Re: [OE-Core][PATCH 4/4] rust: Upgrade 1.74.1 -> 1.75.0

2023-12-31 Thread Alex Kiernan
On Sun, Dec 31, 2023 at 2:23 PM Richard Purdie wrote: > > On Sat, 2023-12-30 at 15:49 +, Alex Kiernan wrote: > > Drop backported musl fixes. Set `change-id` rather than `changelog-seen` > > to fix build warning. Add fixes for 85c0ce24cc74 ("remap cargo > > dependencies to /rust/deps") which

Re: [OE-Core][PATCH 4/4] rust: Upgrade 1.74.1 -> 1.75.0

2023-12-31 Thread Richard Purdie
On Sat, 2023-12-30 at 15:49 +, Alex Kiernan wrote: > Drop backported musl fixes. Set `change-id` rather than `changelog-seen` > to fix build warning. Add fixes for 85c0ce24cc74 ("remap cargo > dependencies to /rust/deps") which otherwise cause build failures: > > > thread 'main' panicked at

[OE-core] OE-core CVE metrics for nanbield on Sun 31 Dec 2023 04:00:01 AM HST

2023-12-31 Thread Steve Sakoman
Branch: nanbield New this week: 4 CVEs CVE-2023-48795 (CVSS3: 5.9 MEDIUM): libssh2:libssh2-native:openssh https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2023-48795 * CVE-2023-6228 (CVSS3: 5.5 MEDIUM): tiff https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2023-6228 * CVE-2023-6931

[OE-core] OE-core CVE metrics for kirkstone on Sun 31 Dec 2023 03:00:01 AM HST

2023-12-31 Thread Steve Sakoman
Branch: kirkstone New this week: 2 CVEs CVE-2023-48795 (CVSS3: 5.9 MEDIUM): dropbear:libssh2:libssh2-native https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2023-48795 * CVE-2023-6228 (CVSS3: 5.5 MEDIUM): tiff https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2023-6228 * Removed this

[OE-core] [PATCH] speexdsp: enable native variant

2023-12-31 Thread Alexander Kanavin
Latest wireshark (4.2.0) is needed for python 3.12 support; it also requires speexdsp unconditionally, and wireshark-native for its own build helper tools in native versions. So speexdsp needs a native version so that wireshark-native builds without error. Signed-off-by: Alexander Kanavin ---

[OE-core] OE-core CVE metrics for dunfell on Sun 31 Dec 2023 02:00:01 AM HST

2023-12-31 Thread Steve Sakoman
Branch: dunfell New this week: 2 CVEs CVE-2023-48795 (CVSS3: 5.9 MEDIUM): dropbear https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2023-48795 * CVE-2023-6228 (CVSS3: 5.5 MEDIUM): tiff https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2023-6228 * Removed this week: 7 CVEs CVE-2022-47007

[OE-core] OE-core CVE metrics for master on Sun 31 Dec 2023 01:00:01 AM HST

2023-12-31 Thread Steve Sakoman
Branch: master New this week: 4 CVEs CVE-2023-48795 (CVSS3: 5.9 MEDIUM): libssh2:libssh2-native:openssh https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2023-48795 * CVE-2023-6228 (CVSS3: 5.5 MEDIUM): tiff https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2023-6228 * CVE-2023-6931

Re: [OE-core] bitbake-server does not exit after build ends

2023-12-31 Thread Alexander Kanavin
For what it's worth, I am not seeing any of these issues (hanging processes after bitbake exit, timeouts on world builds with all meta-oe-layers) with python 3.12 provided by buildtools-tarball. The issues are probably real, but it's also possible python 3.12 per se is not to blame. It would