[OE-core][PATCH 3/3] rootfs-postcommands.bbclass: ignore comment mismatch in systemd_user_check

From: Chen Qi The check was forcing every field to be identical, this is too strict. For example, if the comment differs, there's really no impact. For example, root user's comment is 'root' in passwd, and it's 'Super User' in sysusers.d/basic.conf. Such difference is not worth a warning. In

[OE-core][PATCH 1/3] systemd: upgrade to 255.1

From: Chen Qi 1. Patch changes: 0004-Move-sysusers.d-sysctl.d-binfmt.d-modules-load.d-to-.patch is removed because it has no real effect now. The /lib is now /usr/lib because 'usrmerge' is a required distro feature for systemd. 0002-binfmt-Don-t-install-dependency-links-at-install-tim.patch is

[OE-core][PATCH 2/3] systemd-boot: upgrade to 255.1

From: Chen Qi 0030-meson-Pass-all-static-pie-args-to-linker.patch is dropped as it's a backported patch and is now in the new 255.1 version. Signed-off-by: Chen Qi --- ...md-boot_254.4.bb => systemd-boot_255.1.bb} | 4 --- ...n-Pass-all-static-pie-args-to-linker.patch | 35

[OE-core] [PATCH V4] cairo: upgrade 1.16.0 -> 1.18.0

From: qiutt Changelog for 1.18.0 [1]: The cairo-sphinx tool has been removed Cairo now implements Type 3 color fonts for PDF The XML surface has been removed The Tee surface is now automatically enabled The Quartz surface is improved Cairo now hides all private symbols by default on

[OE-core][dunfell 6/6] testimage: drop target_dumper and host_dumper

The target_dumper code is basically broken. It has been reading binary files over the text base serial communication and runs at every command failure which makes no sense. Each run might overwrite files from the previous run and the output appears corrupted due to confusion from the binary data.

[OE-core][dunfell 5/6] bluez5: fix CVE-2023-45866

From: Hitendra Prajapati Upstream-Status: Backport from https://git.kernel.org/pub/scm/bluetooth/bluez.git/commit/?id=25a471a83e02e1effb15d5a488b3f0085eaeb675 Signed-off-by: Hitendra Prajapati Signed-off-by: Steve Sakoman --- meta/recipes-connectivity/bluez5/bluez5.inc | 1 +

[OE-core][dunfell 4/6] openssh: backport Debian patch for CVE-2023-48795

From: Vijay Anusuri import patches from ubuntu to fix CVE-2023-48795 Upstream-Status: Backport [import from ubuntu https://git.launchpad.net/ubuntu/+source/openssh/tree/debian/patches?h=ubuntu%2Ffocal-security Upstream commit

[OE-core][dunfell 3/6] binutils: fix multiple cve

From: Virendra Thakur Fix below CVE's CVE-2022-47007 CVE-2022-47008 CVE-2022-47010 CVE-2022-47011 CVE-2022-48063 CVE-2022-47695 Signed-off-by: Virendra Thakur Signed-off-by: Steve Sakoman --- .../binutils/binutils-2.34.inc| 6 ++ .../binutils/binutils/CVE-2022-47007.patch

[OE-core][dunfell 2/6] flac: Backport fix for CVE-2021-0561

From: Vijay Anusuri Upstream-Status: Backport [https://github.com/xiph/flac/commit/e1575e4a7c5157cbf4e4a16dbd39b74f7174c7be] Signed-off-by: Vijay Anusuri Signed-off-by: Steve Sakoman --- .../flac/files/CVE-2021-0561.patch| 34 +++

[OE-core][dunfell 1/6] curl: fix CVE-2023-46218

From: Lee Chee Yang import patch from ubuntu http://archive.ubuntu.com/ubuntu/pool/main/c/curl/curl_7.68.0-1ubuntu2.21.debian.tar.xz upstream https://github.com/curl/curl/commit/2b0994c29a721c91c57 Signed-off-by: Lee Chee Yang Signed-off-by: Steve Sakoman ---

[OE-core][dunfell 0/6] Patch review

Please review this set of patches for dunfell and have comments back by end of day Thursday, December 28 Passed a-full on autobuilder: https://autobuilder.yoctoproject.org/typhoon/#/builders/83/builds/6376 The following changes since commit 05d9f9c6b27c0216fa4e349109ef42cf91bb4084:

[OE-core][dunfell][PATCH] go: Fix CVE-2023-39326

From: Vijay Anusuri A malicious HTTP sender can use chunk extensions to cause a receiver reading from a request or response body to read many more bytes from the network than are in the body. A malicious HTTP client can further exploit this to cause a server to automatically read a large amount

[OE-core][dunfell][PATCH] tzdata: Upgrade to 2023d

From: Shubham Kulkarni Signed-off-by: Shubham Kulkarni --- meta/recipes-extended/timezone/timezone.inc | 6 +++--- 1 file changed, 3 insertions(+), 3 deletions(-) diff --git a/meta/recipes-extended/timezone/timezone.inc b/meta/recipes-extended/timezone/timezone.inc index

[OE-core][PATCH] tzdata: Upgrade to 2023d

From: Shubham Kulkarni Signed-off-by: Shubham Kulkarni --- meta/recipes-extended/timezone/timezone.inc | 6 +++--- 1 file changed, 3 insertions(+), 3 deletions(-) diff --git a/meta/recipes-extended/timezone/timezone.inc b/meta/recipes-extended/timezone/timezone.inc index

Re: [OE-core][dunfell][PATCH] alsa-lib: Enabling ptest for alsa-lib component

Sorry, this is a feature addition and not suitable for stable releases. Steve On Thu, Dec 21, 2023 at 8:08 PM aszh07 wrote: > > From: Zahir Hussain > > This change adds ptest for alsa-lib. > > 1) Adding CFLAGS change for include the header file path for resolving > below compilation issue; >

[OE-core] [PATCH] kmscube: Upgrade to latest revision

From: Fabio Estevam Upgrade to the latest kmscube revision. Signed-off-by: Fabio Estevam --- meta/recipes-graphics/kmscube/kmscube_git.bb | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/meta/recipes-graphics/kmscube/kmscube_git.bb

Re: [OE-core] [PATCH V4] rxvt-unicode: set correct outdir for tic

On 12/22/23 22:25, Ross Burton wrote: CAUTION: This email comes from a non Wind River email account! Do not click links or open attachments unless you recognize the sender and know the content is safe. These patches were rejected by upstream:

Re: [OE-Core][PATCH 0/6] Stepwise rust upgrade 1.71.1 -> 1.74.1

On Mon, Dec 25, 2023 at 10:02 PM Richard Purdie wrote: > > On Mon, 2023-12-25 at 08:40 +, Richard Purdie via > lists.openembedded.org wrote: > > On Sun, 2023-12-24 at 23:09 +, Alex Kiernan wrote: > > > This is the 1.74.1 rust series rebased to include a revert of > > >