CVE: CVE-2023-44487
Bumping grpc-go to version v1.59.0, which comprises the following commits:
7765221f Change version to 1.59.0 (#6695)
e88f12e0 server: prohibit more than MaxConcurrentStreams handlers from
running at once (#6703) (#6704)
be7919c3 transport: Pass Header metadata to
The new website looks nice, just https://yoctoproject.org/development/releases/
is populated by:
Plugin JSON Content Importer Pro not running: Check Licence! Check that a
Licence is active for https://yoctoproject.org
Instead of actual release data.
Peter
From: yocto@lists.yoctoproject.org On
From: Peter Marko
Using this mixin layer causes dirty repository after parsing
due to lib/mixin/rust.py compilation.
Signed-off-by: Peter Marko
---
.gitignore | 1 +
1 file changed, 1 insertion(+)
create mode 100644 .gitignore
diff --git a/.gitignore b/.gitignore
new file mode 100644
index
Hello maintainers,
I'd be interested to know if meta-security repository for kirkstone is still
maintained.
Looking at commit history, there are only two commits since July 2022 (almost a
year).
The mailing lists has several contributions meanwhile (list what I could find
from 2023):
-
Hi Armin,
Gentle ping to pick this commit to kirkstone.
Thanks,
Peter
> -Original Message-
> From: yocto@lists.yoctoproject.org On Behalf
> Of Peter Marko via lists.yoctoproject.org
> Sent: Friday, June 30, 2023 0:10
> To: yocto@lists.yoctoproject.org
> Cc: Marko,
Alex, Jose,
I could not find documentation how to handle mixins layer.
Could you please pick this to kirkstone/go meta-lts-mixins?
Or should I send a patch to yocto@lists.yoctoproject.org (or other mailing
list) instead of asking for a cherry-pick?
Thanks,
Peter
-=-=-=-=-=-=-=-=-=-=-=-
From: Peter Marko
As already mentioned in upgrade commit, this CVE is fixed.
But cve_check still reports it as NVD DB was not updated.
Signed-off-by: Peter Marko
---
meta-tpm/recipes-tpm2/tpm2-tss/tpm2-tss_3.2.2.bb | 3 +++
1 file changed, 3 insertions(+)
diff --git
Changelog:
3.2.2
A buffer overflow in tss2-rc as CVE-2023-22745.
The drv layer in tss2-rc should have been the policy layer.
Spec deviation in Fapi_GetDescription caused description to be NULL when it
should be empty string.
This is API breaking but considered a bug since it
Changelog:
3.2.2
A buffer overflow in tss2-rc as CVE-2023-22745.
The drv layer in tss2-rc should have been the policy layer.
Spec deviation in Fapi_GetDescription caused description to be NULL when it
should be empty string.
This is API breaking but considered a bug since it
Forgot to put kirkstone prefix, so please ignore this one.
Peter
-=-=-=-=-=-=-=-=-=-=-=-
Links: You receive all messages sent to this group.
View/Reply Online (#59903): https://lists.yoctoproject.org/g/yocto/message/59903
Mute This Topic: https://lists.yoctoproject.org/mt/98760825/21656
Group
master branch and 4.0.1 is not impacted. Would be nice to have
> this info in commit message though.
>
> Cheers,
>
> -Mikko
>
> On Mon, May 08, 2023 at 03:23:34PM +0200, Peter Marko via
> lists.yoctoproject.org wrote:
-=-=-=-=-=-=-=-=-=-=-=-
Links: You receive al
Changelog:
3.2.2
A buffer overflow in tss2-rc as CVE-2023-22745.
The drv layer in tss2-rc should have been the policy layer.
Spec deviation in Fapi_GetDescription caused description to be NULL when it
should be empty string.
This is API breaking but considered a bug since it
Hi Michael,
Unfortunately, my corporate email server does not support me in this.
I have sent you a test email after explicitly configuring this in git, but I
think it won't do anything better.
Last patch to yocto mailing list had to be sent by my colleague as the server
has bounced it.
Ignore this one, I had notes on an old version.
Peter
-Original Message-
From: yocto@lists.yoctoproject.org On Behalf Of
Peter Marko via lists.yoctoproject.org
Sent: Wednesday, January 24, 2024 21:15
To: yocto@lists.yoctoproject.org
Cc: Marko, Peter (ADV D EU SK BFS1)
Subject: [yocto
From: Peter Marko
Current hash is 10 commits after tag, so add +git to PV.
Signed-off-by: Peter Marko
---
.../netavark/{netavark_1.9.0.bb => netavark_git.bb} | 1 +
1 file changed, 1 insertion(+)
rename recipes-containers/netavark/{netavark_1.9.0.bb => netavark_git.bb} (99%)
From: Peter Marko
Current hash is 20 commits after tag, so add +git to PV.
Signed-off-by: Peter Marko
---
.../netavark/{netavark_1.9.0.bb => netavark_git.bb} | 1 +
1 file changed, 1 insertion(+)
rename recipes-containers/netavark/{netavark_1.9.0.bb => netavark_git.bb} (99%)
Gentle ping
-Original Message-
From: Marko, Peter (ADV D EU SK BFS1)
Sent: Wednesday, January 24, 2024 22:06
To: yocto@lists.yoctoproject.org
Cc: Marko, Peter (ADV D EU SK BFS1)
Subject: [meta-virtualization][PATCH v2] netavark: correct PV
> From: Peter Marko
>
> Current hash is 20
Is /lib/ld-linux-aarch64.so.1 (interpreter listed in your file command output)
installed in your system?
If not, then you have to install it. How to do that depends on how you built
your image.
Peter
From: yocto@lists.yoctoproject.org On Behalf Of
MOHAMMED HASSAN via lists.yoctoproject.org
Obvious solution is to copy chmod command to your recipe.
Peter
From: linusnilsson via Lists.Yoctoproject.Org
Sent: Thursday, April 11, 2024 14:38
To: Marko, Peter (ADV D EU SK BFS1) ;
yocto@lists.yoctoproject.org
Subject: Re: [yocto] Correct way for multiple recipes to install files in the
From: yocto@lists.yoctoproject.org On Behalf Of
Nitesh D via lists.yoctoproject.org
Sent: Wednesday, April 17, 2024 14:21
To: Alexander Kanavin ; yocto@lists.yoctoproject.org
Subject: Re: [yocto] Issue with Installing openssh Package #systemd #yocto
#kirkstone
> Alex,
>
> Thanks for your
From: yocto@lists.yoctoproject.org On Behalf Of
linusnilsson via lists.yoctoproject.org
Sent: Thursday, April 11, 2024 9:53
To: yocto@lists.yoctoproject.org
Subject: [yocto] Correct way for multiple recipes to install files in the same
directory
> Hi!
> How/can I let multiple recipes install
21 matches
Mail list logo