mirrors/meta-openembedded
1
0
Fork 0
mirror of https://github.com/openembedded/meta-openembedded.git synced 2026-06-14 05:49:57 +00:00
Code Issues Projects Releases Wiki Activity
Files
3702195a7ebb1947c8dfc9bba1196d6b42ae6253
meta-openembedded/meta-oe/recipes-devtools
T
History
Deepak Rathore b9fb6556a3 protobuf 4.25.8: Mark CVE-2024-7254 as patched 
Bug Details: https://nvd.nist.gov/vuln/detail/CVE-2024-7254
Type: Security Fix
CVE: CVE-2024-7254
Score: 8.7
Patch: https://github.com/protocolbuffers/protobuf/commit/850fcce9176e

Analysis:
The original fix [1] for CVE-2024-7254 is listed in the NVD security
tracker (https://nvd.nist.gov/vuln/detail/CVE-2024-7254) and was
subsequently backported to the v4.25.8 version via commit [2].
Hence, this CVE is considered patched in the current source.

Reference:
[1] https://github.com/protocolbuffers/protobuf/commit/cc8b3483a558
[2] https://github.com/protocolbuffers/protobuf/commit/850fcce9176e (v4.25.8)

Signed-off-by: Deepak Rathore <deeratho@cisco.com>
Signed-off-by: Anuj Mittal <anuj.mittal@intel.com>
2025-09-12 08:15:13 +08:00
..
abseil-cpp
abseil-cpp: fix build with gcc-15 on host
2025-09-12 08:15:11 +08:00
aer-inject
aer-inject: Replace hardcoded /usr with ${prefix}
2024-03-27 07:57:31 -07:00
android-tools
android-tools: Create flag file /etc/usb-debugging-enabled
2024-10-06 07:15:08 -04:00
apitrace
recipes: drop ${SRCPV} usage
2024-02-09 09:52:12 -08:00
autoconf-2.13
autoconf-2.13-native_2.13: replace oldincludedir
2024-04-14 08:38:42 -07:00
breakpad
breakpad: Upgrade to 2023.06.01 release
2024-01-31 21:24:35 -08:00
capnproto
capnproto: upgrade 1.0.1.1 -> 1.0.2
2024-01-23 11:55:34 -08:00
cgdb
cgdb: Fix buildpaths emitted into cgdb binary
2023-05-25 08:56:32 -07:00
cjson
cjson: upgrade 1.7.17 -> 1.7.18
2024-08-21 16:43:25 -04:00
cloc
cloc: upgrade 1.94 -> 1.98
2023-11-17 11:38:25 -08:00
concurrencykit
recipes: drop ${SRCPV} usage
2024-02-09 09:52:12 -08:00
cpuid
cpuid: fix do_install
2024-02-03 22:03:04 -08:00
cscope
cscope: upgrade 15.8b -> 15.9
2020-01-09 14:05:37 -08:00
ctags
ctags: upgrade 6.1.20240225.0 -> 6.1.20240310.0
2024-03-20 09:28:04 -07:00
debootstrap
debootstrap: fix do_fetch error
2024-10-27 16:01:15 -04:00
dmalloc
*.patch: add Upstream-Status to all patches
2023-06-21 09:15:20 -07:00
dnf-plugin-tui
dnf-plugin-tui: upgrade 1.3 -> 1.4
2024-03-13 10:14:56 -07:00
doxygen
doxygen: Do not generate #line directive with flex/bison
2023-05-28 16:35:00 -07:00
editorconfig
editorconfig-core-c: fix reproducibility issue
2024-03-10 21:54:06 -07:00
exprtk
ExprTk: Update package to release/0.0.2
2023-02-18 13:19:36 -08:00
extract-cert
extract-cert: add recipe
2023-02-01 09:28:47 -08:00
flatbuffers
python3-flatbuffers: provide nativesdk support
2024-09-09 15:14:25 -04:00
flatcc
flatcc: drop 'r' from gitr and ${SRCPV}
2024-02-09 09:52:11 -08:00
geany
geany-plugins: Fix type error found with clang 15
2022-08-31 10:06:32 -07:00
giflib
giflib: fix build with gold and avoid imagemagick-native dependency
2024-07-23 15:23:05 -04:00
glade
glade: fix CVE-2020-36774
2025-01-20 19:45:24 -05:00
grpc
grpc: patch CVE-2024-11407
2025-01-20 19:45:30 -05:00
gst-editing-services
gst-editing-services: upgrade 1.20.5 -> 1.22.7
2023-11-17 11:38:26 -08:00
guider
recipes: drop ${SRCPV} usage
2024-02-09 09:52:12 -08:00
heaptrack
meta-oe: Drop broken BBCLASSEXTEND variants
2023-10-24 09:08:45 -07:00
icon-slicer
recipes: Update LICENSE variable to use SPDX license identifiers
2022-03-04 17:41:45 -08:00
iptraf
recipes: Update LICENSE variable to use SPDX license identifiers
2022-03-04 17:41:45 -08:00
jemalloc
jemalloc: add +git to version
2024-06-24 07:37:16 -04:00
jq
jq: add Upstream-Status and CVE tags into .patch files
2025-09-12 08:15:10 +08:00
json-schema-validator
gnome-tweaks, networkmanager-fortisslvpn, libesmtp, json-schema-validator, python3-pybluez, python3-pynetlinux, apache2: Fix Malformed Upstream-Status
2023-09-27 14:22:09 -07:00
json-spirit
jsoncpp
jsoncpp: upgrade 1.9.4 -> 1.9.5
2021-11-09 20:57:14 -08:00
jsonrpc
jsonrpc: Fix contains reference to TMPDIR [buildpaths] warning
2024-08-14 10:12:56 -04:00
jwt-cpp
jwt-cpp: fix cmake file install path
2024-03-13 10:14:56 -07:00
kconfig-frontends
kconfig-frontends: Avoid using hard coded /usr/include paths
2023-08-22 18:02:46 -07:00
lapack
lapack: fix buildpaths in ptest also when CBLAS is enabled
2025-02-04 14:47:34 -08:00
ldns
ldns: Fix buildpaths QA issues
2025-04-16 20:30:23 -04:00
lemon
lemon: upgrade to 3.44.2
2023-12-21 08:20:34 -08:00
libgee
drop GNOMEBASEBUILDCLASS = "meson"
2023-11-11 09:26:41 -08:00
libsombok3
libsombok3: use autotools-brokensep instead of setting B
2023-12-12 14:40:58 -08:00
libubox
recipes: drop ${SRCPV} usage
2024-02-09 09:52:12 -08:00
lshw
recipes: drop ${SRCPV} usage
2024-02-09 09:52:12 -08:00
ltrace
recipes: drop ${SRCPV} usage
2024-02-09 09:52:12 -08:00
luajit
luajit: fix several CVEs
2025-09-12 08:15:10 +08:00
luaposix
luaposix: upgrade 35.1 -> 36.2.1
2023-11-17 11:38:27 -08:00
makeself
makeself: upgrade 2.4.5 -> 2.5.0
2023-03-17 07:06:55 -07:00
mbpoll
mbpoll: upgrade 1.5.0 -> 1.5.2
2023-06-14 09:41:35 -07:00
mcpp
*.patch: add Upstream-Status to all patches
2023-06-21 09:15:20 -07:00
memstat
*.patch: add Upstream-Status to all patches
2023-06-21 09:15:20 -07:00
mercurial
mercurial: ensure setuptools is present as distutils is no longer (mercurial tries both)
2023-12-31 08:27:49 -08:00
microcom
microcom: add new recipe
2023-09-07 10:31:19 -07:00
microsoft-gsl
microsoft-gsl: Disable disabled-macro-expansion warning as error on clang/musl
2024-03-31 13:42:54 -07:00
mpich
mpich: upgrade 4.2.0 -> 4.2.1
2024-04-30 10:59:05 -07:00
msgpack
msgpack-cpp: upgrade 4.1.1 -> 6.1.0
2023-11-28 08:55:43 -08:00
msr-tools
recipes: Update LICENSE variable to use SPDX license identifiers
2022-03-04 17:41:45 -08:00
musl
musl-nscd: upgrade 1.0.2 -> 1.1.0
