summaryrefslogtreecommitdiffstats
path: root/meta-oe/recipes-support
Commit message (Collapse)AuthorAgeFilesLines
...
* monit: upgrade 5.34.3 -> 5.34.4Wang Mingyu2025-01-141-1/+1
| | | | | | | | | | | | | | | | | | | Changelog: ========== - If the Monit configuration file contains a string with unbalanced escape sequences, Monit may crash upon startup. - If the password in the set mmonit URL contains only binary characters, syntax check passed (-t), but Monit aborts after start and reports error - If the every <cron> statement contained a syntax error, syntax check passed (-t), but Monit aborts after start and reports error - If the timeout option value was set to 0, the syntax check was successful (-t), but Monit aborts after starting and reports error - The set syslog statement's facility option did not permit the specification of the log_user. - Double interpretation of format strings during RETHROW Signed-off-by: Wang Mingyu <wangmy@fujitsu.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>
* jsoncons: upgrade 1.0.0 -> 1.1.0Wang Mingyu2025-01-141-1/+1
| | | | | | | | | | Changelog: =========== - Reverted changes to 'basic_json_parser' API introduced in 1.0.0, cf Git issue #576 - Git Issue #554: Made headers self-contained Signed-off-by: Wang Mingyu <wangmy@fujitsu.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>
* iniparser: upgrade 4.2.4 -> 4.2.5Wang Mingyu2025-01-141-1/+1
| | | | | | | | | | | | | | | | | | Changelog: =========== - Fix stack buffer overflow in iniparser dump functions (#175) - Update doxygen main page, merge it with README and use it as new main page - Explain how to build documentation as it not build per default - Stylize the name iniParser as it used to be done - Mention CMake options to prevent them from being overlooked - Add build instructions for MinGW - Replace outdated installation instructions by link to README sections - Remove section numbers from README - add DESCRIPTION, HOMEPAGE_URL and LANGUAGES in cmake project() - Fix MSVC build issues Signed-off-by: Wang Mingyu <wangmy@fujitsu.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>
* c-ares: upgrade 1.30.0 -> 1.31.0Jason Schonberg2025-01-131-2/+2
| | | | | | | | | | | | | | | | | | | | Changelog: https://github.com/c-ares/c-ares/releases/tag/v1.31.0 Changes: Enable Query Cache by default. PR #786 Bugfixes: Enhance Windows DNS configuration change detection to also detect manual DNS configuration changes. PR #785 Various legacy MacOS Build fixes. Issue #782 Ndots value of zero in resolv.conf was not being honored. 852a60a Watt-32 build support had been broken for some time. PR #781 Distribute ares_dns_rec_type_tostr manpage. PR #778 Signed-off-by: Jason Schonberg <schonm@gmail.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>
* websocketpp: Skip recipe, not buildable with boost >= 1.87Khem Raj2025-01-131-0/+2
| | | | Signed-off-by: Khem Raj <raj.khem@gmail.com>
* cpp-netlib: Skip recipe, not buildable with boost >= 1.87Khem Raj2025-01-131-0/+2
| | | | Signed-off-by: Khem Raj <raj.khem@gmail.com>
* cpprest: Skip recipe due to unbuildable dependency websocketppKhem Raj2025-01-131-0/+2
| | | | | | Websocketpp needs to be ported to work with booost >= 1.87 Signed-off-by: Khem Raj <raj.khem@gmail.com>
* libtinyxml: patch CVE-2023-34194Peter Marko2025-01-102-0/+32
| | | | | | | | Take patch from Debian: https://salsa.debian.org/debian/tinyxml/-/commit/2366e1f23d059d4c20c43c54176b6bd78d6a83fc Signed-off-by: Peter Marko <peter.marko@siemens.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>
* libtinyxml: patch CVE-2021-42260Peter Marko2025-01-102-1/+30
| | | | | | | | Take patch from Debian: https://salsa.debian.org/debian/tinyxml/-/commit/38db99c12e43d7d6e349403ce4d39a706708603d Signed-off-by: Peter Marko <peter.marko@siemens.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>
* spdlog: Switch to latest on 1.x branchKhem Raj2025-01-101-2/+5
| | | | | | This gets up fmt 11.1 support Signed-off-by: Khem Raj <raj.khem@gmail.com>
