On Wed, 7 Sept 2022 at 11:15, Richard Purdie
wrote:
> To set expectations, I'm probably not going to merge this for 4.1. I
> think we've taken some really good steps in the direction we need so
> far but we don't want to rush this. I haven't had the time needed to
> look at these patches properly
Thanks, felt ambiguous first about using negation.
Fixed in v3:
https://patchwork.yoctoproject.org/project/oe-core/patch/20220907092333.3248421-1-niko.ma...@vaisala.com/
-Niko
On 7.9.2022 10.26, Alexander Kanavin wrote:
I would rather invert this, and define 'no-dns-fallback', off by
systemd defines a default set of fallback DNS servers in
https://github.com/systemd/systemd/blob/v251/meson_options.txt#L328-L330
By adding a PACKAGECONFIG knob providing a convenient way to opt out,
and then removing that value from systemd's PACKAGECONFIG, the output
from runtime 'resolvectl
On Mon, 2022-09-05 at 20:21 +0200, Alexander Kanavin wrote:
> This is the last (I believe) piece of the puzzle in setting up builds
> from nothing without having to write custom scripts or use external
> tools.
>
> After layers have been fetched and placed into their respective
> locations, one
Thanks, I think it's more clear this way. PACKAGECONFIGs that do
nothing when on, and something when off are harder to grasp.
Alex
On Wed, 7 Sept 2022 at 11:28, Niko Mauno wrote:
>
> Thanks, felt ambiguous first about using negation.
> Fixed in v3:
>
Alright, v2 is out. Changes are: switch to subcommands, and use 'build
environment' or 'build directory' in place of ambigous 'build'.
Alex
On Tue, 6 Sept 2022 at 14:35, Alexander Kanavin via
lists.openembedded.org
wrote:
>
> On Tue, 6 Sept 2022 at 14:25, Peter Kjellerstedt
> wrote:
>
> >
systemd defines a default set of fallback DNS servers in
https://github.com/systemd/systemd/blob/v251/meson_options.txt#L328-L330
By adding a PACKAGECONFIG knob providing a convenient way to opt out,
and then adding that value to systemd's PACKAGECONFIG, the output from
runtime 'resolvectl
On Wed, 2022-09-07 at 07:48 +0530, Sundeep KOKKONDA wrote:
> [YOCTO #14892]
> This is a fix for the fix in YOCTO #14878. When the shebang is more than
> 128 characters the default shell /bin/sh is used instead of SDK shell as
> a fallback, which causes problems with LD_LIBRARY_PATH. With this
I would rather invert this, and define 'no-dns-fallback', off by default.
Alex
On Wed, 7 Sept 2022 at 09:12, niko.ma...@vaisala.com via
lists.openembedded.org
wrote:
>
> systemd defines a default set of fallback DNS servers in
>
This is the last (I believe) piece of the puzzle in setting up builds from
nothing
without having to write custom scripts or use external tools.
After layers have been fetched and placed into their respective locations, one
would
surely want to proceed to the actual build, and here's how:
1.
This holds true for the default core/poky template, but not
anything else. Eventually there will be fragments and associated
tooling.
Signed-off-by: Alexander Kanavin
---
scripts/oe-setup-builddir | 3 +--
1 file changed, 1 insertion(+), 2 deletions(-)
diff --git a/scripts/oe-setup-builddir
setUpLocal runs before every testcase, setUpClass runs only once in
the beginning.
Signed-off-by: Alexander Kanavin
---
meta/lib/oeqa/selftest/cases/bblayers.py | 4 +++-
1 file changed, 3 insertions(+), 1 deletion(-)
diff --git a/meta/lib/oeqa/selftest/cases/bblayers.py
On Wed, 2022-09-07 at 14:02 +0100, Ross Burton wrote:
> This patch is no longer needed, the upstream Makefile exports CPP from
> CPP_FOR_BUILD since 12.1.
>
> Signed-off-by: Ross Burton
> ---
> meta/recipes-devtools/gcc/gcc-12.2.inc| 1 -
> .../gcc/gcc/0012-export-CPP.patch
Hi Steve,
I have tested this and it seems the patch is working fine.
I'm attaching the patch file as an attachment, please use this and let me know
if that works.
It seems like something went wrong during sending using kpit email ID and
currently using my gmail account I am facing the issues
The -Werror=poison-system-directories argument was being passed to runs
where _just_ CPP was being invoked, so it wasn't passed to runs which
also compile. Add the options to cc1_options so that compile runs also
have fatal poisoning errors.
