip: build and package lib7z.so needed for fastboot
nodejs: upgrade to 12.22.2
Peter Kjellerstedt (1):
googletest: Switch branch from master to main
Ralph Siemsen (2):
nginx: backport fix for CVE-2019-20372
polkit: fix overlapping changes in recent CVE patches
Ranjitsinh Rathod (4):
strongswan: Add fix of CVE-2021-45079
nss: Add fix for CVE-2022-22747
polkit: Fix for CVE-2021-4115
python3-urllib3: Fix CVE-2020-26137 and CVE-2021-33503
Robert Joslyn (1):
linuxptp: Update to 2.0.1
Ross Burton (1):
protobuf: fix patch fuzz
Sana Kazi (2):
protobuf: Fix CVE-2021-22570
openjpeg: Fix multiple CVE
Thomas Perrot (1):
breakpad: fix branch for gtest in SRC_URI
Virendra Thakur (5):
strongswan: Fix for CVE-2021-41990 and CVE-2021-41991
udisks2: Fix for CVE-2021-3802
p7zip: fix for CVE-2018-5996
nodejs: Fix for CVE-2021-44532
p7zip: Fix for CVE-2016-9296
Yi Zhao (1):
apache2: upgrade 2.4.52 -> 2.4.53
wangmy (1):
apache2: upgrade 2.4.51 -> 2.4.52
meta-security: b76698c788..c62970fda8:
Armin Kuster (3):
clamav: disable DB creation.
clamav: drop creating cvd package
chkrootkit: update SRC_URI
Jeremy A. Puhlman (1):
sssd: re-package to fix QA issues
Ralph Siemsen (2):
tpm2-tools: backport fix for CVE-2021-3565
tpm2-tools: update to 4.1.3
poky: bba3233897..b6ce93d565:
Alexander Kanavin (4):
libusb1: correct SRC_URI
ruby: correctly set native/target dependencies
vim: do not report upstream version check as broken
mobile-broadband-provider-info: upgrade 20201225 -> 20210805
Bruce Ashfield (4):
linux-yocto/5.4: update to v5.4.173
linux-yocto/5.4: update to v5.4.176
linux-yocto/5.4: update to v5.4.178
perf-tests: add bash into RDEPENDS (v5.12-rc5+)
Changhyeok Bae (1):
mobile-broadband-provider-info: upgrade 20210805 -> 20220315
Chee Yang Lee (1):
ruby: 2.7.4 -> 2.7.5
Christian Eggers (1):
sdk: fix search for dynamic loader
Davide Gardenal (6):
re2c: backport fix for CVE-2018-21232
qemu: backport fix for CVE-2020-13253
qemu: backport patch fix for CVE-2020-13791
apt: backport patch fix for CVE-2020-3810
ghostscript: backport patch fix for CVE-2021-3781
go: backport patch fix for CVE-2021-38297
Florian Amstutz (1):
devtool: deploy-target: Remove stripped binaries in pseudo context
Jose Quaresma (2):
buildhistory.bbclass: create the buildhistory directory when needed
sstate: inside the threadedpool don't write to the shared localdata
Joshua Watt (5):
tzdata: Remove BSD License specifier
e2fsprogs: Use specific BSD license variant
glib-2.0: Use specific BSD license variant
shadow: Use specific BSD license variant
libcap: Use specific BSD license variant
Kartikey Rameshbhai Parmar (1):
puzzles: Upstream changed to main branch for development
Konrad Weihmann (1):
ruby: fix DEPENDS append
Lee Chee Yang (1):
poky.conf: update tested distros
Marek Vasut (2):
binutils: Backport Include members in the variable table used when resolving DW_AT_specification tags.
bootchart2: Add missing python3-math dependency
Marta Rybczynska (48):
grub: add a fix for CVE-2020-25632
grub: add a fix for CVE-2020-25647
grub: fix a memory leak
grub: add a fix for a possible NULL dereference
grub: fix a dangling memory pointer
grub: fix wrong handling of argc == 0
grub: add a fix for malformed device path handling
grub: fix memory leak at error in grub_efi_get_filename()
grub: add a fix for a possible NULL pointer dereference
grub: add a fix for unused variable in gnulib
grub: fix an unitialized token in gnulib
grub: add a fix a NULL pointer dereference in gnulib
grub: add a fix for NULL pointer dereference
grub: fix an unitialized re_token in gnulib
grub: add a fix for unnecessary assignements
grub: add structure initialization in zstd
grub: add a missing NULL check
grub: fix a memory leak
grub: fix a memory leak
grub: fix a memory leak
grub: fix an integer overflow
grub: add a fix for a length check
grub: add a fix for a possible negative shift
grub: add a fix for a memory leak
grub: add a fix for possible integer overflows
grub: fix an error check
grub: add a fix for a memory leak
grub: add a fix for a possible unintended sign extension
grub: add a fix for a possible NULL dereference
grub: add a fix for a memory leak
grub: add a fix for a memory leak
grub: fix a memory leak
grub: remove unneeded return value
grub: fix an integer overflow
grub: fix multiple integer overflows
grub: fix a possible integer overflow
grub: test for malformed jpeg files
grub: remove dead code
grub: fix checking for NULL
grub: add a fix for a memory leak
grub: avoid a memory leak
grub: add a check for a NULL pointer
grub: add a fix for NULL pointer dereference
grub: add a fix for an incorrect cast
grub: fix incorrect use of a negative value
grub: add a fix for a NULL pointer dereference
grub: avoid a NULL pointer dereference
grub: add a fix for a crash in scripts
Martin Beeger (1):
cmake: remove bogus CMAKE_LDFLAGS_FLAGS definition from toolchain file
Martin Jansa (1):
boost: fix native build with glibc-2.34
Michael Halstead (2):
releases: update to include 3.1.14
uninative: Upgrade to 3.5
Michael Opdenacker (1):
docs: fix hardcoded link warning messages
Minjae Kim (6):
ghostscript: fix CVE-2021-45949
go: fix CVE-2022-23806
go: fix CVE-2022-23772
bluez5: fix CVE-2021-3658
gnu-config: update SRC_URI
virglrenderer: update SRC_URI
Nathan Rossi (1):
cml1.bbclass: Handle ncurses-native being available via pkg-config
Oleksandr Kravchuk (1):
tzdata: update to 2022a
Ovidiu Panait (1):
openssl: upgrade 1.1.1l -> 1.1.1n
Peter Kjellerstedt (2):
sstate: A third fix for for touching files inside pseudo
python3-jinja2: Correct HOMEPAGE
Purushottam Choudhary (3):
systemd: Fix CVE-2021-3997
freetype: add missing CVE tag CVE-2020-15999
tiff: fix for CVE-2022-22844
Ralph Siemsen (6):
bind: update to 9.11.36
libxml2: backport fix for CVE-2022-23308
libxml2: move to gitlab.gnome.org
libxml2: fix CVE-2022-23308 regression
bluez5: fix CVE-2022-0204
bind: update to 9.11.37
Ranjitsinh Rathod (2):
util-linux: Fix for CVE-2021-3995 and CVE-2021-3996
openssl: Add fix for CVE-2021-4160
Richard Purdie (19):
bitbake: tests/fetch: Handle upstream master -> main branch change
default-distrovars.inc: Switch connectivity check to a yoctoproject.org page
vim: Upgrade 4269 -> 4134
vim: Upgrade 8.2.4314 -> 8.2.4424
libxml-parser-perl: Add missing RDEPENDS
uninative: Add version to uninative tarball name
systemd: Ensure uid/gid ranges are set deterministically
vim: Update to 8.2.4524 for further CVE fixes
build-appliance-image: Update to dunfell head revision
python3targetconfig: Use for nativesdk too
oeqa/runtime/ping: Improve failure message to include more detail
oeqa/selftest/tinfoil: Improve tinfoil event test debugging
bitbake: server/process: Note when commands complete in logs
bitbake: tinfoil: Allow run_command not to wait on events
poky: Drop PREMIRRORS entries for scms
oeqa/selftest/tinfoil: Fix intermittent event loss issue in test
mirrors: Add missing gitsm entries for yocto/oe mirrors
bitbake: server/process: Disable gc around critical section
conf.py/poky.yaml: Move version information to poky.yaml and read in conf.py
Ross Burton (13):
