From: Peter Kjellerstedt <peter.kjellerstedt@...> This continues where commit 676757f "sstate: fix touching files inside pseudo" and commit 29fc8599 "sstate: another fix for touching

From: Marek Vasut <marex@...> Backport binutils upstream patch fixing sporadic link errors in c++ code. This triggers at least on arm32 and aarch64 with qt5 based applications. The ChangeLog

From: Ranjitsinh Rathod <ranjitsinh.rathod@...> Add patches to fix CVE-2021-3995 and CVE-2021-3996 Also, add support include-strutils-cleanup-strto-functions.patch to solve compilation error

Signed-off-by: Steve Sakoman <steve@...> --- meta/recipes-core/expat/expat/CVE-2021-46143.patch | 6 ++++++ 1 file changed, 6 insertions(+) diff --git

Expat (aka libexpat) before 2.4.4 has a signed integer overflow in XML_GetBuffer for configurations with a nonzero XML_CONTEXT_BYTES. Backport patch

From: Minjae Kim <flowergom@...> Ghostscript GhostPDL 9.50 through 9.54.0 has a heap-based buffer overflow in sampled_data_finish (called from sampled_data_continue and interp). To apply this

From: Marta Rybczynska <rybczynska@...> Fix a grub issue with incorrect values from an usb device. From the official description from NVD [1]: During USB device initialization, descriptors

From: Marta Rybczynska <rybczynska@...> Fix grub issue with module dereferencing. From the official description from NVD [1]: The rmmod implementation allows the unloading of a module used

From: Purushottam Choudhary <purushottamchoudhary29@...> Add patches to fix CVE-2021-3997. Add additional below mentioned patches which are required to fix CVE: 1.

Includes the following fixes: 3ef8be9b89 CVE-2022-23218: Buffer overflow in sunrpc svcunix_create (bug 28768) e5c8da9826 <shlib-compat.h>: Support compat_symbol_reference for _ISOMAC 412aaf1522

Please review this set of patches for dunfell. Passed a-full on autobuilder: https://autobuilder.yoctoproject.org/typhoon/#/builders/83/builds/3182 The following changes since commit

When creating a new recipe.bb file for a binary, don't use BP which includes the version information, instead use BPN which is just the name base Package Name. Since PB is not specified, it takes the

On Thu, Feb 3, 2022 at 9:26 AM Enrico Scholz via lists.openembedded.org <enrico.scholz=sigma-chemnitz.de@...> wrote: this means regenerating entire shared state isnt it ?

gcc-10+ supports zstd compression of LTO bytecode. Install the corresponding package to enable this feature in a deterministic way. NOTE: previously built LTO object files (without this

When a file can not be identified by checksum and they contain an SPDX License-Identifier tag, use it as the found license. [YOCTO #14529] Tested with LICENSE files that contain 1 or more

Prelink is being dropped by glibc in 2.36. It already causes issues with binary corruption, has a number of open bugs and is of questionable benefit without disabling load address randomization and

With the removal of prelink, we no longer need the glibc patch for it either. Signed-off-by: Richard Purdie <richard.purdie@...> --- ...ke-_dl_build_local_scope-breadth-fir.patch |

Note that the new override syntax is trying to sneak in here. I've corrected this. Steve

I only get an error with lsof, your other patches use BSD-3-Clause which already exists. Steve

we may need them for the other patches that correct the 'BSD' to specific clauses? regards Nisha P