mirrors/meta-openembedded
1
0
Fork 0
mirror of https://github.com/openembedded/meta-openembedded.git synced 2026-06-14 05:49:57 +00:00
Code Issues Projects Releases Wiki Activity
19,943 Commits 64 Branches 0 Tags
758ea6ed7fa84df8164ffbbc2d101302463f2355
Commit Graph

9289 Commits

Author SHA1 Message Date
Andreas Müller 758ea6ed7f qpdf: upgrade 10.2.0 -> 10.3.2 
Signed-off-by: Andreas Müller <schnitzeltony@gmail.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
 2021-05-22 05:55:02 -07:00
Andreas Müller c337875460 protobuf: upgrade 3.15.2 -> 3.17.0 
Signed-off-by: Andreas Müller <schnitzeltony@gmail.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
 2021-05-22 05:54:00 -07:00
Andreas Müller 6a6375d962 mm-common: upgrade 1.0.2 -> 1.0.3 
Signed-off-by: Andreas Müller <schnitzeltony@gmail.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
 2021-05-22 05:54:00 -07:00
Andreas Müller babb2537ac modemmanager: upgrade 1.16.2 -> 1.16.4 
Signed-off-by: Andreas Müller <schnitzeltony@gmail.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
 2021-05-22 05:54:00 -07:00
Andreas Müller a4f52d928b libpeas: upgrade 1.26.0 -> 1.30.0 
(Identical) patches have been applied upstream

Signed-off-by: Andreas Müller <schnitzeltony@gmail.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
 2021-05-22 05:54:00 -07:00
Andreas Müller 8848f59f56 remmina: upgrade 1.4.11 -> 1.4.17 
* 1.4.11 fails to fetch
* do_install_append can go the only path left is metainfo and mime

Signed-off-by: Andreas Müller <schnitzeltony@gmail.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
 2021-05-22 05:54:00 -07:00
Andreas Müller 50fddcc42b redis: upgrade 6.2.2 -> 6.2.3 
Signed-off-by: Andreas Müller <schnitzeltony@gmail.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
 2021-05-22 05:54:00 -07:00
Andreas Müller cb65ca0d45 snappy: upgrade 1.1.8 -> 1.1.9 
Get sources from github repo

Signed-off-by: Andreas Müller <schnitzeltony@gmail.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
 2021-05-22 05:54:00 -07:00
Andreas Müller fda3b0103b xrdp: upgrade 0.9.15 -> 0.9.16 
Signed-off-by: Andreas Müller <schnitzeltony@gmail.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
 2021-05-22 05:54:00 -07:00
Andreas Müller 5e74d515b9 ttf-lohit: upgrade 2 -> 2.92.1 
Signed-off-by: Andreas Müller <schnitzeltony@gmail.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
 2021-05-22 05:54:00 -07:00
Andreas Müller dc5e42154f zsh: upgrade 5.4.2 -> 5.8 
* without autotools-brokensep install fails for several isssues. Started to fix
  them but stooped after third
* remove some odd/orphaned code in recipe

Signed-off-by: Andreas Müller <schnitzeltony@gmail.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
 2021-05-22 05:54:00 -07:00
Andreas Müller 861a983eae gnuplot: upgrade 5.2.8 -> 5.4.1 
Signed-off-by: Andreas Müller <schnitzeltony@gmail.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
 2021-05-22 05:54:00 -07:00
Robert Joslyn bdb9adbeb4 ctags: Use PACKAGECONFIG for build options 
Make the dependencies optional via PACKAGECONFIG where possible to make
it easier for users to enable or disable them as desired. Set the new
PACKAGECONFIG defaults to recreate what was built previously.

The configure script does not have a manpages option, resulting in a
warning:
	ctags-5.9.20210502.0-r0 do_configure: QA Issue: ctags: invalid PACKAGECONFIG: manpages [invalid-packageconfig]

The configure script detects if rst2man.py is available, and enables
creating the man pages if found. Add python3-docutils-native as a
dependency only when documentation is requested.

Remove commented code which looks like leftover debugging. The binary is
installed as expected.

