Re: [oe] [meta-oe][kirkstone][PATCH 1/1] python3-werkzeug: fix for CVE-2023-23934

Dear Narpat, Once your python3-werkzeug package is built successfully using bitbake. You can try to check /tmp/work/*/python3-werkzeug//temp/log.do_patch file. It will provide the logs specific to do_patch task, where you can confirm this HUNK information. Thanks, Sanjay From: openembedded-de

[oe] [meta-oe][PATCH] raptor2: backport a fix to build with libxml2-2.11

* fixes: ../../raptor2-2.0.16/src/raptor_libxml.c:256:12: error: 'xmlEntity' {aka 'struct _xmlEntity'} has no member named 'checked' 256 | if(!ret->checked) |^~ ../../raptor2-2.0.16/src/raptor_libxml.c:257:10: error: 'xmlEntity' {aka 'struct _xmlEntity'} has no member

[oe] [meta-networking][kirkstone][PATCH] ntp: backport patch for 5 CVEs CVE-2023-26551/2/3/4/5

From: Peter Marko Patch taken from https://archive.ntp.org/ntp4/ntp-4.2/ntp-4.2.8p15-3806-3807.patch It is linked as official patch for p15 in: - https://www.ntp.org/support/securitynotice/ntpbug3807/ - https://www.ntp.org/support/securitynotice/ntpbug3806/ Small adaptation to build is needed b

[oe] [meta-oe][PATCH 1/3] nodejs: use PIE for host binaries

* mksnapshot is built as host binary, but then gets executed under qemu-arm, because for 32bit target we need to run 32bit mksnapshot even when building on x86-64 host * unfortunately since upgrade to qemu-8 in: https://git.openembedded.org/openembedded-core/commit/?id=fe8125565af07b73f9b29

[oe] [meta-oe][PATCH 3/3] pidgin-sipe: allow to build with libxml2-2.11

* deprecated since libxml2-2.11 upgraded in oe-core in: https://git.openembedded.org/openembedded-core/commit/?id=24860598ba8557ea3a145f249938ea411f1ef1d8 * avoids: | ../../../pidgin-sipe-1.25.0/src/core/sipe-xml.c: In function 'sipe_xml_parse': | ../../../pidgin-sipe-1.25.0/src/core/sipe-xml.c

[oe] [meta-oe][PATCH 2/3] gupnp: backport a fix not to use deprecated xmlReadMemory

* deprecated since libxml2-2.11 upgraded in oe-core in: https://git.openembedded.org/openembedded-core/commit/?id=24860598ba8557ea3a145f249938ea411f1ef1d8 * fixes: ../gupnp-1.4.1/libgupnp/gupnp-service-info.c: In function 'got_scpd_url': ../gupnp-1.4.1/libgupnp/gupnp-service-info.c:595:17: erro

Re: [oe] [meta-networking][kirkstone][PATCH v2] mbedtls: add support for v3.x

Hey Armin, This is the same recipe from master, which now has support for both v2 and v3 mbedtls. Since both versions would be supported and it's not a major package upgrade, we should not be breaking policy. This is also not an isolated case from a quick look, since there are other packages that

[oe] [meta-python][PATCH] python3-pyroute2: upgrade 0.5.19 -> 0.7.9

License-Update: The LICENSE file now explicitly says "GPL-2.0-or-later OR Apache-2.0". Changelog: https://github.com/svinota/pyroute2/blob/master/CHANGELOG.rst Signed-off-by: Petr Gotthard --- ...hon3-pyroute2_0.5.19.bb => python3-pyroute2_0.7.9.bb} | 9 + 1 file changed, 5 insertions

Re: [oe] [meta-python] [PATCH] python3-platformdirs: upgrade 3.6.0 -> 3.8.0

seeing checksum mismatches https://autobuilder.yoctoproject.org/typhoon/#/builders/88/builds/2856 On Tue, Jun 27, 2023 at 9:14 AM wangmy wrote: > > From: Wang Mingyu > > Changelog: > Add missing user media directory docs > > Signed-off-by: Wang Mingyu > --- > ...hon3-platformdirs_3.6.0.bb =>

[oe] [meta-networking][PATCH 1/2][mickledore][master] frr: upgrade 8.4.2 -> 8.4.4

ChangeLog: https://github.com/FRRouting/frr/releases/tag/frr-8.4.4 https://github.com/FRRouting/frr/commit/45e36c0c00a517ad1606135b18c5753e210cfc0d Signed-off-by: Yi Zhao --- .../recipes-protocols/frr/{frr_8.4.2.bb => frr_8.4.4.bb}| 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) re

[oe] [meta-networking][PATCH 2/2][mickledore][master] mbedtls: upgrade 2.28.2 -> 2.28.3

Mbed TLS 2.28 is a long-time support branch. It will be supported with bug-fixes and security fixes until end of 2024. ChangeLog: https://github.com/Mbed-TLS/mbedtls/releases/tag/v2.28.3 Signed-off-by: Yi Zhao --- .../mbedtls/{mbedtls_2.28.2.bb => mbedtls_2.28.3.bb} | 8 +++- 1 file ch

[oe][meta-networking][kirkstone][PATCH 1/1] tcpreplay: upgrade 4.4.2 -> 4.4.4

This release contains bug fixes only. The following CVEs have been addressed: CVE-2023-27783 CVE-2023-27784 CVE-2023-27785 CVE-2023-27786 CVE-2023-27787 CVE-2023-27788 CVE-2023-27789 Changelog: = dlt_jnpr_ether_cleanup: check subctx before cleanup by @Marsman1996 in #781 Bug #780 assert t

[oe][meta-networking][mickledore][PATCH 1/1] tcpreplay: upgrade 4.4.3 -> 4.4.4

This release contains bug fixes only. The following CVEs have been addressed: CVE-2023-27783 CVE-2023-27784 CVE-2023-27785 CVE-2023-27786 CVE-2023-27787 CVE-2023-27788 CVE-2023-27789 Changelog: = dlt_jnpr_ether_cleanup: check subctx before cleanup by @Marsman1996 in #781 Bug #780 assert t

[oe] [meta-oe][kirkstone][PATCH] grpc: ignore CVE-2023-32732

From: Peter Marko It was introduced in in v1.53.0 and not backported to v1.46.x branch. NVD references PR which intrioduces the vulnerability: https://github.com/grpc/grpc/pull/32309#issuecomment-1589561295 Signed-off-by: Peter Marko --- meta-oe/recipes-devtools/grpc/grpc_1.46.7.bb | 3 +++

[oe] [meta-gnome][PATCH] libtimezonemap: rename downloaded file name

From: Kai Kang Add parameter 'downloadfilename' to SRC_URI to keep the downloaded file name as same as before. Signed-off-by: Kai Kang --- meta-gnome/recipes-gnome/libtimezonemap/libtimezonemap_0.4.6.bb | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/meta-gnome/recipes-gnom