1.0 ROLLING CUMULATIVE PATCH LAYER OVERVIEW This is a Rolling Cumulative Patch Layer for the base Wind River Linux LTS 19 release. This RCPL provides fixes for known problems. For information on updating your projects, see the Product Updates section of the Wind River Linux Getting Started guide. https://docs.windriver.com/bundle/Wind_River_Linux_Getting_Started_LTS_19/page/tfk1473951651031.html The update procedure involves updating your projectDir/wrlinux-x repository, and then re-running the setup.sh program with the original arguments. The procedure for upgrading your project is shown in the Updating Wind River Linux section of that guide: https://docs.windriver.com/bundle/Wind_River_Linux_Getting_Started_LTS_19/page/mmo1403548753903.html 2.0 RCPL Update Implementation The distribution is a set of git repositories that are used to generate project directories at setup time. An RCPL appends new fixes to these repositories. As a result, the git repositories can grow with each new RCPL. The product name branches include two specific branch names. The first is a continuous integration branch. The continuous integration branch tracks the latest RCPL version release by Wind River, and does not include an RCPL number. For example: * WRLINUX_10_19_BASE * WRLINUX_10_19_LTS These branches will always match the latest released RCPL. The second branch name is RCPL-specific, with a reference to a specific RCPL, such as: * WRLINUX_10_19_BASE_UPDATE0001 * WRLINUX_10_19_LTS_RCPL0002 To identify which branch you are on, run the following commands: $ cd projectDir/wrlinux-x $ git branch 3.0 Selecting a specific RCPL Follow the procedure as indicated in the Updating Wind River Linux section of the Wind River Linux Getting Started guide located at: https://docs.windriver.com/bundle/Wind_River_Linux_Getting_Started_LTS_19/page/mmo1403548753903.html In step 3, of the procedure you will use the branchName of the RCPL that you wish to use. For example: $ git checkout WRLINUX_10_19_LTS_RCPL0002 4.0 Change Log The following is a summary of the changes made in each RCPL version. The initial product distribution occurred with RCPL0001. Defect List: ======================= LTS 19 Update 30 =============================== LIN1019-4971 - qemu: fix CVE-2020-15469 LIN1019-10639 - gnutls: fix CVE-2023-5981 none - srcrev.inc: wrlinux srcrev update 2023-11-26 LIN1019-10616 - gstreamer1.0-plugins-bad: fix CVE-2023-44446 LIN1019-9696 - dmidecode: fix CVE-2023-30630 none - srcrev.inc: wrlinux srcrev update 2023-11-26 none - srcrev.inc: wrlinux srcrev update 2023-11-11 LIN1019-10596 - postgresql: fix CVE-2023-5868, CVE-2023-5869, CVE-2023-5870 LIN1019-10595 - postgresql: fix CVE-2023-5868, CVE-2023-5869, CVE-2023-5870 LIN1019-10594 - postgresql: fix CVE-2023-5868, CVE-2023-5869, CVE-2023-5870 LIN1019-10575 - open-vm-tools: Fix CVE-2023-34058, CVE-2023-34059 LIN1019-10574 - open-vm-tools: Fix CVE-2023-34058, CVE-2023-34059 LIN1019-10585 - libbytesize: fix do_fetch warning LIN1019-10585 - acpica, sysstat: fix do_fetch warnings LIN1019-10492 - vim: Upgrade 9.0.2009 -> 9.0.2048 LIN1019-10492 - vim: Upgrade 9.0.1894 -> 9.0.2009 LIN1019-10438 - vim: Upgrade 9.0.2009 -> 9.0.2048 LIN1019-10438 - vim: Upgrade 9.0.1894 -> 9.0.2009 LIN1019-10437 - vim: Upgrade 9.0.2009 -> 9.0.2048 LIN1019-10437 - vim: Upgrade 9.0.1894 -> 9.0.2009 LIN1019-10478 - libxml2: fix CVE-2023-45322 LIN1019-10204 - mdadm: fix CVE-2023-28938 none - srcrev.inc: wrlinux srcrev update 2023-11-05 none - srcrev.inc: wrlinux srcrev update 2023-11-04 LIN1019-10550 - kernel cleanup for unused variables LIN1019-10557 - xserver-xorg: fix CVE-2023-5367, CVE-2023-5380 LIN1019-10556 - xserver-xorg: fix CVE-2023-5367, CVE-2023-5380 LIN1019-10555 - traceroute: upgrade to 2.1.3 LIN1019-10555 - traceroute: upgrade 2.1.2 -> 2.1.3 LIN1019-10555 - traceroute: upgrade 2.1.1 -> 2.1.2 LIN1019-10555 - traceroute: upgrade 2.1.0 -> 2.1.1 none - Merge branch 'wr-10.19-20191106' into WRLINUX_10_19_LTS LIN1019-10579 - seloader: add 'protocol=https' to SRC_URI LIN1019-10578 - grubby: switch to main branch none - srcrev.inc: wrlinux srcrev update 2023-10-27 LIN1019-10565 - netplan: switch to main branch LIN1019-10564 - vlock: update SRC_URI LIN1019-10257 - binutils: fix CVE-2022-48065 LIN1019-10256 - binutils: fix CVE-2022-48064 LIN1019-10255 - binutils: fix CVE-2022-48063 LIN1019-10252 - binutils: fix CVE-2022-47673 LIN1019-10247 - binutils: fix CVE-2022-45703 LIN1019-10246 - binutils: fix CVE-2022-44840 LIN1019-10563 - anspass: add 'protocol=https' to SRC_URI LIN1019-10027 - gstreamer1.0-plugins-base: fix CVE-2023-37328 LIN1019-10026 - gstreamer1.0-plugins-bad: fix CVE-2023-37329 LIN1019-10025 - gstreamer1.0-plugins-good: fix CVE-2023-37327 LIN1019-10025 - gstreamer1.0-plugins-base: fix CVE-2023-37327 LIN1019-10436 - grub: fix CVE-2023-4692, CVE-2023-4693 LIN1019-10435 - grub: fix CVE-2023-4692, CVE-2023-4693 LIN1019-10543 - redis: fix CVE-2023-45145 LIN1019-10501 - zlib: fix CVE-2023-45853 LIN1019-10203 - mdadm: fix CVE-2023-28736 LIN1019-8809 - docker: fix CVE-2022-36109 LIN1019-10251 - binutils: fix CVE-2022-47011 LIN1019-10250 - binutils: fix CVE-2022-47010 LIN1019-10249 - binutils: fix CVE-2022-47008 LIN1019-10248 - binutils: fix CVE-2022-47007 none - srcrev.inc: wrlinux srcrev update 2023-10-19 LIN1019-10270 - c-ares: fix CVE-2020-22217 none - srcrev.inc: wrlinux srcrev update 2023-10-19 LIN1019-10010 - go: fix CVE-2023-29406 LIN1019-9562 - go: fix CVE-2023-24534 LIN1019-10488 - nginx: fix CVE-2023-44487 LIN1019-10432 - hwlatdetect: switch to main branch LIN1019-10433 - waffle: update SRC_URI LIN1019-10431 - systemd-bootchart: switch to main branch LIN1019-9928 - open-vm-tools: Fix CVE-2023-20867, CVE-2023-20900 LIN1019-10327 - open-vm-tools: Fix CVE-2023-20867, CVE-2023-20900 LIN1019-10120 - go: fix CVE-2023-29409 LIN1019-10354 - go: fix CVE-2023-39319 none - srcrev.inc: wrlinux srcrev update 2023-10-13 LIN1019-9975 - cups: fix CVE-2023-34241 LIN1019-7075 - mdadm: skip running known broken ptests LIN1019-7075 - mdadm: fix segfaults when running ptests LIN1019-7075 - mdadm: fix 07revert-inplace ptest LIN1019-10288 - mozjs: update SRC_URI none - srcrev.inc: wrlinux srcrev update 2023-10-07 LIN1019-10288 - dpkg: update SRC_URI LIN1019-10226 - tiff: fix patch name CVE-2022-40090 LIN1019-10427 - Revert "libwebp: fix CVE-2023-5129" LIN1019-10417 - bind: fix CVE-2023-3341 none - srcrev.inc: wrlinux srcrev update 2023-10-05 LIN1019-10427 - libwebp: fix CVE-2023-5129 LIN1019-9745 - go: fix CVE-2023-29400 LIN1019-9744 - go: fix CVE-2023-24540 LIN1019-9743 - go: fix CVE-2023-24539 LIN1019-10353 - go: fix CVE-2023-39318 LIN1019-9621 - go: fix CVE-2023-24538 LIN1019-10397 - libwebp: fix CVE-2023-4863 LIN1019-10324 - python3-git: fix CVE-2023-41040 LIN1019-10271 - flac: fix CVE-2020-22219 LIN1019-10226 - tiff: Fix CVE-2023-2908, CVE-2023-3618, CVE-2022-40090 LIN1019-10038 - tiff: Fix CVE-2023-2908, CVE-2023-3618, CVE-2022-40090 LIN1019-10009 - tiff: Fix CVE-2023-2908, CVE-2023-3618, CVE-2022-40090 none - srcrev.inc: wrlinux srcrev update 2023-09-25 LIN1019-10398 - libgssglue: fix do_fetch failure LIN1019-10365 - vim: Upgrade 9.0.1664 -> 9.0.1894 LIN1019-10365 - vim: upgrade 9.0.1592 -> 9.0.1664 LIN1019-10365 - vim: update obsolete comment LIN1019-10366 - dropbear: fix CVE-2023-36328 LIN1019-9791 - perl: fix CVE-2023-31486 LIN1019-10282 - hwloc: fix CVE-2022-47022 LIN1019-10239 - python3: fix CVE-2022-48565 LIN1019-10240 - python3: fix CVE-2022-48566 LIN1019-10285 - binutils: fix CVE-2020-19724 LIN1019-10259 - binutils: fix CVE-2021-46174 LIN1019-10242 - binutils: fix CVE-2020-21490 none - srcrev.inc: wrlinux srcrev update 2023-09-12 LIN1019-10140 - procps: fix CVE-2023-4016 LIN1019-10326 - shadow: fix CVE-2023-4641 LIN1019-10319 - libxml2: fix CVE-2023-39615 LIN1019-10266 - ghostscript: fix CVE-2020-21710, CVE-2020-21890 LIN1019-10265 - ghostscript: fix CVE-2020-21710, CVE-2020-21890 LIN1019-10191 - inetutils: fix CVE-2023-40303 LIN1019-10381 - switch git-repo to corresponding branch none - Merge branch 'WRLINUX_10_19_BASE' into WRLINUX_10_19_LTS LIN1019-10381 - switch git-repo to corresponding branch none - Merge branch 'wr-10.19-20191106' into WRLINUX_10_19_LTS LIN1019-10378 - python3-blivetgui: use branch main none - wrlinux-version.inc: Move to update 30 LIN1019-10237 - python3: fix CVE-2022-48560 LIN1019-10183 - ffmpeg: fix CVE-2020-36138, CVE-2021-28429 LIN1019-10182 - ffmpeg: fix CVE-2020-36138, CVE-2021-28429 LIN1019-10181 - poppler: fix CVE-2020-36023, CVE-2020-36024 LIN1019-10180 - poppler: fix CVE-2020-36023, CVE-2020-36024 LIN1019-10279 - busybox: fix CVE-2022-48174 LIN1019-10150 - gawk: fix CVE-2023-4156 LIN1019-10238 - python3: fix CVE-2022-48564 LIN1019-10146 - php: fix CVE-2023-3823, CVE-2023-3824 LIN1019-10145 - php: fix CVE-2023-3823, CVE-2023-3824 LIN1019-9695 - ncurses: CVE-2023-29491 mitigation LIN1019-9829 - libcap: fix CVE-2023-2603 LIN1019-10110 - openssl: upgrade tar.gz 1.1.1u -> 1.1.1v LIN1019-10040 - openssl: upgrade tar.gz 1.1.1u -> 1.1.1v LIN1019-10110 - openssl: upgrade 1.1.1u -> 1.1.1v LIN1019-10040 - openssl: upgrade 1.1.1u -> 1.1.1v none - srcrev.inc: wrlinux srcrev update 2023-08-25 none - Merge branch 'wr-10.19-20191106' into WRLINUX_10_19_LTS LIN1019-10163 - intel-microcode: upgrade 20230512 -> 20230808 LIN1019-10163 - intel-microcode: upgrade 20230214 -> 20230512 LIN1019-10162 - intel-microcode: upgrade 20230512 -> 20230808 LIN1019-10162 - intel-microcode: upgrade 20230214 -> 20230512 LIN1019-9454 - intel-microcode: upgrade 20221108 -> 20230214 LIN1019-9453 - intel-microcode: upgrade 20221108 -> 20230214 LIN1019-9452 - intel-microcode: upgrade 20221108 -> 20230214 LIN1019-9451 - intel-microcode: upgrade 20221108 -> 20230214 LIN1019-9454 - intel-microcode: upgrade 20220809 -> 20221108 LIN1019-9453 - intel-microcode: upgrade 20220809 -> 20221108 LIN1019-9452 - intel-microcode: upgrade 20220809 -> 20221108 LIN1019-9451 - intel-microcode: upgrade 20220809 -> 20221108 LIN1019-8694 - intel-microcode: upgrade 20220510 -> 20220809 LIN1019-8693 - intel-microcode: update SRCREV for 20220510 LIN1019-8318 - intel-microcode: upgrade 20220419 -> 20220510 LIN1019-8317 - intel-microcode: upgrade 20220419 -> 20220510 LIN1019-8318 - intel-microcode: upgrade 20220207 -> 20220419 LIN1019-8317 - intel-microcode: upgrade 20220207 -> 20220419 LIN1019-7886 - intel-microcode: upgrade 20210608 -> 20220207 LIN1019-10137 - postfix: add support for Linux 6.x none - srcrev.inc: wrlinux srcrev update 2023-08-25 LIN1019-9997 - qemu: fix CVE-2023-3180 CVE-2023-3354 LIN1019-10144 - qemu: fix CVE-2023-3180 CVE-2023-3354 LIN1019-9662 - screen: Fix CVE-2023-24626 LIN1019-10164 - libqb: fix CVE-2023-39976 LIN1019-7481 - sbsigntool: update repo LIN1019-6714 - intel-microcode: upgrade 20210216 -> 20210608 LIN1019-6714 - intel-microcode: upgrade 20201118 -> 20210216 LIN1019-6714 - intel-microcode: upgrade 20201112 -> 20201118 LIN1019-6714 - intel-microcode: fix the license md5sum LIN1019-6713 - intel-microcode: upgrade 20210216 -> 20210608 LIN1019-6713 - intel-microcode: upgrade 20201118 -> 20210216 LIN1019-6713 - intel-microcode: upgrade 20201112 -> 20201118 LIN1019-6713 - intel-microcode: fix the license md5sum LIN1019-6706 - intel-microcode: upgrade 20210216 -> 20210608 LIN1019-6706 - intel-microcode: upgrade 20201118 -> 20210216 LIN1019-6706 - intel-microcode: upgrade 20201112 -> 20201118 LIN1019-6706 - intel-microcode: fix the license md5sum LIN1019-6714 - intel-microcode: upgrade 20201110 -> 20201112 LIN1019-6714 - intel-microcode: upgrade 20200616 -> 20201110 LIN1019-6714 - intel-microcode: upgrade 20200609 -> 20200616 LIN1019-6713 - intel-microcode: upgrade 20201110 -> 20201112 LIN1019-6713 - intel-microcode: upgrade 20200616 -> 20201110 LIN1019-6713 - intel-microcode: upgrade 20200609 -> 20200616 LIN1019-6706 - intel-microcode: upgrade 20201110 -> 20201112 LIN1019-6706 - intel-microcode: upgrade 20200616 -> 20201110 LIN1019-6706 - intel-microcode: upgrade 20200609 -> 20200616 LIN1019-4829 - intel-microcode: upgrade version 20200609 ======================= LTS 19 Update 29 =============================== none - Updated docs for RCPL 29 LIN1019-10116 - python3-certifi: fix CVE-2023-37920 LIN1019-10138 - ghostscript: fix CVE-2023-38559 none - srcrev.inc: wrlinux srcrev update 2023-08-10 LIN1019-10091 - libpcre2: fix CVE-2022-41409 LIN1019-10135 - poppler: fix CVE-2023-34872 none - srcrev.inc: wrlinux srcrev update 2023-08-04 LIN1019-10121 - yasm: fix CVE-2023-37732 LIN1019-9673 - ntp: add template for 4.2.8p17 LIN1019-9669 - ntp: add template for 4.2.8p17 none - Merge branch 'WRLINUX_10_19_BASE' into WRLINUX_10_19_LTS LIN1019-9673 - add ntp-4.2.8p17.tar.gz LIN1019-9669 - add ntp-4.2.8p17.tar.gz none - Merge branch 'wr-10.19-20191106' into WRLINUX_10_19_LTS LIN1019-9673 - ntp: add V-4.2.8p17 LIN1019-9669 - ntp: add V-4.2.8p17 none - Merge branch 'wr-10.19-20191106' into WRLINUX_10_19_LTS LIN1019-10048 - go-mux, go-context: fix do_fetch warnings LIN1019-8232 - Use 'https' protocol for github repos LIN1019-8231 - Use 'https' protocol for github repos LIN1019-8230 - Use 'https' protocol for github repos LIN1019-6538 - go-systemd: explicitly specify branch LIN1019-8012 - cni: switch to main branch none - Merge branch 'wr-10.19-20191106' into WRLINUX_10_19_LTS LIN1019-10048 - byacc: fix do_fetch warning LIN1019-10048 - bmap-tools: fix do_fetch warning LIN1019-9968 - bind: fix CVE-2023-2828 LIN1019-9998 - ruby: fix CVE-2023-36617 LIN1019-8841 - consul: fix CVE-2022-40716 none - srcrev.inc: wrlinux srcrev update 2023-07-26 none - srcrev.inc: wrlinux srcrev update 2023-07-22 LIN1019-9815 - yasm: fix CVE-2023-31975 LIN1019-7075 - mdadm: remove service template from SYSTEMD_SERVICE LIN1019-7075 - mdadm: fix util-linux ptest dependency LIN1019-7075 - mdadm: fix tests/05r1-re-add-nosuper ptest LIN1019-7075 - mdadm: fix more ptests LIN1019-7075 - mdadm: correctly set up testing location for ptests LIN1019-9955 - tiff: Fix CVE-2023-26965, CVE-2023-3316, CVE-2023-30086 LIN1019-9926 - tiff: Fix CVE-2023-26965, CVE-2023-3316, CVE-2023-30086 LIN1019-9809 - tiff: Fix CVE-2023-26965, CVE-2023-3316, CVE-2023-30086 LIN1019-10030 - redis: fix CVE-2022-24834 none - srcrev.inc: wrlinux srcrev update 2023-07-17 LIN1019-10028 - krb5: fix CVE-2023-36054 none - srcrev.inc: wrlinux srcrev update 2023-07-16 none - srcrev.inc: wrlinux srcrev update 2023-07-13 none - Merge branch 'wr-10.19-20191106' into WRLINUX_10_19_LTS LIN1019-10006 - dialog: fix do_fetch warning none - srcrev.inc: wrlinux srcrev update 2023-07-11 LIN1019-9811 - vim: upgrade 9.0.1527 -> 9.0.1592 LIN1019-9811 - vim: upgrade 9.0.1429 -> 9.0.1527 LIN1019-9810 - vim: upgrade 9.0.1527 -> 9.0.1592 LIN1019-9810 - vim: upgrade 9.0.1429 -> 9.0.1527 LIN1019-9789 - vim: upgrade 9.0.1527 -> 9.0.1592 LIN1019-9789 - vim: upgrade 9.0.1429 -> 9.0.1527 LIN1019-9306 - qemu: fix CVE-2023-0330 LIN1019-9939 - rabbitmq-c: fix CVE-2023-35789 LIN1019-9899 - classes/populate_sdk_base: Implement xz compression options none - srcrev.inc: wrlinux srcrev update 2023-07-04 LIN1019-9890 - go: fix CVE-2023-29405 LIN1019-9889 - go: fix CVE-2023-29404 LIN1019-8766 - sqlite3: fix CVE-2020-35525 CVE-2020-35527 LIN1019-8765 - sqlite3: fix CVE-2020-35525 CVE-2020-35527 LIN1019-9927 - php: fix CVE-2023-3247 LIN1019-9838 - curl: fix CVE-2023-28321 LIN1019-9839 - curl: fix CVE-2023-28322 LIN1019-9457 - curl: fix CVE-2023-23916 LIN1019-9303 - libxpm: change 3.5.15 to tar.xz LIN1019-9302 - libxpm: change 3.5.15 to tar.xz LIN1019-9301 - libxpm: change 3.5.15 to tar.xz LIN1019-9303 - libxpm: upgrade tar.gz 3.5.12 -> 3.5.15 LIN1019-9302 - libxpm: upgrade tar.gz 3.5.12 -> 3.5.15 LIN1019-9301 - libxpm: upgrade tar.gz 3.5.12 -> 3.5.15 LIN1019-9303 - xorg-lib-common: Add variable to set tarball type LIN1019-9303 - libxpm: upgrade 3.5.14 -> 3.5.15 LIN1019-9303 - libxpm: upgrade 3.5.12 -> 3.5.13 LIN1019-9303 - libxpm: update 3.5.13 -> 3.5.14 LIN1019-9302 - xorg-lib-common: Add variable to set tarball type LIN1019-9302 - libxpm: upgrade 3.5.14 -> 3.5.15 LIN1019-9302 - libxpm: upgrade 3.5.12 -> 3.5.13 LIN1019-9302 - libxpm: update 3.5.13 -> 3.5.14 LIN1019-9301 - xorg-lib-common: Add variable to set tarball type LIN1019-9301 - libxpm: upgrade 3.5.14 -> 3.5.15 LIN1019-9301 - libxpm: upgrade 3.5.12 -> 3.5.13 LIN1019-9301 - libxpm: update 3.5.13 -> 3.5.14 none - Merge branch 'wr-10.19-20191106' into WRLINUX_10_19_LTS LIN1019-9956 - python-pyparted: branch rename master -> main none - srcrev.inc: wrlinux srcrev update 2023-06-20 LIN1019-9856 - c-ares: fixes CVE-2023-31124 CVE-2023-31130 CVE-2023-31147 and CVE-2023-32067 LIN1019-9855 - c-ares: fixes CVE-2023-31124 CVE-2023-31130 CVE-2023-31147 and CVE-2023-32067 LIN1019-9854 - c-ares: fixes CVE-2023-31124 CVE-2023-31130 CVE-2023-31147 and CVE-2023-32067 LIN1019-9853 - c-ares: fixes CVE-2023-31124 CVE-2023-31130 CVE-2023-31147 and CVE-2023-32067 none - srcrev.inc: wrlinux srcrev update 2023-06-19 LIN1019-9908 - dbus: fix CVE-2023-34969 LIN1019-9930 - openssl: fix mips64 build after upgrade to 1.1.1u LIN1019-9909 - qemu: fix CVE-2023-2861 LIN1019-9876 - openldap: fix CVE-2023-2953 LIN1019-9389 - apr: Add apr-1.7.2.tar.bz2 LIN1019-9389 - apr: update 1.7.0 -> 1.7.2 LIN1019-9389 - apr: Cache configure tests which use AC_TRY_RUN LIN1019-8471 - libjpeg-turbo: fix CVE-2021-46822 none - Merge branch 'WRLINUX_10_19_BASE' into WRLINUX_10_19_LTS LIN1019-9879 - openssl: upgrade tar.gz 1.1.1t -> 1.1.1u LIN1019-9619 - openssl: upgrade tar.gz 1.1.1t -> 1.1.1u LIN1019-9609 - openssl: upgrade tar.gz 1.1.1t -> 1.1.1u LIN1019-9603 - openssl: upgrade tar.gz 1.1.1t -> 1.1.1u LIN1019-9879 - openssl: upgrade 1.1.1t -> 1.1.1u LIN1019-9619 - openssl: upgrade 1.1.1t -> 1.1.1u LIN1019-9609 - openssl: upgrade 1.1.1t -> 1.1.1u LIN1019-9603 - openssl: upgrade 1.1.1t -> 1.1.1u LIN1019-9403 - harfbuzz: Security fix for CVE-2023-25193 none - srcrev.inc: wrlinux srcrev update 2023-06-11 none - Merge branch 'WRLINUX_10_19_BASE' into WRLINUX_10_19_LTS LIN1019-9755 - meta-freescale-dl.xml: Migrate codeaurora repos to github LIN1019-9752 - meta-freescale-dl.xml: Migrate codeaurora repos to github none - Merge branch 'WRLINUX_10_19_BASE' into WRLINUX_10_19_LTS LIN1019-9755 - meta-freescale: migrate IMX repos from codeaurora to github (for QorIQ) LIN1019-9755 - meta-freescale: migrate IMX repos from codeaurora to github LIN1019-9752 - meta-freescale: migrate IMX repos from codeaurora to github (for QorIQ) LIN1019-9752 - meta-freescale: migrate IMX repos from codeaurora to github LIN1019-9906 - runc-docker: revert CVE-2021-30465, CVE-2023-27561, CVE-2023-28642 fixes none - wrlinux-version.inc: Move to update 29 LIN1019-6291 - avahi: fix CVE-2021-3468 none - srcrev.inc: wrlinux srcrev update 2023-05-30 LIN1019-9852 - gcc: preprocessor: Fix ICE with too long line in fmtwarn LIN1019-9859 - python3-requests: fix CVE-2023-32681 LIN1019-9846 - sysstat: fix CVE-2023-33204 none - srcrev.inc: wrlinux srcrev update 2023-05-25 none - Updated docs for RCPL 28 none - srcrev.inc: wrlinux srcrev update 2023-05-24 LIN1019-9464 - python3: fix CVE-2023-24329 LIN1019-9805 - postgresql: fix CVE-2023-2454, CVE-2023-2455 LIN1019-9804 - postgresql: fix CVE-2023-2454, CVE-2023-2455 LIN1019-9793 - libwebp: fix CVE-2023-1999 LIN1019-5179 - python3-twisted: fix CVE-2020-10108, CVE-2020-10109 LIN1019-5178 - python3-twisted: fix CVE-2020-10108, CVE-2020-10109 none - Merge branch 'wr-10.19-20191106' into WRLINUX_10_19_LTS LIN1019-9826 - liblockfile, netkit-rsh: fix do_fetch warnings LIN1019-9826 - chkconfig: fix do_fetch warnings LIN1019-8497 - curl: fix CVE-2022-32208 LIN1019-7125 - ceph: update SRC_URI ======================= LTS 19 Update 28 =============================== none - srcrev.inc: wrlinux srcrev update 2023-05-16 LIN1019-9790 - perl: fix CVE-2023-31484 LIN1019-9439 - tiff: Fix 10 CVEs LIN1019-9438 - tiff: Fix 10 CVEs LIN1019-9437 - tiff: Fix 10 CVEs LIN1019-9436 - tiff: Fix 10 CVEs LIN1019-9435 - tiff: Fix 10 CVEs LIN1019-8681 - gnutls: fix CVE-2022-2509 LIN1019-9646 - ghostscript: fix CVE-2023-28879 LIN1019-9420 - samba: fix CVE-2022-41916 LIN1019-9694 - protobuf-c: fix CVE-2022-48468 LIN1019-9537 - gnutls: explicitly set --with-librt-prefix LIN1019-9537 - gnutls: add ptest support LIN1019-9770 - git: fix CVE-2023-25652 CVE-2023-29007 LIN1019-9768 - git: fix CVE-2023-25652 CVE-2023-29007 none - srcrev.inc: wrlinux srcrev update 2023-05-08 LIN1019-9248 - lxc: fix CVE-2022-47952 LIN1019-9633 - runc-docker: fix CVE-2019-19921, CVE-2021-30465, CVE-2023-27561, CVE-2023-28642 LIN1019-9544 - runc-docker: fix CVE-2019-19921, CVE-2021-30465, CVE-2023-27561, CVE-2023-28642 LIN1019-6563 - runc-docker: fix CVE-2019-19921, CVE-2021-30465, CVE-2023-27561, CVE-2023-28642 LIN1019-4041 - runc-docker: fix CVE-2019-19921, CVE-2021-30465, CVE-2023-27561, CVE-2023-28642 LIN1019-2825 - runc: fix CVE-2019-16884 LIN1019-2825 - runc-docker: follow-up fix for CVE-2019-16884 LIN1019-9678 - connman: fix CVE-2023-28488 none - Merge branch 'wr-10.19-20200305' into WRLINUX_10_19_LTS LIN1019-9775 - fetch/git: Fix local clone url to make it work with repo none - Merge branch 'WRLINUX_10_19_BASE' into WRLINUX_10_19_LTS LIN1019-9754 - meta-freescale-dl.xml: update git repository for tsntool none - Merge branch 'WRLINUX_10_19_BASE' into WRLINUX_10_19_LTS LIN1019-9754 - tsntool: fix do_fetch error LIN1019-9753 - nxp-s32g2xx-dl.xml: update git repository for u-boot-s32 LIN1019-9703 - redis: fix CVE-2023-28856 LIN1019-7257 - qemu: fix CVE-2020-14394 LIN1019-9701 - freetype: fix CVE-2023-2004 LIN1019-9377 - tar: fix error CVE-2022-48303.patch LIN1019-9377 - tar: Update fix for CVE-2022-48303 to upstream version none - srcrev.inc: wrlinux srcrev update 2023-05-04 LIN1019-9664 - openvswitch: fix CVE-2023-1668 LIN1019-9606 - go: fix CVE-2023-24537 LIN1019-9700 - shadow: fix CVE-2023-29383 none - srcrev.inc: wrlinux srcrev update 2023-05-03 LIN1019-9732 - python3-sqlparse: fix CVE-2023-30608 LIN1019-9579 - sudo: fix CVE-2023-28486, CVE-2023-28487 LIN1019-9578 - sudo: fix CVE-2023-28486, CVE-2023-28487 LIN1019-2011 - ruby: some ptest fixes none - srcrev.inc: wrlinux srcrev update 2023-04-28 LIN1019-9751 - binutils: fix CVE-2023-2222 LIN1019-9561 - vim: upgrade to 9.0.1403 LIN1019-9561 - vim: upgrade 9.0.1403 -> 9.0.1429 LIN1019-9561 - vim: set modified-by to the recipe MAINTAINER LIN1019-9561 - vim: add missing pkgconfig inherit LIN1019-9552 - vim: upgrade to 9.0.1403 LIN1019-9552 - vim: upgrade 9.0.1403 -> 9.0.1429 LIN1019-9552 - vim: set modified-by to the recipe MAINTAINER LIN1019-9552 - vim: add missing pkgconfig inherit LIN1019-9539 - vim: upgrade to 9.0.1403 LIN1019-9539 - vim: upgrade 9.0.1403 -> 9.0.1429 LIN1019-9539 - vim: set modified-by to the recipe MAINTAINER LIN1019-9539 - vim: add missing pkgconfig inherit LIN1019-9538 - vim: upgrade to 9.0.1403 LIN1019-9538 - vim: upgrade 9.0.1403 -> 9.0.1429 LIN1019-9538 - vim: set modified-by to the recipe MAINTAINER LIN1019-9538 - vim: add missing pkgconfig inherit LIN1019-9529 - vim: upgrade to 9.0.1403 LIN1019-9529 - vim: upgrade 9.0.1403 -> 9.0.1429 LIN1019-9529 - vim: set modified-by to the recipe MAINTAINER LIN1019-9529 - vim: add missing pkgconfig inherit LIN1019-9679 - avahi: fix CVE-2023-1981 none - srcrev.inc: wrlinux srcrev update 2023-04-25 LIN1019-9675 - libxml2: fix CVE-2023-28484, CVE-2023-29469 LIN1019-9674 - libxml2: fix CVE-2023-28484, CVE-2023-29469 none - srcrev.inc: wrlinux srcrev update 2023-04-24 none - srcrev.inc: wrlinux srcrev update 2023-04-18 LIN1019-9644 - ruby: fix CVE-2023-28755, CVE-2023-28756 LIN1019-9629 - ruby: fix CVE-2023-28755, CVE-2023-28756 LIN1019-9345 - pkgconf: Fix CVE-2023-24056 none - srcrev.inc: wrlinux srcrev update 2023-04-07 LIN1019-9635 - ffmpeg: fix CVE-2022-48434 LIN1019-9474 - epiphany: fix CVE-2023-26081 LIN1019-6824 - qemu: fix CVE-2021-3638 LIN1019-9642 - nasm: fix CVE-2022-44370 LIN1019-9639 - xserver-xorg: fix CVE-2023-1393 LIN1019-8495 - curl: fix CVE-2022-32206 LIN1019-9599 - curl: fix CVE-2023-27534 CVE-2023-27535 CVE-2023-27536 and CVE-2023-27538 LIN1019-9597 - curl: fix CVE-2023-27534 CVE-2023-27535 CVE-2023-27536 and CVE-2023-27538 LIN1019-9596 - curl: fix CVE-2023-27534 CVE-2023-27535 CVE-2023-27536 and CVE-2023-27538 LIN1019-9595 - curl: fix CVE-2023-27534 CVE-2023-27535 CVE-2023-27536 and CVE-2023-27538 LIN1019-8806 - python3: fix CVE-2020-10735 LIN1019-9282 - libsdl2: fix CVE-2022-4743 LIN1019-8740 - sqlite3: fix CVE-2021-20223 LIN1019-9577 - dnsmasq: fix CVE-2023-28450 LIN1019-8678 - curl: Add missing CRLF characters to test cases none - srcrev.inc: wrlinux srcrev update 2023-03-30 LIN1019-9119 - libarchive: fix CVE-2022-36227 LIN1019-9222 - libkbsa: Fix CVE-2022-3515, CVE-2022-47629 LIN1019-8985 - libkbsa: Fix CVE-2022-3515, CVE-2022-47629 none - srcrev.inc: wrlinux srcrev update 2023-03-28 none - Merge branch 'wr-10.19-20200305' into WRLINUX_10_19_LTS LIN1019-9611 - bitbake: fetch2/git: Prevent git fetcher from fetching gitlab repository metadata LIN1019-9611 - bitbake: fetch2: Change git fetcher not to destroy old references LIN1019-9611 - bitbake: bitbake: fetch/git: use shlex.quote() to support spaces in SRC_URI url LIN1019-9611 - bitbake: bitbake: fetch/git: add support for SRC_URI containing spaces in url LIN1019-9426 - c-ares: fix CVE-2022-4904 none - srcrev.inc: wrlinux srcrev update 2023-03-24 none - srcrev.inc: wrlinux srcrev update 2023-03-23 none - srcrev.inc: wrlinux srcrev update 2023-03-22 LIN1019-9563 - samba: fix CVE-2022-3437 CVE-2022-45142 LIN1019-9021 - samba: fix CVE-2022-3437 CVE-2022-45142 none - srcrev.inc: wrlinux srcrev update 2023-03-21 none - srcrev.inc: wrlinux srcrev update 2023-03-18 LIN1019-9565 - go: fix net/http/httputil TestReverseProxyQueryParameterSmugglingDirectorParsesForm test none - srcrev.inc: wrlinux srcrev update 2023-03-18 LIN1019-9425 - binutils: fix CVE-2023-25587, CVE-2023-25588 LIN1019-9424 - binutils: fix CVE-2023-25587, CVE-2023-25588 LIN1019-9480 - staging: Separate out different multiconfig manifests LIN1019-9480 - staging/multilib: Fix manifest corruption LIN1019-9462 - containerd-opencontainers: fix CVE-2023-25153 none - srcrev.inc: wrlinux srcrev update 2023-03-14 LIN1019-9096 - curl: Fix regression issue of CVE-2022-27776 LIN1019-9096 - curl: Fix regression issue of CVE-2022-27775 LIN1019-9096 - curl: Fix regression issue of CVE-2022-27774 LIN1019-9096 - curl: Disable testcase: 2075, 2076 LIN1019-8678 - curl: Fix regression issue of CVE-2022-22947 LIN1019-8678 - curl: Fix regression issue of CVE-2021-22946 LIN1019-8678 - curl: Fix regression issue of CVE-2021-22876 LIN1019-8678 - curl: Copy lib,src to pass ptest 1221, 1222 LIN1019-9446 - go: fix CVE-2022-41723 none - srcrev.inc: wrlinux srcrev update 2023-03-12 none - srcrev.inc: wrlinux srcrev update 2023-03-11 LIN1019-9293 - apache2: fix CVE-2006-20001 LIN1019-9297 - apache2: fix CVE-2022-37436 LIN1019-9554 - apache2: fix CVE-2023-27522 LIN1019-9391 - apr-util: upgrade tar.gz 1.6.1 -> 1.6.3 LIN1019-9391 - apr-util: update 1.6.1 -> 1.6.3 LIN1019-8856 - strace: update SRC_URI LIN1019-9553 - apache2: fix CVE-2023-25690 LIN1019-9165 - freeradius: Fix CVE-2022-41860, CVE-2022-41861 LIN1019-9164 - freeradius: Fix CVE-2022-41860, CVE-2022-41861 LIN1019-9296 - apache2: fix CVE-2022-36760 LIN1019-9445 - git: fix CVE-2023-23946 none - srcrev.inc: wrlinux srcrev update 2023-03-07 LIN1019-9507 - redis: fix CVE-2022-36021, CVE-2023-25155 LIN1019-9506 - redis: fix CVE-2022-36021, CVE-2023-25155 LIN1019-9549 - piglit: add git source branch to main LIN1019-9444 - git: fix CVE-2023-22490 none - srcrev.inc: wrlinux srcrev update 2023-03-06 none - srcrev.inc: wrlinux srcrev update 2023-03-05 LIN1019-9300 - git: fix CVE-2022-41903 LIN1019-9443 - php: fix CVE-2023-0567, CVE-2023-0568, CVE-2023-0662 LIN1019-9442 - php: fix CVE-2023-0567, CVE-2023-0568, CVE-2023-0662 LIN1019-9441 - php: fix CVE-2023-0567, CVE-2023-0568, CVE-2023-0662 LIN1019-4830 - nagios-core: fix CVE-2020-13977 LIN1019-8980 - git: fix CVE-2022-39260 none - wrlinux-version.inc: Move to update 28 none - srcrev.inc: wrlinux srcrev update 2023-03-01 LIN1019-6019 - cups: fix CVE-2020-10001 LIN1019-9475 - Common native package list update LIN1019-9299 - git: fix CVE-2022-23521 LIN1019-9428 - gnutls: fix CVE-2023-0361 LIN1019-8979 - git: fix CVE-2022-39253 LIN1019-9084 - python3: fix CVE-2022-37454, CVE-2022-45061 LIN1019-8996 - python3: fix CVE-2022-37454, CVE-2022-45061 LIN1019-9419 - python3-cryptography: fix CVE-2023-23931 none - srcrev.inc: wrlinux srcrev update 2023-02-24 LIN1019-9369 - vim: upgrade 9.0.0947 -> 9.0.1211 LIN1019-9369 - vim: upgrade 9.0.0820 -> 9.0.0947 LIN1019-9369 - vim: update 9.0.1211 -> 9.0.1293 to resolve open CVEs LIN1019-9344 - vim: upgrade 9.0.0947 -> 9.0.1211 LIN1019-9344 - vim: upgrade 9.0.0820 -> 9.0.0947 LIN1019-9344 - vim: update 9.0.1211 -> 9.0.1293 to resolve open CVEs LIN1019-9339 - vim: upgrade 9.0.0947 -> 9.0.1211 LIN1019-9339 - vim: upgrade 9.0.0820 -> 9.0.0947 LIN1019-9339 - vim: update 9.0.1211 -> 9.0.1293 to resolve open CVEs none - srcrev.inc: wrlinux srcrev update 2023-02-24 none - Merge branch 'WRLINUX_10_19_BASE' into WRLINUX_10_19_LTS LIN1019-9473 - data/xml/nxp-imx-dl.xml: update git SRC_URI none - Merge branch 'WRLINUX_10_19_BASE' into WRLINUX_10_19_LTS LIN1019-9473 - u-boot-imx: update git SRC_URI LIN1019-9454 - intel-microcode: upgrade 20221108 -> 20230214 LIN1019-9454 - intel-microcode: upgrade 20220809 -> 20221108 LIN1019-9453 - intel-microcode: upgrade 20221108 -> 20230214 LIN1019-9453 - intel-microcode: upgrade 20220809 -> 20221108 LIN1019-9452 - intel-microcode: upgrade 20221108 -> 20230214 LIN1019-9452 - intel-microcode: upgrade 20220809 -> 20221108 LIN1019-9451 - intel-microcode: upgrade 20221108 -> 20230214 LIN1019-9451 - intel-microcode: upgrade 20220809 -> 20221108 LIN1019-8908 - dropbear: fix CVE-2021-36369 LIN1019-9448 - python3-werkzeug: fix CVE-2023-23934 LIN1019-9440 - phpmyadmin: fix CVE-2023-25727 ======================= LTS 19 Update 27 =============================== none - Merge branch 'WRLINUX_10_19_BASE' into WRLINUX_10_19_LTS LINUXEXEC-25387 - Enable handling of local and remote layers in setup LIN1019-9351 - phpmyadmin: fix CVE-2020-22452 LIN1019-7973 - containerd-opencontainers: fix CVE-2022-23648 LIN1019-9166 - containerd-opencontainers: fix CVE-2022-23471 LIN1019-3876 - tigervnc: fix CVE-2019-15692, CVE-2019-15694 LIN1019-3874 - tigervnc: fix CVE-2019-15692, CVE-2019-15694 LIN1019-9416 - openssl: add feature openssl-111q LIN1019-9413 - openssl: add feature openssl-111q LIN1019-9412 - openssl: add feature openssl-111q LIN1019-9411 - openssl: add feature openssl-111q none - Merge branch 'WRLINUX_10_19_BASE' into WRLINUX_10_19_LTS LIN1019-9416 - openssl: add tar.gz for openssl-1.1.1t LIN1019-9413 - openssl: add tar.gz for openssl-1.1.1t LIN1019-9412 - openssl: add tar.gz for openssl-1.1.1t LIN1019-9411 - openssl: add tar.gz for openssl-1.1.1t LIN1019-9416 - openssl: upgrade 1.1.1q -> 1.1.1t LIN1019-9416 - openssl: make 1.1.1t the default version LIN1019-9413 - openssl: upgrade 1.1.1q -> 1.1.1t LIN1019-9413 - openssl: make 1.1.1t the default version LIN1019-9412 - openssl: upgrade 1.1.1q -> 1.1.1t LIN1019-9412 - openssl: make 1.1.1t the default version LIN1019-9411 - openssl: upgrade 1.1.1q -> 1.1.1t LIN1019-9411 - openssl: make 1.1.1t the default version LIN1019-8863 - go: fix CVE-2022-2880 LIN1019-9406 - xserver-xorg: fix CVE-2023-0494 LIN1019-9409 - valgrind: FILESEXTRAPATHS uses prepend instead of append none - srcrev.inc: wrlinux srcrev update 2023-02-09 LIN1019-5077 - zabbix: fix CVE-2019-15132, CVE-2020-15803 LIN1019-2195 - zabbix: fix CVE-2019-15132, CVE-2020-15803 none - Merge branch 'WRLINUX_10_19_BASE' into WRLINUX_10_19_LTS LIN1019-9350 - u-boot-qoriq: fix i2c dma cache coherency issues LIN1019-9346 - tiff: Fix CVE-2022-48281 none - srcrev.inc: wrlinux srcrev update 2023-02-08 LIN1019-9298 - phoronix-test-suite: fix CVE-2022-40704 LIN1019-9376 - lighttpd: fix references a path below legacy directory warning LIN1019-8761 - bluez5: further fix CVE-2022-39176, CVE-2022-39177 LIN1019-8760 - bluez5: further fix CVE-2022-39176, CVE-2022-39177 LIN1019-9352 - sssd: fix CVE-2022-4254 none - srcrev.inc: wrlinux srcrev update 2023-02-02 LIN1019-8465 - go: fix CVE-2022-30632 none - srcrev.inc: wrlinux srcrev update 2023-01-30 LIN1019-9264 - php: fix CVE-2022-31631 LIN1019-9020 - multipath-tools: fix CVE-2022-41974 none - srcrev.inc: wrlinux srcrev update 2023-01-23 LIN1019-8426 - grub: fix CVE-2022-28736 LIN1019-8426 - grub-efi: refresh patches LIN1019-9335 - sudo: fix CVE-2023-22809 LIN1019-9290 - redis: fix CVE-2022-35977 none - srcrev.inc: wrlinux srcrev update 2023-01-17 LIN1019-8552 - u-boot: fix CVE-2022-2347 LIN1019-9273 - pseudo: fix multiple definition of `pseudo_access_t' LIN1019-9272 - pseudo: Fix pseudo to work with glibc 2.33 LIN1019-9271 - binutils: fix a missing include of string none - srcrev.inc: wrlinux srcrev update 2023-01-11 LIN1019-8747 - mariadb: upgrade to 10.3.37 LIN1019-8527 - mariadb: upgrade to 10.3.37 LIN1019-8521 - mariadb: upgrade to 10.3.37 LIN1019-8747 - mariadb: upgrade to 10.3.37 in order to fix CVE-2022-32084,CVE-2022-32091,CVE-2022-38791 LIN1019-8527 - mariadb: upgrade to 10.3.37 in order to fix CVE-2022-32084,CVE-2022-32091,CVE-2022-38791 LIN1019-8521 - mariadb: upgrade to 10.3.37 in order to fix CVE-2022-32084,CVE-2022-32091,CVE-2022-38791 none - srcrev.inc: wrlinux srcrev update 2023-01-10 LIN1019-9239 - samba: fix CVE-2022-44640 none - srcrev.inc: wrlinux srcrev update 2023-01-09 LIN1019-9080 - net-snmp: fix CVE-2022-44792, CVE-2022-44793 LIN1019-9079 - net-snmp: fix CVE-2022-44792, CVE-2022-44793 none - srcrev.inc: wrlinux srcrev update 2023-01-09 LIN1019-9250 - ffmpeg: fix CVE-2022-3341 LIN1019-9256 - libgssglue: fix do_fetch failure none - srcrev.inc: wrlinux srcrev update 2023-01-03 LIN1019-9220 - ppp: Fix CVE-2022-4603 LIN1019-9190 - xserver-xorg: fix CVE-2022-46340 -> CVE-2022-46344, CVE-2022-4283 LIN1019-9185 - xserver-xorg: fix CVE-2022-46340 -> CVE-2022-46344, CVE-2022-4283 LIN1019-9223 - patchelf: fix CVE-2022-44940 LIN1019-7522 - libarchive: the other part of CVE-2021-31566 none - srcrev.inc: wrlinux srcrev update 2022-12-31 LIN1019-8553 - dpdk: net/i40e/base: fix PF reset LIN1019-9085 - systemd: fix CVE-2022-3821 LIN1019-9066 - sysstat: Fix CVE-2022-39377 none - Merge branch 'wr-10.19-20191106' into WRLINUX_10_19_LTS LIN1019-7984 - recipes: Update SRC_URI branch and protocols LIN1019-7984 - hiredis: Upgrade to 0.14.0 LIN1019-7984 - hiredis: update to 1.0.2 LIN1019-7984 - hiredis: add ptest LIN1019-7984 - hiredis: add cmake config file for pkgconfig LIN1019-7984 - wrlinux: support and whitelist hiredis none - Merge branch 'WRLINUX_10_19_BASE' into WRLINUX_10_19_LTS LIN1019-7984 - wrlinux: data: xml: add hiredis LIN1019-9213 - ffmpeg: fix CVE-2022-3109 LIN1019-9142 - shadow: fix CVE-2013-4235 LIN1019-9154 - zabbix: fix CVE-2022-43515 LIN1019-9019 - multipath-tools: fix CVE-2022-41973 none - srcrev.inc: wrlinux srcrev update 2022-12-19 none - srcrev.inc: wrlinux srcrev update 2022-12-18 none - srcrev.inc: wrlinux srcrev update 2022-12-16 LIN1019-9096 - tiff: Security fix for CVE-2022-3970 LIN1019-8904 - oeqa/selftest/tinfoil: Drop test for functionality removed upstream none - Merge branch 'wr-10.19-20200305' into WRLINUX_10_19_LTS LIN1019-8904 - tinfoil: fix config_data mess up insane check while parsing multiple recipes LIN1019-8904 - tinfoil: Drop parse_recipe_file custom datastore support LIN1019-8904 - tinfoil: Add back ability to parse on top of a datastore none - wrlinux-version.inc: Move to update 27 none - srcrev.inc: wrlinux srcrev update 2022-12-07 none - srcrev.inc: wrlinux srcrev update 2022-12-06 LIN1019-9124 - open-vm-tools: Fix CVE-2022-31676, CVE-2009-1142, CVE-2009-1143 LIN1019-9123 - open-vm-tools: Fix CVE-2022-31676, CVE-2009-1142, CVE-2009-1143 LIN1019-8731 - open-vm-tools: Fix CVE-2022-31676, CVE-2009-1142, CVE-2009-1143 LIN1019-9027 - vim: Upgrade 9.0.453 -> 9.0.541 LIN1019-9027 - vim: upgrade 9.0.0614 -> 9.0.0820 LIN1019-9027 - vim: Upgrade 9.0.0598 -> 9.0.0614 LIN1019-9027 - vim: Upgrade 9.0.0541 -> 9.0.0598 LIN1019-8880 - vim: Upgrade 9.0.453 -> 9.0.541 LIN1019-8880 - vim: upgrade 9.0.0614 -> 9.0.0820 LIN1019-8880 - vim: Upgrade 9.0.0598 -> 9.0.0614 LIN1019-8880 - vim: Upgrade 9.0.0541 -> 9.0.0598 LIN1019-8867 - vim: Upgrade 9.0.453 -> 9.0.541 LIN1019-8867 - vim: upgrade 9.0.0614 -> 9.0.0820 LIN1019-8867 - vim: Upgrade 9.0.0598 -> 9.0.0614 LIN1019-8867 - vim: Upgrade 9.0.0541 -> 9.0.0598 LIN1019-8866 - vim: Upgrade 9.0.453 -> 9.0.541 LIN1019-8866 - vim: upgrade 9.0.0614 -> 9.0.0820 LIN1019-8866 - vim: Upgrade 9.0.0598 -> 9.0.0614 LIN1019-8866 - vim: Upgrade 9.0.0541 -> 9.0.0598 LIN1019-9139 - gd: Fix build error by tiff package upgrade to 4.4.4 none - srcrev.inc: wrlinux srcrev update 2022-11-28 LIN1019-8764 - tiff: add tar.gz for tiff-4.4.0 LIN1019-8763 - tiff: add tar.gz for tiff-4.4.0 LIN1019-8762 - tiff: add tar.gz for tiff-4.4.0 LIN1019-8704 - tiff: add tar.gz for tiff-4.4.0 LIN1019-8662 - tiff: add tar.gz for tiff-4.4.0 LIN1019-8764 - tiff: update 4.3.0 -> 4.4.0 LIN1019-8764 - tiff: fix a typo for CVE-2022-2953.patch LIN1019-8764 - tiff: fix a number of CVEs LIN1019-8764 - tiff: backport the fix for CVE-2022-2056, CVE-2022-2057, and CVE-2022-2058 LIN1019-8764 - tiff: backport fix for CVE-2022-2953 LIN1019-8764 - tiff: Backport a patch for CVE-2022-34526 LIN1019-8764 - tiff: Add jbig PACKAGECONFIG and clarify CVE-2022-1210 LIN1019-8763 - tiff: update 4.3.0 -> 4.4.0 LIN1019-8763 - tiff: fix a typo for CVE-2022-2953.patch LIN1019-8763 - tiff: fix a number of CVEs LIN1019-8763 - tiff: backport the fix for CVE-2022-2056, CVE-2022-2057, and CVE-2022-2058 LIN1019-8763 - tiff: backport fix for CVE-2022-2953 LIN1019-8763 - tiff: Backport a patch for CVE-2022-34526 LIN1019-8763 - tiff: Add jbig PACKAGECONFIG and clarify CVE-2022-1210 LIN1019-8762 - tiff: update 4.3.0 -> 4.4.0 LIN1019-8762 - tiff: fix a typo for CVE-2022-2953.patch LIN1019-8762 - tiff: fix a number of CVEs LIN1019-8762 - tiff: backport the fix for CVE-2022-2056, CVE-2022-2057, and CVE-2022-2058 LIN1019-8762 - tiff: backport fix for CVE-2022-2953 LIN1019-8762 - tiff: Backport a patch for CVE-2022-34526 LIN1019-8762 - tiff: Add jbig PACKAGECONFIG and clarify CVE-2022-1210 LIN1019-8704 - tiff: update 4.3.0 -> 4.4.0 LIN1019-8704 - tiff: fix a typo for CVE-2022-2953.patch LIN1019-8704 - tiff: fix a number of CVEs LIN1019-8704 - tiff: backport the fix for CVE-2022-2056, CVE-2022-2057, and CVE-2022-2058 LIN1019-8704 - tiff: backport fix for CVE-2022-2953 LIN1019-8704 - tiff: Backport a patch for CVE-2022-34526 LIN1019-8704 - tiff: Add jbig PACKAGECONFIG and clarify CVE-2022-1210 LIN1019-8662 - tiff: update 4.3.0 -> 4.4.0 LIN1019-8662 - tiff: fix a typo for CVE-2022-2953.patch LIN1019-8662 - tiff: fix a number of CVEs LIN1019-8662 - tiff: backport the fix for CVE-2022-2056, CVE-2022-2057, and CVE-2022-2058 LIN1019-8662 - tiff: backport fix for CVE-2022-2953 LIN1019-8662 - tiff: Backport a patch for CVE-2022-34526 LIN1019-8662 - tiff: Add jbig PACKAGECONFIG and clarify CVE-2022-1210 LIN1019-8764 - tiff: upgrade 4.2.0 -> 4.3.0 LIN1019-8764 - tiff: upgrade 4.1.0 -> 4.2.0 LIN1019-8764 - tiff: update to 4.1.0 LIN1019-8764 - tiff: mark CVE-2022-1622 and CVE-2022-1623 as invalid LIN1019-8764 - tiff: Exclude CVE-2015-7313 from cve-check LIN1019-8763 - tiff: upgrade 4.2.0 -> 4.3.0 LIN1019-8763 - tiff: upgrade 4.1.0 -> 4.2.0 LIN1019-8763 - tiff: update to 4.1.0 LIN1019-8763 - tiff: mark CVE-2022-1622 and CVE-2022-1623 as invalid LIN1019-8763 - tiff: Exclude CVE-2015-7313 from cve-check LIN1019-8762 - tiff: upgrade 4.2.0 -> 4.3.0 LIN1019-8762 - tiff: upgrade 4.1.0 -> 4.2.0 LIN1019-8762 - tiff: update to 4.1.0 LIN1019-8762 - tiff: mark CVE-2022-1622 and CVE-2022-1623 as invalid LIN1019-8762 - tiff: Exclude CVE-2015-7313 from cve-check LIN1019-8704 - tiff: upgrade 4.2.0 -> 4.3.0 LIN1019-8704 - tiff: upgrade 4.1.0 -> 4.2.0 LIN1019-8704 - tiff: update to 4.1.0 LIN1019-8704 - tiff: mark CVE-2022-1622 and CVE-2022-1623 as invalid LIN1019-8704 - tiff: Exclude CVE-2015-7313 from cve-check LIN1019-8662 - tiff: upgrade 4.2.0 -> 4.3.0 LIN1019-8662 - tiff: upgrade 4.1.0 -> 4.2.0 LIN1019-8662 - tiff: update to 4.1.0 LIN1019-8662 - tiff: mark CVE-2022-1622 and CVE-2022-1623 as invalid LIN1019-8662 - tiff: Exclude CVE-2015-7313 from cve-check none - srcrev.inc: wrlinux srcrev update 2022-11-25 LIN1019-9101 - krb5: fix CVE-2022-42898 LIN1019-9083 - Use 'https' protocol for github repos LIN1019-9100 - redis: improve USE_SYSTEMD support LIN1019-9100 - redis: build with USE_SYSTEMD=yes when systemd is enabled LIN1019-9104 - grub: fix CVE-2022-3775, CVE-2022-2601 LIN1019-9103 - grub: fix CVE-2022-3775, CVE-2022-2601 LIN1019-8884 - dbus: fix CVE-2022-42010,CVE-2022-42011,CVE-2022-42012 LIN1019-8883 - dbus: fix CVE-2022-42010,CVE-2022-42011,CVE-2022-42012 LIN1019-8882 - dbus: fix CVE-2022-42010,CVE-2022-42011,CVE-2022-42012 none - srcrev.inc: wrlinux srcrev update 2022-11-16 LIN1019-8890 - php: fix CVE-2022-31628, CVE-2022-31629 LIN1019-8889 - php: fix CVE-2022-31628, CVE-2022-31629 LIN1019-9038 - sudo: fix CVE-2022-43995 none - srcrev.inc: wrlinux srcrev update 2022-11-16 LIN1019-9063 - pximan: fix CVE-2022-44638 none - Updated docs for RCPL 26 ======================= LTS 19 Update 26 =============================== LIN1019-8484 - protobuf-c: fix CVE-2022-33070 LIN1019-9040 - ntfs-3g-ntfsprogs: fix CVE-2022-40284 none - srcrev.inc: wrlinux srcrev update 2022-11-04 LIN1019-9015 - expat: fix CVE-2022-43680 none - Merge branch 'wr-10.19-20200305' into WRLINUX_10_19_LTS LIN1019-9045 - data_smart: Don't pass unneeded datastore LIN1019-8978 - nginx: fix CVE-2022-41741, CVE-2022-41742 LIN1019-8977 - nginx: fix CVE-2022-41741, CVE-2022-41742 LIN1019-9016 - libtasn1: fix CVE-2021-46848 LIN1019-8926 - iproute2: fix CVE-2022-3530 LIN1019-9012 - libxml2: fix CVE-2022-40303 none - Merge branch 'wr-10.19-20200305' into WRLINUX_10_19_LTS LIN1019-8904 - tinfoil: Simplify remote datastore connections LIN1019-8904 - data_smart/parse: Allow ':' characters in variable/function names LIN1019-8904 - data: Don't allow renameVar calls with equivalent keys LIN1019-8904 - BBHandler: Don't classify shell functions that names start with "python*" as python function LIN1019-8645 - samba: fix CVE-2022-32742 LIN1019-8946 - xserver-xorg: fix CVE-2022-3550, CVE-2022-3551, CVE-2022-3553 LIN1019-8945 - xserver-xorg: fix CVE-2022-3550, CVE-2022-3551, CVE-2022-3553 LIN1019-8944 - xserver-xorg: fix CVE-2022-3550, CVE-2022-3551, CVE-2022-3553 LIN1019-8700 - python3: fix CVE-2022-37460 LIN1019-8879 - dhcp: fix CVE-2022-2928, CVE-2022-2929 LIN1019-8878 - dhcp: fix CVE-2022-2928, CVE-2022-2929 LIN1019-8914 - libxml2: fix CVE-2022-40304 none - srcrev.inc: wrlinux srcrev update 2022-10-20 LIN1019-8656 - net-snmp: fix 6 CVEs none - srcrev.inc: wrlinux srcrev update 2022-10-19 LIN1019-8748 - libtiff : fix CVE-2022-2953 none - srcrev.inc: wrlinux srcrev update 2022-10-19 LIN1019-8770 - syslog-ng: fix CVE-2022-38725 none - srcrev.inc: wrlinux srcrev update 2022-10-17 LIN1019-8894 - python3-django: CVE-2022-41323 LIN1019-8676 - python3-django: fix CVE-2022-36359 do_patch fuzz detected warning LIN1019-8483 - harfbuzz: additional fix for CVE-2022-33068 LIN1019-7096 - qemu: fix CVE-2021-3750 LIN1019-8852 - protobuf: fix CVE-2022-1941 LIN1019-8836 - wayland: fix CVE-2021-3782 none - srcrev.inc: wrlinux srcrev update 2022-10-06 LIN1019-7876 - unzip: Port debian fixes for two CVEs LIN1019-7875 - unzip: Port debian fixes for two CVEs LIN1019-7826 - unzip: fix CVE-2021-4217 LIN1019-8505 - go: fix CVE-2022-30633 LIN1019-8834 - libpam: fix CVE-2022-28321 none - srcrev.inc: wrlinux srcrev update 2022-09-28 LIN1019-8545 - zabbix: fix CVE-2022-35229 CVE-2022-35230 LIN1019-8544 - zabbix: fix CVE-2022-35229 CVE-2022-35230 none - srcrev.inc: wrlinux srcrev update 2022-09-27 LIN1019-8849 - bind: fix CVE-2022-2795,CVE-2022-38177,CVE-2022-38178 LIN1019-8848 - bind: fix CVE-2022-2795,CVE-2022-38177,CVE-2022-38178 LIN1019-8844 - bind: fix CVE-2022-2795,CVE-2022-38177,CVE-2022-38178 none - srcrev.inc: wrlinux srcrev update 2022-09-26 LIN1019-8726 - glib-2.0: fix CVE-2021-3800 none - wrlinux-version.inc: Move to update 26 none - Merge branch 'WRLINUX_10_19_BASE' into WRLINUX_10_19_LTS LIN1019-5923 - oe-core-dl-3-0.xml: update babeltrace git repo none - srcrev.inc: wrlinux srcrev update 2022-09-22 LIN1019-8687 - lttng-modules: fix conflicting types for 'trace_rcu_dyntick' compile error LIN1019-8711 - ghostscript: fix CVE-2020-27792 LIN1019-8819 - expat: fix CVE-2022-40674 none - srcrev.inc: wrlinux srcrev update 2022-09-22 LIN1019-8670 - connman: fix CVE-2022-32292, CVE-2022-32293 LIN1019-8669 - connman: fix CVE-2022-32292, CVE-2022-32293 LIN1019-8676 - python3-django: fix CVE-2022-36359 LIN1019-8614 - sqlite3: Correct fix patch of CVE-2022-35737 LIN1019-8800 - vim: Upgrade 9.0.0341 -> 9.0.0453 LIN1019-8800 - vim: Upgrade 9.0.0242 -> 9.0.0341 LIN1019-8800 - vim: Upgrade 9.0.0115 -> 9.0.0242 LIN1019-8800 - vim: update from 9.0.0063 to 9.0.0115 LIN1019-8344 - go: fix CVE-2022-30629 LIN1019-8109 - qemu: fix CVE-2022-0216 none - Updated docs for RCPL 25 none - srcrev.inc: wrlinux srcrev update 2022-09-19 LIN1019-8608 - go: fix CVE-2022-27664 LIN1019-8784 - binutils: fix CVE-2022-38126 none - srcrev.inc: wrlinux srcrev update 2022-09-19 LIN1019-8811 - cve-update: handle baseMetricV2 as optional LIN1019-8810 - cve-update-db-native: use fetch task none - srcrev.inc: wrlinux srcrev update 2022-09-17 none - Merge branch 'WRLINUX_10_19_BASE' into WRLINUX_10_19_LTS LIN1019-8794 - python3-inotify: add tarball version 0.2.10 none - srcrev.inc: wrlinux srcrev update 2022-09-17 none - Merge branch 'wr-10.19-20191106' into WRLINUX_10_19_LTS LIN1019-8794 - python3-inotify: new package LIN1019-8794 - wrlinux-whitelist.conf: add python3-inotify LIN1019-8779 - inetutils: fix CVE-2022-39028 LIN1019-8761 - bluez5: fix CVE-2022-39176, CVE-2022-39177 LIN1019-8760 - bluez5: fix CVE-2022-39176, CVE-2022-39177 LIN1019-8768 - dpdk: fix CVE-2022-2132 LIN1019-8769 - dpdk: fix CVE-2022-2132 CVE-2022-28199 LIN1019-8768 - dpdk: fix CVE-2022-2132 CVE-2022-28199 ======================= LTS 19 Update 25 =============================== LIN1019-8673 - rsync: fix CVE-2022-29154 LIN1019-8724 - python3: fix CVE-2021-28861 LIN1019-8614 - sqlite3: Fix CVE-2022-35737 none - srcrev.inc: wrlinux srcrev update 2022-09-05 LIN1019-8738 - binutils: fix CVE-2022-38533 LIN1019-8737 - poppler: fix CVE-2021-30860 LIN1019-8622 - vim: link with librt LIN1019-8550 - vim: link with librt LIN1019-8549 - vim: link with librt LIN1019-8548 - vim: link with librt LIN1019-8622 - vim: Upgrade 8.1.1518 -> 9.0.0063 LIN1019-8550 - vim: Upgrade 8.1.1518 -> 9.0.0063 LIN1019-8549 - vim: Upgrade 8.1.1518 -> 9.0.0063 LIN1019-8548 - vim: Upgrade 8.1.1518 -> 9.0.0063 none - srcrev.inc: wrlinux srcrev update 2022-08-29 LIN1019-8680 - zlib: fix CVE-2022-37434 none - srcrev.inc: wrlinux srcrev update 2022-08-26 LIN1019-8506 - go: fix CVE-2022-30635 LIN1019-8694 - intel-microcode: upgrade 20220510 -> 20220809 none - srcrev.inc: wrlinux srcrev update 2022-08-23 LIN1019-8684 - postgresql: fix CVE-2022-2625 LIN1019-8504 - go: fix CVE-2022-28131 none - Merge branch 'WRLINUX_10_19_BASE' into WRLINUX_10_19_LTS LIN1019-8650 - libconfig: add tarball to meta-oe-dl LIN1019-8650 - wrlinux-recipes-list.inc: add libconfig LIN1019-8569 - xserver-xorg: fix CVE-2022-2319, CVE-2022-2320 LIN1019-8568 - xserver-xorg: fix CVE-2022-2319, CVE-2022-2320 LIN1019-8668 - go: fix CVE-2022-32189 LIN1019-6394 - qemu: fix CVE-2021-3507 LIN1019-8340 - busybox: fix patch header(CVE-2022-30065.patch) LIN1019-8686 - ffmpeg: fix CVE-2022-1475 LIN1019-8663 - curl : Add ptest none - srcrev.inc: wrlinux srcrev update 2022-08-10 LIN1019-8340 - busybox: fix some test case LIN1019-8340 - busybox: fix CVE-2022-30065 none - srcrev.inc: wrlinux srcrev update 2022-08-10 LIN1019-8507 - go: fix CVE-2022-32148 LIN1019-8693 - intel-microcode: update SRCREV for 20220510 none - srcrev.inc: wrlinux srcrev update 2022-08-09 none - wrlinux-version.inc: Move to update 25 none - srcrev.inc: wrlinux srcrev update 2022-08-04 LIN1019-8658 - libxml2: fix CVE-2016-3709 LIN1019-8089 - systemd: journal: Make sd_journal_previous/next() return 0 at HEAD/TAIL LIN1019-8607 - libtirpc: fix CVE-2021-46828 none - Merge branch 'WRLINUX_10_19_BASE' into WRLINUX_10_19_LTS LIN1019-8536 - openssl: add tar.gz for openssl-1.1.1q LIN1019-8536 - openssl: upgrade 1.1.1p -> 1.1.1q LIN1019-8536 - openssl: make 1.1.1q the default version LIN1019-8536 - openssl: add feature openssl-111p LIN1019-8534 - python-django: fix CVE-2022-34265 none - srcrev.inc: wrlinux srcrev update 2022-08-01 LIN1019-8394 - go: fix CVE-2022-30631 LIN1019-8509 - poco: Define LIB_SUFFIX per OE multilibs LIN1019-7674 - cryptsetup: fix CVE-2021-4122 ======================= LTS 19 Update 24 =============================== none - srcrev.inc: wrlinux srcrev update 2022-07-25 none - Updated docs for RCPL 24 LIN1019-8530 - lua: fix CVE-2022-33099 LIN1019-8443 - exo: fix CVE-2022-32278 LIN1019-8501 - libtiff : fix CVE-2022-2056, CVE-2022-2057, CVE-2022-2058 LIN1019-8500 - libtiff : fix CVE-2022-2056, CVE-2022-2057, CVE-2022-2058 LIN1019-8499 - libtiff : fix CVE-2022-2056, CVE-2022-2057, CVE-2022-2058 LIN1019-8466 - gstreamer1.0-plugins-good: fix CVE-2022-2122 none - srcrev.inc: wrlinux srcrev update 2022-07-11 LIN1019-8535 - dpkg: add nativesdk support none - srcrev.inc: wrlinux srcrev update 2022-07-06 LIN1019-8508 - u-boot: fix CVE-2022-34835 none - srcrev.inc: wrlinux srcrev update 2022-07-05 LIN1019-8376 - dpkg: fix CVE-2022-1664 LIN1019-8474 - openssl: upgrade 1.1.1o -> 1.1.1p LIN1019-8474 - openssl: make 1.1.1p the default version LIN1019-8474 - openssl: add feature openssl-111o none - Merge branch 'WRLINUX_10_19_BASE' into WRLINUX_10_19_LTS LIN1019-8474 - openssl: add tar.gz for openssl-1.1.1p LIN1019-8532 - gnupg: fix CVE-2022-34903 LIN1019-8470 - python-ldap: fix CVE-2021-46823 LIN1019-7856 - virglrendere: fix CVE-2022-0175 CVE-2022-0135 LIN1019-7807 - virglrendere: fix CVE-2022-0175 CVE-2022-0135 LIN1019-8483 - harfbuzz: fix CVE-2022-33068 LIN1019-8457 - gstreamer1.0-plugins-good: fix CVE-2022-1920 CVE-2022-1921 CVE-2022-1922 CVE-2022-1923 CVE-2022-1924 CVE-2022-1925 LIN1019-8456 - gstreamer1.0-plugins-good: fix CVE-2022-1920 CVE-2022-1921 CVE-2022-1922 CVE-2022-1923 CVE-2022-1924 CVE-2022-1925 LIN1019-8455 - gstreamer1.0-plugins-good: fix CVE-2022-1920 CVE-2022-1921 CVE-2022-1922 CVE-2022-1923 CVE-2022-1924 CVE-2022-1925 LIN1019-8454 - gstreamer1.0-plugins-good: fix CVE-2022-1920 CVE-2022-1921 CVE-2022-1922 CVE-2022-1923 CVE-2022-1924 CVE-2022-1925 LIN1019-8453 - gstreamer1.0-plugins-good: fix CVE-2022-1920 CVE-2022-1921 CVE-2022-1922 CVE-2022-1923 CVE-2022-1924 CVE-2022-1925 LIN1019-8452 - gstreamer1.0-plugins-good: fix CVE-2022-1920 CVE-2022-1921 CVE-2022-1922 CVE-2022-1923 CVE-2022-1924 CVE-2022-1925 none - srcrev.inc: wrlinux srcrev update 2022-06-29 LIN1019-8148 - ruby: fix CVE-2022-28739 LIN1019-8254 - initramfs-framework: fix boothang when console=null LIN1019-8434 - u-boot: fix CVE-2022-30790, CVE-2022-30552 LIN1019-8433 - u-boot: fix CVE-2022-30790, CVE-2022-30552 LIN1019-8425 - grub: fix 6 CVEs LIN1019-8424 - grub: fix 6 CVEs LIN1019-8423 - grub: fix 6 CVEs LIN1019-8422 - grub: fix 6 CVEs LIN1019-8421 - grub: fix 6 CVEs LIN1019-8420 - grub: fix 6 CVEs LIN1019-8432 - shim: fix CVE-2022-28737 LIN1019-8436 - php: fix CVE-2022-31625, CVE-2022-31626 LIN1019-8435 - php: fix CVE-2022-31625, CVE-2022-31626 LIN1019-8325 - u-boot: fix CVE-2022-30767 none - srcrev.inc: wrlinux srcrev update 2022-06-20 LIN1019-8419 - apache2: fix CVE-2022-26377 CVE-2022-28614 CVE-2022-28615 CVE-2022-29404 CVE-2022-30522 CVE-2022-30556 CVE-2022-31813 LIN1019-8418 - apache2: fix