summaryrefslogtreecommitdiffstats
Commit message (Collapse)AuthorAgeFilesLines
...
* python3-pychromecast: Upgrade 12.1.3 -> 12.1.4Leon Anavi2022-07-071-1/+2
| | | | | | | | | | Upgrade to release 12.1.4 and add runtime dependencies: - Improve timeout logs - pin to protobuf v3 Signed-off-by: Leon Anavi <leon.anavi@konsulko.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>
* python3-marshmallow: Upgrade 3.15.0 -> 3.17.0Leon Anavi2022-07-071-1/+1
| | | | | | | | | | | Upgrade to release 3.17.0: - Support serialization as float in TimeDelta field - Add messages_dict property to ValidationError to facilitate type checking Signed-off-by: Leon Anavi <leon.anavi@konsulko.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>
* python3-tabulate: Upgrade 0.8.9 -> 0.8.10Leon Anavi2022-07-072-8/+8
| | | | | | | | | | | | Upgrade to release 0.8.10: - Bug fixes - Column width parameter License-Update: update years Signed-off-by: Leon Anavi <leon.anavi@konsulko.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>
* python3-lxml: upgrade 4.9.0 -> 4.9.1Xu Huan2022-07-071-1/+1
| | | | | Signed-off-by: Xu Huan <xuhuan.fnst@fujitsu.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>
* python3-grpcio: upgrade 1.45.0 -> 1.47.0Xu Huan2022-07-072-10/+17
| | | | | | | | 0001-setup.py-Do-not-mix-C-and-C-compiler-options.patch refreshed for new version. Signed-off-by: Xu Huan <xuhuan.fnst@fujitsu.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>
* python3-grpcio-tools: upgrade 1.46.3 -> 1.47.0zhengruoqin2022-07-072-5/+10
| | | | | | | | 0001-setup.py-Do-not-mix-C-and-C-compiler-options.patch refreshed for new version. Signed-off-by: Zheng Ruoqin <zhengrq.fnst@fujitsu.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>
* python3-google-auth: upgrade 2.8.0 -> 2.9.0zhengruoqin2022-07-071-1/+1
| | | | | Signed-off-by: Zheng Ruoqin <zhengrq.fnst@fujitsu.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>
* python3-google-api-core: upgrade 2.8.0 -> 2.8.2zhengruoqin2022-07-071-1/+1
| | | | | | | | | | | | | | | | | Changelog: ========= Bug Fixes --------- deps: allow protobuf < 5.0.0 (#400) (8f73d2e) drop support for grpc-gcp (#401) (5da6733) Documentation ------------- fix changelog header to consistent size (#394) (ac266e9) Fix typo in the BackgroundConsumer docstring (#395) (0eb727f) Signed-off-by: Zheng Ruoqin <zhengrq.fnst@fujitsu.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>
* python3-engineio: upgrade 4.3.2 -> 4.3.3zhengruoqin2022-07-071-1/+1
| | | | | | | | | | | | | Changelog: ========== Handle ASGI lifespan when running with a secondary ASGI app #284 Update deprecated usage of asyncio.wait() #281 Better handling of queued WebSocket messages in uWSGI #256 Gracefully fail to decode empty packets #269 Only attempt to set an async signal handler once #276 Signed-off-by: Zheng Ruoqin <zhengrq.fnst@fujitsu.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>
* python3-awesomeversion: upgrade 22.5.2 -> 22.6.0Xu Huan2022-07-071-1/+1
| | | | | | | | | | Changelog: =========== Handle ValueError for possible blank values when casting to int Remove deprecated method AwesomeVersion.ensure_strategy Signed-off-by: Xu Huan <xuhuan.fnst@fujitsu.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>
* python3-autobahn: upgrade 22.5.1 -> 22.6.1Xu Huan2022-07-071-1/+1
| | | | | Signed-off-by: Xu Huan <xuhuan.fnst@fujitsu.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>
* python3-pybind11: upgrade 2.8.1 -> 2.9.2Pascal Bach2022-07-071-2/+2
| | | | | Signed-off-by: Pascal Bach <pascal.bach@siemens.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>
* libqmi: upgrade 1.30.4 -> 1.30.8Adrian Freihofer2022-07-071-1/+1
| | | | | | | | | | | | | | | | | Update to latest stable version: 1.30.8 * New request/response/indications: ** dms: new 'Foxconn FCC authentication v2' request/response. 1.30.6 * build: ** meson: fix 'export_packages' in GIR setup. * libqmi-glib: ** net-port-manager: use unaligned netlink attribute length. Signed-off-by: Adrian Freihofer <adrian.freihofer@siemens.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>