Signed-off-by: Ross Burton
---
This patch is no longer needed, the upstream Makefile exports CPP from
CPP_FOR_BUILD since 12.1.
Signed-off-by: Ross Burton
---
meta/recipes-devtools/gcc/gcc-12.2.inc| 1 -
.../gcc/gcc/0012-export-CPP.patch | 50 ---
2 files changed, 51 deletions(-)
delete
After a recent fix in bitbake, the checksums may be checked for local file
fetches at an earlier code point. The underlying recipe checksums won't
match sstate values so ensure these aren't set via SRC_URI flags when
reconfiguring the fetch for sstate.
Signed-off-by: Richard Purdie
---
It was discovered by Martin Jansa that the sysroot poisoning errors are
not functioning as they should. Due to either a bug from day 1 or a
bad rebase, -Werror=poison-system-directories is only passed when GCC
is invoking _just_ the preprocessor, not the compiler.
Demonstrate this by expanding
Signed-off-by: Ulrich Ölmann
---
meta/classes/icecc.bbclass | 46 +++---
1 file changed, 23 insertions(+), 23 deletions(-)
diff --git a/meta/classes/icecc.bbclass b/meta/classes/icecc.bbclass
index a11e781f00f7..8f06e9dd7082 100644
---
The removed command was explicitly marked as transitional in commit [1] roughly
three years ago, so finally clean up.
[1] 40d74cb1d0dd ("icecc: Export ICECC_CC and friends via wrapper-script")
Signed-off-by: Ulrich Ölmann
---
meta/classes/icecc.bbclass | 1 -
1 file changed, 1 deletion(-)
* fixes:
http://errors.yoctoproject.org/Errors/Details/671441/
cc1plus: error: include location "/usr/include/gstreamer-1.0" is unsafe for
cross-compilation [-Werror=poison-system-directories]
Signed-off-by: Martin Jansa
---
.../fix-gstreamer-include-paths.patch | 51
From: Martin Jansa
* but it still won't work well on hosts without libxml2, make
sure to use pre-generated testapi.c in do_compile_ptest
* this is reproducible with SOURCE_DATE_EPOCH set to 0 which
e.g. meta-updater still sets by default for DISTROs which
use it :(, see
On Mon, 2022-09-05 at 22:56 +0100, Richard Purdie wrote:
> On Mon, 2022-09-05 at 20:25 +0530, pgowda cve wrote:
> > Hi Richard,
> >
> > Thanks very much for reviewing the patch and your comments regarding it.
> >
> > > > thread 'main' panicked at 'RUSTDOC_LIBDIR was not set',
> > > >
From: Richard Purdie
Pull in some minor fixes:
pseudo_util: Silence symlink errors and fix resolution bug
ports/linux: Remove build dependency on libattr
Minor build fixes
pseudo_util: Fix resolving relative paths from "/"
Signed-off-by: Richard Purdie
(cherry picked from commit
From: Enrico Scholz
'npm pack' is a maintainer tool which tries to execute 'prepare'
and similar scripts. This fails usually in OE because it requires
completely installed 'node_modules'.
Earlier nodejs versions supported an undocumented 'ignore-scripts'
option. This has been removed in
From: Ulrich Ölmann
Signed-off-by: Ulrich Ölmann
Signed-off-by: Richard Purdie
(cherry picked from commit 217b00d378f359689613ca4c0666bb2eed040f69)
Signed-off-by: Steve Sakoman
---
scripts/runqemu.README | 16
1 file changed, 8 insertions(+), 8 deletions(-)
diff --git
From: Khem Raj
AC_TRY_RUN macro means the test needs to run to find the result and we
are cross compiling so this will always get wrong results, this results
in miscompiling apache2 on musl because it disables rlimit
(ac_cv_struct_rlimit) wrongly.
All these variables are determined with
From: Ming Liu
Sometimes an end user might want to choose another kernel type argument
for uboot-mkimage other than "kernel", for instance: "kernel_noload".
Let's introduce a variable UBOOT_MKIMAGE_KERNEL_TYPE to support that,
and it could be used by BSP layers as well.
(From OE-Core rev:
From: Enrico Scholz
We have to read 'package.json' to calculate the name of the tarball.
This content is interesting for later patches.