lsof: correct LICENSE
shadow-sysroot: sync license with shadow
lighttpd: backport a fix for CVE-2022-22707
vim: set PACKAGECONFIG idiomatically
vim: upgrade to 8.2 patch 3752
vim: update to include latest CVE fixes
vim: upgrade to patch 4269
coreutils: remove obsolete ignored CVE list
cve-check: get_cve_info should open the database read-only
Revert "cve-check: add lockfile to task"
asciidoc: update git repository
python3: ignore CVE-2022-26488
grub: ignore CVE-2021-46705
Rudolf J Streif (1):
linux-firmware: Add CLM blob to linux-firmware-bcm4373 package
Saul Wold (1):
recipetool: Fix circular reference in SRC_URI
Scott Weaver (1):
bitbake: fetch2: add check for empty SRC_URI hash string
Stefan Herbrechtsmeier (1):
cve-check: create directory of CVE_CHECK_MANIFEST before copy
Steve Sakoman (29):
glibc: update to lastest 2.31 release HEAD
expat: fix CVE-2022-23852
expat: add missing Upstream-status, CVE tag and sign-off to CVE-2021-46143.patch
common-licenses: add Spencer-94
documentation: update for 3.1.14 release
expat: fix CVE-2022-23990
connman: fix CVE-2022-23096-7
connman: fix CVE-2022-23098
connman: fix CVE-2021-33833
wpa-supplicant: fix CVE-2022-23303-4
Revert "vim: fix CVE-2021-4069"
expat: fix CVE-2022-25235
expat: fix CVE-2022-25236
expat: fix CVE-2022-25313
expat: fix CVE-2022-25314
expat: fix CVE-2022-25315
ref-system-requirements.rst: update list of supported distros
linux-yocto: update genericx86* to v5.4.178
poky.conf: Bump version for 3.1.15 release
documentation: update for 3.1.15 release
libsolv: fix CVE: CVE-2021-44568-71 and CVE-2021-44573-77
ghostscript: fix CVE-2020-15900 and CVE-2021-45949 for -native
util-linux: fix CVE-2022-0563
xserver-xorg: update to 1.20.9
xserver-xorg: update to 1.20.10
xserver-xorg: update to 1.20.11
xserver-xorg: update to 1.20.12
xserver-xorg: update to 1.20.13
xserver-xorg: update to 1.20.14
Sundeep KOKKONDA (1):
binutils: Fix CVE-2021-45078
Tim Orling (1):
python3: upgrade 3.8.12 -> 3.8.13
Virendra Thakur (1):
libarchive: Fix for CVE-2021-36976
bkylerussell@gmail.com (1):
rpm: fix intermittent compression failure in do_package_write_rpm
sana kazi (1):
tiff: Add backports for two CVEs from upstream
wangmy (3):
linux-firmware: upgrade 20211216 -> 20220209
wireless-regdb: upgrade 2021.08.28 -> 2022.02.18
linux-firmware: upgrade 20220209 -> 20220310
Signed-off-by: Patrick Williams <patrick@stwcx.xyz>
Change-Id: Ib8eac0ed434df84b23bf80c52a2b3c4be9beff38
|
|
poky: ed4791c8b0..bba3233897:
Akash Hadke (1):
glibc: Add fix for data races in pthread_create and TLS access
Alexander Kanavin (25):
gnupg: update 2.2.21 -> 2.2.22
gnupg: update 2.2.23 -> 2.2.26
tcf-agent: fetching over git:// no longer works
qemurunner.py: print output from runqemu/qemu-system in stop()
qemurunner.py: handle getOutput() having nothing to read
selftest: disable virgl headless test
wic: keep rootfs_size as integer
testimage: symlink the task log and qemu console log to tmp/log/oeqa
bitbake: bitbake: correct the collections vs collections.abc deprecation
bitbake: bitbake: fix regexp deprecation warnings
bitbake: bitbake: do not import imp in layerindexlib
bitbake: bitbake: adjust parser error check for python 3.10 compatibility
bitbake: bitbake: correct deprecation warning in process.py
e2fsprogs: update to 1.45.6
linux-firmware: upgrade 20210511 -> 20210818
linux-firmware: upgrade 20210818 -> 20210919
wireless-regdb: upgrade 2021.04.21 -> 2021.07.14
wireless-regdb: upgrade 2021.07.14 -> 2021.08.28
ca-certificates: update 20210119 -> 20211016
tzdata: upgrade 2021a -> 2021d
tzdata: update 2021d -> 2021e
linux-firmware: upgrade 20210919 -> 20211027
libpcre/libpcre2: correct SRC_URI
lib/oe/reproducible: correctly set .git location when recursively looking for git repos
parselogs: add a couple systemd false positives
Alexandre Belloni (1):
oeqa/selftest/sstatetests: fix typo ware -> were
Andrej Valek (3):
mklibs-native: drop deprecated cpp17 exceptions
vim: add option to disable NLS support
libpsl: Add config knobs for runtime/builtin conversion choices
Andrey Zhizhikin (1):
lttng-modules: do not search in non-existing folder during install
Anuj Mittal (3):
glibc-version.inc: remove branch= from GLIBC_GIT_URI