Signed-off-by: Robert Joslyn <robert.joslyn@redrectangle.org>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
 2021-05-21 00:23:54 -07:00
Khem Raj a116630318 opencv: Disable tbb on riscv/musl 
getcontext|setcontext functionality is provided via libucontext for musl
but this library is not yet ported to RISCV

Signed-off-by: Khem Raj <raj.khem@gmail.com>
 2021-05-20 09:09:13 -07:00
zhengruoqin 975892f324 libtinyxml2: upgrade 8.0.0 -> 8.1.0 
Signed-off-by: Zheng Ruoqin <zhengrq.fnst@fujitsu.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
 2021-05-19 19:11:06 -07:00
zhengruoqin faf4abe27d libqmi: upgrade 1.28.2 -> 1.28.4 
Signed-off-by: Zheng Ruoqin <zhengrq.fnst@fujitsu.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
 2021-05-19 19:11:06 -07:00
zangrc 48cb359db2 postgresql: upgrade 13.2 -> 13.3 
Refresh the following patch:
0001-configure.in-bypass-autoconf-2.69-version-check.patch

Signed-off-by: Zang Ruochen <zangrc.fnst@fujitsu.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
 2021-05-19 18:39:35 -07:00
zangrc 2c4ee27216 makedumpfile: upgrade 1.6.8 -> 1.6.9 
Signed-off-by: Zang Ruochen <zangrc.fnst@fujitsu.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
 2021-05-19 18:39:35 -07:00
wangmy d8402fdd6f trace-cmd: Conflict resolution 
perf(oe-core) also uses the doc included in plugins/, so package it in own subdirs of trace-cmd.

Signed-off-by: Wang Mingyu <wangmy@fujitsu.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
 2021-05-19 18:39:35 -07:00
Saul Wold 433603cb7d sysdig: disable building for ppc 
Sysdig depends on tbb which no longer builds for powerpc

Signed-off-by: Saul Wold <saul.wold@windriver.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
 2021-05-19 18:39:35 -07:00
Saul Wold e0581ad12f opencv: remove tbb packageconfig for powerpc 
Since tbb does not build for powerpc remove it from the enabled list

Signed-off-by: Saul Wold <saul.wold@windriver.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
 2021-05-19 18:39:35 -07:00
Leon Anavi 34277b5ac9 surf: Upgrade 2.0 -> 2.1 
Upgade Surf browser to release 2.1:

- Remove accelerated canvas parameter
- Remove external plugin handling

License-Update: Update contributors in file LICENSE

Signed-off-by: Leon Anavi <leon.anavi@konsulko.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
 2021-05-19 09:17:49 -07:00
Andreas Müller 0fa836b69c nano: upgrade 5.6 -> 5.7 
Full changelog is found at [1]

[1] https://www.nano-editor.org/dist/latest/ChangeLog

Signed-off-by: Andreas Müller <schnitzeltony@gmail.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
 2021-05-19 09:17:49 -07:00
Andreas Müller abc5d296dd portaudio-v19: upgrade 19.6.0 -> 19.7.0 
* development continues on github
* build with CMake
* examples is a configure option -> replace (always empty) extra package by
  PACKAGECONFIG

From announcement:

* support for latest Mac OS APIs
* Jack - fixes for device names that allows use on Linux systems with PipeWire
* WASAPI - numerous improvements
* OSS - better format support
* ALSA - various fixes for hangs and crashes
* WDMKS - improved performance and fixes
* updated build scripts

Signed-off-by: Andreas Müller <schnitzeltony@gmail.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
 2021-05-19 09:17:49 -07:00
wangmy 57ae91d291 libsdl: Fix CVE-2019-13616 
References
  https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-13616

  SDL (Simple DirectMedia Layer) through 1.2.15 and 2.x through 2.0.9 has a heap-based buffer over-read
  in BlitNtoN in video/SDL_blit_N.c when called from SDL_SoftBlit in video/SDL_blit.c.

  Upstream-Status: Backport [https://github.com/libsdl-org/SDL/commit/97fefd050976bbbfca9608499f6a7d9fb86e70db]
  CVE: CVE-2019-13616

Signed-off-by: Wang Mingyu <wangmy@fujitsu.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
 2021-05-19 09:17:49 -07:00
wangmy a9aecd2c32 exiv2: Fix CVE-2021-29473 
References
      https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-29473

      The out-of-bounds read is triggered when Exiv2 is used to write metadata into a crafted image file.
      An attacker could potentially exploit the vulnerability to cause a denial of service by crashing Exiv2,
      if they can trick the victim into running Exiv2 on a crafted image file.

      Upstream-Status: Accepted [https://github.com/Exiv2/exiv2/pull/1587/commits/e6a0982f7cd9282052b6e3485a458d60629ffa0b]
      CVE: CVE-2021-29473

Signed-off-by: Wang Mingyu <wangmy@fujitsu.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
 2021-05-19 09:17:49 -07:00
wangmy bb1400efda exiv2: Fix CVE-2021-29470 
References
      https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-29470

      The out-of-bounds read is triggered when Exiv2 is used to write metadata into a crafted image file.
      An attacker could potentially exploit the vulnerability to cause a denial of service by crashing Exiv2,
      if they can trick the victim into running Exiv2 on a crafted image file.

