mirrors/meta-openembedded
1
0
Fork 0
mirror of https://github.com/openembedded/meta-openembedded.git synced 2026-06-14 05:49:57 +00:00
Code Issues Projects Releases Wiki Activity
Files
50906d9169dc8055acd279706357d13c8f38c102
meta-openembedded/meta-networking/recipes-support
T
History
Ankur Tyagi 50906d9169 dovecot: upgrade 2.3.21 -> 2.3.21.1 
Release Notes:
- CVE-2024-23184: A large number of address headers in email resulted
  in excessive CPU usage.
- CVE-2024-23185: Abnormally large email headers are now truncated or
  discarded, with a limit of 10MB on a single header and 50MB for all
  the headers of all the parts of an email.
- oauth2: Dovecot would send client_id and client_secret as POST parameters
  to introspection server. These need to be optionally in Basic auth
  instead as required by OIDC specification.
- oauth2: JWT key type check was too strict.
- oauth2: JWT token audience was not validated against client_id as
  required by OIDC specification.
- oauth2: XOAUTH2 and OAUTHBEARER mechanisms were not giving out
  protocol specific error message on all errors. This broke OIDC discovery.
- oauth2: JWT aud validation was not performed if aud was missing
  from token, but was configured on Dovecot.

Signed-off-by: Ankur Tyagi <ankur.tyagi85@gmail.com>
Signed-off-by: Anuj Mittal <anuj.mittal@oss.qualcomm.com>
2025-12-30 07:08:12 +05:30
..
aoetools
*.patch: add Upstream-Status to all patches
2023-06-21 09:15:20 -07:00
arptables
recipes: drop ${SRCPV} usage
2024-02-09 09:52:12 -08:00
bmon
bmon: fix PV
2021-12-10 09:11:56 -08:00
bridge-utils
recipes: Update LICENSE variable to use SPDX license identifiers
2022-03-04 17:41:45 -08:00
celt051
recipes: drop ${SRCPV} usage
2024-02-09 09:52:12 -08:00
chrony
chrony: use inherit_defer for conditional inherit of useradd
2025-06-23 16:57:53 -04:00
cifs
cifs-utils: upgrade 6.15 -> 7.0
2022-08-15 16:27:53 -07:00
cim-schema
Convert to new override syntax
2021-08-03 10:21:25 -07:00
curlpp
curlpp: Remove references to buildpaths e.g. TMPDIR
2023-05-23 08:48:18 -07:00
dnsmasq
dnsmasq: Upgrade 2.89 -> 2.90
2024-02-26 08:13:22 -08:00
dovecot
dovecot: upgrade 2.3.21 -> 2.3.21.1
2025-12-30 07:08:12 +05:30
drbd
drbd-utils: Fix a udev rule reproducibility
2024-03-05 11:02:04 -08:00
dropwatch
unionfs-fuse, dropwatch, postgresql, yasm, multipath-tools, python3-pybind11: add missing Upstream-Status
2024-03-17 13:10:09 -07:00
esmtp
*.patch: add Upstream-Status to all patches
2023-06-21 09:15:20 -07:00
ettercap
ettercap: Do not generate #line directives with bison/flex
2023-05-28 16:35:00 -07:00
fetchmail
fetchmail: patch CVE-2025-61962
2025-12-17 11:45:22 +05:30
fping
.patch: fix Upstream-Status formatting issues reported by patchreview tool from oe-core
2023-01-27 17:06:52 -08:00
fwknop
fwknop: Specify target locations of gpg and wget
2025-04-16 20:30:24 -04:00
geoip
geoip: fix do_fetch error
2025-09-23 16:30:14 +08:00
htpdate
htpdate: upgrade 1.3.6 -> 1.3.7
2023-02-16 19:33:29 -08:00
http-parser
http-parser: fix SRC_URI branch
2025-11-12 11:32:41 +05:30
ifenslave
ifenslave: upgrade 2.13 -> 2.14
2023-12-18 22:17:19 -08:00
ifmetric
*.patch: add Upstream-Status to all patches
2023-06-21 09:15:20 -07:00
iftop
recipes: Update LICENSE variable to use SPDX license identifiers
2022-03-04 17:41:45 -08:00
ipcalc
ipcalc: upgrade 1.0.2 -> 1.0.3
2023-06-14 09:41:35 -07:00
ipvsadm
ipvsadm: Pass build environment cflags to compiler
2023-05-26 18:36:56 -07:00
libconfuse
libconfuse: patch CVE-2022-40320
2025-10-30 14:43:33 +08:00
libcpr
libcpr: add new recipe
2024-03-26 14:00:53 -07:00
libesmtp
gnome-tweaks, networkmanager-fortisslvpn, libesmtp, json-schema-validator, python3-pybluez, python3-pynetlinux, apache2: Fix Malformed Upstream-Status
2023-09-27 14:22:09 -07:00
libexosip2
libexosip2: package binaries in a separate package
2023-11-22 16:39:50 -08:00
libldb
libldb: upgrade 2.8.1 -> 2.8.2
2025-11-12 11:14:57 +05:30
libmaxminddb
libmaxminddb: add new recipe
2020-11-09 20:49:52 -08:00
libmemcached
