---
.../recipes-daemons/atftp/{atftp_0.7.5.bb => atftp_0.8.0.bb} | 2 +-
1 file changed, 1 insertion(+), 1 deletion(-)
rename meta-networking/recipes-daemons/atftp/{atftp_0.7.5.bb => atftp_0.8.0.bb} (96%)
diff --git a/meta-networking/recipes-daemons/atftp/atftp_0.7.5.bb b/meta-networking/recipes-daemons/atftp/atftp_0.8.0.bb
similarity index 96%
rename from meta-networking/recipes-daemons/atftp/atftp_0.7.5.bb
rename to meta-networking/recipes-daemons/atftp/atftp_0.8.0.bb
index f893a4d6dcaf..359d8b365ff3 100644
--- a/meta-networking/recipes-daemons/atftp/atftp_0.7.5.bb
+++ b/meta-networking/recipes-daemons/atftp/atftp_0.8.0.bb
@@ -4,7 +4,7 @@ HOMEPAGE = "http://packages.debian.org/atftp"
LICENSE = "GPL-2.0-only"
LIC_FILES_CHKSUM = "file://LICENSE;md5=f65159f73e603f89d6867d43191900e5"
-SRCREV = "00921e75728e3681b051c2e48c59e36c6cfa2e97"
+SRCREV = "d5c27eb7a9695d83569767e27ef69674173db39a"
SRC_URI = "git://git.code.sf.net/p/atftp/code;branch=master \
file://atftpd.init \
--
2.30.2
nodejs: upgrade 16.18.1 -> 16.19.0 (2023-02-04 12:16:04 -0500)
are available in the Git repository at:
https://git.openembedded.org/meta-openembedded langdale-next
for you to fetch changes up to 30f4c2b3ae182513b967185e06bc8409a0ee6092:
mdns: use git fetcher (2023-02-15 08:02:50 -0500)
----------------------------------------------------------------
Chee Yang Lee (1):
tinyproxy: fix CVE-2022-40468
Dmitry Baryshkov (1):
nss: fix cross-compilation error
Joe Slater (1):
phoronix-test-suite: fix CVE-2022-40704
Khem Raj (1):
net-snmp: Fix build with clang16
Martin Jansa (2):
exiv2: fix SRC_URI
mdns: use git fetcher
Narpat Mali (1):
net-snmp: CVE-2022-44792 & CVE-2022-44793 Fix NULL Pointer Exception
Randy MacLeod (2):
python3-pillow: add ptest support
python3-pillow: Add distutils, unixadmin for ptest
Wang Mingyu (5):
python3-pillow: upgrade 9.2.0 -> 9.3.0
python3-pillow: upgrade 9.3.0 -> 9.4.0
apache2: upgrade 2.4.54 -> 2.4.55
python3-django: upgrade 4.1 -> 4.1.3
python3-django: upgrade 4.1.3 -> 4.1.6
Yi Zhao (1):
freeradius: Security fixes for CVE-2022-41860 CVE-2022-41861
.../recipes-connectivity/freeradius/files/CVE-2022-41860.patch | 118 +++++++++++++++++++
.../recipes-connectivity/freeradius/files/CVE-2022-41861.patch | 53 +++++++++
.../recipes-connectivity/freeradius/freeradius_3.0.21.bb | 2 +
.../0001-Create-subroutine-for-cleaning-recent-interfaces.patch | 0
.../{files => mdns}/0001-dns-sd-Include-missing-headers.patch | 0
.../{files => mdns}/0001-mdns-include-stddef.h-for-NULL.patch | 0
.../0002-Create-subroutine-for-tearing-down-an-interface.patch | 0
.../0002-mdns-cross-compilation-fixes-for-bitbake.patch | 0
.../{files => mdns}/0003-Track-interface-socket-family.patch | 0
.../{files => mdns}/0004-Use-list-for-changed-interfaces.patch | 0
.../mdns/{files => mdns}/0006-Remove-unneeded-function.patch | 0
.../mdns/mdns/0006-make-Add-top-level-Makefile.patch | 175 ++++++++++++++++++++++++++++
.../0008-Mark-deleted-interfaces-as-being-changed.patch | 0
.../{files => mdns}/0009-Fix-possible-NULL-dereference.patch | 0
.../{files => mdns}/0010-Handle-errors-from-socket-calls.patch | 0
...011-Change-a-dynamic-allocation-to-file-scope-variable.patch | 0
.../recipes-protocols/mdns/{files => mdns}/mdns.service | 0
meta-networking/recipes-protocols/mdns/mdns_1310.140.1.bb | 44 ++++---
.../0001-Add-noreturn-attribute-to-netsnmp_pci_error.patch | 32 +++++
.../net-snmp/net-snmp/CVE-2022-44792-CVE-2022-44793.patch | 121 +++++++++++++++++++
meta-networking/recipes-protocols/net-snmp/net-snmp_5.9.3.bb | 2 +
.../recipes-support/tinyproxy/tinyproxy/CVE-2022-40468.patch | 33 ++++++
meta-networking/recipes-support/tinyproxy/tinyproxy_1.11.1.bb | 1 +
.../phoronix-test-suite/files/CVE-2022-40704.patch | 46 ++++++++
.../phoronix-test-suite/phoronix-test-suite_10.8.4.bb | 5 +-
meta-oe/recipes-support/exiv2/exiv2_0.27.3.bb | 2 +-
.../nss/nss/0001-nss-fix-support-cross-compiling.patch | 7 +-
.../python/{python3-django_4.1.bb => python3-django_4.1.6.bb} | 2 +-
meta-python/recipes-devtools/python/python3-pillow/run-ptest | 3 +
.../python/{python3-pillow_9.2.0.bb => python3-pillow_9.4.0.bb} | 30 ++++-
.../apache2/{apache2_2.4.54.bb => apache2_2.4.55.bb} | 2 +-
31 files changed, 653 insertions(+), 25 deletions(-)
create mode 100644 meta-networking/recipes-connectivity/freeradius/files/CVE-2022-41860.patch
create mode 100644 meta-networking/recipes-connectivity/freeradius/files/CVE-2022-41861.patch
rename meta-networking/recipes-protocols/mdns/{files => mdns}/0001-Create-subroutine-for-cleaning-recent-interfaces.patch (100%)
rename meta-networking/recipes-protocols/mdns/{files => mdns}/0001-dns-sd-Include-missing-headers.patch (100%)
rename meta-networking/recipes-protocols/mdns/{files => mdns}/0001-mdns-include-stddef.h-for-NULL.patch (100%)
rename meta-networking/recipes-protocols/mdns/{files => mdns}/0002-Create-subroutine-for-tearing-down-an-interface.patch (100%)
rename meta-networking/recipes-protocols/mdns/{files => mdns}/0002-mdns-cross-compilation-fixes-for-bitbake.patch (100%)
rename meta-networking/recipes-protocols/mdns/{files => mdns}/0003-Track-interface-socket-family.patch (100%)
rename meta-networking/recipes-protocols/mdns/{files => mdns}/0004-Use-list-for-changed-interfaces.patch (100%)
rename meta-networking/recipes-protocols/mdns/{files => mdns}/0006-Remove-unneeded-function.patch (100%)
create mode 100644 meta-networking/recipes-protocols/mdns/mdns/0006-make-Add-top-level-Makefile.patch
rename meta-networking/recipes-protocols/mdns/{files => mdns}/0008-Mark-deleted-interfaces-as-being-changed.patch (100%)
rename meta-networking/recipes-protocols/mdns/{files => mdns}/0009-Fix-possible-NULL-dereference.patch (100%)
rename meta-networking/recipes-protocols/mdns/{files => mdns}/0010-Handle-errors-from-socket-calls.patch (100%)
rename meta-networking/recipes-protocols/mdns/{files => mdns}/0011-Change-a-dynamic-allocation-to-file-scope-variable.patch (100%)
rename meta-networking/recipes-protocols/mdns/{files => mdns}/mdns.service (100%)
create mode 100644 meta-networking/recipes-protocols/net-snmp/net-snmp/0001-Add-noreturn-attribute-to-netsnmp_pci_error.patch
create mode 100644 meta-networking/recipes-protocols/net-snmp/net-snmp/CVE-2022-44792-CVE-2022-44793.patch
create mode 100644 meta-networking/recipes-support/tinyproxy/tinyproxy/CVE-2022-40468.patch
create mode 100644 meta-oe/recipes-benchmark/phoronix-test-suite/files/CVE-2022-40704.patch
rename meta-python/recipes-devtools/python/{python3-django_4.1.bb => python3-django_4.1.6.bb} (58%)
create mode 100644 meta-python/recipes-devtools/python/python3-pillow/run-ptest
rename meta-python/recipes-devtools/python/{python3-pillow_9.2.0.bb => python3-pillow_9.4.0.bb} (53%)
rename meta-webserver/recipes-httpd/apache2/{apache2_2.4.54.bb => apache2_2.4.55.bb} (99%)
0001-Makefile-do-not-use-Werror.patch
refreshed for new version.
0001-Makefile-fix-parallel-build-failure.patch
removed since it's included in new version.
Signed-off-by: Wang Mingyu <wangmy@...>
---
.../0001-Makefile-do-not-use-Werror.patch | 6 +--
...-Makefile-fix-parallel-build-failure.patch | 44 -------------------
.../{netplan_0.104.bb => netplan_0.106.bb} | 5 +--
3 files changed, 5 insertions(+), 50 deletions(-)
delete mode 100644 meta-oe/dynamic-layers/meta-python/recipes-connectivity/netplan/netplan/0001-Makefile-fix-parallel-build-failure.patch
rename meta-oe/dynamic-layers/meta-python/recipes-connectivity/netplan/{netplan_0.104.bb => netplan_0.106.bb} (95%)
diff --git a/meta-oe/dynamic-layers/meta-python/recipes-connectivity/netplan/netplan/0001-Makefile-do-not-use-Werror.patch b/meta-oe/dynamic-layers/meta-python/recipes-connectivity/netplan/netplan/0001-Makefile-do-not-use-Werror.patch
index 613858f6f..b8c48d540 100644
--- a/meta-oe/dynamic-layers/meta-python/recipes-connectivity/netplan/netplan/0001-Makefile-do-not-use-Werror.patch
+++ b/meta-oe/dynamic-layers/meta-python/recipes-connectivity/netplan/netplan/0001-Makefile-do-not-use-Werror.patch
@@ -10,7 +10,7 @@ Signed-off-by: Alexander Kanavin <alex@...>
1 file changed, 1 deletion(-)
diff --git a/Makefile b/Makefile
-index 0368e41..53d6a9d 100644
+index 97973ce..78273ff 100644
--- a/Makefile
+++ b/Makefile
@@ -8,7 +8,6 @@ BUILDFLAGS = \
@@ -20,7 +20,7 @@ index 0368e41..53d6a9d 100644
- -Werror \
$(NULL)
- SRCS = \
+ TESTFLAGS = \
--
-2.25.1
+2.34.1
diff --git a/meta-oe/dynamic-layers/meta-python/recipes-connectivity/netplan/netplan/0001-Makefile-fix-parallel-build-failure.patch b/meta-oe/dynamic-layers/meta-python/recipes-connectivity/netplan/netplan/0001-Makefile-fix-parallel-build-failure.patch
deleted file mode 100644
index 2149ee30c..000000000
--- a/meta-oe/dynamic-layers/meta-python/recipes-connectivity/netplan/netplan/0001-Makefile-fix-parallel-build-failure.patch
+++ /dev/null
@@ -1,44 +0,0 @@
-From 2e84550b47b475d830622f41576992a1d45d6af0 Mon Sep 17 00:00:00 2001
-From: Zhao Yi <38274519+yizhao1@...>
-Date: Tue, 15 Mar 2022 19:28:26 +0800
-Subject: [PATCH] Makefile: fix parallel build failure (#267)
-
-* Makefile: fix parallel build failure
-
-Add src/_features.h as dependency for dbus.o to fix the parallel build
-failure:
-src/dbus.c:17:10: fatal error: _features.h: No such file or directory
-
-Upstream-Status: Backport
-[https://github.com/canonical/netplan/commit/2e84550b47b475d830622f41576992a1d45d6af0]
-
-Signed-off-by: Yi Zhao <yi.zhao@...>
----
- Makefile | 4 ++--
- 1 file changed, 2 insertions(+), 2 deletions(-)
-
-diff --git a/Makefile b/Makefile
-index 0368e41..8ac7432 100644
---- a/Makefile
-+++ b/Makefile
-@@ -52,7 +52,7 @@ NOSETESTS3 ?= $(shell command -v nosetests-3 || command -v nosetests3 || echo tr
-
- default: netplan/_features.py generate netplan-dbus dbus/io.netplan.Netplan.service doc/netplan.html doc/netplan.5 doc/netplan-generate.8 doc/netplan-apply.8 doc/netplan-try.8 doc/netplan-dbus.8 doc/netplan-get.8 doc/netplan-set.8
-
--%.o: src/%.c
-+%.o: src/%.c src/_features.h
- $(CC) $(BUILDFLAGS) $(CFLAGS) $(LDFLAGS) -c $^ `pkg-config --cflags --libs glib-2.0 gio-2.0 yaml-0.1 uuid`
-
- libnetplan.so.$(NETPLAN_SOVER): $(SRCS) abicompat.lds
-@@ -62,7 +62,7 @@ libnetplan.so.$(NETPLAN_SOVER): $(SRCS) abicompat.lds
- generate: libnetplan.so.$(NETPLAN_SOVER) generate.o
- $(CC) $(BUILDFLAGS) $(CFLAGS) $(LDFLAGS) -o $@ $(filter-out $<,$^) -L. -lnetplan `pkg-config --cflags --libs glib-2.0 gio-2.0 yaml-0.1 uuid`
-
--netplan-dbus: libnetplan.so.$(NETPLAN_SOVER) src/_features.h dbus.o
-+netplan-dbus: libnetplan.so.$(NETPLAN_SOVER) dbus.o
- $(CC) $(BUILDFLAGS) $(CFLAGS) $(LDFLAGS) -o $@ $(filter-out $<,$(patsubst %.h,,$^)) -L. -lnetplan `pkg-config --cflags --libs libsystemd glib-2.0 gio-2.0 yaml-0.1 uuid`
-
- src/_features.h: src/[^_]*.[hc]
---
-2.25.1
-
diff --git a/meta-oe/dynamic-layers/meta-python/recipes-connectivity/netplan/netplan_0.104.bb b/meta-oe/dynamic-layers/meta-python/recipes-connectivity/netplan/netplan_0.106.bb
similarity index 95%
rename from meta-oe/dynamic-layers/meta-python/recipes-connectivity/netplan/netplan_0.104.bb
rename to meta-oe/dynamic-layers/meta-python/recipes-connectivity/netplan/netplan_0.106.bb
index ea944fa9d..b7fe7ae3e 100644
--- a/meta-oe/dynamic-layers/meta-python/recipes-connectivity/netplan/netplan_0.104.bb
+++ b/meta-oe/dynamic-layers/meta-python/recipes-connectivity/netplan/netplan_0.106.bb
@@ -11,12 +11,11 @@ LICENSE = "GPL-3.0-only"
LIC_FILES_CHKSUM = "file://COPYING;md5=d32239bcb673463ab874e80d47fae504"
S = "${WORKDIR}/git"
-SRCREV = "3e522b7255310bdecca6c781137741dfc4abc021"
-PV = "0.104"
+SRCREV = "15ce044d1df27b5057556d84d0d14beef8dd4e4d"
+PV = "0.106"
SRC_URI = "git://github.com/CanonicalLtd/netplan.git;branch=main;protocol=https \
file://0001-Makefile-do-not-use-Werror.patch \
- file://0001-Makefile-fix-parallel-build-failure.patch \
"
SRC_URI:append:libc-musl = " file://0001-don-t-fail-if-GLOB_BRACE-is-not-defined.patch"
--
2.34.1
Changelog:
=========
* NOTE: Since 0.32.0 the "$KRB5_CONFIG" environment variable is ignored
when running configure. Use KRB5_CONF_TOOL instead to specify an
alternative to /usr/bin/krb5-config.
* Fail for configure --with-gssapi if GSSAPI can't be enabled (issue #102)
* Add Georgian translation
* Fixes for Windows MSYS2/MinGW build, including cross-build
Signed-off-by: Wang Mingyu <wangmy@...>
---
meta-oe/recipes-support/neon/{neon_0.32.4.bb => neon_0.32.5.bb} | 2 +-
1 file changed, 1 insertion(+), 1 deletion(-)
rename meta-oe/recipes-support/neon/{neon_0.32.4.bb => neon_0.32.5.bb} (96%)
diff --git a/meta-oe/recipes-support/neon/neon_0.32.4.bb b/meta-oe/recipes-support/neon/neon_0.32.5.bb
similarity index 96%
rename from meta-oe/recipes-support/neon/neon_0.32.4.bb
rename to meta-oe/recipes-support/neon/neon_0.32.5.bb
index d281bfde6..c364aab36 100644
--- a/meta-oe/recipes-support/neon/neon_0.32.4.bb
+++ b/meta-oe/recipes-support/neon/neon_0.32.5.bb
@@ -11,7 +11,7 @@ SRC_URI = "${DEBIAN_MIRROR}/main/n/neon27/neon27_${PV}.orig.tar.gz \
file://run-ptest \
"
-SRC_URI[sha256sum] = "1bcdaabb63206b5e00c9a8c4b3672168b523b49eb559c5a486e3256463af34fd"
+SRC_URI[sha256sum] = "4872e12f802572dedd4b02f870065814b2d5141f7dbdaf708eedab826b51a58a"
inherit autotools-brokensep binconfig-disabled lib_package pkgconfig ptest
--
2.34.1
Changelog:
============
bindings: let ^/ toggle between the 'search' and 'gotoline' menus
bump version numbers and add a news item for the 7.2 release
copyright: update the years for the FSF
docs: give ^K and ^U some useful function in the alternative bindings
docs: put the binding of ^Y after its unbinding, for it to be effective
gnulib: update to its current upstream state
input: disallow bracketed pastes when in view mode
syntax: html: colorize specially the other two emphasizing tags too
tweaks: avoid warnings when compiling with -Wpedantic
tweaks: rewrap an old news item
tweaks: separate a special thanks from the preceding ones
Signed-off-by: Wang Mingyu <wangmy@...>
---
meta-oe/recipes-support/nano/{nano_7.1.bb => nano_7.2.bb} | 2 +-
1 file changed, 1 insertion(+), 1 deletion(-)
rename meta-oe/recipes-support/nano/{nano_7.1.bb => nano_7.2.bb} (88%)
diff --git a/meta-oe/recipes-support/nano/nano_7.1.bb b/meta-oe/recipes-support/nano/nano_7.2.bb
similarity index 88%
rename from meta-oe/recipes-support/nano/nano_7.1.bb
rename to meta-oe/recipes-support/nano/nano_7.2.bb
index c60135415..0642287c9 100644
--- a/meta-oe/recipes-support/nano/nano_7.1.bb
+++ b/meta-oe/recipes-support/nano/nano_7.2.bb
@@ -13,7 +13,7 @@ RDEPENDS:${PN} = "ncurses-terminfo-base"
PV_MAJOR = "${@d.getVar('PV').split('.')[0]}"
SRC_URI = "https://nano-editor.org/dist/v${PV_MAJOR}/nano-${PV}.tar.xz"
-SRC_URI[sha256sum] = "57ba751e9b7519f0f6ddee505202e387c75dde440c1f7aa1b9310cc381406836"
+SRC_URI[sha256sum] = "86f3442768bd2873cec693f83cdf80b4b444ad3cc14760b74361474fc87a4526"
UPSTREAM_CHECK_URI = "https://ftp.gnu.org/gnu/nano"
--
2.34.1
0001-minicoredumper_demo-Use-optnone-attribute-with-clang.patch
removed since it's included in 2.0.3
Changelog:
==========
* Dump zero-blocks as 4KB blocks instead of single bytes to speed up
piping to the compressor. (Only relevant if tar is not used.)
* Drop core data exceeding the ustar 8GB limit. The core file is
appropriately truncated and the actions are logged. This fixes tar
file corruption for core files >8GB.
* Known problems:
- If tar is active, core files larger than 8GB will be
truncated. If it is known that the core files will be >8GB and
the full core file is needed, tar must be disabled.
Signed-off-by: Wang Mingyu <wangmy@...>
---
...emo-Use-optnone-attribute-with-clang.patch | 37 -------------------
...umper_2.0.2.bb => minicoredumper_2.0.3.bb} | 3 +-
2 files changed, 1 insertion(+), 39 deletions(-)
delete mode 100644 meta-oe/recipes-kernel/minicoredumper/files/0001-minicoredumper_demo-Use-optnone-attribute-with-clang.patch
rename meta-oe/recipes-kernel/minicoredumper/{minicoredumper_2.0.2.bb => minicoredumper_2.0.3.bb} (93%)
diff --git a/meta-oe/recipes-kernel/minicoredumper/files/0001-minicoredumper_demo-Use-optnone-attribute-with-clang.patch b/meta-oe/recipes-kernel/minicoredumper/files/0001-minicoredumper_demo-Use-optnone-attribute-with-clang.patch
deleted file mode 100644
index 05371e5cd..000000000
--- a/meta-oe/recipes-kernel/minicoredumper/files/0001-minicoredumper_demo-Use-optnone-attribute-with-clang.patch
+++ /dev/null
@@ -1,37 +0,0 @@
-From abaac31d1cb4d0ba0e8e9ef7f344e62de3b150de Mon Sep 17 00:00:00 2001
-From: Khem Raj <raj.khem@...>
-Date: Sat, 4 Feb 2023 16:50:46 -0800
-Subject: [PATCH] minicoredumper_demo: Use 'optnone' attribute with clang
-
-clang does not support optimize("On") yet, therefore use optnone which
-should give intended results with clang compiler
-
-Upstream-Status: Submitted [https://github.com/diamon/minicoredumper/pull/7]
-Signed-off-by: Khem Raj <raj.khem@...>
----
- src/minicoredumper_demo/main.c | 9 +++++++--
- 1 file changed, 7 insertions(+), 2 deletions(-)
-
-diff --git a/src/minicoredumper_demo/main.c b/src/minicoredumper_demo/main.c
-index 65aac46..e60eb82 100644
---- a/src/minicoredumper_demo/main.c
-+++ b/src/minicoredumper_demo/main.c
-@@ -11,8 +11,13 @@
- #include <sys/types.h>
-
- #include "minicoredumper.h"
--
--int __attribute__((optimize("O0"))) main(int argc, char *argv[])
-+int
-+#ifdef __clang__
-+__attribute__((optnone))
-+#else
-+__attribute__((optimize("O0")))
-+#endif
-+main(int argc, char *argv[])
- {
- char *str1 = "This is string 1.";
- unsigned long val1 = 0x1abc123f;
---
-2.39.1
-
diff --git a/meta-oe/recipes-kernel/minicoredumper/minicoredumper_2.0.2.bb b/meta-oe/recipes-kernel/minicoredumper/minicoredumper_2.0.3.bb
similarity index 93%
rename from meta-oe/recipes-kernel/minicoredumper/minicoredumper_2.0.2.bb
rename to meta-oe/recipes-kernel/minicoredumper/minicoredumper_2.0.3.bb
index 5763f845a..2c4111bc3 100644
--- a/meta-oe/recipes-kernel/minicoredumper/minicoredumper_2.0.2.bb
+++ b/meta-oe/recipes-kernel/minicoredumper/minicoredumper_2.0.3.bb
@@ -9,10 +9,9 @@ DEPENDS = "elfutils dbus dbus-glib-native glib-2.0 dbus-glib util-linux json-c"
inherit autotools pkgconfig ptest systemd update-rc.d
-SRCREV = "0bed11b3d69877ce59b1a71359349af60f2009ff"
+SRCREV = "e4706bf28a0699094add5d77a4b97145c2292c47"
SRC_URI = "git://github.com/diamon/minicoredumper;protocol=https;branch=master \
- file://0001-minicoredumper_demo-Use-optnone-attribute-with-clang.patch \
file://minicoredumper.service \
file://minicoredumper.init \
file://run-ptest \
--
2.34.1
Changelog:
============
* Added support for source load balancing for Ethernet Bonds.
* Allow specifying vhost name (SNI) for a manually DNS-over-TLS server.
Only works with systemd-resolved plugin.
* Connections can now be activated on a loopback interface.
* Added support of IPv4 ECMP routes. The ECMP routes will get merged
automatically but the user need to configure them as single-hop routes
specifying a valid weight.
* Add new "reapply" dispatcher event.
* Added support of VTI and VTI6 ip-tunnels along with a new property,
"ip-tunnel.fwmark".
* VLAN can now support 802.1ad tagging instead of 802.1Q.
* Invocations of iptables now use "--wait 2" to handle races with concurrent
calls. This fixes misbehavior with IPv4 shared mode.
* The DHCP client-id and DHCPv6 DUID are now exposed along with the lease
information.
* Optionally suppress adding direct route to an external VPN gateway
with the new "ipv[46].auto-route-ext-gw" property.
* Open vSwitch support gained new properties: "ovs-dpdk.n-rxq-desc",
"ovs-dpdk.n-txq-desc", "ovs-interface.ofport-request" and
"ovs-port.trunks".
* Added support of "other_config" for OVS bridge, port or interface. This
property is not supported by nmcli.
* nmtui now supports editing Wi-Fi WPA-Enterprise, Ethernet with 802.1X
authentication and MACsec connection profiles.
* nmcli now allows changing "connection.uuid" and "connection.type"
properties in offline mode and setting the UUID when creating a
connection.
* nmcli now accepts abbreviations for the UUID with the connection selector
in `nmcli connection $operator uuid $uuid`.
* DHCPv6 leases are now declined when addresses fail DAD.
* Documentation improvements.
* Many internal improvements and bug fixes.
Signed-off-by: Wang Mingyu <wangmy@...>
---
.../{networkmanager_1.40.10.bb => networkmanager_1.42.0.bb} | 2 +-
1 file changed, 1 insertion(+), 1 deletion(-)
rename meta-networking/recipes-connectivity/networkmanager/{networkmanager_1.40.10.bb => networkmanager_1.42.0.bb} (99%)
diff --git a/meta-networking/recipes-connectivity/networkmanager/networkmanager_1.40.10.bb b/meta-networking/recipes-connectivity/networkmanager/networkmanager_1.42.0.bb
similarity index 99%
rename from meta-networking/recipes-connectivity/networkmanager/networkmanager_1.40.10.bb
rename to meta-networking/recipes-connectivity/networkmanager/networkmanager_1.42.0.bb
index 0463bd487..856afd7bc 100644
--- a/meta-networking/recipes-connectivity/networkmanager/networkmanager_1.40.10.bb
+++ b/meta-networking/recipes-connectivity/networkmanager/networkmanager_1.42.0.bb
@@ -30,7 +30,7 @@ SRC_URI = " \
file://enable-dhcpcd.conf \
file://enable-iwd.conf \
"
-SRC_URI[sha256sum] = "fa251455df3c38e2bf1e1ff806b4bc4346938dd135a3568bd250e92caa85eaf7"
+SRC_URI[sha256sum] = "2f6756d507bb6b46716594b67e6fe7491891e1b5b167bbafc5157dfa7753d5b4"
S = "${WORKDIR}/NetworkManager-${PV}"
--
2.34.1
0001-usb.h-Include-sys-types.h.patch
refreshed for new version
Signed-off-by: Wang Mingyu <wangmy@...>
---
.../0001-usb.h-Include-sys-types.h.patch | 14 ++++++++------
...busb-compat_0.1.7.bb => libusb-compat_0.1.8.bb} | 2 +-
2 files changed, 9 insertions(+), 7 deletions(-)
rename meta-oe/recipes-support/libusb/{libusb-compat_0.1.7.bb => libusb-compat_0.1.8.bb} (96%)
diff --git a/meta-oe/recipes-support/libusb/libusb-compat/0001-usb.h-Include-sys-types.h.patch b/meta-oe/recipes-support/libusb/libusb-compat/0001-usb.h-Include-sys-types.h.patch
index f4f759c85..7df44737a 100644
--- a/meta-oe/recipes-support/libusb/libusb-compat/0001-usb.h-Include-sys-types.h.patch
+++ b/meta-oe/recipes-support/libusb/libusb-compat/0001-usb.h-Include-sys-types.h.patch
@@ -8,21 +8,23 @@ We need the definitions for things like u_intX_t
Upstream-Status: Pending
Signed-off-by: Khem Raj <raj.khem@...>
-
---
libusb/usb.h | 2 ++
1 file changed, 2 insertions(+)
diff --git a/libusb/usb.h b/libusb/usb.h
-index fa0e6c6..4e88eb8 100644
+index ea62543..18b610a 100644
--- a/libusb/usb.h
+++ b/libusb/usb.h
-@@ -45,6 +45,8 @@ typedef unsigned __int32 uint32_t;
+@@ -46,6 +46,8 @@ typedef unsigned __int32 uint32_t;
#include <stdint.h>
#endif
+#include <sys/types.h>
+
- /*
- * USB spec information
- *
+ /* On linux PATH_MAX is defined in linux/limits.h. */
+ #if defined(__linux__)
+ #include <linux/limits.h>
+--
+2.34.1
+
diff --git a/meta-oe/recipes-support/libusb/libusb-compat_0.1.7.bb b/meta-oe/recipes-support/libusb/libusb-compat_0.1.8.bb
similarity index 96%
rename from meta-oe/recipes-support/libusb/libusb-compat_0.1.7.bb
rename to meta-oe/recipes-support/libusb/libusb-compat_0.1.8.bb
index 5ab08f6e5..869e98fe5 100644
--- a/meta-oe/recipes-support/libusb/libusb-compat_0.1.7.bb
+++ b/meta-oe/recipes-support/libusb/libusb-compat_0.1.8.bb
@@ -22,7 +22,7 @@ SRC_URI = " \
git://github.com/libusb/libusb-compat-0.1.git;protocol=https;branch=master \
file://0001-usb.h-Include-sys-types.h.patch \
"
-SRCREV = "4a27760ec5954ec8605e052a3207afbe0979eeef"
+SRCREV = "88740f0fe497b473c8ef40093ab7daeebfb40eb6"
S = "${WORKDIR}/git"
UPSTREAM_CHECK_URI = "https://github.com/libusb/libusb-compat-0.1/releases"
--
2.34.1
Changelog:
===========
- Support non-libc build for aarch64.
- Add io_uring_{enter,enter2,register,setup} syscall functions.
- Add sync cancel interface, io_uring_register_sync_cancel().
- Fix return value of io_uring_submit_and_wait_timeout() to match the
man page.
- Improvements to the regression tests
- Add support and test case for passthrough IO
- Add recv and recvmsg multishot helpers and support
- Add documentation and support for IORING_SETUP_DEFER_TASKRUN
- Fix potential missing kernel entry with IORING_SETUP_IOPOLL
- Add support and documentation for zero-copy network transmit
- Various optimizations
- Many cleanups
- Many man page additions and updates
Signed-off-by: Wang Mingyu <wangmy@...>
---
.../liburing/{liburing_2.2.bb => liburing_2.3.bb} | 2 +-
1 file changed, 1 insertion(+), 1 deletion(-)
rename meta-oe/recipes-support/liburing/{liburing_2.2.bb => liburing_2.3.bb} (96%)
diff --git a/meta-oe/recipes-support/liburing/liburing_2.2.bb b/meta-oe/recipes-support/liburing/liburing_2.3.bb
similarity index 96%
rename from meta-oe/recipes-support/liburing/liburing_2.2.bb
rename to meta-oe/recipes-support/liburing/liburing_2.3.bb
index 8cc7d74f9..b3da4d5e0 100644
--- a/meta-oe/recipes-support/liburing/liburing_2.2.bb
+++ b/meta-oe/recipes-support/liburing/liburing_2.3.bb
@@ -12,7 +12,7 @@ LIC_FILES_CHKSUM = "file://README;beginline=41;endline=44;md5=2b0e9926530c269f5a
SRC_URI = "git://github.com/axboe/liburing.git;branch=master;protocol=https"
SRC_URI:append:libc-musl:riscv64 = " file://0001-do-not-build-examples.patch "
SRC_URI:append:libc-musl:riscv32 = " file://0001-do-not-build-examples.patch "
-SRCREV = "dda4848a9911120a903bef6284fb88286f4464c9"
+SRCREV = "4915f2af869876d892a1f591ee2c21be21c6fc5c"
S = "${WORKDIR}/git"
--
2.34.1
0001-Fix-build-with-libmicrohttpd.patch
removed since it's included in 1.4.1
Changelog:
===========
- Fedora CI build by updating to Catch v2.13.7
- Typo in README (#313)
- Deprecation warnings for Jsoncpp (#312)
- Compatibility with newer libmicrohttpd versions (>= 0.9.71) (#298 #299)
- Typo in diagram (#293)
- File descriptor leaks in connectors
- Vendoring catch library instead of downloading from github
- Moved from travis-ci to circleci (#311)
- Use '.empty()' checks instead of '.size() == 0'
Signed-off-by: Wang Mingyu <wangmy@...>
---
.../0001-Fix-build-with-libmicrohttpd.patch | 52 -------------------
.../{jsonrpc_1.3.0.bb => jsonrpc_1.4.1.bb} | 6 +--
2 files changed, 2 insertions(+), 56 deletions(-)
delete mode 100644 meta-oe/recipes-devtools/jsonrpc/jsonrpc/0001-Fix-build-with-libmicrohttpd.patch
rename meta-oe/recipes-devtools/jsonrpc/{jsonrpc_1.3.0.bb => jsonrpc_1.4.1.bb} (87%)
diff --git a/meta-oe/recipes-devtools/jsonrpc/jsonrpc/0001-Fix-build-with-libmicrohttpd.patch b/meta-oe/recipes-devtools/jsonrpc/jsonrpc/0001-Fix-build-with-libmicrohttpd.patch
deleted file mode 100644
index a4cacb3fc..000000000
--- a/meta-oe/recipes-devtools/jsonrpc/jsonrpc/0001-Fix-build-with-libmicrohttpd.patch
+++ /dev/null
@@ -1,52 +0,0 @@
-From d983161415f5f5748fbdbaa5fbd168154ccf8867 Mon Sep 17 00:00:00 2001
-From: Zang Ruochen <zangrc.fnst@...>
-Date: Wed, 5 Aug 2020 12:31:24 +0900
-Subject: [PATCH] Fix build with libmicrohttpd 0.9.71
-
----
- src/jsonrpccpp/server/connectors/httpserver.cpp | 2 +-
- src/jsonrpccpp/server/connectors/httpserver.h | 8 +++++++-
- 2 files changed, 8 insertions(+), 2 deletions(-)
-
-diff --git a/src/jsonrpccpp/server/connectors/httpserver.cpp b/src/jsonrpccpp/server/connectors/httpserver.cpp
-index a849615..dd3b841 100644
---- a/src/jsonrpccpp/server/connectors/httpserver.cpp
-+++ b/src/jsonrpccpp/server/connectors/httpserver.cpp
-@@ -151,7 +151,7 @@ void HttpServer::SetUrlHandler(const string &url,
- this->SetHandler(NULL);
- }
-
--int HttpServer::callback(void *cls, MHD_Connection *connection, const char *url,
-+mhd_result HttpServer::callback(void *cls, MHD_Connection *connection, const char *url,
- const char *method, const char *version,
- const char *upload_data, size_t *upload_data_size,
- void **con_cls) {
-diff --git a/src/jsonrpccpp/server/connectors/httpserver.h b/src/jsonrpccpp/server/connectors/httpserver.h
-index 7785edb..0dcf032 100644
---- a/src/jsonrpccpp/server/connectors/httpserver.h
-+++ b/src/jsonrpccpp/server/connectors/httpserver.h
-@@ -32,6 +32,12 @@ typedef intptr_t ssize_t;
- #include <map>
- #include <microhttpd.h>
-
-+#if MHD_VERSION >= 0x00097002
-+# define mhd_result enum MHD_Result
-+#else
-+# define mhd_result int
-+#endif
-+
- namespace jsonrpc {
- /**
- * This class provides an embedded HTTP Server, based on libmicrohttpd, to
-@@ -79,7 +85,7 @@ private:
- std::map<std::string, IClientConnectionHandler *> urlhandler;
- struct sockaddr_in loopback_addr;
-
-- static int callback(void *cls, struct MHD_Connection *connection,
-+ static mhd_result callback(void *cls, struct MHD_Connection *connection,
- const char *url, const char *method, const char *version,
- const char *upload_data, size_t *upload_data_size,
- void **con_cls);
---
-2.25.1
-
diff --git a/meta-oe/recipes-devtools/jsonrpc/jsonrpc_1.3.0.bb b/meta-oe/recipes-devtools/jsonrpc/jsonrpc_1.4.1.bb
similarity index 87%
rename from meta-oe/recipes-devtools/jsonrpc/jsonrpc_1.3.0.bb
rename to meta-oe/recipes-devtools/jsonrpc/jsonrpc_1.4.1.bb
index 43dc2e36a..544922f05 100644
--- a/meta-oe/recipes-devtools/jsonrpc/jsonrpc_1.3.0.bb
+++ b/meta-oe/recipes-devtools/jsonrpc/jsonrpc_1.4.1.bb
@@ -9,11 +9,9 @@ SECTION = "libs"
DEPENDS = "curl jsoncpp libmicrohttpd hiredis"
-SRC_URI = "git://github.com/cinemast/libjson-rpc-cpp;branch=master;protocol=https \
- file://0001-Fix-build-with-libmicrohttpd.patch \
-"
+SRC_URI = "git://github.com/cinemast/libjson-rpc-cpp;branch=master;protocol=https"
-SRCREV = "c696f6932113b81cd20cd4a34fdb1808e773f23e"
+SRCREV = "ec5ce12fc9c0299e1454cc002c70218b5a6f005b"
S = "${WORKDIR}/git"
--
2.34.1
0001-Remove-usage-of-U-mode-bit-for-opening-files-in-pyth.patch
removed since it's included in 1.19.22.
Changelog:
==========
The waf autooption --example-tools has been removed.
The example clients and tools are no longer part of the jack2 project.
Drop dependencies that were only used for example clients and tools (readline, sndfile and zita libs)
Fix build with python3.11+
Fix compatibility with macOS 12+
Fix ringbuffer thread safety on ARM
Signed-off-by: Wang Mingyu <wangmy@...>
---
...U-mode-bit-for-opening-files-in-pyth.patch | 52 -------------------
.../jack/{jack_1.19.21.bb => jack_1.19.22.bb} | 6 +--
2 files changed, 2 insertions(+), 56 deletions(-)
delete mode 100644 meta-oe/recipes-multimedia/jack/jack/0001-Remove-usage-of-U-mode-bit-for-opening-files-in-pyth.patch
rename meta-oe/recipes-multimedia/jack/{jack_1.19.21.bb => jack_1.19.22.bb} (92%)
diff --git a/meta-oe/recipes-multimedia/jack/jack/0001-Remove-usage-of-U-mode-bit-for-opening-files-in-pyth.patch b/meta-oe/recipes-multimedia/jack/jack/0001-Remove-usage-of-U-mode-bit-for-opening-files-in-pyth.patch
deleted file mode 100644
index d3b203111..000000000
--- a/meta-oe/recipes-multimedia/jack/jack/0001-Remove-usage-of-U-mode-bit-for-opening-files-in-pyth.patch
+++ /dev/null
@@ -1,52 +0,0 @@
-From 415d50fc56b82963e5570c7738c61b22f4a83748 Mon Sep 17 00:00:00 2001
-From: Daan De Meyer <daan.j.demeyer@...>
-Date: Mon, 11 Jul 2022 00:56:28 +0200
-Subject: [PATCH] Remove usage of 'U' mode bit for opening files in python
-
-The 'U' mode bit is removed in python 3.11. It has been
-deprecated for a long time. The 'U' mode bit has no effect
-so this change doesn't change any behavior.
-
-See https://docs.python.org/3.11/whatsnew/3.11.html#changes-in-the-python-api
-
-Upstream-Status: Submitted [https://github.com/jackaudio/jack2/pull/884]
----
- waflib/ConfigSet.py | 2 +-
- waflib/Context.py | 4 ++--
- 2 files changed, 3 insertions(+), 3 deletions(-)
-
-diff --git a/waflib/ConfigSet.py b/waflib/ConfigSet.py
-index b300bb56..84736c9c 100644
---- a/waflib/ConfigSet.py
-+++ b/waflib/ConfigSet.py
-@@ -312,7 +312,7 @@ class ConfigSet(object):
- :type filename: string
- """
- tbl = self.table
-- code = Utils.readf(filename, m='rU')
-+ code = Utils.readf(filename, m='r')
- for m in re_imp.finditer(code):
- g = m.group
- tbl[g(2)] = eval(g(3))
-diff --git a/waflib/Context.py b/waflib/Context.py
-index 9fee3fa1..761b521f 100644
---- a/waflib/Context.py
-+++ b/waflib/Context.py
-@@ -266,7 +266,7 @@ class Context(ctx):
- cache[node] = True
- self.pre_recurse(node)
- try:
-- function_code = node.read('rU', encoding)
-+ function_code = node.read('r', encoding)
- exec(compile(function_code, node.abspath(), 'exec'), self.exec_dict)
- finally:
- self.post_recurse(node)
-@@ -662,7 +662,7 @@ def load_module(path, encoding=None):
-
- module = imp.new_module(WSCRIPT_FILE)
- try:
-- code = Utils.readf(path, m='rU', encoding=encoding)
-+ code = Utils.readf(path, m='r', encoding=encoding)
- except EnvironmentError:
- raise Errors.WafError('Could not read the file %r' % path)
-
diff --git a/meta-oe/recipes-multimedia/jack/jack_1.19.21.bb b/meta-oe/recipes-multimedia/jack/jack_1.19.22.bb
similarity index 92%
rename from meta-oe/recipes-multimedia/jack/jack_1.19.21.bb
rename to meta-oe/recipes-multimedia/jack/jack_1.19.22.bb
index 808b8259f..b85b7993d 100644
--- a/meta-oe/recipes-multimedia/jack/jack_1.19.21.bb
+++ b/meta-oe/recipes-multimedia/jack/jack_1.19.22.bb
@@ -14,10 +14,8 @@ LIC_FILES_CHKSUM = " \
DEPENDS = "libsamplerate0 libsndfile1 readline"
-SRC_URI = "git://github.com/jackaudio/jack2.git;branch=master;protocol=https \
- file://0001-Remove-usage-of-U-mode-bit-for-opening-files-in-pyth.patch \
-"
-SRCREV = "6b3c96d8aeef8aeb4b20f3aa647e6d01b4000ff8"
+SRC_URI = "git://github.com/jackaudio/jack2.git;branch=master;protocol=https"
+SRCREV = "4f58969432339a250ce87fe855fb962c67d00ddb"
S = "${WORKDIR}/git"
--
2.34.1
0001-Add-configure-options-for-packages.patch
refreshed for new version.
Signed-off-by: Wang Mingyu <wangmy@...>
---
...1-Add-configure-options-for-packages.patch | 25 +++++++++++--------
...ibtevent_0.13.0.bb => libtevent_0.14.1.bb} | 3 +--
2 files changed, 15 insertions(+), 13 deletions(-)
rename meta-networking/recipes-support/libtevent/{libtevent_0.13.0.bb => libtevent_0.14.1.bb} (94%)
diff --git a/meta-networking/recipes-support/libtevent/libtevent/0001-Add-configure-options-for-packages.patch b/meta-networking/recipes-support/libtevent/libtevent/0001-Add-configure-options-for-packages.patch
index d98559b4e..cb66adba9 100644
--- a/meta-networking/recipes-support/libtevent/libtevent/0001-Add-configure-options-for-packages.patch
+++ b/meta-networking/recipes-support/libtevent/libtevent/0001-Add-configure-options-for-packages.patch
@@ -21,13 +21,16 @@ Signed-off-by: Joe Slater <joe.slater@...>
Update patch to version 0.10.0
Signed-off-by: Changqing Li <changqing.li@...>
+
+Update patch to version 0.14.1
+Signed-off-by: Wang Mingyu <wangmy@...>
---
- lib/replace/wscript | 87 ++++++++++++++++++++++++++++++++++-----------
+ lib/replace/wscript | 85 +++++++++++++++++++++++++++++++++++----------
wscript | 6 ++++
- 2 files changed, 73 insertions(+), 20 deletions(-)
+ 2 files changed, 73 insertions(+), 18 deletions(-)
diff --git a/lib/replace/wscript b/lib/replace/wscript
-index 4c774d9..21a746a 100644
+index 5c2b750..28835ac 100644
--- a/lib/replace/wscript
+++ b/lib/replace/wscript
@@ -25,6 +25,41 @@ def options(opt):
@@ -72,7 +75,7 @@ index 4c774d9..21a746a 100644
@Utils.run_once
def configure(conf):
conf.RECURSE('buildtools/wafsamba')
-@@ -35,12 +70,25 @@ def configure(conf):
+@@ -38,12 +73,27 @@ def configure(conf):
conf.DEFINE('HAVE_LIBREPLACE', 1)
conf.DEFINE('LIBREPLACE_NETWORK_CHECKS', 1)
@@ -82,8 +85,8 @@ index 4c774d9..21a746a 100644
+ conf.CHECK_HEADERS('compat.h ctype.h dustat.h')
conf.CHECK_HEADERS('fcntl.h fnmatch.h glob.h history.h krb5.h langinfo.h')
conf.CHECK_HEADERS('locale.h ndir.h pwd.h')
-- conf.CHECK_HEADERS('shadow.h sys/acl.h')
-- conf.CHECK_HEADERS('sys/attributes.h attr/attributes.h sys/capability.h sys/dir.h sys/epoll.h')
+ conf.CHECK_HEADERS('shadow.h sys/acl.h')
+ conf.CHECK_HEADERS('sys/attributes.h attr/attributes.h sys/capability.h sys/dir.h sys/epoll.h')
+ conf.CHECK_HEADERS('shadow.h')
+ conf.CHECK_HEADERS('sys/attributes.h sys/dir.h sys/epoll.h')
+
@@ -99,10 +102,10 @@ index 4c774d9..21a746a 100644
+ if Options.options.enable_libcap:
+ conf.CHECK_HEADERS('sys/capability.h')
+
- conf.CHECK_HEADERS('port.h')
conf.CHECK_HEADERS('sys/fcntl.h sys/filio.h sys/filsys.h sys/fs/s5param.h')
conf.CHECK_HEADERS('sys/id.h sys/ioctl.h sys/ipc.h sys/mman.h sys/mode.h sys/ndir.h sys/priv.h')
-@@ -110,8 +158,9 @@ def configure(conf):
+ conf.CHECK_HEADERS('sys/resource.h sys/security.h sys/shm.h sys/statfs.h sys/statvfs.h sys/termio.h')
+@@ -113,8 +163,9 @@ def configure(conf):
conf.CHECK_HEADERS('sys/fileio.h sys/filesys.h sys/dustat.h sys/sysmacros.h')
conf.CHECK_HEADERS('xfs/libxfs.h netgroup.h')
@@ -114,7 +117,7 @@ index 4c774d9..21a746a 100644
conf.CHECK_HEADERS('nss_common.h nsswitch.h ns_api.h')
conf.CHECK_HEADERS('sys/extattr.h sys/ea.h sys/proplist.h sys/cdefs.h')
conf.CHECK_HEADERS('utmp.h utmpx.h lastlog.h')
-@@ -434,20 +483,18 @@ def configure(conf):
+@@ -436,20 +487,18 @@ def configure(conf):
strlcpy_in_bsd = False
@@ -148,7 +151,7 @@ index 4c774d9..21a746a 100644
conf.CHECK_CODE('''
struct ucred cred;
diff --git a/wscript b/wscript
-index 5c6f02c..75eecd4 100644
+index 0f6e92f..5a54f3a 100644
--- a/wscript
+++ b/wscript
@@ -28,6 +28,12 @@ def options(opt):
@@ -165,5 +168,5 @@ index 5c6f02c..75eecd4 100644
def configure(conf):
conf.RECURSE('lib/replace')
--
-2.25.1
+2.34.1
diff --git a/meta-networking/recipes-support/libtevent/libtevent_0.13.0.bb b/meta-networking/recipes-support/libtevent/libtevent_0.14.1.bb
similarity index 94%
rename from meta-networking/recipes-support/libtevent/libtevent_0.13.0.bb
rename to meta-networking/recipes-support/libtevent/libtevent_0.14.1.bb
index 0d898be82..b34c186ca 100644
--- a/meta-networking/recipes-support/libtevent/libtevent_0.13.0.bb
+++ b/meta-networking/recipes-support/libtevent/libtevent_0.14.1.bb
@@ -17,8 +17,7 @@ SRC_URI:append:libc-musl = " file://cmocka-fix-musl-libc-conflicting-types-error
LIC_FILES_CHKSUM = "file://tevent.h;endline=26;md5=47386b7c539bf2706b7ce52dc9341681"
-SRC_URI[md5sum] = "9f413f3184f79a4deecd9444242a5dca"
-SRC_URI[sha256sum] = "b9437a917fa55344361beb64ec9e0042e99cae8879882a62dd38f6abe2371d0c"
+SRC_URI[sha256sum] = "ef85fcaa80ffd2351036ba4b347630fef2a1ac3da964a7f1820466bad03cd00d"
inherit pkgconfig ptest waf-samba
--
2.34.1
Signed-off-by: Wang Mingyu <wangmy@...>
---
.../libtdb/{libtdb_1.4.7.bb => libtdb_1.4.8.bb} | 3 +--
1 file changed, 1 insertion(+), 2 deletions(-)
rename meta-networking/recipes-support/libtdb/{libtdb_1.4.7.bb => libtdb_1.4.8.bb} (92%)
diff --git a/meta-networking/recipes-support/libtdb/libtdb_1.4.7.bb b/meta-networking/recipes-support/libtdb/libtdb_1.4.8.bb
similarity index 92%
rename from meta-networking/recipes-support/libtdb/libtdb_1.4.7.bb
rename to meta-networking/recipes-support/libtdb/libtdb_1.4.8.bb
index d4c4f1c37..5dc87bd91 100644
--- a/meta-networking/recipes-support/libtdb/libtdb_1.4.7.bb
+++ b/meta-networking/recipes-support/libtdb/libtdb_1.4.8.bb
@@ -13,8 +13,7 @@ SRC_URI = "https://samba.org/ftp/tdb/tdb-${PV}.tar.gz \
file://0002-Fix-pyext_PATTERN-for-cross-compilation.patch \
"
-SRC_URI[md5sum] = "bc27d5b20c7f013305c40b3bced43b3a"
-SRC_URI[sha256sum] = "a4fb168def533f31ff2c07f7d9844bb3131e6799f094ebe77d0380adc987c20e"
+SRC_URI[sha256sum] = "8434c9c857d13ce3fa8466f75601f25c3693676b36919f159e0ad6121baf5ce8"
PACKAGECONFIG ??= "\
${@bb.utils.filter('DISTRO_FEATURES', 'acl', d)} \
--
2.34.1
Signed-off-by: Wang Mingyu <wangmy@...>
---
.../libtalloc/{libtalloc_2.3.4.bb => libtalloc_2.4.0.bb} | 2 +-
1 file changed, 1 insertion(+), 1 deletion(-)
rename meta-networking/recipes-support/libtalloc/{libtalloc_2.3.4.bb => libtalloc_2.4.0.bb} (96%)
diff --git a/meta-networking/recipes-support/libtalloc/libtalloc_2.3.4.bb b/meta-networking/recipes-support/libtalloc/libtalloc_2.4.0.bb
similarity index 96%
rename from meta-networking/recipes-support/libtalloc/libtalloc_2.3.4.bb
rename to meta-networking/recipes-support/libtalloc/libtalloc_2.4.0.bb
index 1c5922205..f8fef9f82 100644
--- a/meta-networking/recipes-support/libtalloc/libtalloc_2.3.4.bb
+++ b/meta-networking/recipes-support/libtalloc/libtalloc_2.4.0.bb
@@ -12,7 +12,7 @@ SRC_URI = "https://www.samba.org/ftp/talloc/talloc-${PV}.tar.gz \
file://0001-talloc-Add-configure-options-for-packages.patch \
file://0002-Fix-pyext_PATTERN-for-cross-compilation.patch \
"
-SRC_URI[sha256sum] = "179f9ebe265e67e4ab2c26cad2b7de4b6a77c6c212f966903382869f06be6505"
+SRC_URI[sha256sum] = "6df36862c42466ef88f360444513870ef46934f9016c84383cc4008a7d0c46ba"
inherit waf-samba
--
2.34.1
0002-ldb-Add-configure-options-for-packages.patch
refreshed for new version.
Signed-off-by: Wang Mingyu <wangmy@...>
---
...b-Add-configure-options-for-packages.patch | 26 ++++++++++---------
.../{libldb_2.6.1.bb => libldb_2.7.1.bb} | 3 +--
2 files changed, 15 insertions(+), 14 deletions(-)
rename meta-networking/recipes-support/libldb/{libldb_2.6.1.bb => libldb_2.7.1.bb} (95%)
diff --git a/meta-networking/recipes-support/libldb/libldb/0002-ldb-Add-configure-options-for-packages.patch b/meta-networking/recipes-support/libldb/libldb/0002-ldb-Add-configure-options-for-packages.patch
index 988931c49..7a30bbedf 100644
--- a/meta-networking/recipes-support/libldb/libldb/0002-ldb-Add-configure-options-for-packages.patch
+++ b/meta-networking/recipes-support/libldb/libldb/0002-ldb-Add-configure-options-for-packages.patch
@@ -20,13 +20,16 @@ Signed-off-by: Changqing Li <changqing.li@...>
Rebase to 2.3.0
Signed-off-by: Yi Zhao <yi.zhao@...>
+
+upgrade to 2.7.1
+Signed-off-by: Wang Mingyu <wangmy@...>
---
lib/replace/wscript | 90 +++++++++++++++++++++++++++++++++++----------
- wscript | 8 ++++
- 2 files changed, 78 insertions(+), 20 deletions(-)
+ wscript | 7 ++++
+ 2 files changed, 77 insertions(+), 20 deletions(-)
diff --git a/lib/replace/wscript b/lib/replace/wscript
-index 4c774d9..63c9967 100644
+index 5c2b750..f86f863 100644
--- a/lib/replace/wscript
+++ b/lib/replace/wscript
@@ -25,6 +25,41 @@ def options(opt):
@@ -71,7 +74,7 @@ index 4c774d9..63c9967 100644
@Utils.run_once
def configure(conf):
conf.RECURSE('buildtools/wafsamba')
-@@ -35,12 +70,25 @@ def configure(conf):
+@@ -38,12 +73,25 @@ def configure(conf):
conf.DEFINE('HAVE_LIBREPLACE', 1)
conf.DEFINE('LIBREPLACE_NETWORK_CHECKS', 1)
@@ -98,10 +101,10 @@ index 4c774d9..63c9967 100644
+ if Options.options.enable_libcap:
+ conf.CHECK_HEADERS('sys/capability.h')
+
- conf.CHECK_HEADERS('port.h')
conf.CHECK_HEADERS('sys/fcntl.h sys/filio.h sys/filsys.h sys/fs/s5param.h')
conf.CHECK_HEADERS('sys/id.h sys/ioctl.h sys/ipc.h sys/mman.h sys/mode.h sys/ndir.h sys/priv.h')
-@@ -110,8 +158,9 @@ def configure(conf):
+ conf.CHECK_HEADERS('sys/resource.h sys/security.h sys/shm.h sys/statfs.h sys/statvfs.h sys/termio.h')
+@@ -113,8 +161,9 @@ def configure(conf):
conf.CHECK_HEADERS('sys/fileio.h sys/filesys.h sys/dustat.h sys/sysmacros.h')
conf.CHECK_HEADERS('xfs/libxfs.h netgroup.h')
@@ -113,7 +116,7 @@ index 4c774d9..63c9967 100644
conf.CHECK_HEADERS('nss_common.h nsswitch.h ns_api.h')
conf.CHECK_HEADERS('sys/extattr.h sys/ea.h sys/proplist.h sys/cdefs.h')
conf.CHECK_HEADERS('utmp.h utmpx.h lastlog.h')
-@@ -434,20 +483,21 @@ def configure(conf):
+@@ -436,20 +485,21 @@ def configure(conf):
strlcpy_in_bsd = False
@@ -131,7 +134,7 @@ index 4c774d9..63c9967 100644
-
- if not conf.CHECK_FUNCS('closefrom'):
- conf.CHECK_FUNCS_IN('closefrom', 'bsd', headers='bsd/unistd.h')
-+ if Options.options.enable_libbsd:
++ if Options.options.enable_libbsd:
+ # libbsd on some platforms provides strlcpy and strlcat
+ if not conf.CHECK_FUNCS('strlcpy strlcat'):
+ if conf.CHECK_FUNCS_IN('strlcpy strlcat', 'bsd', headers='bsd/string.h',
@@ -150,10 +153,10 @@ index 4c774d9..63c9967 100644
conf.CHECK_CODE('''
struct ucred cred;
diff --git a/wscript b/wscript
-index 60bb7cf..7f14847 100644
+index 03076e6..ad40ac9 100644
--- a/wscript
+++ b/wscript
-@@ -40,6 +40,14 @@ def options(opt):
+@@ -40,6 +40,13 @@ def options(opt):
help='disable new LMDB backend for LDB',
action='store_true', dest='without_ldb_lmdb', default=False)
@@ -163,11 +166,10 @@ index 60bb7cf..7f14847 100644
+ opt.add_option('--without-valgrind',
+ help=("disable use of valgrind"),
+ action="store_false", dest='enable_valgrind', default=False)
-+
+
def configure(conf):
conf.RECURSE('lib/tdb')
--
-2.25.1
+2.34.1
diff --git a/meta-networking/recipes-support/libldb/libldb_2.6.1.bb b/meta-networking/recipes-support/libldb/libldb_2.7.1.bb
similarity index 95%
rename from meta-networking/recipes-support/libldb/libldb_2.6.1.bb
rename to meta-networking/recipes-support/libldb/libldb_2.7.1.bb
index 7c7701acc..473774b14 100644
--- a/meta-networking/recipes-support/libldb/libldb_2.6.1.bb
+++ b/meta-networking/recipes-support/libldb/libldb_2.7.1.bb
@@ -35,8 +35,7 @@ LIC_FILES_CHKSUM = "file://pyldb.h;endline=24;md5=dfbd238cecad76957f7f860fbe9ada
file://man/ldb.3.xml;beginline=261;endline=262;md5=137f9fd61040c1505d1aa1019663fd08 \
file://tools/ldbdump.c;endline=19;md5=a7d4fc5d1f75676b49df491575a86a42"
-SRC_URI[md5sum] = "3a5f54f511fb237b83e1f34e2c7e25cd"
-SRC_URI[sha256sum] = "467403f77df86782c3965bb175440baa2ed751a9feb9560194bd8c06bf1736c9"
+SRC_URI[sha256sum] = "c4632c9a7f81f8a45ed46fc14d18eb507edf4e79f6e88d16977478ef95ed5b7f"
inherit pkgconfig waf-samba
--
2.34.1
we might need same for armv5 and ppc32 too.
Signed-off-by: Khem Raj <raj.khem@...>
---
meta-oe/recipes-support/glog/glog_0.6.0.bb | 5 ++++-
1 file changed, 4 insertions(+), 1 deletion(-)
diff --git a/meta-oe/recipes-support/glog/glog_0.6.0.bb b/meta-oe/recipes-support/glog/glog_0.6.0.bb
index 18291600c5..067e914aa2 100644
--- a/meta-oe/recipes-support/glog/glog_0.6.0.bb
+++ b/meta-oe/recipes-support/glog/glog_0.6.0.bb
@@ -17,15 +17,18 @@ S = "${WORKDIR}/git"
inherit cmake
-PACKAGECONFIG ?= "shared unwind"
+PACKAGECONFIG ?= "shared unwind 64bit-atomics"
PACKAGECONFIG:remove:riscv64 = "unwind"
PACKAGECONFIG:remove:riscv32 = "unwind"
+PACKAGECONFIG:remove:mipsarch = "64bit-atomics"
+
PACKAGECONFIG:append:libc-musl:riscv64 = " execinfo"
PACKAGECONFIG:append:libc-musl:riscv32 = " execinfo"
PACKAGECONFIG[unwind] = "-DWITH_UNWIND=ON,-DWITH_UNWIND=OFF,libunwind,libunwind"
PACKAGECONFIG[execinfo] = ",,libexecinfo"
PACKAGECONFIG[shared] = "-DBUILD_SHARED_LIBS=ON,-DBUILD_SHARED_LIBS=OFF,,"
+PACKAGECONFIG[64bit-atomics] = ",-DCMAKE_CXX_STANDARD_LIBRARIES='-latomic',,"
do_configure:append() {
# remove WORKDIR info to improve reproducibility
--
2.39.2
To be able to cherry-pick the final patch. Comparing the patches won’t tell you much – they are totally different.
Joe
Sent: Friday, February 17, 2023 2:37 PM
To: Slater, Joseph <joe.slater@...>
Cc: openembedded-devel@...; MacLeod, Randy <Randy.MacLeod@...>; Quesada, Rodolfo <Rodolfo.Quesada@...>
Subject: Re: [oe] [oe-core][PATCH 1/2] Revert "tar: Fix CVE-2022-48303"
Why did you send it as revert and re-apply instead of just updating the .patch file? It would be much easier to review and to see what really changed.
On Fri, Feb 17, 2023 at 11:31 PM Joe Slater <joe.slater@...> wrote:
This reverts commit 4573a584397f197fbc9170abec3c590ea36667f7.
A fix is available from gnu.
Signed-off-by: Joe Slater <joe.slater@...>
---
.../tar/files/CVE-2022-48303.patch | 36 -------------------
meta/recipes-extended/tar/tar_1.34.bb | 4 +--
2 files changed, 1 insertion(+), 39 deletions(-)
delete mode 100644 meta/recipes-extended/tar/files/CVE-2022-48303.patch
diff --git a/meta/recipes-extended/tar/files/CVE-2022-48303.patch b/meta/recipes-extended/tar/files/CVE-2022-48303.patch
deleted file mode 100644
index a8e9f4ac7d..0000000000
--- a/meta/recipes-extended/tar/files/CVE-2022-48303.patch
+++ /dev/null
@@ -1,36 +0,0 @@
-From 1d530107a24d71e798727d7f0afa0833473d1074 Mon Sep 17 00:00:00 2001
-From: =?UTF-8?q?Matej=20Mu=C5=BEila?= <mmuzila@...>
-Date: Wed, 11 Jan 2023 08:55:58 +0100
-Subject: [PATCH] Fix savannah bug #62387
-
-* src/list.c (from_header): Check for the end of field after leading byte
- (0x80 or 0xff) of base-256 encoded header value
-
-Upstream-Status: Backport
-[https://savannah.gnu.org/patch/download.php?file_id=54212]
-CVE: CVE-2022-48303
-Signed-off-by: Chee Yang Lee <chee.yang.lee@...>
----
- src/list.c | 6 ++++++
- 1 file changed, 6 insertions(+)
-
-diff --git a/src/list.c b/src/list.c
-index 9fafc425..bf41b581 100644
---- a/src/list.c
-+++ b/src/list.c
-@@ -895,6 +895,12 @@ from_header (char const *where0, size_t digs, char const *type,
- << (CHAR_BIT * sizeof (uintmax_t)
- - LG_256 - (LG_256 - 2)));
- value = (*where++ & ((1 << (LG_256 - 2)) - 1)) - signbit;
-+ if (where == lim)
-+ {
-+ if (type && !silent)
-+ ERROR ((0, 0, _("Archive base-256 value is invalid")));
-+ return -1;
-+ }
- for (;;)
- {
- value = (value << LG_256) + (unsigned char) *where++;
---
-2.38.1
-
diff --git a/meta/recipes-extended/tar/tar_1.34.bb b/meta/recipes-extended/tar/tar_1.34.bb
index 22c04ba70a..7307cd57a2 100644
--- a/meta/recipes-extended/tar/tar_1.34.bb
+++ b/meta/recipes-extended/tar/tar_1.34.bb
@@ -6,9 +6,7 @@ SECTION = "base"
LICENSE = "GPL-3.0-only"
LIC_FILES_CHKSUM = "file://COPYING;md5=d32239bcb673463ab874e80d47fae504"
-SRC_URI = "${GNU_MIRROR}/tar/tar-${PV}.tar.bz2 \
- file://CVE-2022-48303.patch \
- "
+SRC_URI = "${GNU_MIRROR}/tar/tar-${PV}.tar.bz2"
SRC_URI[sha256sum] = "b44cc67f8a1f6b0250b7c860e952b37e8ed932a90bd9b1862a511079255646ff"
--
2.25.1
Why did you send it as revert and re-apply instead of just updating the .patch file? It would be much easier to review and to see what really changed.
meta-openembedded $ git config sendemail.to
openembedded-devel@...
On Fri, Feb 17, 2023 at 11:31 PM Joe Slater <joe.slater@...> wrote:This reverts commit 4573a584397f197fbc9170abec3c590ea36667f7.
A fix is available from gnu.
Signed-off-by: Joe Slater <joe.slater@...>
---
.../tar/files/CVE-2022-48303.patch | 36 -------------------
meta/recipes-extended/tar/tar_1.34.bb | 4 +--
2 files changed, 1 insertion(+), 39 deletions(-)
delete mode 100644 meta/recipes-extended/tar/files/CVE-2022-48303.patch
diff --git a/meta/recipes-extended/tar/files/CVE-2022-48303.patch b/meta/recipes-extended/tar/files/CVE-2022-48303.patch
deleted file mode 100644
index a8e9f4ac7d..0000000000
--- a/meta/recipes-extended/tar/files/CVE-2022-48303.patch
+++ /dev/null
@@ -1,36 +0,0 @@
-From 1d530107a24d71e798727d7f0afa0833473d1074 Mon Sep 17 00:00:00 2001
-From: =?UTF-8?q?Matej=20Mu=C5=BEila?= <mmuzila@...>
-Date: Wed, 11 Jan 2023 08:55:58 +0100
-Subject: [PATCH] Fix savannah bug #62387
-
-* src/list.c (from_header): Check for the end of field after leading byte
- (0x80 or 0xff) of base-256 encoded header value
-
-Upstream-Status: Backport
-[https://savannah.gnu.org/patch/download.php?file_id=54212]
-CVE: CVE-2022-48303
-Signed-off-by: Chee Yang Lee <chee.yang.lee@...>
----
- src/list.c | 6 ++++++
- 1 file changed, 6 insertions(+)
-
-diff --git a/src/list.c b/src/list.c
-index 9fafc425..bf41b581 100644
---- a/src/list.c
-+++ b/src/list.c
-@@ -895,6 +895,12 @@ from_header (char const *where0, size_t digs, char const *type,
- << (CHAR_BIT * sizeof (uintmax_t)
- - LG_256 - (LG_256 - 2)));
- value = (*where++ & ((1 << (LG_256 - 2)) - 1)) - signbit;
-+ if (where == lim)
-+ {
-+ if (type && !silent)
-+ ERROR ((0, 0, _("Archive base-256 value is invalid")));
-+ return -1;
-+ }
- for (;;)
- {
- value = (value << LG_256) + (unsigned char) *where++;
---
-2.38.1
-
diff --git a/meta/recipes-extended/tar/tar_1.34.bb b/meta/recipes-extended/tar/tar_1.34.bb
index 22c04ba70a..7307cd57a2 100644
--- a/meta/recipes-extended/tar/tar_1.34.bb
+++ b/meta/recipes-extended/tar/tar_1.34.bb
@@ -6,9 +6,7 @@ SECTION = "base"
LICENSE = "GPL-3.0-only"
LIC_FILES_CHKSUM = "file://COPYING;md5=d32239bcb673463ab874e80d47fae504"
-SRC_URI = "${GNU_MIRROR}/tar/tar-${PV}.tar.bz2 \
- file://CVE-2022-48303.patch \
- "
+SRC_URI = "${GNU_MIRROR}/tar/tar-${PV}.tar.bz2"
SRC_URI[sha256sum] = "b44cc67f8a1f6b0250b7c860e952b37e8ed932a90bd9b1862a511079255646ff"
--
2.25.1
This reverts commit 4573a584397f197fbc9170abec3c590ea36667f7.
A fix is available from gnu.
Signed-off-by: Joe Slater <joe.slater@...>
---
.../tar/files/CVE-2022-48303.patch | 36 -------------------
meta/recipes-extended/tar/tar_1.34.bb | 4 +--
2 files changed, 1 insertion(+), 39 deletions(-)
delete mode 100644 meta/recipes-extended/tar/files/CVE-2022-48303.patch
diff --git a/meta/recipes-extended/tar/files/CVE-2022-48303.patch b/meta/recipes-extended/tar/files/CVE-2022-48303.patch
deleted file mode 100644
index a8e9f4ac7d..0000000000
--- a/meta/recipes-extended/tar/files/CVE-2022-48303.patch
+++ /dev/null
@@ -1,36 +0,0 @@
-From 1d530107a24d71e798727d7f0afa0833473d1074 Mon Sep 17 00:00:00 2001
-From: =?UTF-8?q?Matej=20Mu=C5=BEila?= <mmuzila@...>
-Date: Wed, 11 Jan 2023 08:55:58 +0100
-Subject: [PATCH] Fix savannah bug #62387
-
-* src/list.c (from_header): Check for the end of field after leading byte
- (0x80 or 0xff) of base-256 encoded header value
-
-Upstream-Status: Backport
-[https://savannah.gnu.org/patch/download.php?file_id=54212]
-CVE: CVE-2022-48303
-Signed-off-by: Chee Yang Lee <chee.yang.lee@...>
----
- src/list.c | 6 ++++++
- 1 file changed, 6 insertions(+)
-
-diff --git a/src/list.c b/src/list.c
-index 9fafc425..bf41b581 100644
---- a/src/list.c
-+++ b/src/list.c
-@@ -895,6 +895,12 @@ from_header (char const *where0, size_t digs, char const *type,
- << (CHAR_BIT * sizeof (uintmax_t)
- - LG_256 - (LG_256 - 2)));
- value = (*where++ & ((1 << (LG_256 - 2)) - 1)) - signbit;
-+ if (where == lim)
-+ {
-+ if (type && !silent)
-+ ERROR ((0, 0, _("Archive base-256 value is invalid")));
-+ return -1;
-+ }
- for (;;)
- {
- value = (value << LG_256) + (unsigned char) *where++;
---
-2.38.1
-
diff --git a/meta/recipes-extended/tar/tar_1.34.bb b/meta/recipes-extended/tar/tar_1.34.bb
index 22c04ba70a..7307cd57a2 100644
--- a/meta/recipes-extended/tar/tar_1.34.bb
+++ b/meta/recipes-extended/tar/tar_1.34.bb
@@ -6,9 +6,7 @@ SECTION = "base"
LICENSE = "GPL-3.0-only"
LIC_FILES_CHKSUM = "file://COPYING;md5=d32239bcb673463ab874e80d47fae504"
-SRC_URI = "${GNU_MIRROR}/tar/tar-${PV}.tar.bz2 \
- file://CVE-2022-48303.patch \
- "
+SRC_URI = "${GNU_MIRROR}/tar/tar-${PV}.tar.bz2"
SRC_URI[sha256sum] = "b44cc67f8a1f6b0250b7c860e952b37e8ed932a90bd9b1862a511079255646ff"
--
2.25.1
Fixes CVE-2022-48303 by checking Base-256 encoding is at least
2 bytes long. GNU Tar through 1.34 has a one-byte out-of-bounds
read that results in use of uninitialized memory for a conditional
jump. Exploitation to change the flow of control has not been
demonstrated. The issue occurs in from_header in list.c via a
V7 archive in which mtime has approximately 11 whitespace characters.
Reference:
https://nvd.nist.gov/vuln/detail/CVE-2022-48303
Upstream patch:
https://savannah.gnu.org/bugs/?62387
https://git.savannah.gnu.org/cgit/tar.git/patch/src/list.c?id=3da78400eafcccb97e2f2fd4b227ea40d794ede8
Signed-off-by: Rodolfo Quesada Zumbado <rodolfo.zumbado@...>
Signed-off-by: Joe Slater <joe.slater@...>
---
.../tar/tar/CVE-2022-48303.patch | 43 +++++++++++++++++++
meta/recipes-extended/tar/tar_1.34.bb | 4 +-
2 files changed, 46 insertions(+), 1 deletion(-)
create mode 100644 meta/recipes-extended/tar/tar/CVE-2022-48303.patch
diff --git a/meta/recipes-extended/tar/tar/CVE-2022-48303.patch b/meta/recipes-extended/tar/tar/CVE-2022-48303.patch
new file mode 100644
index 0000000000..b2f40f3e64
--- /dev/null
+++ b/meta/recipes-extended/tar/tar/CVE-2022-48303.patch
@@ -0,0 +1,43 @@
+From 3da78400eafcccb97e2f2fd4b227ea40d794ede8 Mon Sep 17 00:00:00 2001
+From: Sergey Poznyakoff <gray@...>
+Date: Sat, 11 Feb 2023 11:57:39 +0200
+Subject: Fix boundary checking in base-256 decoder
+
+* src/list.c (from_header): Base-256 encoding is at least 2 bytes
+long.
+
+Upstream-Status: Backport [see reference below]
+CVE: CVE-2022-48303
+
+Reference to upstream patch:
+https://savannah.gnu.org/bugs/?62387
+https://git.savannah.gnu.org/cgit/tar.git/patch/src/list.c?id=3da78400eafcccb97e2f2fd4b227ea40d794ede8
+
+Signed-off-by: Rodolfo Quesada Zumbado <rodolfo.zumbado@...>
+Signed-off-by: Joe Slater <joe.slater@...>
+---
+ src/list.c | 5 +++--
+ 1 file changed, 3 insertions(+), 2 deletions(-)Signed-off-by: Rodolfo Quesada Zumbado <rodolfo.zumbado@...>
+
+
+(limited to 'src/list.c')
+
+diff --git a/src/list.c b/src/list.c
+index 9fafc42..86bcfdd 100644
+--- a/src/list.c
++++ b/src/list.c
+@@ -881,8 +881,9 @@ from_header (char const *where0, size_t digs, char const *type,
+ where++;
+ }
+ }
+- else if (*where == '\200' /* positive base-256 */
+- || *where == '\377' /* negative base-256 */)
++ else if (where <= lim - 2
++ && (*where == '\200' /* positive base-256 */
++ || *where == '\377' /* negative base-256 */))
+ {
+ /* Parse base-256 output. A nonnegative number N is
+ represented as (256**DIGS)/2 + N; a negative number -N is
+--
+cgit v1.1
+
diff --git a/meta/recipes-extended/tar/tar_1.34.bb b/meta/recipes-extended/tar/tar_1.34.bb
index 7307cd57a2..1ef5fe221e 100644
--- a/meta/recipes-extended/tar/tar_1.34.bb
+++ b/meta/recipes-extended/tar/tar_1.34.bb
@@ -6,7 +6,9 @@ SECTION = "base"
LICENSE = "GPL-3.0-only"
LIC_FILES_CHKSUM = "file://COPYING;md5=d32239bcb673463ab874e80d47fae504"
-SRC_URI = "${GNU_MIRROR}/tar/tar-${PV}.tar.bz2"
+SRC_URI = "${GNU_MIRROR}/tar/tar-${PV}.tar.bz2 \
+ file://CVE-2022-48303.patch \
+"
SRC_URI[sha256sum] = "b44cc67f8a1f6b0250b7c860e952b37e8ed932a90bd9b1862a511079255646ff"
--
2.25.1