gstreamer1.0: fix failing ptest
xserver-xorg: update CVE_PRODUCT
Armin Kuster (24):
glibc: Security fix CVE-2021-33574
glibc: Security fix for CVE-2021-38604
qemu: Security fix CVE-2020-25085
qemu: Security fix CVE-2020-25624
Qemu: Security fix for CVE-2020-25625/2021-3409/2020-17380
qemu: Security fix for CVE-2020-29443
qemu: Security fix CVE-2021-20221
qemu: Security fix CVE-2021-3544
qemu: Security fixes CVE-2021-3545/6
binutils: Security fix for CVE-2021-3549
binutils: Security fix for CVE-2020-16593
lz4: Security Fix for CVE-2021-3520
xserver-xorg: Security fix for CVE-2020-14360/-25712
go: Several Security fixes
libgcrypt: Security fix CVE-2021-33560
apr: Security fix for CVE-2021-35940
libsndfile: Security fix for CVE-2021-3246
qemu: Security fix CVE-2020-12829
qemu: Security fix for CVE-2020-27617
qemu: Security fix for CVE-2020-28916
nettle: Security fix for CVE-2021-3580
nettle: Security fix for CVE-2021-20305
tar: ignore node-tar CVEs
poky.yaml: fedora33: add missing pkgs
Bruce Ashfield (21):
linux-yocto/5.4: update to v5.4.142
parselogs.py: ignore intermittent CD/DVDROM identification failure
linux-yocto/5.4: update to v5.4.143
linux-yocto/5.4: update to v5.4.144
linux-yocto/5.4: update to v5.4.149
linux-yocto/5.4: update to v5.4.150
linux-yocto/5.4: update to v5.4.153
linux-yocto/5.4: update to v5.4.154
linux-yocto/5.4: update to v5.4.155
linux-yocto/5.4: update to v5.4.156
linux-yocto/5.4: update to v5.4.158
linux-yocto/5.4: update to v5.4.159
linux-yocto/5.4: update to v5.4.162
linux-yocto/5.4: update to v5.4.163
linux-yocto/5.4: update to v5.4.165
linux-yocto/5.4: update to v5.4.167
linux-yocto/5.4: update to v5.4.169
linux-yocto/5.4: update to v5.4.170
linux-yocto/5.4: update to v5.4.171
linux-yocto/5.4: update to v5.4.172
kernel: introduce python3-dtschema-wrapper
Chandana kalluri (1):
scriptutils.py: Add check before deleting path
Changqing Li (1):
gdk-pixbuf: fix CVE-2021-20240
Chris Laplante (1):
bitbake: compat.py: remove file since it no longer actually implements anything
Christian Eggers (1):
binutils: Fix a missing break in case statement
Claudius Heine (1):
rng-tools: add systemd-udev-settle wants to service
Claus Stovgaard (1):
cups: Fix missing installation of cups sysv init scripts
Daniel Gomez (1):
os-release: Add DISTRO_CODENAME as vardeps for do_compile
Daniel McGregor (1):
bitbake.conf: Add gpg-agent as a host tool
Denys Dmytriyenko (1):
make-mod-scripts: pass CROSS_COMPILE to configure and build
Dhruva Gole (1):
scripts/checklayer/common.py: Fixed a minor grammatical error
Eero Aaltonen (1):
cmake: FindGTest: Add target for gmock library
Ernst Sjöstrand (1):
dropbear: Fix CVE-2020-36254
Hongxu Jia (1):
nativesdk-pseudo: Fix to work with glibc 2.34 systems
Jate Sujjavanich (3):
libdnf: Backport bugfix for upgrade calc
dnf: Backport bugfix for upgrade
bitbake: hashserv: specify loop for asyncio in python < 3.6
Jon Mason (4):
Update mailing list address
core-image-sato: Fix runqemu error for qemuarmv5
oeqa/manual: Fix no longer valid URLs
scripts/lib/wic/help.py: Update Fedora Kickstart URLs
Jose Quaresma (3):
patch.bbclass: when the patch fails show more info on the fatal error
sstate: fix touching files inside pseudo
sstate: another fix for touching files inside pseudo
Joshua Watt (3):
bitbake: server: Fix early parsing errors preventing zombie bitbake
classes/reproducible_build: Use atomic rename for SDE file
oeqa: reproducible: Fix test not producing diffs
Justin Bronder (1):
bitbake: hashserv: let asyncio discover the running loop
Kai Kang (2):
squashfs-tools: fix CVE-2021-40153
speex: fix CVE-2020-23903
Khem Raj (5):
m4: Do not use SIGSTKSZ
gpgme: Use glibc provided closefrom API when available
webkitgtk: Fix reproducibility in minibrowser
lrzsz: Use Cross AR during compile
libunwind: Backport a fix for -fno-common option to compile
Konrad Weihmann (1):
cve-check: add lockfile to task
Lee Chee Yang (1):
qemu: fix CVE-2021-3527
Marco Felsch (1):
bitbake: bitbake: bitbake-layers: add skip reason to output
Marek Vasut (4):
image_types: Restore pre-btrfs-tools 4.14.1 mkfs.btrfs shrink behavior
piglit: upgrade to latest revision
weston: Backport patches to always activate the top-level surface