CVE-2022-26377 CVE-2022-28614 CVE-2022-28615 CVE-2022-29404 CVE-2022-30522 CVE-2022-30556 CVE-2022-31813 LIN1019-8417 - apache2: fix CVE-2022-26377 CVE-2022-28614 CVE-2022-28615 CVE-2022-29404 CVE-2022-30522 CVE-2022-30556 CVE-2022-31813 LIN1019-8416 - apache2: fix CVE-2022-26377 CVE-2022-28614 CVE-2022-28615 CVE-2022-29404 CVE-2022-30522 CVE-2022-30556 CVE-2022-31813 LIN1019-8415 - apache2: fix CVE-2022-26377 CVE-2022-28614 CVE-2022-28615 CVE-2022-29404 CVE-2022-30522 CVE-2022-30556 CVE-2022-31813 LIN1019-8414 - apache2: fix CVE-2022-26377 CVE-2022-28614 CVE-2022-28615 CVE-2022-29404 CVE-2022-30522 CVE-2022-30556 CVE-2022-31813 LIN1019-8412 - apache2: fix CVE-2022-26377 CVE-2022-28614 CVE-2022-28615 CVE-2022-29404 CVE-2022-30522 CVE-2022-30556 CVE-2022-31813 none - srcrev.inc: wrlinux srcrev update 2022-06-15 LIN1019-8144 - e2fsprogs: fix CVE-2022-1304 LIN1019-8410 - containerd-opencontainers: fix CVE-2022-31030 LIN1019-8359 - selinux/refpolicy-targeted fix LIN1019-8377 - cups: fix CVE-2022-26691 LIN1019-8407 - ima-evm-rootfs.bbclass: fix signatures on rootfs files none - srcrev.inc: wrlinux srcrev update 2022-06-09 LIN1019-8170 - python3: fix CVE-2015-20107 LIN1019-8221 - mariadb: upgrade to 10.3.35 LIN1019-8182 - mariadb: upgrade to 10.3.35 LIN1019-8180 - mariadb: upgrade to 10.3.35 LIN1019-8178 - mariadb: upgrade to 10.3.35 LIN1019-8176 - mariadb: upgrade to 10.3.35 LIN1019-8175 - mariadb: upgrade to 10.3.35 LIN1019-8174 - mariadb: upgrade to 10.3.35 LIN1019-8172 - mariadb: upgrade to 10.3.35 LIN1019-8160 - mariadb: upgrade to 10.3.35 LIN1019-8159 - mariadb: upgrade to 10.3.35 LIN1019-8157 - mariadb: upgrade to 10.3.35 LIN1019-8156 - mariadb: upgrade to 10.3.35 LIN1019-8154 - mariadb: upgrade to 10.3.35 LIN1019-8153 - mariadb: upgrade to 10.3.35 LIN1019-8152 - mariadb: upgrade to 10.3.35 LIN1019-8151 - mariadb: upgrade to 10.3.35 LIN1019-8150 - mariadb: upgrade to 10.3.35 LIN1019-8149 - mariadb: upgrade to 10.3.35 LIN1019-7847 - mariadb: upgrade to 10.3.35 LIN1019-8221 - mariadb: upgrade to 10.3.35 in order to fix 19 CVEs LIN1019-8182 - mariadb: upgrade to 10.3.35 in order to fix 19 CVEs LIN1019-8180 - mariadb: upgrade to 10.3.35 in order to fix 19 CVEs LIN1019-8178 - mariadb: upgrade to 10.3.35 in order to fix 19 CVEs LIN1019-8176 - mariadb: upgrade to 10.3.35 in order to fix 19 CVEs LIN1019-8175 - mariadb: upgrade to 10.3.35 in order to fix 19 CVEs LIN1019-8174 - mariadb: upgrade to 10.3.35 in order to fix 19 CVEs LIN1019-8172 - mariadb: upgrade to 10.3.35 in order to fix 19 CVEs LIN1019-8160 - mariadb: upgrade to 10.3.35 in order to fix 19 CVEs LIN1019-8159 - mariadb: upgrade to 10.3.35 in order to fix 19 CVEs LIN1019-8157 - mariadb: upgrade to 10.3.35 in order to fix 19 CVEs LIN1019-8156 - mariadb: upgrade to 10.3.35 in order to fix 19 CVEs LIN1019-8154 - mariadb: upgrade to 10.3.35 in order to fix 19 CVEs LIN1019-8153 - mariadb: upgrade to 10.3.35 in order to fix 19 CVEs LIN1019-8152 - mariadb: upgrade to 10.3.35 in order to fix 19 CVEs LIN1019-8151 - mariadb: upgrade to 10.3.35 in order to fix 19 CVEs LIN1019-8150 - mariadb: upgrade to 10.3.35 in order to fix 19 CVEs LIN1019-8149 - mariadb: upgrade to 10.3.35 in order to fix 19 CVEs LIN1019-7847 - mariadb: upgrade to 10.3.35 in order to fix 19 CVEs none - Merge remote-tracking branch 'base/wr-10.19-20191106' into WRLINUX_10_19_LTS LIN1019-8411 - meta-cube: Use https for github.com none - wrlinux-version.inc: Move to update 24 LIN1019-8091 - go: fix CVE-2022-24675 none - srcrev.inc: wrlinux srcrev update 2022-06-06 LIN1019-8371 - ntfs-3g_ntfsprogs: upgrade to 2022.5.17 LIN1019-8370 - ntfs-3g_ntfsprogs: upgrade to 2022.5.17 LIN1019-8369 - ntfs-3g_ntfsprogs: upgrade to 2022.5.17 LIN1019-8368 - ntfs-3g_ntfsprogs: upgrade to 2022.5.17 LIN1019-8367 - ntfs-3g_ntfsprogs: upgrade to 2022.5.17 LIN1019-8366 - ntfs-3g_ntfsprogs: upgrade to 2022.5.17 LIN1019-8365 - ntfs-3g_ntfsprogs: upgrade to 2022.5.17 LIN1019-8371 - ntfs-3g: upgrade to 2022.5.17 in order to fix CVE-2022-30783->30789 LIN1019-8370 - ntfs-3g: upgrade to 2022.5.17 in order to fix CVE-2022-30783->30789 LIN1019-8369 - ntfs-3g: upgrade to 2022.5.17 in order to fix CVE-2022-30783->30789 LIN1019-8368 - ntfs-3g: upgrade to 2022.5.17 in order to fix CVE-2022-30783->30789 LIN1019-8367 - ntfs-3g: upgrade to 2022.5.17 in order to fix CVE-2022-30783->30789 LIN1019-8366 - ntfs-3g: upgrade to 2022.5.17 in order to fix CVE-2022-30783->30789 LIN1019-8365 - ntfs-3g: upgrade to 2022.5.17 in order to fix CVE-2022-30783->30789 none - srcrev.inc: wrlinux srcrev update 2022-06-04 LIN1019-8319 - runc-docker: fix CVE-2022-29162 LIN1019-8282 - pcre2: fix CVE-2022-1586 none - srcrev.inc: wrlinux srcrev update 2022-05-31 LIN1019-8093 - go: fix CVE-2022-28327 LIN1019-6869 - nginx: fix CVE-2021-3618 none - srcrev.inc: wrlinux srcrev update 2022-05-27 LIN1019-8161 - subversion: fix CVE-2021-28544 LIN1019-8299 - Use 'https' protocol for github repos LIN1019-8299 - Use 'https' protocol for github repos - part 2 LIN1019-8298 - Use 'https' protocol for github repos - part 2 LIN1019-8298 - skopeo: switch to main branch LIN1019-8298 - podman: switch to main branch LIN1019-8298 - oci-runtime-spec: switch to main branch LIN1019-8298 - oci-image-spec: switch to main branch LIN1019-8298 - conmon: switch to main branch LIN1019-8299 - Use 'https' protocol for github repos - part 3 LIN1019-8298 - Use 'https' protocol for github repos - part 3 LIN1019-8298 - tesseract-lang: switch to main branch LIN1019-8298 - python3-prctl: switch to main branch LIN1019-8298 - python3-langtable: switch to main branch LIN1019-8298 - ostree: switch to main branch LIN1019-8298 - opencl-icd-loader: switch to main branch LIN1019-8298 - opencl-headers: switch to main branch LIN1019-8298 - leveldb: switch to main branch LIN1019-8298 - imagemagick: switch to main branch LIN1019-8298 - catch2: switch to devel branch LIN1019-8298 - breakpad: switch to main branch for gtest and protobuf repos LIN1019-8300 - vulkan-headers: switch to main branch LIN1019-8300 - Use 'https' protocol for github repos - part 3 LIN1019-8299 - Use 'https' protocol for github repos - part 3 LIN1019-8298 - Use 'https' protocol for github repos - part 3 LIN1019-8298 - mobile-broadband-provider-info: switch to main branch LIN1019-8298 - efibootmgr: switch to main branch none - srcrev.inc: wrlinux srcrev update 2022-05-26 LIN1019-8280 - poppler: fix CVE-2022-27337 LIN1019-8311 - postgresql: fix CVE-2022-1552 LIN1019-8250 - redis: fix CVE-2022-24735, CVE-2022-24736 LIN1019-8249 - redis: fix CVE-2022-24735, CVE-2022-24736 LIN1019-8310 - go: fix CVE-2022-29526 LIN1019-8309 - curl: fix CVE-2022-27774 CVE-2022-27775 CVE-2022-27776 CVE-2022-27781 and CVE-2022-27782 LIN1019-8304 - curl: fix CVE-2022-27774 CVE-2022-27775 CVE-2022-27776 CVE-2022-27781 and CVE-2022-27782 LIN1019-8248 - curl: fix CVE-2022-27774 CVE-2022-27775 CVE-2022-27776 CVE-2022-27781 and CVE-2022-27782 LIN1019-8247 - curl: fix CVE-2022-27774 CVE-2022-27775 CVE-2022-27776 CVE-2022-27781 and CVE-2022-27782 LIN1019-8246 - curl: fix CVE-2022-27774 CVE-2022-27775 CVE-2022-27776 CVE-2022-27781 and CVE-2022-27782 LIN1019-8318 - intel-microcode: upgrade 20220419 -> 20220510 LIN1019-8318 - intel-microcode: upgrade 20220207 -> 20220419 LIN1019-8317 - intel-microcode: upgrade 20220419 -> 20220510 LIN1019-8317 - intel-microcode: upgrade 20220207 -> 20220419 LIN1019-6192 - libconvert-asn1-perl: fix CVE-2013-7488 LIN1019-8316 - vim: fix 6 CVEs LIN1019-8297 - vim: fix 6 CVEs LIN1019-8296 - vim: fix 6 CVEs LIN1019-8288 - vim: fix 6 CVEs LIN1019-8287 - vim: fix 6 CVEs LIN1019-8286 - vim: fix 6 CVEs LIN1019-8279 - rsyslog: fix CVE-2022-24903 ======================= LTS 19 Update 23 =============================== none - Updated docs for RCPL 23 LIN1019-8162 - subversion: fix CVE-2022-24070 LIN1019-8190 - ncurses: fix CVE-2022-29458 none - srcrev.inc: wrlinux srcrev update 2022-05-13 LIN1019-8245 - curl: fix CVE-2022-22576 LIN1019-8095 - libsdl2: fix CVE-2021-33657 LIN1019-8276 - openldap: fix CVE-2022-29155 LIN1019-8261 - libxml2: fix CVE-2022-29824 LIN1019-8094 - dnsmasq: fix CVE-2022-0934 none - srcrev.inc: wrlinux srcrev update 2022-05-05 LIN1019-8262 - openssl: upgrade 1.1.1n -> 1.1.1o LIN1019-8262 - openssl: make 1.1.1o the default version LIN1019-8262 - openssl: add feature openssl-111n none - Merge branch 'WRLINUX_10_19_BASE' into WRLINUX_10_19_LTS LIN1019-8262 - openssl: add tar.gz for openssl-1.1.1o LIN1019-8235 - tiff: fix CVE-2022-1355 LIN1019-8108 - qemu: fix CVE-2021-4206 CVE-2021-4207 LIN1019-8107 - qemu: fix CVE-2021-4206 CVE-2021-4207 none - srcrev.inc: wrlinux srcrev update 2022-05-02 none - srcrev.inc: wrlinux srcrev update 2022-04-28 LIN1019-8232 - Use 'https' protocol for github repos - part 2 LIN1019-8231 - Use 'https' protocol for github repos - part 2 LIN1019-8230 - Use 'https' protocol for github repos - part 2 LIN1019-8230 - grpc: switch to main branch LIN1019-8230 - googletest: switch to main branch LIN1019-8232 - Use 'https' protocol for github repos - part 2 LIN1019-8231 - Use 'https' protocol for github repos - part 2 LIN1019-8230 - Use 'https' protocol for github repos - part 2 LIN1019-8232 - Use 'https' protocol for github repos LIN1019-8231 - Use 'https' protocol for github repos LIN1019-8230 - Use 'https' protocol for github repos LIN1019-8232 - Use 'https' protocol for github repos LIN1019-8231 - Use 'https' protocol for github repos LIN1019-8230 - Use 'https' protocol for github repos LIN1019-8232 - Use 'https' protocol for github repos LIN1019-8231 - Use 'https' protocol for github repos LIN1019-8230 - Use 'https' protocol for github repos LIN1019-8232 - Use 'https' protocol for github repos - part 2 LIN1019-8231 - Use 'https' protocol for github repos - part 2 LIN1019-8230 - Use 'https' protocol for github repos - part 2 none - srcrev.inc: wrlinux srcrev update 2022-04-27 LIN1019-8138 - python-django: fix CVE-2022-28346, CVE-2022-28347 LIN1019-8137 - python-django: fix CVE-2022-28346, CVE-2022-28347 none - srcrev.inc: wrlinux srcrev update 2022-04-27 none - srcrev.inc: wrlinux srcrev update 2022-04-26 LIN1019-8239 - freetype: fix CVE-2022-27404 CVE-2022-27405 CVE-2022-27406 LIN1019-8238 - freetype: fix CVE-2022-27404 CVE-2022-27405 CVE-2022-27406 LIN1019-8237 - freetype: fix CVE-2022-27404 CVE-2022-27405 CVE-2022-27406 LIN1019-8227 - libinput: fix CVE-2022-1215 LIN1019-8140 - gnutls: fix CVE-2021-4209 LIN1019-8141 - gzip: fix CVE-2022-1271 none - srcrev.inc: wrlinux srcrev update 2022-04-16 none - srcrev.inc: wrlinux srcrev update 2022-04-15 LIN1019-8142 - xz: fix CVE-2022-1271 LIN1019-7512 - epiphany: fix CVE-2021-45088 LIN1019-7820 - protobuf: fix CVE-2021-22570 none - wrlinux-version.inc: Move to update 23 none - srcrev.inc: wrlinux srcrev update 2022-04-11 LIN1019-8118 - lib/oe/terminal: Fix tmux new-session on older tmux versions (<1.9) LIN1019-8085 - vim: fix CVE-2022-1154 LIN1019-8065 - fribidi: fix CVE-2022-25308 CVE-2022-25309 CVE-2022-25310 LIN1019-8064 - fribidi: fix CVE-2022-25308 CVE-2022-25309 CVE-2022-25310 LIN1019-8063 - fribidi: fix CVE-2022-25308 CVE-2022-25309 CVE-2022-25310 LIN1019-8074 - libarchive: fix CVE-2022-26280 LIN1019-7390 - busybox: fix CVE-2021-42375 LIN1019-8016 - vim: fix CVE-2022-0943 LIN1019-7960 - vim: fix CVE-2022-0729 none - srcrev.inc: wrlinux srcrev update 2022-04-11 LIN1019-7958 - vim: fix CVE-2022-0714 LIN1019-8021 - apache2: fix CVE-2022-22719_22721 CVE-2022-23943 LIN1019-8020 - apache2: fix CVE-2022-22719_22721 CVE-2022-23943 LIN1019-8019 - apache2: fix CVE-2022-22719_22721 CVE-2022-23943 LIN1019-8018 - apache2: fix CVE-2022-22719_22721 CVE-2022-23943 LIN1019-8037 - libvirt: fix CVE-2022-0897 LIN1019-8060 - Use 'https' protocol for github repos LIN1019-7861 - Use 'https' protocol for github repos LIN1019-8060 - Use 'https' protocol for github repos LIN1019-7861 - Use 'https' protocol for github repos LIN1019-8060 - Use 'https' protocol for github repos LIN1019-7861 - Use 'https' protocol for github repos LIN1019-8060 - Use 'https' protocol for github repos LIN1019-7861 - Use 'https' protocol for github repos LIN1019-8060 - Use 'https' protocol for github repos LIN1019-7861 - Use 'https' protocol for github repos LIN1019-8009 - tiff: fix CVE-2022-0865,CVE-2022-0891,CVE-2022-0907,CVE-2022-0908,CVE-2022-0909,CVE-2022-0924 LIN1019-8008 - tiff: fix CVE-2022-0865,CVE-2022-0891,CVE-2022-0907,CVE-2022-0908,CVE-2022-0909,CVE-2022-0924 LIN1019-8007 - tiff: fix CVE-2022-0865,CVE-2022-0891,CVE-2022-0907,CVE-2022-0908,CVE-2022-0909,CVE-2022-0924 LIN1019-8006 - tiff: fix CVE-2022-0865,CVE-2022-0891,CVE-2022-0907,CVE-2022-0908,CVE-2022-0909,CVE-2022-0924 LIN1019-7987 - tiff: fix CVE-2022-0865,CVE-2022-0891,CVE-2022-0907,CVE-2022-0908,CVE-2022-0909,CVE-2022-0924 LIN1019-7982 - tiff: fix CVE-2022-0865,CVE-2022-0891,CVE-2022-0907,CVE-2022-0908,CVE-2022-0909,CVE-2022-0924 LIN1019-7957 - vim: fix CVE-2022-0696 LIN1019-8067 - zlib: fix CVE-2018-25032 LIN1019-4120 - netkit-telnet: fix CVE-2020-10188 LIN1019-7937 - vim: fix CVE-2022-0685 none - Merge branch 'WRLINUX_10_19_BASE' into WRLINUX_10_19_LTS LIN1019-7699 - meta-oe-dl-3-0.xml: Update repo for multipath-tools LIN1019-7699 - ndctl: switch to main branch none - Merge branch 'wr-10.19-20191106' into WRLINUX_10_19_LTS LIN1019-7699 - multipath-tools: update SRC_URI LIN1019-7775 - go: fix CVE-2022-23772 LIN1019-8026 - openssl: add feature openssl-111m none - Merge branch 'WRLINUX_10_19_BASE' into WRLINUX_10_19_LTS LIN1019-8026 - openssl: add tar.gz for openssl-1.1.1n LIN1019-8026 - openssl: upgrade 1.1.1m -> 1.1.1n LIN1019-8026 - openssl: make 1.1.1n the default version LIN1019-7927 - vim: fix CVE-2022-0629 LIN1019-7979 - go: fix CVE-2022-24921 none - Merge remote-tracking branch 'origin/WRLINUX_10_19_BASE' into WRLINUX_10_19_LTS LINCD-8750 - bin/setup.py: Warning when name in xml is ended with .git none - Merge branch 'WRLINUX_10_19_BASE' into WRLINUX_10_19_LTS LIN1021-2884 - bin/setup.py: Use warning instead of error for duplicated sources LIN1021-2884 - bin/setup.py: Error out for duplicated basename in default.xml none - Updated recipe files for RCPL 22 none - Updated docs for RCPL 22 LIN1019-7668 - networkmanager: fix intermittent test-shared-general.c compile failures LIN1019-7276 - networkmanager: add missing dependency for config-extra.h in Makefile.am LIN1019-7821 - openssl: add tar.gz for openssl-1.1.1m LIN1019-6276 - openssl: add tar.gz for openssl-1.1.1k LIN1019-6275 - openssl: add tar.gz for openssl-1.1.1k LIN1019-6115 - openssl: add tarball for openssl 1.1.1j LIN1019-5816 - openssl: add tarball for openssl 1.1.1i LIN1019-7033 - openssl: add tar.gz for openssl-1.1.1l LIN1019-7030 - openssl: add tar.gz for openssl-1.1.1l LINUXEXEC-10558 - linux-firmware: update firmware from 20200619 to 20201022 ======================= LTS 19 Update 22 =============================== LIN1019-7914 - vim: fix CVE-2022-0572 LIN1019-8012 - cni: switch to main branch LIN1019-8025 - zabbix: fix CVE-2022-24349 CVE-2022-24917_9 LIN1019-8024 - zabbix: fix CVE-2022-24349 CVE-2022-24917_9 LIN1019-8023 - zabbix: fix CVE-2022-24349 CVE-2022-24917_9 LIN1019-8022 - zabbix: fix CVE-2022-24349 CVE-2022-24917_9 LIN1019-8017 - qemu: fix CVE-2022-26353 LIN1019-7418 - ltp: backport upstream fixes for read_all testcase none - srcrev.inc: wrlinux srcrev update 2022-03-15 LIN1019-7888 - vim: fix CVE-2022-0554 none - srcrev.inc: wrlinux srcrev update 2022-03-11 LIN1019-7866 - vim: fix CVE-2022-0443 LIN1019-7956 - samba: fix CVE-2021-44142 LIN1019-7889 - python: fix CVE-2022-0391 LIN1019-7901 - tiff: fix CVE-2022-0561,CVE-2022-0562 LIN1019-7900 - tiff: fix CVE-2022-0561,CVE-2022-0562 LIN1019-7853 - vim: fix CVE-2022-0417 none - Merge remote-tracking branch 'base/wr-10.19-20200817' into WRLINUX_10_19_LTS LINUXEXEC-18920 - meta-xilinx-standalone/conf/layer.conf: Set SKIP_LAYERINDEX to skip from layerindex none - Revert "conf/layer.conf: Remove it from LTS19" LIN1019-7956 - samba: fix CVE-2021-44142 LIN1019-7915 - util-linux: fix CVE-2022-0563 none - srcrev.inc: wrlinux srcrev update 2022-03-03 LIN1019-7678 - nss: fix CVE-2022-22747 LIN1019-7971 - vim: recipe cleanup LIN1019-7934 - expat: fix 5 CVEs LIN1019-7933 - expat: fix 5 CVEs LIN1019-7932 - expat: fix 5 CVEs LIN1019-7923 - expat: fix 5 CVEs LIN1019-7922 - expat: fix 5 CVEs LIN1019-7936 - polkit: fix CVE-2021-4115 LIN1019-7935 - libxml2: fix CVE-2022-23308 LIN1019-7880 - mariadb: upgrade to 10.3.34 LIN1019-7879 - mariadb: upgrade to 10.3.34 LIN1019-7878 - mariadb: upgrade to 10.3.34 LIN1019-7877 - mariadb: upgrade to 10.3.34 LIN1019-7846 - mariadb: upgrade to 10.3.34 LIN1019-7845 - mariadb: upgrade to 10.3.34 LIN1019-7843 - mariadb: upgrade to 10.3.34 LIN1019-7842 - mariadb: upgrade to 10.3.34 LIN1019-7841 - mariadb: upgrade to 10.3.34 LIN1019-7840 - mariadb: upgrade to 10.3.34 LIN1019-7839 - mariadb: upgrade to 10.3.34 LIN1019-7835 - mariadb: upgrade to 10.3.34 LIN1019-7880 - mariadb: upgrade to 10.3.34 in order to fix CVE-2021-46659,46661,46662,46663,46664,46665,46667,46668,CVE-2022-24048,24050,24051,24052 LIN1019-7879 - mariadb: upgrade to 10.3.34 in order to fix CVE-2021-46659,46661,46662,46663,46664,46665,46667,46668,CVE-2022-24048,24050,24051,24052 LIN1019-7878 - mariadb: upgrade to 10.3.34 in order to fix CVE-2021-46659,46661,46662,46663,46664,46665,46667,46668,CVE-2022-24048,24050,24051,24052 