* crucible: Use go module fetcherChristian Lindeberg2025-01-103-9/+204
| | | | | | | | | Use the go module fetcher instead of allowing network access during the compile task. Reorder variables according to the recipe style guide. Signed-off-by: Christian Lindeberg <christian.lindeberg@axis.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>
* spdlog: Upgrade to 1.15.0Khem Raj2025-01-081-4/+2
| | | | | | | Use bundled fmt, it still needs 11.0.x and one in OE-core has moved to 11.1.x Signed-off-by: Khem Raj <raj.khem@gmail.com>
* c-ares: upgrade 1.29.0 -> 1.30.0Jason Schonberg2025-01-081-3/+3
| | | | | | | | | | | | | | | | | | | | | | | | | | | | License-Update: Whitespace changes. Changelog: https://github.com/c-ares/c-ares/releases/tag/v1.30.0 Features: Basic support for SIG RR record (RFC 2931 / RFC 2535) PR #773 Changes: Validation that DNS strings can only consist of printable ascii characters otherwise will trigger a parse failure. 75de16c and 40fb125 Windows: use GetTickCount64() for a monotonic timer that does not wrap. 1dff8f6 Bugfixes: QueryCache: Fix issue where purging on server changes wasn't working. a6c8fe6 Windows: Fix Y2K38 issue by creating our own ares_timeval_t datatype. PR #772 Fix packaging issue affecting MacOS due to a missing header. 55afad6 MacOS: Fix UBSAN warnings that are likely meaningless due to alignment issues in new MacOS config reader. Android: arm 32bit build failure due to missing symbol. d1722e6 Signed-off-by: Jason Schonberg <schonm@gmail.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>
* onig: upgrade 6.9.9 -> 6.9.10Jason Schonberg2025-01-071-1/+1
| | | | | | | | | | | Changelog: * Update Unicode version 16.0 * Add new operator (*SKIP) * Fixed: ONIG_SYN_CONTEXT_INDEP_REPEAT_OPS not working for ^* pattern (Issue #292) Signed-off-by: Jason Schonberg <schonm@gmail.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>
* c-ares: upgrade 1.28.1 -> 1.29.0Jason Schonberg2025-01-071-3/+3
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Changelog : https://github.com/c-ares/c-ares/releases/tag/cares-1_29_0 Features: When using ARES_OPT_EVENT_THREAD, automatically reload system configuration when network conditions change. PR #759 Apple: reimplement DNS configuration reading to more accurately pull DNS settings. PR #750 Add observability into DNS server health via a server state callback, invoked whenever a query finishes. PR #744 Add server failover retry behavior, where failed servers are retried with small probability after a minimum delay. PR #731 Changes: Mark ares_channel_t * as const in more places in the public API. PR #758 Bugfixes: Due to a logic flaw dns name compression writing was not properly implemented which would result in the name prefix not being written for a partial match. This could cause issues in various record types such as MX records when using the deprecated API. Regression introduced in 1.28.0. Issue #757 Revert OpenBSD SOCK_DNS flag, it doesn't do what the docs say it does and causes c-ares to become non-functional. PR #754 ares_getnameinfo(): loosen validation on salen parameter. Issue #752 cmake: Android requires C99. PR #748 ares_queue_wait_empty() does not honor timeout_ms >= 0. Issue #742 Signed-off-by: Jason Schonberg <schonm@gmail.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>
* composefs: upgrade 1.0.5 -> 1.0.8Wang Mingyu2025-01-071-6/+6
| | | | | | | License-Update: Relicense most code under GPL-2.0-or-later OR Apache-2.0 Signed-off-by: Wang Mingyu <wangmy@fujitsu.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>
* snapper: set pam module path to ${base_libdir}/securityYi Zhao2025-01-061-3/+3
| | | | | | | | Set pam module path to ${base_libdir}/security as this is the default path in libpam. Signed-off-by: Yi Zhao <yi.zhao@windriver.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>
* libtinyxml2: set CVE product to tinyxml2Jörg Sommer2025-01-031-0/+1