      Upstream-Status: Accepted [https://github.com/Exiv2/exiv2/pull/1581/commits/6628a69c036df2aa036290e6cd71767c159c79ed]
      CVE: CVE-2021-29470

Signed-off-by: Wang Mingyu <wangmy@fujitsu.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
 2021-05-19 09:17:49 -07:00
wangmy 8c9470bdfa exiv2: Fix CVE-2021-29464 
References
          https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-29464

          The heap overflow is triggered when Exiv2 is used to write metadata into a crafted image file.
          An attacker could potentially exploit the vulnerability to gain code execution, if they can
          trick the victim into running Exiv2 on a crafted image file.

          Upstream-Status: Accepted [https://github.com/Exiv2/exiv2/commit/f9308839198aca5e68a65194f151a1de92398f54]
          CVE: CVE-2021-29464

Signed-off-by: Wang Mingyu <wangmy@fujitsu.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
 2021-05-19 09:17:49 -07:00
wangmy 9e7c2c9713 exiv2: Fix CVE-2021-3482 
References
      https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3482

      Improper input validation of the rawData.size property in Jp2Image::readMetadata() in jp2image.cpp
      can lead to a heap-based buffer overflow via a crafted JPG image containing malicious EXIF data.

      Upstream-Status: Accepted [https://github.com/Exiv2/exiv2/pull/1523/commits/22ea582c6b74ada30bec3a6b15de3c3e52f2b4da]
      CVE: CVE-2021-3482

Signed-off-by: Wang Mingyu <wangmy@fujitsu.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
 2021-05-19 09:17:49 -07:00
wangmy 8e63ac6c86 exiv2: Fix CVE-2021-29463 
References
      https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-29463

      The out-of-bounds read is triggered when Exiv2 is used to write metadata into a crafted image file.
      An attacker could potentially exploit the vulnerability to cause a denial of service by crashing Exiv2,
      if they can trick the victim into running Exiv2 on a crafted image file.

      Upstream-Status: Accepted [https://github.com/Exiv2/exiv2/commit/783b3a6ff15ed6f82a8f8e6c8a6f3b84a9b04d4b]
      CVE: CVE-2021-29463

Signed-off-by: Wang Mingyu <wangmy@fujitsu.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
 2021-05-19 09:17:49 -07:00
wangmy f0d83c14d9 exiv2: Fix CVE-2021-29458 
References
      https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-29458

      The out-of-bounds read is triggered when Exiv2 is used to write metadata into a crafted image file.
      An attacker could potentially exploit the vulnerability to cause a denial of service by crashing Exiv2,
      if they can trick the victim into running Exiv2 on a crafted image file.

      Upstream-Status: Accepted [https://github.com/Exiv2/exiv2/pull/1536/commits/06d2db6e5fd2fcca9c060e95fc97f8a5b5d4c22d]
      CVE: CVE-2021-29458

Signed-off-by: Wang Mingyu <wangmy@fujitsu.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
 2021-05-19 09:17:49 -07:00
wangmy 5be7269309 exiv2: Fix CVE-2021-29457 
References
  https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-29457

  The heap overflow is triggered when Exiv2 is used to write metadata into a crafted image file.
  An attacker could potentially exploit the vulnerability to gain code execution, if they can
  trick the victim into running Exiv2 on a crafted image file.

  Upstream-Status: Accepted [https://github.com/Exiv2/exiv2/commit/0230620e6ea5e2da0911318e07ce6e66d1ebdf22]
  CVE: CVE-2021-29457

Signed-off-by: Wang Mingyu <wangmy@fujitsu.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
 2021-05-19 09:17:49 -07:00
Alexander Vickberg d6ef417074 hostapd: fix building with CONFIG_TLS=internal 
The patch recently added for CVE-2021-30004 broke compilation with
CONFIG_TLS=internal. This adds the necessary function to let it
compile again.

Signed-off-by: Alexander Vickberg <wickbergster@gmail.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
 2021-05-17 09:15:23 -07:00
William A. Kennington III 05b8c9578d span-lite: upgrade 0.8.1 -> 0.9.2 
Signed-off-by: William A. Kennington III <wak@google.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
 2021-05-17 09:15:23 -07:00
Nuno Sá a41f4277cd libiio: mark libxml2 as depends for usb_backend 
When usb_backend is configured, libxml2 is set as a RDEPEND. But, in
reality we want it to be part of the DEPENDS list.