LIN1019-7877 - mariadb: upgrade to 10.3.34 in order to fix CVE-2021-46659,46661,46662,46663,46664,46665,46667,46668,CVE-2022-24048,24050,24051,24052 LIN1019-7846 - mariadb: upgrade to 10.3.34 in order to fix CVE-2021-46659,46661,46662,46663,46664,46665,46667,46668,CVE-2022-24048,24050,24051,24052 LIN1019-7845 - mariadb: upgrade to 10.3.34 in order to fix CVE-2021-46659,46661,46662,46663,46664,46665,46667,46668,CVE-2022-24048,24050,24051,24052 LIN1019-7843 - mariadb: upgrade to 10.3.34 in order to fix CVE-2021-46659,46661,46662,46663,46664,46665,46667,46668,CVE-2022-24048,24050,24051,24052 LIN1019-7842 - mariadb: upgrade to 10.3.34 in order to fix CVE-2021-46659,46661,46662,46663,46664,46665,46667,46668,CVE-2022-24048,24050,24051,24052 LIN1019-7841 - mariadb: upgrade to 10.3.34 in order to fix CVE-2021-46659,46661,46662,46663,46664,46665,46667,46668,CVE-2022-24048,24050,24051,24052 LIN1019-7840 - mariadb: upgrade to 10.3.34 in order to fix CVE-2021-46659,46661,46662,46663,46664,46665,46667,46668,CVE-2022-24048,24050,24051,24052 LIN1019-7839 - mariadb: upgrade to 10.3.34 in order to fix CVE-2021-46659,46661,46662,46663,46664,46665,46667,46668,CVE-2022-24048,24050,24051,24052 LIN1019-7835 - mariadb: upgrade to 10.3.34 in order to fix CVE-2021-46659,46661,46662,46663,46664,46665,46667,46668,CVE-2022-24048,24050,24051,24052 LIN1019-7963 - flac: fix CVE-2021-0561 none - srcrev.inc: wrlinux srcrev update 2022-02-28 LIN1019-7961 - cyrus-sasl: fix CVE-2022-24407 LIN1019-7944 - util-linux: disable raw LINUXEXEC-18920 - conf/layer.conf: Remove it from LTS19 none - srcrev.inc: wrlinux srcrev update 2022-02-25 LIN1019-7832 - vim: fix CVE-2022-0413 none - srcrev.inc: wrlinux srcrev update 2022-02-25 none - srcrev.inc: wrlinux srcrev update 2022-02-23 LIN1019-7892 - python: fix CVE-2021-3737 LIN1019-7831 - vim: fix CVE-2022-0408 LIN1019-7941 - phoronix-test-suite: fix CVE-2022-0571 LIN1019-7797 - util-linux: fix CVE-2021-3995, CVE-2021-3996 LIN1019-7796 - util-linux: fix CVE-2021-3995, CVE-2021-3996 LIN1019-7822 - vim: fix CVE-2022-0392 LIN1019-7668 - networkmanager: fix intermittent test-shared-general.c compile failures none - srcrev.inc: wrlinux srcrev update 2022-02-18 LIN1019-7698 - linux-firmware: switch branch master -> main LIN1019-6359 - openjpeg: fix CVE-2021-29338 LIN1019-7527 - python-numpy: fix CVE-2021-41495 none - srcrev.inc: wrlinux srcrev update 2022-02-16 LIN1019-7855 - python-django: fix CVE-2022-22818, CVE-2022-23833 LIN1019-7854 - python-django: fix CVE-2022-22818, CVE-2022-23833 LIN1019-7777 - rt-tests: fix buffer size overflow issue when read cpuinfo LIN1019-7873 - go: fix CVE-2022-23806 none - xterm: fix CVE-2021-27135, CVE-2022-24130 LIN1019-7665 - glibc: fix CVE-2021-3999 LIN1019-7886 - intel-microcode: upgrade 20210608 -> 20220207 LIN1019-7798 - python-numpy: fix CVE-2021-41496 LIN1019-7074 - qemu: fix CVE-2021-3748 none - srcrev.inc: wrlinux srcrev update 2022-02-10 LIN1019-5977 - qemu: fix CVE-2021-20196 LIN1019-7017 - qemu: fix CVE-2021-3713 LIN1019-7583 - ghostscript: fix CVE-2021-45944, CVE-2021-45949 LIN1019-7582 - ghostscript: fix CVE-2021-45944, CVE-2021-45949 LIN1019-7813 - vim: fix CVE-2022-0368 LIN1019-7812 - vim: fix CVE-2022-0361 LIN1019-7811 - vim: fix CVE-2022-0359 LIN1019-7779 - phpmyadmin: fix CVE-2022-23807 none - srcrev.inc: wrlinux srcrev update 2022-02-04 LIN1019-7802 - python: fix CVE-2021-4189 LIN1019-7806 - connman: fix CVE-2022-23096, CVE-2022-23097, CVE-2022-23098 LIN1019-7805 - connman: fix CVE-2022-23096, CVE-2022-23097, CVE-2022-23098 LIN1019-7804 - connman: fix CVE-2022-23096, CVE-2022-23097, CVE-2022-23098 none - srcrev.inc: wrlinux srcrev update 2022-02-03 LIN1019-7821 - openssl: add feature openssl-111l LIN1019-7821 - openssl: add tar.gz for openssl-1.1.1m LIN1019-7821 - openssl: upgrade 1.1.1l -> 1.1.1m LIN1019-7821 - openssl: make 1.1.1m the default version LIN1019-7821 - openssl-1.1.1m: fix ptest failure none - srcrev.inc: wrlinux srcrev update 2022-02-03 LIN1019-7688 - wpa-supplicant: fix CVE-2022-23303, CVE-2022-23304 LIN1019-7687 - wpa-supplicant: fix CVE-2022-23303, CVE-2022-23304 LIN1019-7688 - hostapd: fix CVE-2022-23303, CVE-2022-23304 LIN1019-7687 - hostapd: fix CVE-2022-23303, CVE-2022-23304 LIN1019-7782 - vim: fix CVE-2022-0319 LIN1019-7816 - expat: fix CVE-2022-23852, CVE-2022-23990 LIN1019-7794 - expat: fix CVE-2022-23852, CVE-2022-23990 LIN1019-7640 - tiff: fix CVE-2022-22844 LIN1019-7781 - vim: fix CVE-2022-0318 none - wrlinux-version.inc: Move to update 22 none - srcrev.inc: wrlinux srcrev update 2022-01-28 LIN1019-7615 - tcpslice: fix CVE-2021-41043 none - srcrev.inc: wrlinux srcrev update 2022-01-28 LIN1019-7817 - polkit: fix CVE-2021-4034 LIN1019-7603 - python-django: fix CVE-2021-45115, CVE-2021-45116, CVE-2021-45452 LIN1019-7602 - python-django: fix CVE-2021-45115, CVE-2021-45116, CVE-2021-45452 LIN1019-7601 - python-django: fix CVE-2021-45115, CVE-2021-45116, CVE-2021-45452 LIN1019-7557 - cpio: fixed regression from CVE-2021-38185 LIN1019-7682 - vim: fix CVE-2022-0213 LIN1019-7680 - glibc: fix CVE-2022-23218 and CVE-2022-23219 LIN1019-7679 - glibc: fix CVE-2022-23218 and CVE-2022-23219 LIN1019-7647 - systemd: fix CVE-2021-3997 none - srcrev.inc: wrlinux srcrev update 2022-01-28 LIN1019-7417 - ltp: let each test acquire/release loop device LIN1019-7417 - wr-runltp: let each test acquire/release loop device LIN1019-7683 - bluez5: fix CVE-2022-0204 LIN1019-7684 - phoronix-test-suite: fix CVE-2022-0157 CVE-2022-0196 CVE-2022-0197 CVE-2022-0238 LIN1019-7677 - phoronix-test-suite: fix CVE-2022-0157 CVE-2022-0196 CVE-2022-0197 CVE-2022-0238 LIN1019-7676 - phoronix-test-suite: fix CVE-2022-0157 CVE-2022-0196 CVE-2022-0197 CVE-2022-0238 LIN1019-7649 - phoronix-test-suite: fix CVE-2022-0157 CVE-2022-0196 CVE-2022-0197 CVE-2022-0238 LIN1019-7693 - go-fsnotify: switch to main branch LIN1019-7580 - vim: fix CVE-2021-4193 none - srcrev.inc: wrlinux srcrev update 2022-01-28 LIN1019-7579 - vim: fix CVE-2021-4192 LIN1019-7401 - busybox: fix CVE-2021-42378 to CVE-2021-42386 LIN1019-7400 - busybox: fix CVE-2021-42378 to CVE-2021-42386 LIN1019-7399 - busybox: fix CVE-2021-42378 to CVE-2021-42386 LIN1019-7398 - busybox: fix CVE-2021-42378 to CVE-2021-42386 LIN1019-7397 - busybox: fix CVE-2021-42378 to CVE-2021-42386 LIN1019-7396 - busybox: fix CVE-2021-42378 to CVE-2021-42386 LIN1019-7395 - busybox: fix CVE-2021-42378 to CVE-2021-42386 LIN1019-7394 - busybox: fix CVE-2021-42378 to CVE-2021-42386 LIN1019-7393 - busybox: fix CVE-2021-42378 to CVE-2021-42386 LIN1019-7631 - expat: fix CVE-2021-45960, CVE-2021-46143, CVE-2022-22822 to CVE-2022-22827 LIN1019-7630 - expat: fix CVE-2021-45960, CVE-2021-46143, CVE-2022-22822 to CVE-2022-22827 LIN1019-7629 - expat: fix CVE-2021-45960, CVE-2021-46143, CVE-2022-22822 to CVE-2022-22827 LIN1019-7628 - expat: fix CVE-2021-45960, CVE-2021-46143, CVE-2022-22822 to CVE-2022-22827 LIN1019-7627 - expat: fix CVE-2021-45960, CVE-2021-46143, CVE-2022-22822 to CVE-2022-22827 LIN1019-7626 - expat: fix CVE-2021-45960, CVE-2021-46143, CVE-2022-22822 to CVE-2022-22827 LIN1019-7622 - expat: fix CVE-2021-45960, CVE-2021-46143, CVE-2022-22822 to CVE-2022-22827 LIN1019-7586 - expat: fix CVE-2021-45960, CVE-2021-46143, CVE-2022-22822 to CVE-2022-22827 none - srcrev.inc: wrlinux srcrev update 2022-01-28 none - Added Wind Share URL change none - Updated docs for RCPL 21 LINUXEXEC-14432 - meta-xilinx: add meta-xilinx-dl to LAYERRECOMMENDS ======================= LTS 19 Update 21 =============================== none - Merge branch 'WRLINUX_10_19_BASE' into WRLINUX_10_19_LTS LIN1019-7481 - meta-signing-key-dl.xml: update git repository for sbsigntool LIN1019-7623 - lighttpd: fix CVE-2022-22707 LIN1019-7616 - ca-certificates: blacklist expired root certificate "DST Root CA X3" LIN1019-7481 - sbsigntool: update repo LIN1019-7522 - libarchive: fix CVE-2021-23177 and CVE-2021-31566 LIN1019-7521 - libarchive: fix CVE-2021-23177 and CVE-2021-31566 LIN1019-7355 - gcc: fix CVE-2021-42574 none - srcrev.inc: wrlinux srcrev update 2022-01-07 LIN1019-7536 - ruby: fix CVE-2021-41819 LIN1019-7355 - Revert "gcc: fix CVE-2021-42574" LIN1019-7355 - gcc: fix CVE-2021-42574 none - srcrev.inc: wrlinux srcrev update 2022-01-05 LIN1019-7384 - samba: fix CVE-2020-25721 and CVE-2020-25717 LIN1019-7381 - samba: fix CVE-2020-25721 and CVE-2020-25717 LIN1019-7517 - binutils: fix CVE-2021-42574 LIN1019-7517 - Revert "binutils: fix CVE-2021-42574" LIN1019-7533 - ruby: fix CVE-2021-41817 none - srcrev.inc: wrlinux srcrev update 2021-12-30 LIN1019-7546 - libsndfile1: fix CVE-2021-4156 LIN1019-6591 - ffmpeg: fix CVE-2020-20453 none - srcrev.inc: wrlinux srcrev update 2021-12-28 LIN1019-7472 - vim: fix CVE-2021-4069 none - srcrev.inc: wrlinux srcrev update 2021-12-28 none - srcrev.inc: wrlinux srcrev update 2021-12-27 LIN1019-7537 - libvirt: fix "Property '.pconfig' not found" error LIN1019-7517 - binutils: fix CVE-2021-42574 none - srcrev.inc: wrlinux srcrev update 2021-12-27 LIN1019-7525 - python-numpy: fix CVE-2021-33430 LIN1019-7530 - apache2: fix CVE-2021-44224 CVE-2021-44790 LIN1019-7529 - apache2: fix CVE-2021-44224 CVE-2021-44790 none - srcrev.inc: wrlinux srcrev update 2021-12-24 LIN1019-7467 - vim: fix CVE-2021-4019 none - srcrev.inc: wrlinux srcrev update 2021-12-22 LIN1019-7497 - xserver-xorg: fix CVE-2021-4008,CVE-2021-4009,CVE-2021-4010,CVE-2021-4011 LIN1019-7496 - xserver-xorg: fix CVE-2021-4008,CVE-2021-4009,CVE-2021-4010,CVE-2021-4011 LIN1019-7495 - xserver-xorg: fix CVE-2021-4008,CVE-2021-4009,CVE-2021-4010,CVE-2021-4011 LIN1019-7494 - xserver-xorg: fix CVE-2021-4008,CVE-2021-4009,CVE-2021-4010,CVE-2021-4011 LIN1019-6673 - python-django: fix CVE-2021-33571 LIN1019-6673 - python3-django: fix CVE-2021-33203, CVE-2021-33571 LIN1019-6672 - python3-django: fix CVE-2021-33203, CVE-2021-33571 none - srcrev.inc: wrlinux srcrev update 2021-12-21 LIN1019-7466 - vim: fix CVE-2021-3984 LIN1019-4747 - python3: fix ptest failure LIN1019-7491 - python-lxml: fix CVE-2021-43818 LIN1019-7491 - python-lxml: remove duplicate patches LIN1019-7501 - binutils: fix CVE-2021-45078 LIN1019-7437 - vim: fix CVE-2021-3974 none - srcrev.inc: wrlinux srcrev update 2021-12-16 LIN1019-7476 - python3-django: fix CVE-2021-44420 LIN1019-7485 - libpcre2: fix do_fetch failure none - srcrev.inc: wrlinux srcrev update 2021-12-14 LIN1019-7484 - go: fix CVE-2021-44717 LIN1019-7483 - go: fix CVE-2021-44716 LIN1019-7436 - vim: fix CVE-2021-3973 none - srcrev.inc: wrlinux srcrev update 2021-12-09 none - Merge branch 'WRLINUX_10_19_BASE' into WRLINUX_10_19_LTS LINUXEXEC-17112 - meta-oe-dl-3-0.xml: Add github.com.yasm.yasm.git for yasm_git.bb LINUXEXEC-17112 - wrlinux-recipes-list.inc: add yasm to support list for QAT LINUXEXEC-17112 - qat: update qat to 4.15.0-00011 to support Idaville HCC LINUXEXEC-17112 - update qat to QAT.L.4.15.0-00011.tar.gz none - srcrev.inc: wrlinux srcrev update 2021-12-09 none - srcrev.inc: wrlinux srcrev update 2021-12-08 LIN1019-7468 - nss: fix CVE-2021-43527 LIN1019-7455 - efivar: fix do_fetch failure LIN1019-7089 - strace: increase ptest timeout duration 120->240s LIN1019-7089 - strace: fix failing ptests LIN1019-7461 - bluez5: fix CVE-2019-8921, CVE-2019-8922, CVE-2021-41229 LIN1019-7460 - bluez5: fix CVE-2019-8921, CVE-2019-8922, CVE-2021-41229 LIN1019-7407 - bluez5: fix CVE-2019-8921, CVE-2019-8922, CVE-2021-41229 none - srcrev.inc: wrlinux srcrev update 2021-12-06 none - srcrev.inc: wrlinux srcrev update 2021-12-05 none - srcrev.inc: wrlinux srcrev update 2021-12-03 LIN1019-7084 - pango: upgrade to 1.44.7 LIN1019-7084 - pango: upgrade 1.44.6 -> 1.44.7 LIN1019-7084 - pango: Fix reproducibility none - Merge branch 'wr-10.19-20191106' into WRLINUX_10_19_LTS LIN1019-7108 - python3-posix-ipc: Add LDSHARED to recipe LIN1019-7108 - python3-posix-ipc: Add recipe for version 1.0.5 none - Merge branch 'wr-10.19-20191106' into WRLINUX_10_19_LTS LIN1019-7108 - python3-posix-ipc: Add LDSHARED to recipe none - Merge branch 'WRLINUX_10_19_BASE' into WRLINUX_10_19_LTS LIN1019-7108 - python3-posix-ipc: Add tarball for 1.0.5 LIN1019-7108 - Add posix-ipc to base whitelist LIN1019-7448 - libvirt: fix CVE-2021-3975 LIN1019-7431 - php: fix CVE-2021-21707 none - srcrev.inc: wrlinux srcrev update 2021-11-30 LIN1019-7456 - libtool: change the default AR_FLAGS from "cru" to "cr" LIN1019-7346 - udisks2: fix CVE-2021-3802 LIN1019-7385 - samba: fix CVE-2020-25722 LIN1019-7389 - busybox: fix CVE-2021-42374 none - wrlinux-version.inc: Move to update 21 none - srcrev.inc: wrlinux srcrev update 2021-11-23 LIN1019-7378 - speex: fix CVE-2020-23903 none - srcrev.inc: wrlinux srcrev update 2021-11-23 none - srcrev.inc: wrlinux srcrev update 2021-11-22 LIN1019-6390 - consul: fix CVE-2020-25864 LIN1019-7410 - gmp: fix CVE-2021-43618 LIN1019-7369 - vim: fix CVE-2021-3928 LIN1019-7374 - postgresql: fix CVE-2021-23214 and CVE-2021-23222 LIN1019-7373 - postgresql: fix CVE-2021-23214 and CVE-2021-23222 LIN1019-7375 - ifenslave: fix do_fetch failure LIN1019-7368 - vim: fix CVE-2021-3927 LIN1019-7372 - syslog-ng: adjust control socket location LIN1019-7404 - libpcre: update SRC_URI LIN1019-7370 - qemu: fix CVE-2021-3930 LIN1019-7366 - glibc: fix CVE-2021-43396 LIN1019-7244 - rpm: fix CVE-2021-3521 LIN1019-7367 - bluez5: fix CVE-2021-43400 none - srcrev.inc: wrlinux srcrev update 2021-11-21 LIN1019-7341 - php: fix CVE-2021-21703 none - srcrev.inc: wrlinux srcrev update 2021-11-18 LIN1019-7277 - ltp: increase $TMPDIR ext4 loop device size to 1024MB LIN1019-7352 - go: fix CVE-2021-41771 LIN1019-7349 - bind: fix CVE-2021-25219 LIN1019-7056 - ntfs-3g_ntfsprogs: upgrade to 2021.8.22 LIN1019-7055 - ntfs-3g_ntfsprogs: upgrade to 2021.8.22 LIN1019-7054 - ntfs-3g_ntfsprogs: upgrade to 2021.8.22 LIN1019-7053 - ntfs-3g_ntfsprogs: upgrade to 2021.8.22 LIN1019-7052 - ntfs-3g_ntfsprogs: upgrade to 2021.8.22 LIN1019-7051 - ntfs-3g_ntfsprogs: upgrade to 2021.8.22 LIN1019-7056 - ntfs-3g-ntfsprogs: upgrade to 2021.8.22 LIN1019-7055 - ntfs-3g-ntfsprogs: upgrade to 2021.8.22 LIN1019-7054 - ntfs-3g-ntfsprogs: upgrade to 2021.8.22 LIN1019-7053 - ntfs-3g-ntfsprogs: upgrade to 2021.8.22 LIN1019-7052 - ntfs-3g-ntfsprogs: upgrade to 2021.8.22 LIN1019-7051 - ntfs-3g-ntfsprogs: upgrade to 2021.8.22 LIN1019-7056 - ntfs-3g-ntfsprogs: Make it support usrmerge properly LIN1019-7055 - ntfs-3g-ntfsprogs: Make it support usrmerge properly LIN1019-7054 - ntfs-3g-ntfsprogs: Make it support usrmerge properly LIN1019-7053 - ntfs-3g-ntfsprogs: Make it support usrmerge properly LIN1019-7052 - ntfs-3g-ntfsprogs: Make it support usrmerge properly LIN1019-7051 - ntfs-3g-ntfsprogs: Make it support usrmerge properly none - Updated docs with netplan template per LINUXEXEC-16810 LIN1019-6915 - c-ares: fix do_fetch warning LIN1019-6866 - vsftpd: Upgrade to 3.0.5 LIN1019-6870 - linuxptp: Upgrade to 2.0.1 LIN1019-5877 - zeromq: upgrade 4.3.2 -> 4.3.3 LIN1019-5877 - zeromq: fix upstream version check LIN1019-5877 - zeromq: Fix host-specific path issue with libsodium LIN1019-5877 - czmq: fix upstream version check LIN1019-5877 - cppzmq: upgrade 4.4.1 -> 4.5.0 LIN1019-5877 - cppzmq: bump to version 4.6.0 LIN1019-6694 - grpc: Link with libatomic on powerpc LIN1019-5469 - grpc: Define libdir and cmakedir in terms of multilib ======================= LTS 19 Update 20 =============================== none - Merge branch 'WRLINUX_10_19_BASE' into WRLINUX_10_19_LTS LIN1019-7376 - Revert "meta-xilinx-dl.xml: Add github.com.Xilinx.XRT.git for xrt_git.bb" none - srcrev.inc: wrlinux srcrev update 2021-11-08 none - Updated docs for RCPL 20 none - Updated recipe lists from RCPL 20 LIN1019-7271 - strongswan: fix CVE-2021-41990 LIN1019-7348 - vim: fix CVE-2021-3903 none - srcrev.inc: wrlinux srcrev update 2021-11-01 LIN1019-6524 - systemd: fix CVE-2020-13529 LIN1019-7214 - ncurses: fix CVE-2021-39537 none - srcrev.inc: wrlinux srcrev update 2021-10-26 LIN1019-7266 - vim: fix CVE-2021-3875 LIN1019-7275 - vim: fix CVE-2021-3872 none - Merge branch 'WRLINUX_10_19_BASE' into WRLINUX_10_19_LTS LINUXEXEC-14432 - meta-xilinx-dl.xml: Add github.com.Xilinx.XRT.git for xrt_git.bb LINUXEXEC-14432 - meta-xilinx-dl.xml: Add github.com.OCL-dev.ocl-icd.git for ocl-icd_git.bb LINUXEXEC-14432 - meta-xilinx-dl.xml: Add github.com.KhronosGroup.OpenCL-CLHPP.git for opencl-clhpp_git.bb LINUXEXEC-14432 - meta-xilinx: add meta-xilinx-dl to LAYERRECOMMENDS none - Merge remote-tracking branch 'origin/WRLINUX_10_19_BASE' into WRLINUX_10_19_LTS LINUXEXEC-14432 - meta-oe-dl-3-0.xml: Add github.com.KhronosGroup.OpenCL-Headers.git for opencl-headers_git.bb none - srcrev.inc: wrlinux srcrev update 2021-10-26 LIN1019-7255 - docker: fix CVE-2021-41089 CVE-2021-41091 CVE-2021-41092 LIN1019-7254 - docker: fix CVE-2021-41089 CVE-2021-41091 CVE-2021-41092 LIN1019-7247 - docker: fix CVE-2021-41089 CVE-2021-41091 CVE-2021-41092 none - srcrev.inc: wrlinux srcrev update 2021-10-25 none - srcrev.inc: wrlinux srcrev update 2021-10-21 LIN1019-7276 - networkmanager: add missing dependency for config-extra.h in Makefile.am none - srcrev.inc: wrlinux srcrev update 2021-10-21 LIN1019-7241 - redis: fix 8 CVEs LIN1019-7240 - redis: fix 8 CVEs LIN1019-7239 - redis: fix 8 CVEs LIN1019-7237 - redis: fix 8 CVEs none - srcrev.inc: wrlinux srcrev update 2021-10-20 