* poppler: upgrade 22.06.0 -> 22.07.0wangmy2022-07-071-1/+1
| | | | | | | | | | | | | | | | | | | | Changelog: ========== core: * Fix crash when filling in forms in some files. Issue #1258 * Fix first lines of Annotations sometimes being cut off. Issue #1246 * Signatures: Don't crash if the signature doesn't have a common name * CairoFontEngine: increment font_face reference when retrieving from the cache * Add ToUnicode support for lessorequalslant and greaterorequalslant glib: * Add support for stamp annotation build system: * Tweaks on how gperf is run Signed-off-by: Wang Mingyu <wangmy@fujitsu.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>
* phoronix-test-suite: upgrade 10.8.3 -> 10.8.4wangmy2022-07-071-1/+1
| | | | | | | | | | | | | | | Changelog: =========== pts-core: Allow sub-folders within PTS_EXTRA_SYSTEM_LOGS_DIR when uploading to Phoromatic server pts-core: Fix TOTAL_LOOP_TIME handling pts-core: openSUSE external dependency handling fixes phodevi: Support for reporting video BIOS version phodevi: Budgie desktop version detection phodevi: Avoid deprecated wmic usage on Windows phoromatic: Input sanitization updates in the result viewer Signed-off-by: Wang Mingyu <wangmy@fujitsu.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>
* pegtl: upgrade 3.2.5 -> 3.2.6wangmy2022-07-071-2/+2
| | | | | | | | | | | | | License-Update: Copyright year updated to 2022. Changelog: ========= Made unwind() optional for parse tree nodes. Fixed demangle() for MSVC, again. Fixed demangle() for GCC 12. Signed-off-by: Wang Mingyu <wangmy@fujitsu.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>
* libzip: upgrade 1.9.0 -> 1.9.2wangmy2022-07-071-2/+2
| | | | | | | License-Update: email of authors changed to <info@libzip.org> Signed-off-by: Wang Mingyu <wangmy@fujitsu.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>
* libvpx: upgrade 1.11.0 -> 1.12.0wangmy2022-07-071-1/+1
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Changelog: ========= This release adds optimizations for Loongarch, adds support for vp8 in the real-time rate control library, upgrades GoogleTest to v1.11.0, updates libwebm to libwebm-1.0.0.28-20-g206d268, and includes numerous bug fixes. - Upgrading: This release is ABI compatible with the previous release. vp8 support in the real-time rate control library. New codec control VP8E_SET_RTC_EXTERNAL_RATECTRL is added. Configure support for darwin21 is added. GoogleTest is upgraded to v1.11.0. libwebm is updated to libwebm-1.0.0.28-20-g206d268. - Enhancement: Numerous improvements on checking memory allocations. Optimizations for Loongarch. Code clean-up. - Bug fixes: Fix to a crash related to {vp8/vp9}_set_roi_map. Fix to compiling failure with -Wformat-nonliteral. Fix to integer overflow with vp9 with high resolution content. Fix to AddNoiseTest failure with ARMv7. Fix to libvpx Null-dereference READ in vp8. Signed-off-by: Wang Mingyu <wangmy@fujitsu.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>
* hwdata: upgrade 0.360 -> 0.361wangmy2022-07-071-1/+1
| | | | | Signed-off-by: Wang Mingyu <wangmy@fujitsu.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>
* cloc: upgrade 1.92 -> 1.94wangmy2022-07-071-1/+1
| | | | | Signed-off-by: Wang Mingyu <wangmy@fujitsu.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>
* bats: upgrade 1.6.1 -> 1.7.0wangmy2022-07-071-3/+3
| | | | | | | Changelog:https://github.com/bats-core/bats-core/releases/tag/v1.7.0 Signed-off-by: Wang Mingyu <wangmy@fujitsu.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>
* firewalld: upgrade 1.1.1 -> 1.2.0Adrian Freihofer2022-07-071-2/+15
| | | | | | | | | | | | | | | | Firewalld: This is a feature release. It also includes all bug fixes since v1.1.0. Details are here: https://firewalld.org/2022/07/firewalld-1-2-0-release Recipe: Firewalld defaults to create a log file for debug messages. This is basically an empty file until firewalld's log level is configured to debug level. Writing log files requies something like log-rotate to prevent full disks. The default for OE is to not create files and send all log messages to syslog (journald). Signed-off-by: Adrian Freihofer <adrian.freihofer@siemens.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>