Signed-off-by: Enrico Scholz
Signed-off-by: Richard Purdie
(cherry picked from commit d67367e389c492ae90f9021066d6a4d5ebcf68e5)
Signed-off-by: Steve Sakoman
From: Rasmus Villemoes
Currently, there's no way for the user's site.conf, local.conf or
similar to set BB_DEFAULT_UMASK, because those files are included by
bitbake.conf prior to the unconditional assignment of
BB_DEFAULT_UMASK. To make that possible, use a weak default assignment
instead. This
From: Enrico Scholz
We know the content of 'package.json' from earlier patches; there is
no need to parse the tarball name to extract the version.
Signed-off-by: Enrico Scholz
Signed-off-by: Richard Purdie
(cherry picked from commit f553e528e76f7e3925ed1c0950d96e73aec37da9)
Signed-off-by:
From: Enrico Scholz
Helper module to:
- generate meta information from package.json content. This data has
a format as provided by https://registry.npmjs.org
- put this meta information and the corresponding tarball in the
nodejs cache. This uses an external, nodejs version specific
From: wangmy
CVE-2021-3520.patch
removed since it's included in 1.9.4
License-Update:
Copyright year updated to 2020
description of 3rd party applications changed
Signed-off-by: Wang Mingyu
Signed-off-by: Alexandre Belloni
(cherry picked from commit
From: wangmy
Changelog:
Fix the build when using Clang's libc++ or the Musl libc.
0001-Fix-build-failure-due-to-libc-using-libc-functions.patch
removed since it's included in 1.12.3
Signed-off-by: Wang Mingyu
Signed-off-by: Alexandre Belloni
(cherry picked from commit
From: Alex Stewart
Alex Stewart assumed maintainership of the yocto project's opkg fork,
and opkg recipes, from Alejandro Del Castilo back in Q1 of 2020.
Update maintainership of the opkg recipes.
Signed-off-by: Alex Stewart
Signed-off-by: Luca Ceresoli
(cherry picked from commit
From: Enrico Scholz
With nodejs 16, the simple 'npm cache add' approach does not work
anymore because its fetcher implementation downloads also meta
information from the registry.
We have to generate these information and add them to the cache.
There is no direct support in 'npm' for task so we
From: LUIS ENRIQUEZ
This allows choosing padding algorithm when building fitImage. It may be
pkcs-1.5 or pss.
Signed-off-by: LUIS ENRIQUEZ
Signed-off-by: Alexandre Belloni
(cherry picked from commit 29d5336c728b28890bbaadebf0ccff00ad90a64d)
Signed-off-by: Ming Liu
Signed-off-by: Steve
From: Yang Xu
The full path of patch may contain '/meta/' but not in oe-core, skip
patches by checking it starts with oe-core full path or not.
Signed-off-by: Yang Xu
Signed-off-by: Alexandre Belloni
(cherry picked from commit d8a525afdfb5d371e76b09301c8b2741d23d1d10)
Signed-off-by: Steve
On Wed, 2022-09-07 at 20:34 +0530, pgowda cve wrote:
> Hi Richard,
>
> Thanks for pointing this out and your help in improving the patch.
> I am using an Ubuntu-18.04 machine and am not able to see the error.
>
> > > Something is mangling spaces in your patch. There shouldn't be tabs here.
>
From: Riyaz Khan
Add patch to fix CVE-2021-28861
CVE-2021-28861.patch
Link:
https://github.com/python/cpython/commit/4dc2cae3abd75f386374d0635d00443b897d0672
Signed-off-by: Riyaz Khan
---
.../python/python3/CVE-2021-28861.patch | 135 ++
lgtm. it should have been dropped for I forgot.
On Wed, Sep 7, 2022 at 6:02 AM Ross Burton wrote:
>
> This patch is no longer needed, the upstream Makefile exports CPP from
> CPP_FOR_BUILD since 12.1.
>
> Signed-off-by: Ross Burton
> ---
> meta/recipes-devtools/gcc/gcc-12.2.inc| 1 -
>
connman has nfsroot support built in since version 1.34 [1], so the
nfsroot handling in the init script is redundant.