Revert "weston: Use systemd notify,"
Mark Hatle (2):
externalsrc: Work with reproducible_build
reproducible_build: Remove BUILD_REPRODUCIBLE_BINARIES checking
Markus Volk (2):
util-linux: disable raw
wic:direct.py: ignore invalid mountpoints during fstab update
Marta Rybczynska (5):
lzo: add CVE_PRODUCT
python3: upgrade 3.8.11 -> 3.8.12
libgcrypt: solve CVE-2021-33560 and CVE-2021-40528
bluez: fix CVE-2021-0129
grub: fix CVE-2020-14372 and CVE-2020-27779
Matt Madison (1):
layer.conf: fix syntax error in PATH setting
Michael Halstead (3):
uninative: Upgrade to 3.3, support glibc 2.34
uninative: Upgrade to 3.4
releases: update to include 3.1.13
Michael Opdenacker (5):
documentation: conf.py: explicit which version of bitbake objects.inv is used
available release updates
remove reference to BB_SETSCENE_VERIFY_FUNCTION2
documentation: further updates for 3.1.13
ref-manual: fix patch documentation
Mike Crowe (1):
curl: Fix CVE-2021-22946 and CVE-2021-22947, whitelist CVE-2021-22945
Mikko Rapeli (1):
openssl: update from 1.1.1k to 1.1.1l
Mingli Yu (3):
python3-magic: add the missing rdepends
bootchart2: remove wait_boot logic
wic: use shutil.which
Minjae Kim (5):
vim: fix CVE-2021-3778
vim: fix 2021-3796
git: fix CVE-2021-40330
vim: fix CVE-2021-4069
inetutils: fix CVE-2021-40491
Neetika Singh (1):
glib-2.0: Add security fixes
Nicolas Dechesne (1):
rt-tests: set branch name in SRC_URI
Oleksandr Kravchuk (1):
mirrors.bbclass: remove dead infozip mirrors
Oleksandr Popovych (1):
utils: Reduce the number of calls to the "dirname" command
Ovidiu Panait (2):
dbus-test: Remove EXTRA_OECONF_X configs
dbus,dbus-test: Move common parts to dbus.inc
Pavel Zhukov (3):
weston: Use systemd notify,
busybox: Fix for CVE-2021-42374
busybox: Fix for CVE-2021-42376
Peter Bergin (1):
systemd: add packageconfig for wheel-group
Purushottam Choudhary (1):
lighttpd: Add patch for reuse large memory chunks
Quentin Schulz (1):
README.OE-Core.md: update URLs
Ralph Siemsen (1):
tar: filter CVEs using vendor name
Ranjitsinh Rathod (6):
rpm: Add fix for CVE-2021-20266
rpm: Handle proper return value to avoid major issues
systemd: Add fix for systemd-networkd crash during free
curl: Whitelist CVE-2021-22897
ncurses: Fix for CVE-2021-39537
libsolv: update tag for missing CVEs
Ricardo Ribalda Delgado (1):
wic: misc: Do not find for executables in ASSUME_PROVIDED
Richard Purdie (91):
gnupg: upgrade 2.2.20 -> 2.2.21
sdk: Decouple default install path from built in path
xdg-utils: Add fix for CVE-2020-27748
oeqa/runtime/parselogs: Make DVD ata error apply to all qemux86 machines
flex: Add CVE-2019-6293 to exclusions for checks
go: Exclude CVE-2021-29923 from report list
build-appliance-image: Update to dunfell head revision
poky: Use SDKPATHINSTALL instead of SDKPATH
build-appliance-image: Update to dunfell head revision
bitbake: tests/fetch2: Use our own git server for dtc test repo
vim: Backport fix for CVE-2021-3770
useradd: Ensure preinst data is expanded correctly in pkgdata
bash: Ensure deterministic build
bitbake: ui/taskexp: Improve startup exception handling
bitbake: ui/taskexp: Fix to work with empty build directories
bitbake: build: Match markup to real function name
bitbake: build: Handle SystemExit in python tasks correctly
bitbake: process: Don't include logs in error message if piping them
bitbake: build: Avoid duplicating logs in verbose mode
bitbake: build: Catch and error upon circular task references
bitbake: data_smart: Improve error display for handled exceptions
bitbake: cookerdata: Improve missing core layer error message
bitbake: cookerdata: Show error for no BBLAYERS in bblayers.conf
bitbake: bitbake-worker: Improve error handling
bitbake: cookerdata: Show a readable error for invalid multiconfig name
bitbake: build/msg: Cleanup verbose option handling
mtd-utils: upgrade 2.1.1 -> 2.1.2
pybootchart: Avoid divide by zero
oeqa/qemurunner: Use oe._exit(), not sys.exit()
libc_package/buildstats: Fix python regex quoting warnings
oeqa/selftest/gotoolchain: Fix temp file cleanup
oeqa/buildproject: Ensure temp directories are cleaned up
glew: Stop polluting /tmp during builds
bitbake: test/fetch: Update urls to match upstream branch name changes
