From: Archana Polampalli
A vulnerability in Node.js HTTP servers allows an attacker to send a specially
crafted HTTP request with chunked encoding, leading to resource exhaustion and
denial of service (DoS). The server reads an unbounded number of bytes from a
single connection, exploiting the la
From: Archana Polampalli
On Linux, Node.js ignores certain environment variables if those may have been
set by an unprivileged user while the process is running with elevated
privileges
with the only exception of CAP_NET_BIND_SERVICE. Due to a bug in the
implementation of this exception, Node.js
From: Archana Polampalli
Signed-off-by: Archana Polampalli
---
.../nodejs/nodejs/CVE-2024-22025.patch| 148 ++
.../recipes-devtools/nodejs/nodejs_16.20.2.bb | 1 +
2 files changed, 149 insertions(+)
create mode 100644 meta-oe/recipes-devtools/nodejs/nodejs/CVE-2024-22
From: Archana Polampalli
Signed-off-by: Archana Polampalli
---
.../nodejs/nodejs/CVE-2023-46809.patch| 120 ++
.../recipes-devtools/nodejs/nodejs_16.20.2.bb | 3 +-
2 files changed, 122 insertions(+), 1 deletion(-)
create mode 100644 meta-oe/recipes-devtools/nodejs/no
The function signing_import_pubkey_from_pem is defined twice, one of
them should really be named signing_import_pubkey_from_der. Fix this and
while at it fix some argument names in the comments above the functions
as well.
Reported-by: Miklos Toth
Fixes: 4a6ac691f ("add signing.bbclass as infrast
Hi,
since commit 0438fba4e773824fd2b41ded2728076ddeb1
("chromium: Enable Rust") in meta-browser, I get this error
on several different chromium-x11 builds (i.e. Fedora 33 and
Fedora 39 hosts, mickledore and nanbield Yocto versions):
| FAILED: obj/build/rust/std/target.json obj/build/rust/std
On Fri, 2024-02-23 at 08:36 +, Polampalli, Archana via
lists.openembedded.org wrote:
> From: Archana Polampalli
>
> A vulnerability in Node.js HTTP servers allows an attacker to send a
> specially
> crafted HTTP request with chunked encoding, leading to resource
> exhaustion and
> denial of s
Signed-off-by: Daniel Ammann
---
.../packagegroups/packagegroup-meta-oe.bb | 1 +
meta-oe/recipes-support/sdmon/sdmon_git.bb| 23 +++
2 files changed, 24 insertions(+)
create mode 100644 meta-oe/recipes-support/sdmon/sdmon_git.bb
diff --git a/meta-oe/recipes-core/packag
ChangeLog:
https://github.com/linux-audit/audit-userspace/releases/tag/v4.0
Major changes:
Separate loading rules and logging events into separate services,
audit-rules.service and auditd.service.
Drop support for python2 and SysVinit.
The auvirt and autrace programs have been dropped.
Th
On Fri, Feb 23, 2024 at 3:40 AM Daniel Ammann
wrote:
>
> Signed-off-by: Daniel Ammann
> ---
> .../packagegroups/packagegroup-meta-oe.bb | 1 +
> meta-oe/recipes-support/sdmon/sdmon_git.bb| 23 +++
> 2 files changed, 24 insertions(+)
> create mode 100644 meta-oe/recipes-
Signed-off-by: Derek Straka
---
meta-python/conf/include/ptest-packagelists-meta-python.inc| 2 +-
meta-python/recipes-devtools/python/python3-typeguard_4.1.5.bb | 1 +
2 files changed, 2 insertions(+), 1 deletion(-)
diff --git a/meta-python/conf/include/ptest-packagelists-meta-python.inc
b
Signed-off-by: Derek Straka
---
meta-python/conf/include/ptest-packagelists-meta-python.inc | 2 +-
.../recipes-devtools/python/python3-service-identity_21.1.0.bb | 1 +
2 files changed, 2 insertions(+), 1 deletion(-)
diff --git a/meta-python/conf/include/ptest-packagelists-meta-python.inc
Encode.pm is packaged in perl itself and users should
instead RDEPENDS on perl-module-encode
This was originally added a long time ago when I did not understand
the way the packages split was done.
See the other Encode::* sub-packages in:
https://git.openembedded.org/openembedded-core/tree/meta/r
The upstream has not been touched since 2015, when this recipe was added.
https://metacpan.org/pod/Encode::Locale
There are no other recipes in meta-openembedded which depend on this recipe
and it is the only recipe that depends on the now dropped libencode-perl
recipe.
My original reason for con
Its not in PTESTS_FAST_META_OE
Signed-off-by: Khem Raj
---
meta-oe/conf/include/ptest-packagelists-meta-oe.inc | 4 ++--
1 file changed, 2 insertions(+), 2 deletions(-)
diff --git a/meta-oe/conf/include/ptest-packagelists-meta-oe.inc
b/meta-oe/conf/include/ptest-packagelists-meta-oe.inc
index
Signed-off-by: Khem Raj
---
.../conf/include/ptest-packagelists-meta-networking.inc| 3 ++-
1 file changed, 2 insertions(+), 1 deletion(-)
diff --git
a/meta-networking/conf/include/ptest-packagelists-meta-networking.inc
b/meta-networking/conf/include/ptest-packagelists-meta-networking.
libdigest-hmac-perl and libextutils-installpaths-perl are passing fine
under 20s on qemux86-64, therefore remove them out of PTESTS_PROBLEMS_META_PERL
Signed-off-by: Khem Raj
---
meta-perl/conf/include/ptest-packagelists-meta-perl.inc | 4 ++--
1 file changed, 2 insertions(+), 2 deletions(-)
di
It needs make and build tools in order to run
Signed-off-by: Khem Raj
---
.../conf/include/ptest-packagelists-meta-networking.inc | 2 +-
meta-networking/recipes-daemons/openhpi/openhpi_3.8.0.bb| 1 +
2 files changed, 2 insertions(+), 1 deletion(-)
diff --git
a/meta-networking/
Signed-off-by: Khem Raj
---
.../conf/include/ptest-packagelists-meta-networking.inc | 2 +-
meta-networking/recipes-daemons/squid/squid_6.7.bb | 2 +-
2 files changed, 2 insertions(+), 2 deletions(-)
diff --git
a/meta-networking/conf/include/ptest-packagelists-meta-networki
19 matches
Mail list logo