| | | | | | | | | This library gets tracked with the product name tinyxml2: https://nvd.nist.gov/products/cpe/detail/5A6C04CB-E6AD-4740-882A-34620AEC060A Signed-off-by: Jörg Sommer <joerg.sommer@navimatix.de> Signed-off-by: Khem Raj <raj.khem@gmail.com>
* libtinyxml: set CVE product to tinyxmlJörg Sommer2025-01-031-0/+1
| | | | | | | | | This library gets tracked with the product name tinyxml: https://nvd.nist.gov/products/cpe/detail/95BDA29F-257C-4C44-8847-25CFC107228D Signed-off-by: Jörg Sommer <joerg.sommer@navimatix.de> Signed-off-by: Khem Raj <raj.khem@gmail.com>
* bmap-writer: update to latest git versionAyoub Zaki2025-01-021-2/+2
| | | | | | | | | | | | | | * switch to libarchive to handle a larger decompression schemes * implement own sha256 hashing and drop openssl dependency * compute maximum buffer size before writing each range * bmap file optional: if not provided, it will be searched in the same path as the input * print time/speed of the writing operation Signed-off-by: Khem Raj <raj.khem@gmail.com>
* yyjson: add new recipeBartosz Szostak2025-01-021-0/+33
| | | | Signed-off-by: Khem Raj <raj.khem@gmail.com>
* ctre: add new recipeBartosz Szostak2025-01-021-0/+22
| | | | Signed-off-by: Khem Raj <raj.khem@gmail.com>
* jsoncons: add new recipeBartosz Szostak2025-01-021-0/+15
| | | | Signed-off-by: Khem Raj <raj.khem@gmail.com>
* openldap: upgrade 2.6.8 -> 2.6.9Yi Zhao2025-01-012-47/+1
| | | | | | | | | | | ChangeLog: https://www.openldap.org/software/release/changes.html Drop 0001-fix-incompatible-pointer-type-error.patch as the issue has been fixed upstream. Signed-off-by: Yi Zhao <yi.zhao@windriver.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>
* mce-inject: update to latest git revYi Zhao2025-01-011-1/+1
| | | | | | | 7668d820 simulate a MCE event happened during TDX guest context Signed-off-by: Yi Zhao <yi.zhao@windriver.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>
* eject: fix do_fetch errorJiaying Song2025-01-011-1/+1
| | | | | | | | | Change the SRC_URI to the correct value due to the following error: WARNING: eject-2.1.5-r0.wr2401 do_fetch: Failed to fetch URL http://sources.openembedded.org/eject-2.1.5.tar.gz, attempting MIRRORS if available Signed-off-by: Jiaying Song <jiaying.song.cn@windriver.com> Signed-off-by: Armin Kuster <akuster808@gmail.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>
* nss: upgrade 3.103 -> 3.107Yi Zhao2025-01-018-39/+58
| | | | | | | * Refresh patches. Signed-off-by: Yi Zhao <yi.zhao@windriver.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>
* nspr: upgrade 4.35 -> 4.36Yi Zhao2025-01-018-86/+71
| | | | | | | | | * Refresh patches. * Drop 0001-Fix-Wincompatible-function-pointer-types.patch as the issue has been fixed upstream. Signed-off-by: Yi Zhao <yi.zhao@windriver.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>
* poppler: upgrade 24.11.0 -> 24.12.0Changqing Li2024-12-292-1/+129
| | | | | | | | | | | * Upgrade 24.11.0 -> 24.12.0 * Backport patch 0001-Don-t-update-pdfsig.pot-when-POT-Creation-date-is-th.patch to fix a parallel build issue, refer [1] [1] https://gitlab.freedesktop.org/poppler/poppler/-/issues/1550 Signed-off-by: Changqing Li <changqing.li@windriver.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>
* imagemagick: mark CVE-2023-5341 as fixedPeter Marko2024-12-271-0/+1
| | | | | | | | | | | | | | | This CVE is fixed by https://github.com/ImageMagick/ImageMagick/commit/aa673b2e4defc7cad5bec16c4fc8324f71e531f1 It is tracked as 'fixed in next version' - 7.1.2 (which does not exist) in NVD DB. .../tmp/work/core2-64-poky-linux/imagemagick/7.1.1-43/git$ git describe aa673b2e4defc7cad5bec16c4fc8324f71e531f1 --tags 7.1.1-18-4-gaa673b2e4d .../tmp/work/core2-64-poky-linux/imagemagick/7.1.1-43/git$ git tag --contains aa673b2e4defc7cad5bec16c4fc8324f71e531f1 | head -n1 7.1.1-19 Signed-off-by: Peter Marko <peter.marko@siemens.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>
* imagemagick: upgrade 7.1.1-26 -> 7.1.1-43Peter Marko2024-12-271-1/+1