LIN1019-1557 - gstreamer: fix ptest failure none - srcrev.inc: wrlinux srcrev update 2021-10-19 LIN1019-7076 - parted: fix ptest failure LIN1019-2015 - busybox: fix failing ptests LIN1019-1684 - gdk-pixbuf: fix ptest failure LIN1019-6557 - patchelf: fix PT_PHDR program header corruption none - srcrev.inc: wrlinux srcrev update 2021-10-13 LIN1019-7252 - containerd-opencontainers: fix CVE-2021-41103 LIN1019-7224 - openssh: fix CVE-2021-41617 LIN1019-7245 - go: fix CVE-2021-38297 none - srcrev.inc: wrlinux srcrev update 2021-10-12 none - srcrev.inc: wrlinux srcrev update 2021-10-11 LIN1019-7154 - squashfs-tools: fix CVE-2021-41072 LIN1019-7149 - curl: fix CVE-2021-22946 and CVE-2021-22947 LIN1019-7148 - curl: fix CVE-2021-22946 and CVE-2021-22947 LIN1019-7080 - util-linux: ptest tabfiles-tags fail none - srcrev.inc: wrlinux srcrev update 2021-10-11 LIN1019-7185 - apache2: fix CVE-2021-34798 CVE-2021-36160 CVE-2021-39275 CVE-2021-40438 LIN1019-7184 - apache2: fix CVE-2021-34798 CVE-2021-36160 CVE-2021-39275 CVE-2021-40438 LIN1019-7183 - apache2: fix CVE-2021-34798 CVE-2021-36160 CVE-2021-39275 CVE-2021-40438 LIN1019-7182 - apache2: fix CVE-2021-34798 CVE-2021-36160 CVE-2021-39275 CVE-2021-40438 none - srcrev.inc: wrlinux srcrev update 2021-10-09 LIN1019-7083 - python3: skip failed tests that require platlibdir functionality LIN1019-6597 - glibc: fix CVE-2021-33574 LIN1019-7162 - vim: fix CVE-2021-3796 LIN1019-7161 - vim: fix CVE-2021-3778 LIN1019-7123 - gd: fix CVE-2021-40812 LIN1019-7226 - samhain-standalone: fix ptest failure LIN1019-7095 - samba: fix CVE-2021-3671 LIN1019-6886 - mariadb: upgrade to 10.3.31 in order to fix CVE-2021-2372,2389 LIN1019-6880 - mariadb: upgrade to 10.3.31 in order to fix CVE-2021-2372,2389 LIN1019-6886 - mariadb: upgrade to 10.3.31 LIN1019-6880 - mariadb: upgrade to 10.3.31 none - wrlinux-version.inc: Move to update 20 none - srcrev.inc: wrlinux srcrev update 2021-09-27 none - tiff: fix CVE-2020-19143, CVE-2020-19144 LIN1019-7111 - libgcrypt: fix CVE-2021-40528 none - srcrev.inc: wrlinux srcrev update 2021-09-26 LIN1019-7014 - go: fix CVE-2021-39293 none - srcrev.inc: wrlinux srcrev update 2021-09-26 none - srcrev.inc: wrlinux srcrev update 2021-09-23 LIN1019-7134 - wrlinux-whitelist.conf: add some packages to whitelist for all distros: tree, python3-lxml, zeromq, python3-spidev, python3-pyzmq, lksctp-tools LIN1019-7133 - wrlinux-whitelist.conf: add some packages to whitelist for all distros: tree, python3-lxml, zeromq, python3-spidev, python3-pyzmq, lksctp-tools LIN1019-7132 - wrlinux-whitelist.conf: add some packages to whitelist for all distros: tree, python3-lxml, zeromq, python3-spidev, python3-pyzmq, lksctp-tools LIN1019-7131 - wrlinux-whitelist.conf: add some packages to whitelist for all distros: tree, python3-lxml, zeromq, python3-spidev, python3-pyzmq, lksctp-tools none - srcrev.inc: wrlinux srcrev update 2021-09-22 LIN1018-7916 - libgpiod: packageqa problem => static python lib to ${PN}-staticdev none - srcrev.inc: wrlinux srcrev update 2021-09-22 LIN1019-7216 - Revert "glib-2.0: Fix the ptest failure" LIN1019-7216 - glib: disable a failing ptest none - srcrev.inc: wrlinux srcrev update 2021-09-18 LIN1019-7122 - python3: fix Error applying patch for python 3 and adding/removing feature/selinux LIN1019-7109 - add python3-pyinotify tarball file LIN1019-7108 - add python3-posix-ipc tarball file LIN1019-7118 - wrlinux: add 3 packages to PNWHITELIST LIN1019-7109 - wrlinux: add 3 packages to PNWHITELIST LIN1019-7108 - wrlinux: add 3 packages to PNWHITELIST LIN1019-7045 - gd: fix CVE-2021-40145 LIN1019-7125 - downloads: Rename ceph tarball LIN1019-7125 - ceph: update SRC_URI LIN1019-7110 - vim: fix CVE-2021-3770 LIN1019-7046 - squashfs-tools: fix CVE-2021-40153 LIN1019-7119 - tiff: fix CVE-2020-19131 LIN1019-7102 - inetutils: fix CVE-2021-40491 LIN1019-6652 - ffmpeg: fix CVE-2021-38171 LIN1019-7048 - mc: fix CVE-2021-36370 LIN1019-7079 - elfutils: Fix the ptest failure LIN1019-7106 - dhcp: fix do_patch failure on reconfigure LIN1019-6949 - binutils: fix sdk build for i686-mingw32 sdk machine LIN1019-7081 - dbus,dbus-test: Move common parts to dbus.inc LIN1019-7072 - git: fix CVE-2021-40330 LIN1019-7077 - glib-2.0: Fix the ptest failure LIN1019-5454 - lvm2: fix do_patch failure on reconfigure LIN1019-3468 - dpdk: fix CVE-2019-14818 none - Updated docs for RCPL 19, link refresh re branching ======================= LTS 19 Update 19 =============================== none - srcrev.inc: wrlinux srcrev update 2021-09-03 none - Merge branch 'WRLINUX_10_19_BASE' into WRLINUX_10_19_LTS LIN1019-6915 - oe-core-dl-3-0.xml: update git repository for tcf-agent LIN1019-6915 - tcf-agent: fetching over git:// no longer works LIN1019-6915 - c-ares: fix do_fetch warning none - ffmpeg: fix CVE-2020-21688, CVE-2020-21697, CVE-2021-38114, CVE-2021-38291 LIN1019-7031 - sqlite3: fix CVE-2021-36690 LIN1019-7015 - krb5: fix CVE-2021-37750 none - srcrev.inc: wrlinux srcrev update 2021-09-03 none - srcrev.inc: wrlinux srcrev update 2021-09-01 LIN1019-7033 - openssl: add tar.gz for openssl-1.1.1l LIN1019-7030 - openssl: add tar.gz for openssl-1.1.1l LIN1019-7033 - openssl: upgrade from 1.1.1k to 1.1.1l LIN1019-7033 - openssl: make 1.1.1l the default version LIN1019-7030 - openssl: upgrade from 1.1.1k to 1.1.1l LIN1019-7030 - openssl: make 1.1.1l the default version none - srcrev.inc: wrlinux srcrev update 2021-09-01 LIN1019-7033 - openssl: add feature openssl-111k LIN1019-7030 - openssl: add feature openssl-111k LIN1019-7028 - python3: fix CVE-2021-3733 LIN1019-6953 - gd: fix CVE-2021-38115 none - srcrev.inc: wrlinux srcrev update 2021-08-31 LIN1019-6522 - qemu: fix CVE-2021-3544 CVE-2021-3545 CVE-2021-3546 LIN1019-6521 - qemu: fix CVE-2021-3544 CVE-2021-3545 CVE-2021-3546 LIN1019-6520 - qemu: fix CVE-2021-3544 CVE-2021-3545 CVE-2021-3546 LIN1019-7002 - sssd: fix CVE-2021-3621 none - Merge branch 'WRLINUX_10_19_BASE' into WRLINUX_10_19_LTS LIN1019-6866 - vsftpd: upgrade to 3.0.5 LIN1019-6866 - vsftpd: Upgrade to 3.0.5 LIN1019-6136 - qemu: fix CVE-2021-20257 none - srcrev.inc: wrlinux srcrev update 2021-08-26 LIN1019-7023 - apr: fix CVE-2021-35940 LIN1019-6657 - ffmpeg: fix CVE-2020-20450, CVE-2020-21041, CVE-2020-22015, CVE-2020-22021, CVE-2020-22033/CVE-2020-22019, CVE-2020-22038, CVE-2020-22042 LIN1019-6653 - ffmpeg: fix CVE-2020-20450, CVE-2020-21041, CVE-2020-22015, CVE-2020-22021, CVE-2020-22033/CVE-2020-22019, CVE-2020-22038, CVE-2020-22042 LIN1019-6628 - ffmpeg: fix CVE-2020-20450, CVE-2020-21041, CVE-2020-22015, CVE-2020-22021, CVE-2020-22033/CVE-2020-22019, CVE-2020-22038, CVE-2020-22042 LIN1019-6607 - ffmpeg: fix CVE-2020-20450, CVE-2020-21041, CVE-2020-22015, CVE-2020-22021, CVE-2020-22033/CVE-2020-22019, CVE-2020-22038, CVE-2020-22042 LIN1019-6604 - ffmpeg: fix CVE-2020-20450, CVE-2020-21041, CVE-2020-22015, CVE-2020-22021, CVE-2020-22033/CVE-2020-22019, CVE-2020-22038, CVE-2020-22042 LIN1019-6590 - ffmpeg: fix CVE-2020-20450, CVE-2020-21041, CVE-2020-22015, CVE-2020-22021, CVE-2020-22033/CVE-2020-22019, CVE-2020-22038, CVE-2020-22042 LIN1019-6584 - ffmpeg: fix CVE-2020-20450, CVE-2020-21041, CVE-2020-22015, CVE-2020-22021, CVE-2020-22033/CVE-2020-22019, CVE-2020-22038, CVE-2020-22042 LIN1019-6471 - samba: fix CVE-2021-20254 LIN1019-6984 - c-ares: fix CVE-2021-3672 none - srcrev.inc: wrlinux srcrev update 2021-08-26 LIN1019-6994 - apache2: fix CVE-2021-33193 none - srcrev.inc: wrlinux srcrev update 2021-08-19 LIN1019-6800 - scap-security-guide: accounts_remove_unneeded: fix games account detection LIN1019-6785 - draft_stig_wrlinux_disa.profile: change testcase for openssh-sshd detection LIN1019-6774 - scap-security-guide: require_singleuser_auth: correct systemd-sulogin-shell path none - srcrev.inc: wrlinux srcrev update 2021-08-16 LIN1019-6962 - cpio: fix CVE-2021-38185 none - srcrev.inc: wrlinux srcrev update 2021-08-16 LIN1019-6957 - qemu: fix CVE-2021-3682 LIN1019-6935 - util-linux: fix CVE-2021-37600 LIN1019-6913 - curl: fix CVE-2021-22924 and CVE-2021-22925 LIN1019-6912 - curl: fix CVE-2021-22924 and CVE-2021-22925 LIN1019-6313 - curl: fix CVE-2021-22890 none - srcrev.inc: wrlinux srcrev update 2021-08-11 LIN1019-6944 - go: fix CVE-2021-36221 LIN1019-6860 - libsndfile: fix CVE-2021-3246 LIN1019-6945 - ruby: fix CVE-2021-31799 LIN1019-6934 - libvirt: fix CVE-2021-3667 LIN1019-6862 - openvswitch: fix CVE-2021-36980 LIN1019-6870 - linuxptp: Upgrade to 2.0.1 none - srcrev.inc: wrlinux srcrev update 2021-08-11 none - Merge branch 'WRLINUX_10_19_BASE' into WRLINUX_10_19_LTS LIN1019-6870 - linuxptp: Upgrade source tarball from 2.0 to 2.0.1 LIN1019-6950 - wrlinux: remove some annotations for refpolicy LIN1019-6931 - wrlinux-recipes-list.inc: add refpolicy-standard/targeted/mcs/minimum as supported recipes none - wrlinux-version.inc: Move to update 19 LIN1019-6780 - libvirt: fix CVE-2021-3631 LIN1019-6867 - libibverbs, librdmacm: fix do_fetch failure LIN1019-6806 - ntp: fix ntpdate to wait for subprocesses none - srcrev.inc: wrlinux srcrev update 2021-08-01 LIN1019-6830 - go: fix CVE-2021-34558 LIN1019-6865 - systemd: fix CVE-2021-33910 LIN1019-6868 - containerd: fix CVE-2021-32760 none - srcrev.inc: wrlinux srcrev update 2021-07-27 LIN1019-6783 - go: fix CVE-2020-29509, CVE-2020-29510, CVE-2020-29511 LIN1019-6782 - go: fix CVE-2020-29509, CVE-2020-29510, CVE-2020-29511 LIN1019-6781 - go: fix CVE-2020-29509, CVE-2020-29510, CVE-2020-29511 LIN1019-6789 - php: fix CVE-2021-21705 LIN1019-6386 - consul: upgrade to 1.6.10 in order to fix CVE-2020-7219,7955,12758,12797,13170,13250,28053 LIN1019-6385 - consul: upgrade to 1.6.10 in order to fix CVE-2020-7219,7955,12758,12797,13170,13250,28053 LIN1019-6384 - consul: upgrade to 1.6.10 in order to fix CVE-2020-7219,7955,12758,12797,13170,13250,28053 LIN1019-6383 - consul: upgrade to 1.6.10 in order to fix CVE-2020-7219,7955,12758,12797,13170,13250,28053 none - srcrev.inc: wrlinux srcrev update 2021-07-25 LIN1019-6832 - rsyslog: fix ptest failures LIN1019-6829 - krb5: fix CVE-2021-36222 none - Updated docs for RCPL 18 LIN1019-6352 - meta-oe-dl-3-0.xml: add git.netfilter.org.libnftnl for libnftnl_1.1.4.bb LIN1019-6352 - nftables: add tarball to meta-oe-dl LIN1019-5877 - zeromq: add tarball to meta-oe-dl LIN1019-5877 - libsodium: add tarball to meta-oe-dl ======================= LTS 19 Update 18 =============================== none - srcrev.inc: wrlinux srcrev update 2021-07-15 LIN1019-6816 - ruby: fix CVE-2021-32066, CVE-2021-31810 LIN1019-6815 - ruby: fix CVE-2021-32066, CVE-2021-31810 LIN1019-6620 - ffmpeg: upgrade 4.3 -> 4.3.1 LIN1019-6620 - ffmpeg: upgrade 4.3.1 -> 4.3.2 LIN1019-6620 - ffmpeg: upgrade 4.2.3 -> 4.3 LIN1019-6620 - ffmpeg: upgrade 4.2.2 -> 4.2.3 LIN1019-6620 - ffmpeg: move ffmpeg config into packageconfig LIN1019-6620 - ffmpeg: fix reproducibility LIN1019-6620 - ffmpeg: Fix CVE-2020-35964, CVE-2020-35965 LIN1019-6620 - ffmpeg: disable GPL features by default LIN1019-6620 - ffmpeg: disable altivec on ppc by default LIN1019-6620 - ffmpeg: add srt package config knob LIN1019-6620 - ffmpeg: add PACKAGECONFIG support for x265 LIN1019-6620 - ffmpeg: add PACKAGECONFIG support for fdk-aac LIN1019-6619 - ffmpeg: upgrade 4.3 -> 4.3.1 LIN1019-6619 - ffmpeg: upgrade 4.3.1 -> 4.3.2 LIN1019-6619 - ffmpeg: upgrade 4.2.3 -> 4.3 LIN1019-6619 - ffmpeg: upgrade 4.2.2 -> 4.2.3 LIN1019-6619 - ffmpeg: move ffmpeg config into packageconfig LIN1019-6619 - ffmpeg: fix reproducibility LIN1019-6619 - ffmpeg: Fix CVE-2020-35964, CVE-2020-35965 LIN1019-6619 - ffmpeg: disable GPL features by default LIN1019-6619 - ffmpeg: disable altivec on ppc by default LIN1019-6619 - ffmpeg: add srt package config knob LIN1019-6619 - ffmpeg: add PACKAGECONFIG support for x265 LIN1019-6619 - ffmpeg: add PACKAGECONFIG support for fdk-aac LIN1019-6605 - ffmpeg: upgrade 4.3 -> 4.3.1 LIN1019-6605 - ffmpeg: upgrade 4.3.1 -> 4.3.2 LIN1019-6605 - ffmpeg: upgrade 4.2.3 -> 4.3 LIN1019-6605 - ffmpeg: upgrade 4.2.2 -> 4.2.3 LIN1019-6605 - ffmpeg: move ffmpeg config into packageconfig LIN1019-6605 - ffmpeg: fix reproducibility LIN1019-6605 - ffmpeg: Fix CVE-2020-35964, CVE-2020-35965 LIN1019-6605 - ffmpeg: disable GPL features by default LIN1019-6605 - ffmpeg: disable altivec on ppc by default LIN1019-6605 - ffmpeg: add srt package config knob LIN1019-6605 - ffmpeg: add PACKAGECONFIG support for x265 LIN1019-6605 - ffmpeg: add PACKAGECONFIG support for fdk-aac LIN1019-6603 - ffmpeg: upgrade 4.3 -> 4.3.1 LIN1019-6603 - ffmpeg: upgrade 4.3.1 -> 4.3.2 LIN1019-6603 - ffmpeg: upgrade 4.2.3 -> 4.3 LIN1019-6603 - ffmpeg: upgrade 4.2.2 -> 4.2.3 LIN1019-6603 - ffmpeg: move ffmpeg config into packageconfig LIN1019-6603 - ffmpeg: fix reproducibility LIN1019-6603 - ffmpeg: Fix CVE-2020-35964, CVE-2020-35965 LIN1019-6603 - ffmpeg: disable GPL features by default LIN1019-6603 - ffmpeg: disable altivec on ppc by default LIN1019-6603 - ffmpeg: add srt package config knob LIN1019-6603 - ffmpeg: add PACKAGECONFIG support for x265 LIN1019-6603 - ffmpeg: add PACKAGECONFIG support for fdk-aac LIN1019-6589 - ffmpeg: upgrade 4.3 -> 4.3.1 LIN1019-6589 - ffmpeg: upgrade 4.3.1 -> 4.3.2 LIN1019-6589 - ffmpeg: upgrade 4.2.3 -> 4.3 LIN1019-6589 - ffmpeg: upgrade 4.2.2 -> 4.2.3 LIN1019-6589 - ffmpeg: move ffmpeg config into packageconfig LIN1019-6589 - ffmpeg: fix reproducibility LIN1019-6589 - ffmpeg: Fix CVE-2020-35964, CVE-2020-35965 LIN1019-6589 - ffmpeg: disable GPL features by default LIN1019-6589 - ffmpeg: disable altivec on ppc by default LIN1019-6589 - ffmpeg: add srt package config knob LIN1019-6589 - ffmpeg: add PACKAGECONFIG support for x265 LIN1019-6589 - ffmpeg: add PACKAGECONFIG support for fdk-aac LIN1019-6588 - ffmpeg: upgrade 4.3 -> 4.3.1 LIN1019-6588 - ffmpeg: upgrade 4.3.1 -> 4.3.2 LIN1019-6588 - ffmpeg: upgrade 4.2.3 -> 4.3 LIN1019-6588 - ffmpeg: upgrade 4.2.2 -> 4.2.3 LIN1019-6588 - ffmpeg: move ffmpeg config into packageconfig LIN1019-6588 - ffmpeg: fix reproducibility LIN1019-6588 - ffmpeg: Fix CVE-2020-35964, CVE-2020-35965 LIN1019-6588 - ffmpeg: disable GPL features by default LIN1019-6588 - ffmpeg: disable altivec on ppc by default LIN1019-6588 - ffmpeg: add srt package config knob LIN1019-6588 - ffmpeg: add PACKAGECONFIG support for x265 LIN1019-6588 - ffmpeg: add PACKAGECONFIG support for fdk-aac LIN1019-6587 - ffmpeg: upgrade 4.3 -> 4.3.1 LIN1019-6587 - ffmpeg: upgrade 4.3.1 -> 4.3.2 LIN1019-6587 - ffmpeg: upgrade 4.2.3 -> 4.3 LIN1019-6587 - ffmpeg: upgrade 4.2.2 -> 4.2.3 LIN1019-6587 - ffmpeg: move ffmpeg config into packageconfig LIN1019-6587 - ffmpeg: fix reproducibility LIN1019-6587 - ffmpeg: Fix CVE-2020-35964, CVE-2020-35965 LIN1019-6587 - ffmpeg: disable GPL features by default LIN1019-6587 - ffmpeg: disable altivec on ppc by default LIN1019-6587 - ffmpeg: add srt package config knob LIN1019-6587 - ffmpeg: add PACKAGECONFIG support for x265 LIN1019-6587 - ffmpeg: add PACKAGECONFIG support for fdk-aac LIN1019-6620 - Revert "ffmpeg: Security Advisory - ffmpeg - CVE-2020-13904" LIN1019-6620 - Revert "ffmpeg: Security Advisory - ffmpeg - CVE-2020-12284" LIN1019-6620 - Revert "ffmpeg: fix CVE-2020-35964, CVE-2020-35965" LIN1019-6620 - ffmpeg: upgrade 4.2.1 -> 4.2.2 LIN1019-6620 - dhcp/ruby/ffpmeg: Use CFLAGS, not TARGET_CFLAGS LIN1019-6619 - Revert "ffmpeg: Security Advisory - ffmpeg - CVE-2020-13904" LIN1019-6619 - Revert "ffmpeg: Security Advisory - ffmpeg - CVE-2020-12284" LIN1019-6619 - Revert "ffmpeg: fix CVE-2020-35964, CVE-2020-35965" LIN1019-6619 - ffmpeg: upgrade 4.2.1 -> 4.2.2 LIN1019-6619 - dhcp/ruby/ffpmeg: Use CFLAGS, not TARGET_CFLAGS LIN1019-6605 - Revert "ffmpeg: Security Advisory - ffmpeg - CVE-2020-13904" LIN1019-6605 - Revert "ffmpeg: Security Advisory - ffmpeg - CVE-2020-12284" LIN1019-6605 - Revert "ffmpeg: fix CVE-2020-35964, CVE-2020-35965" LIN1019-6605 - ffmpeg: upgrade 4.2.1 -> 4.2.2 LIN1019-6605 - dhcp/ruby/ffpmeg: Use CFLAGS, not TARGET_CFLAGS LIN1019-6603 - Revert "ffmpeg: Security Advisory - ffmpeg - CVE-2020-13904" LIN1019-6603 - Revert "ffmpeg: Security Advisory - ffmpeg - CVE-2020-12284" LIN1019-6603 - Revert "ffmpeg: fix CVE-2020-35964, CVE-2020-35965" LIN1019-6603 - ffmpeg: upgrade 4.2.1 -> 4.2.2 LIN1019-6603 - dhcp/ruby/ffpmeg: Use CFLAGS, not TARGET_CFLAGS LIN1019-6589 - Revert "ffmpeg: Security Advisory - ffmpeg - CVE-2020-13904" LIN1019-6589 - Revert "ffmpeg: Security Advisory - ffmpeg - CVE-2020-12284" LIN1019-6589 - Revert "ffmpeg: fix CVE-2020-35964, CVE-2020-35965" LIN1019-6589 - ffmpeg: upgrade 4.2.1 -> 4.2.2 LIN1019-6589 - dhcp/ruby/ffpmeg: Use CFLAGS, not TARGET_CFLAGS LIN1019-6588 - Revert "ffmpeg: Security Advisory - ffmpeg - CVE-2020-13904" LIN1019-6588 - Revert "ffmpeg: Security Advisory - ffmpeg - CVE-2020-12284" LIN1019-6588 - Revert "ffmpeg: fix CVE-2020-35964, CVE-2020-35965" LIN1019-6588 - ffmpeg: upgrade 4.2.1 -> 4.2.2 LIN1019-6588 - dhcp/ruby/ffpmeg: Use CFLAGS, not TARGET_CFLAGS LIN1019-6587 - Revert "ffmpeg: Security Advisory - ffmpeg - CVE-2020-13904" LIN1019-6587 - Revert "ffmpeg: Security Advisory - ffmpeg - CVE-2020-12284" LIN1019-6587 - Revert "ffmpeg: fix CVE-2020-35964, CVE-2020-35965" LIN1019-6587 - ffmpeg: upgrade 4.2.1 -> 4.2.2 LIN1019-6587 - dhcp/ruby/ffpmeg: Use CFLAGS, not TARGET_CFLAGS LIN1019-6712 - nettle: fix CVE-2021-3580 LIN1019-6804 - qemu: Fix DHCP broken in libslirp