Backport a security fix, can be removed once we have 1.20.2 onwards. Signed-off-by: Ross Burton <ross.burton@...> --- meta/recipes-devtools/go/go-1.20.1.inc | 1 + .../go/go/CVE-2023-24532.patch | 208

Signed-off-by: Ross Burton <ross.burton@...> --- ...-Gtrace-remove-unguarded-print-calls.patch | 52 +++++++++++++++++++ .../libunwind/libunwind_1.6.2.bb | 1 + 2 files changed, 53 insertions(+) create

Update: there’s an alternative patch series which is likely merged instead: https://lore.kernel.org/qemu-devel/20230324113725.xsnbqvzo6rszayjj@.../ I suspect none of our machines use this device so th

Branch: master New this week: 1 CVEs CVE-2023-28531 (CVSS3: 9.8 CRITICAL): openssh https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2023-28531 * Removed this week: 0 CVEs Full list: Found 7 unpatc

From: Frederic Martinsons <frederic.martinsons@...> This recipe is for showing an "real world" example of a crate that depends on some git repositories. Usually, this kind of crate is built within a g

Steps to trigger the failed test: Edit local.conf to add something as follows: BASELIB = "lib64" IMAGE_INSTALL:append = " python3-tests". bitbake core-image-sato runqemu qemux86-64 nographic slirp Rep

From: Frederic Martinsons <frederic.martinsons@...> This recipe is for showing a "real world" example of a crate that depends on some git repositories. Usually, this kind of crate is built within a gl

From: Siddharth Doshi <sdoshi@...> OpenSSH 9.3p1 fixes 1 HIGH level security vulnerability. Upgrade the recipe to point to 9.3p1. CVEs Fixed: 1) CVE-2023-28531 - ssh-add in OpenSSH before 9.3 adds sma

From: Frederic Martinsons <frederic.martinsons@...> This is for a specific case where: - A recipe use a subpath on a git repo (e.g. git://repo.git/projects;subpath=subproject) - The recipe contains a

From: Frederic Martinsons <frederic.martinsons@...> Without that, the possible git urls that are in SRC_URI of a recipe are removed from SRC_URI during devtool process and so the cargo_common_do_patch

From: Frederic Martinsons <frederic.martinsons@...> To handle url like git://git@repo/project Signed-off-by: Frederic Martinsons <frederic.martinsons@...> --- meta/classes-recipe/cargo_common.bbclass

From: Alex Kiernan <alex.kiernan@...> Since disable network was added cargo configurations which reference git repos fail as they attempt to fetch across the network as part of do_compile, even if EXT

From: Frederic Martinsons <frederic.martinsons@...> This series brings the support of local git repository inside a cargo based recipe. It also enables devtool capacity on it. The following changes si

This is needed for many gnome 44 apps. Drop upstreamed patch in this release Signed-off-by: Khem Raj <raj.khem@...> --- ...ty.cc-Do-not-typecast-to-GSpawnFlags.patch | 58 ------------------- .../vte/{

From: Frederic Martinsons <frederic.martinsons@...> Without that, the possible git urls that are in SRC_URI of a recipe are sucked up during a devtool modify on the recipe. Let's treat these dependenc

* fixes: https://github.com/SCons/scons/issues/4231 which caused e.g. iotifity to fail in do_compile Signed-off-by: Martin Jansa <Martin.Jansa@...> --- .../python/{python3-scons_4.5.1.bb => python3-sc

A recent package.py change has highlighted some corruption issues with -dev pkgconfig package dependencies. Bump the output versions to trigger a rebuild and ensure everything is consistent. Take the

- added PACKAGECONFIGs for av1 support, gamepad and sandboxing - cmake tries to find where bwrap and xdg-dbus-proxy are located on targe= t and reads the path from ${STAGING_BINDIR_NATIVE}. This break

From: Frederic Martinsons <frederic.martinsons@...> This is for a specific case where: - A recipe use a subpath on a git repo (e.g. git://repo.git/projects;subpath=subproject) - The recipe contains a

From: Frederic Martinsons <frederic.martinsons@...> Without that, the possible git urls that are in SRC_URI of a recipe are removed from SRC_URI during devtool process and so the cargo_common_do_patch