meta-openembedded

mirror of https://github.com/openembedded/meta-openembedded.git synced 2026-05-09 17:59:26 +00:00

Author	SHA1	Message	Date
Divya Chellam	5c2793258e	grpc: upgrade 1.66.1 -> 1.68.0 This includes CVE-fix for CVE-2024-11407 Changelog: ================================== https://github.com/grpc/grpc/releases/tag/v1.68.0 https://github.com/grpc/grpc/compare/v1.66.1...v1.68.0 Signed-off-by: Divya Chellam <divya.chellam@windriver.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-01-03 10:17:22 -08:00
Ayoub Zaki	338e2ff78b	botan: update 3.5.0 -> 3.6.1 * update to latest 3.6.1 Version * add packaging for botan binary and botan-test tool Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-01-03 10:17:22 -08:00
Ayoub Zaki	8bdd4740b2	bmap-writer: update to latest git version * switch to libarchive to handle a larger decompression schemes * implement own sha256 hashing and drop openssl dependency * compute maximum buffer size before writing each range * bmap file optional: if not provided, it will be searched in the same path as the input * print time/speed of the writing operation Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-01-02 07:49:49 -08:00
Bartosz Szostak	33bc1313cf	yyjson: add new recipe Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-01-02 07:49:49 -08:00
Bartosz Szostak	21ce886005	ctre: add new recipe Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-01-02 07:49:49 -08:00
Bartosz Szostak	5bd1d5ad77	jsoncons: add new recipe Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-01-02 07:49:48 -08:00
Jiaying Song	8ffe8112f7	chrony: fix do_fetch error Change the SRC_URI to the correct value due to the following error: WARNING: chrony-4.5-r0.wr2401 do_fetch: Failed to fetch URL https://download.tuxfamily.org/chrony/chrony-4.5.tar.gz, attempting MIRRORS if available Signed-off-by: Jiaying Song <jiaying.song.cn@windriver.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-01-02 07:38:58 -08:00
Khem Raj	80650fefd6	python3-google-auth: Add missing dep on python3-pyjwt this is needed for ptests to run Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-01-01 20:46:47 -08:00
Khem Raj	5a4b76b6aa	python3-propcache: Add missing rdeps for ptests to run/pass Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-01-01 19:28:25 -08:00
Yi Zhao	07cdb574a5	libbpf: upgrade 1.4.6 -> 1.4.7 ChangLog: https://github.com/libbpf/libbpf/releases/tag/v1.4.7 Signed-off-by: Yi Zhao <yi.zhao@windriver.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-01-01 19:02:19 -08:00
Yi Zhao	de93141c92	pahole: upgrade 1.27 -> 1.28 ChangeLog: https://git.kernel.org/pub/scm/devel/pahole/pahole.git/tree/changes-v1.28 Signed-off-by: Yi Zhao <yi.zhao@windriver.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-01-01 19:02:18 -08:00
Yi Zhao	3f7a140ed6	snort3: upgrade 3.3.4.0 -> 3.6.1.0 https://github.com/snort3/snort3/releases/tag/3.6.1.0 https://github.com/snort3/snort3/releases/tag/3.6.0.0 https://github.com/snort3/snort3/releases/tag/3.5.2.0 https://github.com/snort3/snort3/releases/tag/3.5.1.0 https://github.com/snort3/snort3/releases/tag/3.5.0.0 https://github.com/snort3/snort3/releases/tag/3.3.7.0 https://github.com/snort3/snort3/releases/tag/3.3.6.0 https://github.com/snort3/snort3/releases/tag/3.3.5.0 Signed-off-by: Yi Zhao <yi.zhao@windriver.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-01-01 19:02:18 -08:00
Yi Zhao	07a8a11d94	frr: upgrade 10.2 -> 10.2.1 ChangeLog: https://github.com/FRRouting/frr/commit/5f0beaa0fdd00b7a60c1765067d1b6fa65ce96c0 Signed-off-by: Yi Zhao <yi.zhao@windriver.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-01-01 19:02:18 -08:00
Yi Zhao	b2f7a5e3eb	tigervnc: upgrade 1.14.0 -> 1.14.1 ChangeLog: https://github.com/TigerVNC/tigervnc/releases/tag/v1.14.1 * Update xorg-server to 21.1.15 Signed-off-by: Yi Zhao <yi.zhao@windriver.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-01-01 19:02:18 -08:00
