CVE-2017-8806 doesn't apply to out configuration of postgresql so we
can safely ignore it.
Signed-off-by: Davide Gardenal <davide.gardenal@huawei.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
CVE-2007-2728, CVE-2007-3205 and CVE-2007-4596 are patched in our
version of php but they don't have a vulnerable version range in the
NVD database, that's why they need to be ignored.
Signed-off-by: Davide Gardenal <davide.gardenal@huawei.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
CVE-2014-8180, CVE-2017-18381 and CVE-2017-2665 are not affecting our
configuration so they can be safely ignored.
Signed-off-by: Davide Gardenal <davide.gardenal@huawei.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
Some old CVEs don't have a vulnerable version range in the NVD database,
this causes come mismatch with cve-check. Ignore many CVEs that are
picked up by the class but are patched in our products.
Signed-off-by: Davide Gardenal <davide.gardenal@huawei.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
CVE-2017-5834, CVE-2017-5835 and CVE-2017-5836 are patched in our
version of libplist but they don't have a vulnerable version range in
the NVD database, that's why they need to be ignored.
Signed-off-by: Davide Gardenal <davide.gardenal@huawei.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
This one is needed for version 5.0.7.
And should not be needed anymore for version 6.x.
Signed-off-by: Jan Vermaete <jan.vermaete@gmail.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
This is needed as rdepends of the python3-jsonrpcserver package in version 5.0.7.
Is should not be needed anymore in the 6.x version.
Signed-off-by: Jan Vermaete <jan.vermaete@gmail.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
Summary was ending in a kind of cut off sentence.
The text for summary and description is taken from the homepage.
Signed-off-by: Jan Vermaete <jan.vermaete@gmail.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
It does not have compiler intrinsics for 64bit atomics
Fixes
MetricsSample.cpp:(.text._ZN16MetricsSampleApp4mainERKNSt3__16vectorINS0_12basic_stringIcNS0_11char_t
raitsIcEENS0_9allocatorIcEEEENS5_IS7_EEEE[_ZN16MetricsSampleApp4mainERKNSt3__16vectorINS0_12basic_stringIcNS0_11char_traitsIcEENS0_9allocatorIcEEEENS5_IS7_EEEE]+0x104): undefined reference to `__atomic_compare_exchange_8'
Signed-off-by: Khem Raj <raj.khem@gmail.com>
Still with the warning:
WARNING: python3-pyzmq-23.2.0-r0 do_package_qa: QA Issue: File /usr/lib/python3.10/site-packages/zmq/utils/compiler.json in package python3-pyzmq contains reference to TMPDIR
File /usr/lib/python3.10/site-packages/zmq/utils/config.json in package python3-pyzmq contains reference to TMPDIR [buildpaths]
Signed-off-by: Jan Vermaete <jan.vermaete@gmail.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
Changelog:
=========
Added
------
Add support for arbitrary size integers (#548)
Fixed
---------
CVE-2022-31116:
Replace wchar_t string decoding implementation with a uint32_t-based one (#555)
Fix handling of surrogates on decoding (#550)
CVE-2022-31117: Potential double free of buffer during string decoding
Fix memory leak on encoding errors when the buffer was resized (#549)
Integer parsing: always detect overflows (#544)
Fix handling of surrogates on encoding (#530)
Signed-off-by: Xu Huan <xuhuan.fnst@fujitsu.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
Changelog:
=========
Fixed null check for fribidi_version_info in FriBiDi shim
Added GIF decompression bomb check
Handle PCF fonts files with less than 256 characters
Improved GIF optimize condition
Reverted to array_interface with the release of NumPy 1.23
Pad PCX palette to 768 bytes when saving
Fixed bug with rounding pixels to palette colors
Use gnome-screenshot on Linux if available
Fixed loading L mode BMP RLE8 images
Fixed incorrect operator in ImageCms error
Limit FPX tile size to avoid extending outside image
Added support for decoding plain PPM formats
Added apply_transparency()
Fixed behaviour change from endian fix
Use python3
Allow remapping P images with RGBA palettes
Revert "Skip test_realloc_overflow unless libtiff 4.0.4 or higher"
[pre-commit.ci] pre-commit autoupdate
Only import ImageFont in ImageDraw when necessary
Fixed drawing translucent 1px high polygons
Pad COLORMAP to 768 items when saving TIFF
Fix P -> PA conversion
Once exif data is parsed, do not reload unless it changes
Only try to connect discontiguous corners at the end of edges
Improve transparency handling when saving GIF images
Do not update GIF frame position until local image is found
Netscape GIF extension belongs after the global color table
Only write GIF comments at the beginning of the file
Separate multiple GIF comment blocks with newlines
Always use GIF89a for comments
Ignore compression value from BMP info dictionary when saving as TIFF
If font is file-like object, do not re-read from object to get variant
Raise ValueError when trying to access internal fp after close
Support more affine expression forms in im.point()
Include 'twine check' in 'make sdist'
Ensure that furthest v is set in quantize2
Signed-off-by: Zheng Ruoqin <zhengrq.fnst@fujitsu.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
CVE-2015-1611 and CVE-2015-1612 are not referred to our implementation
of openflow as specified by the NVD database, ignore them.