* openvpn: add PACKAGECONFIG for selinuxYi Zhao2022-07-071-0/+2
| | | | | | | This is useful for selinux distro feature. Signed-off-by: Yi Zhao <yi.zhao@windriver.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>
* openvpn: add PACKAGECONFIG for systemdYi Zhao2022-07-074-40/+22
| | | | | | | | The systemd support had been integrated to openvpn for a long time. Add PACKAGECONFIG for it and use its own service files and volatile file. Signed-off-by: Yi Zhao <yi.zhao@windriver.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>
* openconnect: upgrade 8.20 -> 9.01wangmy2022-07-071-1/+1
| | | | | Signed-off-by: Wang Mingyu <wangmy@fujitsu.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>
* nbdkit: upgrade 1.31.9 -> 1.31.10wangmy2022-07-071-1/+1
| | | | | Signed-off-by: Wang Mingyu <wangmy@fujitsu.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>
* nautilus: upgrade 42.1.1 -> 42.2wangmy2022-07-071-1/+1
| | | | | | | | | | | | Changelog: ========= * Close broken link message dialog on response (António Fernandes) * Fix crash when opening new window from pathbar (Corey Berla) * Fix remote filesystem check (Corey Berla) * Translation updates (GNOME Translation Project contributors) Signed-off-by: Wang Mingyu <wangmy@fujitsu.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>
* opencv: Link with libatomic on mipsKhem Raj2022-07-071-0/+2
| | | | | | | Fixes linking errors e.g. parallel.cpp:(.text._ZN3tbb6detail2d19start_forINS1_13blocked_rangeIiEEN2cv12_GLOBAL__N_113ProxyLoopBodyEKNS1_16auto_partitionerEE8finalizeERKNS1_14execution_dataE+0xe8): undefined reference to `__atomic_fetch_add_8' Signed-off-by: Khem Raj <raj.khem@gmail.com>
* python3-pika: Upgrade 1.2.1 -> 1.3.0Leon Anavi2022-07-061-6/+11
| | | | | | | | | | | | | Upgrade to release 1.3.0: - Convert the metadata into PEP 621 format - Use pyproject.toml only - Memory leak when multiple field is set to true in ack - No exception raised when heartbeat timed out - Wrong return type for basic_get Signed-off-by: Leon Anavi <leon.anavi@konsulko.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>
* quagga: ignore CVE-2016-4049Davide Gardenal2022-07-061-0/+4
| | | | | | | | | CVE-2016-4049 is not affecting our version, so we can ignore it. This is caused because the CPE in the NVD database doesn't specify a vulnerable version range. Signed-off-by: Davide Gardenal <davide.gardenal@huawei.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>
* spice: ignore patched CVEsDavide Gardenal2022-07-061-0/+6
| | | | | | | | | | | | The following CVEs are already patched so we can ignore them: - CVE-2016-0749 - CVE-2016-2150 - CVE-2018-10893 This is caused by inaccurate CPE in the NVD database. Signed-off-by: Davide Gardenal <davide.gardenal@huawei.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>
* python3-web3: Upgrade 5.29.1 -> 5.29.2Leon Anavi2022-07-061-1/+1
| | | | | | | | | | | Upgrade to release 5.29.2: - Only thread lock methods attempting to access the cache for the caching middleware. - Socket timeout when pushing a significant amount of data Signed-off-by: Leon Anavi <leon.anavi@konsulko.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>
* python3-serpent: Upgrade 1.40 -> 1.41Leon Anavi2022-07-061-1/+1
| | | | | | | | | | Upgrade to release 1.41: - support for python 3.11 added (__getstate__ behavior change) - replaced travis CI by Github actions Signed-off-by: Leon Anavi <leon.anavi@konsulko.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>
* python3-eth-hash: Upgrade 0.3.2 -> 0.3.3Leon Anavi2022-07-061-1/+6
| | | | | | | | | | | Upgrade to release 0.3.3 and add runtime dependencies: - Keccak backend was initialized every time it was called. Now it's initialized only the first time it's called. - Prune venv files from the release via MANIFEST.in Signed-off-by: Leon Anavi <leon.anavi@konsulko.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>
