On Fri, May 14, 2021 at 5:20 PM Khem Raj wrote:
>
> On Fri, May 14, 2021 at 6:59 AM Alexander Kanavin
> wrote:
> >
> > Probably resolved by updating to 40.1?
> > https://gitlab.gnome.org/GNOME/nautilus/-/tags
> >
>
> easier said than done. Sadly these are complex apps and I don't have
> time to
On Thu, May 13, 2021 at 11:11 AM Richard Purdie
wrote:
>
> On Wed, 2021-05-12 at 04:47 -1000, Steve Sakoman wrote:
> > The following changes since commit 834a8e357bc999a0163e7c5bafbcc1a8816448d4:
> >
> > license_image.bbclass: Fix symlink to generic license files (2021-05-03
> > 04:56:23
On Fri, May 14, 2021 at 6:59 AM Alexander Kanavin
wrote:
>
> Probably resolved by updating to 40.1?
> https://gitlab.gnome.org/GNOME/nautilus/-/tags
>
easier said than done. Sadly these are complex apps and I don't have
time to fix the long list of dependencies it will ensue
therefore I will
On 5/14/21 1:34 AM, Jose Quaresma wrote:
Hi Khem,
There has already been a discussion about this in
https://lists.openembedded.org/g/openembedded-core/message/143935
In short: If libav needs ffmpeg, it will need that line (with a comment
explaining its due to the dependency). Assuming libav
Probably resolved by updating to 40.1?
https://gitlab.gnome.org/GNOME/nautilus/-/tags
Alex
On Fri, 14 May 2021 at 15:46, Khem Raj wrote:
> breaks nautilus https://errors.yoctoproject.org/Errors/Details/581184/
>
> On Thu, May 13, 2021 at 1:56 PM Alexander Kanavin
> wrote:
> >
> > Rebase
breaks nautilus https://errors.yoctoproject.org/Errors/Details/581184/
On Thu, May 13, 2021 at 1:56 PM Alexander Kanavin
wrote:
>
> Rebase patches; dropped chunks (and cross-prop-default.patch)
> have been removed upstream.
>
> Move native-only patches to all-patches, as they're a pain to
On 2021-05-14 9:38 a.m., Tony Tascioglu wrote:
Hello,
These patches are only going to hardknott, and upstream released a new version
yesterday that we can use for the master branch. The CVE fixes are present in
the new version, and these patches backport those fixes for libxml version
2.9.10
Hello,
These patches are only going to hardknott, and upstream released a new version
yesterday that we can use for the master branch. The CVE fixes are present in
the new version, and these patches backport those fixes for libxml version
2.9.10 in hardknott.
I am working on the uprev to
Fixes heap-based buffer overflow in xmlEncodeEntitiesInternal() in entities.c
CVE: CVE-2021-3517
Upstream-status: Backport
[https://gitlab.gnome.org/GNOME/libxml2/-/commit/bf22713507fe1fc3a2c4b525cf0a88c2dc87a3a2]
Signed-off-by: Tony Tascioglu
---
.../libxml/libxml2/CVE-2021-3517.patch
Fixes use-after-free in xmlEncodeEntitiesInternal() in entities.c
CVE: CVE-2021-3516
Upstream-Status: Backport
[https://gitlab.gnome.org/GNOME/libxml2/-/commit/1358d157d0bd83be1dfe356a69213df9fac0b539]
Signed-off-by: Tony Tascioglu
---
.../libxml/libxml2/CVE-2021-3516.patch| 36
Parsing specially crafted Mixed Content while parsing XML data may
lead to invalid data structure being created, as errors were not
propagated. This could lead to several NULL Pointer Dereference when
post-validating documents parsed in recovery mode.
CVE: CVE-2021-3537
Upstream-Status: Backport
i just got burned by taking the very advice i'd been giving out for
years. when people ask about how to add new image features to their
images, they point to IMAGE_FEATURES and ask if that's the way to do
it, as in one of:
IMAGE_FEATURES += ...
IMAGE_FEATURES_append = ...
well, ok, i say,
On 14.05.21 13:52, Robert P. J. Day wrote:
On Fri, 14 May 2021, Konrad Weihmann wrote:
On 14.05.21 13:16, Robert P. J. Day wrote:
pretty sure i know the answer to this one, but was asked the
other day and wanted to make sure. in order to speed up the normal
OE build, someone suggested
On Fri, 14 May 2021, Konrad Weihmann wrote:
> On 14.05.21 13:16, Robert P. J. Day wrote:
> >
> >pretty sure i know the answer to this one, but was asked the
> > other day and wanted to make sure. in order to speed up the normal
> > OE build, someone suggested bypassing the creation of
On 14.05.21 13:16, Robert P. J. Day wrote:
pretty sure i know the answer to this one, but was asked the other
day and wanted to make sure. in order to speed up the normal OE build,
someone suggested bypassing the creation of packages that weren't
going to be relevant, such as -dev, -doc
pretty sure i know the answer to this one, but was asked the other
day and wanted to make sure. in order to speed up the normal OE build,
someone suggested bypassing the creation of packages that weren't
going to be relevant, such as -dev, -doc and so on -- the idea was
that that could make a
libnotify only requires gtk+3 for its tests. Let's disable them by
default and only enable them if "tests" is in PACKAGECONFIG. If gtk+3 is
not available then we need to declare the dependency on gdk-pixbuf
explicitly.
It looks like the tests genuinely do need some sort of desktop
environment to
Hi Khem,
There has already been a discussion about this in
https://lists.openembedded.org/g/openembedded-core/message/143935
In short: If libav needs ffmpeg, it will need that line (with a comment
explaining its due to the dependency). Assuming libav without
ffmpeg doesn't make sense/work
Khem
18 matches
Mail list logo