Jiaying Song	4e8c4736ac	xfce-dusk-gtk3: fix do_fetch error Change the SRC_URI to the correct value due to the following error: WARNING: xfce-dusk-gtk3-1.3-r0 do_fetch: Failed to fetch URL http://sources.openembedded.org/141404-xfce_dusk_gtk3-1_3.tar.gz;subdir=xfce-dusk-gtk3-1.3, attempting MIRRORS if available Signed-off-by: Jiaying Song <jiaying.song.cn@windriver.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-01-01 19:02:18 -08:00
Yi Zhao	1768156191	openldap: upgrade 2.6.8 -> 2.6.9 ChangeLog: https://www.openldap.org/software/release/changes.html Drop 0001-fix-incompatible-pointer-type-error.patch as the issue has been fixed upstream. Signed-off-by: Yi Zhao <yi.zhao@windriver.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-01-01 19:02:18 -08:00
Yi Zhao	f5676076df	mce-inject: update to latest git rev 7668d820 simulate a MCE event happened during TDX guest context Signed-off-by: Yi Zhao <yi.zhao@windriver.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-01-01 19:02:18 -08:00
Jiaying Song	da361d2d7c	eject: fix do_fetch error Change the SRC_URI to the correct value due to the following error: WARNING: eject-2.1.5-r0.wr2401 do_fetch: Failed to fetch URL http://sources.openembedded.org/eject-2.1.5.tar.gz, attempting MIRRORS if available Signed-off-by: Jiaying Song <jiaying.song.cn@windriver.com> Signed-off-by: Armin Kuster <akuster808@gmail.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-01-01 19:02:17 -08:00
Yi Zhao	f65596ce3e	nss: upgrade 3.103 -> 3.107 * Refresh patches. Signed-off-by: Yi Zhao <yi.zhao@windriver.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-01-01 19:02:17 -08:00
Yi Zhao	bdb41e2659	nspr: upgrade 4.35 -> 4.36 * Refresh patches. * Drop 0001-Fix-Wincompatible-function-pointer-types.patch as the issue has been fixed upstream. Signed-off-by: Yi Zhao <yi.zhao@windriver.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-01-01 19:02:17 -08:00
Wang Mingyu	0141277159	python3-trio: upgrade 0.27.0 -> 0.28.0 Signed-off-by: Wang Mingyu <wangmy@fujitsu.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-01-01 19:02:17 -08:00
Wang Mingyu	0458249e18	python3-starlette: upgrade 0.42.0 -> 0.44.0 Signed-off-by: Wang Mingyu <wangmy@fujitsu.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-01-01 19:02:17 -08:00
Wang Mingyu	f024c3cb14	python3-pyppmd: upgrade 1.1.0 -> 1.1.1 Signed-off-by: Wang Mingyu <wangmy@fujitsu.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-01-01 19:02:17 -08:00
Wang Mingyu	39fe27dd0f	python3-pybcj: upgrade 1.0.2 -> 1.0.3 Signed-off-by: Wang Mingyu <wangmy@fujitsu.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-01-01 19:02:16 -08:00
Wang Mingyu	f25d9e1e36	python3-pulsectl: upgrade 24.11.0 -> 24.12.0 Signed-off-by: Wang Mingyu <wangmy@fujitsu.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-01-01 19:02:16 -08:00
Wang Mingyu	fe9e2f002d	python3-path: upgrade 17.0.0 -> 17.1.0 Signed-off-by: Wang Mingyu <wangmy@fujitsu.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-01-01 19:02:16 -08:00
Wang Mingyu	0d103d49a1	python3-libusb1: upgrade 3.1.0 -> 3.2.0 Signed-off-by: Wang Mingyu <wangmy@fujitsu.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-01-01 19:02:16 -08:00
Wang Mingyu	5feffebf92	python3-kiwisolver: upgrade 1.4.7 -> 1.4.8 Signed-off-by: Wang Mingyu <wangmy@fujitsu.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-01-01 19:02:16 -08:00
Wang Mingyu	d0cbaaadc1	python3-coverage: upgrade 7.6.9 -> 7.6.10 Signed-off-by: Wang Mingyu <wangmy@fujitsu.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-01-01 19:02:16 -08:00
Wang Mingyu	4a44b90e35	python3-astroid: upgrade 3.3.7 -> 3.3.8 Signed-off-by: Wang Mingyu <wangmy@fujitsu.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2025-01-01 19:02:15 -08:00
Wang Mingyu	4450ecbb31	parallel: upgrade 20241122 -> 20241222 Signed-off-by: Wang Mingyu <wangmy@fujitsu.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2024-12-30 09:08:04 -08:00
