1.0 ROLLING CUMULATIVE PATCH LAYER OVERVIEW This is a Rolling Cumulative Patch Layer for the base Wind River Linux LTS 18 release. This RCPL provides fixes for known problems. For information on updating your projects, see the Product Updates section of the Wind River Linux Getting Started guide. https://knowledge.windriver.com/en-us/000_Products/000/010/060/000/000/000_Wind_River_Linux_Getting_Started%2C_LTS The update procedure involves updating your projectDir/wrlinux-x repository, and then re-running the setup.sh program with the original arguments. The procedure for upgrading your project is shown in the Updating Wind River Linux section of that guide: https://knowledge.windriver.com/en-us/000_Products/000/010/060/000/000/000_Wind_River_Linux_Getting_Started%2C_LTS/030/020 2.0 RCPL Update Implementation The distribution is a set of git repositories that are used to generate project directories at setup time. An RCPL appends new fixes to these repositories. As a result, the git repositories can grow with each new RCPL. The product name branches include two specific branch names. The first is a continuous integration branch. The continuous integration branch tracks the latest RCPL version release by Wind River, and does not include an RCPL number. For example: * WRLINUX_10_18_BASE * WRLINUX_10_18_LTS These branches will always match the latest released RCPL. The second branch name is RCPL-specific, with a reference to a specific RCPL, such as: * WRLINUX_10_18_BASE_UPDATE0001 * WRLINUX_10_18_LTS_RCPL0002 To identify which branch you are on, run the following commands: $ cd projectDir/wrlinux-x $ git branch 3.0 Selecting a specific RCPL Follow the procedure as indicated in the Updating Wind River Linux section of the Wind River Linux Getting Started guide located at: https://knowledge.windriver.com/en-us/000_Products/000/010/060/000/000/000_Wind_River_Linux_Getting_Started%2C_LTS/030/020 In step 3, of the procedure you will use the branchName of the RCPL that you wish to use. For example: $ git checkout WRLINUX_10_18_LTS_RCPL0002 4.0 Change Log The following is a summary of the changes made in each RCPL version. The initial product distribution occurred with RCPL0001. Defect List: ======================= LTS 18 Update 13 =============================== none - wrlinux-overc: PR lockdown files update 2019-11-28 none - wrlinux-overc: hash lockdown files update 2019-11-28 none - srcrev.inc: wrlinux srcrev update 2019-11-28 LIN1018-5321 - libarchive: Fix CVE-2019-19221 none - Merge branch 'WRLINUX_10_18_BASE' into WRLINUX_10_18_LTS LIN1018-5303 - xml: Fix ostree do_fetch fail on branch WRLINUX_10_18_BASE [ LIN1018-5303 ] none - wrlinux-overc: PR lockdown files update 2019-11-26 none - wrlinux-overc: hash lockdown files update 2019-11-26 none - srcrev.inc: wrlinux srcrev update 2019-11-25 LIN1018-5251 - ghostscript: CVE-2019-14869 none - wrlinux-overc: PR lockdown files update 2019-11-21 none - wrlinux-overc: hash lockdown files update 2019-11-21 none - srcrev.inc: wrlinux srcrev update 2019-11-20 none - wrlinux-version.inc: Move to update 13 none - Updated docs for RCPL 12 with new OSTree tutorial none - wrlinux-overc: PR lockdown files update 2019-11-18 none - wrlinux-overc: hash lockdown files update 2019-11-18 none - Merge branch 'wr-10.18-20181031' into WRLINUX_10_18_LTS LIN1018-5252 - mariadb: update SRC_URI to use archive.mariadb.org none - srcrev.inc: wrlinux srcrev update 2019-11-17 none - wrlinux-overc: PR lockdown files update 2019-11-15 none - wrlinux-overc: hash lockdown files update 2019-11-15 LIN1018-5229 - fribidi: Security Advisory - fribidi - CVE-2019-18397 none - Revert "libtirpc: create the symbol link for rpc header files" none - wrlinux-overc: PR lockdown files update 2019-11-14 none - wrlinux-overc: hash lockdown files update 2019-11-14 none - srcrev.inc: wrlinux srcrev update 2019-11-13 none - wrlinux-overc: PR lockdown files update 2019-11-13 none - wrlinux-overc: hash lockdown files update 2019-11-13 none - srcrev.inc: wrlinux srcrev update 2019-11-12 LIN1018-5205 - python-native: fix one do_populate_sysroot warning LIN1018-5190 - libtirpc: create the symbol link for rpc header files ======================= LTS 18 Update 12 =============================== none - wrlinux-overc: PR lockdown files update 2019-11-08 none - wrlinux-overc: hash lockdown files update 2019-11-08 LIN1018-5204 - sysstat: remove check for chkconfig none - wrlinux-overc: PR lockdown files update 2019-11-07 none - wrlinux-overc: hash lockdown files update 2019-11-07 LIN1018-5200 - samba: fix CVE-2019-10218 CVE-2019-14847 CVE-2019-14833 LIN1018-5199 - samba: fix CVE-2019-10218 CVE-2019-14847 CVE-2019-14833 LIN1018-5198 - samba: fix CVE-2019-10218 CVE-2019-14847 CVE-2019-14833 LIN1018-5161 - policy: fixes for samba service LIN1018-5192 - adwaita-icon-theme: fix rare install race none - wrlinux-overc: PR lockdown files update 2019-11-06 none - wrlinux-overc: hash lockdown files update 2019-11-06 LIN1018-5156 - glibc: nptl: Avoid fork handler lock for async-signal-safe fork LIN1018-5081 - binutils: CVE-2019-17450 and CVE-2019-17451 LIN1018-5080 - binutils: CVE-2019-17450 and CVE-2019-17451 LIN1018-4936 - gdb: fix CVE-2017-9778 none - srcrev.inc: wrlinux srcrev update 2019-11-05 LIN1018-5176 - php: Security Advisory - php - CVE-2019-11043 none - wrlinux-overc: PR lockdown files update 2019-11-04 none - wrlinux-overc: hash lockdown files update 2019-11-04 LIN1018-4392 - unzip: Fix CVE-2019-13232 LIN1018-5185 - postgresql: Security Advisory - postgresql - CVE-2019-10208 LIN1018-5099 - ncurses: fix CVE-2019-17594, CVE-2019-17595 LIN1018-5098 - ncurses: fix CVE-2019-17594, CVE-2019-17595 LIN1018-4448 - libsdl2: fix CVE-2019-13616 none - wrlinux-overc: PR lockdown files update 2019-11-01 none - wrlinux-overc: hash lockdown files update 2019-11-01 none - srcrev.inc: wrlinux srcrev update 2019-11-01 none - wrlinux-overc: PR lockdown files update 2019-11-01 none - wrlinux-overc: hash lockdown files update 2019-10-31 none - srcrev.inc: wrlinux srcrev update 2019-10-31 none - wrlinux-overc: PR lockdown files update 2019-10-30 none - wrlinux-overc: hash lockdown files update 2019-10-30 none - IP disclosures - 2019-10-22 - 10.18.44.11 LIN1018-4464 - pango: Security Advisory - pango - CVE-2019-1010238 LIN1018-4570 - postgresql: Security Advisory - postgresql - CVE-2019-10130 none - wrlinux-overc: PR lockdown files update 2019-10-29 none - wrlinux-overc: hash lockdown files update 2019-10-29 LIN1018-4541 - openldap: fix CVE-2019-13057 CVE-2019-13565 LIN1018-4540 - openldap: fix CVE-2019-13057 CVE-2019-13565 LIN1018-4854 - systemd: Security Advisory - systemd - CVE-2019-15718 LIN1018-5005 - subversion: fix CVE-2018-11782 CVE-2019-0203 LIN1018-5004 - subversion: fix CVE-2018-11782 CVE-2019-0203 LIN1018-4880 - sqlite3: Security Advisory - sqlite - CVE-2019-16168 none - wrlinux-overc: PR lockdown files update 2019-10-28 none - wrlinux-overc: hash lockdown files update 2019-10-28 LIN1018-5164 - go: Security Advisory - go - CVE-2019-17596 LIN1018-5163 - libarchive: Security Advisory - libarchive - CVE-2019-18408 LIN1018-5078 - python3: ensure that all forms of python3-config are in python3-dev LIN1018-5078 - python3: alternative name is python3-config not python-config none - wrlinux-version.inc: Move to update 12 none - wrlinux-overc: PR lockdown files update 2019-10-25 none - wrlinux-overc: hash lockdown files update 2019-10-25 LIN1018-5110 - unfs3: fixed the issue that unfsd consumes 100% CPU LIN1018-5097 - ffmpeg: fix 4 CVEs LIN1018-5096 - ffmpeg: fix 4 CVEs LIN1018-4415 - ffmpeg: fix 4 CVEs LIN1018-4253 - ffmpeg: fix 4 CVEs none - srcrev.inc: wrlinux srcrev update 2019-10-24 LIN1018-5028 - go: Security Advisory - go - CVE-2019-16276 LIN1018-5089 - binutils: bfd doesn't handle ELF compressed data alignment none - wrlinux-overc: PR lockdown files update 2019-10-24 none - wrlinux-overc: hash lockdown files update 2019-10-24 none - Merge branch 'wr-10.18-20190214' into WRLINUX_10_18_LTS none - oeqa/selftest/context: ensure log directory exists LIN1018-5042 - python: Security Advisory - python - CVE-2019-16935 none - wrlinux-overc: PR lockdown files update 2019-10-23 none - wrlinux-overc: hash lockdown files update 2019-10-23 LIN1018-5152 - file: CVE-2019-18218 LIN1018-5151 - libidn2: Security Advisory - libidn2 - CVE-2019-18224 LIN1018-5111 - libxslt: Security Advisory - libxslt - CVE-2019-18197 none - Revert "bind: replace true with ISC_TRUE" LIN1018-5074 - bind: replace true with ISC_TRUE none - wrlinux-overc: PR lockdown files update 2019-10-22 none - wrlinux-overc: hash lockdown files update 2019-10-22 LIN1018-5077 - bind: fix 5 CVEs LIN1018-5074 - bind: fix 5 CVEs LIN1018-5073 - bind: fix 5 CVEs LIN1018-5072 - bind: fix 5 CVEs LIN1018-5071 - bind: fix 5 CVEs LIN1018-5105 - sudo: Fix CVE-2019-14287 LIN1018-5011 - apache2: fix CVE-2019-10092 CVE-2019-10097 CVE-2019-10098 LIN1018-5010 - apache2: fix CVE-2019-10092 CVE-2019-10097 CVE-2019-10098 LIN1018-5009 - apache2: fix CVE-2019-10092 CVE-2019-10097 CVE-2019-10098 LIN1018-5115 - mariadb: upgrade 5.5.65 to fix 8 CVEs LIN1018-4018 - mariadb: upgrade 5.5.65 to fix 8 CVEs LIN1018-4004 - mariadb: upgrade 5.5.65 to fix 8 CVEs LIN1018-3515 - mariadb: upgrade 5.5.65 to fix 8 CVEs LIN1018-5115 - mariadb: add source package 5.5.65 LIN1018-4018 - mariadb: add source package 5.5.65 LIN1018-4004 - mariadb: add source package 5.5.65 LIN1018-3515 - mariadb: add source package 5.5.65 none - Merge branch 'WRLINUX_10_18_BASE' into WRLINUX_10_18_LTS LIN1018-5142 - completion output of 'setup.sh --list-distros/--list-templates/--list-machines' ======================= LTS 18 Update 11 =============================== none - wrlinux-overc: PR lockdown files update 2019-10-18 none - wrlinux-overc: hash lockdown files update 2019-10-18 LIN1018-4973 - python3-docker-compose: upgrade to version 1.21.2 LIN1018-5091 - lz4: Security Advisory - lz4 - CVE-2019-17543 LIN1018-5045 - qemu: CVE-2019-12068 LIN1018-4932 - phpmyadmin: Security Advisory - phpmyadmin - CVE-2019-12922 none - wrlinux-overc: PR lockdown files update 2019-10-16 none - wrlinux-overc: hash lockdown files update 2019-10-16 LIN1018-5087 - rsyslog: Security Advisory - rsyslog - CVE-2019-17041 LIN1018-5092 - aspell: Security Advisory - aspell - CVE-2019-17544 LIN1018-5090 - tiff: Security Advisory - libtiff - CVE-2019-17546 LINUXEXEC-3509 - cubeit-installer: keep systemd-getty-generator under control LINUXEXEC-3509 - README: Change 'master-oci' to 'master' LINUXEXEC-3509 - config: enable type=system parameter for priv containers none - wrlinux-overc: PR lockdown files update 2019-10-15 none - wrlinux-overc: hash lockdown files update 2019-10-15 LIN1018-5046 - libgcrypt: Security Advisory - libgcrypt - CVE-2019-13627 LIN1018-4879 - sysstat: fix CVE-2019-16167 LIN1018-5006 - e2fsprogs: Security Advisory - e2fsprogs - CVE-2019-5094 none - wrlinux-overc: PR lockdown files update 2019-10-14 none - wrlinux-overc: hash lockdown files update 2019-10-14 LIN1018-4976 - iputils: Fixed the issue that tracepath failure for IPv6 none - wrlinux-overc: PR lockdown files update 2019-10-10 none - wrlinux-overc: hash lockdown files update 2019-10-10 none - Updated docs for RCPL 11 none - srcrev.inc: wrlinux srcrev update 2019-10-10 LIN1018-5018 - tcpdump: 22 CVE fixes LIN1018-5000 - tcpdump: 22 CVE fixes none - wrlinux-overc: PR lockdown files update 2019-10-09 none - wrlinux-overc: hash lockdown files update 2019-10-09 LIN1018-5056 - curl: fix CVE-2019-5481 and CVE-2019-5482 LIN1018-5055 - curl: fix CVE-2019-5481 and CVE-2019-5482 none - wrlinux-overc: PR lockdown files update 2019-10-08 none - wrlinux-overc: hash lockdown files update 2019-10-08 none - srcrev.inc: wrlinux srcrev update 2019-10-08 LIN1018-4969 - rpm: re-enable disable-plugins for native build LIN1018-4975 - kea: Disable parallel install LIN1018-4972 - libpcap: fix for protochain userspace filtering failure LIN1018-4115 - sysstat:The sysstat.service in source should be installed for cron with systemd LIN1018-4947 - lib32 libraries in self-hosted prevent proper locale loading none - Merge branch 'wr-10.18-20190214' into WRLINUX_10_18_LTS LIN1018-4960 - ruby: remove CVE-2018-1000073.patch as already fixed LIN1018-4960 - ruby: make ext module fiddle can compile success LIN1018-4960 - ruby.inc: Add dependency on readline-native none - Merge branch 'wr-10.18-20181105' into WRLINUX_10_18_LTS LIN1018-4961 - postgresql: Fix issue where init script is not found. none - srcrev.inc: wrlinux srcrev update 2019-10-07 LIN1018-4964 - Revert "mcstrans: Fix package to work with usrmerge" LIN1018-4964 - mcstrans: specify SBINDIR none - wrlinux-overc: PR lockdown files update 2019-09-25 none - wrlinux-overc: hash lockdown files update 2019-09-25 LIN1018-4929 - wpa-supplicant: Security Advisory - wpa-supplicant - CVE-2019-16275 LIN1018-4929 - hostapd: Security Advisory - hostapd - CVE-2019-16275 none - srcrev.inc: wrlinux srcrev update 2019-09-24 LIN1018-4907 - meta-integrity/conf/layer.conf: add opemembedded-layer as layer dependency LIN1018-4907 - initramfs: Move bbappend files to wrlinux-distro dynamic layer LIN1018-4906 - efivar: Fix "Could not prepare Boot variable: Function not implemented" LIN1018-4868 - initramfs-module-setup-live: call udev settle before umounting /run/media/* none - Merge branch 'wr-10.18-20181031' into WRLINUX_10_18_LTS LIN1018-4905 - keyutils: move recipe and patches from meta-security to meta-oe LIN1018-4905 - meta-multimedia: add layer depends on meta-python LIN1018-4905 - mongodb: add to PNBLACKLIST LIN1018-4905 - keyutils: remove from meta-security none - wrlinux-overc: PR lockdown files update 2019-09-23 none - wrlinux-overc: hash lockdown files update 2019-09-23 none - srcrev.inc: wrlinux srcrev update 2019-09-22 LIN1018-4951 - tzdata & tzcode: upgrade 2019c none - srcrev.inc: wrlinux srcrev update 2019-09-22 none - wrlinux-overc: PR lockdown files update 2019-09-20 none - wrlinux-overc: hash lockdown files update 2019-09-20 LIN1018-4865 - python: Security Advisory - python - CVE-2019-16056 none - wrlinux-overc: PR lockdown files update 2019-09-19 none - wrlinux-overc: hash lockdown files update 2019-09-19 LIN1018-4940 - shadow: use relaxed usernames for all LIN1018-4483 - gdb: CVE-2019-1010180 LIN1018-4138 - gcc: fix stack protector guard on ARM: CVE-2018-12886 none - srcrev.inc: wrlinux srcrev update 2019-09-18 none - wrlinux-overc: PR lockdown files update 2019-09-18 none - wrlinux-overc: hash lockdown files update 2019-09-18 none - srcrev.inc: wrlinux srcrev update 2019-09-18 LINUXPG-192 - systemd: ensure reproducible builds by clearly exposing the time epoch support LIN1018-4382 - systemd: ensure reproducible builds by clearly exposing the time epoch support LINUXPG-192 - systemd: meson: use integer type in options LIN1018-4382 - systemd: meson: use integer type in options LIN1018-4647 - mdadm: make ptest output format align with common style none - wrlinux-overc: PR lockdown files update 2019-09-17 none - wrlinux-overc: hash lockdown files update 2019-09-17 LIN1018-4885 - classextend.py: don't extend file for file dependency LIN1018-4240 - refpolicy: Move bbappend files to selinux dynamic layer LIN1018-4835 - initramfs-ostree-image: Update GPG_PATH to work with prior patch none - wrlinux-overc: PR lockdown files update 2019-09-12 none - wrlinux-overc: hash lockdown files update 2019-09-12 LIN1018-4903 - openssl: Security Advisory - openssl - CVE-2019-1547 LIN1018-4902 - openssl: Security Advisory - openssl - CVE-2019-1549 LIN1018-4901 - openssl: Security Advisory - openssl - CVE-2019-1563 none - Merge branch 'WRLINUX_10_18_BASE' into WRLINUX_10_18_LTS none - Revert "wr-ostree-dl: Add in the missing DL archives to build ostree" none - wrlinux-overc: PR lockdown files update 2019-09-11 none - wrlinux-overc: hash lockdown files update 2019-09-11 LIN1018-4835 - gnupg: Extend -native wrapper to fix gpgme-native's gpgconf problems LIN1018-4835 - image_types_ostree.bbclass ostree: Use gnupg-native by default none - srcrev.inc: wrlinux srcrev update 2019-09-11 LIN1018-4864 - qemu: Security Advisory - qemu - CVE-2019-15890 LIN1018-4833 - ghostscript: CVE-2019-14811, CVE-2019-14817 LIN1018-4832 - ghostscript: CVE-2019-14811, CVE-2019-14817 none - wrlinux-version.inc: Move to update 11 LIN1018-4601 - ostree /install: Emit help information when /install is run with an argument LIN1018-4870 - ostree_upgrade.sh: Always use ${remote} in the "ostree deploy" command none - wrlinux-overc: PR lockdown files update 2019-09-06 none - wrlinux-overc: hash lockdown files update 2019-09-06 none - Merge branch 'WRLINUX_10_18_BASE' into WRLINUX_10_18_LTS LIN1018-4836 - meta-oe-dl-2.6: Correct the path from 2.4 to 2.6 for github.com.sparkleholic.ltrace [LIN1018-4836] LIN1018-4530 - serial-getty@.service: Allow device to fast fail if it does not exist [LIN1018-4530] LIN1018-4530 - Revert "serial-getty@.service: Allow device to fast fail if it does not exist" [LIN1018-4530] none - Revert "wr-ostree-dl: Add in the missing DL archives to build ostree" LIN1018-4856 - wr-ostree-dl: Add in the missing DL archives to build ostree LIN1018-4530 - serial-getty@.service: Allow device to fast fail if it does not exist [LIN1018-4530] LIN1018-4530 - Revert "serial-getty@.service: Allow device to fast fail if it does not exist" [LIN1018-4530] LIN1018-4564 - dpkg: Provide update-alternative for start-stop-daemon LIN1018-4530 - serial-getty@.service: Allow device to fast fail if it does not exist LINUXEXEC-3159 - wic: Make disk partition size consistently computed LINUXEXEC-3159 - wic: Add partition type for msdos partition tables LINUXEXEC-3159 - image_types_wic.bbclass: Copy the .wks and .env files to deploy image dir LINUXEXEC-2447 - psmisc: Fix dependency for USE_NLS=no LINUXEXEC-2447 - locale: Allow usage of cross-localedef for ARC LINUXEXEC-2447 - glibc-locale: Rewrite do_install using install utility instead of cp LINUXEXEC-2447 - glibc-locale: fix installed-vs-shipped qa issue LINUXEXEC-2447 - glibc-locale: Fix build error with PACKAGE_NO_GCONV = "1" LINUXEXEC-2447 - glibc / glibc-locale: Fix stash_locale determinism problems LINUXEXEC-2447 - glibc/glibc-locale: Fix do_stash_locale to work with usrmerge and multilibs LINUXEXEC-2447 - glibc: Fix multilibs + usrmerge builds LIN1018-4603 - pseudo: Fix openat() with a symlink pointing to a directory none - Merge branch 'WRLINUX_10_18_BASE' into WRLINUX_10_18_LTS LIN1018-4836 - meta-oe-dl-2-6.xml: Add github.com.sparkleholic.ltrace for ltrace_git.bb LIN1018-3826 - ostree grub.cfg: Fix the password so that it can be changed none - wrlinux-overc: PR lockdown files update 2019-09-04 none - wrlinux-overc: hash lockdown files update 2019-09-04 LIN1018-4814 - u-boot-uenv: Fix multilib build problems LIN1018-4822 - ostree: Fix the permission bits on the ostree .service files LIN1018-4383 - qemu: Security Advisory - qemu - CVE-2019-13164 LIN1018-4569 - binutils: fix CVE-2019-12972 CVE-2019-13164 CVE-2019-14250 CVE-2019-14444 LIN1018-4484 - binutils: fix CVE-2019-12972 CVE-2019-13164 CVE-2019-14250 CVE-2019-14444 LIN1018-4383 - binutils: fix CVE-2019-12972 CVE-2019-13164 CVE-2019-14250 CVE-2019-14444 LIN1018-4347 - binutils: fix CVE-2019-12972 CVE-2019-13164 CVE-2019-14250 CVE-2019-14444 LINUXEXEC-3407 - wrlinux-base-whitelist: whitelist the package ltrace none - Merge branch 'wr-10.18-20181031' into WRLINUX_10_18_LTS none - ltrace: Fix build with clang none - ltrace: Fix a NULL string use LINUXEXEC-3407 - ltrace: Remove the restriction of COMPATIBLE_HOST setting LIN1018-4811 - lmsensors_%.bbappend: remove it none - Merge branch 'wr-10.18-20181031' into WRLINUX_10_18_LTS LIN1018-4811 - lmsensors: support package lmsensors LIN1018-4824 - init-ostree-install.sh: Fix missing /var directory files LIN1018-4816 - ostree boot /home: Fix the /home mount to instantiate in /var none - Merge branch 'wr-10.18-20190214' into WRLINUX_10_18_LTS LIN1018-2542 - libc-package.bbclass: Split locale hard link processing into two parts LIN1018-2542 - cross-localedef-native: Add hardlink resolver from util-linux LIN1018-2542 - cross-localedef-native: Backport --no-hard-links feature none - wrlinux-overc: PR lockdown files update 2019-09-03 none - wrlinux-overc: hash lockdown files update 2019-09-03 none - srcrev.inc: wrlinux srcrev update 2019-09-03 LIN1018-3028 - tipcutils: ptts: Set recv buffer size to max to receive as many packets as possible LIN1018-4806 - nmap: Security Advisory - nmap - CVE-2017-18594 none - wrlinux-overc: PR lockdown files update 2019-09-02 none - wrlinux-overc: hash lockdown files update 2019-09-02 none - Merge remote-tracking branch 'base/wr-10.18-20190214' into WRLINUX_10_18_LTS LINUXEXEC-2218 - opkg_%.bbappend: Add OPKG_EXTERNAL_FEED_URL to config packages feed LINUXEXEC-2218 - Add feature/container-base template none - wrlinux-overc: PR lockdown files update 2019-08-30 none - wrlinux-overc: hash lockdown files update 2019-08-30 none - srcrev.inc: wrlinux srcrev update 2019-08-30 LINUXEXEC-2218 - update-alternatives.bbclass: run update-alternatives firstly in postinst script LINUXEXEC-2218 - make-mod-scripts: Depends on bison-native LINUXEXEC-2218 - linux-dummy: Add do_compile_kernelmodules LINUXEXEC-2218 - gtk-icon-cache.bbclass: Depends on gtk+3 LINUXEXEC-2218 - ca-certificates: Add openssl_bin to RDEPENDS LINUXEXEC-2218 - busybox: make postinst run firstly before update-alternatives ======================= LTS 18 Update 10 =============================== LIN1018-4748 - meta-signing-key/conf/layer.conf: use weak assignment for RPM_GPG_NAME and RPM_GPG_PASSPHRASE none - Merge branch 'wr-10.18-20190214' into WRLINUX_10_18_LTS LINUXEXEC-3408 - init-ostree-install.sh: Fixes and network install support for xilinix-zynq none - wrlinux-overc: PR lockdown files update 2019-08-27 LIN1018-4421 - bitbake: ConfHandler: Don't strip leading spaces LINUXEXEC-1933 - svn.py: Stop SVN from directly pulling from an external layer w/o fetcher none - wrlinux-overc: hash lockdown files update 2019-08-27 none - tests/fetch.py: Add alternative gitsm test case none - gitsmy.py: Fix unpack of submodules of submodules none - gitsm: The fetcher did not process some recursive submodules properly. none - gitsm.py: Rework the shallow fetcher and test case none - gitsm.py: revise unpack none - gitsm.py: Refactor the functions and simplify the class none - gitsm.py: Optimize code and attempt to resolve locking issue none - gitsm.py: Fix when a submodule is defined, but not initialized none - gitsm.py: Fix relative URLs none - gitsm.py: Add support for alternative URL formats from submodule files none - gitsm: Fix a bug where the wrong path was used for the submodule init none - gitsm: Add need_update method to determine when we are going to a new SRCREV none - Merge branch 'wr-10.18-20190214' into WRLINUX_10_18_LTS LIN1018-4763 - sudo: update SRC_URI LIN1018-4752 - kernel: fix the recipe that changes signatures LIN1018-4752 - packagegroup-cgl-applications: only install libpam and pam-passwdqc if pam distro flag set LINUXEXEC-3159 - feature/ostree: Add missing pnwhitelist entry for grub-efi LINUXEXEC-3159 - watchdog: Add journalctl warning when running on the rollback partition LINUXEXEC-3159 - u-boot-env: Add support for boot.scr booting with u-env LINUXEXEC-3159 - ostree variables: Fix defaults and make u-boot wks files generic LINUXEXEC-3159 - ostree_upgrade.sh: Only fsck once on NO_AB images LINUXEXEC-3159 - ostree /init: Change default for OSTREE_SKIP_BOOT_DIFF=2 LINUXEXEC-3159 - init-ostree-install.sh: Fix white space LINUXEXEC-3159 - init-ostree-install: Add boot sizing and defaults for u-boot LINUXEXEC-3159 - ostree: Add u-boot directory support LINUXEXEC-3159 - ostree dtb copy: Use basename for processing KERNEL_DEVICETREE entries none - wrlinux-overc: PR lockdown files update 2019-08-23 none - wrlinux-overc: hash lockdown files update 2019-08-23 none - srcrev.inc: wrlinux srcrev update 2019-08-23 none - Updated docs for RCPL 10 none - wrlinux-overc: PR lockdown files update 2019-08-22 none - wrlinux-overc: hash lockdown files update 2019-08-22 none - srcrev.inc: wrlinux srcrev update 2019-08-22 none - wrlinux-overc: PR lockdown files update 2019-08-21 LIN1018-4644 - php: fix CVE-2019-11041 CVE-2019-11042 LIN1018-4643 - php: fix CVE-2019-11041 CVE-2019-11042 none - wrlinux-overc: hash lockdown files update 2019-08-21 LIN1018-4672 - opkg-utils: recover the commit "opkg-utils: set OPKGLIBDIR to target_localstatedir" LIN1018-4740 - bzip2: Accept as many selectors as the file format allows none - srcrev.inc: wrlinux srcrev update 2019-08-21 none - wrlinux-overc: PR lockdown files update 2019-08-21 none - wrlinux-overc: hash lockdown files update 2019-08-21 LIN1018-4684 - u-boot-unenv: Fix build dependencies LIN1018-2542 - libc-package.bbclass: Split locale hard link processing into two parts LIN1018-2542 - cross-localedef-native: Add hardlink resolver from util-linux LIN1018-2542 - cross-localedef-native: Backport --no-hard-links feature LIN1018-4530 - serial-getty@.service: Allow device to fast fail if it does not exist LINUXEXEC-3159 - feature/ostree: Fix variable usage LIN1018-4665 - mcstrans: Fix package to work with usrmerge none - srcrev.inc: wrlinux srcrev update 2019-08-21 none - Merge branch 'WRLINUX_10_18_BASE' into WRLINUX_10_18_LTS LINUXPG-12 - renesas-rcar: add 2 packages for building graphic feature on renesas-rcar platform none - Merge branch 'WRLINUX_10_18_BASE' into WRLINUX_10_18_LTS LINUXPG-12 - meta-oe-dl-2-6.xml: Add github.com.yasm.yasm.git for yasm_git.bb [LINUXPG-12] LINUXEXEC-3159 - wr-ostree configuration: Add OSTREE_WKS_FILE definition LIN1018-4634 - ostree_git: ostree-prepare-root missing from file system LIN1018-4529 - ostree-upgrade-mgr: Add correct watchdog dependency LIN1018-4599 - initramfs-ostree-image: Add image_types_ostree inherit to get GPG_PATH none - wrlinux-overc: PR lockdown files update 2019-08-20 none - wrlinux-overc: hash lockdown files update 2019-08-20 none - srcrev.inc: wrlinux srcrev update 2019-08-20 none - Merge branch 'wr-10.18-20181105' into WRLINUX_10_18_LTS LIN1018-4728 - dpdk: Add the Marvell cn96xx support for v18.11.1 LIN1018-4536 - LTTNG issue with epoch negative clock offset none - srcrev.inc: wrlinux srcrev update 2019-08-19 LIN1018-4673 - tiff: Security Advisory - libtiff - CVE-2019-14973 LIN1018-4675 - whitelist.conf: ignore empty layer wr-nxp-lx2xxx & wr-bcm-2xxx-rpi none - Merge branch 'wr-10.18-20181031' into WRLINUX_10_18_LTS LIN1018-4646 - postfix-native: support build with kernel version >= 5 none - wrlinux-overc: PR lockdown files update 2019-08-15 none - wrlinux-overc: hash lockdown files update 2019-08-15 none - srcrev.inc: wrlinux srcrev update 2019-08-15 LIN1018-4674 - meta-freescale: disable multilib 32-bit for package rcw LIN1018-4602 - postgresql: Fix detection of passwords hashed with MD5 or SCRAM-SHA-256 none - wrlinux-overc: PR lockdown files update 2019-08-14 none - wrlinux-overc: hash lockdown files update 2019-08-14 LIN1018-4670 - create-user-key-store.sh: Add gpg 1.x support LIN1018-4671 - image_types_ostree.bbclass: Add gpg 1.x support and fix pinentry for gpg 2.x LIN1018-4612 - meta-freescale: disable multilib for package ppa none - srcrev.inc: wrlinux srcrev update 2019-08-14 LIN1018-4566 - wrlinux distro configuration: share the sample key variables LIN1018-4566 - create-user-key-store.sh: Update for OSTree and ease of use. none - wrlinux-overc: PR lockdown files update 2019-08-13 LIN1018-4566 - ostree signing support: Fix sample keys and add banner for sample keys none - wrlinux-overc: hash lockdown files update 2019-08-13 none - srcrev.inc: wrlinux srcrev update 2019-08-13 none - Merge branch 'WRLINUX_10_18_BASE' into WRLINUX_10_18_LTS LIN1018-4651 - Add wr-ostree-dl to BASE branch none - wrlinux-overc: PR lockdown files update 2019-08-12 none - wrlinux-overc: hash lockdown files update 2019-08-12 none - srcrev.inc: wrlinux srcrev update 2019-08-12 LINUXEXEC-3159 - feature/ostree: Add u-boot support for the ostree feature LIN1018-4532 - feature/ostree: Fix dependency loops none - wrlinux-overc: PR lockdown files update 2019-08-12 none - wrlinux-overc: hash lockdown files update 2019-08-12 LIN1018-4564 - dpkg: Provide update-alternative for start-stop-daemon LINUXEXEC-3159 - wic: Make disk partition size consistently computed LINUXEXEC-3159 - wic: Add partition type for msdos partition tables LINUXEXEC-3159 - image_types_wic.bbclass: Copy the .wks and .env files to deploy image dir LIN1018-4603 - pseudo: Fix openat() with a symlink pointing to a directory LINUXEXEC-3159 - ostree wic: Remove all obsolete wks files LIN1018-4532 - initramfs-ostree-image: Fix dependency loop LINUXEXEC-3159 - ostree classes: Add generic ostree A/B, non A/B image generation LIN1018-4645 - db: add switch for building database verification none - dpdk: add staticdev .a library files none - restool: update to 8b1dd40 none - restool: update to 2b4dd21 LINUXEXEC-3159 - wr-ostree: Add OSTREE_SKIP_BOOT_DIFF option to configuration LINUXEXEC-3159 - ostree_upgrade_x86_64.sh: Add ARM support to upgrade script LINUXEXEC-3159 - ostree-upgrade-mgr: Merge arm and x86 upgrade methods LINUXEXEC-3159 - ostree-init: Add support for ARM for A/B and non A/B boot+rollback LINUXEXEC-3159 - grub-runtime.cfg: Display _b partition flag in boot string LINUXEXEC-3159 - clearbootflag_x86_64.sh: ro support for /boot/efi LINUXEXEC-2447 - image_types_ota.bbclass: Add the boot.env for grub LIN1018-4534 - wr-ostree: Add single partition support to ostree_upgrade.sh for x86 LIN1018-4533 - ostree scripts: Add arm/u-boot support LIN1018-4480 - ostree_reset.sh: Fix help text none - README: Rename from Readme to match other layers none - Readme: Add standard Wind River Layer license notice none - wrlinux-overc: PR lockdown files update 2019-08-09 none - wrlinux-overc: hash lockdown files update 2019-08-09 none - srcrev.inc: wrlinux srcrev update 2019-08-09 none - srcrev.inc: wrlinux srcrev update 2019-08-08 none - wrlinux-overc: PR lockdown files update 2019-08-08 none - wrlinux-overc: hash lockdown files update 2019-08-08 none - srcrev.inc: wrlinux srcrev update 2019-08-08 none - srcrev.inc: wrlinux srcrev update 2019-08-07 none - wrlinux-version.inc: Move to update 10 none - wrlinux-overc: PR lockdown files update 2019-08-06 none - wrlinux-overc: hash lockdown files update 2019-08-06 none - srcrev.inc: wrlinux srcrev update 2019-08-06 LIN1018-4618 - meta-security-compliance: Remove conf/layer.conf LIN1018-4615 - libvirt: fix 4 CVEs LIN1018-4614 - libvirt: fix 4 CVEs LIN1018-4613 - libvirt: fix 4 CVEs LIN1018-4591 - libvirt: fix 4 CVEs none - wrlinux-overc: PR lockdown files update 2019-08-02 none - wrlinux-overc: hash lockdown files update 2019-08-02 none - srcrev.inc: wrlinux srcrev update 2019-08-02 none - wrlinux-overc: PR lockdown files update 2019-08-01 none - wrlinux-overc: hash lockdown files update 2019-08-01 LIN1018-4596 - samba: Security Advisory - samba - CVE-2018-16860 LIN1018-4574 - openssl: Security Advisory - openssl - CVE-2019-1552 none - wrlinux-overc: PR lockdown files update 2019-07-31 none - wrlinux-overc: hash lockdown files update 2019-07-31 LIN1018-4567 - meta-python-dl-2.6: add pycrypto-2.6.1.tar.gz for building optee-os package none - Merge branch 'WRLINUX_10_18_BASE' into WRLINUX_10_18_LTS LINUXPG-12 - wrlinux-x: renesas-rcar-dl.xml: add optee-os repo info none - srcrev.inc: wrlinux srcrev update 2019-07-30 none - wrlinux-overc: PR lockdown files update 2019-07-30 none - wrlinux-overc: hash lockdown files update 2019-07-30 none - srcrev.inc: wrlinux srcrev update 2019-07-30 LINUXPG-16 - meta-freescale: add BSP nxp-lx2xxx support none - srcrev.inc: wrlinux srcrev update 2019-07-30 LIN1018-4539 - patch: fix CVE-2019-13636 and CVE-2019-13638 LIN1018-4457 - patch: fix CVE-2019-13636 and CVE-2019-13638 LIN1018-4514 - efivar: Don't require NVME to have an EUI none - wrlinux-overc: PR lockdown files update 2019-07-26 none - wrlinux-overc: hash lockdown files update 2019-07-26 LIN1018-4443 - iptables: Security Advisory - iptables - CVE-2019-11360 ======================= LTS 18 Update 9 =============================== none - wrlinux-overc: PR lockdown files update 2019-07-25 none - wrlinux-overc: hash lockdown files update 2019-07-25 none - srcrev.inc: wrlinux srcrev update 2019-07-25 none - wrlinux-overc: PR lockdown files update 2019-07-25 none - wrlinux-overc: hash lockdown files update 2019-07-24 none - srcrev.inc: wrlinux srcrev update 2019-07-24 none - Merge branch 'WRLINUX_10_18_BASE' into WRLINUX_10_18_LTS LINUXPG-12 - renesas-rcar-dl.xml: Add github.com.TI-ECS.bt-firmware.git for ti-bt-firmware_git.bb [LINUXPG-12] LINUXPG-12 - renesas-rcar-dl.xml: Add git.ti.com.ti-bt.uim.git for ti-bt_git.bb [LINUXPG-12] none - Updated docs for RCPL 9 none - wrlinux-overc: PR lockdown files update 2019-07-23 none - wrlinux-overc: hash lockdown files update 2019-07-23 LINUXEXEC-2447 - misc ostree: Remove all references to Pulsar from branch/repo names none - Merge branch 'wr-10.18-20190214' into WRLINUX_10_18_LTS LIN1018-4472 - timezone: update to 2019b LIN1018-4472 - tzdata & tzcode: source packages of 2019b none - wrlinux-overc: PR lockdown files update 2019-07-22 none - wrlinux-overc: hash lockdown files update 2019-07-22 none - srcrev.inc: wrlinux srcrev update 2019-07-21 none - wrlinux-overc: PR lockdown files update 2019-07-18 none - wrlinux-overc: hash lockdown files update 2019-07-18 none - srcrev.inc: wrlinux srcrev update 2019-07-18 LINUXEXEC-1942 - libvirt: Move to tls mode for default remote connection none - Merge branch 'wr-10.18-20181031' into WRLINUX_10_18_LTS LINUXEXEC-1942 - libvirt: libvirtd: Facilitate using tls connection mode none - Merge branch 'WRLINUX_10_18_BASE' into WRLINUX_10_18_LTS LINUXPG-12 - renesas-rcar-dl.xml: Add [LINUXPG-12] github.com.renesas-rcar.u-boot.git for u-boot-renesas_2018.09.bb LINUXPG-12 - renesas-rcar-dl.xml: Add [LINUXPG-12] github.com.renesas-rcar.optee_os.git for optee-os_git.bb LINUXPG-12 - renesas-rcar-dl.xml: Add [LINUXPG-12] github.com.renesas-rcar.arm-trusted-firmware.git for arm-trusted-firmware_git.bb none - wrlinux-overc: PR lockdown files update 2019-07-17 none - wrlinux-overc: hash lockdown files update 2019-07-17 LIN1018-4427 - python2: Security Advisory - python - CVE-2018-20852 none - wrlinux-overc: PR lockdown files update 2019-07-16 none - wrlinux-overc: hash lockdown files update 2019-07-16 LINUXEXEC-2447 - ostree_upgrade_x86_64.sh: Recover all branches if the ostree repo is corrupt LINUXEXEC-2447 - image_types_ostree.bbclass: Optional purge rpm database from production image LINUXEXEC-2447 - wr-ostree distro config: Remove all the refkit references, fix usrmerge LIN1018-4427 - python3: Security Advisory - python - CVE-2018-20852 none - srcrev.inc: wrlinux srcrev update 2019-07-16 none - Merge branch 'wr-10.18-20190214' into WRLINUX_10_18_LTS LINUXPG-12 - tune-cortexa57: add tunes for ARM Cortex-A57 LINUXPG-12 - tune-cortexa57-cortexa53: add tunes for ARM Cortex-A53-Cortex-A57 none - wrlinux-overc: PR lockdown files update 2019-07-15 none - wrlinux-overc: hash lockdown files update 2019-07-15 LIN1018-4247 - python3: rework the patches of CVE-2019-9740/CVE-2019-9947/CVE-2019-9636/CVE-2019-10160 LIN1018-3720 - python3: rework the patches of CVE-2019-9740/CVE-2019-9947/CVE-2019-9636/CVE-2019-10160 LIN1018-3719 - python3: rework the patches of CVE-2019-9740/CVE-2019-9947/CVE-2019-9636/CVE-2019-10160 LIN1018-3718 - python3: rework the patches of CVE-2019-9740/CVE-2019-9947/CVE-2019-9636/CVE-2019-10160 none - srcrev.inc: wrlinux srcrev update 2019-07-14 none - oeqa/selftest/context: ensure log directory exists LINUXEXEC-2447 - ostree feature template: DISTRO_FEATURES must use _append none - wrlinux-overc: PR lockdown files update 2019-07-12 none - wrlinux-overc: hash lockdown files update 2019-07-12 LIN1018-4421 - bitbake: ConfHandler: Don't strip leading spaces LINUXEXEC-2447 - libbytesize: Add depends for gettext-native LINUXEXEC-2447 - glibc / glibc-locale: Fix stash_locale determinism problems LINUXEXEC-2447 - glibc-locale: Fix build error with PACKAGE_NO_GCONV = "1" LINUXEXEC-2447 - psmisc: Fix dependency for USE_NLS=no LINUXEXEC-2447 - glibc/glibc-locale: Fix do_stash_locale to work with usrmerge and multilibs LINUXEXEC-2447 - glibc: Fix multilibs + usrmerge builds LINUXEXEC-2447 - glibc-locale: Rewrite do_install using install utility instead of cp LINUXEXEC-2447 - glibc-locale: fix installed-vs-shipped qa issue LINUXEXEC-2447 - locale: Allow usage of cross-localedef for ARC LINUXEXEC-2447 - mdadm: use ${systemd_unitdir} rather than /lib/systemd LINUXEXEC-2448 - initramfs-ostree-image.bb: Add OSTree gpg key signing support LINUXEXEC-2448 - image_types_ostree.bbclass: Add passphrase support for signing the OSTree updates LINUXEXEC-2447 - ostree-upgrade-mgr: make upgrade branch/os name agnostic LINUXEXEC-2447 - ostree-upgrade-mgr: Add in ostree_reset.sh LINUXEXEC-2447 - ostree grub-runtime.cfg: Flip flop partitions while executing the boot try LINUXEXEC-2447 - ostree: Always exit with non zero if fsck fails LINUXEXEC-2447 - initramfs-ostree-install: Add install script to the OSTree initramfs LINUXEXEC-2447 - ostree_git.bb: Bump forward to stable commit to pull in critical fixes LINUXEXEC-2447 - init-ostree.sh: Fixing warnings and add skip-boot-diff option none - wrlinux-version.inc: Move to update 9 none - wrlinux-overc: PR lockdown files update 2019-07-09 none - wrlinux-overc: hash lockdown files update 2019-07-09 none - srcrev.inc: wrlinux srcrev update 2019-07-09 none - srcrev.inc: wrlinux srcrev update 2019-07-08 none - wrlinux-overc: PR lockdown files update 2019-07-05 none - wrlinux-overc: hash lockdown files update 2019-07-05 LIN1018-4247 - python2: fix CVE-2019-9740/CVE-2019-9947/CVE-2019-9636/CVE-2019-10160 LIN1018-3720 - python2: fix CVE-2019-9740/CVE-2019-9947/CVE-2019-9636/CVE-2019-10160 LIN1018-3719 - python2: fix CVE-2019-9740/CVE-2019-9947/CVE-2019-9636/CVE-2019-10160 LIN1018-3718 - python2: fix CVE-2019-9740/CVE-2019-9947/CVE-2019-9636/CVE-2019-10160 LIN1018-4247 - python3: rework the patches of CVE-2019-9740/CVE-2019-9947/CVE-2019-9636/CVE-2019-10160 LIN1018-3720 - python3: rework the patches of CVE-2019-9740/CVE-2019-9947/CVE-2019-9636/CVE-2019-10160 LIN1018-3719 - python3: rework the patches of CVE-2019-9740/CVE-2019-9947/CVE-2019-9636/CVE-2019-10160 LIN1018-3718 - python3: rework the patches of CVE-2019-9740/CVE-2019-9947/CVE-2019-9636/CVE-2019-10160 LIN1018-4247 - python3: fix 5 CVEs LIN1018-3720 - python3: fix 5 CVEs LIN1018-3719 - python3: fix 5 CVEs LIN1018-3718 - python3: fix 5 CVEs LIN1018-2648 - python3: fix 5 CVEs LIN1018-4364 - cluster-glue: rename cluster-glue-glue-1.0.12.tar.gz to glue-1.0.12.tar.gz none - wrlinux-overc: PR lockdown files update 2019-07-03 none - wrlinux-overc: hash lockdown files update 2019-07-03 none - vim-tiny: remove alternative for xxd LIN1018-4364 - cluster-glue: change a new SRC_URI LIN1018-4364 - cluster-glue: add cluster-glue-glue-1.0.12.tar.gz LIN1018-4326 - lmsensors: To includes most of the sensors and tools LIN1018-4380 - libxslt: fix CVE-2019-13117 CVE-2019-13118 LIN1018-4379 - libxslt: fix CVE-2019-13117 CVE-2019-13118 none - wrlinux-overc: PR lockdown files update 2019-07-01 none - wrlinux-overc: hash lockdown files update 2019-07-01 LIN1018-4368 - glib-2.0: Security Advisory - glib-2.0 - CVE-2019-13012 none - wrlinux-overc: PR lockdown files update 2019-06-28 none - wrlinux-overc: hash lockdown files update 2019-06-28 LIN1018-4327 - bc: dc: fix exit code of q command LIN1018-4365 - expat: Security Advisory - expat - CVE-2018-20843 LIN1018-4363 - postgresql: Security Advisory - postgresql - CVE-2019-10164 none - wrlinux-overc: PR lockdown files update 2019-06-27 none - wrlinux-overc: hash lockdown files update 2019-06-27 LINUXEXEC-2447 - image_types_ota.bbclass: Always use core.add-remotes-config-dir false LINUXEXEC-2447 - initramfs-ostree-image.bb: Improve dependencies and add busybox support none - srcrev.inc: wrlinux srcrev update 2019-06-27 LIN1018-3948 - anaconda_support_image: Add package-management to IMAGE_FEATURES LIN1018-3948 - python3-anaconda: Fix xserver detection LIN1018-4338 - ceres-solver: set arch limit since libunwind dependency LIN1018-4338 - gperftools: set arch limit since libunwind dependency LIN1018-4338 - glog: set arch limit since libunwind dependency LIN1018-3859 - wrlinux: changed wr-[app/systemd]-container.inc to .bbclass ======================= LTS 18 Update 8 =============================== none - IP disclosures - 2019-06-27 - 10.18.44.8 none - wrlinux-overc: PR lockdown files update 2019-06-25 none - wrlinux-overc: hash lockdown files update 2019-06-25 LIN1018-4317 - libgcrypt: Security Advisory - libgcrypt - CVE-2019-12904 LIN1018-4316 - bzip2: Security Advisory - bzip2 - CVE-2019-12900 LIN1018-4336 - whitelist.conf: ignore empty layer nxp-ls1028 none - wrlinux-overc: PR lockdown files update 2019-06-23 none - wrlinux-overc: hash lockdown files update 2019-06-23 none - srcrev.inc: wrlinux srcrev update 2019-06-23 LIN1018-4315 - layer.conf: add support for gitsm LIN1018-4315 - xml: move deplicate repos to wrlinux-dl LIN1018-3857 - wrlinux: add dummy-kernel template LIN1018-4303 - php: fix CVE-2019-11038 CVE-2019-11039 CVE-2019-11040 LIN1018-4302 - php: fix CVE-2019-11038 CVE-2019-11039 CVE-2019-11040 LIN1018-4301 - php: fix CVE-2019-11038 CVE-2019-11039 CVE-2019-11040 LIN1018-4289 - wrltemplate.bbclass: Fix for reload of image.inc LIN1018-4289 - wrltemplate.bbclass: Fix for reload of bsp-pkgs.incmaster-wr LIN1018-4289 - wrltemplate.bbclass: Fix for reload of bsp-pkgs.conf none - wrlinux-overc: PR lockdown files update 2019-06-20 none - wrlinux-overc: hash lockdown files update 2019-06-20 none - Merge branch 'wr-10.18-20190214' into WRLINUX_10_18_LTS LIN1018-4223 - pseudo: Update to gain key bugfixes LIN1018-3580 - libsdl&libsdl2: fix 7 CVEs LIN1018-3523 - libsdl&libsdl2: fix 7 CVEs LIN1018-3517 - libsdl&libsdl2: fix 7 CVEs none - srcrev.inc: wrlinux srcrev update 2019-06-19 LIN1018-4252 - libqb: Security Advisory - libqb - CVE-2019-12779 none - wrlinux-overc: PR lockdown files update 2019-06-19 none - wrlinux-overc: hash lockdown files update 2019-06-19 none - Updated docs for RCPL 8 none - Merge branch 'WRLINUX_10_18_BASE' into WRLINUX_10_18_LTS LIN1018-4290 - xml:merge nxp-imx7-dl & nxp-imx6-dl into nxp-imx-dl none - srcrev.inc: wrlinux srcrev update 2019-06-19 LIN1018-4265 - dbus: Security Advisory - dbus - CVE-2019-12749 LIN1018-4244 - phpmyadmin: fix CVE-2019-11768/CVE-2019-12616 LIN1018-4243 - phpmyadmin: fix CVE-2019-11768/CVE-2019-12616 LIN1018-4250 - qemu: fix 3 CVE-2018-20815/CVE-2019-12155/CVE-2019-9824 LIN1018-4248 - qemu: fix 3 CVE-2018-20815/CVE-2019-12155/CVE-2019-9824 LIN1018-4150 - qemu: fix 3 CVE-2018-20815/CVE-2019-12155/CVE-2019-9824 none - wrlinux-overc: PR lockdown files update 2019-06-18 none - wrlinux-overc: hash lockdown files update 2019-06-18 LIN1018-4266 - gvfs: Security Advisory - gvfs - CVE-2019-12795 LIN1018-4264 - apache2: CVE-2019-0196, 0197, 0220 LIN1018-4263 - apache2: CVE-2019-0196, 0197, 0220 LIN1018-4262 - apache2: CVE-2019-0196, 0197, 0220 none - srcrev.inc: wrlinux srcrev update 2019-06-17 LIN1018-4206 - libunwind: use compatible host to limit arches LIN1018-4275 - inetutils: Adjust the patch of rcp issue none - wrlinux-overc: PR lockdown files update 2019-06-17 none - wrlinux-overc: hash lockdown files update 2019-06-17 LIN1018-4242 - vim: Security Advisory - vim - CVE-2019-12735 LIN1018-3874 - apache2: CVE-2019-0211 LIN1018-4275 - inetutils: Fix the rcp couldn't copy subdirectory issue none - wrlinux-overc: PR lockdown files update 2019-06-14 none - wrlinux-overc: hash lockdown files update 2019-06-14 LIN1018-4254 - kernel.bbclass: Make task clean depend on cleaning of make-mod-scripts none - srcrev.inc: wrlinux srcrev update 2019-06-14 none - wrlinux-overc: PR lockdown files update 2019-06-13 none - wrlinux-overc: hash lockdown files update 2019-06-13 none - wrlinux-overc: PR lockdown files update 2019-06-13 none - srcrev.inc: wrlinux srcrev update 2019-06-13 none - wrlinux-overc: hash lockdown files update 2019-06-13 none - srcrev.inc: wrlinux srcrev update 2019-06-13 LIN1018-4216 - openssh: fix openssh sshd crash during ssh login none - Merge branch 'wr-10.18-20190214' into WRLINUX_10_18_LTS none - tune-thunderx: Set the correct PACKAGE_EXTRA_ARCHS_tune-thunderx LIN1018-4249 - sqlite3: Security Advisory - sqlite3 - CVE-2019-8457 none - srcrev.inc: wrlinux srcrev update 2019-06-12 none - Merge branch 'WRLINUX_10_18_BASE' into WRLINUX_10_18_LTS none - nxp-imx7-dl.xml:fix export layer in xml none - Merge branch 'WRLINUX_10_18_BASE' into WRLINUX_10_18_LTS LINUXPG-18 - nxp-imx7-dl.xml: Add source.codeaurora.org.external.imx.uboot-imx.git for u-boot-imx_2018.03.bb none - wrlinux-overc: PR lockdown files update 2019-06-11 none - wrlinux-overc: hash lockdown files update 2019-06-11 none - srcrev.inc: wrlinux srcrev update 2019-06-11 none - wrlinux-overc: PR lockdown files update 2019-06-11 none - wrlinux-overc: hash lockdown files update 2019-06-11 none - srcrev.inc: wrlinux srcrev update 2019-06-11 LIN1018-4223 - wrlinux-distro-settings.conf: Add workaround for uid host-user-contaminated issues of glibc-locale none - Merge branch 'wr-10.18-20190214' into WRLINUX_10_18_LTS LIN1018-4223 - insane.bbclass: Add add more info for uid host-user-contaminated issue none - wrlinux-overc: PR lockdown files update 2019-06-10 none - wrlinux-version.inc: Move to update 8 none - wrlinux-overc: hash lockdown files update 2019-06-10 none - srcrev.inc: wrlinux srcrev update 2019-06-10 LIN1018-4211 - xfsprogs: Fix host contamination LIN1018-4203 - networkmanager: move udev-rules from /usr/lib -> /lib none - srcrev.inc: wrlinux srcrev update 2019-06-09 LIN1018-4226 - python: Security Advisory - python - CVE-2019-9948 LIN1018-3717 - python: Security Advisory - python - CVE-2019-9948 none - wrlinux-overc: PR lockdown files update 2019-06-06 none - wrlinux-overc: hash lockdown files update 2019-06-06 none - Merge branch 'WRLINUX_10_18_BASE' into WRLINUX_10_18_LTS none - nxp-imx8-dl.xml: Add github.com.murata-wireless.qca-linux-calibration.git for linux-firmware_git.bb none - srcrev.inc: wrlinux srcrev update 2019-06-05 none - wrlinux-overc: PR lockdown files update 2019-06-05 none - wrlinux-overc: hash lockdown files update 2019-06-05 none - srcrev.inc: wrlinux srcrev update 2019-06-04 LIN1018-4097 - ghostscript: Fix CVE-2019-3839 none - wrlinux-overc: PR lockdown files update 2019-06-04 none - wrlinux-overc: hash lockdown files update 2019-06-04 none - srcrev.inc: wrlinux srcrev update 2019-06-03 LIN1018-4179 - ndctl: v63 -> v65 LIN1018-4179 - ndctl: make MACHINE_ARCH and ignore from libblockdev LIN1018-4179 - ndctl: disable ndctl-monitor service by default none - Merge branch 'WRLINUX_10_18_BASE' into WRLINUX_10_18_LTS LIN1018-4205 - move axxiaarm.xml axxiaarm-dl.xml none - wrlinux-overc: PR lockdown files update 2019-06-03 none - wrlinux-overc: hash lockdown files update 2019-06-03 none - srcrev.inc: wrlinux srcrev update 2019-06-02 none - Merge branch 'wr-10.18-20190214' into WRLINUX_10_18_LTS LIN1018-4196 - tzdata: Install everything by default LIN1018-4196 - timezone: update to 2019a LIN1018-4196 - timezone: refactor to simplify maint LIN1018-4196 - tzdata & tzcode: source package of 2019a none - srcrev.inc: wrlinux srcrev update 2019-06-02 LINUXPG-22 - nxp-imx8: add framebuffer backend for nxp-imx8 none - wrlinux-overc: PR lockdown files update 2019-05-31 none - wrlinux-overc: hash lockdown files update 2019-05-31 LIN1018-4159 - freeradius: Security Advisory - freeradius - CVE-2019-10143 LIN1018-4188 - glib-2.0: Security Advisory - glib-2.0 - CVE-2019-12450 LIN1018-4140 - libvirt: Security Advisory - libvirt - CVE-2019-10132 LIN1018-4176 - libpng: Security Advisory - libpng - CVE-2018-14550 LIN1018-4187 - gvfs: fix CVE-2019-12447 CVE-2019-12448 CVE-2019-12449 LIN1018-4186 - gvfs: fix CVE-2019-12447 CVE-2019-12448 CVE-2019-12449 LIN1018-4185 - gvfs: fix CVE-2019-12447 CVE-2019-12448 CVE-2019-12449 LIN1018-4171 - curl: Security Advisory - curl - CVE-2019-5436 none - wrlinux-overc: PR lockdown files update 2019-05-30 none - wrlinux-overc: hash lockdown files update 2019-05-30 LINUXPG-21 - dpdk: Make the PREFERRED_VERSION_dpdk more specific none - Merge branch 'wr-10.18-20181105' into WRLINUX_10_18_LTS LINUXPG-21 - Move two patches to the version specific bb LINUXPG-21 - Introduce the v18.11.1 bb LINUXPG-21 - dpdk: package helper makefiles LINUXPG-21 - dpdk: Forbid the misusing of the version by other machines LIN1018-4170 - binutils: complete the fix of CVE-2018-18309 none - Merge branch 'wr-10.18-20190214' into WRLINUX_10_18_LTS LIN1018-4115 - sysstat: Add PACKAGECONFIG for cron installing LIN1018-4115 - wrlinux-common: Enable installing cron services of sysstat by default LIN1018-4115 - sysstat: Add PACKAGECONFIG for cron installing none - wrlinux-overc: PR lockdown files update 2019-05-29 none - wrlinux-overc: hash lockdown files update 2019-05-29 LIN1018-3916 - ffmpeg: fix CVE-2019-11338 CVE-2019-11339 LIN1018-3915 - ffmpeg: fix CVE-2019-11338 CVE-2019-11339 LIN1018-4062 - u-boot: fix CVE-2019-11059 CVE-2019-11690 LIN1018-3964 - u-boot: fix CVE-2019-11059 CVE-2019-11690 LIN1018-4094 - wget: Security Advisory - wget - CVE-2019-5953 LIN1018-3053 - README: update branches info for WRLinux 10.18 ======================= LTS 18 Update 7 =============================== none - wrlinux-overc: PR lockdown files update 2019-05-28 none - wrlinux-overc: hash lockdown files update 2019-05-28 none - srcrev.inc: wrlinux srcrev update 2019-05-28 none - srcrev.inc: wrlinux srcrev update 2019-05-27 LIN1018-4156 - wrlinux: add BBFILE_PATTERN_IGNORE_EMPTY_wr-nxp-ls1043 LIN1018-3931 - meta-freescale: ppa: disable parallelism target build for package ppa LIN1018-4116 - grub-mkconfig: Use -c instead of --printf for stat LIN1018-4095 - ntp: template of ntp428p13 none - Merge branch 'wr-10.18-20181031' into WRLINUX_10_18_LTS LIN1018-4095 - ntp: Security Advisory - ntp - CVE-2019-8936 none - Merge branch 'WRLINUX_10_18_BASE' into WRLINUX_10_18_LTS LIN1018-4095 - ntp: source package 4.2.8p13 none - wrlinux-overc: PR lockdown files update 2019-05-24 none - wrlinux-overc: hash lockdown files update 2019-05-24 none - Release notes updates for kernel rebase LIN1018-4095 - ntp: source package 4.2.8p13 none - wrlinux-overc: PR lockdown files update 2019-05-23 none - srcrev.inc: wrlinux srcrev update 2019-05-23 none - wrlinux-overc: hash lockdown files update 2019-05-23 none - srcrev.inc: wrlinux srcrev update 2019-05-23 LIN1018-3952 - dhcp:"dhclient -x eth0" action is not correct. none - Merge branch 'wr-10.18-20190214' into WRLINUX_10_18_LTS LIN1018-4113 - linux-libc-headers: fix building failure of turbostat after uprev kernel v4.18.37 none - Updated docs for RCPL 7 none - wrlinux-overc: PR lockdown files update 2019-05-22 none - wrlinux-overc: hash lockdown files update 2019-05-22 LIN1018-4113 - linux-libc-headers: fix building failure of turbostat after uprev kernel v4.18.37 LIN1018-4100 - mdadm: define MAILADDR for mdmonitor service none - srcrev.inc: wrlinux srcrev update 2019-05-22 none - srcrev.inc: wrlinux srcrev update 2019-05-21 none - wrlinux-overc: PR lockdown files update 2019-05-21 none - wrlinux-overc: hash lockdown files update 2019-05-21 none - srcrev.inc: wrlinux srcrev update 2019-05-21 none - srcrev.inc: wrlinux srcrev update 2019-05-20 none - Merge branch 'WRLINUX_10_18_BASE' into WRLINUX_10_18_LTS none - Move xf86-video-armsoc to meta-oe-dl-2-6.xml none - Merge branch 'WRLINUX_10_18_BASE' into WRLINUX_10_18_LTS none - Remove the .git from upstream name of github.com.Xilinx.u-boot-xlnx none - Merge branch 'WRLINUX_10_18_BASE' into WRLINUX_10_18_LTS none - Rename xilinx-zynqmp.xml xilinx-zynqmp-dl.xml none - wrlinux-overc: PR lockdown files update 2019-05-17 none - wrlinux-overc: hash lockdown files update 2019-05-17 none - Merge branch 'WRLINUX_10_18_BASE' into WRLINUX_10_18_LTS LIN1018-4088 - meta-oe-dl-2-6.xml: add git source of xf86-video-armsoc none - srcrev.inc: wrlinux srcrev update 2019-05-16 none - wrlinux-overc: PR lockdown files update 2019-05-16 none - wrlinux-overc: hash lockdown files update 2019-05-16 none - srcrev.inc: wrlinux srcrev update 2019-05-16 none - wrlinux-overc: PR lockdown files update 2019-05-15 none - wrlinux-overc: hash lockdown files update 2019-05-15 LIN1018-4074 - mdadm: install the systemd service through Makefile none - wrlinux-overc: PR lockdown files update 2019-05-15 none - wrlinux-overc: hash lockdown files update 2019-05-15 none - srcrev.inc: wrlinux srcrev update 2019-05-15 LIN1018-4032 - wrlinux-image-minimal-initramfs: install initramfs-module-lvm by condition LIN1018-4047 - Fix Yocto Project Compatible issues LIN1018-4054 - feature/docker: Allow builds with preempt_rt kernel LIN1018-4047 - layer.conf: Fix circular variable reference LIN1018-3977 - php: fix the bug introduced original CVE-2019-11035 fix none - wrlinux-overc: PR lockdown files update 2019-05-10 none - wrlinux-overc: hash lockdown files update 2019-05-10 LIN1018-3977 - php: fix CVE-2019-11034 CVE-2019-11035 CVE-2019-11036 LIN1018-3976 - php: fix CVE-2019-11034 CVE-2019-11035 CVE-2019-11036 CVE-2019-11034 - php: fix CVE-2019-11034 CVE-2019-11035 CVE-2019-11036 LIN1018-3972 - python-urllib3: Security Advisory - python-urllib3 - CVE-2019-11324 LIN1018-3885 - systemd: Security Advisory - systemd - CVE-2019-3842 LIN1018-4023 - gst-plugins-base: Security Advisory - gstreamer - CVE-2019-9928 none - wrlinux-overc: PR lockdown files update 2019-05-09 none - wrlinux-overc: hash lockdown files update 2019-05-09 none - srcrev.inc: wrlinux srcrev update 2019-05-09 LIN1018-3824 - ostree:allow ostree compile without ostree in DISTRO_FEATURE F11731 - nxp-ls1028: loop linuxptp in from meta-oe LIN1018-3929 - qemu: Security Advisory - qemu - CVE-2019-5008 LIN1018-3717 - python: Fix CVE-2019-9948 [ LIN1018-3717 ] LIN1018-3974 - freeradius: fix CVE-2019-11234 CVE-2019-11235 LIN1018-3973 - freeradius: fix CVE-2019-11234 CVE-2019-11235 none - wrlinux-version.inc: Move to update 7 none - Merge branch 'wr-10.18-20181031' into WRLINUX_10_18_LTS LINUXPG-17 - ledmon: Mark as incompatible on musl instead of adding bogus patch LINUXPG-17 - ledmon: control hard disk led for RAID arrays none - Merge branch 'WRLINUX_10_18_BASE' into WRLINUX_10_18_LTS LINUXPG-17 - meta-oe-dl-2-6.xml: add git source of ledmon none - Merge branch 'wr-10.18-20190214' into WRLINUX_10_18_LTS F11716 - tune-cortexa*: Add missing BASE_LIB tune overrides F11716 - tune-cortexa72: add tunes for ARM Cortex-A72 F11716 - tune-cortexa53: add tunes for ARM Cortex-A53 F11716 - tune-cortexa35: fixed typo F11716 - tune-cortexa35: add tunes for ARM Cortex-A35 F11716 - tune-cortexa32: add tunes for ARM Cortex-A32 F11716 - ThunderX: update the armv8a rules F11716 - Remove the simd tune for armv8a F11716 - arch-armv8a.inc: Correct PACKAGE_EXTRA_ARCHS_tune-armv8a-* F11716 - arch-armv8a.inc: add tune include for armv8 F11716 - arch-armv8a.inc: Add missing BASE_LIB tune overrides none - Merge branch 'WRLINUX_10_18_BASE' into WRLINUX_10_18_LTS LIN1018-3823 - wrlinux-x: xml: add u-boot-xlnx repo information LIN1018-3946 - feature/docker/template.conf: Add support for feature/docker for axxiaarm none - wrlinux-overc: PR lockdown files update 2019-04-25 none - Updated docs for RCPL 6 with name change for CGL tests tutorial and new FACE conformance tests none - wrlinux-overc: hash lockdown files update 2019-04-25 none - srcrev.inc: wrlinux srcrev update 2019-04-25 ======================= LTS 18 Update 6 =============================== LIN1019-1100 - feature/docker: Change LAYER_PATH to LAYER_PATH_wrlinux-distro none - wrlinux-overc: PR lockdown files update 2019-04-22 none - wrlinux-overc: hash lockdown files update 2019-04-22 LIN1018-3558 - libpng: Security Advisory - libpng - CVE-2019-7317 US131827 - init-install-efi.sh: add install to lvm support none - wrlinux-overc: PR lockdown files update 2019-04-19 none - wrlinux-overc: hash lockdown files update 2019-04-19 LIN1018-3784 - glibc: CVE-2019-9169 LIN1018-3534 - glibc: fix three CVE issues LIN1018-3495 - glibc: fix three CVE issues LIN1018-3494 - glibc: fix three CVE issues LIN1018-3843 - sqlite3: Security Advisory - sqlite - CVE-2018-20505 none - srcrev.inc: wrlinux srcrev update 2019-04-19 LIN1018-3899 - libxslt: Security Advisory - libxslt - CVE-2019-11068 LIN1018-3900 - lighttpd: Security Advisory - lighttpd - CVE-2019-11072 none - wrlinux-overc: PR lockdown files update 2019-04-18 none - wrlinux-overc: hash lockdown files update 2019-04-18 none - srcrev.inc: wrlinux srcrev update 2019-04-18 LIN1018-3846 - gnutls: Security Advisory - gnutls - CVE-2019-3836 none - wrlinux-overc: PR lockdown files update 2019-04-17 none - wrlinux-overc: hash lockdown files update 2019-04-17 LIN1018-3905 - bjam: do not search all PATHs varibale none - wrlinux-overc: PR lockdown files update 2019-04-16 none - wrlinux-overc: hash lockdown files update 2019-04-16 LIN1018-3779 - qemu: CVE-2019-8934 none - wrlinux-overc: PR lockdown files update 2019-04-15 none - wrlinux-overc: hash lockdown files update 2019-04-15 LIN1018-3769 - ffmpeg: fix CVE-2019-9718 CVE-2019-9721 LIN1018-3768 - ffmpeg: fix CVE-2019-9718 CVE-2019-9721 US133449 - Merge branch 'wr-10.18-20190409' into WRLINUX_10_18_LTS LIN1018-3731 - binutils: fix CVE-2019-9070 and CVE-2019-9071 LIN1018-3896 - samba: add libunwind switch LIN1018-3886 - samba: Security Advisory - samba - CVE-2019-3880 LIN1018-3780 - samba: Security Advisory - samba - CVE-2019-3824 LIN1018-3807 - ceph: Security Advisory - ceph - CVE-2019-3821 LIN1018-3893 - wr-ostree-dl.xml:add git repo for wr-ostree-dl US129464 - Wayland: add weston framebuffer backend support for nxp-imx6 LIN1018-3828 - runqemu: do not check return code of tput US133449 - lxc bbappend: rebase local patch to lxc 3.1.0 US95960 - layer.conf: add dl layer to LAYERRECOMMENDS and update dl dependency version to 2.6 LIN1018-3283 - lxc: remove or rename kernel config [ LIN1018-3283 ] LIN1018-3122 - openvswitch: Add new option to use short hostname for ovs-ctl script US132888 - init-install-efi.sh: don't assume the fixed location of efi loader none - wrlinux-overc: PR lockdown files update 2019-04-10 none - wrlinux-overc: hash lockdown files update 2019-04-10 LIN1018-3884 - systemd: install libnss-myhostname.so when myhostname be enabled LIN1018-3818 - feature/ostree:fix a typo in $BANNER none - wrlinux-overc: PR lockdown files update 2019-04-09 none - wrlinux-overc: hash lockdown files update 2019-04-09 none - feature/docker: Enable aarch64 US133449 - Update pkgs for rebasing to wr-10.18-20180409 none - srcrev.inc: wrlinux srcrev update 2019-04-08 LIN1018-3676 - php: fix 11 CVEs US133398 - feature/docker: Add feature template to whitelist, build and install docker none - wrlinux-overc: PR lockdown files update 2019-04-08 none - wrlinux-overc: hash lockdown files update 2019-04-08 LIN1018-3802 - vim: Security Advisory - vim - CVE-2018-20786 LIN1018-3685 - xf86-video-vesa: Refuse to run on UEFI machines none - srcrev.inc: wrlinux srcrev update 2019-04-07 LIN1018-3782 - systemd: Security Advisory - systemd - CVE-2019-6454 none - wrlinux-overc: PR lockdown files update 2019-04-04 none - wrlinux-overc: hash lockdown files update 2019-04-04 LIN1018-3716 - tar: Security Advisory - tar - CVE-2019-9923 LIN1018-3810 - libvirt: Security Advisory - libvirt - CVE-2019-3840 LIN1018-3751 - ghostscript: Fix CVE-2019-3835 and CVE-2019-3838 LIN1018-3750 - ghostscript: Fix CVE-2019-3835 and CVE-2019-3838 LIN1018-3808 - libcomps: Security Advisory - libcomps - CVE-2019-3817 none - Revert "glib-2.0: Security Advisory - glib-2.0 - CVE-2019-9633" none - srcrev.inc: wrlinux srcrev update 2019-04-03 none - wrlinux-version.inc: Move to update 6 none - meta-freescale: add BSP nxp-ls1043 support none - wrlinux-overc: PR lockdown files update 2019-04-03 none - wrlinux-overc: hash lockdown files update 2019-04-03 LIN1018-3792 - gvfs: Security Advisory - gvfs - CVE-2019-3827 LIN1018-3809 - gnutls: Security Advisory - gnutls - CVE-2019-3829 LIN1018-3793 - glib-2.0: Security Advisory - glib-2.0 - CVE-2019-9633 none - wrlinux-overc: PR lockdown files update 2019-04-02 none - wrlinux-overc: hash lockdown files update 2019-04-02 LIN1018-3728 - binutils: fix 4 CVEs LIN1018-3727 - binutils: fix 4 CVEs LIN1018-3726 - binutils: fix 4 CVEs LIN1018-3724 - binutils: fix 4 CVEs none - srcrev.inc: wrlinux srcrev update 2019-04-02 none - wrlinux-overc: PR lockdown files update 2019-04-01 none - wrlinux-overc: hash lockdown files update 2019-04-01 LIN1018-3714 - sqlite3: fix CVE-2019-9936 CVE-2019-9937 LIN1018-3713 - sqlite3: fix CVE-2019-9936 CVE-2019-9937 LIN1018-3789 - libexif: Security Advisory - libexif - CVE-2018-20030 LIN1018-3736 - file: fix 4 CVEs LIN1018-3735 - file: fix 4 CVEs LIN1018-3734 - file: fix 4 CVEs LIN1018-3733 - file: fix 4 CVEs none - wrlinux-overc: PR lockdown files update 2019-03-29 none - wrlinux-overc: hash lockdown files update 2019-03-29 LIN1018-3673 - packagegroup-anaconda-support: Add lvm2-udevrules LIN1018-3708 - ccache.bbclass: Set CCACHE_CONFIGPATH to fix race issues LIN1018-3781 - openssl: Security Advisory - openssl - CVE-2019-1543 none - Merge branch 'wr-10.18-20190214' into WRLINUX_10_18_LTS none - glib-networking:enable glib-networking build as native package none - libsoup:enable libsoup build as native package none - features/ostree:introduce ostree feature none - efi-secure-boot:allow other layer overwrite INITRAMFS_IMAGE none - secore-core:allow other layer overwrite INITRAMFS_IMAGE none - meta-efi-secure-boot:allow ostree layer reset grub.cfg none - srcrev.inc: wrlinux srcrev update 2019-03-28 LIN1018-1583 - tiff: Security Advisory - tiff - CVE-2018-12900 none - wrlinux-overc: PR lockdown files update 2019-03-27 none - wrlinux-overc: hash lockdown files update 2019-03-27 none - srcrev.inc: wrlinux srcrev update 2019-03-27 US131827 - wrlinux-image-minimal-initramfs: install lvm2 to initramfs US131827 - wrlinux-image-minimal-initramfs: install mdadm to minimal-initramfs none - Merge branch 'wr-10.18-20190214' into WRLINUX_10_18_LTS US131827 - udev-extraconf: move md* and dm* from mount blacklist US131827 - mdadm: add udev rules to create by-partuuid for MD devices US131827 - mdadm: add mdmon service to support Intel VROC US131827 - initramfs-framework: mount efivarfs to make Intel VROC work well US131827 - initramfs-framework: add lvm module US131827 - init-install: fix a typo which will led delete section failed when use sed US131827 - init-install: add support for install image to Intel VROC raid disk US131827 - mdadm: Upgrade to 4.1 US131827 - mdadm: fix gcc-8 format-truncation warning US131827 - mdadm: Drop redundant patches and fix build with clang US131827 - mdadm: add the old version mdadm 4.0 back US131827 - mdadm: add init and service scripts US131827 - mdadm: add back lost Upstream-Status tags US131827 - Add source package mdadm 4.1 US131827 - udev-extraconf: move md* and dm* from mount blacklist US131827 - mdadm: Upgrade to 4.1 US131827 - mdadm: fix gcc-8 format-truncation warning US131827 - mdadm: Drop redundant patches and fix build with clang US131827 - mdadm: add udev rules to create by-partuuid for MD devices US131827 - mdadm: add the old version mdadm 4.0 back US131827 - mdadm: add mdmon service to support Intel VROC US131827 - mdadm: add init and service scripts US131827 - mdadm: add back lost Upstream-Status tags US131827 - initramfs-framework: mount efivarfs to make Intel VROC work well US131827 - initramfs-framework: add lvm module US131827 - init-install: fix a typo which will led delete section failed when use sed US131827 - init-install: add support for install image to Intel VROC raid disk LIN1018-3695 - wrlinux: add BBFILE_PATTERN_IGNORE_EMPTY_wr-nxp-ls1046 US131799 - mesa-demos: add mesa-demos package to weston-demo template LIN1018-3665 - python3-blivetgui: Fix _supported_filesystems crash LIN1018-3583 - dhcp: Add the default route option none - wrlinux-overc: PR lockdown files update 2019-03-26 none - wrlinux-overc: hash lockdown files update 2019-03-26 LIN1018-2511 - vim: fix do patch warning none - wr-ostree-dl.xml: Add git mirrors for new wr-ostree-dl LIN1018-3088 - rrdtool: make thread safe none - lxc: remove perl-module-warnings-register from RDEPENDS none - lxc: uprev from 3.0.3 to 3.1.0 none - lxc: uprev from 3.0.2 to 3.0.3 none - netns: Use correct go toolchain none - docker: fix broken init script none - libvmi: add byacc-native to the DEPENDS none - xen: remove sse tuning flag none - ceph: fix rbd create operation not supported none - runc: refresh to tip of tree none - kata: WIP none - docker/docker-ce: uprev to 18.09 none - kubernetes: uprev to v1.12 release and fix cross compilation errors none - cri-o: update to 1.12 release none - cri-o: disable ptest build none - cni: update to latest plugins, and skip windows bridge build none - hyperstart: refresh/uprev core support ======================= LTS 18 Update 5 =============================== none - wrlinux-overc: PR lockdown files update 2019-03-24 none - wrlinux-overc: hash lockdown files update 2019-03-24 none - srcrev.inc: wrlinux srcrev update 2019-03-24 none - wrlinux-overc: PR lockdown files update 2019-03-21 none - wrlinux-overc: hash lockdown files update 2019-03-21 none - srcrev.inc: wrlinux srcrev update 2019-03-21 none - wrlinux-overc: PR lockdown files update 2019-03-21 none - wrlinux-overc: hash lockdown files update 2019-03-21 none - Updated docs for RCPL 5 with new FACE tutorial doc and container support LIN1018-3491 - krb5: Security Advisory - krb5 - CVE-2018-20217 LIN1018-3206 - perl: Security Advisory - perl - CVE-2018-18312 LIN1018-2974 - nasm: fix CVE-2018-16999 CVE-2018-19214 CVE-2018-19215 LIN1018-2952 - nasm: fix CVE-2018-16999 CVE-2018-19214 CVE-2018-19215 LIN1018-2918 - nasm: fix CVE-2018-16999 CVE-2018-19214 CVE-2018-19215 none - srcrev.inc: wrlinux srcrev update 2019-03-20 none - wrlinux-overc: PR lockdown files update 2019-03-20 none - wrlinux-overc: hash lockdown files update 2019-03-20 none - srcrev.inc: wrlinux srcrev update 2019-03-20 none - Merge branch 'wr-10.18-20181031' into WRLINUX_10_18_LTS LIN1018-3488 - makedumpfile: Upgrade to 1.6.5 to support kernel 4.18 and 4.19 LIN1018-3470 - makedumpfile: Add aarch64 into COMPATIBLE_HOST. none - Merge branch 'WRLINUX_10_18_BASE' into WRLINUX_10_18_LTS LIN1018-3488 - makedumpfile: upgrade to 1.6.5 none - wrlinux-overc: PR lockdown files update 2019-03-19 none - wrlinux-overc: hash lockdown files update 2019-03-19 LIN1018-3669 - kdump: Make makedumpfile into IMAGE by default [ LIN1018-3669 ] none - srcrev.inc: wrlinux srcrev update 2019-03-19 none - srcrev.inc: wrlinux srcrev update 2019-03-18 none - wrlinux-overc: PR lockdown files update 2019-03-18 none - wrlinux-overc: hash lockdown files update 2019-03-18 none - srcrev.inc: wrlinux srcrev update 2019-03-18 none - wrlinux-overc: PR lockdown files update 2019-03-15 none - wrlinux-overc: hash lockdown files update 2019-03-15 US131799 - wrlinux: add weston-demo template US131799 - Wayland: add wayland support for wrlinux none - srcrev.inc: wrlinux srcrev update 2019-03-14 none - wrlinux-overc: PR lockdown files update 2019-03-13 none - wrlinux-overc: hash lockdown files update 2019-03-13 LIN1018-3658 - crash: add build depend of xz none - srcrev.inc: wrlinux srcrev update 2019-03-12 none - wrlinux-overc: PR lockdown files update 2019-03-12 none - wrlinux-overc: hash lockdown files update 2019-03-12 LIN1018-551 - nasm: Security Advisory - nasm - CVE-2018-10254 LIN1018-3578 - libsndfile1: fix CVE-2018-19758 CVE-2019-3832 LIN1018-3237 - libsndfile1: fix CVE-2018-19758 CVE-2019-3832 none - srcrev.inc: wrlinux srcrev update 2019-03-11 none - wrlinux-overc: PR lockdown files update 2019-03-11 none - wrlinux-overc: hash lockdown files update 2019-03-11 LIN1018-3633 - wrlinux: add BBFILE_PATTERN_IGNORE_EMPTY_wr-nxp-ls20xx LIN1018-3653 - openssl10: Security Advisory - openssl - CVE-2019-1559 none - wrlinux-overc: PR lockdown files update 2019-03-08 none - wrlinux-overc: hash lockdown files update 2019-03-08 LIN1018-3651 - qemu: Security advisory - QEMU - CVE-2019-3812 none - Revert "wrlinux-image-initramfs: add the libgcc into the ramfs" LIN1018-3618 - cpio: Change the installation path of rmt to usr sbin dir LIN1018-3211 - nagios-core: Security Advisory - nagios-core - CVE-2018-18245 LIN1018-3597 - runc-docker: CVE-2019-5736 supplement fix none - srcrev.inc: wrlinux srcrev update 2019-03-07 none - wrlinux-overc: PR lockdown files update 2019-03-07 none - wrlinux-overc: hash lockdown files update 2019-03-07 none - Merge branch 'WRLINUX_10_18_BASE' into WRLINUX_10_18_LTS none - nxp-imx6-dl.xml: Add source.codeaurora.org.external.imx.uboot-imx.git for u-boot-imx_2018.03.bb none - srcrev.inc: wrlinux srcrev update 2019-03-06 LIN1018-3644 - wrlinux-image-ovp-kvm-minimal: adjust order for wrlinux-image processing none - srcrev.inc: wrlinux srcrev update 2019-03-05 none - wrlinux-version.inc: Move to update 5 none - wrlinux-overc: PR lockdown files update 2019-03-05 none - wrlinux-overc: hash lockdown files update 2019-03-05 none - srcrev.inc: wrlinux srcrev update 2019-03-04 LIN1018-3638 - net-snmp: inherit ptest none - wrlinux-overc: PR lockdown files update 2019-03-04 none - wrlinux-overc: hash lockdown files update 2019-03-04 LIN1018-3394 - openssh: fix CVE-2019-6109 CVE-2019-6111 LIN1018-3392 - openssh: fix CVE-2019-6109 CVE-2019-6111 none - srcrev.inc: wrlinux srcrev update 2019-03-03 none - IP disclosures - 2019-03-01 - 10.18.44.4 none - wrlinux-overc: PR lockdown files update 2019-02-28 none - wrlinux-overc: hash lockdown files update 2019-02-28 LIN1018-3541 - netkit-rsh: fix CVE-2019-7282 CVE-2019-7283 LIN1018-3510 - netkit-rsh: fix CVE-2019-7282 CVE-2019-7283 LIN1018-3584 - apt: Security Advisory - apt - CVE-2019-3462 LIN1018-3550 - apache2: Security Advisory - apache - CVE-2018-17189 US129467 - meta-freescale-dl.xml: Add source.codeaurora.org.external.qoriq.qoriq-components.rcw for rcw_git.bb US129467 - meta-freescale-dl.xml: Add source.codeaurora.org.external.qoriq.qoriq-components.ppa-generic for ppa_git.bb US129467 - meta-freescale-dl.xml: Add source.codeaurora.org.external.qoriq.qoriq-components.fmlib for fmlib_git.bb US129467 - meta-freescale-dl.xml: Add source.codeaurora.org.external.qoriq.qoriq-components.fmc for fmc_git.bb none - srcrev.inc: wrlinux srcrev update 2019-02-28 US129467 - meta-freescale-dl.xml: Add source.codeaurora.org.external.qoriq.qoriq-components.ppa-generic for ppa_git.bb US129467 - meta-freescale-dl.xml: Add source.codeaurora.org.external.qoriq.qoriq-components.rcw for rcw_git.bb US129467 - meta-freescale-dl.xml: Add source.codeaurora.org.external.qoriq.qoriq-components.fmc for fmc_git.bb US129467 - meta-freescale-dl.xml: Add source.codeaurora.org.external.qoriq.qoriq-components.fmlib for fmlib_git.bb LIN1018-3502 - python: Security Advisory - python - CVE-2019-5010 LIN1018-3469 - Lvm2: lvmdiskscan will print "/dev/hdc: open failed: No medium found" in qemu. none - wrlinux-overc: PR lockdown files update 2019-02-27 none - wrlinux-overc: hash lockdown files update 2019-02-27 LIN1018-3562 - gd & php: Security Advisory - php - CVE-2019-6977 LIN1018-3570 - gd & php: Security Advisory - gd - CVE-2019-6978 none - srcrev.inc: wrlinux srcrev update 2019-02-26 none - dpdk: update to f451d2b US129467 - meta-freescale: add BSP nxp-ls1046 support none - srcrev.inc: wrlinux srcrev update 2019-02-26 none - wrlinux-overc: PR lockdown files update 2019-02-26 none - wrlinux-overc: hash lockdown files update 2019-02-26 LIN1018-3598 - go: Security Advisory - go - CVE-2019-6486 LIN1018-3603 - alsa-plugins: update the source for alsa-plugins LIN1018-3603 - alsa-utils: update the source for alsa-utils LIN1018-3603 - alsa-lib: update the source for alsa-lib LIN1018-3594 - phpmyadmin: fix CVE-2019-6798 CVE-2019-6799 LIN1018-3518 - phpmyadmin: fix CVE-2019-6798 CVE-2019-6799 LIN1018-3567 - spice: Security Advisory - spice - CVE-2019-3813 ======================= LTS 18 Update 4 =============================== none - wrlinux-overc: PR lockdown files update 2019-02-25 none - wrlinux-overc: hash lockdown files update 2019-02-25 none - Merge branch 'wr-10.18-20190214' into WRLINUX_10_18_LTS LIN1018-3613 - Revert "image_types: use cpio-native to build cpio images" LIN1018-3513 - apache2: Security Advisory - apache - CVE-2018-17199 LIN1018-3501 - tiff: fix CVE-2019-6128 CVE-2019-7663 LIN1018-3397 - tiff: fix CVE-2019-6128 CVE-2019-7663 LIN1018-3555 - qemu: fix CVE-2019-6501 CVE-2019-6778 LIN1018-3526 - qemu: fix CVE-2019-6501 CVE-2019-6778 LIN1018-3614 - gnutls: fix do_patch warnings none - wrlinux-overc: PR lockdown files update 2019-02-22 none - Updated docs with new titles for RCPL 4 none - wrlinux-overc: hash lockdown files update 2019-02-22 none - Removed doc pdfs to replace with new books with product version in file name LIN1018-3589 - libsdl, libsdl2: fix CVE-2019-7636 CVE-2019-7638 LIN1018-3522 - libsdl, libsdl2: fix CVE-2019-7636 CVE-2019-7638 none - wrlinux-overc: hash lockdown files update 2019-02-22 LIN1019-617 - dpdk: Move OV specific tunes to a public place LIN1018-3484 - dpdk: Move OV specific tunes to a public place LIN1018-3601 - vim: Enable GUI support for x11 DISTRO_FEATURES LIN1018-3601 - vim: Fix "--enable-gtk2-test" unrecognized option error LIN1018-3601 - sysprof: inherit gsettings LIN1018-3559 - ghostscript: Fix CVE-2019-6116 none - wrlinux-overc: PR lockdown files update 2019-02-21 none - wrlinux-overc: hash lockdown files update 2019-02-21 LIN1018-3560 - libarchive: CVE-2019-1000019 CVE-2019-1000020 LIN1018-3531 - libarchive: CVE-2019-1000019 CVE-2019-1000020 none - wrlinux-overc: PR lockdown files update 2019-02-20 none - wrlinux-overc: hash lockdown files update 2019-02-20 none - srcrev.inc: wrlinux srcrev update 2019-02-20 LIN1018-3471 - Add support for posix_devctl() none - wrlinux-overc: PR lockdown files update 2019-02-20 none - wrlinux-overc: hash lockdown files update 2019-02-20 LIN1018-3488 - makedumpfile: Upgrade to 1.6.5 to support kernel 4.18 and 4.19 LIN1018-3488 - makedumpfile: upgrade to 1.6.5 none - srcrev.inc: wrlinux srcrev update 2019-02-19 LIN1018-3582 - subversion: CVE-2018-11803 none - wrlinux-overc: PR lockdown files update 2019-02-19 none - wrlinux-overc: hash lockdown files update 2019-02-19 none - srcrev.inc: wrlinux srcrev update 2019-02-19 none - wrlinux-overc: PR lockdown files update 2019-02-19 none - wrlinux-overc: hash lockdown files update 2019-02-19 none - srcrev.inc: wrlinux srcrev update 2019-02-19 none - systemd: Disable 3 patches temporarily none - Merge remote-tracking branch 'base/wr-10.18-20190214' into HEAD none - Merge remote-tracking branch 'base/wr-10.18-20190214' into WRLINUX_10_18_LTS US129402 - Update pkgs for rebasing to wr-10.18-20190214 LIN1018-3527 - lua: Security Advisory - lua - CVE-2019-6706 none - wrlinux-overc: PR lockdown files update 2019-02-18 none - wrlinux-overc: hash lockdown files update 2019-02-18 LIN1018-3530 - kea: Security Advisory - kea - CVE-2018-5739 LIN1018-3563 - elfutils: fix 4 CVEs LIN1018-3548 - elfutils: fix 4 CVEs LIN1018-3512 - elfutils: fix 4 CVEs LIN1018-3496 - elfutils: fix 4 CVEs none - wrlinux-overc: PR lockdown files update 2019-02-15 none - wrlinux-overc: hash lockdown files update 2019-02-15 LIN1018-3596 - curl: fix CVE-2018-16890 CVE-2019-3822 CVE-2019-3823 LIN1018-3561 - curl: fix CVE-2018-16890 CVE-2019-3822 CVE-2019-3823 LIN1018-3552 - curl: fix CVE-2018-16890 CVE-2019-3822 CVE-2019-3823 LIN1018-3597 - runc-docker: Security Advisory - runc - CVE-2019-5736 none - srcrev.inc: wrlinux srcrev update 2019-02-15 LIN1018-3473 - container-images: make a version of c3-*-containers available in wrlinux none - wrlinux-overc: PR lockdown files update 2019-02-14 none - wrlinux-overc: hash lockdown files update 2019-02-14 none - wrlinux-overc: hash lockdown files update 2019-02-13 LIN1018-3290 - tzdata/tzcode-native: update to 2018i LIN1018-3188 - linux-libc-headers: Fix build failure by using fixed input and output files instead of pipe LIN1018-3095 - grub-efi-native: workaround for fedora 29 LIN1018-2735 - testsdk: fix skipped testcase output "UNKNOWN" status while multiprocess execution none - srcrev.inc: wrlinux srcrev update 2019-02-13 US118188 - toaster: wrlinux-specific patch set none - layerindexlib: Add Wind River WRTemplate extension none - fetch2/git.py: fix the filename too long error none - bitbake-worker: Add DryRun event none - Add lib/toaster/orm/fixtures/custom.xml to .gitignore none - msg.py, knotty.py: Allow dynamic toggle of the debug log level none - knotty.py: update footer on dynamic log level change none - knotty.py: Extend knotty to support "real time" log tail for tasks none - knotty.py: Add the ability to dynamically select loglevel from stdin none - knotty.py: Add interactive commands to knotty none - knotty.py: Add ability to dynamically toggle log location LIN1018-1659 - python: add tk support LIN1018-1659 - libxt: extend to nativesdk LIN1018-1659 - libxft: extend to nativesdk LIN1018-1659 - libsm: extend to nativesdk LIN1018-1659 - libice: extend to nativesdk LIN1018-1659 - fontconfig: extend to nativesdk LIN1018-2885 - glide: disable ptest on mips LIN1018-1766 - toolchain-scripts.bbclass: fix paths of siteconfig files LIN1018-1659 - python3: add tk support US117235 - layer.conf: Add the 'wrl' tag in the LAYERSERIES_COMPAT LIN1018-2513 - libidn2: improve reproducibility none - initramfs-framework: Check if busybox is the VIRTUAL-RUNTIME_base-utils LIN10-2424 - populate_sdk_ext.bbclass: add ESDK_MANIFEST_EXCLUDES LIN1018-603 - testsdkext: remove workspace/sources to avoid failure in case of multilib LIN1018-494 - eudev: create static nodes from modules LIN1018-480 - dhcp: make dhclient to get configuration for other programs LIN1018-2283 - openssh: Restore TCP wrappers support LIN1018-2096 - staging.bbclass: avoid staging native components for target sysroot LIN1018-2085 - runtime selftest: hw breakpoint case correct syntax LIN1018-1809 - shadow: skip copying extended attributes in useradd when enable SELinux LIN1018-1807 - grub: testing assembly failure LIN1018-1676 - nfs-utils: fix build error under tests folder LIN1018-1376 - toolchain-shar-template.sh: do not offer sudo as an option LIN9-1350 - xinetd: add Init Script Actions to xinetd script LIN8-1655 - Use TUNE_CCARGS for target compilation LIN8-1048 - Use TUNE_CCARGS for target compilation LIN10-2175 - toolchain-scripts.bbclass: do not extend dependency if extended already LIN10-2116 - staging.bbclass: staging_populate_sysroot_dir(): fix for multilib LIN10-2116 - populate_sdk_ext.bbclass: fix for multilib none - conf/layer.conf: Add recommended download layer and update dl dependency version to 2.6 none - base.bbclass: Add buildcfg multilib values LIN8-478 - opkg-utils: Change alternatives lib path from /usr/lib/opkg to /var/lib/opkg none - wrlinux-overc: PR lockdown files update 2019-02-13 none - wrlinux-overc: hash lockdown files update 2019-02-13 none - srcrev.inc: wrlinux srcrev update 2019-02-13 none - Merge branch 'wr-10.18-20181031' into WRLINUX_10_18_LTS none - Revert "php: fix CVE-2017-9120" none - wrlinux-overc: PR lockdown files update 2019-02-12 none - wrlinux-overc: hash lockdown files update 2019-02-12 none - srcrev.inc: wrlinux srcrev update 2019-02-11 LIN1018-3470 - makedumpfile: Add aarch64 into COMPATIBLE_HOST. none - wrlinux-overc: PR lockdown files update 2019-01-30 none - wrlinux-overc: hash lockdown files update 2019-01-30 LIN1018-3461 - u-boot: get a series of patches for fixing CVE-2018-18439 and CVE-2018-18440 none - Revert "u-boot: add CVE patch to fix CVE-2018-18440" none - Revert "u-boot: add CVE patch to fix CVE-2018-18439" none - srcrev.inc: wrlinux srcrev update 2019-01-29 none - wrlinux-overc: PR lockdown files update 2019-01-29 none - wrlinux-overc: hash lockdown files update 2019-01-29 none - srcrev.inc: wrlinux srcrev update 2019-01-29 none - wrlinux-overc: PR lockdown files update 2019-01-28 none - wrlinux-overc: hash lockdown files update 2019-01-28 LIN1018-3022 - u-boot: add CVE patch to fix CVE-2018-18439 LIN1018-3021 - u-boot: add CVE patch to fix CVE-2018-18440 none - srcrev.inc: wrlinux srcrev update 2019-01-28 none - srcrev.inc: wrlinux srcrev update 2019-01-27 none - wrlinux-overc: PR lockdown files update 2019-01-25 none - wrlinux-overc: hash lockdown files update 2019-01-25 none - srcrev.inc: wrlinux srcrev update 2019-01-24 LIN1018-3440 - wrlinux-image-initramfs: add the libgcc into the ramfs LIN1018-3353 - ptest-runner: pass libdir to DEFAULT_DIRECTORY when compiling none - srcrev.inc: wrlinux srcrev update 2019-01-24 none - wrlinux-overc: PR lockdown files update 2019-01-24 none - wrlinux-overc: hash lockdown files update 2019-01-24 LIN1018-3436 - qemu: fix CVE patch bug LIN1018-3420 - openssl: fix multilib file install conflicts none - Merge branch 'WRLINUX_10_18_BASE' into WRLINUX_10_18_LTS US129463 - wrlinux-x: xml: add axxiaarm BSP relevant repo information LIN1018-3395 - polkit: Fix CVE-2019-6133 none - wrlinux-overc: PR lockdown files update 2019-01-23 none - wrlinux-overc: hash lockdown files update 2019-01-23 none - wrlinux-version.inc: Move to update 4 none - srcrev.inc: wrlinux srcrev update 2019-01-22 none - srcrev.inc: wrlinux srcrev update 2019-01-21 none - wrlinux-overc: PR lockdown files update 2019-01-21 none - wrlinux-overc: hash lockdown files update 2019-01-21 LIN1018-3386 - docker: Security Advisory - docker - CVE-2018-20699 LIN1018-3402 - binutils: Security Advisory - binutils - CVE-2018-20671 none - wrlinux-overc: PR lockdown files update 2019-01-17 none - wrlinux-overc: hash lockdown files update 2019-01-17 LIN1018-3408 - systemd: fix CVE-2018-16864 CVE-2018-16865 CVE-2018-16866 LIN1018-3404 - systemd: fix CVE-2018-16864 CVE-2018-16865 CVE-2018-16866 LIN1018-3379 - systemd: fix CVE-2018-16864 CVE-2018-16865 CVE-2018-16866 none - srcrev.inc: wrlinux srcrev update 2019-01-17 LIN1018-3398 - ceph: fix CVE-2018-14662 CVE-2018-16846 CVE-2018-16889 LIN1018-3385 - ceph: fix CVE-2018-14662 CVE-2018-16846 CVE-2018-16889 LIN1018-3376 - ceph: fix CVE-2018-14662 CVE-2018-16846 CVE-2018-16889 none - Merge branch 'wr-10.18-20181031' into WRLINUX_10_18_LTS LIN1018-3365 - fio: enable PMDK engines US127335 - pmdk: fix install error none - wrlinux-overc: PR lockdown files update 2019-01-16 none - wrlinux-overc: hash lockdown files update 2019-01-16 LIN1018-3412 - openssh: Security Advisory - openssh - CVE-2018-20685 none - Merge branch 'wr-10.18-20181031' into WRLINUX_10_18_LTS LIN1018-3283 - lxc: remove or rename kernel config [ LIN1018-3283 ] none - srcrev.inc: wrlinux srcrev update 2019-01-16 none - Merge branch 'wr-10.18-20181031' into WRLINUX_10_18_LTS LIN1018-3095 - grub-efi-native: workaround for fedora 29 none - Merge branch 'wr-10.18-20181031' into WRLINUX_10_18_LTS LIN1018-3419 - pmdk: force libraries to be installed to lib64 LIN1018-3374 - busybox: fix CVE-2018-20679 CVE-2019-5747 LIN1018-3373 - busybox: fix CVE-2018-20679 CVE-2019-5747 none - wrlinux-overc: PR lockdown files update 2019-01-15 none - wrlinux-overc: hash lockdown files update 2019-01-15 LIN1018-3366 - kern-tools: tools/kconf_check: modify grep pattern LIN1018-3366 - Revert "kern-tools: modify grep pattern for tools/kconf_check" LIN1018-3365 - fio: enable PMDK engines US127335 - pmdk: fix install error LIN1018-3346 - qemu: CVE list LIN1018-3323 - qemu: CVE list LIN1018-3313 - qemu: CVE list LIN1018-3312 - qemu: CVE list LIN1018-3291 - qemu: CVE list none - Merge branch 'wr-10.18-20181031' into WRLINUX_10_18_LTS US127335 - pmdk: add downloadfilename none - Merge branch 'WRLINUX_10_18_BASE' into WRLINUX_10_18_LTS US127335 - Add pmdk-1.4.2.tar.gz for pmdk_1.4.2.bb none - Updated docs for RCPL 3 none - build-appliance-image: Update to thud head revision none - bitbake-diffsigs: Support recursive deps with signature files none - bitbake-diffsigs: Merge with bitbake-dumpsig none - server/process: Show last 60 lines of the log if the server didn't start none - server/process: Show the last 60 log lines, not the last 10 none - server/process: print a message when no logfile none - server/process: Make lockfile handling clearer none - fetch: don't use shell=True when listing ar files none - layerindex: don't use shell=True when cloning none - linux-yocto: correct qemumips64el definition none - linux-yocto: configuration updates (virtio and tpm) none - valgrind: Skip vgpreload_memcheck shared object from stripping none - python3: drop redundant patch none - python3: don't cripple target distutils none - populate_sdk_ext.bbclass: Include site.conf in parsing for contents for local.conf none - nss: Fix SHA_HTONL bug for arm 32be. none - go 1.9/1.11: fix textrel qa warning for non mips arch none - gdb: Remove long ago upstreamed patch none - createrepo-c: Fix setup of logging (log domains) none - ruby: upgrade 2.5.1 -> 2.5.3 none - patchreview: Various fixes/improvements none - openssl: correct bad path on package preprocess none - linux-yocto/4.18: update to v4.18.21 none - linux-yocto/4.18: update to v4.18.20 none - linux-firmware: Bump revision to 1baa348 none - linux-firmware: better packaging for TI wl12xx & wl18xx firmwares none - insane: Clarify GNU_HASH warning none - classes/icecc.bbclass: Fix ccache disable none - linux-yocto/tiny: switch default branch to standard/tiny/base none - linux-yocto/tiny: restore qemuarm support none - linux-yocto: remove obselete options from lxc config none - linux-yocto/4.18: update to v4.18.17 none - linux-yocto/4.18: -rt sync and config cleanups none - linux-yocto/4.18: integrate CVE fixes none - linux-yocto/4.18: bug fixes and configuration tweaks none - linux-yocto/4.14: update to v4.14.79 none - linux-yocto/4.14: configuration cleanups none - python: Adds instructions to the manifest file none - piglit: add missing waffle-bin dependency none - licence: Add license file CC-BY-SA-4.0 none - libtasn1: no need to inherit binconfig none - libc-package: fix postinst error when ENABLE_BINARY_LOCALE_GENERATION = "0" none - image_types: use cpio-native to build cpio images none - binconfig: only try to mangles files none - scripts/runqemu: Fix logic error causing failures with MACHINE from the environment none - nspr: improve reproducibility none - meta-selftest/error: Cleanup large trailing whitespace none - ghostscript: 9.25 -> 9.26 none - cpio: fix crash when appending to archives none - gst-validate: upgrade 1.14.2 -> 1.14.4 none - gstreamer1.0-vaapi: upgrade 1.14.3 -> 1.14.4 none - gstreamer1.0-rtsp-server: upgrade 1.14.3 -> 1.14.4 none - gstreamer1.0-python: upgrade 1.14.3 -> 1.14.4 none - gstreamer1.0-omx: upgrade 1.14.3 -> 1.14.4 none - gstreamer1.0-libav: upgrade 1.14.3 -> 1.14.4 none - gstreamer1.0-vaapi: upgrade to version 1.14.3 none - gstreamer1.0: upgrade 1.14.3 -> 1.14.4 none - gstreamer1.0-python: upgrade to version 1.14.3 none - gstreamer1.0-plugins-ugly: upgrade 1.14.3 -> 1.14.4 none - gstreamer1.0-plugins-good: upgrade 1.14.3 -> 1.14.4 none - gstreamer1.0-plugins-base: upgrade 1.14.3 -> 1.14.4 none - gstreamer1.0-plugins-bad: upgrade 1.14.3 -> 1.14.4 none - gstreamer1.0-omx: upgrade to version 1.14.3 none - gst-plugins-bad: add PACKAGECONFIG for msdk none - maintainers.inc: update Intel owners none - gstreamer1.0: upgrade to version 1.14.3 none - gstreamer1.0-rtsp-server: upgrade to version 1.14.3 none - gstreamer1.0-plugin-ugly: upgrade to version 1.14.3 none - gstreamer1.0-plugin-good: upgrade to version 1.14.3 none - gstreamer1.0-plugin-base: upgrade to version 1.14.3 none - gstreamer1.0-plugin-bad: upgrade to version 1.14.3 none - gstreamer1.0-libav: upgrade to version 1.14.3 none - systemd: fix PN-container package splitting none - openssl: update to 1.1.1a none - multilib_script: fix packages split none - meson: Disable rpath stripping at install time none - meson: Correct use of the _append operator none - mdadm: improve the run-ptest none - image.bbclass: fix a wrong position blank none - devtool: fix target-deploy --strip none - archiver.bbclass: Fix COPYLEFT_LICENSE_{IN, EX}CLUDE none - sstate.bbclass: Only remove sstate file when task is existed none - meson: do not manipulate the environment when looking for python via pkg-config none - libgcrypt: upgrade 1.8.3 -> 1.8.4 none - iproute2: 4.18.0 -> 4.19.0 none - gnupg: upgrade 2.2.10 -> 2.2.11 none - ethtool: 4.17 -> 4.19 none - bugzilla.bbclass: Remove it since obsoleted none - reproducible: Refactor: Break out fixed_source_date_epoch() function none - reproducible: Don't look for youngest file when no source tarball none - recipes: Remove tab indentations in python code none - ptest: Reproducibility: Take control of umask none - gnutls: update to 3.6.4 none - gnupg: upgrade 2.2.9 -> 2.2.10 none - elfutils: 0.174 -> 0.175 none - classes: Remove tab indentations in python code none - boost-context: Reproducibility: Set .file section for all *_elf_gas.S files none - socat: fix LICENSE none - opkg-utils: Fix update-alternatives link relocation none - meta/icecc.bbclass: Update system blacklists none - meta/icecc.bbclass: Move system blacklist to variables none - siggen: Adapt colors used by bitbake-diffsigs to support light themes LIN1018-2984 - glusterfs: fix 6 CVEs LIN1018-2983 - glusterfs: fix 6 CVEs LIN1018-2982 - glusterfs: fix 6 CVEs LIN1018-2978 - glusterfs: fix 6 CVEs LIN1018-2960 - glusterfs: fix 6 CVEs LIN1018-2941 - glusterfs: fix 6 CVEs none - bitbake-user-manual: Added "usehead" parameter. none - oeqa/selftest/esdk: Fix typo causing test failure none - oeqa/selftest/esdk: Ensure parent directory exists none - main: Don't use print() directly, use logger none - process: Flush key output to logs none - fetch2/svn: Fix SVN repository concurrent update race none - runqueue: Ensure disk monitor is started when no setscene tasks are run none - server/process: Fix ConnectionRefusedError tracebacks none - fetch2: Avoid warning about incorrect character escaping in regex none - testimage/testsdk/selftest: Avoid platform.distro_identifier deprecation warnings none - oeqa/concurrencytest: Avoid unclosed file warnings none - oeqa/utils/qemurunner.py: Fix python regex warnings none - oeqa/selftest/context: Replace deprecated imp module usage none - oeqa/utils/commands: Avoid unclosed file warnings none - oeqa/core/runner: Correctly markup regexs none - oeqa/loader: Fix deprecation warning none - oeqa/runner: Sort the test result output by result class none - oeqa/runner: Always show a summary of success/fail/error/skip counts none - oeqa/selftest/esdk: run selftest inside workdir not /tmp none - oeqa: don't litter /tmp with temporary directories none - oeqa/utils/qemurunner: Avoid tracebacks on closed files none - oeqa/selftest/runqemu: Improve testcase failure handling none - lib/oe/utils: Improve multiprocess_lauch exception handling none - oeqa/oelib/path: don't leak temporary directories none - oeqa/selftest/context: Improve log file handling none - oeqa/selftest/buildoptions: Ensure diskmon tests run consistently none - oeqa/selftest/buildoptions: Improve ccache test none - oeqa/qemurunner: Remove resource python warnings none - oeqa/utils/commands: Avoid log message duplication none - oeqa/utils/qemurunner: Fix python ResourceWarning for unclosed file none - oeqa/utils/commands: Add extra qemu failure logging none - oeqa/selftest/buildoptions: Improve ccache test failure output none - oeqa/selftest/case: Use bb.utils.remove() instead of shutil.remove() none - oeqa/selftest/signing: Use do_populate_lic target instead of do_package none - oeqa/selftest/signing: Allow tests not to need gpg on the host none - oeqa/selftest/signing: Skip tests if gpg isn't found none - scripts/runqemu: Improve lockfile handling for python with close_fd=True none - scripts/runqemu: Tidy up lock handling code none - scripts/runqemu: Replace subprocess.run() for compatibilty none - gstreamer1.0-vaapi: downgrade vaapisink to marginal rank LIN1018-1659 - tk: update the parameter for --with-tcl LIN1018-1659 - tk: extend to nativesdk LIN1018-1659 - tk: export TK_LIBRARY='${libdir}/tk${VER}' LIN1018-3018 - vsftpd: allow getdents64 in the seccomp sandbox LIN1018-2468 - fixup! network-manager-applet: change default buildclass none - tests/fetch: Update after recent gitsm message changes none - cooker: Fix multiconfig dependencies none - fetch/git: fix AttributeError in shallow extraction logic none - sanity: Add check for WSL none - oeqa/utils/httpserver: Rework to avoid hangs and improve logging none - shadow: improve reproducibility by hard-coding shell path none - openssl-1.1.1: remove build path from version info none - busybox: make busybox.links.{suid, nosuid} reproducible none - curl: actually apply latest CVE patches none - unzip: actually apply CVE-2018-18384 none - valgrind: drop mips n32 support none - oeqa/selftest/recipetool: Fix problems from changing upstream source none - image-buildinfo,oeqa/selftest/containerimage: Ensure image-buildinfo doesn't break tests none - oeqa/selftest: Standardize json logging output directory none - glibc: make ld-2.28.so reproducible on arm none - binutils: fix four CVE issues none - base.bbclass: avoid 'find -ignore_readdir_race -delete' none - server/process: Fix unclosed socket warnings upon server connection refused none - perf: Disable libunwind for ARC & RISCV64 none - apt: update SRC_URI none - meta: Use double colon for chown OWNER:GROUP none - wic: use explicit errno import none - v86d: Make cross compilation working on more architectures none - scripts/autobuilder-worker-prereq-tests: adjust max_user_watches none - reproducible_build: update do_deploy_source_date_epoch commment none - python3: Fix python3-pyvenv run-time dependency none - python3: add python3-venv to the python3-modules RDEPENDS none - pixman: Trim license info extracted from pixman-matrix.c none - oeqa/selftest: Add test for Yocto source mirror functionality/completeness none - oeqa/runtime/ptest: Inject results+logs into stored json results file none - oe-init-buildenv/base: Relax python version checks in favour of HOSTTOOLS manipulation none - libgpg-error: Trim license info extracted from init.c & gpg-error.h.in none - libgpg-error: Support build for native on ppc64/ppc64le hosts none - go-dep: disable PTEST_ENABLED for mips and mips64 none - go: Change from TARGET_ARCH to TUNE_PKGARCH none - gdbm: fix ptest failure none - crosssdk: Remove usage of host flags for cross-compilation none - common-licenses: Correct the FreeType license text none - archiver: Drop unwanted directories none - apr-util: Trim license info extracted from apu_version.h none - apr: Trim license info extracted from apr_lib.h none - openssl: fix CVE-2018-0735 for 1.1.1 none - openssl: fix CVE-2018-0734 for both 1.0.2p and 1.1.1 none - ghostscript: fix CVE-2018-18284 none - ghostscript: fix CVE-2018-18073 none - ghostscript: fix CVE-2018-17961 none - elfutils: fix CVE-2018-18520 & CVE-2018-18521 & CVE-2018-18310 none - elfutils: 0.173 -> 0.174 none - curl: fix for CVE-2018-16839/CVE-2018-16840/CVE-2018-16842 none - unzip: fix for CVE-2018-18384 none - tzdata: update to 2018g none - tzcode-native: update to 2018g none - systemd: fix CVE-2018-15688 none - systemd: fix CVE-2018-15687 none - systemd: fix CVE-2018-15686 none - qemu: fix for CVE-2018-10839 none - nss: update to 3.39 includes CVE-2018-12384 none - nasm: fix CVE-2018-1000667 none - siggen: Correct format argument substitution none - fetch: Also export GIT_SSH environment variable none - bitbake: toaster: allow OE_ROOT to be provided through environment none - fetch2/gitsm.py: Fix the references when the module and path are different none - fetch2/gitsm.py: Disable branch checking on submodules none - xserver-xorg: fix CVE-2018-14665 ======================= LTS 18 Update 3 =============================== none - wrlinux-overc: PR lockdown files update 2019-01-10 none - wrlinux-overc: hash lockdown files update 2019-01-10 none - srcrev.inc: wrlinux srcrev update 2019-01-10 LIN1018-3363 - base.bbclass: avoid 'find -ignore_readdir_race -delete' LIN1018-3108 - wrlinux: set default network manager to bind none - srcrev.inc: wrlinux srcrev update 2019-01-09 none - Merge branch 'WRLINUX_10_18_BASE' into WRLINUX_10_18_LTS US118835 - Add CUnit-2.1-3.tar.bz2 for cunit_2.1-3.bb none - srcrev.inc: wrlinux srcrev update 2019-01-09 none - wrlinux-overc: PR lockdown files update 2019-01-09 none - wrlinux-overc: hash lockdown files update 2019-01-09 none - srcrev.inc: wrlinux srcrev update 2019-01-09 LIN1018-3318 - ghostscript: Fix CVE-2018-19134 and CVE-2018-19478 LIN1018-3308 - ghostscript: Fix CVE-2018-19134 and CVE-2018-19478 LIN1018-3095 - grub-efi-native: workaround for fedora 29 none - Merge branch 'WRLINUX_10_18_BASE' into WRLINUX_10_18_LTS none - srcrev.inc: wrlinux srcrev update 2019-01-08 US118835 - meta-freescale-dl.xml: Add source.codeaurora.org.external.qoriq.qoriq-components.u-boot for u-boot-qoriq_2018.03.bb US118835 - meta-freescale-dl.xml: Add source.codeaurora.org.external.qoriq.qoriq-components.restool for restool_git.bb US118835 - meta-freescale-dl.xml: Add source.codeaurora.org.external.qoriq.qoriq-components.qbman_userspace for dce_git.bb US118835 - meta-freescale-dl.xml: Add source.codeaurora.org.external.qoriq.qoriq-components.ofp for ofp_git.bb US118835 - meta-freescale-dl.xml: Add source.codeaurora.org.external.qoriq.qoriq-components.odp for odp_git.bb US118835 - meta-freescale-dl.xml: Add source.codeaurora.org.external.qoriq.qoriq-components.flib for odp_git.bb US118835 - meta-freescale-dl.xml: Add source.codeaurora.org.external.qoriq.qoriq-components.dpdk for dpdk_17.11.bb US118835 - meta-freescale-dl.xml: Add source.codeaurora.org.external.qoriq.qoriq-components.dce for dce_git.bb US118835 - meta-freescale-dl.xml: Add source.codeaurora.org.external.qoriq.qoriq-components.ceetm for ceetm_git.bb none - wrlinux-overc: PR lockdown files update 2019-01-08 none - wrlinux-overc: hash lockdown files update 2019-01-08 none - srcrev.inc: wrlinux srcrev update 2019-01-08 none - wrlinux-overc: PR lockdown files update 2019-01-08 none - wrlinux-overc: hash lockdown files update 2019-01-08 none - srcrev.inc: wrlinux srcrev update 2019-01-08 none - srcrev.inc: wrlinux srcrev update 2019-01-07 none - wrlinux-overc: PR lockdown files update 2019-01-07 none - wrlinux-overc: hash lockdown files update 2019-01-07 LIN1018-2468 - fixup! network-manager-applet: change default buildclass LIN1018-3296 - tar: Security Advisory - tar - CVE-2018-20482 LIN1018-3347 - binutils: fix CVE-2018-1000876 CVE-2018-20651 LIN1018-3330 - binutils: fix CVE-2018-1000876 CVE-2018-20651 LIN1018-2492 - openssl: fix parallel build problem LIN1018-3290 - tzdata/tzcode-native: mv the package to downloads none - Merge branch 'wr-10.18-20181031' into WRLINUX_10_18_LTS LIN1018-3290 - tzdata/tzcode-native: update to 2018i LIN1018-3290 - tzdata/tzcode-native: add source packages of 2018i none - wrlinux-overc: PR lockdown files update 2019-01-04 none - wrlinux-overc: hash lockdown files update 2019-01-04 LIN1018-3299 - sqlite3: Security Advisory - sqlite - CVE-2018-20346 none - srcrev.inc: wrlinux srcrev update 2019-01-04 LIN1018-3315 - wget: Security Advisory - wget - CVE-2018-20483 LIN1018-3340 - gnupg: Security Advisory - gnupg - CVE-2018-1000858 LIN1018-3341 - avahi: Security Advisory - avahi - CVE-2018-1000845 none - srcrev.inc: wrlinux srcrev update 2019-01-03 LIN1018-3310 - libjpeg-turbo: CVE-2018-19664 CVE-2018-20330 LIN1018-3224 - libjpeg-turbo: CVE-2018-19664 CVE-2018-20330 LIN1018-3325 - libsolv: CVE-2018-20532 CVE-2018-20533 CVE-2018-20534 LIN1018-3316 - libsolv: CVE-2018-20532 CVE-2018-20533 CVE-2018-20534 LIN1018-3301 - libsolv: CVE-2018-20532 CVE-2018-20533 CVE-2018-20534 LIN1018-3333 - nss: fix CVE-2018-12384 CVE-2018-12404 LIN1018-3042 - nss: fix CVE-2018-12384 CVE-2018-12404 none - wrlinux-overc: PR lockdown files update 2019-01-03 none - wrlinux-overc: hash lockdown files update 2019-01-03 LIN1018-3298 - python3: Security Advisory - python - CVE-2018-20406 LIN1018-3303 - cups: Security Advisory - cups - CVE-2018-4700 LIN1018-3264 - iw: fix parsing of WEP keys LIN1018-3329 - libarchive: fix 4 CVEs LIN1018-3307 - libarchive: fix 4 CVEs LIN1018-3304 - libarchive: fix 4 CVEs LIN1018-3297 - libarchive: fix 4 CVEs none - wrlinux-overc: PR lockdown files update 2018-12-29 none - wrlinux-overc: hash lockdown files update 2018-12-29 LIN1018-3052 - libsndfile1: Security Advisory - libsndfile1 - CVE-2018-19432 LIN1018-3041 - git: Security Advisory - git - CVE-2018-19486 LIN1018-3049 - sysstat: fix CVE-2018-19416 CVE-2018-19517 LIN1018-3035 - sysstat: fix CVE-2018-19416 CVE-2018-19517 none - Revert "sysstat: fix CVE-2018-19416 CVE-2018-19517" LIN1018-3049 - sysstat: fix CVE-2018-19416 CVE-2018-19517 LIN1018-3035 - sysstat: fix CVE-2018-19416 CVE-2018-19517 LIN1018-3033 - php: Security Advisory - php - CVE-2018-19518 LIN1018-2832 - systemd: fix CVE-2018-15686 CVE-2018-15688 LIN1018-2805 - systemd: fix CVE-2018-15686 CVE-2018-15688 none - wrlinux-overc: PR lockdown files update 2018-12-28 none - wrlinux-overc: hash lockdown files update 2018-12-28 LIN1018-3287 - oe-core: fix missing chkconfig header in init script LIN1018-2892 - openssl: Security Advisory - openssl - CVE-2018-5407 LIN1018-2862 - systemd: Security Advisory - systemd - CVE-2018-15687 LIN1018-3288 - nettle: build with c std as c99 LIN1018-2856 - unzip: fix for CVE-2018-18384 LIN1018-2847 - xserver-xorg: Security Advisory - xserver-xorg - CVE-2018-14665 LIN1018-2972 - postgresql: Security Advisory - postgresql - CVE-2018-16850 US127335 - ndctl: remove useless module-base inheriting US127335 - ndctl: v62 -> v63 none - wrlinux-overc: PR lockdown files update 2018-12-27 none - wrlinux-overc: hash lockdown files update 2018-12-27 none - qemu: fix the wrong CVE patch name with the content LIN1018-3047 - qemu: fix 5 CVEs LIN1018-2996 - qemu: fix 5 CVEs LIN1018-2953 - qemu: fix 5 CVEs LIN1018-2950 - qemu: fix 5 CVEs LIN1018-2942 - qemu: fix 5 CVEs LIN1018-2794 - qemu: fix for CVE-2018-10839 LIN1018-2845 - mariadb: Upgrade to 5.5.62 LIN1018-2796 - mariadb: Upgrade to 5.5.62 LIN1018-2845 - mariadb: Add source packages of version 5.5.62 LIN1018-2796 - mariadb: Add source packages of version 5.5.62 LIN1018-2818 - curl: fix for CVE-2018-16839/CVE-2018-16840/CVE-2018-16842 LIN1018-2812 - curl: fix for CVE-2018-16839/CVE-2018-16840/CVE-2018-16842 LIN1018-2798 - curl: fix for CVE-2018-16839/CVE-2018-16840/CVE-2018-16842 LIN1018-2838 - openssl: fix CVE-2018-0735 for 1.1.1 LIN1018-2821 - openssl: fix CVE-2018-0734 for both 1.0.2p and 1.1.1 LIN1018-3250 - glibc: Security Advisory - glibc - CVE-2018-19591 LIN1018-3260 - binutils: fix 7 CVEs LIN1018-3239 - binutils: fix 7 CVEs LIN1018-3208 - binutils: fix 7 CVEs LIN1018-2858 - binutils: fix 7 CVEs LIN1018-2835 - binutils: fix 7 CVEs LIN1018-2806 - binutils: fix 7 CVEs LIN1018-2802 - binutils: fix 7 CVEs none - wrlinux-overc: hash lockdown files update 2018-12-26 none - srcrev.inc: wrlinux srcrev update 2018-12-26 LIN1018-2843 - gcc: Add a recursion limit to libiberty's demangling code. The limit is enabled by default, but can be disabled via a new demangling option LIN1018-2843 - binutils: Synchronize libiberty with gcc and add --no-recruse-limit option to tools that support name demangling. LIN1018-2840 - gcc: Add a recursion limit to libiberty's demangling code. The limit is enabled by default, but can be disabled via a new demangling option LIN1018-2840 - binutils: Synchronize libiberty with gcc and add --no-recruse-limit option to tools that support name demangling. none - wrlinux-overc: PR lockdown files update 2018-12-26 none - wrlinux-overc: hash lockdown files update 2018-12-26 LIN1018-3257 - qemu: CVE list LIN1018-3242 - qemu: CVE list LIN1018-3233 - qemu: CVE list LIN1018-3196 - qemu: CVE list none - wrlinux-overc: PR lockdown files update 2018-12-25 none - wrlinux-overc: hash lockdown files update 2018-12-25 none - Merge branch 'wr-10.18-20181031' into WRLINUX_10_18_LTS LIN1018-3188 - linux-libc-headers: Fix build failure by using fixed input and output files instead of pipe LIN1018-3255 - php: Security Advisory - php - CVE-2018-19935 LIN1018-3200 - gnutls: Security Advisory - gnutls - CVE-2018-16868 LIN1018-3212 - nasm: Security Advisory - nasm - CVE-2018-19755 none - wrlinux-overc: PR lockdown files update 2018-12-24 none - wrlinux-overc: hash lockdown files update 2018-12-24 LIN1018-3197 - nettle: Security Advisory - nettle - CVE-2018-16869 LIN1018-3188 - linux-libc-headers: Fix build failure by using fixed input and output files instead of pipe LIN1018-3119 - ptpd: fixed the issue of ptpd2 daemon takes 100% CPU none - wrlinux-overc: PR lockdown files update 2018-12-23 none - wrlinux-overc: hash lockdown files update 2018-12-23 LIN1018-3219 - phpmyadmin: fix 2 CVEs LIN1018-3205 - phpmyadmin: fix 2 CVEs LIN1018-3258 - libsndfile1: fix 2 CVEs LIN1018-3215 - libsndfile1: fix 2 CVEs LIN1018-3249 - go: fix 3 CVEs LIN1018-3230 - go: fix 3 CVEs LIN1018-3201 - go: fix 3 CVEs none - wrlinux-overc: PR lockdown files update 2018-12-22 none - wrlinux-overc: hash lockdown files update 2018-12-22 LIN1018-3251 - perl: fix 3 CVEs LIN1018-3248 - perl: fix 3 CVEs LIN1018-3232 - perl: fix 3 CVEs none - wrlinux-overc: PR lockdown files update 2018-12-21 none - wrlinux-overc: hash lockdown files update 2018-12-21 none - srcrev.inc: wrlinux srcrev update 2018-12-21 LIN8-10245 - samba: fix 4 CVEs LIN1018-3276 - samba: fix 4 CVEs LIN1018-3261 - samba: fix 4 CVEs LIN1018-3244 - samba: fix 4 CVEs none - srcrev.inc: wrlinux srcrev update 2018-12-20 none - wrlinux-overc: PR lockdown files update 2018-12-20 none - wrlinux-overc: hash lockdown files update 2018-12-20 none - srcrev.inc: wrlinux srcrev update 2018-12-20 none - wrlinux-overc: hash lockdown files update 2018-12-20 none - srcrev.inc: wrlinux srcrev update 2018-12-20 LIN1018-2822 - tiff: CVE-2018-18661 LIN1018-2849 - tiff: CVE-2018-18557 none - Merge branch 'wr-10.18-20181031' into WRLINUX_10_18_LTS LIN1018-3122 - openvswitch: Add new option to use short hostname for ovs-ctl script none - Merge branch 'wr-10.18-20181031' into WRLINUX_10_18_LTS US112062 - libvmi: add byacc-native to the DEPENDS LIN1018-2410 - tiff: CVE-2018-17101 LIN1018-2372 - tiff: CVE-2018-17100 LIN1018-2358 - tiff: CVE-2018-15209 and CVE-2017-11613 LIN1018-2020 - tiff: CVE-2018-15209 and CVE-2017-11613 none - wrlinux-overc: PR lockdown files update 2018-12-19 none - wrlinux-overc: hash lockdown files update 2018-12-19 none - wrlinux-version.inc: Move to update 3 none - Merge remote-tracking branch 'origin/WRLINUX_10_18_BASE' into WRLINUX_10_18_LTS US127335 - meta-oe-dl-2-6.xml: Add github.com.pmem.ndctl.git for ndctl_git.bb US112062 - libvmi: Remove local recipe LIN1018-3059 - thin-provisioning tools: use sh on path for txt2man none - wrlinux-overc: PR lockdown files update 2018-12-18 none - wrlinux-overc: hash lockdown files update 2018-12-18 none - Merge branch 'WRLINUX_10_18_BASE' into WRLINUX_10_18_LTS US120128 - wrlinux-x: xml: add xilinx-zynqmp graphic repo information none - srcrev.inc: wrlinux srcrev update 2018-12-18 LIN1018-3122 - openvswitch: Add new option to use short hostname for ovs-ctl script US112062 - libvmi: add byacc-native to the DEPENDS US112062 - kern-tools: modify grep pattern for tools/kconf_check US112062 - Add byacc-20180510.tgz for byacc_20180510.bb none - wrlinux-overc: PR lockdown files update 2018-12-17 none - wrlinux-overc: hash lockdown files update 2018-12-17 none - srcrev.inc: wrlinux srcrev update 2018-12-17 TA239351 - feature/tcpslice: add template to enable tcpslice TA239351 - tcpslice: add tarball none - srcrev.inc: wrlinux srcrev update 2018-12-16 LIN1018-3053 - README: update copyright info LIN1018-3053 - RADME: update copyright year info none - README: refine format LIN1018-1788 - template.conf: enable tk for python in nativesdk env LIN1018-3053 - README & layer.conf: update copyright and version info LIN1018-3053 - README: update copyright info LIN1018-3053 - README & layer.conf: update copyright and version info LIN1018-3053 - README: update copyright info LIN1018-3053 - README & layer.conf: update copyright and version info LIN1018-3053 - README: update copyright info LIN1018-3053 - README: update copyright info and refine format LIN1018-3053 - README & layer.conf: update copyright and version info LIN1018-3053 - README: update copyright info LIN1018-3053 - README: fix copyright info LIN1018-3053 - README: update copyright info LIN1018-3053 - README & layer.conf: update copyright and version info LIN1018-3053 - README: update copyright info LIN1018-3053 - README & layer.conf: update copyright and version info none - Merge remote-tracking branch 'origin/WRLINUX_10_18_BASE' into WRLINUX_10_18_LTS US112062 - meta-virtualization-dl-2-6.xml: Add github.com.libvmi.libvmi.git for libvmi_git.bb none - wrlinux-overc: PR lockdown files update 2018-12-10 none - wrlinux-overc: hash lockdown files update 2018-12-10 LIN1018-2861 - gettext: fix CVE-2018-18751 LIN1018-3082 - opkg-utils: set OPKGLIBDIR to target_localstatedir none - wrlinux-overc: PR lockdown files update 2018-12-07 none - wrlinux-overc: hash lockdown files update 2018-12-07 none - wrlinux-overc: PR lockdown files update 2018-12-07 LIN1018-2735 - testsdk: fix skipped testcase output "UNKNOWN" status while multiprocess execution LIN1018-3007 - fix live iso not booted with writable rootfs none - srcrev.inc: wrlinux srcrev update 2018-12-07 none - wrlinux-overc: hash lockdown files update 2018-12-07 none - srcrev.inc: wrlinux srcrev update 2018-12-07 LIN1018-3081 - openssl: fix create the .rnd file it it does not exist none - Merge branch 'WRLINUX_10_18_BASE' into WRLINUX_10_18_LTS LIN1018-3078 - local.conf.sample: Add the disclaimer indicating for removing debug-tweaks feature LIN1018-3078 - image: cleanup the setting of debug-tweaks feature ======================= LTS 18 Update 2 =============================== none - Updated docs for RCPL 2 LIN1018-1659 - tk: add source none - wrlinux-overc: PR lockdown files update 2018-12-04 none - wrlinux-overc: hash lockdown files update 2018-12-04 none - srcrev.inc: wrlinux srcrev update 2018-12-03 none - Merge branch 'WRLINUX_10_18_BASE' into WRLINUX_10_18_LTS US118378 - meta-oe-dl-2-6.xml: Add git.pengutronix.de.git.tools.libsocketcan.git for libsocketcan_0.0.10.bb US118378 - meta-oe-dl-2-6.xml: Add github.com.linux-can.can-utils.git for can-utils_git.bb none - wrlinux-overc: PR lockdown files update 2018-12-03 none - wrlinux-overc: hash lockdown files update 2018-12-03 LIN1018-1659 - feature/python-tkinter: add a new template to enable tkinter LIN1018-1659 - tk: update the parameter for --with-tcl LIN1018-1659 - tk: extend to nativesdk LIN1018-1659 - tk: export TK_LIBRARY='${libdir}/tk${VER}' LIN1018-3018 - vsftpd: allow getdents64 in the seccomp sandbox LIN1018-1659 - libsm: extend to nativesdk LIN1018-1659 - libice: extend to nativesdk LIN1018-1659 - fontconfig: extend to nativesdk LIN1018-1659 - libxft: extend to nativesdk LIN1018-1659 - libxt: extend to nativesdk LIN1018-1659 - python: add tk support LIN1018-1659 - python3: add tk support none - Adding updated recipe lists for GA none - wrlinux-version.inc: Move to update 2 none - Updates to transition guide and OverC for LIN1018-2701 none - Updated LTS18 docs for RTO none - Removing deprecated security flags tutorial none - Updated documentation files for RTO none - Added latest docs for pre-RTO update none - Moved README.txt to docs folder