*.patch: add Upstream-Status to all patches
2023-06-21 09:15:20 -07:00
libosip2
libosip2: add recipe
2023-10-17 21:42:56 -07:00
libtalloc
Use PYTHON_SITEPACKAGES_DIR instead of hard-coded site-packages directory path
2024-04-21 10:52:39 -07:00
libtdb
Use PYTHON_SITEPACKAGES_DIR instead of hard-coded site-packages directory path
2024-04-21 10:52:39 -07:00
libtevent
libtevent: upgrade 0.16.0 -> 0.16.1
2024-06-02 14:57:06 -04:00
linux-atm
*.patch: add Upstream-Status to all patches
2023-06-21 09:15:20 -07:00
lksctp-tools
recipes: drop ${SRCPV} usage
2024-02-09 09:52:12 -08:00
lowpan-tools
recipes: drop ${SRCPV} usage
2024-02-09 09:52:12 -08:00
macchanger
*.patch: add Upstream-Status to all patches
2023-06-21 09:15:20 -07:00
mctp
mctp: upgrade 1.0 -> 1.1
2023-04-17 09:53:31 -07:00
mdio-tools
mdio-tools: fix mdio-netlink kernel module reproducibility
2025-02-04 14:41:20 -08:00
memcached
memcached: patch CVE-2023-46853
2025-10-30 14:43:35 +08:00
mtr
recipes: Update LICENSE variable to use SPDX license identifiers
2022-03-04 17:41:45 -08:00
nbd
nbd: update 3.20 -> 3.24
2022-05-24 08:39:45 -07:00
nbdkit
nbdkit: patch CVE-2025-47712
2025-12-03 10:31:34 +05:30
ncp
meta-networking: fix Upstream-Status format
2023-02-24 08:45:44 -08:00
ndisc6
ndisc6: Fix reproducible build
2024-12-15 14:14:43 -05:00
netcat
recipes: Drop remaining PR values from recipes
2024-03-17 13:10:10 -07:00
netcf
netcf: Fix build with latest gnulib
2024-03-09 10:55:22 -08:00
netperf
recipes: drop ${SRCPV} usage
2024-02-09 09:52:12 -08:00
netsniff-ng
netsniff-ng: fix SRC_URI branch
2025-11-12 11:32:41 +05:30
nis
ypbind-mt: Upgrade to 2.7.2
2022-08-30 00:14:58 -07:00
ntimed
recipes: drop ${SRCPV} usage
2024-02-09 09:52:12 -08:00
ntopng
ndpi: ignore CVE-2025-25066
2025-10-30 14:43:36 +08:00
ntp
ntp: add missing runtime dependencies
2023-09-07 08:22:43 -07:00
ntpsec
ntpsec, net-snmp: drop ${PE}, ${PR} from /usr/src/debug paths
2023-11-20 09:30:39 -08:00
nuttcp
recipes: Update LICENSE variable to use SPDX license identifiers
2022-03-04 17:41:45 -08:00
open-isns
open-isns: upgrade 0.101 -> 0.102
2022-09-13 09:55:02 -07:00
open-vm-tools
open-vm-tools: fix CVE-2025-41244
2025-10-30 14:43:30 +08:00
openipmi
openipmi: upgrade 2.0.34->2.0.36
2024-11-09 14:40:32 -05:00
openvpn
openvpn: patch CVE-2025-13086
2025-12-17 11:45:24 +05:30
pgpool2
pgpool2: Fix build with postgresql 16+
2024-03-05 11:02:05 -08:00
phytool
recipes: drop ${SRCPV} usage
2024-02-09 09:52:12 -08:00
pimd
pimd: switch SRC_URI to https
2024-04-14 08:38:39 -07:00
rdma-core
rdma-core: upgrade 50.0 -> 51.0
2024-04-21 10:52:48 -07:00
ruli
ruli: Pass cflags to makefile
2023-05-28 16:34:59 -07:00
smcroute
smcroute: upgrade 2.5.5 -> 2.5.6
2022-12-05 09:16:24 -08:00
sngrep
sngrep: upgrade 1.8.1 -> 1.8.2
2025-12-30 07:08:05 +05:30
spice
spice-gtk: add PACKAGECONFIG for webdav
2024-04-30 10:59:07 -07:00
ssmping
ssmping: Use debian mirror for SRC_URI
2025-09-23 16:30:15 +08:00
ssmtp
ssmtp: Fix build with musl >= 1.2.5
2024-03-25 12:50:39 -07:00
strongswan
strongswan: upgrade 5.9.13 -> 5.9.14
2024-03-26 08:37:19 -07:00
stunnel
stunnel: upgrade 5.69 -> 5.72
2024-03-08 10:07:24 -08:00
tcpdump
tcpdump: fix CVE-2024-2397
2024-06-26 07:30:56 -04:00
tcpreplay
tcpreplay: fix CVE-2025-9157
2025-12-17 11:45:23 +05:30
tinyproxy
tinyproxy: patch CVE-2023-49606
2025-10-30 14:43:33 +08:00
tnftp
tnftp: switch the SRC_URI to https
2024-04-14 08:38:39 -07:00
traceroute
traceroute: upgrade 2.1.3 -> 2.1.5
2024-01-08 19:54:45 -08:00
tunctl
recipes: Update LICENSE variable to use SPDX license identifiers
2022-03-04 17:41:45 -08:00
uftp
uftp: upgrade 5.0.2 -> 5.0.3
2023-12-29 09:04:16 -08:00
unbound
unbound: patch CVE-2024-43168
2025-12-17 11:45:23 +05:30
vnstat
recipes: Update LICENSE variable to use SPDX license identifiers
2022-03-04 17:41:45 -08:00
wavemon
wavemon: add recipe for version 0.9.5
2024-02-21 19:59:52 -08:00
wireshark
wireshark: fix CVE-2025-13499
2025-12-11 08:02:02 +05:30
wpan-tools
recipes: Update SRC_URI branch and protocols
2021-11-03 06:57:49 -07:00