none - srcrev.inc: wrlinux srcrev update 2021-07-09 none - Revert "python-pathlib: add 1.0.1 tarball to LTS19" none - Revert "wrlinux-recipes-list.inc: add python-pathlib as supported recipe" LIN1019-6758 - wrlinux-recipes-list.inc: add python-pathlib as supported recipe LIN1019-6758 - python-pathlib: add 1.0.1 tarball to LTS19 none - srcrev.inc: wrlinux srcrev update 2021-07-09 LIN1019-6779 - glibc: fix CVE-2021-35942 LIN1019-6795 - libsepol: fix CVE-2021-36084 CVE-2021-36085 CVE-2021-36086 LIN1019-6794 - libsepol: fix CVE-2021-36084 CVE-2021-36085 CVE-2021-36086 LIN1019-6793 - libsepol: fix CVE-2021-36084 CVE-2021-36085 CVE-2021-36086 LIN1019-6772 - multilib.bbclass: fix qa warning of kernel-devicetree none - srcrev.inc: wrlinux srcrev update 2021-07-08 none - srcrev.inc: wrlinux srcrev update 2021-07-02 LIN1019-6352 - meta-oe-dl-3-0.xml: add git.netfilter.org.libnftnl for libnftnl_1.1.4.bb LIN1019-6352 - wrlinux-recipes-list.inc: add nftables and libnftnl as supported recipes LIN1019-6352 - feature/nftables: add template LIN1019-6352 - nftables: add tarball to meta-oe-dl none - srcrev.inc: wrlinux srcrev update 2021-07-02 LIN1019-6662 - python3: use monotonic clock for condvar if possible LIN1019-6538 - go-systemd: explicitly specify branch LIN1019-6480 - wrlinux-distro: add python3-pyzmq python3-spidev to PNWHITELIST LIN1019-6479 - wrlinux-distro: add python3-pyzmq python3-spidev to PNWHITELIST LIN1019-6480 - python3-pyzmq python3-spidev: add tarball LIN1019-6479 - python3-pyzmq python3-spidev: add tarball none - srcrev.inc: wrlinux srcrev update 2021-07-01 LIN1019-6683 - apache2: fix CVE-2020-13950 CVE-2020-35452 CVE-2021-26690 CVE-2021-26691 CVE-2021-30641 LIN1019-6682 - apache2: fix CVE-2020-13950 CVE-2020-35452 CVE-2021-26690 CVE-2021-26691 CVE-2021-30641 LIN1019-6681 - apache2: fix CVE-2020-13950 CVE-2020-35452 CVE-2021-26690 CVE-2021-26691 CVE-2021-30641 LIN1019-6680 - apache2: fix CVE-2020-13950 CVE-2020-35452 CVE-2021-26690 CVE-2021-26691 CVE-2021-30641 LIN1019-6679 - apache2: fix CVE-2020-13950 CVE-2020-35452 CVE-2021-26690 CVE-2021-26691 CVE-2021-30641 LIN1019-5877 - wrlinux: support and whitelist libsodium and zeromq LIN1019-5877 - zeromq: upgrade 4.3.2 -> 4.3.3 LIN1019-5877 - zeromq: fix upstream version check LIN1019-5877 - zeromq: Fix host-specific path issue with libsodium LIN1019-5877 - czmq: fix upstream version check LIN1019-5877 - cppzmq: upgrade 4.4.1 -> 4.5.0 LIN1019-5877 - cppzmq: bump to version 4.6.0 LIN1019-5877 - zeromq: add tarball to meta-oe-dl LIN1019-5877 - libsodium: add tarball to meta-oe-dl none - srcrev.inc: wrlinux srcrev update 2021-06-24 LIN1019-6733 - wrlinux-base-whitelist.inc: add lksctp-tools LIN1019-6685 - polkit: fix CVE-2021-3560 LIN1019-6744 - rpm: add PACKAGECONFIG for the systemd inhibit plugin LIN1019-6730 - qemu: fix CVE-2021-3592 CVE-2021-3593 CVE-2021-3594 CVE-2021-3595 LIN1019-6729 - qemu: fix CVE-2021-3592 CVE-2021-3593 CVE-2021-3594 CVE-2021-3595 LIN1019-6728 - qemu: fix CVE-2021-3592 CVE-2021-3593 CVE-2021-3594 CVE-2021-3595 LIN1019-6727 - qemu: fix CVE-2021-3592 CVE-2021-3593 CVE-2021-3594 CVE-2021-3595 LIN1019-6409 - mariadb: upgrade to 10.3.29 in order to fix CVE-2021-2154,2166 LIN1019-6406 - mariadb: upgrade to 10.3.29 in order to fix CVE-2021-2154,2166 LIN1019-6409 - mariadb: upgrade to 10.3.29 LIN1019-6406 - mariadb: upgrade to 10.3.29 LIN1019-6710 - python-pip: fix CVE-2021-3572 LIN1019-6710 - python3-pip: fix CVE-2021-3572 LIN1019-6599 - curl: fix CVE-2021-22897 and CVE-2021-22898 LIN1019-6598 - curl: fix CVE-2021-22897 and CVE-2021-22898 LIN1019-6723 - bluez: fix CVE-2021-0129 none - srcrev.inc: wrlinux srcrev update 2021-06-20 none - srcrev.inc: wrlinux srcrev update 2021-06-18 none - srcrev.inc: wrlinux srcrev update 2021-06-17 LIN1019-6711 - connman: fix CVE-2021-33833 LIN1019-6617 - python-urllib3: fix CVE-2021-33503 none - srcrev.inc: wrlinux srcrev update 2021-06-15 LIN1019-6714 - intel-microcode: upgrade 20210216 -> 20210608 LIN1019-6714 - intel-microcode: upgrade 20201118 -> 20210216 LIN1019-6714 - intel-microcode: upgrade 20201112 -> 20201118 LIN1019-6714 - intel-microcode: upgrade 20201110 -> 20201112 LIN1019-6714 - intel-microcode: fix the license md5sum LIN1019-6713 - intel-microcode: upgrade 20210216 -> 20210608 LIN1019-6713 - intel-microcode: upgrade 20201118 -> 20210216 LIN1019-6713 - intel-microcode: upgrade 20201112 -> 20201118 LIN1019-6713 - intel-microcode: upgrade 20201110 -> 20201112 LIN1019-6713 - intel-microcode: fix the license md5sum LIN1019-6706 - intel-microcode: upgrade 20210216 -> 20210608 LIN1019-6706 - intel-microcode: upgrade 20201118 -> 20210216 LIN1019-6706 - intel-microcode: upgrade 20201112 -> 20201118 LIN1019-6706 - intel-microcode: upgrade 20201110 -> 20201112 LIN1019-6706 - intel-microcode: fix the license md5sum LIN1019-6714 - intel-microcode: upgrade 20200616 -> 20201110 LIN1019-6714 - intel-microcode: upgrade 20200609 -> 20200616 LIN1019-6713 - intel-microcode: upgrade 20200616 -> 20201110 LIN1019-6713 - intel-microcode: upgrade 20200609 -> 20200616 LIN1019-6706 - intel-microcode: upgrade 20200616 -> 20201110 LIN1019-6706 - intel-microcode: upgrade 20200609 -> 20200616 none - srcrev.inc: wrlinux srcrev update 2021-06-11 LIN1019-6694 - grpc: Link with libatomic on powerpc LIN1019-6474 - qemu: Avoid FreeBSD guest deadlocks with heavy I/O LIN1019-6693 - shim: Switch to use the main branch LIN1019-6693 - expat: update SRC_URI LIN1019-6703 - python3-pygments: fix CVE-2021-20270 LIN1019-6508 - libpcap: fix do_patch failure on reconfigure LIN1019-6596 - nginx: fix CVE-2021-23017 LIN1019-6546 - procps: top: In the bye_bye function, replace fputs with the write interface. LIN1019-6675 - gstreamer1.0-plugins-base: fix CVE-2021-3522 LIN1019-6485 - grub2.inc: remove '-O2' from CFLAGS LIN1019-6660 - libjpeg-turbo: fix CVE-2020-17541 LIN1019-6640 - libgcrypt: fix CVE-2021-33560 LIN1019-6649 - python3-pygments: fix CVE-2021-27291 LIN1019-6565 - rxvt-unicode: fix CVE-2021-33477 LIN1019-6612 - dhcp: fix CVE-2021-25217 none - srcrev.inc: wrlinux srcrev update 2021-06-06 none - wrlinux-version.inc: Move to update 18 none - srcrev.inc: wrlinux srcrev update 2021-06-03 LIN1019-6568 - go: fix CVE-2021-33195, CVE-2021-33196 LIN1019-6560 - go: fix CVE-2021-33195, CVE-2021-33196 LIN1019-6582 - go: fix CVE-2021-33197 none - srcrev.inc: wrlinux srcrev update 2021-06-02 LIN1019-6542 - libxml2: fix CVE-2021-3541 LIN1019-6355 - kubernetes: fix CVE-2021-25735 LIN1019-6559 - kubernetes: fix CVE-2021-25737 none - Merge branch 'WRLINUX_10_19_BASE' into WRLINUX_10_19_LTS LINUXEXEC-12789 - meta-networking-dl-3-0.xml: add github.com.protocolbuffers.upb.git for grpc_1.24.1.bb LINUXEXEC-12789 - meta-networking-dl-3-0.xml: add github.com.grpc.grpc.git for grpc_1.24.1.bb LINUXEXEC-12789 - meta-oe-dl-3-0.xml: add github.com.google.googletest.git for googletest_1.8.1.bb LINUXEXEC-12789 - wrlinux-recipes-list.inc: add grpc and googletest as supported recipes LINUXEXEC-12789 - feature/grpc: add feature/grpc none - Updated README.txt none - Updated docs for RCPL 17 none - srcrev.inc: wrlinux srcrev update 2021-05-28 LIN1019-6272 - samba:fix CVE-2020-27840 none - srcrev.inc: wrlinux srcrev update 2021-05-27 LIN1019-6526 - thunar: fix CVE-2021-32563 LIN1019-6554 - ceph: fix CVE-2021-3509 CVE-2021-3524 CVE-2021-3531 LIN1019-6553 - ceph: fix CVE-2021-3509 CVE-2021-3524 CVE-2021-3531 LIN1019-6530 - ceph: fix CVE-2021-3509 CVE-2021-3524 CVE-2021-3531 none - srcrev.inc: wrlinux srcrev update 2021-05-27 LIN1019-6543 - postgresql: Fix CVE-2021-32027 CVE-2021-32028 CVE-2021-32029 LIN1019-6513 - postgresql: Fix CVE-2021-32027 CVE-2021-32028 CVE-2021-32029 LIN1019-6512 - postgresql: Fix CVE-2021-32027 CVE-2021-32028 CVE-2021-32029 LIN1019-6501 - qemu: fix CVE-2021-3527 none - srcrev.inc: wrlinux srcrev update 2021-05-26 LIN1019-6562 - libsolv: fix CVE-2021-3200 LIN1019-4053 - u-boot: fix CVE-2020-8432 LIN1019-6570 - libgssglue: update SRC_URI to http://sources.openelec.tv/mirror/ LIN1019-6490 - python3-django: fix CVE-2021-31542, CVE-2021-32052 LIN1019-6487 - python3-django: fix CVE-2021-31542, CVE-2021-32052 LIN1019-6327 - ruby: fix CVE-2021-28965 LIN1019-6260 - python-lxml/python3-lxml: Fix CVE-2021-28957 none - srcrev.inc: wrlinux srcrev update 2021-05-26 LIN1019-6558 - libx11: fix CVE-2021-31535 LIN1019-6510 - kubernetes: Fix CVE-2021-20206 LIN1019-5777 - netplan: fix repo name ======================= LTS 19 Update 17 =============================== none - Merge branch 'WRLINUX_10_19_BASE' into WRLINUX_10_19_LTS LIN1019-5777 - meta-oe-dl-3-0.xml: add netplan git source LIN1019-5777 - python3-netifaces: add tarball for v2.3.1 LIN1019-5777 - python3-xxx: add 4 tarball LIN1019-5777 - wrlinux-recipes-list.inc: Make 4 python3-xxx supported LIN1019-5777 - feature/netplan: add template to enable netplan none - Merge branch 'wr-10.19-20191106' into WRLINUX_10_19_LTS LIN1019-5777 - netplan: upgrade 0.99 -> 0.100 LIN1019-5777 - netplan: upgrade 0.100 -> 0.101 LIN1019-5777 - netplan: Update to latest to fix build with -fno-common LIN1019-5777 - python3-pyflakes: Upgrade 2.3.0 -> 2.3.1 LIN1019-5777 - python3-pyflakes: Upgrade 2.2.0 -> 2.3.0 LIN1019-5777 - python3-pyflakes: Upgrade 2.1.1 -> 2.2.0 LIN1019-5777 - python3-pyflakes: Add python3 version LIN1019-5777 - netplan: upgrade 0.98 -> 0.99 LIN1019-5777 - netplan: rdep on python3 version of pyflakes LIN1019-5777 - netplan: Depend on systemd if it is in distro LIN1019-5777 - netplan: add recipe none - srcrev.inc: wrlinux srcrev update 2021-05-17 none - Merge branch 'WRLINUX_10_19_BASE' into WRLINUX_10_19_LTS LIN1019-5875 - tree: add tree-1.8.0.tgz to meta-oe-dl LIN1019-5875 - wrlinux: support and whitelist tree LIN1019-5876 - wrlinux: support and whitelist python3-lxml LIN1019-6544 - bjam-native: Update SRC_URI LIN1019-6484 - xmlsec1: fix do_fetch failure LIN1019-6023 - crash: add support for lockless ringbuffer LIN1019-6545 - puzzles: Switch to use the main branch LIN1019-6466 - bind: fix CVE-2021-25214, CVE-2021-25215 LIN1019-6465 - bind: fix CVE-2021-25214, CVE-2021-25215 LIN1019-6459 - protobuf: update SRC_URI none - Merge branch 'WRLINUX_10_19_BASE' into WRLINUX_10_19_LTS LIN1019-6459 - meta-oe-dl-3-0.xml: update the url for protobuf LIN1019-6459 - protobuf: update SRC_URI none - srcrev.inc: wrlinux srcrev update 2021-05-13 LIN1019-6504 - glib-2.0: fix ostree_git failed (do_compile) of wrlinux_intel-x86-64_std_ostree_efi-secure-boot_predefined_19-lts. LIN1019-6506 - libxml2: fix 4 CVEs LIN1019-6464 - libxml2: fix 4 CVEs LIN1019-6463 - libxml2: fix 4 CVEs LIN1019-6462 - libxml2: fix 4 CVEs LIN1019-6255 - libdnf: fix CVE-2021-3445 none - srcrev.inc: wrlinux srcrev update 2021-05-11 LIN1019-6379 - gstreamer1.0-plugins-good: Fix CVE-2021-3497 CVE-2021-3498 LIN1019-6378 - gstreamer1.0-plugins-good: Fix CVE-2021-3497 CVE-2021-3498 LIN1019-6469 - lz4: fix CVE-2021-3520 LIN1019-6353 - xserver-xorg: fix CVE-2021-3472 LIN1019-6033 - qemu: fix CVE-2021-3392 LIN1019-6475 - rpm: fix "signature hdr data: BAD" errors during do_rootfs none - New Titanium references per LINUXEXEC-13730 none - Added Titanium references per LINUXEXEC-13730 LIN1019-6322 - nettle: fix build some errors LIN1019-6436 - rpm: fix base-files do_package_write_rpm fails LIN1019-6311 - samba: fix CVE-2021-20277 LIN1019-6322 - nettle: fix CVE-2021-20305 LIN1019-6357 - ceph: fix CVE-2021-20288 LIN1019-6372 - qemu: fix CVE-2020-35504 CVE-2020-35505 LIN1019-6371 - qemu: fix CVE-2020-35504 CVE-2020-35505 LIN1019-6369 - libssh2: fix build failure with feature/openssl-no-weak-ciphers none - srcrev.inc: wrlinux srcrev update 2021-04-27 none - Merge branch 'WRLINUX_10_19_BASE' into WRLINUX_10_19_LTS LINUXEXEC-12103 - libgpiod: add tarball to meta-oe-dl LINUXEXEC-12103 - wrlinux-whitelist.conf: add libgpiod LINUXEXEC-12103 - wrlinux-recipes-list.inc: add libgpiod as supported recipe none - srcrev.inc: wrlinux srcrev update 2021-04-25 LIN1019-6312 - curl: fix CVE-2021-22876 LIN1019-6206 - python3: fix CVE-2021-3426 LINUXEXEC-10558 - update QAT to QAT1.7.L.4.13.0-00009 LINUXEXEC-10558 - qat: update qat to qat17_4.13.0-00009 to support ICE-D LIN1019-6138 - qemu: fix CVE-2021-3416 LIN1019-6331 - kernel-dev: add nativesdk-libgcc-dev and nativesdk-glibc-dev none - srcrev.inc: wrlinux srcrev update 2021-04-21 LIN1019-6348 - python3-django: fix CVE-2021-28658 none - srcrev.inc: wrlinux srcrev update 2021-04-21 none - srcrev.inc: wrlinux srcrev update 2021-04-20 LIN1019-6346 - binutils: fix CVE-2021-3487 LIN1019-6090 - qemu: fix CVE-2021-3409 none - srcrev.inc: wrlinux srcrev update 2021-04-15 LINUXEXEC-10558 - linux-firmware: update firmware from version 20200619 to 20201022 version LINUXEXEC-10558 - linux-firmware: update firmware from 20200619 to 20201022 none - srcrev.inc: wrlinux srcrev update 2021-04-14 LIN1019-6314 - redis: fix CVE-2021-3470 LIN1019-6325 - hostapd: fix CVE-2021-30004 LIN1019-6325 - wpa-supplicant: fix CVE-2021-30004 LIN1019-6294 - glib: fix test failure caused by upgrading tzdata to 2020b LIN1019-6299 - python3: add ldconfig rdepends for python3-ctypes LIN1019-6299 - glibc: move ldconfig to its own package LIN1019-6310 - archiver.bbclass: Fix --runall=deploy_archives for images LIN1019-6290 - rpm: fix CVE-2021-3421 and CVE-2021-20271 LIN1019-6289 - rpm: fix CVE-2021-3421 and CVE-2021-20271 none - srcrev.inc: wrlinux srcrev update 2021-04-07 LIN1019-5854 - binutils: fix CVE-2020-35494 none - Revert "oe-core-dl-3-0.xml: update pkg-config git repo" none - Revert "pkg-config: update SRC_URI git" LIN1019-6300 - grub-efi: enable secure-boot support only for target builds LIN1019-6300 - fixup! grub: fix 16 CVEs none - srcrev.inc: wrlinux srcrev update 2021-04-05 LIN1019-6309 - oe-core-dl-3-0.xml: update pkg-config git repo LIN1019-6309 - pkg-config: update SRC_URI git LIN1019-6276 - openssl: add feature openssl-111j LIN1019-6275 - openssl: add feature openssl-111j LIN1019-6276 - openssl: add tar.gz for openssl-1.1.1k LIN1019-6275 - openssl: add tar.gz for openssl-1.1.1k LIN1019-6276 - openssl: make 1.1.1k the default version LIN1019-6275 - openssl: make 1.1.1k the default version LIN1019-6276 - openssl: update to 1.1.1k to fix CVE-2021-3450 and CVE-2021-3449 LIN1019-6275 - openssl: update to 1.1.1k to fix CVE-2021-3450 and CVE-2021-3449 LIN1019-6276 - openssl: Enable building for RISC-V 32-bit LIN1019-6275 - openssl: Enable building for RISC-V 32-bit none - srcrev.inc: wrlinux srcrev update 2021-04-01 LIN1019-5458 - tigervnc: CVE-2020-26117 LIN1019-6240 - dnsmasq: fix CVE-2021-3448 LIN1019-5281 - syslog-ng: upgrade to version 3.24.1 to fix time dependent memory leaks LIN1019-5281 - syslog-ng: upgrade to version 3.24.1 none - srcrev.inc: wrlinux srcrev update 2021-03-29 LIN1019-6216 - glib: fix CVE-2021-28153 LIN1019-6166 - grub: fix 16 CVEs LIN1019-6165 - grub: fix 16 CVEs LIN1019-6164 - grub: fix 16 CVEs LIN1019-6163 - grub: fix 16 CVEs LIN1019-6162 - grub: fix 16 CVEs LIN1019-6161 - grub: fix 16 CVEs LIN1019-6160 - grub: fix 16 CVEs LIN1019-6159 - grub: fix 16 CVEs LIN1019-5140 - grub: fix 16 CVEs LIN1019-5139 - grub: fix 16 CVEs LIN1019-5138 - grub: fix 16 CVEs LIN1019-5137 - grub: fix 16 CVEs LIN1019-5134 - grub: fix 16 CVEs LIN1019-5133 - grub: fix 16 CVEs LIN1019-5132 - grub: fix 16 CVEs LIN1019-5131 - grub: fix 16 CVEs LIN1019-6166 - grub-efi: refresh secure boot patches LIN1019-6165 - grub-efi: refresh secure boot patches LIN1019-6164 - grub-efi: refresh secure boot patches LIN1019-6163 - grub-efi: refresh secure boot patches LIN1019-6162 - grub-efi: refresh secure boot patches LIN1019-6161 - grub-efi: refresh secure boot patches LIN1019-6160 - grub-efi: refresh secure boot patches LIN1019-6159 - grub-efi: refresh secure boot patches LIN1019-5140 - grub-efi: refresh secure boot patches LIN1019-5139 - grub-efi: refresh secure boot patches LIN1019-5138 - grub-efi: refresh secure boot patches LIN1019-5137 - grub-efi: refresh secure boot patches LIN1019-5134 - grub-efi: refresh secure boot patches LIN1019-5133 - grub-efi: refresh secure boot patches LIN1019-5132 - grub-efi: refresh secure boot patches LIN1019-5131 - grub-efi: refresh secure boot patches none - srcrev.inc: wrlinux srcrev update 2021-03-29 LIN1019-5266 - populate_sdk_ext: Fix confusing failure message LIN1019-6223 - glib: fix CVE-2021-27219, CVE-2021-27218 LIN1019-6222 - glib: fix CVE-2021-27219, CVE-2021-27218 LIN1019-6258 - cairo: fix compile error without C99 mode none - srcrev.inc: wrlinux srcrev update 2021-03-25 LIN1019-6256 - mariadb: upgrade to 10.3.28 in order to fix CVE-2021-27928 LIN1019-6256 - mariadb: upgrade to 10.3.28 LIN1019-6258 - cairo: fix CVE-2020-35492 none - srcrev.inc: wrlinux srcrev update 2021-03-25 none - IP disclosures - 2021-03-24 - 10.19.45.17 (remove SPDX) none - srcrev.inc: wrlinux srcrev update 2021-03-24 LIN1019-6254 - busybox: fix CVE-2021-28831 LIN1019-6097 - binutils: Security Advisory - binutils - CVE-2021-20197 none - wrlinux-version.inc: Move to update 17 LIN1019-6205 - gnutls: fix CVE-2021-27218 LIN1019-6202 - tiff: fix CVE-2020-35521, CVE-2020-35522 LIN1019-6201 - tiff: fix CVE-2020-35521, CVE-2020-35522 LIN1019-6194 - docker: fix CVE-2020-13401 none - Revert "glib: fix CVE-2021-27219, CVE-2021-27218" LIN1019-6223 - glib: fix CVE-2021-27219, CVE-2021-27218 LIN1019-6222 - glib: fix CVE-2021-27219, CVE-2021-27218 