mirrors/meta-openembedded
1
0
Fork 0
mirror of https://github.com/openembedded/meta-openembedded.git synced 2026-06-14 05:49:57 +00:00
Code Issues Projects Releases Wiki Activity
Files
6abfd35755938a30890e909854d39e379230571c
meta-openembedded/meta-oe/recipes-devtools
T
History
Changqing Li 6abfd35755 abseil-cpp: fix CVE-2025-0838 
Backport a patch to fix CVE-2025-0838

CVE-2025-0838:
There exists a heap buffer overflow vulnerable in Abseil-cpp. The sized
constructors, reserve(), and rehash() methods of
absl::{flat,node}hash{set,map} did not impose an upper bound on their
size argument. As a result, it was possible for a caller to pass a very
large size that would cause an integer overflow when computing the size
of the container's backing store, and a subsequent out-of-bounds memory
write. Subsequent accesses to the container might also access
out-of-bounds memory. We recommend upgrading past commit
5a0e2cb5e3958dd90bb8569a2766622cb74d90c1

Reference:
https://nvd.nist.gov/vuln/detail/CVE-2025-0838

Signed-off-by: Changqing Li <changqing.li@windriver.com>
Signed-off-by: Armin Kuster <akuster808@gmail.com>
2025-03-06 09:48:36 -05:00
..
abseil-cpp
abseil-cpp: fix CVE-2025-0838
2025-03-06 09:48:36 -05:00
android-tools
android-tools: Create flag file /etc/usb-debugging-enabled
2024-10-13 11:14:58 -04:00
apitrace
recipes: Update SRC_URI branch and protocols
2021-11-03 06:57:49 -07:00
autoconf-2.13
recipes: Update LICENSE variable to use SPDX license identifiers
2022-03-04 17:41:45 -08:00
boost-url
Update to new version of boost-uri
2021-12-09 08:37:06 -08:00
breakpad
breakpad: fix branch for gtest in SRC_URI
2022-02-09 09:27:02 -08:00
capnproto
capnproto: upgrade to 0.9.2
2023-05-09 06:51:22 -04:00
cgdb
recipes: Update LICENSE variable to use SPDX license identifiers
2022-03-04 17:41:45 -08:00
cjson
cjson: upgrade 1.7.17 -> 1.7.18
2024-10-13 11:19:39 -04:00
cloc
recipes: Update LICENSE variable to use SPDX license identifiers
2022-03-04 17:41:45 -08:00
concurrencykit
concurrencykit: enable 32- and 64-bit Arm targets
2022-02-03 08:44:32 -08:00
cpuid
recipes: Update LICENSE variable to use SPDX license identifiers
2022-03-04 17:41:45 -08:00
cscope
ctags
ctags: upgrade 5.9.20211114.0 -> 5.9.20220410.0
2022-04-11 08:52:55 -07:00
debootstrap
debootstrap: upgrade 1.0.124 -> 1.0.126
2021-11-09 20:57:14 -08:00
dmalloc
dnf-plugin-tui
recipes: Update LICENSE variable to use SPDX license identifiers
2022-03-04 17:41:45 -08:00
doxygen
recipes: Update LICENSE variable to use SPDX license identifiers
2022-03-04 17:41:45 -08:00
exprtk
ExprTk: Update package to release/0.0.2
2023-06-19 09:17:01 -04:00
flatbuffers
flatbuffers: fix native build with gcc-14 on host
2024-12-08 14:38:16 -05:00
geany
geany-plugins: Do not overwrite OE's pkg-config env
2022-03-21 08:25:11 -07:00
giflib
giflib: fix build with gold and avoid imagemagick-native dependency
2024-07-17 20:07:57 -04:00
glade
glade: fix CVE-2020-36774
2025-01-22 19:13:03 -05:00
grpc
grpc: ignore CVE-2023-32732
2023-07-02 11:17:52 -04:00
guider
meta-*: remove obsolete PYPA_WHEEL and PIP_INSTALL_PACKAGE assignments
2022-03-11 11:20:55 -08:00
heaptrack
meta-oe: Drop broken BBCLASSEXTEND variants
2023-11-17 10:49:04 -05:00
icon-slicer
recipes: Update LICENSE variable to use SPDX license identifiers
2022-03-04 17:41:45 -08:00
iptraf
recipes: Update LICENSE variable to use SPDX license identifiers
2022-03-04 17:41:45 -08:00
jemalloc
jemalloc: Fix build with glibc 2.35+clang
2022-01-18 09:01:51 -08:00
jq
jq: Fix typo OE_EXTRACONF -> EXTRA_OECONF
2022-05-30 13:02:52 -07:00
json-schema-validator
json-schema-validator: Use GNUInstallDirs in cmake
2022-03-21 08:25:11 -07:00
json-spirit
jsoncpp
jsoncpp: upgrade 1.9.4 -> 1.9.5
2021-11-09 20:57:14 -08:00
jsonrpc
recipes: Update SRC_URI branch and protocols
2021-11-03 06:57:49 -07:00
kconfig-frontends
recipes: Update LICENSE variable to use SPDX license identifiers
2022-03-04 17:41:45 -08:00
lapack
lapack: add packageconfig for lapacke