Signed-off-by: Nuno Sá <nuno.sa@analog.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
 2021-05-17 09:00:36 -07:00
Nuno Sá 31c3d52888 libiio: add serial backend support 
This patch adds the serial backend to the PACKAGECONFIG list.

Signed-off-by: Nuno Sá <nuno.sa@analog.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
 2021-05-17 09:00:36 -07:00
Khem Raj ea0af875ca libraw: Move from meta-qt5-extra to meta-oe 
Signed-off-by: Khem Raj <raj.khem@gmail.com>
Cc: Andreas Müller <schnitzeltony@gmail.com>
 2021-05-17 09:00:36 -07:00
Khem Raj f701ffa95d googletest: Update to tip of trunk 
Check the top level license for checksums, as it is now available and is
BSD-3-Clause

Signed-off-by: Khem Raj <raj.khem@gmail.com>
 2021-05-17 09:00:35 -07:00
Ross Burton 7fa165e0df nss: remove -march vs -mcpu workaround 
NSS's build tries to be clever and passes for example -march=armv8-a+crypto
explicitly, instead of relying on the person doing the compilation to
set the right flags.

This conflicts with our compiler flags which typically pass the ideal
tune for the target, for example -mcpu=cortex-a55+crc+crypto.

When this happens GCC warns that the flags conflict (which was promoted
to an error, now fixed) and -march takes precedence over -mcpu.

As there's a huge number of potential tune flags to remove to avoid the
conflict, now that warnings are not fatal we can stop removing the flags
and let GCC warn as the generated code is the same.

Signed-off-by: Ross Burton <ross.burton@arm.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
 2021-05-14 07:27:26 -07:00
Ross Burton c16459a2e6 nss: disable -Werror 
-Werror should be used by developers and not packagers, because new
compiler flags or GCC versions can use new warnings.

Signed-off-by: Ross Burton <ross.burton@arm.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
 2021-05-14 07:27:26 -07:00
zhengruoqin 087223d8b0 libxmlb: upgrade 0.3.0 -> 0.3.1 
Signed-off-by: Zheng Ruoqin <zhengrq.fnst@fujitsu.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
 2021-05-14 07:26:46 -07:00
zhengruoqin 357f1992e3 libjcat: upgrade 0.1.6 -> 0.1.7 
Signed-off-by: Zheng Ruoqin <zhengrq.fnst@fujitsu.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
 2021-05-14 07:26:46 -07:00
zhengruoqin 363370a846 libdivecomputer: upgrade 0.6.0 -> 0.7.0 
Signed-off-by: Zheng Ruoqin <zhengrq.fnst@fujitsu.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
 2021-05-14 07:26:46 -07:00
zangrc fec704f62c iwd: upgrade 1.13 -> 1.14 
Refresh the following patch:
0001-build-Use-abs_top_srcdir-instead-of-abs_srcdir-for-e.patch

Signed-off-by: Zang Ruochen <zangrc.fnst@fujitsu.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
 2021-05-14 07:26:46 -07:00
zangrc 4cd13e9108 gensio: upgrade 2.2.4 -> 2.2.5 
Signed-off-by: Zang Ruochen <zangrc.fnst@fujitsu.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
 2021-05-14 07:26:46 -07:00
zangrc 6d125a8db5 cloc: upgrade 1.88 -> 1.90 
Signed-off-by: Zang Ruochen <zangrc.fnst@fujitsu.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
 2021-05-14 07:26:46 -07:00
wangmy 54feab11a1 uftrace: Fix a plthook crash on aarch64 with binutils2.35.1 and later versions on aarch64 
Signed-off-by: Wang Mingyu <wangmy@fujitsu.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
 2021-05-14 07:26:46 -07:00
Armin Kuster 7967b8ee00 packagegroup-meta-oe: add audit to pkg grp 
Signed-off-by: Armin Kuster <akuster808@gmail.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
 2021-05-12 20:45:50 -07:00
Armin Kuster e4ea756eeb audit: migrate from meta-selinux 
Move audit to a more common layer to simplify integration.

Signed-off-by: Armin Kuster <akuster808@gmail.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
 2021-05-12 20:45:50 -07:00
Martin Jansa 9975c11e4a ostree: switch from default master branch to main to fix do_fetch failure 
* branch was renamed in upstream repo

Signed-off-by: Martin Jansa <Martin.Jansa@gmail.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
 2021-05-12 07:11:41 -07:00