From: Vijay Anusuri
Upstream-Status: Backport
[https://github.com/qemu/qemu/commit/77668e4b9bca03a856c27ba899a2513ddf52bb52]
Signed-off-by: Vijay Anusuri
---
meta/recipes-devtools/qemu/qemu.inc | 1 +
.../qemu/qemu/CVE-2024-24474.patch| 44 +++
2 files
From: Vijay Anusuri
Upstream-Status: Backport
[https://github.com/gwsw/less/commit/c6ac6de49698be84d264a0c4c0c40bb870b10144]
Signed-off-by: Vijay Anusuri
---
.../less/less/CVE-2022-48624.patch| 41 +++
meta/recipes-extended/less/less_551.bb| 1 +
2 files
lgtm.
On Sun, Feb 25, 2024 at 9:32 PM leimaohui via lists.openembedded.org
wrote:
>
> From: Lei Maohui
>
> Error: Transaction test error:
> file /usr/include/finclude/math-vector-fortran.h from install of
> lib32-libc6-dev-2.39+git0+312e159626-r0.armv7ahf_neon conflicts with file
> from
From: Lei Maohui
Error: Transaction test error:
file /usr/include/finclude/math-vector-fortran.h from install of
lib32-libc6-dev-2.39+git0+312e159626-r0.armv7ahf_neon conflicts with file from
package libc6-dev-2.39+git0+312e159626-r0.aarch64
The difference of math-vector-fortran.h between
Hi,
Could please help here?
-=-=-=-=-=-=-=-=-=-=-=-
Links: You receive all messages sent to this group.
View/Reply Online (#196178):
https://lists.openembedded.org/g/openembedded-core/message/196178
Mute This Topic: https://lists.openembedded.org/mt/98361235/21656
Group Owner:
From: Soumya Sambu
Includes security fixes for - CVE-2023-4408, CVE-2023-5517,
CVE-2023-5679, CVE-2023-50868 and CVE-2023-50387
Changelog:
=
https://gitlab.isc.org/isc-projects/bind9/-/blob/v9.18.24/CHANGES
Signed-off-by: Soumya Sambu
---
.../bind/{bind_9.18.19.bb => bind_9.18.24.bb}
Thank you for your submission. Patchtest identified one
or more issues with the patch. Please see the log below for
more information:
---
Testing patch
/home/patchtest/share/mboxes/wic-empty-plugin-fix-typo-in-comment.patch
FAIL: test commit message presence: Please include a commit message on
Signed-off-by: Enrico Jorns
---
scripts/lib/wic/plugins/source/empty.py | 2 +-
1 file changed, 1 insertion(+), 1 deletion(-)
diff --git a/scripts/lib/wic/plugins/source/empty.py
b/scripts/lib/wic/plugins/source/empty.py
index 0a9f5fa27c..4178912377 100644
---
From: Alexander Kanavin
With mesa 23.0, it is not longer possible to use the host drivers, as
mesa upstream has added strict checks for matching builds between
drivers and libraries that load them.
Add a check and a hint to runqemu so that there is a helpful error when
there is no
From: Ross Burton
These tests should be able to work on qemuarm64, but this is untested
and the runners will need configuration.
Signed-off-by: Ross Burton
Signed-off-by: Alexandre Belloni
(cherry picked from commit 09b9558e20e58b473154895b93cff16261c7f561)
Signed-off-by: Steve Sakoman
---
From: Fabien Mahot
When ldconfig-native reads an ELF file, it computes an offset from a LOAD
segment, to point on DT NEEDED entries of dynstr section.
Without this patch, ldconfig-native uses only the first LOAD segment, even if
the offset is incorrect.
This patch adds conditions to compute the
From: Zahir Hussain
As discussion in [YOCTO #14717] cmake contains a OEToolchainConfig.cmake
file to configure the toolchain correctly in cross-compile build for recipes
using cmake.
