From: Ross Burton
Backport the fix for CVE-2022-22707, a buffer overflow in mod_extforward.
(From OE-Core rev: d54d7e7b43da621be8e6fcca34feb7b3d49b8160)
Signed-off-by: Ross Burton
Signed-off-by: Richard Purdie
(cherry picked from commit 7758596613cc442f647fd4625b36532f30e6129f)
When applying a patch directly to a submodule, devtool doesn't need to
generate commits for updated submodule revisions, which may differ each
time a patch is applied to a devtool workspace. (submodule revision
commits would be effectively useless unless the patch is pushed to a
remote repo from
Ask git rev-parse to provide the path to the repo's hooks directory.
This allows devtool to support git submodules, where only the
superproject contains a .git directory.
git submodules contain .git files pointing to their parent repo,
which confuses devtool when it tries to modify the commit
rpmbuild can start processing random memory when processing the value
provided by XZ_THREADS, and unintentionally disable encoding for a
file descriptor that in fact requires encoding to be enabled in order
for lzwrite() to actually create an rpm.
*** Fdopen(0x7f2030002b30,w6T16.xzdio) | fdio
The following changes since commit 2d3c5b078feb34cb729902292d2805c9288ebc4c:
glibc : Fix CVE-2022-23219 (2022-01-25 11:11:18 +0800)
are available in the Git repository at:
git://push.openembedded.org/openembedded-core-contrib stable/honister-next
Alexander Kanavin (1):
libusb1: correct
All,
The triage team is starting to try and collect up and classify bugs which a
newcomer to the project would be able to work on in a way which means people
can find them. They're being listed on the triage page under the appropriate
heading:
Hi,
I was wondering why the package revision are not increasing when a patch is
apply to other project source, like this commit
https://git.openembedded.org/openembedded-core/commit/?h=honister=2d3c5b078feb34cb729902292d2805c9288ebc4c.
Most distribution tend to increase the package revision
On Mon, 7 Feb 2022, Joshua Watt wrote:
>
> On 2/7/22 14:33, Scott Murray wrote:
> > On Mon, 7 Feb 2022, Saul Wold wrote:
> >
> >> This patch will read the begining of source files and try to find
> >> the SPDX-License-Identifier to populate the licenseInfoInFiles
> >> field for each source file.
On 2/7/22 14:33, Scott Murray wrote:
On Mon, 7 Feb 2022, Saul Wold wrote:
This patch will read the begining of source files and try to find
the SPDX-License-Identifier to populate the licenseInfoInFiles
field for each source file. This does not populate licenseConcluded
at this time, nor
On Mon, 7 Feb 2022, Saul Wold wrote:
> This patch will read the begining of source files and try to find
> the SPDX-License-Identifier to populate the licenseInfoInFiles
> field for each source file. This does not populate licenseConcluded
> at this time, nor rolls it up to package level.
>
> We
This patch will read the begining of source files and try to find
the SPDX-License-Identifier to populate the licenseInfoInFiles
field for each source file. This does not populate licenseConcluded
at this time, nor rolls it up to package level.
We read as binary file since some source code seem
Upgrading from one yocto release to a different yocto release with a
package manager is not supported or tested. You need to replace the
image completely.
Alex
On Mon, 7 Feb 2022 at 19:49, Bryan Evenson wrote:
>
> All,
>
> I'm having some upgrade issues related to upgrading libglib-2.0-0. I
All,
I'm having some upgrade issues related to upgrading libglib-2.0-0. I have a
device that is based on the morty release that I am upgrading to a build based
on the dunfell release. I am using opkg for a package manager. During upgrade
I see the error message in the subject. I think I
I'm currently testing a number of CVE fixes for dunfell, so please
check here first so you don't duplicate work!
https://git.yoctoproject.org/poky-contrib/log/?h=stable/dunfell-nut
Steve
-=-=-=-=-=-=-=-=-=-=-=-
Links: You receive all messages sent to this group.
View/Reply Online (#161462):
> Richard Purdie hat am 03.02.2022 14:07
> geschrieben:
>
> Hi,
>
> On Fri, 2022-01-28 at 13:22 +0100, Tobias Neumann wrote:
> > regarding my bug report
> > https://bugzilla.yoctoproject.org/show_bug.cgi?id=14703 I was
> > forwarded to here to discuss requirements for a proper fix.
> >
> > In
Changelog:
=
* Improve documentation for --timeout due to a few misconceptions.
Add an allowed-to-fail test regarding a regression in directory handling.
* Tidy control flow in Difference._reverse_self a little.
* Fix diffing CBFS names that contain spaces.
Signed-off-by: Wang Mingyu
Am 06.02.2022 um 20:05 schrieb Mark Hatle:
On 2/6/22 11:35 AM, Richard Purdie wrote:
On Sun, 2022-02-06 at 18:31 +0100, Alexander Kanavin wrote:
On Sun, 6 Feb 2022 at 18:27, Mark Hatle
wrote:
It definitely works in Honister (I'm actively using it.)
We produce a single package set, then
On Mon, 7 Feb 2022 at 11:03, Richard Purdie <
richard.pur...@linuxfoundation.org> wrote:
> > +This breaks reproducibility as git builds on centos 7 use
> > +different flags than git builds on other host distros.