[1]
https://git.kernel.org/pub/scm/network/connman/connman.git/commit/?id=ef0d26e6ef2b883193469f016117d8238c1c9658
Signed-off-by: Tom Hochstein
---
.../connman/connman/connman
From: Vyacheslav Yurkov
Signed-off-by: Vyacheslav Yurkov
---
meta/files/overlayfs-etc-preinit.sh.in | 14 +-
1 file changed, 9 insertions(+), 5 deletions(-)
diff --git a/meta/files/overlayfs-etc-preinit.sh.in
b/meta/files/overlayfs-etc-preinit.sh.in
index 43c9b04eb9..0e80849f12
From: Vyacheslav Yurkov
The test checked the incorrect class use with INHERIT. This
functionality is now covered by bitbake
Signed-off-by: Vyacheslav Yurkov
---
meta/lib/oeqa/selftest/cases/overlayfs.py | 13 +
1 file changed, 1 insertion(+), 12 deletions(-)
diff --git
From: Vyacheslav Yurkov
Place a test file on the /etc by means of overlayfs-user recipe.
Perform QA checks to make sure that:
- When lower layer is exposed, that it's read-only to avoid undefined behavior
- By default lower layer is not exposed
Signed-off-by: Vyacheslav Yurkov
---
From: Vyacheslav Yurkov
Add the ability to expose the lower layer of /etc when mounting overlay.
This is the similar to what overlayroot script from initramfs-framework does.
By default, this option is turned off to keep an old behavior intact.
Signed-off-by: Vyacheslav Yurkov
---
From: Vyacheslav Yurkov
OverlayFS classes belong to a recipe scope
Signed-off-by: Vyacheslav Yurkov
---
meta/{classes => classes-recipe}/overlayfs-etc.bbclass | 0
meta/{classes => classes-recipe}/overlayfs.bbclass | 0
2 files changed, 0 insertions(+), 0 deletions(-)
rename
From: pgowda
The patch implements Rust testing framework similar to other selftest,
specifically the gcc selftest in OE. It uses the client and server
based method to test the binaries for cross-target on the image.
The test framework is a wrapper around the Rust build system as ./x.py
test. It
Hi Richard,
Thanks for pointing this out and your help in improving the patch.
I am using an Ubuntu-18.04 machine and am not able to see the error.
>> Something is mangling spaces in your patch. There shouldn't be tabs here.
Fixed.
>> I think this can be merged with the RustSelfTestBase class
From: pgowda
Upstream-Status: Backport
[https://sourceware.org/git/gitweb.cgi?p=binutils-gdb.git;h=ef186fe54aa6d281a3ff8a9528417e5cc614c797]
Signed-off-by: pgowda
Signed-off-by: Steve Sakoman
---
.../binutils/binutils-2.38.inc| 1 +
.../binutils/0015-CVE-2022-38533.patch
From: Ross Burton
We can have multiple processes reading the database at the same time, and
cursors only release their locks when they're garbage collected.
This might be the cause of random sqlite errors on the autobuilder, so
explicitly close the cursors when we're done with them.
From: Richard Purdie
Addresses CVE-2022-2980, CVE-2022-2946 and CVE-2022-2982.
Signed-off-by: Richard Purdie
Signed-off-by: Alexandre Belloni
(cherry picked from commit 01c08d47ecfcc7aefacc8280e0055c75b13795b2)
Signed-off-by: Steve Sakoman
---
meta/recipes-support/vim/vim.inc | 4 ++--
1
From: wangmy
Changelog:
===
- Clarify libtasn1.map license. Closes: #38.
- Fix ETYPE_OK out of bounds read. Closes: #32.
- Update gnulib files and various maintenance fixes.
Signed-off-by: Wang Mingyu
Signed-off-by: Alexandre Belloni
(cherry picked from commit
Please review this set of patches for kirkstone and have comments back by
end of day Friday.
Passed a-full on autobuilder:
https://autobuilder.yoctoproject.org/typhoon/#/builders/83/builds/4192
The following changes since commit 2363d69d687fc8e53a7c97bf5300e59c9a04f22e:
gcr: Define
From: Chee Yang Lee
SRC_URI include patch introduced in oe-core commit
fdc82b2314b580c0135c16b7278ebf8786311dec
Signed-off-by: Chee Yang Lee
Signed-off-by: Steve Sakoman
---
meta/recipes-support/sqlite/sqlite3_3.38.5.bb | 4 +++-
1 file changed, 3 insertions(+), 1 deletion(-)
diff --git
From: Robert Joslyn
https://curl.se/docs/CVE-2022-35252.html
Signed-off-by: Robert Joslyn
Signed-off-by: Steve Sakoman
---
.../curl/curl/CVE-2022-35252.patch| 72 +++
meta/recipes-support/curl/curl_7.82.0.bb | 1 +
2 files changed, 73 insertions(+)
create
From: Joshua Watt
The CVE check database needs to have a shared lock acquired on it before
it is accessed. This to prevent cve-update-db-native from deleting the
database file out from underneath it.
