mirrors/meta-openembedded
1
0
Fork 0
mirror of https://github.com/openembedded/meta-openembedded.git synced 2026-06-01 13:40:04 +00:00
Code Issues Projects Releases Wiki Activity
38,369 Commits 64 Branches 0 Tags
72154f38fc5384729ef3a42eb7c4ca0afaf1664b
Commit Graph

38369 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Adam Duskett 72154f38fc kmscon: fix zlib cross-compiling errors 
zlib compression was introduced in version 9.3.3. However, when
cross-compiling kmscon for an architecture other than x86_64, the
genunifont executable tries to use the build-systems zlib instead
of the hosts zlib.

This leads to the following error during compiling:
libz.so: error adding symbols: file in wrong format

Fix this by adding a new native zlib dependency specifically for the
genunifont executable.

Signed-off-by: Adam Duskett <adam.duskett@amarulasolutions.com>
Signed-off-by: Khem Raj <khem.raj@oss.qualcomm.com>
 2026-05-21 12:57:24 -07:00
Khem Raj c6abe6c8b0 python3-orjson: Upgrade to 3.11.9 
Depends on rust 1.95 and fix building with rust 1.95

Signed-off-by: Khem Raj <khem.raj@oss.qualcomm.com>
 2026-05-21 10:01:22 -07:00
Guocai He 83cad3966c postgresql: upgrade 17.8 -> 17.10 
Refreshed 0003-configure.ac-bypass-autoconf-2.69-version-check.patch
for 17.10

Includes fix for CVE-2026-6472, CVE-2026-6473, CVE-2026-6474, CVE-2026-6475,
CVE-2026-6476, CVE-2026-6477, CVE-2026-6478, CVE-2026-6479, CVE-2026-6637,
CVE-2026-6638 CVE-2026-6575

Release Notes:
https://www.postgresql.org/docs/release/17.10/

Signed-off-by: Guocai He <guocai.he.cn@windriver.com>
Signed-off-by: Khem Raj <khem.raj@oss.qualcomm.com>
 2026-05-21 07:31:01 -07:00
Felix Piedallu c5e90eff6c lvm2: Do not install sbin/dmvdostats to sysroot 
Version 1.02.214 of lvm2 installs this executable as an alias
to dmsetup vdostats.

This conflicts with the executable installed by libdevmapper.

Remove this binary from the sysroot, just like dmsetup and dmstats.

Signed-off-by: Félix Piédallu <felix.piedallu@non.se.com>
Signed-off-by: Khem Raj <khem.raj@oss.qualcomm.com>
 2026-05-21 07:31:01 -07:00
sjiao f90ccad49a openjpeg: add ptest support 
Add ptest support to enable runtime testing of openjpeg library.
Only unit tests are included, excluding tests that require external
data files (NR-/CONF-/ETS-/testjp2).

Tested on intel-x86-64: all 29 unit tests passed.

Signed-off-by: sjiao <Shilong.Jiao@windriver.com>
Signed-off-by: Khem Raj <khem.raj@oss.qualcomm.com>
 2026-05-21 07:31:01 -07:00
Yi Zhao 4009dea868 jemalloc: fix version string 
Referring to the VERSION file within the released source tarball, the
version string for --with-version option should be ${PV}-0-g${SRCREV}.

Signed-off-by: Yi Zhao <yi.zhao@windriver.com>
Signed-off-by: Khem Raj <khem.raj@oss.qualcomm.com>
 2026-05-21 07:31:00 -07:00
Wang Mingyu f2973002c9 xfsdump: upgrade 3.2.0 -> 3.3.0 
Signed-off-by: Wang Mingyu <wangmy@fujitsu.com>
Signed-off-by: Khem Raj <khem.raj@oss.qualcomm.com>
 2026-05-21 07:31:00 -07:00
Wang Mingyu a0589ae5a4 uriparser: upgrade 1.0.1 -> 1.0.2 
Changelog:
==============
* Fixed: [CVE-2026-44927]
    Stop truncating 'ptrdiff_t' to 'int'
* Fixed: [CVE-2026-44928]
    Fix 'EqualsUri' with regard to '.absolutePath'
* Fixed: Fix OOM related memory leak in 'CopyUriMm'
* Improved: Simplify internal function 'CompareRange' into 'RangeEquals'
* Improved: Make function 'RangeEquals' use size_t' internally
* Soname: 3:2:2 - see https://verbump.de/ for what these numbers do