| | | | | | | This fixes at least CVE-2024-41817 (in 7.1.1-36). Signed-off-by: Peter Marko <peter.marko@siemens.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>
* imagemagick: refactor so devtool upgrade worksPeter Marko2024-12-271-2/+3
| | | | | | | | * move version part after dash to PV * set git tag regex Signed-off-by: Peter Marko <peter.marko@siemens.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>
* procmail: patch CVE-2017-16844.Peter Marko2024-12-272-0/+21
| | | | | | | | Take patch from Debian. https://sources.debian.org/data/main/p/procmail/3.22-26%2Bdeb10u1/debian/patches/30 Signed-off-by: Peter Marko <peter.marko@siemens.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>
* procmail: patch CVE-2014-3618Peter Marko2024-12-272-1/+32
| | | | | | | | Take patch from Debian. https://sources.debian.org/data/main/p/procmail/3.22-20%2Bdeb7u1/debian/patches/CVE-2014-3618.patch Signed-off-by: Peter Marko <peter.marko@siemens.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>
* synergy: patch CVE-2020-15117Peter Marko2024-12-242-0/+49
| | | | | | | | | | | | | Pick commit based on [1]. Note that the pick is node from deskflow, which is open-source successor of synergy. If anyone uses thie recipe, it should be switched. [1] https://github.com/deskflow/deskflow/security/advisories/GHSA-chfm-333q-gfpp Signed-off-by: Peter Marko <peter.marko@siemens.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>
* libconfuse: patch CVE-2022-40320Peter Marko2024-12-242-0/+43
| | | | | | | | | | | Pick patch per [1] poiting to [2] pointing to [3]. [1] https://nvd.nist.gov/vuln/detail/CVE-2022-40320 [2] https://github.com/libconfuse/libconfuse/issues/163 [3] https://github.com/libconfuse/libconfuse/commit/d73777c2c3566fb2647727bb56d9a2295b81669b Signed-off-by: Peter Marko <peter.marko@siemens.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>
* nano: upgrade 8.2 -> 8.3Wang Mingyu2024-12-241-1/+1
| | | | | | | | | | Changelog: ============ - A build failure with gcc-15 is fixed. - Several translations were updated. Signed-off-by: Wang Mingyu <wangmy@fujitsu.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>
* sassc: ignore CVE-2022-43357Peter Marko2024-12-201-0/+2
| | | | | | | | | | | | | | | | | | | This CVE is fixed in current libsass recipe version. So wrapper around it will also not show this problem. It's usual usecase is to be statically linked with libsass which is probably the reason why this is listed as vulnerable component. [1] links [2] as issue tracker which points to [3] as fix. [4] as base repository for the recipe is not involved and files from [3] are not present in this repository. [1] https://nvd.nist.gov/vuln/detail/CVE-2022-43357 [2] https://github.com/sass/libsass/issues/3177 [3] https://github.com/sass/libsass/pull/3184 [4] https://github.com/sass/sassc/ Signed-off-by: Peter Marko <peter.marko@siemens.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>
* opensc: mark CVE-2024-8443 as fixedPeter Marko2024-12-201-0/+2
| | | | | | | | | | | | | | | | | NVD tracks this CVE as version-less. Per [1] this is fixed by following commits: $ git tag --contains b28a3cef416fcfb92fbb9ea7fd3c71df52c6c9fc 0.26.0 0.26.0-rc1 $ git tag --contains 02e847458369c08421fd2d5e9a16a5f272c2de9e 0.26.0 0.26.0-rc1 [1] https://github.com/OpenSC/OpenSC/wiki/CVE-2024-8443 Signed-off-by: Peter Marko <peter.marko@siemens.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>
* opensc: upgrade 0.25.1 -> 0.26.0Peter Marko2024-12-201-2/+2
| | | | | | | | Solves CVE-2024-45615, CVE-2024-45616, CVE-2024-45617, CVE-2024-45618, CVE-2024-45619 and CVE-2024-45620. Signed-off-by: Peter Marko <peter.marko@siemens.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>
* lua-lgi: Disable on architecture without luajit portKhem Raj2024-12-191-0/+6
| | | | Signed-off-by: Khem Raj <raj.khem@gmail.com>
* libp11: update 0.4.12 -> 0.4.13Wang Mingyu2024-12-192-32/+2
| | | | | | | | | | | | | | | | | | | | | | | | | | 0001-detect-correct-openssl-3.x.patch removed since it's included in 0.4.13 Changelog: ========= - Increased maximum PIN length - Fixed several memory leaks - Don't include libp11.rc VERSIONINFO into pkcs11 - Reimplement CI with GitHub Actions - Improved tests - Added static ENGINE (libpkcas11.a) build - Added a workaround broken foreign key handling in OpenSSL 3.0.12-3.0.13, 3.1.4-3.1.5, 3.2.0-3.2.1 - Added a workaround for conflicting atexit() callbacks - Always login with PIN If FORCE_LOGIN is specified in openssl config - Added OAEP support to RSA_private_decrypt - Added PKCS11_enumerate_*_ext functions - Fixed non-null-terminated label padding - Fixed several object management issues - Deferred libp11 initialization until needed Signed-off-by: Wang Mingyu <wangmy@cn.fujitsu.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>
* monit: upgrade 5.34.2 -> 5.34.3Wang Mingyu2024-12-191-1/+1
| | | | | | | | | | | | | | | Changelog: ========== - Fixed: If the ping statement did not explicitly specify an outgoing address but a previous ping statement did, the same address was shared by both statements. - Fixed: Monit may crash upon stopping if the ping statement is used in conjunction with the address option. - Fixed: If a directory is set in the 'allow' option of the 'set httpd' statement, instead of file or string, Monit hangs on start. Signed-off-by: Wang Mingyu <wangmy@cn.fujitsu.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>
* mcelog: upgrade 201 -> 202Wang Mingyu2024-12-191-1/+1
| | | | | Signed-off-by: Wang Mingyu <wangmy@cn.fujitsu.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>
* lvm2: update 2.03.28 -> 2.03.29Wang Mingyu2024-12-196-85/+14
| | | | | | | | | | | | | | | | | | | 0001-fix-command-bin-findmnt-bin-lsblk-bin-sort-not-found.patch removed since it's included in 2.03.29 Changelog: =========== * Fix renaming of raid sub LVs when converting a volume to raid (2.03.28). * Fix segfault/VG write error for raid LV 'lvextend -i|--stripes -I|--stripesize'. * Add configure --enable/disable-sd-notify to control lvmlockd build with sd-notify. * Allow test mode when lvmlockd is built without dlm support. * Add a note about RAID + integrity synchronization to lvmraid(7) man page. * Add a function for running lvconvert --repair on RAID LVs to lvmdbusd. * Improve option section of man pages for listing commands ({pv,lv,vg}{s,display}). * And some cleanup mostly in test code. Signed-off-by: Wang Mingyu <wangmy@cn.fujitsu.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>
* bmap-writer: update to latest git versionAyoub Zaki2024-12-191-3/+3
| | | | | | | | * fix xz decompression * add zstd decompression Signed-off-by: ayoub.zaki@embetrix.com Signed-off-by: Khem Raj <raj.khem@gmail.com>
* lua-lgi: add recipeMarkus Volk2024-12-191-0/+24
| | | | | | | | | gobject bindings for lua Required to build the lua51 loader for libpeas-2 Signed-off-by: Markus Volk <f_l_k@t-online.de> Signed-off-by: Khem Raj <raj.khem@gmail.com>
* lvm2: Remove a lingering reference to ${PN}-udevrulesPeter Kjellerstedt2024-12-131-1/+1
| | | | | | | | The lvm2-udevrules package has not actually been created since commit c37c867e1adddd6fa39cf3f3d4c6688ea6dc825a. Signed-off-by: Peter Kjellerstedt <peter.kjellerstedt@axis.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>
* vbxguestdrivers: upgrade 7.0.22 -> 7.1.4Gianfranco Costamagna2024-12-131-2/+2
| | | | | | | | Also enable arm64 support Signed-off-by: Gianfranco Costamagna <costamagnagianfranco@yahoo.it> Signed-off-by: Gianfranco Costamagna <locutusofborg@debian.org> Signed-off-by: Khem Raj <raj.khem@gmail.com>
* upower: add polkit PACKAGECONFIG optionMarc Ferland2024-12-121-1/+3
| | | | | | | | Add a PACKAGECONFIG option for polkit. Activate it when DISTRO_FEATURES contains 'polkit'. Signed-off-by: Marc Ferland <marc.ferland@sonatest.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>
generated by cgit v1.2.3-54-g00ecf (git 2.39.0) at 2025-08-08 10:40:15 +0000