* thrift: add CVE_PRODUCT to fix CVE reportingDavide Gardenal2022-07-061-0/+2
| | | | | | | | | Without CVE_PRODUCT set to apache:thrift cve-check was catching CVEs form facebook:thrift that are not related with this product. Now the report is correct. Signed-off-by: Davide Gardenal <davide.gardenal@huawei.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>
* fontforge: Upgrade to 20220308Khem Raj2022-07-063-16/+41
| | | | | | | | Switch build system to cmake Add patch to avoid hardcoding build paths in scripts Forward port musl patch Signed-off-by: Khem Raj <raj.khem@gmail.com>
* libspiro: Add recipeKhem Raj2022-07-061-0/+14
| | | | | | Needed by recent fontforge Signed-off-by: Khem Raj <raj.khem@gmail.com>
* ntfs-3g-ntfsprogs: upgrade to 2022.5.17Chen Qi2022-07-061-2/+1
| | | | | | | | | | | | | | | | Upgrade from 2021.8.22 to 2022.5.17. This upgrade mainly include CVE fixes. According to https://github.com/tuxera/ntfs-3g/releases: """ Changelog: * Improved defence against maliciously tampered NTFS partitions * Improved defence against improper use of options * Updated the documentation """ Signed-off-by: Chen Qi <Qi.Chen@windriver.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>
* wireshark: upgrade 3.4.11 -> 3.4.12Davide Gardenal2022-07-061-1/+1
| | | | | | | | | | | | | This upgrade includes the following CVE fixes: - CVE-2021-4190 - CVE-2022-0581 - CVE-2022-0582 - CVE-2022-0583 - CVE-2022-0585 - CVE-2022-0586 Signed-off-by: Davide Gardenal <davide.gardenal@huawei.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>
* python3-elementpath: Upgrade 2.5.0 -> 2.5.3Leon Anavi2022-07-061-1/+1
| | | | | | | | | | Upgrade to release 2.5.3: - Fix unary path step operator - Fix sphinx warnings 'reference target not found' Signed-off-by: Leon Anavi <leon.anavi@konsulko.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>
* python3-autobahn: Upgrade 22.4.2 -> 22.5.1Leon Anavi2022-07-061-1/+1
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Upgrade to release 22.5.1: - new: WAMP Flatbuffers IDL and schema processing (experimental) - new: WAMP-cryptosign trustroot (experimental) - new: add wrapper type for CryptosignAuthextra - fix: stricted type checking of Challenge; fix cryposign unit test - new: more test coverage - fix: reduce log noise - fix: forward channel_binding selected in Component client - new: expand ISigningKey to provide security_module/key_id - fix: Component cryptosign test - fix: add type hints; fix channel_binding - new: work on federated realms and secmods - new: rename to and work on a.w.CryptosignKey - new: add bip44 for cryptosign test - fix: remove all txaio.make_logger refs from generic code - new: initial support for federated WAMP realms via a.x.FederatedRealm/Seeder - new: moved utility functions and unit tests for WAMP realm name checking from Crossbar.io - new: allow list of URLs for transports in a.t.component.Component - new: add websocket_options to a.t.wamp.ApplicationRunner - new: add stop_at_close flag in a.t.component.run - fix: reduce log noise (regression) on ApplicationRunner Twisted - new: allow max_retry_delay==0 for always-immediate auto-reconnect in ApplicationRunner on Twisted - new: add websocket_options to WAMP ApplicationRunner on Twisted - new: more type hints and docs Signed-off-by: Leon Anavi <leon.anavi@konsulko.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>
* cyrus-sasl: CVE-2022-24407 failure to properly escape SQL input allows an ↵Hitendra Prajapati2022-07-062-0/+28
| | | | | | | | | | | | | | | attacker to execute arbitrary SQL commands Source: https://github.com/cyrusimap/cyrus-sasl MR: 118497 Type: Security Fix Disposition: Backport from https://github.com/cyrusimap/cyrus-sasl/commit/9eff746c9daecbcc0041b09a5a51ba30738cdcbc ChangeID: 4736aae2b7d8986787b1666cfd6eecd590915120 Description: CVE-2022-24407 cyrus-sasl: failure to properly escape SQL input allows an attacker to execute arbitrary SQL commands. Signed-off-by: Hitendra Prajapati <hprajapati@mvista.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>