Signed-off-by: Wang Mingyu <wangmy@fujitsu.com>
Signed-off-by: Khem Raj <khem.raj@oss.qualcomm.com>
 2026-05-21 07:31:00 -07:00
Wang Mingyu a86ee0d4f6 swagger-ui: upgrade 5.32.5 -> 5.32.6 
Signed-off-by: Wang Mingyu <wangmy@fujitsu.com>
Signed-off-by: Khem Raj <khem.raj@oss.qualcomm.com>
 2026-05-21 07:31:00 -07:00
Wang Mingyu 2413c8b267 python3-virtualenv: upgrade 21.3.1 -> 21.3.3 
Changelog:
===========
- add 3.16 to embedded wheel versions
- fix(upgrade): regen embedded init with correct MAX and 3.16
- Accept GraalPy implementation name.

Signed-off-by: Wang Mingyu <wangmy@fujitsu.com>
Signed-off-by: Khem Raj <khem.raj@oss.qualcomm.com>
 2026-05-21 07:31:00 -07:00
Wang Mingyu 537a4c4484 python3-typeguard: upgrade 4.5.1 -> 4.5.2 
Changelog:
 Fixed IndexError raised from check_signature_compatible when the subject method has no positional parameters

Signed-off-by: Wang Mingyu <wangmy@fujitsu.com>
Signed-off-by: Khem Raj <khem.raj@oss.qualcomm.com>
 2026-05-21 07:31:00 -07:00
Wang Mingyu 8ae0b005d2 python3-twisted: upgrade 25.5.0 -> 26.4.0 
License-Update: Copyright year updated to 2026

Signed-off-by: Wang Mingyu <wangmy@fujitsu.com>
Signed-off-by: Khem Raj <khem.raj@oss.qualcomm.com>
 2026-05-21 07:31:00 -07:00
Wang Mingyu d2656956d9 python3-tox: upgrade 4.53.1 -> 4.54.0 
Changelog:
===========
- test(conftest): strip broken nspkg.pth files under py3.15
- feat(packaging): declare tox.pytest deps via a testing extra
- fix(schema): cover every replace form in the TOML schema

Signed-off-by: Wang Mingyu <wangmy@fujitsu.com>
Signed-off-by: Khem Raj <khem.raj@oss.qualcomm.com>
 2026-05-21 07:30:59 -07:00
Wang Mingyu b71b3e83fd python3-tomlkit: upgrade 0.14.0 -> 0.15.0 
Changelog:
  Update parser to support TOML spec v1.1.0.

Signed-off-by: Wang Mingyu <wangmy@fujitsu.com>
Signed-off-by: Khem Raj <khem.raj@oss.qualcomm.com>
 2026-05-21 07:30:59 -07:00
Wang Mingyu 3052c0a501 python3-thrift: upgrade 0.22.0 -> 0.23.0 
Signed-off-by: Wang Mingyu <wangmy@fujitsu.com>
Signed-off-by: Khem Raj <khem.raj@oss.qualcomm.com>
 2026-05-21 07:30:59 -07:00
Wang Mingyu 157c5a9198 python3-sentry-sdk: upgrade 2.59.0 -> 2.60.0 
Signed-off-by: Wang Mingyu <wangmy@fujitsu.com>
Signed-off-by: Khem Raj <khem.raj@oss.qualcomm.com>
 2026-05-21 07:30:59 -07:00
Wang Mingyu 7a655b30fe python3-rich-toolkit: upgrade 0.19.7 -> 0.19.9 
Signed-off-by: Wang Mingyu <wangmy@fujitsu.com>
Signed-off-by: Khem Raj <khem.raj@oss.qualcomm.com>
 2026-05-21 07:30:59 -07:00
Wang Mingyu a8fa054d80 python3-reportlab: upgrade 4.5.0 -> 4.5.1 
Signed-off-by: Wang Mingyu <wangmy@fujitsu.com>
Signed-off-by: Khem Raj <khem.raj@oss.qualcomm.com>
 2026-05-21 07:30:59 -07:00
Wang Mingyu 9221e2d306 python3-regex: upgrade 2026.4.4 -> 2026.5.9 
Changelog:
 Reverse matching with full unicode casefolding could lead to out-of-range string indexes.

