[OE-Core][PATCH] iproute2: update to 5.14.0

Signed-off-by: Changhyeok --- .../iproute2/{iproute2_5.13.0.bb => iproute2_5.14.0}| 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) rename meta/recipes-connectivity/iproute2/{iproute2_5.13.0.bb => iproute2_5.14.0} (75%) diff --git

[OE-core] is oe_soinstall() from utils.bbclass actually used?

just going over the mechanics of how shared libs are installed properly, and noticed that while utils.bbclass defines the helper routine oe_soinstall(), no one in my current collection of layers seems to use it; rather, the popular choice is oe_libinstall(), which seems to subsume the earlier

[OE-core] [gatesgarth][PATCH 0/4] Patch review request

Gatesgarth isn't maintained anymore but it was pointed out that it's missing an important fix. I tested it along with a few others and didn't see any issue. https://autobuilder.yoctoproject.org/typhoon/#/builders/83/builds/2536 Thanks, Anuj The following changes since commit

[OE-core] [gatesgarth][PATCH 1/4] lib/package_manager: Use shutil.copy instead of bb.utils.copyfile for intercepts

From: Richard Purdie If the scripts/postinst-intercepts is owned by root/root then the copyfile() calls will fail due to chown issues. We don't care about ownership of these files so use shutil.copy() instead which won't perform any chown. Signed-off-by: Richard Purdie (cherry picked from

[OE-core] [gatesgarth][PATCH 2/4] tar: Fix CVE-2021-20193

From: Anatol Belski Signed-off-by: Anatol Belski Signed-off-by: Anuj Mittal --- .../tar/tar/CVE-2021-20193.patch | 133 ++ meta/recipes-extended/tar/tar_1.32.bb | 1 + 2 files changed, 134 insertions(+) create mode 100644

[OE-core] [gatesgarth][PATCH 3/4] kernel: Fix interaction when packaging disabled

From: Richard Purdie When packaging is disabled using the nopackages class, ensure we don't add to PACKAGES. This fixes builds where we have an unpackaged kernel alongside a packaged kernel. Signed-off-by: Richard Purdie (cherry picked from commit 2522daf22e2c27dd9c7926feda0345978217c6c3)

[OE-core] [gatesgarth][PATCH 4/4] kernel-devicetree: Fix interaction when packaging disabled

From: Richard Purdie When packaging is disabled using the nopackages class, ensure we don't add to PACKAGES. This fixes builds where we have an unpackaged kernel alongside a packaged kernel. Signed-off-by: Richard Purdie (cherry picked from commit d6b114cf5a9b22688c0b59a3afc46a07450d87b5)

[OE-core] OE-core CVE metrics for hardknott on Sun 05 Sep 2021 05:00:01 AM HST

Branch: hardknott New this week: 2 CVEs CVE-2020-18974: nasm:nasm-native https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-18974 * CVE-2021-3713: qemu:qemu-native:qemu-system-native https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-3713 * Removed this week: 0 CVEs Full list:

[OE-core] [v2] tcmode-default: add rust to the default toolchains

Remove the rust_versions.inc file and put it's content in tcmode-default.inc is done for other toolchains. Rename RUST_VERSION to RUSTVERSION to adhere to the naming format used for other languages. Signed-off-by: Randy MacLeod --- meta/conf/distro/include/rust_versions.inc | 13 -

[OE-core] [dunfell][PATCH] gdk-pixbuf: fix CVE-2021-20240

From: Changqing Li Source: https://git.openembedded.org/openembedded-core MR: 111543 Type: Security Fix Disposition: Backport from https://git.openembedded.org/openembedded-core/commit/meta/recipes-gnome/gdk-pixbuf?h=hardknott=bd08e4d179979937604c196b4047f59c5499a960 ChangeID:

[OE-core] minor curiosity related to libdir vs base_libdir and shared libs

a minor oddity i stumbled over digging into the proper installation of shared libraries ... building core-image-minimal for qemuarm64 and, for the most part, recipes from oe-core that install shared libs put all three artifacts (real name, so name and linker name) under /usr/lib, as in:

[OE-core] [dunfell][PATCH 1/2] gdk-pixbuf: fix CVE-2021-20240

From: Changqing Li Source: https://git.openembedded.org/openembedded-core MR: 111543 Type: Security Fix Disposition: Backport from https://git.openembedded.org/openembedded-core/commit/meta/recipes-gnome/gdk-pixbuf?h=hardknott=bd08e4d179979937604c196b4047f59c5499a960 ChangeID:

[OE-core] [dunfell][PATCH 2/2] grub2: Several cve fixes

From: Armin Kuster Source: Debian.org MR: 109156, 109169, 109336, 109349, 109362, 109375, 109388 Type: Security Fix https://sources.debian.org/patches/grub2/2.04-20/ Disposition: Backport from ChangeID: f87f309a172004f21ac28870b85477cb90438d50 Description: Affects < 2.06 Fixes these CVE's:

[OE-core] OE-core CVE metrics for master on Sun 05 Sep 2021 04:00:01 AM HST

Branch: master New this week: 0 CVEs Removed this week: 5 CVEs CVE-2020-27748: xdg-utils https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-27748 * CVE-2021-34558: go https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-34558 * CVE-2021-35331: tcl:tcl-native

[OE-core] OE-core CVE metrics for dunfell on Sun 05 Sep 2021 04:30:01 AM HST

Branch: dunfell New this week: 2 CVEs CVE-2020-18974: nasm:nasm-native https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-18974 * CVE-2021-3713: qemu:qemu-native:qemu-system-native https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-3713 * Removed this week: 11 CVEs

Re: [OE-core] [PATCH] common-licenses, licenses.conf: Remove duplicate licenses

> -Original Message- > From: Khem Raj > Sent: den 5 september 2021 01:52 > To: Peter Kjellerstedt > Cc: Patches and discussions about the oe-core layer c...@lists.openembedded.org> > Subject: Re: [OE-core] [PATCH] common-licenses, licenses.conf: Remove > duplicate licenses > > meta-oe

Re: [OE-core] [PATCH] common-licenses, licenses.conf: Remove duplicate licenses

> -Original Message- > From: openembedded-core@lists.openembedded.org c...@lists.openembedded.org> On Behalf Of Peter Kjellerstedt > Sent: den 5 september 2021 10:29 > To: Khem Raj > Cc: Patches and discussions about the oe-core layer c...@lists.openembedded.org> > Subject: Re: