singlevar in lparser.c in Lua through 5.4.4 lacks a certain luaK_exp2anyregup call, leading to a heap-based buffer over-read that might affect a system that compiles untrusted Lua

BusyBox through 1.35.0 allows remote attackers to execute arbitrary code if netstat is used to print a DNS PTR record's value to a VT compatible terminal. Alternatively, the attacker could choose to

On Sun, Apr 17, 2022 at 2:02 AM Steve Sakoman via lists.yoctoproject.org <steve=sakoman.com@...> wrote: Working on this one too Steve

On Sun, Apr 17, 2022 at 2:02 AM Steve Sakoman via lists.yoctoproject.org <steve=sakoman.com@...> wrote: I'm working on this one. Steve

Signed-off-by: Zheng Ruoqin <zhengrq.fnst@...> --- meta/recipes-devtools/ruby/{ruby_3.1.1.bb => ruby_3.1.2.bb} | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) rename

Signed-off-by: Zheng Ruoqin <zhengrq.fnst@...> --- ...ireless-regdb_2022.02.18.bb => wireless-regdb_2022.04.08.bb} | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) rename

Signed-off-by: Zheng Ruoqin <zhengrq.fnst@...> --- ...t-using-sandbox-when-cross-compiling.patch | 33 ----------------- ...467179428a0e3ea9e4aa9738ac12ff02822d.patch | 35

pidof-add-m-option.patch updated for new version. Signed-off-by: Zheng Ruoqin <zhengrq.fnst@...> --- .../sysvinit/sysvinit/pidof-add-m-option.patch | 10 +++++-----

Signed-off-by: Zheng Ruoqin <zhengrq.fnst@...> --- meta/recipes-devtools/git/{git_2.35.2.bb => git_2.35.3.bb} | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) rename

Changelog: ========== Rename strtoi to strosi (string to signed int). The strtoi function on BSD does something else (returns an intmax, not an int) Signed-off-by: Wang Mingyu

License-Update: Version of driver files updated Added files for some drivers Signed-off-by: Wang Mingyu <wangmy@...> --- ...{linux-firmware_20220310.bb => linux-firmware_20220411.bb}

License-Update: year updated to 2022 Changelog: ========== 1. Merged patch from @carenas (GitHub #35, 7db87842) to fix pcre2grep incorrect handling of multiple passes. 2. Merged patch from @carenas

Signed-off-by: Wang Mingyu <wangmy@...> --- meta/recipes-support/libcap/{libcap_2.63.bb => libcap_2.64.bb} | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) rename

Changelog: ========= Validate repository directory ownership (v1.4) midx: Fix an undefined behavior (left-shift signed overflow) fetch: support OID refspec without dst Fix crash when regenerating a

Signed-off-by: Wang Mingyu <wangmy@...> --- meta/recipes-devtools/apt/{apt_2.4.3.bb => apt_2.4.5.bb} | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) rename

Changelog: ========== * Fix regression with transfer free's after closing device * Fix regression with destroyed context if API is misused * Workaround for applications using missing default context *

refresh 00_arches.patch for new version. Signed-off-by: Wang Mingyu <wangmy@...> --- meta/recipes-extended/libaio/libaio/00_arches.patch | 12 ++++++------ .../libaio/{libaio_0.3.112.bb =>

Changelog: ========== Deprecated and removed features: -------------------------------- * JSON_C_OBJECT_KEY_IS_CONSTANT is deprecated in favor of JSON_C_OBJECT_ADD_CONSTANT_KEY * Direct access to

Signed-off-by: Wang Mingyu <wangmy@...> --- .../help2man/{help2man_1.49.1.bb => help2man_1.49.2.bb} | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) rename

Changelog: ========== Update Nuspell provider, requiring Nuspell 5.1.0. The new provider takes advantage of recently-added Nuspell APIs to be smaller and simpler. Fix the C++ API is_added() method to