bitbake: fetch2/git: Avoid races over mirror tarball creation
bitbake: fetch2/git: Use os.rename instead of mv
multilib: Avoid sysroot race issues when multilib enabled
pseudo: Fix to work with glibc 2.34 systems
pseudo: Update with fcntl and glibc 2.34 fixes
package: Ensure pclist files are deterministic and don't use full paths
mesa: Ensure megadrivers runtime mappings are deterministic
gnupg: Be deterministic about sendmail
libtool: Fix lto option passing for reproducible builds
libtool: Allow libtool-cross to reproduce
gobject-introspection: Don't write $HOME into scripts
externalsrc: Fix a source date epoch race in reproducible builds
libxml2: Use python3targetconfig to fix reproducibility issue
libnewt: Use python3targetconfig to fix reproducibility issue
python3: Add a fix for a make install race
rpm: Deterministically set vendor macro entry
reproducible_build: Work around caching issues
base: Clean up unneeded len() calls
base: Use repr() for printing exceptions
reproducible_build: Drop obsolete sstate workaround
git: Fix determinism issue
bitbake: fetch/git: Handle github dropping git:// support
bitbake: tests/fetch2: Fix quoting warning
bitbake: tests/fetch: Update github urls
bitbake: tests/fetch: Update pcre.org address after github changes
scripts/convert-srcuri: Backport SRC_URI conversion script from master branch
meta/scripts: Manual git url branch additions
bitbake: fetch/wget: Add timeout for checkstatus calls (30s)
linunistring: Add missing gperf-native dependency
pseudo: Add in ability to flush database with shutdown request
pseudo: Add fcntl64 wrapper
mirrors: Add uninative mirror on kernel.org
sstate: Ensure SDE is accounted for in package task timestamps
sstate: Avoid deploy_source_date_epoch sstate when unneeded
mirrors: Add kernel.org sources mirror for downloads.yoctoproject.org
build-appliance-image: Update to dunfell head revision
bitbake: command: Ensure exceptions inheriting from BBHandledException are visible
bitbake: tinfoil: When sending commands we need to process events
bitbake: process/knotty: Improve early exception handling
scripts/oe-package-browser: Handle no packages being built
reproducible_build/package_XXX: Ensure SDE task is in dependency chain
bitbake: cooker: Ensure reparsing is handled correctly
bitbake: bblayers/action: When adding layers, catch BBHandledException
buildhistory: Fix srcrevs output
oeqa/parselogs: Fix quoting
gcc: Add CVE-2021-37322 to the list of CVEs to ignore
build-appliance-image: Update to dunfell head revision
bitbake: cooker/command: Add a dummy event for tinfoil testing
openssl: Add reproducibility fix
oeqa/selftest/bbtests: Use YP sources mirror instead of GNU
oeqa/selftest/tinfoil: Update to use test command
scripts: Update to use exec_module() instead of load_module()
bitbake: utils: Update to use exec_module() instead of load_module()
bitbake: tests/fetch: Drop gnu urls from wget connectivity test
expat: Update HOMEPAGE to current url
lttng-tools: Add missing DEPENDS on bison-native
build-appliance-image: Update to dunfell head revision
Robert P. J. Day (1):
common-licenses: add "Unlicense" license file
Ross Burton (20):
cpio: backport fix for CVE-2021-38185
libsoup-2.4: remove obsolete intltool dependency
uninative: Improve glob to handle glibc 2.34
devtool: fix modify with patches in override directories
sstate: don't silently handle all exceptions in sstate_checkhashes
oe/license: implement ast.NodeVisitor.visit_Constant
license.bbclass: implement ast.NodeVisitor.visit_Constant
oe/utils: log exceptions in ThreadedWorker functions
testimage: fix unclosed testdata file
oeqa/runtime: load modules using importlib
oeqa/runtime: search sys.path explicitly for modules
vim: fix CVE-2021-3796, CVE-2021-3872, and CVE-2021-3875
vim: add patch number to CVE-2021-3778 patch
vim: fix CVE-2021-3927 and CVE-2021-3928
gmp: fix CVE-2021-43618
openssh: remove redundant BSD license
vim: fix CVE-2021-3968 and CVE-2021-3973
runqemu: check the qemu PID has been set before kill()ing it
cve-update-db-native: use fetch task
xserver-xorg: whitelist two CVEs
Sakib Sajal (7):
qemu: fix CVE-2021-20181
qemu: fix CVE-2021-3416
qemu: fix CVE-2021-20257
qemu: fix CVE-2021-3582