Signed-off-by: Davide Gardenal <davide.gardenal@huawei.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
CVE-2002-0318 and CVE-2011-4966 are both patched in our version of
freeradius. The CPE in the NVD database doesn't reflect correctly
the vulnerable versions that's why they are incorrectly picked up.
Signed-off-by: Davide Gardenal <davide.gardenal@huawei.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
This package has strict build dependencies defined in pyproject.toml:
requires = ['setuptools ~= 41.4', 'setuptools_scm ~= 3.3', 'wheel ~= 0.33.6']
The ~= operator is "compatible release", so "setuptools ~= 41.4" can be
read as "setuptools >= 41.4, setuptools == 41.*".
We have setuptools 62.6.0 and do builds using our own packages instead
of building inside virtual environments, so these dependencies cannot
be satisfied.
Resolve this by passing --loose-depends to picobuild, which effectively
turns ~= into >=.
Signed-off-by: Ross Burton <ross.burton@arm.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
There's no need to depend on python3-toml-native, but this does need
python3-setuptools-scm-git-archive-native.
Signed-off-by: Ross Burton <ross.burton@arm.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
Add a DEPENDS on ptyhon3-setuptools-scm-git-archive-native as the setup.py
uses it.
In the future we'll have a Python building tool which validates build
requirements, so remove pip from those dependencies as it shouldn't depend
on a specific build tool being present.
Signed-off-by: Ross Burton <ross.burton@arm.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
The upstream pyproject.toml says it needs to be built with the Poetry
frontend, but that's deprecated behaviour and it should use the Poetry
Core API instead.
Signed-off-by: Ross Burton <ross.burton@arm.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
In the future we'll have a Python building tool which validates build
requirements. No package should require a specific tool to be present
(not even used, just present), so remove the dependency on 'build'.
Signed-off-by: Ross Burton <ross.burton@arm.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
The build doesn't generate the right filenames without this package.
Signed-off-by: Ross Burton <ross.burton@arm.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
Drop backported patch, switch PACKAGECONFIG assignment to ?= (matches
current practice), add in editline, linenoise CLI options and xtables
option. Switch to --disable-python when building without python to avoid
a configure time warning.
We can drop UPSTREAM_CHECK_REGEX as the version no longer gets confused
by the 0.099 version which exists.
Fix buildpaths warning by switching to setuptools and add dependency on
${PN}-python to ${PN}-ptest so that the embedded paths in the compiled
python files are correct.
Signed-off-by: Alex Kiernan <alex.kiernan@gmail.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
Upgrade to release 1.8.0:
- style.py: Drop unused CSS class .bold
- Bring back putting a rendered man page into release archives
- Migrate from mock to unittest.mock of Python >=3.3
- Fix for ANSI color codes that include blank values
- Added py.typed file
- style.py: Get CSS class .inv_foreground in sync with
.body_foreground
- Fix --input-encoding= regression added in PR #143 + related
tests
- Add ability to also recognize colons in ANSI escapes
- Fixes to respect bright colors in palette
Signed-off-by: Leon Anavi <leon.anavi@konsulko.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
Upgrade to release 0.12.0:
- Add apply
- Support newer Python versions--up to Python 3.11-alpha
- Improve warning when using toolz.compatibility
- Improve documentation
- Improve performance of merge_with
- Improve import times
- Auto-upload new releases to PyPI
Signed-off-by: Leon Anavi <leon.anavi@konsulko.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
0001-Fix-for-Issue-31.patch
removed since it's included in 0.33
Changelog:
=========
- Update for windows github CI
- Remove duplicit 'LICENSE' key
- Remove EUMM Remove version check
- #31 by removing reference to RSA_SSLV23_PADDING (removed from OpenSSL starting from v3.0.0)
- support passphase protected private key load
- fix 'unsupported encryption' error on old library versions
- Clarify croak message for missing passphrase on older cyphers
- More structs opaqued in LibreSSL 3.5
- Use a macro for dealing with older SSL lacking macros
- more CI fixups. Drop testing for 5.10 and 5.8. Something is broken upstream.