Signed-off-by: Wang Mingyu <wangmy@fujitsu.com>
Signed-off-by: Khem Raj <khem.raj@oss.qualcomm.com>
 2026-05-21 07:30:58 -07:00
Wang Mingyu 0b6fa1f1c6 python3-python-multipart: upgrade 0.0.27 -> 0.0.28 
Changelog:
==========
- Speed up partial-boundary tail scan via bytes.find
- Cap multipart boundary length at 256 bytes

Signed-off-by: Wang Mingyu <wangmy@fujitsu.com>
Signed-off-by: Khem Raj <khem.raj@oss.qualcomm.com>
 2026-05-21 07:30:58 -07:00
Wang Mingyu f4943b2efe python3-pytest-codspeed: upgrade 4.5.0 -> 5.0.2 
Changelog:
===========
- chore: bump instrument-hooks
- Remove CFFI in favor of native extension to support free-threaded mode
- feat(hooks): declare native extension free-thread safe
- feat: use instrument-hook markers in walltime
- build: enable free-threaded wheels in cibuildwheel
- feat: skip Python runtime objects in callgrind

Signed-off-by: Wang Mingyu <wangmy@fujitsu.com>
Signed-off-by: Khem Raj <khem.raj@oss.qualcomm.com>
 2026-05-21 07:30:58 -07:00
Wang Mingyu f8d7055b54 python3-paramiko: upgrade 4.0.0 -> 5.0.0 
Signed-off-by: Wang Mingyu <wangmy@fujitsu.com>
Signed-off-by: Khem Raj <khem.raj@oss.qualcomm.com>
 2026-05-21 07:30:58 -07:00
Wang Mingyu 78ba07b0a3 python3-pandas: upgrade 3.0.2 -> 3.0.3 
Signed-off-by: Wang Mingyu <wangmy@fujitsu.com>
Signed-off-by: Khem Raj <khem.raj@oss.qualcomm.com>
 2026-05-21 07:30:58 -07:00
Wang Mingyu edeaf33269 python3-myst-parser: upgrade 5.0.0 -> 5.1.0 
New Features
============
- Add "alert" syntax extension for GFM alerts (e.g. > [!NOTE])
- Add "gfm_autolink" syntax extension for GFM autolinks
- Add myst_strikethrough_single_tilde config option to allow single tilde (~)
  for strikethrough
- Add myst_colon_fence_exact_match config option to require the closing colon
  fence to have exactly the same number of colons as the opening

Improvements =============
- Update myst_gfm_only mode to use the unified gfm_plugin, which now includes
  GFM autolinks, alerts, and improved strikethrough/tasklist handling
- Improve MathJax 4 compatibility for Sphinx 9
- Stop directive-option parsing at colon fences, fixing nested colon fence
  directives

Bug Fixes ===========
- Use docname instead of source path in warning locations
- Correctly encode & in Markdown URLs by not HTML-escaping refuri
- Fix RemovedInSphinx10Warning for inventory item iteration
- Pin mdit-py-plugins>=0.6.1 for nested field list fix

Dependency Upgrades ====================
- Upgrade to markdown-it-py~=4.2 and mdit-py-plugins~=0.6
- Update pygments requirement from <2.20 to <2.21