The variable CMAKE_CXX_IMPLICIT_INCLUDE_DIRECTORIES value updates incorrectly
during do_compile the code. Due to
From: Ross Burton
In oe-core 27824261 --enable-debug was added to the configure arguments
to turn on debugging symbols. However, enabling debug mode does more
than turn on debugging symbols and introduces some codepaths that can be
controlled with environment variables. Bluntly, the curl
From: Bruce Ashfield
Data pulled from: https://github.com/nluedtke/linux_kernel_cves
1/1 [
Author: Nicholas Luedtke
Email: nicholas.lued...@uwalumni.com
Subject: Update 3Feb24
Date: Sat, 3 Feb 2024 00:42:14 -0500
]
Signed-off-by: Bruce Ashfield
From: Bruce Ashfield
Updating linux-yocto/5.15 to the latest korg -stable release that comprises
the following commits:
6139f2a02fe0 Linux 5.15.148
84c39986fe6d Revert "Revert "md/raid5: Wait for MD_SB_CHANGE_PENDING in
raid5d""
c8483a4845a0 arm64: dts: armada-3720-turris-mox: set
From: Bruce Ashfield
Data pulled from: https://github.com/nluedtke/linux_kernel_cves
1/1 [
Author: Nicholas Luedtke
Email: nicholas.lued...@uwalumni.com
Subject: Update 15Jan24
Date: Mon, 15 Jan 2024 12:48:45 -0500
]
Signed-off-by: Bruce Ashfield
From: Bruce Ashfield
Updating linux-yocto/5.15 to the latest korg -stable release that comprises
the following commits:
ddcaf4999061 Linux 5.15.147
231752a0a05d net: usb: ax88179_178a: move priv to driver_priv
d800d18ba132 net: usb: ax88179_178a: remove redundant init code
From: Bruce Ashfield
Data pulled from: https://github.com/nluedtke/linux_kernel_cves
1/1 [
Author: Nicholas Luedtke
Email: nicholas.lued...@uwalumni.com
Subject: Update 27Dec23
Date: Wed, 27 Dec 2023 19:47:13 -0500
]
Signed-off-by: Bruce Ashfield
From: Bruce Ashfield
Updating linux-yocto/5.15 to the latest korg -stable release that comprises
the following commits:
26c690eff0a5 Linux 5.15.146
13578b4ea461 bpf: Fix prog_array_map_poke_run map poke update
339add0430e7 device property: Allow const parameter to dev_fwnode()
From: Bruce Ashfield
Updating to the latest korg -stable release that comprises
the following commits:
d93fa2c78854 Linux 5.15.145
ee41f667aa64 kasan: disable kasan_non_canonical_hook() for HW tags
f30f893143b9 tracing/kprobes: Return EADDRNOTAVAIL when func matches
several
From: Bruce Ashfield
Updating to the latest korg -stable release that comprises
the following commits:
8a1d809b0545 Linux 5.15.142
4d9bd1b108d7 iomap: update ki_pos a little later in iomap_dio_complete
6ed02493ef14 r8169: fix deadlock on RTL8125 in jumbo mtu mode
0249024aa48e
Signed-off-by: Steve Sakoman
---
.../linux/cve-exclusion_5.10.inc | 199 +-
1 file changed, 189 insertions(+), 10 deletions(-)
diff --git a/meta/recipes-kernel/linux/cve-exclusion_5.10.inc
b/meta/recipes-kernel/linux/cve-exclusion_5.10.inc
index
From: Bruce Ashfield
Updating to the latest korg -stable release that comprises
the following commits:
ca4427ebc626 Linux 5.10.205
05c547e8427a powerpc/ftrace: Fix stack teardown in ftrace_no_trace
e30e62f0e178 powerpc/ftrace: Create a dummy stackframe to fix stack unwind
From: Bruce Ashfield
Updating linux-yocto/5.10 to the latest korg -stable release that comprises
the following commits:
16ad71c250c1 Linux 5.10.209
66e4f4a84791 arm64: dts: armada-3720-turris-mox: set irq type for RTC
2e23761beb90 i2c: s3c24xx: fix transferring more than one message
From: Bruce Ashfield
Updating linux-yocto/5.10 to the latest korg -stable release that comprises
the following commits:
cf13ba74e8eb Linux 5.10.206
2df1e1887c68 spi: atmel: Fix PDC transfer setup bug
2a0a658ed6ef Bluetooth: SMP: Fix crash when receiving new connection when
debug is
From: Bruce Ashfield
Updating to the latest korg -stable release that comprises
the following commits:
d330ef1d295d Linux 5.10.203
9c957e2b5254 driver core: Release all resources during unbind before
updating device links
2325d3b6b10f r8169: fix deadlock on RTL8125 in jumbo mtu
From: Tim Orling
This is the latest/last of the 9.0.z upgrades, since 9.1 is now
released.
CVE: CVE-2024-22667
(includes the patch for .2142
https://github.com/vim/vim/commit/b39b240c386a5a29241415541f1c99e2e6b8ce47)
Changes:
https://github.com/vim/vim/compare/v9.0.2130...v9.0.2190
From: Ming Liu
The original CVE-2023-29406.patch is not complete, causing docker
failures at runtime, backport a complementary fix from golang upstream.
Signed-off-by: Ming Liu
Signed-off-by: Steve Sakoman
---
meta/recipes-devtools/go/go-1.17.13.inc | 3 +-
...023-29406.patch =>
Please review this set of changes for kirkstone and have comments back by
end of day Tuesday, February 27
Passed a-full on autobuilder:
https://autobuilder.yoctoproject.org/typhoon/#/builders/83/builds/6610
The following changes since commit 59cc2e75c15f8c6371a4c4a3b7bd2e6c3f145fbc:
Revert
On Thu, 2024-02-22 at 16:51 +0100, Enguerrand de Ribaucourt wrote:
>
>
> On 22/02/2024 14:00, adrian.freiho...@gmail.com wrote:
> > On Wed, 2024-02-21 at 15:56 +0100, Enguerrand de Ribaucourt wrote:
> > >
> > >
> > > On 21/02/2024 15:12, Enguerrand de Ribaucourt wrote:
> > > >
> > > >
> > >
Improve the GDB related tests. Verify GDB finds the correct source
files.