Signed-off-by: Wang Mingyu <wangmy@fujitsu.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
0001-test-Use-syscall-wrappers-instead-of-using-syscall-2.patch
removed since it's included in 2.2.
License-Update:
Add "kernel version dependency"
Add affect of "ulimit settings"
Changelog:
===========
- Support non-libc builds.
- Optimized syscall handling for x86-64/x86/aarch64.
- Enable non-lib function calls for fast path functions.
- Add support for multishot accept.
- io_uring_register_files() will set RLIMIT_NOFILE if necessary.
- Add support for registered ring fds, io_uring_register_ring_fd(),
reducingthe overhead of an io_uring_enter() system call.
- Add support for the message ring opcode.
- Add support for newer request cancelation features.
- Add support for IORING_SETUP_COOP_TASKRUN, which can help reduce the
overhead of io_uring in general. Most applications should set this flag,
see the io_uring_setup.2 man page for details.
- Add support for registering a sparse buffer and file set.
- Add support for a new buffer provide scheme, see
io_uring_register_buf_ring.3 for details.
- Add io_uring_submit_and_wait_timeout() for submitting IO and waiting
for completions with a timeout.
- Add io_uring_prep_{read,write}v2 prep helpers.
- Add io_uring_prep_close_direct() helper.
- Add support for SQE128 and CQE32, which are doubly sized SQE and CQE
rings. This is needed for some cases of the new IORING_OP_URING_CMD,
notably for NVMe passthrough.
- ~5500 lines of man page additions, including adding ~90 new man pages.
- Synced with the 5.19 kernel release, supporting all the features of
5.19 and earlier.
- 24 new regression test cases, and ~7000 lines of new tests in general.
- General optimizations and fixes.
Signed-off-by: Wang Mingyu <wangmy@fujitsu.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
Changelog:
==========
- AdwLeaflet
- Fix child sizing with fold-threshold-policy=natural
- AdwStyleManager
- Correctly handle removing a GdkDisplay
- AdwSwipeTracker
- Fix a memory leak
- Fix high contrast setting name when using a portal
- AdwTabBar
- Fix middle click when inside GtkWindowHandle
- Stylesheet
- Fix action row title and subtitle inside GtkHeaderBar
- Fix progressbar.osd overriding text color
- Ensure active states consistently work with touchscreens
- Fix GtkDropDown visual glitch when pressed on touchscreen
- Translation updates:
- Chinese (Taiwan)
- Nepali
Signed-off-by: Wang Mingyu <wangmy@fujitsu.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
This version fixes duplicate devices appearing when bluetoothd restarts, as well
as the discovery not being updated correctly in that same situation.
Signed-off-by: Wang Mingyu <wangmy@fujitsu.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
Changelog:
===========
- Various fixes ported from the development branch.
- Closed bugs and merge requests:
* Compilation error: call to deleted function 'js_value_to_c'
* jsapi-util-strings: Ignore locale to compute the upper case of a
char (i.e. fix implicit properties on Turkish locale)
* Fix memory leak when passing a "transfer none" GBytes parameter to a
native function
* arg-cache: Do not leak an interface info structures on Callbacks
* test-ci: Ignore safe directory errors on CI
Signed-off-by: Wang Mingyu <wangmy@fujitsu.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
Building with waf fails here with:
| /bin/sh: line 1: /usr/bin/wayland-scanner: No such file or directory
|
| /bin/sh: line 1: /usr/bin/wayland-scanner: No such file or directory
Signed-off-by: Andreas Müller <schnitzeltony@gmail.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
Khem Raj
Davide Gardenal
Jan Vermaete
Jan Vermaete
zhengruoqin
Xu Huan
Aryaman Gupta
Ross Burton
Andrej Valek
Alex Kiernan
Wentao Zhang
Leon Anavi
wangmy
Andreas Müller