qemu: fix CVE-2021-3607
qemu: fix CVE-2021-3608
qemu: fix CVE-2021-3682
Saloni (1):
ffmpeg: Add fix for CVEs
Sana Kazi (1):
busybox: Fix multiple security issues in awk
Saul Wold (1):
gnupg: uprev 2.2.22 -> 2.2.23
Stefan Herbrechtsmeier (2):
recipetool: Set master branch only as fallback
selftest/devtool: Check branch in git fetch
Stefano Babic (1):
mtd-utils: upgrade 2.1.2 -> 2.1.3
Steve Sakoman (36):
documentation: prepare for 3.1.11 release
poky.conf: Bump version for 3.1.11 release
connman: add CVE_PRODUCT
gcc: fix missing dependencies for selftests
util-linux: Fix reproducibility
target/ssh.py: add HostKeyAlgorithms option to test commands
poky.conf: Add fedora 34 as a supported distro
poky.conf: Add debian 11 as a supported distro
selftest/reproducible: adjust exclusion list for dunfell
waffle: old website is down, update to new project URLs
stress-ng: convert to git, website is down
stress-ng: improve reproducibility
meta: Add explict branch to git SRC_URIs, handle github url changes
poky.conf: Bump version for 3.1.12 release
ref-system-requirements.rst: Add Debian 11 to list of supported distros
ref-system-requirements.rst: Add Fedora 34 to list of supported distros
documentation: prepare for 3.1.12 release
python3-magic: add missing DEPENDS
selftest/reproducible: add webkitgtk back to exclusion list for dunfell
Revert "vim: fix 2021-3796"
bind: update to 9.11.33
bind: update to 9.11.34
bind: update to 9.11.35
poky.conf: Bump version for 3.1.13 release
cve-extra-exclusions: add db CVEs to exclusion list
selftest: skip virgl test on centos 8 entirely
selftest: skip virgl test on fedora 34 entirely
libpcre2: update SRC_URI
selftest: skip virgl test on fedora 35
asciidoc: properly detect and compare Python versions >= 3.10
valgrind: skip flakey ptest (gdbserver_tests/hginfo)
oeqa/selftest/cases/tinfoil.py: increase timeout 60->120s test_wait_event
expat fix CVE-2022-22822 through CVE-2022-22827
expat: fix CVE-2021-45960
expat: fix CVE-2021-46143
poky.conf: Bump version for 3.1.14 release
Teoh Jay Shen (2):
oeqa/runtime/parselogs: modified drm error in common errors list
linux-yocto/5.4: update genericx86* machines to v5.4.158
Tim Orling (1):
scripts/buildhistory-diff: drop use of distutils
Tom Pollard (2):
bzip2: Update soname for libbz2 1.0.8
libsamplerate0: Set correct soname for 0.1.9
Visa Hankala (1):
iputils: Fix regression of arp table update
Wang Mingyu (6):
gnupg: upgrade 2.2.26 -> 2.2.27
dbus: upgrade 1.12.16 -> 1.12.18
dbus-test: upgrade 1.12.16 -> 1.12.18
dbus: upgrade 1.12.18 -> 1.12.20
e2fsprogs: upgrade 1.45.6 -> 1.45.7
openssh: Improve LICENSE to show BSD license variants.
William A. Kennington III (1):
rm_work.bbclass: Fix for files starting with -
Yi Zhao (1):
oeqa: fix warnings for append operators combined with +=
jbouchard (1):
Use the label provided when formating a dos partition
sana kazi (3):
openssh: Fix CVE-2021-28041
openssh: Fix CVE-2021-41617
openssh: Whitelist CVE-2016-20012
wangmy (1):
linux-firmware: upgrade 20211027 -> 20211216
meta-raspberrypi: 59c2d6f7a8..934064a019:
Changqing Li (1):
99-com.rules: fix error invalid substitution type
Marcel Hamer (1):
recipes: Update SRC_URI protocols for github
Pavel Zhukov (1):
linux-firmware-rpidistro: Use buster branch instead of master
meta-security: 6466c6fb02..b76698c788:
Armin Kuster (1):
linux-%_5.%.bbappend: drop recipe
meta-openembedded: 4a0d93d250..ab9fca485e:
Alexander Thoma (1):
keyutils: fix install path
Anastasios Kavoukis (1):
pm-qa: fix paths for shell scripts
Andreas Weger (3):
spirv-tools: Define SRCREV_FORMAT
grpc: Define SRCREV_FORMAT
drdb-utils: Define SRCREV_FORMAT
Armin Kuster (7):
xterm: Security fix for CVE-2021-27135
tcpdump: Exclude CVE-2020-8036 from check
nss: Two Security fixes CVE-2020-6829 and 12400
dnsmasq: Security fix CVE-2021-3448
Apache: Several CVE fixes
redis: update to 5.0.14
recipes: Update SRC_URI branch and protocols
Armin kuster (1):
dovecot: refresh patches
Changqing Li (1):
apache2: upgrade 2.4.46 -> 2.4.48
Ernst Sjöstrand (1):
libmicrohttpd: Add patch to fix CVE-2021-3466
Gianfranco (3):
dlt-daemon: update to 2.18.5
dlt-daemon: fix build failure when dlt-dbus is enabled, due to missing service file.