Signed-off-by: Adrian Freihofer
---
meta/lib/oeqa/selftest/cases/devtool.py | 42 +++--
1 file changed, 33 insertions(+), 9 deletions(-)
diff --git a/meta/lib/oeqa/selftest/cases/devtool.py
From: Enguerrand de Ribaucourt
When launching the debug configuration, the source files from the debug
rootfs were openened in the editor instead of the local workspace files.
We add an exception to properly map them to the file being developed and
compiled by the IDE integration. This also more
Improve the previous commit:
- log an error if some assumptions are not true
- Use TARGET_DBGSRC_DIR variable
- Do the same for ide none
Why the additional source mapping is required:
For example the cmake-example recipe refers to sources like this:
If multiple recipes are processed at once, the launch.json and the
tasks.json of the second recipe contains also the configurations for the
binaries of the first recipe.
Example:
devtool ide-sdk powertop cmake-example oe-selftest-image
generated a launch and a tasks configuration for the
This is an improved version of the patch from Enguerrand de Ribaucourt
which was originally published here:
https://lists.openembedded.org/g/openembedded-core/message/196037
The basic idea is still the same but the implementation is a bit
different and the commit message and some comments explain
On 2/25/2024 10:32 AM, Jeremy Puhlman wrote:
On 2/25/2024 9:22 AM, Jeremy Puhlman wrote:
On 2/24/2024 2:13 PM, Richard Purdie wrote:
On Fri, 2024-02-23 at 12:33 -0800, Jeremy Puhlman via
lists.openembedded.org wrote:
It says usr//usr in the comment, but when I ran on a clean build it
On 2/25/2024 9:22 AM, Jeremy Puhlman wrote:
On 2/24/2024 2:13 PM, Richard Purdie wrote:
On Fri, 2024-02-23 at 12:33 -0800, Jeremy Puhlman via
lists.openembedded.org wrote:
It says usr//usr in the comment, but when I ran on a clean build it
started complaining about opt//opt as well. Its
On 2/24/2024 2:13 PM, Richard Purdie wrote:
On Fri, 2024-02-23 at 12:33 -0800, Jeremy Puhlman via
lists.openembedded.org wrote:
It says usr//usr in the comment, but when I ran on a clean build it
started complaining about opt//opt as well. Its not really clear why
it is looking for those
On Sat, Feb 24, 2024 at 2:21 AM Munehisa Kamata wrote:
>
> Hi Bruce,
>
> > That is indeed not a simple workflow!
> >
> > In the past, we've always had the existing packageconfig results picked up
> > and
> > used by later stages of the kernel build which prevented things like this
> > from
> >
Branch: nanbield
New this week: 5 CVEs
CVE-2023-48795 (CVSS3: 5.9 MEDIUM): openssh
https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2023-48795 *
CVE-2023-50387 (CVSS3: 7.5 HIGH): bind
https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2023-50387 *
CVE-2023-6816 (CVSS3: 9.8 CRITICAL):
Branch: kirkstone
New this week: 0 CVEs
Removed this week: 0 CVEs
Full list: Found 50 unpatched CVEs
CVE-2021-35937 (CVSS3: 6.4 MEDIUM): rpm:rpm-native
https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-35937 *
CVE-2021-35938 (CVSS3: 6.7 MEDIUM): rpm:rpm-native
Hi,
quick summary (besides linux-yocto):
- No new CVEs
- 13 fixed in oe-core
- qemu: CVE-2023-6683: Fixed upstream on master now via
https://github.com/qemu/qemu/commit/405484b29f6548c7b86549b0f961b906337aa68a
- coreutils: CVE-2024-0684: Fixed upstream via
Branch: dunfell
New this week: 1 CVEs
CVE-2023-50387 (CVSS3: 7.5 HIGH): bind
https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2023-50387 *
Removed this week: 0 CVEs
Full list: Found 113 unpatched CVEs
CVE-2020-15705 (CVSS3: 6.4 MEDIUM): grub:grub-efi:grub-efi-native
Branch: master
New this week: 0 CVEs
Removed this week: 13 CVEs
CVE-2023-25584 (CVSS3: 7.1 HIGH):
binutils:binutils-cross-testsuite:binutils-cross-x86_64:binutils-native
https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2023-25584 *
CVE-2023-3019 (CVSS3: 6.5 MEDIUM):
* to fix build on hosts with python-3.12, now it fails with:
Traceback (most recent call last):
File "recipe-sysroot-native/usr/bin/gdbus-codegen", line 53, in
from codegen import codegen_main
File "recipe-sysroot-native/usr/share/glib-2.0/codegen/codegen_main.py", line
29, in
from
45 matches
Mail list logo