Signed-off-by: Wang Mingyu <wangmy@fujitsu.com>
Signed-off-by: Khem Raj <khem.raj@oss.qualcomm.com>
 2026-05-21 07:30:58 -07:00
Wang Mingyu e0676322d0 python3-meh: upgrade 0.52 -> 0.53 
Signed-off-by: Wang Mingyu <wangmy@fujitsu.com>
Signed-off-by: Khem Raj <khem.raj@oss.qualcomm.com>
 2026-05-21 07:30:57 -07:00
Wang Mingyu 7c6a0813e0 python3-mdit-py-plugins: upgrade 0.6.0 -> 0.6.1 
FIX: Nested field lists incorrectly nesting inside parent containers

Signed-off-by: Wang Mingyu <wangmy@fujitsu.com>
Signed-off-by: Khem Raj <khem.raj@oss.qualcomm.com>
 2026-05-21 07:30:57 -07:00
Wang Mingyu 63f8874f0e python3-inline-snapshot: upgrade 0.32.7 -> 0.33.0 
Signed-off-by: Wang Mingyu <wangmy@fujitsu.com>
Signed-off-by: Khem Raj <khem.raj@oss.qualcomm.com>
 2026-05-20 21:18:34 -07:00
Wang Mingyu c14a56b358 python3-huey: upgrade 3.0.0 -> 3.0.1 
Changelog:
==========
- Fix bug in redis version parsing when using Elasticache or any other that
  sends major/minor. redis-py incorrectly parses these as floats because
  there's only a single decimal, so the version check was breaking.
- Rename max task option --max-tasks (previously was --max_tasks).

Signed-off-by: Wang Mingyu <wangmy@fujitsu.com>
Signed-off-by: Khem Raj <khem.raj@oss.qualcomm.com>
 2026-05-20 21:18:34 -07:00
Wang Mingyu 9255649ec1 python3-flask-jwt-extended: upgrade 4.7.3 -> 4.7.4 
Changelog:
  setup.py: bump PyJWT floor to >=2.11.0 to match the actual runtime requirement

Signed-off-by: Wang Mingyu <wangmy@fujitsu.com>
Signed-off-by: Khem Raj <khem.raj@oss.qualcomm.com>
 2026-05-20 21:18:34 -07:00
Wang Mingyu 4844eade22 python3-faker: upgrade 40.15.0 -> 40.18.0 
Changelog:
===========
- Add automotive providers for ar_DZ and fr_DZ locales.
- Add phone_number provider for ar_DZ and fr_DZ locales.
- Add am_ET phone_number provider for Ethiopia.
- Fix duplicate phone number prefix 145 in zh_CN locale.

Signed-off-by: Wang Mingyu <wangmy@fujitsu.com>
Signed-off-by: Khem Raj <khem.raj@oss.qualcomm.com>
 2026-05-20 21:18:34 -07:00
Wang Mingyu f514cde1a5 python3-coverage: upgrade 7.13.5 -> 7.14.0 
Signed-off-by: Wang Mingyu <wangmy@fujitsu.com>
Signed-off-by: Khem Raj <khem.raj@oss.qualcomm.com>
 2026-05-20 21:18:34 -07:00
Wang Mingyu 74cd808dbd lldpd: upgrade 1.0.21 -> 1.0.22 
* Fix:
   + Fix out-of-bound read access when removing VLAN tag (CVE-2026-46433, #787)
   + Reject 0-length management address in LLDP
   + Fix race condition when creating the control socket
   + Fix FDP MAC address
   + Fix memory leak in the BSD bridge query path
   + Fix duplicate management addresses when merging EDP VLAN frames

Signed-off-by: Wang Mingyu <wangmy@fujitsu.com>
Signed-off-by: Khem Raj <khem.raj@oss.qualcomm.com>
 2026-05-20 21:18:33 -07:00
Wang Mingyu ff7bf096f5 libsdl3-mixer: upgrade 3.2.0 -> 3.2.2 
Changelog:
=============
- MIX_DestroyTrack may now be called from a mixer callback
- Fixed WAV decoding on big-endian systems

Signed-off-by: Wang Mingyu <wangmy@fujitsu.com>
Signed-off-by: Khem Raj <khem.raj@oss.qualcomm.com>
 2026-05-20 21:18:33 -07:00
Wang Mingyu 9c56c3ed52 libsdl2-mixer: upgrade 2.8.1 -> 2.8.2 
Changelog:
==========
 * Improved OGG decoding speed when using stb_vorbis
 * Updated to newer versions of decoding libraries