Wang Mingyu	84cb88feb3	memcached: upgrade 1.6.33 -> 1.6.34 Signed-off-by: Wang Mingyu <wangmy@fujitsu.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2024-12-30 09:08:04 -08:00
Wang Mingyu	b9bae24144	libsdl2-image: upgrade 2.8.3 -> 2.8.4 Signed-off-by: Wang Mingyu <wangmy@fujitsu.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2024-12-30 09:08:04 -08:00
Wang Mingyu	03cbeb5018	libnet-dns-perl: upgrade 1.47 -> 1.49 Signed-off-by: Wang Mingyu <wangmy@fujitsu.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2024-12-30 09:08:04 -08:00
Wang Mingyu	16e5e77e5d	flatbuffers: upgrade 24.3.25 -> 24.12.23 Signed-off-by: Wang Mingyu <wangmy@fujitsu.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2024-12-30 09:08:03 -08:00
Wang Mingyu	4685607ee0	doxygen: upgrade 1.12.0 -> 1.13.0 Signed-off-by: Wang Mingyu <wangmy@fujitsu.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2024-12-30 09:08:03 -08:00
Wang Mingyu	ff5f84b316	ctags: upgrade 6.1.20241222.0 -> 6.1.20241229.0 Signed-off-by: Wang Mingyu <wangmy@fujitsu.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2024-12-30 09:08:03 -08:00
Changqing Li	230ddc9439	poppler: upgrade 24.11.0 -> 24.12.0 * Upgrade 24.11.0 -> 24.12.0 * Backport patch 0001-Don-t-update-pdfsig.pot-when-POT-Creation-date-is-th.patch to fix a parallel build issue, refer [1] [1] https://gitlab.freedesktop.org/poppler/poppler/-/issues/1550 Signed-off-by: Changqing Li <changqing.li@windriver.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2024-12-29 19:38:05 -08:00
Hongxu Jia	79fbbad63c	pahole: update COMPATIBLE_HOST setting Due to pahole build depend on pahole, and libbpf added more architectures to COMPATIBLE_HOST [1], add the same COMPATIBLE_HOST setting to pahole $ echo "MACHINE = 'qemuloongarch64'" >> conf/local.conf $ bitbake world ERROR: Nothing PROVIDES 'libbpf' (but meta-openembedded/meta-oe/recipes-devtools/pahole/pahole_1.27.bb DEPENDS on or otherwise requires it) libbpf was skipped: incompatible with host loongarch64-wrs-linux (not in COMPATIBLE_HOST) ERROR: Required build target 'meta-world-pkgdata' has no buildable providers. Missing or unbuildable dependency chain was: ['meta-world-pkgdata', 'pahole', 'libbpf'] [1] https://git.openembedded.org/meta-openembedded/commit/?id=bb8049afe96db57707afc259743e288bec456117 Signed-off-by: Hongxu Jia <hongxu.jia@windriver.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2024-12-28 08:21:24 -08:00
Markus Volk	5bb3125e1c	gegl: update 0.4.50 -> 0.4.52 required for gimp-3.0.0-RC2 release Signed-off-by: Markus Volk <f_l_k@t-online.de> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2024-12-28 00:14:59 -08:00
Markus Volk	b74b4cd7b2	malcontent: update 0.12.0 -> 0.13.0 Overview of changes in malcontent 0.13.0 ======================================== * Bugs fixed: - #48 Parental controls app: show the launcher, or merge into Settings? (Philip Withnall) - !172 Update fa.po - !173 Update Czech translation - !176 malcontent-control: Update metainfo file - !177 Update Swedish translation - !179 docs: Add list of legal references for relevant countries’ laws - !180 po: Update Slovenian translation - !181 Update Polish translation 240909 - !182 Add Chinese translation - !183 application: Fix opening Settings - !184 malcontent-control: Call setlocale() earlier to fix early i18n - !185 restrict-applications-selector: Fix pending changes being lost on search - !186 libmalcontent-ui: Port to libadwaita 1.6 - !187 app-filter: Fix logic for allowlist filtering on GAppInfo * Translation updates: - Chinese (China) (lumingzh) - Czech (AsciiWolf) - Persian (Danial Behzadi) - Polish (Piotr Drąg) - Slovenian (Martin Srebotnjak) - Swedish (Anders Jonsson) Signed-off-by: Markus Volk <f_l_k@t-online.de> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2024-12-27 23:00:37 -08:00