dlt-daemon: update from 2.18.6 to 2.18.7
Gianfranco Costamagna (3):
dlt-daemon: fix build with upstream-proposed patch for MUSL libc
dlt-daemon: superseed upstream pr #238 patch with pr #245 due to unexpected behaviour
dlt-daemon: update to new release 2.18.6
Jeremy Puhlman (1):
c-ares: switch from master to main
Khem Raj (2):
gst-shark: Define SRCREV_FORMAT
android-tools: Define SRCREV_FORMAT
Konrad Weihmann (1):
gattlib: remove includedir from base package
Marek Vasut (1):
dstat: Add missing python-six runtime dependency
Marta Rybczynska (1):
jansson: whitelist CVE-2020-36325
Martin Jansa (1):
sdbus-c++: don't fetch googletest during do_configure
Maíra Canal via (1):
python3-fasteners: update 0.15 -> 0.16.3
Neetika Singh (1):
c-ares: Add fix for CVE-2021-3672
Pierre-Jean Texier (1):
stunnel: upgrade 5.56 -> 5.57
Purushottam Choudhary (1):
tcpdump: Update CVE-2020-8037 tag
Ranjitsinh Rathod (1):
nss: Fix CVE-2020-12403
Richard Purdie (1):
gattlib: Place pkgconfig file in correct package
Robert Joslyn (1):
postgresql: Update to 12.9
Spectrejan (1):
brotli: add patch to fix CVE-2020-8927
Yi Zhao (3):
krb5: fix CVE-2021-36222
postfix: fix build with glibc 2.34
postfix: upgrade 3.4.12 -> 3.4.23
Zang Ruochen (1):
c-ares: upgrade 1.16.0 -> 1.16.1
lumag (1):
lmsensors: do not depend on lmsensors-isatools on non-x86
sana kazi (4):
dovecot: Fix CVE-2020-12100
dovecot: Fix CVE-2020-12673
dovecot: Fix CVE-2020-12674
nss: Fix CVE-2021-43527
wangmy (1):
apache2: upgrade 2.4.48 -> 2.4.49
Signed-off-by: Patrick Williams <patrick@stwcx.xyz>
Change-Id: Ic7c24b8b9d1566d6273e388c20d242dbfeaf08de
|
|
Update poky to sumo HEAD.
Changqing Li (1):
libsndfile1: CVE-2018-13139
Chen Qi (2):
runqemu: add SIGTERM handler to make sure things are cleaned up
runqemu: fix handling of SIGTERM and the problem of line wrapping
Hongxu Jia (1):
nasm: fix CVE-2018-10016
Ioan-Adrian Ratiu (1):
rootfs: always update the opkg index
Jagadeesh Krishnanjanappa (1):
runqemu: exit gracefully with an error message if qemu system is not evaluated
Joe Slater (1):
libtiff: fix CVE-2017-17095
Khem Raj (1):
x264: Disable asm on musl/x86
Nicolas Dechesne (1):
checklayer: avoid recursive loop in add_layer_dependencies
Ola x Nilsson (1):
externalsrc.bbclass: Set BB_DONT_CACHE for non-target recipes
Richard Purdie (1):
recipes: Update git.gnome.org addresses after upstream changes
Sinan Kaya (3):
libxml2: CVE-2018-14404
python3: CVE-2018-1061
git: CVE-2018-11233
Change-Id: Ic2daa2803af197180e605346f59bab03f8264e19
Signed-off-by: Brad Bishop <bradleyb@fuzziesquirrel.com>
|
|
Update external subtrees to latest Yocto sumo.
Change-Id: I8364f32bef079841c6e57f1c587f4b1bedf62fef
Signed-off-by: Brad Bishop <bradleyb@fuzziesquirrel.com>
|
|
As part of the move to subtrees, need to bring all the import layers
content to the top level.
Change-Id: I4a163d10898cbc6e11c27f776f60e1a470049d8f
Signed-off-by: Dave Cobbley <david.j.cobbley@linux.intel.com>
Signed-off-by: Brad Bishop <bradleyb@fuzziesquirrel.com>
|