Signed-off-by: Wang Mingyu <wangmy@fujitsu.com>
Signed-off-by: Khem Raj <khem.raj@oss.qualcomm.com>
 2026-05-20 21:18:33 -07:00
Wang Mingyu 313c92cda8 libei: upgrade 1.5.0 -> 1.6.0 
Signed-off-by: Wang Mingyu <wangmy@fujitsu.com>
Signed-off-by: Khem Raj <khem.raj@oss.qualcomm.com>
 2026-05-20 21:18:33 -07:00
Wang Mingyu b2ae1309c0 lcms: upgrade 2.19 -> 2.19.1 
Changelog:
==========
- Fixed sonames generation when using autotools
- Recovered an undocumented memory write feature lost because a "security" report.
- Fixed documentation pointers on visual studio project.

Signed-off-by: Wang Mingyu <wangmy@fujitsu.com>
Signed-off-by: Khem Raj <khem.raj@oss.qualcomm.com>
 2026-05-20 21:18:33 -07:00
Wang Mingyu 5063ac8e48 imagemagick: upgrade 7.1.2-21 -> 7.1.2-22 
Signed-off-by: Wang Mingyu <wangmy@fujitsu.com>
Signed-off-by: Khem Raj <khem.raj@oss.qualcomm.com>
 2026-05-20 21:18:33 -07:00
Wang Mingyu 2b3c9da3f8 gnome-text-editor: upgrade 50.0 -> 50.1 
Changelog:
==============
 * Build/CI updates
 * Fix high-contrast CSS properties
 * Accessibility fix for preferences switch
 * Translation updates

Signed-off-by: Wang Mingyu <wangmy@fujitsu.com>
Signed-off-by: Khem Raj <khem.raj@oss.qualcomm.com>
 2026-05-20 21:18:32 -07:00
Wang Mingyu 0bcee676da fastfetch: upgrade 2.62.1 -> 2.63.1 
Changelog:
==========
- Fixes media length detection for Chrome on Linux (Media, Linux)
- Fixes segmentation fault when specifying unsupported modules on command line
- Disables usage of Netlink for Wi-Fi detection on s390x architectures (Wifi, Linux)

Signed-off-by: Wang Mingyu <wangmy@fujitsu.com>
Signed-off-by: Khem Raj <khem.raj@oss.qualcomm.com>
 2026-05-20 21:18:32 -07:00
Wang Mingyu 05fe4e2bfc dovecot: upgrade 2.4.3 -> 2.4.4 
Signed-off-by: Wang Mingyu <wangmy@fujitsu.com>
Signed-off-by: Khem Raj <khem.raj@oss.qualcomm.com>
 2026-05-20 21:18:32 -07:00
Wang Mingyu 45df5217fa ctags: upgrade 6.2.20260426.0 -> 6.2.20260510.0 
Signed-off-by: Wang Mingyu <wangmy@fujitsu.com>
Signed-off-by: Khem Raj <khem.raj@oss.qualcomm.com>
 2026-05-20 21:18:32 -07:00
Wang Mingyu d490283916 catch2: upgrade 3.14.0 -> 3.15.0 
Fixes
======
- Fixed ambiguous overload issue with std::optional<T> in C++26. (#3095)

Improvements
============
- Simplified CATCH_REGISTER_ENUM internals for faster compilation and retrieval.
- Successful assertion are slightly (1-2%) faster.
- Generic (new-style) matchers support constexpr matching in C++20.
- Added STATIC_REQUIRE_THAT for compile-time matcher assertions.