[YOCTO #14899]
Signed-off-by: Joshua Watt
Signed-off-by: Richard Purdie
(cherry picked from
From: wangmy
2022-08-18 Userspace RCU 0.13.2
* Revert "Fix: remove type constness in URCU_FORCE_CAST's C++ version"
* Fix: futex.h: include headers outside extern C
* Fix: add missing unused attribute to _rcu_dereference
* Fix: change method used by
From: wangmy
License-Update: Adjust/reformat content of LICENSING.txt
=
"libatomic_ops_gpl.a" changed to "libatomic_ops_gpl.a file"
"sysdeps" changed to "atomic_ops/sysdeps"
"This applies only to test code, sample applications," changed
systemd defines a default set of fallback DNS servers in
https://github.com/systemd/systemd/blob/v251/meson_options.txt#L328-L330
By adding a PACKAGECONFIG knob providing a convenient way to opt out,
and then adding that value to systemd's PACKAGECONFIG, the output from
runtime 'resolvectl
On Wed, 2022-09-07 at 11:34 +0200, Alexander Kanavin wrote:
> Thanks, I think it's more clear this way. PACKAGECONFIGs that do
> nothing when on, and something when off are harder to grasp.
Thanks, I agree this looks better FWIW :)
Cheers,
Richard
-=-=-=-=-=-=-=-=-=-=-=-
Links: You receive all
There are package like mdio-netlink in meta-oe which need this feature
to be available, it has started to fail with 5.19
Signed-off-by: Khem Raj
Cc: Bruce Ashfield
---
meta/recipes-kernel/linux/linux-yocto_5.19.bb | 2 +-
1 file changed, 1 insertion(+), 1 deletion(-)
diff --git
When building using an SDK, cmake complains that the target
architecture 'cortexa53-crypto' is unknown. The same build in bitbake
uses the target architecture 'aarch64'.
Set CMAKE_SYSTEM_PROCESSOR the same as for bitbake.
Signed-off-by: Tom Hochstein
---
Fail to build on beaglebone-yocto.
/build/tmp-glibc/work/cortexa8hf-neon-wrs-linux-gnueabi/webkitgtk/2.36.7-r0/webkitgtk-2.36.7/Source/W
ebCore/platform/graphics/filters/FELighting.h:72:41: error:
'LightingData' does not name a type
72 | inline void platformApplyNeon(const
This file is already packaged via nativesdk-gprofng and can cause
populate SDK conflicts
Signed-off-by: Khem Raj
---
meta/recipes-devtools/binutils/binutils-cross-canadian.inc | 3 +--
1 file changed, 1 insertion(+), 2 deletions(-)
diff --git
Signed-off-by: Khem Raj
---
meta/recipes-devtools/vala/vala_0.56.2.bb | 3 ---
meta/recipes-devtools/vala/vala_0.56.3.bb | 3 +++
2 files changed, 3 insertions(+), 3 deletions(-)
delete mode 100644 meta/recipes-devtools/vala/vala_0.56.2.bb
create mode 100644
On Wed, Sep 7, 2022 at 6:05 PM Khem Raj wrote:
>
> There are package like mdio-netlink in meta-oe which need this feature
> to be available, it has started to fail with 5.19
Fine with me!
Bruce
>
> Signed-off-by: Khem Raj
> Cc: Bruce Ashfield
> ---
>
Signed-off-by: Khem Raj
Cc: Mingli Yu
---
v2: Fix commit msg format
...44e17d258106617b0e6d783d073b188a2548.patch | 311 ++
meta/recipes-sato/webkit/webkitgtk_2.36.7.bb | 1 +
2 files changed, 312 insertions(+)
create mode 100644
From: Virendra Thakur
Add Patch to fix CVE-2022-2867, CVE-2022-2868
CVE-2022-2869
Signed-off-by: Virendra Thakur
---
...022-2867-CVE-2022-2868-CVE-2022-2869.patch | 159 ++
meta/recipes-multimedia/libtiff/tiff_4.1.0.bb | 1 +
2 files changed, 160 insertions(+)
create mode
Hi Khem,
On 9/8/22 10:19, Khem Raj wrote:
[Please note: This e-mail is from an EXTERNAL e-mail address]
On Wed, Sep 7, 2022 at 6:43 PM Yu, Mingli wrote:
Fail to build on beaglebone-yocto.
