From: Mingli Yu <mingli.yu@...> Add selinux PACKAGECONFIG logic in selinux layer[1] to conform to yocto compliance. [1] https://git.yoctoproject.org/meta-selinux/commit/?id=31325005e4409e08b7f68eed44a

From: Mingli Yu <mingli.yu@...> Add selinux PACKAGECONFIG logic in selinux layer[1] to conform to yocto compliance. [1] https://git.yoctoproject.org/meta-selinux/commit/?id=31325005e4409e08b7f68eed44a

From: Mingli Yu <mingli.yu@...> Add selinux PACKAGECONFIG logic in selinux layer[1] to conform to yocto compliance. [1] https://git.yoctoproject.org/meta-selinux/commit/?id=31325005e4409e08b7f68eed44a

From: Mingli Yu <mingli.yu@...> Add selinux and audit PACKAGECONFIG logic in selinux layer[1] to conform to yocto compliance. [1] https://git.yoctoproject.org/meta-selinux/commit/?id=31325005e4409e08b

Allows mesa to be built with glvnd support. Thus, creates libEGL_mesa.so* and libGLX_mesa.so* libraries meant to coexist with vendor neutral dispatch libraries from libglvnd. Signed-off-by: Vincent Da

This is the first release in 13 years; I have reviewed the accumulated patches, and dropped some of them where purpose or issue being fixed is not clear. Specifically: 0001-Add-listen-action-for-a-tcp

License-Update: upstream has clarified that the combined work is gpl3 due to use of gnulib. man-db's own pieces remain (l)gpl2 or later. https://salsa.debian.org/debian/man-db/-/commit/695a3560fdf91f8

It has been fixed by removing the check upstream see https://github.com/WayneD/rsync/commit/9a3449a3980421f84ac55498ba565bc112b20d6c Signed-off-by: Khem Raj <raj.khem@...> --- ...antic-errors-at-the-e

It has been applied upstream see https://github.com/WayneD/rsync/commit/9a3449a3980421f84ac55498ba565bc112b20d6c Signed-off-by: Khem Raj <raj.khem@...> --- ...antic-errors-at-the-end-of-configure.patc

Hi Joshua I used the create-spdx class a few weeks ago to generate an IMAGE-MACHINE.spdx.json file in tmp/deploy/images/MACHINE/ I tried to validate this SPDX file using the online tool on https://too

Currently /usr/bin/python is provided by the python2 package. If python2 is not installed, the built image lacks a provider for it. This results in failed scripts when using '/usr/bin/python' shebang.

-> nginx: fix CVE-2022-41741 -> nginx: disabled duplicate atoms. -> Reference: -> https://nvd.nist.gov/vuln/detail/CVE-2022-41742 -> Upstream fixes: -> https://github.com/nginx/nginx/commit/0d23105373

A vulnerability classified as problematic was found in ffmpeg. This vulnerability affects the function smc_encode_stream of the file libavcodec/smcenc.c of the component QuickTime Graphics Video Encod

A vulnerability classified as problematic has been found in ffmpeg. This affects an unknown part of the file libavcodec/rpzaenc.c of the component QuickTime RPZA Video Encoder. The manipulation of the

A vulnerability classified as problematic was found in ffmpeg. This vulnerability affects the function smc_encode_stream of the file libavcodec/smcenc.c of the component QuickTime Graphics Video Encod

The following changes since commit 9237ffc4feee2dd6ff5bdd672072509ef9e82f6d: build-appliance-image: Update to langdale head revision (2022-11-14 16:30:13 +0000) are available in the Git repository at:

The following changes since commit 3243b069db7629d15e4b8c25b4133f824d18520c: qemu: add io_uring PACKAGECONFIG (2022-11-10 07:13:46 -1000) are available in the Git repository at: https://git.openembedd

CVE Reference: https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2022-3715 Signed-off-by: Xiangyu Chen <xiangyu.chen@...> --- .../bash/bash/CVE-2022-3715.patch | 33 +++++++++++++++++++ meta/recipes-exte

This patch contains a fix for CVE-2022-3970 Reference: https://nvd.nist.gov/vuln/detail/CVE-2022-3970 https://security-tracker.debian.org/tracker/CVE-2022-3970 Patch generated from : https://gitlab.co

This should be the final pull request for the 3.1.21 release. The following changes since commit ce99d451a54b8ce46b7f9030deaba86355009b1a: wic: swap partitions are not added to fstab (2022-11-11 04:24