Peter Marko	88faae83b2	audiofile: patch CVE-2017-6839 Use patch from buildroot: https://github.com/buildroot/buildroot/commit/844a7c6281eb442881330a5d36d5a0719f2870bf Signed-off-by: Peter Marko <peter.marko@siemens.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2024-12-27 09:21:44 -08:00
Peter Marko	9d668989b1	audiofile: patch CVE-2017-6831 Use patch from buildroot: https://github.com/buildroot/buildroot/commit/bd5f84d301c4e74ca200a9336eca88468ec0e1f3 Signed-off-by: Peter Marko <peter.marko@siemens.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2024-12-27 09:21:44 -08:00
Peter Marko	75f2bd2b3b	audiofile: fix multiple CVEs CVE-2017-6830 / CVE-2017-6834 / CVE-2017-6836 / CVE-2017-6838 Use patch from buildroot: https://github.com/buildroot/buildroot/commit/4a1a8277bba490d227f413e218138e39f1fe1203 Signed-off-by: Peter Marko <peter.marko@siemens.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2024-12-27 09:21:44 -08:00
Peter Marko	f29fbaa465	audiofile: patch CVE-2017-6829 Use patch from buildroot: https://github.com/buildroot/buildroot/commit/434890df2a7c131b40fec1c49e6239972ab299d2 Signed-off-by: Peter Marko <peter.marko@siemens.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2024-12-27 09:21:44 -08:00
Peter Marko	634cbcb91c	audiofile: fix multiple CVEs CVE-2017-6827 / CVE-2017-6828 / CVE-2017-6832 / CVE-2017-6833 / CVE-2017-6835 / CVE-2017-6837 Use patch from buildroot: https://github.com/buildroot/buildroot/commit/cc00bde57fc20d11f8fa4e8ec5f193c091714c55 Signed-off-by: Peter Marko <peter.marko@siemens.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2024-12-27 09:21:44 -08:00
Peter Marko	74cda1df0e	limwmf: upgrade 0.2.8.4 -> 0.2.13 $ git log --oneline \| grep CVE f58c813 merge in fixes for libgd CVE-2019-6978 407a58b CVE-2017-6362 dabcb8c CVE-2016-10168 b691e47 CVE-2016-10167 16919b4 CVE-2016-9317 2208b48 CVE-2016-9011 f47cbdf CVE-2015-4696 b5ae5d1 CVE-2015-4695 879d6bf CVE-2015-0848+CVE-2015-4588 44f37ac CVE-2009-3546 7bd8ce0 CVE-2007-2756 cfc0916 CVE-2007-3477 5ec7547 CVE-2007-3473 fdd21b1 CVE-2007-3472 5588450 CVE-2007-0455 2c84480 CVE-2009-1364, Use-after-free vulnerability b9cc022 CVE-2006-3376 Integer overflow in player.c Adaptations: * removed patches included in new version. * extended buildpaths fix to pc file * changed paths from libdir/gtk-2 to libdir/gdk-pixbuf-2.0 Test - built imagemagick (only recipe in meta-openembedded depending on libwmf) with wmf PACKAGECONFIG. Signed-off-by: Peter Marko <peter.marko@siemens.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2024-12-27 09:21:43 -08:00
Peter Marko	1ed73b79de	libwmf; switched to unofficial fork Debian has switched to this fork in Bookworm. If contains dozens of CVE fixes and other bugfixes. This should make the maintenance of this package easier. The sources are identical to those abandoned in 2002: Only in .../tmp/work/core2-64-poky-linux/libwmf/0.2.8.4/libwmf-0.2.8.4/: autom4te.cache Only in /tmp/caolanm/libwmf/: .git Signed-off-by: Peter Marko <peter.marko@siemens.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2024-12-27 09:21:43 -08:00
Peter Marko	2308c8b5a2	imagemagick: mark CVE-2023-5341 as fixed This CVE is fixed by https://github.com/ImageMagick/ImageMagick/commit/aa673b2e4defc7cad5bec16c4fc8324f71e531f1 It is tracked as 'fixed in next version' - 7.1.2 (which does not exist) in NVD DB. .../tmp/work/core2-64-poky-linux/imagemagick/7.1.1-43/git$ git describe aa673b2e4defc7cad5bec16c4fc8324f71e531f1 --tags 7.1.1-18-4-gaa673b2e4d .../tmp/work/core2-64-poky-linux/imagemagick/7.1.1-43/git$ git tag --contains aa673b2e4defc7cad5bec16c4fc8324f71e531f1 \| head -n1 7.1.1-19 Signed-off-by: Peter Marko <peter.marko@siemens.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2024-12-27 09:21:43 -08:00
Peter Marko	7cec219b50	imagemagick: upgrade 7.1.1-26 -> 7.1.1-43 This fixes at least CVE-2024-41817 (in 7.1.1-36). Signed-off-by: Peter Marko <peter.marko@siemens.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>	2024-12-27 09:21:43 -08:00

... 10 11 12 13 14 ...

33136 Commits