* imagemagick: upgrade 7.0.10-25 -> 7.0.10-62Davide Gardenal2022-07-061-4/+4
| | | | | | | | | | | | | | | | | This upgrade includes patches for the following CVEs: - CVE-2020-13902 - CVE-2020-27829 - CVE-2020-29599 - CVE-2021-20176 - CVE-2021-20241 - CVE-2021-20243 - CVE-2021-20244 - CVE-2021-20245 - CVE-2021-20246 - CVE-2021-3596 Signed-off-by: Davide Gardenal <davide.gardenal@huawei.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>
* dlt-daemon: upgrade to commit 6a3bd901d8 to fix CVE-2022-31291Yue Tao2022-07-061-3/+4
| | | | | | | | | The upstream commit fcb676a79d introduced new option WITH_DLT_ADAPTOR_UDP to select dlt-adaptor-udp.service instread of WITH_DLT_ADAPTOR, so update the PACKAGECONFIG. Signed-off-by: Yue Tao <Yue.Tao@windriver.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>
* emlog: ignore unrelated CVEsDavide Gardenal2022-07-061-0/+11
| | | | | | | | | | This product is not present in the NVD database but another one with exactly the same name is in fact present. For that reason cve-check is outputting CVEs that are unrelated so they can be ignored. Signed-off-by: Davide Gardenal <davide.gardenal@huawei.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>
* python3-flatbuffer: enable nativeKai Kang2022-07-061-0/+1
| | | | | | | | Native python module of flatbuffer exists before it is split from flatbuffers. So add it back. Signed-off-by: Kai Kang <kai.kang@windriver.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>
* libparse-yapp-perl: update interpreter of yappKai Kang2022-07-061-0/+4
| | | | | | | | | | | Update interpreter on shebang line of script yapp to fix qa error: ERROR: QA Issue: : /work/x86_64-linux/libparse-yapp-perl-native/1.21-r0/sysroot-destdir /work/x86_64-linux/libparse-yapp-perl-native/1.21-r0/recipe-sysroot-native/usr/bin/yapp maximum shebang size exceeded, the maximum size is 128. [shebang-size] Signed-off-by: Kai Kang <kai.kang@windriver.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>
* libdev-checklib-perl: fix interpreter of script use-devel-checklibKai Kang2022-07-061-0/+8
| | | | | | | | | | | | | | | Update interpreter on shebang line in script use-devel-checklib to fix QA error: ERROR: QA Issue: : /work/x86_64-linux/libdev-checklib-perl-native/1.14-r0/sysroot-destdir/ work/x86_64-linux/libdev-checklib-perl-native/1.14-r0/recipe-sysroot-native/usr/bin/use-devel-checklib maximum shebang size exceeded, the maximum size is 128. [shebang-size] It also replace option '-w' on shebang line with 'use warnings;' that old version env doesn't support multiple arguments. Signed-off-by: Kai Kang <kai.kang@windriver.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>
* libdbi-perl: fix interpreter on shebang lineKai Kang2022-07-061-0/+5
| | | | | | | | | | | Update interpreter on shebang line in scripts to fix error: ERROR: QA Issue: : /work/x86_64-linux/libdbi-perl-native/1.643-r0/sysroot-destdir/work/x86_64-linux/libdbi-perl-native/1.643-r0/recipe-sysroot-native/usr/bin/dbiproxy maximum shebang size exceeded, the maximum size is 128. [shebang-size] ERROR: QA Issue: : /work/x86_64-linux/libdbi-perl-native/1.643-r0/sysroot-destdir/work/x86_64-linux/libdbi-perl-native/1.643-r0/recipe-sysroot-native/usr/bin/dbiprof maximum shebang size exceeded, the maximum size is 128. [shebang-size] ERROR: QA Issue: : /work/x86_64-linux/libdbi-perl-native/1.643-r0/sysroot-destdir/work/x86_64-linux/libdbi-perl-native/1.643-r0/recipe-sysroot-native/usr/bin/dbilogstrip maximum shebang size exceeded, the maximum size is 128. [shebang-size] Signed-off-by: Kai Kang <kai.kang@windriver.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>
* googletest: upgrade 1.12.0 -> 1.12.1wangmy2022-07-061-3/+3
| | | | | Signed-off-by: Wang Mingyu <wangmy@fujitsu.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>
generated by cgit v1.2.3-54-g00ecf (git 2.39.0) at 2025-08-08 14:01:05 +0000