Branch: master New this week: 4 CVEs CVE-2022-2795 (CVSS3: 7.5 HIGH): bind https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2022-2795 * CVE-2022-2881 (CVSS3: 8.2 HIGH): bind https://web.nvd.nist.g

From: Bruce Ashfield <bruce.ashfield@...> Updating to the latest korg -stable release that comprises the following commits: dd20085f2a88 Linux 5.15.68 e04b25638aef ARM: at91: ddr: remove CONFIG_SOC_SA

From: Bruce Ashfield <bruce.ashfield@...> Integrating the following commit(s) to linux-yocto/.: 1128d7bcdcd acpi: fix defaults for x86 and qemuarm64 Signed-off-by: Bruce Ashfield <bruce.ashfield@...>

I think it should be done with packageconfig which is at recipe scope and then in your own distro you could enable it via bbappend or via other global knob if you wish so Secondly lot of these seems t

From: Bruce Ashfield <bruce.ashfield@...> Updating to the latest korg -stable release that comprises the following commits: 7e17397001a9 Linux 5.4.213 077041e486fe MIPS: loongson32: ls1c: Fix hang dur

From: Bruce Ashfield <bruce.ashfield@...> Updating to the latest korg -stable release that comprises the following commits: d6deb370b5a5 Linux 5.4.212 0052348329c9 net: neigh: don't call kfree_skb() u

From: Virendra Thakur <virendrak@...> Add patch file to fix CVE-2022-40674 Link: https://github.com/libexpat/libexpat/pull/629/commits/4a32da87e931ba54393d465bb77c40b5c33d343b Signed-off-by: Virendra

From: Sana Kazi <sana.kazi@...> Fix CVE-2021-20223 for sqlite3 Link: https://github.com/sqlite/sqlite/commit/d1d43efa4fb0f2098c0e2c5bf2e807c58d5ec05b.patch Signed-off-by: Sana Kazi <Sana.Kazi@...> Sig

From: Lee Chee Yang <chee.yang.lee@...> Signed-off-by: Lee Chee Yang <chee.yang.lee@...> Signed-off-by: Steve Sakoman <steve@...> --- .../subversion/CVE-2021-28544.patch | 146 ++++++++++++++++++ .../s

Please review this set of patches for dunfell and have comments back by end of day Friday. Passed a-full on autobuilder: https://autobuilder.yoctoproject.org/typhoon/#/builders/83/builds/4259 The foll

The output string changed slightly in new mesa versions so update the test to match. Signed-off-by: Richard Purdie <richard.purdie@...> --- meta-selftest/lib/oeqa/runtime/cases/virgl.py | 2 +- 1 file

Includes a fix for CVE-2022-3234. Signed-off-by: Richard Purdie <richard.purdie@...> --- meta/recipes-support/vim/vim.inc | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/meta/rec

For users who build their own variants of poky, they want to stay close to poky.conf and thus use it, but would still like to change the version details and maintainers to their own. With this change

Output from git_describe() function can then be used in various places and from various git trees to create a user friend(lier) name to builds. Examples where this could be used is BUILD_ID, SDK_VERSI

Previously this was hardcoded in oe-setup-builddir. Signed-off-by: Peter Kjellerstedt <peter.kjellerstedt@...> --- .templateconf | 1 + 1 file changed, 1 insertion(+) diff --git a/.templateconf b/.temp

Backport the fix for CVE-2022-2962. Signed-off-by: Ross Burton <ross.burton@...> --- meta/recipes-devtools/qemu/qemu.inc | 1 + ...ulip-Restrict-DMA-engine-to-memories.patch | 64 +++++++++++++++++++ 2

This patch was accidentally dropped in the 7.1.0 upgrade, so bring it back. Signed-off-by: Ross Burton <ross.burton@...> --- meta/recipes-devtools/qemu/qemu.inc | 2 +- ...t-against-buggy-or-malicious-

- add PACKAGECONFIG to build vulkan beta drivers - add PACKAGECONFIG for zink and build it along with vulkan - remove TLS-ELF patch and the associated PACKAGECONFIG. It looks like its unneeded - remov

From: Virendra Thakur <virendrak@...> Add patch file to fix CVE-2022-40674 Link: https://github.com/libexpat/libexpat/pull/629/commits/4a32da87e931ba54393d465bb77c40b5c33d343b Signed-off-by: Virendra