> > +
> > +Upstream-Status: Inappropriate [upstream needs to check compiler and
>
On Mon, 2022-02-07 at 10:16 +0100, Alexander Kanavin wrote:
> Signed-off-by: Alexander Kanavin
> ---
> ...-do-not-force-RHEL-7-specific-build-.patch | 30 +++
> meta/recipes-devtools/git/git_2.35.1.bb | 3 +-
> 2 files changed, 32 insertions(+), 1 deletion(-)
> create
Signed-off-by: Alexander Kanavin
---
...-do-not-force-RHEL-7-specific-build-.patch | 30 +++
meta/recipes-devtools/git/git_2.35.1.bb | 3 +-
2 files changed, 32 insertions(+), 1 deletion(-)
create mode 100644
Next set of changes for hardknott. Please review.
No problems seen while testing on autobuilder.
https://autobuilder.yoctoproject.org/typhoon/#/builders/83/builds/3196
Thanks,
Anuj
The following changes since commit d54d7e7b43da621be8e6fcca34feb7b3d49b8160:
lighttpd: backport a fix for
From: Steve Sakoman
Signed-off-by: Steve Sakoman
(cherry picked from commit 7e33aa25acc0c29b8f5e78757c6557e614eb1434)
Signed-off-by: Anuj Mittal
---
meta/recipes-core/expat/expat/CVE-2021-46143.patch | 6 ++
1 file changed, 6 insertions(+)
diff --git
From: Steve Sakoman
Expat (aka libexpat) before 2.4.4 has a signed integer overflow in XML_GetBuffer
for configurations with a nonzero XML_CONTEXT_BYTES.
Backport patch from:
https://github.com/libexpat/libexpat/commit/847a645152f5ebc10ac63b74b604d0c1a79fae40
CVE: CVE-2022-23852
Signed-off-by:
From: Ross Burton
When debugging weird yocto-check-layer output it is useful to know
what the tool found when looking for layers.
Signed-off-by: Ross Burton
Signed-off-by: Richard Purdie
(cherry picked from commit 711e2d4d7baf36f8497741c14268d7f72d0db016)
Signed-off-by: Anuj Mittal
(cherry
From: Alexander Kanavin
Signed-off-by: Alexander Kanavin
Signed-off-by: Richard Purdie
(cherry picked from commit d4c37ca1f1e97d53045521e9894dc9ed5b1c22a1)
Signed-off-by: Anuj Mittal
(cherry picked from commit 0fccab0724769a862e31e635ffa1db3ba2f37312)
Signed-off-by: Anuj Mittal
---
From: Rudolf J Streif
The Country Local Matrix (CLM) blob brcmfmac4373-sdio.clm_blob was not
included with the files for the linux-firmware-bcm4373 package
but instead packaged with linux-firmware.
Signed-off-by: Rudolf J Streif
Signed-off-by: Richard Purdie
(cherry picked from commit
From: Bruce Ashfield
Updating linux-yocto/5.10 to the latest korg -stable release that comprises
the following commits:
fd187a492557 Linux 5.10.93
bed97c903621 mtd: fixup CFI on ixp4xx
f50803b519c3 powerpc/pseries: Get entry and uaccess flush required bits
from
From: Peter Kjellerstedt
This continues where commit676757f "sstate: fix touching files inside
pseudo" and commit 29fc8599 "sstate: another fix for touching files
inside pseudo" left off.
The previous changes switched from trying to check if the sstate file is
writable before touching it, to
From: Bruce Ashfield
Updating linux-yocto/5.10 to the latest korg -stable release that comprises
the following commits:
c982c1a83932 Linux 5.10.92
c0091233f3d8 staging: greybus: fix stack size warning with UBSAN
66d21c005d9b drm/i915: Avoid bitwise vs logical OR warning in
From: Sakib Sajal
Signed-off-by: Sakib Sajal
Signed-off-by: Anuj Mittal
---
meta/recipes-devtools/qemu/qemu.inc | 2 +
.../qemu/qemu/CVE-2021-20196_1.patch | 54 +++
.../qemu/qemu/CVE-2021-20196_2.patch | 67 +++
3 files changed, 123
From: Sakib Sajal
Signed-off-by: Sakib Sajal
Signed-off-by: Anuj Mittal
---
meta/recipes-devtools/qemu/qemu.inc | 1 +
.../qemu/qemu/CVE-2021-3748.patch | 127 ++
2 files changed, 128 insertions(+)
create mode 100644
From: Sakib Sajal
Signed-off-by: Sakib Sajal
Signed-off-by: Anuj Mittal
---
meta/recipes-devtools/qemu/qemu.inc | 1 +
.../qemu/qemu/CVE-2021-3930.patch | 53 +++
2 files changed, 54 insertions(+)
create mode 100644
From: Sakib Sajal
Signed-off-by: Sakib Sajal
Signed-off-by: Anuj Mittal
---
meta/recipes-devtools/qemu/qemu.inc | 1 +
.../qemu/qemu/CVE-2021-3713.patch | 68 +++
2 files changed, 69 insertions(+)
create mode 100644
This script is used in mdcheck_xxx.service files. So we need to
install it. Also, as it requires bash, we add bash to RDEPENDS.
Signed-off-by: Chen Qi
---
.../files/0001-Makefile-install-mdcheck.patch | 30 +++
meta/recipes-extended/mdadm/mdadm_4.2.bb | 2 ++
2 files
34 matches
Mail list logo