2023-06-15 07:47:55 -04:00
ldns
ldns: update to 1.8.1
2021-12-27 11:46:41 -08:00
lemon
libgee
recipes: Update LICENSE variable to use SPDX license identifiers
2022-03-04 17:41:45 -08:00
libsombok3
recipes: Update LICENSE variable to use SPDX license identifiers
2022-03-04 17:41:45 -08:00
libubox
recipes: Update LICENSE variable to use SPDX license identifiers
2022-03-04 17:41:45 -08:00
lshw
recipes: Update LICENSE variable to use SPDX license identifiers
2022-03-04 17:41:45 -08:00
ltrace
ltrace: Fix build on ppc64 with gcc12
2022-04-20 10:58:01 -07:00
luajit
luajit: Upgrade to latest on v2.1 branch
2022-03-21 08:25:11 -07:00
luaposix
luaposix: Fix INST_LIBDIR to honor libdir var
2022-03-21 08:25:11 -07:00
mcpp
memstat
recipes: Update LICENSE variable to use SPDX license identifiers
2022-03-04 17:41:45 -08:00
mercurial
mercurial: upgrade 5.5 -> 6.1
2022-04-13 19:21:41 -07:00
mpich
mpich: Add new directory modules/hwloc/config to search path
2022-04-13 19:21:41 -07:00
msgpack
msgpack-cpp: Upgrade to 4.1.1 release
2022-03-21 08:25:11 -07:00
msr-tools
recipes: Update LICENSE variable to use SPDX license identifiers
2022-03-04 17:41:45 -08:00
musl
recipes: Update SRC_URI branch and protocols
2021-11-03 06:57:49 -07:00
nlohmann-fifo
recipes: Update SRC_URI branch and protocols
2021-11-03 06:57:49 -07:00
nlohmann-json
nlohmann-json: Add ptest support
2023-11-15 08:41:33 -05:00
nodejs
meta-oe: Remove True option to getVar calls
2025-01-22 19:12:54 -05:00
octave
octave: upgrade 6.4.0 -> 7.1.0
2022-04-13 19:21:41 -07:00
openocd
recipes: Update LICENSE variable to use SPDX license identifiers
2022-03-04 17:41:45 -08:00
packagegroups
Convert to new override syntax
2021-08-03 10:21:25 -07:00
pahole
Revert "pahole: fix native package build error"
2023-05-23 23:12:46 -04:00
pax-utils
pax-utils: upgrade 1.2.2 -> 1.3.3
2022-04-14 19:42:10 -07:00
pcimem
recipes: Update LICENSE variable to use SPDX license identifiers
2022-03-04 17:41:45 -08:00
perl
libconfig-general-perl: move from meta-openstack
2022-04-18 10:13:16 -07:00
php
php: upgrade 8.1.30 -> 8.1.31
2024-12-31 09:00:02 -05:00
ply
recipes: Update LICENSE variable to use SPDX license identifiers
2022-03-04 17:41:45 -08:00
pmtools
recipes: Update LICENSE variable to use SPDX license identifiers
2022-03-04 17:41:45 -08:00
poke
recipes: Update LICENSE variable to use SPDX license identifiers
2022-03-04 17:41:45 -08:00
protobuf
protobuf: fix CVE-2024-7254
2024-12-08 15:04:02 -05:00
pugixml
pugixml: upgrade 1.11.4 -> 1.12
2022-02-23 09:25:19 -08:00
python
Update for setuptools_build_meta renamed to python_setuptools_build_meta
2022-03-19 19:00:34 -07:00
rapidjson
rapidjson: Avoid usage of nobranch=1
2023-08-30 13:41:52 -04:00
serialcheck
recipes: Update LICENSE variable to use SPDX license identifiers
2022-03-04 17:41:45 -08:00
sip
sip3: Fix segmentation fault
2024-06-27 11:21:40 -04:00
sqlite-orm
sqlite-orm: Define cmake variable defaults
2022-03-21 08:25:11 -07:00
squashfs-tools-ng
squashfs-tools-ng: upgrade 1.0.2 -> 1.1.4
2022-04-14 19:42:10 -07:00
suitesparse
meta-oe: Remove True option to getVar calls
2025-01-22 19:12:54 -05:00
tclap
Convert to new override syntax
2021-08-03 10:21:25 -07:00
tcltk
recipes: Update LICENSE variable to use SPDX license identifiers
2022-03-04 17:41:45 -08:00
uftrace
recipes: Update LICENSE variable to use SPDX license identifiers
2022-03-04 17:41:45 -08:00
unattended-upgrades
unattended-upgrades: Disable auto-detecting modules
2022-06-03 06:56:20 -07:00
unifex
meta-oe: Drop broken BBCLASSEXTEND variants
2023-11-17 10:49:04 -05:00
uw-imap
meta-oe: ignore patched CVEs
2022-07-21 07:17:15 -07:00
valijson
valijson: move out of hard dep on meta-networking
2022-03-24 09:45:25 -07:00
xerces-c
Convert to new override syntax
2021-08-03 10:21:25 -07:00
xmlrpc-c
xmlrpc-c: fix do_fetch error
2024-10-13 11:19:45 -04:00
yajl
yajl: backport Debian patch for CVE-2022-24795
2024-06-27 11:23:55 -04:00
yasm
yasm: fix CVE-2023-37732
2024-01-12 07:14:16 -05:00