Signed-off-by: Wang Mingyu <wangmy@fujitsu.com>
Signed-off-by: Khem Raj <khem.raj@oss.qualcomm.com>
 2026-05-20 21:18:32 -07:00
Wang Mingyu 84d4d96d9f bit7z: upgrade 4.0.11 -> 4.0.12 
Signed-off-by: Wang Mingyu <wangmy@fujitsu.com>
Signed-off-by: Khem Raj <khem.raj@oss.qualcomm.com>
 2026-05-20 21:18:32 -07:00
Wang Mingyu c14ab2717b python3-pycurl: Use pep517-backend Fixes 
QA Issue: inherits setuptools3 but has pyproject.toml with setuptools.build_meta, use the correct class [pep517-backend]

Signed-off-by: Wang Mingyu <wangmy@fujitsu.com>
Signed-off-by: Khem Raj <khem.raj@oss.qualcomm.com>
 2026-05-20 21:18:31 -07:00
Jiaying Song a07b2ddc51 layer.conf: remove dead BBFILES_DYNAMIC entry for clang-layer 
The dynamic-layers/clang-layer/ directory does not exist under meta-oe.
Remove the stale BBFILES_DYNAMIC references as they match nothing.

Signed-off-by: Jiaying Song <jiaying.song.cn@windriver.com>
Signed-off-by: Khem Raj <khem.raj@oss.qualcomm.com>
 2026-05-20 21:18:31 -07:00
Abhishek Bachiphale 44c8962f48 dnsmasq: fix CVE-2026-5172 
A buffer overflow in dnsmasq’s extract_addresses() function allows
an attacker to trigger a heap out-of-bounds read and crash by
exploiting a malformed DNS response, enabling extract_name()
to advance the pointer past the record’s end.

Reference:
[ https://nvd.nist.gov/vuln/detail/CVE-2026-5172 ]

Signed-off-by: Abhishek Bachiphale <Abhishek.Bachiphale@windriver.com>
Signed-off-by: Khem Raj <khem.raj@oss.qualcomm.com>
 2026-05-20 21:18:31 -07:00
Abhishek Bachiphale b4c4853624 dnsmasq: fix CVE-2026-4893 
An information disclosure vulnerability in dnsmasq allows remote
attackers to bypass source checks via a crafted DNS packet with
RFC 7871 client subnet information.

Reference:
[ https://nvd.nist.gov/vuln/detail/CVE-2026-4893 ]

Signed-off-by: Abhishek Bachiphale <Abhishek.Bachiphale@windriver.com>
Signed-off-by: Khem Raj <khem.raj@oss.qualcomm.com>
 2026-05-20 21:18:31 -07:00
Abhishek Bachiphale 21c3d7eb6f dnsmasq: fix CVE-2026-4892 
A heap-based out-of-bounds write vulnerability in the DHCPv6
implementation of dnsmasq allows local attackers to execute
arbitrary code with root privileges via a crafted DHCPv6 packet.

Reference:
[ https://nvd.nist.gov/vuln/detail/CVE-2026-4892 ]

Signed-off-by: Abhishek Bachiphale <Abhishek.Bachiphale@windriver.com>
Signed-off-by: Khem Raj <khem.raj@oss.qualcomm.com>
 2026-05-20 21:18:31 -07:00
Abhishek Bachiphale a9de48a9fa dnsmasq: fix CVE-2026-4891 
A heap-based out-of-bounds read vulnerability in the
DNSSEC validation of dnsmasq allows remote attackers
to cause a denial of service via a crafted DNS packet.

Reference:
[ https://nvd.nist.gov/vuln/detail/CVE-2026-4891 ]

Signed-off-by: Abhishek Bachiphale <Abhishek.Bachiphale@windriver.com>
Signed-off-by: Khem Raj <khem.raj@oss.qualcomm.com>
 2026-05-20 21:18:31 -07:00
Abhishek Bachiphale 78162615f5 dnsmasq: fix CVE-2026-4890 
A Denial of Service (DoS) vulnerability in the DNSSEC
validation of dnsmasq allows remote attackers to cause
a denial of service via a crafted DNS packet.

Reference:
[ https://nvd.nist.gov/vuln/detail/CVE-2026-4890 ]

Signed-off-by: Abhishek Bachiphale <Abhishek.Bachiphale@windriver.com>
Signed-off-by: Khem Raj <khem.raj@oss.qualcomm.com>
 2026-05-20 21:18:30 -07:00