/build/tmp-glibc/work/cortexa8hf-neon-wrs-linux-gnueabi/webkitgtk/2.36.7-r0/webkitgtk-2.36.7/Source/W
https://patchwork.yoctoproject.org/project/oe-core/patch/20220908021846.2245323-1-raj.k...@gmail.com/
On Wed, Sep 7, 2022 at 9:16 PM Yu, Mingli wrote:
>
> Hi Khem,
>
> On 9/8/22 10:19, Khem Raj wrote:
> > [Please note: This e-mail is from an EXTERNAL e-mail address]
> >
> > On Wed, Sep 7, 2022
Signed-off-by: Khem Raj
Cc: Mingli Yu
---
...44e17d258106617b0e6d783d073b188a2548.patch | 311 ++
meta/recipes-sato/webkit/webkitgtk_2.36.7.bb | 1 +
2 files changed, 312 insertions(+)
create mode 100644
On Wed, Sep 7, 2022 at 6:43 PM Yu, Mingli wrote:
>
>
> Fail to build on beaglebone-yocto.
>
> /build/tmp-glibc/work/cortexa8hf-neon-wrs-linux-gnueabi/webkitgtk/2.36.7-r0/webkitgtk-2.36.7/Source/W
> ebCore/platform/graphics/filters/FELighting.h:72:41: error:
> 'LightingData' does not name a type
>
Please review this set of patches for dunfell and have comments back by
end of day Friday.
Passed a-full on autobuilder:
https://autobuilder.yoctoproject.org/typhoon/#/builders/83/builds/4200
The following changes since commit 345193f36d08cfe4899c65e8edf3f79db09c50d2:
relocate_sdk.py: ensure
From: Hitendra Prajapati
Source: https://www.sqlite.org/
MR: 120541
Type: Security Fix
Disposition: Backport from https://www.sqlite.org/src/info/aab790a16e1bdff7
ChangeID: cf6d0962be0d1f7d4a5019843da6349eb7f9acda
Description:
CVE-2022-35737 sqlite: assertion failure via query when
From: Robert Joslyn
https://curl.se/docs/CVE-2022-35252.html
Signed-off-by: Robert Joslyn
Signed-off-by: Steve Sakoman
---
.../curl/curl/CVE-2022-35252.patch| 72 +++
meta/recipes-support/curl/curl_7.69.1.bb | 1 +
2 files changed, 73 insertions(+)
create
From: Ranjitsinh Rathod
Add patch to fix CVE-2021-23177 issue for libarchive
Link:
http://deb.debian.org/debian/pool/main/liba/libarchive/libarchive_3.4.3-2+deb11u1.debian.tar.xz
Signed-off-by: Ranjitsinh Rathod
Signed-off-by: Steve Sakoman
---
.../libarchive/CVE-2021-23177.patch
From: Ross Burton
We can have multiple processes reading the database at the same time, and
cursors only release their locks when they're garbage collected.
This might be the cause of random sqlite errors on the autobuilder, so
explicitly close the cursors when we're done with them.
From: Richard Purdie
Addresses CVE-2022-2980, CVE-2022-2946 and CVE-2022-2982.
Signed-off-by: Richard Purdie
Signed-off-by: Alexandre Belloni
(cherry picked from commit 01c08d47ecfcc7aefacc8280e0055c75b13795b2)
Signed-off-by: Steve Sakoman
---
meta/recipes-support/vim/vim.inc | 4 ++--
1
From: Ranjitsinh Rathod
Add patch to fix CVE-2021-31566 issue for libarchive
Link:
http://deb.debian.org/debian/pool/main/liba/libarchive/libarchive_3.4.3-2+deb11u1.debian.tar.xz
Signed-off-by: Ranjitsinh Rathod
Signed-off-by: Steve Sakoman
---
.../libarchive/CVE-2021-31566-01.patch
From: Joshua Watt
The CVE check database needs to have a shared lock acquired on it before
it is accessed. This to prevent cve-update-db-native from deleting the
database file out from underneath it.
[YOCTO #14899]
Signed-off-by: Joshua Watt
Signed-off-by: Richard Purdie
(cherry picked from
81 matches
Mail list logo