The following changes since commit 79ce9059f716546a7d6f4562ba194aedd90c22cd:
grub: add a fix for a crash in scripts (2022-02-23 05:00:42 -1000) are available in the Git repository at: git://git.openembedded.org/openembedded-core-contrib stable/dunfell-next http://cgit.openembedded.org/openembedded-core-contrib/log/?h=stable/dunfell-next Jose Quaresma (1): buildhistory.bbclass: create the buildhistory directory when needed Marek Vasut (1): bootchart2: Add missing python3-math dependency Michael Halstead (1): uninative: Upgrade to 3.5 Minjae Kim (2): go: fix CVE-2022-23806 go: fix CVE-2022-23772 Nathan Rossi (1): cml1.bbclass: Handle ncurses-native being available via pkg-config Richard Purdie (2): libxml-parser-perl: Add missing RDEPENDS uninative: Add version to uninative tarball name Ross Burton (3): coreutils: remove obsolete ignored CVE list cve-check: get_cve_info should open the database read-only Revert "cve-check: add lockfile to task" Steve Sakoman (5): expat: fix CVE-2022-25235 expat: fix CVE-2022-25236 expat: fix CVE-2022-25313 expat: fix CVE-2022-25314 expat: fix CVE-2022-25315 Virendra Thakur (1): libarchive: Fix for CVE-2021-36976 wangmy (1): wireless-regdb: upgrade 2021.08.28 -> 2022.02.18 meta/classes/buildhistory.bbclass | 1 + meta/classes/cml1.bbclass | 8 + meta/classes/cve-check.bbclass | 4 +- meta/classes/uninative.bbclass | 2 +- meta/conf/distro/include/yocto-uninative.inc | 11 +- meta/recipes-core/coreutils/coreutils_8.31.bb | 3 - .../expat/expat/CVE-2022-25235.patch | 283 +++++++++++++++ .../expat/expat/CVE-2022-25236.patch | 129 +++++++ .../expat/CVE-2022-25313-regression.patch | 131 +++++++ .../expat/expat/CVE-2022-25313.patch | 230 +++++++++++++ .../expat/expat/CVE-2022-25314.patch | 32 ++ .../expat/expat/CVE-2022-25315.patch | 145 ++++++++ meta/recipes-core/expat/expat_2.2.9.bb | 6 + .../bootchart2/bootchart2_0.14.9.bb | 2 +- meta/recipes-devtools/go/go-1.14.inc | 2 + .../go/go-1.14/CVE-2022-23772.patch | 50 +++ .../go/go-1.14/CVE-2022-23806.patch | 142 ++++++++ .../perl/libxml-parser-perl_2.46.bb | 1 + .../libarchive/CVE-2021-36976-1.patch | 321 ++++++++++++++++++ .../libarchive/CVE-2021-36976-2.patch | 121 +++++++ .../libarchive/CVE-2021-36976-3.patch | 93 +++++ .../libarchive/libarchive_3.4.2.bb | 6 +- ....08.28.bb => wireless-regdb_2022.02.18.bb} | 2 +- 23 files changed, 1711 insertions(+), 14 deletions(-) create mode 100644 meta/recipes-core/expat/expat/CVE-2022-25235.patch create mode 100644 meta/recipes-core/expat/expat/CVE-2022-25236.patch create mode 100644 meta/recipes-core/expat/expat/CVE-2022-25313-regression.patch create mode 100644 meta/recipes-core/expat/expat/CVE-2022-25313.patch create mode 100644 meta/recipes-core/expat/expat/CVE-2022-25314.patch create mode 100644 meta/recipes-core/expat/expat/CVE-2022-25315.patch create mode 100644 meta/recipes-devtools/go/go-1.14/CVE-2022-23772.patch create mode 100644 meta/recipes-devtools/go/go-1.14/CVE-2022-23806.patch create mode 100644 meta/recipes-extended/libarchive/libarchive/CVE-2021-36976-1.patch create mode 100644 meta/recipes-extended/libarchive/libarchive/CVE-2021-36976-2.patch create mode 100644 meta/recipes-extended/libarchive/libarchive/CVE-2021-36976-3.patch rename meta/recipes-kernel/wireless-regdb/{wireless-regdb_2021.08.28.bb => wireless-regdb_2022.02.18.bb} (94%) -- 2.25.1
-=-=-=-=-=-=-=-=-=-=-=- Links: You receive all messages sent to this group. View/Reply Online (#162945): https://lists.openembedded.org/g/openembedded-core/message/162945 Mute This Topic: https://lists.openembedded.org/mt/89650554/21656 Group Owner: [email protected] Unsubscribe: https://lists.openembedded.org/g/openembedded-core/unsub [[email protected]] -=-=-=-=-=-=-=-=-=-=-=-