2022-06-30 13:39:27 -04:00
nlohmann-fifo
recipes: drop ${SRCPV} usage
2024-02-09 09:52:12 -08:00
nlohmann-json
nlohmann-json: Upgrade to 3.11.3
2024-03-04 08:56:50 -08:00
nodejs
nodejs: backport a patch to prevent brotli crashing nodejs
2025-05-17 12:11:15 -06:00
octave
*.patch: add Upstream-Status to all patches
2023-06-21 09:15:20 -07:00
openocd
recipes: drop remaining +gitr cases
2024-02-09 09:52:12 -08:00
packagegroups
recipes: Drop remaining PR values from recipes
2024-03-17 13:10:10 -07:00
pahole
pahole: Correct the version in the recipe file name
2023-11-07 19:59:58 -08:00
pax-utils
pax-utils: upgrade 1.2.2 -> 1.3.3
2022-04-14 19:42:10 -07:00
pcimem
recipes: Update LICENSE variable to use SPDX license identifiers
2022-03-04 17:41:45 -08:00
perfetto
perfetto: Fix contains reference to TMPDIR [buildpaths] warning
2025-04-16 20:30:23 -04:00
perl
libdev-checklib-perl: fix do_fetch error
2024-11-24 17:38:31 -05:00
php
php: upgrade 8.2.28 -> 8.2.29
2025-09-12 08:15:06 +08:00
ply
ply: Pass LD via environment to configure
2023-08-05 09:29:56 -07:00
pmtools
recipes: drop ${SRCPV} usage
2024-02-09 09:52:12 -08:00
poke
*.patch: add Upstream-Status to all patches
2023-06-21 09:15:20 -07:00
protobuf
protobuf 4.25.8: Mark CVE-2024-7254 as patched
2025-09-12 08:15:13 +08:00
pugixml
pugixml: Update 1.13 -> 1.14
2023-10-04 13:09:38 -07:00
python
python3-pycups: upgrade 2.0.1 -> 2.0.4
2024-04-30 10:59:06 -07:00
rapidjson
recipes: drop ${SRCPV} usage
2024-02-09 09:52:12 -08:00
serialcheck
recipes: Update LICENSE variable to use SPDX license identifiers
2022-03-04 17:41:45 -08:00
sip
sip: Fix homepage and license
2025-03-03 07:56:57 -05:00
smemstat
smemstat: upgrade 0.02.12 -> 0.02.13
2024-01-23 11:55:39 -08:00
sqlite-orm
sqlite-orm: Define cmake variable defaults
2022-03-21 08:25:11 -07:00
squashfs-tools-ng
squashfs-tools-ng: upgrade 1.1.4 -> 1.2.0
2023-11-27 13:39:54 -08:00
ssd1306
ssd1306: Update and remove patch
2024-01-08 19:54:41 -08:00
suitesparse
*.patch: add Upstream-Status to all patches
2023-06-21 09:15:20 -07:00
systemd
Add nativesdk-systemd-systemctl as dependency of dnf-plugin-tui
2022-10-12 15:24:32 -07:00
tclap
Convert to new override syntax
2021-08-03 10:21:25 -07:00
tcltk
tk: Remove buildpath issue
2023-12-21 08:00:40 -08:00
uftrace
uftrace: Fix build with musl >= 1.2.5
2024-03-25 18:52:52 -07:00
unattended-upgrades
unattended-upgrades: upgrade 2.6 -> 2.9.1
2022-07-26 20:49:05 -04:00
uw-imap
cve_check: convert CVE_CHECK_IGNORE to CVE_STATUS
2023-07-27 08:54:40 -07:00
valijson
valijson: upgrade 1.0.1 -> 1.0.2
2023-12-29 09:04:18 -08:00
xerces-c
xerces-c: fix buildpaths QA issue
2024-09-15 12:18:05 -04:00
xmlrpc-c
xmlrpc-c: update SRCREV
2024-10-15 16:59:45 -04:00
yajl
yajl: set correct homepage
2024-04-21 10:52:49 -07:00
yasm
unionfs-fuse, dropwatch, postgresql, yasm, multipath-tools, python3-pybind11: add missing Upstream-Status
2024-03-17 13:10:09 -07:00