none - srcrev.inc: wrlinux srcrev update 2021-03-17 LIN1019-6229 - bridge-utils: Switch to use the main branch none - srcrev.inc: wrlinux srcrev update 2021-03-17 LIN1019-6004 - qemu: fix CVE-2021-20203 LIN1019-6195 - wrlinux-kernel-dev: enable SDK related patches only for wrlinux-kernel-dev LIN1019-6195 - Revert "linux-yocto: add more support for SDK" LIN1019-6153 - tiff: fix CVE-2020-35523, CVE-2020-35524 LIN1019-6152 - tiff: fix CVE-2020-35523, CVE-2020-35524 none - meta-efi-secure-boot-dl.xml: update shim git repo LIN1019-6145 - shim: update github address in SRC_URI none - srcrev.inc: wrlinux srcrev update 2021-03-17 LIN1019-6115 - openssl: add feature openssl-111i LIN1019-6115 - openssl: add tarball for openssl 1.1.1j LIN1019-6115 - openssl: make 1.1.1j the default version LIN1019-6115 - openssl: add recipe for 1.1.1i LIN1019-6115 - openssl: upgrade 1.1.1i -> 1.1.1j LIN1019-6130 - glibc: Fix CVE-2021-27645 none - srcrev.inc: wrlinux srcrev update 2021-03-17 LIN1019-6091 - subversion: fix CVE-2020-17525 LIN1019-6172 - binutils: WARNING: binutils-cross-x86_64-2.32.0-r0 do_patch: Fuzz detected LIN1019-6154 - quagga: fix do_fetch warning LIN1019-6154 - asciidoc: fix do_fetch warning LIN1019-6052 - docker: fix CVE-2020-15257 none - srcrev.inc: wrlinux srcrev update 2021-03-16 LIN1019-6208 - go: fix CVE-2021-27918 LIN1019-6215 - lxc_3.2.1: fix do_fetch error LINUXPG-420 - README.md: add "Activate New Content" section LIN1019-6200 - git: fix CVE-2021-21300 none - Updated docs for RCPL 16 LIN1019-5860 - tclap: fix branch ======================= LTS 19 Update 16 =============================== none - srcrev.inc: wrlinux srcrev update 2021-03-07 LIN1019-6147 - hostapd: fix CVE-2021-27803 LIN1019-6147 - wpa-supplicant: fix CVE-2021-27803 LIN1019-6137 - dropbear: fix CVE-2020-36254 LIN1019-6121 - libexif: fix CVE-2020-0182 LIN1019-4592 - libcroco: fix CVE-2020-12825 LIN1019-6088 - postgresql: fix CVE-2021-3393 LIN1019-6156 - README.md: update support link LIN1019-6146 - redis: fix CVE-2021-21309 none - srcrev.inc: wrlinux srcrev update 2021-03-03 LIN1019-6070 - bind: fix CVE-2020-8625 LIN1019-6087 - python3-django: fix CVE-2021-23336 LIN1019-6087 - python: fix CVE-2021-23336 none - srcrev.inc: wrlinux srcrev update 2021-03-01 LIN1019-5812 - kernel-devicetree: Introduce KERNEL_DTC_FLAGS to pass dtc flags LIN1019-5812 - kernel-devicetree: Fix intermittent build failures caused by DTB builds LIN1019-5191 - archiver.bbclass: Make do_deploy_archives a recursive dependency LIN1019-6066 - screen: fix CVE-2021-26937 LIN1019-6065 - openldap: fix CVE-2021-27212 none - srcrev.inc: wrlinux srcrev update 2021-03-01 LIN1019-6036 - hostapd: fix CVE-2021-0326 LIN1019-6036 - wpa-supplicant: fix CVE-2021-0326 LIN1019-5853 - binutils: fix CVE-2020-35493 LIN1019-6068 - openvswitch: fix CVE-2020-35498 LIN1019-6002 - glibc: CVE-2021-3326 LIN1019-5850 - glibc: CVE-2019-25013 LIN1019-5728 - glibc: CVE-2020-29562 and CVE-2020-29573 LIN1019-5727 - glibc: CVE-2020-29562 and CVE-2020-29573 LIN1019-5621 - glibc: CVE-2016-10228 and CVE-2020-27618 LIN1019-5503 - glibc: CVE-2016-10228 and CVE-2020-27618 LIN1019-6018 - docker: fix CVE-2021-21285 LIN1019-6017 - docker: fix CVE-2021-21284 none - srcrev.inc: wrlinux srcrev update 2021-02-24 none - Revert "binutils: fix CVE-2020-35493" LIN1019-6009 - python3-django: fix CVE-2021-3281 LIN1019-5853 - binutils: fix CVE-2020-35493 LIN1019-6032 - php: fix CVE-2021-21702 LIN1019-5921 - dnsmasq: fixeup for CVE-2020-25686 LIN1019-5920 - dnsmasq: fix CVE-2020-25685 LIN1019-5919 - dnsmasq: fix CVE-2020-25684 LIN1019-6022 - docker: fix CVE-2021-3121 LIN1019-6021 - docker: fix CVE-2020-9283 none - srcrev.inc: wrlinux srcrev update 2021-02-22 LIN1019-6050 - connman: fix CVE-2021-26675, CVE-2021-26676 LIN1019-6049 - connman: fix CVE-2021-26675, CVE-2021-26676 LIN1019-6034 - qemu: fix CVE-2021-20221 none - srcrev.inc: wrlinux srcrev update 2021-02-19 LIN1019-6039 - tar: fix CVE-2021-20193 LIN1019-5855 - binutils: fix CVE-2020-35495 none - srcrev.inc: wrlinux srcrev update 2021-02-18 LIN1019-5970 - go: fix CVE-2021-3114 LIN1019-6057 - libpcap: fix breakloop for linux on pcap_dispatch and check for sys/eventfd.h in autoconf LIN1019-6028 - netkit-telnet: update SRC_URI LIN1019-6028 - geoip-perl: update SRC_URI LIN1019-6028 - geoip: update SRC_URI LIN1019-5631 - python-cryptography: fix CVE-2020-25659 LIN1019-5916 - dnsmasq: fix CVE-2020-25681 LIN1019-5924 - python/python3: Fix CVE-2021-3177 LIN1019-6010 - phpmyadmin: fix CVE-2021-21252 LIN1019-5992 - openldap: fix CVE-2020-36221 - CVE-2020-36230 LIN1019-5991 - openldap: fix CVE-2020-36221 - CVE-2020-36230 LIN1019-5990 - openldap: fix CVE-2020-36221 - CVE-2020-36230 LIN1019-5989 - openldap: fix CVE-2020-36221 - CVE-2020-36230 LIN1019-5988 - openldap: fix CVE-2020-36221 - CVE-2020-36230 LIN1019-5978 - libvirt: fix a crash by changing the order of cleanup LIN1019-5883 - ceph: fix CVE-2020-25678 LINUXEXEC-8825" - wrlinux-recipes-list.inc: Make python3-requests-toolbelt supported none - wrlinux-version.inc: Move to update 16 LIN1019-5927 - libsdl2: fix CVE-2020-14409 CVE-2020-14410 LIN1019-5926 - libsdl2: fix CVE-2020-14409 CVE-2020-14410 LIN1019-5980 - dhcp: dhcrelay not always able to detect BOOTP replies LIN1019-5909 - qemu: fix CVE-2020-29443; CVE-2021-20181 LIN1019-5908 - qemu: fix CVE-2020-29443; CVE-2021-20181 none - srcrev.inc: wrlinux srcrev update 2021-01-31 LIN1019-5921 - dnsmasq: fix CVE-2020-25686 LIN1019-5487 - libproxy: fix CVE-2020-26154 LIN1019-5749 - curl: fix CVE-2020-8284, CVE-2020-8285, CVE-2020-8286 LIN1019-5748 - curl: fix CVE-2020-8284, CVE-2020-8285, CVE-2020-8286 LIN1019-5747 - curl: fix CVE-2020-8284, CVE-2020-8285, CVE-2020-8286 LIN1019-5648 - go: fix CVE-2020-28367 LIN1019-5984 - sudo: fix CVE-2021-3156 none - Revert "libproxy: fix CVE-2020-26154" LIN1019-5487 - libproxy: fix CVE-2020-26154 none - Revert "curl: fix CVE-2020-8284, CVE-2020-8285, CVE-2020-8286" LIN1019-5749 - curl: fix CVE-2020-8284, CVE-2020-8285, CVE-2020-8286 LIN1019-5748 - curl: fix CVE-2020-8284, CVE-2020-8285, CVE-2020-8286 LIN1019-5747 - curl: fix CVE-2020-8284, CVE-2020-8285, CVE-2020-8286 none - srcrev.inc: wrlinux srcrev update 2021-01-27 LIN1019-5913 - openjpeg: fix CVE-2020-27814; CVE-2020-27823; CVE-2020-27824 LIN1019-5912 - openjpeg: fix CVE-2020-27814; CVE-2020-27823; CVE-2020-27824 LIN1019-5911 - openjpeg: fix CVE-2020-27814; CVE-2020-27823; CVE-2020-27824 LIN1019-5976 - timezone: upgrade tar.gz archives 2020f -> 2021a LIN1019-5976 - timezone: upgrade to 2021a LIN1019-5928 - gstreamer1.0-plugins-bad: Fix CVE-2021-3185 LIN1019-5910 - php: fix CVE-2020-7071 LIN1019-5894 - python-py: fix CVE-2020-29651 LIN1019-5453 - recipes-weak-ciphers: remove no-ecdh and no-ecdsa LIN1019-5923 - oe-core-dl-3-0.xml: update babeltrace git repo LIN1019-5923 - babeltrace: update SRC_URI none - srcrev.inc: wrlinux srcrev update 2021-01-20 LIN1019-5897 - sudo: fix CVE-2021-23239; CVE-2021-23240 LIN1019-5896 - sudo: fix CVE-2021-23239; CVE-2021-23240 LIN1019-5893 - openldap: fix CVE-2020-25709, CVE-2020-25710 LIN1019-5892 - openldap: fix CVE-2020-25709, CVE-2020-25710 LIN1019-5814 - socat: update SRC_URI LIN1019-5814 - xfce-dusk-gtk3: update SRC_URI LIN1019-5814 - ntp: update SRC_URI LIN1019-5814 - mozjs: update SRC_URI LIN1019-5814 - gtk-xfce-engine: update SRC_URI none - srcrev.inc: wrlinux srcrev update 2021-01-20 LIN1019-5782 - binutils: fix CVE-2020-16592 none - srcrev.inc: wrlinux srcrev update 2021-01-19 none - Updated docs for RCPL 15 LIN1019-5750 - qemu: fix CVE-2020-27821 ======================= LTS 19 Update 15 =============================== none - srcrev.inc: wrlinux srcrev update 2021-01-13 LIN1019-5879 - dbus: fix CVE-2020-35512 LIN1019-5868 - openjpeg: fix CVE-2020-27841; CVE-2020-27842; CVE-2020-27843; CVE-2020-27845 LIN1019-5866 - openjpeg: fix CVE-2020-27841; CVE-2020-27842; CVE-2020-27843; CVE-2020-27845 LIN1019-5865 - openjpeg: fix CVE-2020-27841; CVE-2020-27842; CVE-2020-27843; CVE-2020-27845 LIN1019-5864 - openjpeg: fix CVE-2020-27841; CVE-2020-27842; CVE-2020-27843; CVE-2020-27845 LIN1019-5886 - linux-firmware_20190815: make linux-firmware-iwlwifi-Qu-c0-hr package name lowercase LIN1019-5881 - meta-cloud-services-dl-3-0.xml: update celt051 git repo LIN1019-5816 - openssl: add feature openssl-111d LIN1019-5816 - openssl: change bbappend to all version for mingw LIN1019-5816 - openssl: add tarball for openssl 1.1.1i LIN1019-5816 - openssl: upgrade 1.1.1g -> 1.1.1h LIN1019-5816 - openssl: Update 1.1.1h -> 1.1.1i LIN1019-5816 - openssl: openssl-bin requires openssl-conf to run LIN1019-5816 - openssl: add support for mingw64 as target LIN1019-5816 - openssl: Add c_rehash to misc package and add perl runtime dependency LIN1019-5816 - openssl: upgrade 1.1.1f -> 1.1.1g LIN1019-5816 - openssl: Upgrade 1.1.1d -> 1.1.1e LIN1019-5816 - openssl: update to 1.1.1f LIN1019-5816 - openssl: recommend cryptodev-module for corresponding PACKAGECONFIG LIN1019-5816 - openssl: pass PERL=perl environment variable to configurator LIN1019-5816 - openssl: move ${libdir}/[...]/openssl.cnf to ${PN}-conf LIN1019-5816 - openssl: make 1.1.1d no the default version LIN1019-5816 - openssl: fix perl shebang in c_rehash LIN1019-5816 - openssl: add recipe for 1.1.1d LIN1019-5816 - openssl: Add powerpc64 LE support LIN1019-5826 - celt051: update SRC_URI LIN1019-5613 - tunes: Add new tune file for cortexa55 LIN1019-5613 - tune-cortexa55.inc: switch to using armv8.2a include file LIN1019-5613 - tune-cortexa55.inc: crc and crypto extentions are default on cortex-a55 LIN1019-5613 - tune-cortexa55.inc: clean-up ARMv8.2a uses LIN1019-5613 - gcc: Fix the compilation issue with tune ARMv8.2a. LIN1019-5613 - armv8/tunes: Add tunes for supported ARMv8.2a cores LIN1019-5613 - arch-armv8-2a.inc: add tune include for armv8.2a LIN1019-5544 - gcc: Enable Marvell octeontx2 tune support. LIN1019-5107 - wkd-linux-yocto-headers: copy user header files to rootfs LIN1019-5846 - ffmpeg: fix CVE-2020-35964, CVE-2020-35965 LIN1019-5845 - ffmpeg: fix CVE-2020-35964, CVE-2020-35965 LIN1019-5823 - daq: Use fedora mirror for 2.0.6 version LIN1019-5825 - umip: save the source tgz file locally none - srcrev.inc: wrlinux srcrev update 2021-01-06 LIN1019-5827 - icu: update SRC_URI LIN1019-5861 - syslog-ng: add bison-native to dependencies LIN1019-5860 - tclap: fix branch LIN1019-5838 - qemu: CVE-2019-20808 CVE-2020-11947 LIN1019-5837 - qemu: CVE-2019-20808 CVE-2020-11947 LIN1019-5844 - timezone: upgrade tar.gz archives 2020e -> 2020f LIN1019-5844 - timezone: upgrade to 2020f none - srcrev.inc: wrlinux srcrev update 2021-01-05 none - Revert "esdk: install error under archiver feature" LIN1019-5191 - esdk: install error under archiver feature none - srcrev.inc: wrlinux srcrev update 2020-12-30 LIN1019-5806 - ceph: fix CVE-2020-27781 LIN1019-5821 - timezone: upgrade to 2020e none - Revert "timezone: upgrade to 2020e" LIN1018-7061 - timezone: upgrade to 2020e none - srcrev.inc: wrlinux srcrev update 2020-12-24 LIN1019-5810 - security_flags.inc: fix flags missing from SDK toolchain LIN1019-5809 - p11-kit: Fix CVE-2020-29361 LIN1019-5808 - p11-kit: Fix CVE-2020-29363 LIN1019-5807 - p11-kit: Fix CVE-2020-29362 LIN1019-5541 - python3: CVE-2020-27619 LIN1019-5703 - xorg-xserver: Fix CVE-2020-14360 LIN1019-5493 - ruby: CVE-2020-25613 none - srcrev.inc: wrlinux srcrev update 2020-12-17 none - wrlinux-version.inc: Move to update 15 none - IP disclosures - 2020-12-16 - 10.19.45.14 LIN1019-5704 - xorg-xserver: Fix CVE-2020-25712 none - srcrev.inc: wrlinux srcrev update 2020-12-15 none - srcrev.inc: wrlinux srcrev update 2020-12-14 LIN1019-5744 - openldap: Fix CVE-2020-25692 none - Fixed cover rcpl version LIN1019-5704 - Revert "xorg-xserver: Fix CVE-2020-25712" LIN1019-5704 - xorg-xserver: Fix CVE-2020-25712 none - srcrev.inc: wrlinux srcrev update 2020-12-10 LIN1019-5768 - openssl: Fix CVE-2020-1971 none - srcrev.inc: wrlinux srcrev update 2020-12-10 LIN1019-5726 - qemu-system-native: disable options not included in extended tarball none - srcrev.inc: wrlinux srcrev update 2020-12-10 LIN1019-5711 - python3-native: Should not search the system for headers/libraries. LIN1019-5699 - ptpd: Solve memory leak for function NTPDCrequest LIN1019-5686 - busybox: Fix CVE-2018-1000500 none - srcrev.inc: wrlinux srcrev update 2020-12-09 LIN1019-5654 - kernel-dev: remove kernel-sdk.bbclass LIN1019-5654 - kernel-dev: ensure building kernel scripts success LIN1019-5654 - kernel-dev: add yaml nativesdk packages LIN1019-5654 - kernel-dev: add nativesdk-openssl-dev LIN1019-5654 - toolchain-shar-extract.sh: remove legacy .o files LIN1019-5654 - populate_sdk_base: create_sdk_files: Use _nativesdk variants for libdir and base_libdir LIN1019-5654 - populate_sdk_base: Add ld.so.conf for nativesdk-binutils LIN1019-5654 - linux-yocto: add more support for SDK LIN1019-5654 - buildtools-tarball: Add an ld.so.conf for nativesdk-binutils LIN1019-5654 - binutils: Install non-alternatives links for nativesdk LIN1019-5654 - binutils: Fix relocation of ld.so.conf in nativesdk builds LIN1019-5626 - krb5: fix CVE-2020-28196 LIN1019-5615 - net-snmp: Fix snmpd daemon crash LIN1019-3977 - openssl: support mingw32-i686 compiling for nativesdk LIN1019-5729 - qemu: CVE-2020-28916 LIN1019-5701 - qemu: CVE-2020-25624 LIN1019-5689 - qemu: CVE-2020-29129 CVE-2020-29130 LIN1019-5688 - qemu: CVE-2020-29129 CVE-2020-29130 ======================= LTS 19 Update 14 =============================== none - Updated docs for RCPL 14 LIN1019-5680 - python3-pysensors: Require ldconfig feature for python3-pysensors none - srcrev.inc: wrlinux srcrev update 2020-11-24 none - srcrev.inc: wrlinux srcrev update 2020-11-23 LIN1019-5624 - qemu: CVE-2020-25085 CVE-2020-27617 LIN1019-5448 - qemu: CVE-2020-25085 CVE-2020-27617 LIN1019-5657 - lmsensors: Support native build for lmsensors LIN1019-5657 - python3-pysensor: Fix open native library failure when do_configure LIN1019-5647 - go: Security Advisory - go - CVE-2020-28366 none - Merge branch 'WRLINUX_10_19_BASE' into WRLINUX_10_19_LTS LIN1019-5663 - bin/setup.py: Add the --use-layer-groups option none - wrlinux-version.inc: Move to update 14 LIN1019-5663 - bin/setup.py: Add the --use-layer-groups option LIN1019-5253 - postgresql: Security Advisory - postgresql - CVE-2020-14350 none - Revert "go: Security Advisory - go - CVE-2020-28366" LIN1019-5647 - go: Security Advisory - go - CVE-2020-28366 LIN1019-5645 - postgresql: fix CVE-2020-25694 CVE-2020-25695 CVE-2020-25696 LIN1019-5644 - postgresql: fix CVE-2020-25694 CVE-2020-25695 CVE-2020-25696 LIN1019-5643 - postgresql: fix CVE-2020-25694 CVE-2020-25695 CVE-2020-25696 LINUXEXEC-10802 - python3-pysensors: Fix defect about find sensors library failure LIN1019-5632 - pacemaker: Security Advisory - pacemaker - CVE-2020-25654 none - Merge branch 'wr-10.19-20200305' into WRLINUX_10_19_LTS LIN1019-5623 - lz2: switch branch master to dev none - srcrev.inc: wrlinux srcrev update 2020-11-12 LIN1019-5604 - libssh2: fix ptest LIN1019-5619 - mariadb: upgrade 10.3.26 LIN1019-5591 - mariadb: upgrade 10.3.26 LIN1019-5586 - mariadb: upgrade 10.3.26 LIN1019-5582 - mariadb: upgrade 10.3.26 LIN1019-5573 - mariadb: upgrade 10.3.26 LIN1019-5619 - mariadb: upgrade 10.3.26 LIN1019-5591 - mariadb: upgrade 10.3.26 LIN1019-5586 - mariadb: upgrade 10.3.26 LIN1019-5582 - mariadb: upgrade 10.3.26 LIN1019-5573 - mariadb: upgrade 10.3.26 LIN1019-5633 - freetype & ghostscript: Security Advisory - freetype - CVE-2020-15999 LINUXEXEC-10802 - Add bb file for recipe python3-pysensors LINUXEXEC-10802 - Add PySensors-0.0.4.tar.gz for python3-pysensors_0.0.4.bb LIN1019-5459 - wrlinux-recipes-list.inc: Make libssh2 supported LIN1019-5625 - qemu: CVE-2020-27616 none - Added 'LTS_19' to recipe list names LIN1019-5616 - tcpdump: Security Advisory - tcpdump - CVE-2020-8037 LIN1019-5422 - libdbi-perl: Security Advisory - libdbi-perl - CVE-2014-10402 LIN1019-5620 - libexif: Security Advisory - libexif - CVE-2020-0452 none - Merge branch 'wr-10.19-20191106' into WRLINUX_10_19_LTS LIN1019-5623 - lvm2: switch branch master to main LIN1019-5622 - lvm2: switch branch master to main ======================= LTS 19 Update 13 =============================== none - Updated tutorials forRCPL 13, removed deprecated VRF tutorial none - Removing deprecated OverC guide none - Updated docs for RCPL 13 none - Adding new directory for recipe-lists per LINUXEXEC-10790 LIN1019-5518 - bluez5: Security Advisory - bluez5 - CVE-2020-27153 none - srcrev.inc: wrlinux srcrev update 2020-11-03 none - IP disclosures - 2020-11-02 - 10.19.45.12 LIN1019-5609 - samba: fix CVE-2020-14318 CVE-2020-14323 CVE-2020-14383 LIN1019-5608 - samba: fix CVE-2020-14318 CVE-2020-14323 CVE-2020-14383 LIN1019-5607 - samba: fix CVE-2020-14318 CVE-2020-14323 CVE-2020-14383 LIN1019-5523 - packagegroup-cross-canadian: repackage when multilibs gcc gdb binutils changes none - srcrev.inc: wrlinux srcrev update 2020-10-28 LIN1019-5537 - nss: Security Advisory - nss - CVE-2020-25648 none - srcrev.inc: wrlinux srcrev update 2020-10-27 LIN1019-5593 - timezone: upgrade to 2020d none - srcrev.inc: wrlinux srcrev update 2020-10-27 LIN1019-5494 - libvirt: fix CVE-2020-25637 LIN1019-5449 - qemu: CVE-2020-25084, 25625 LIN1019-5447 - qemu: CVE-2020-25084, 25625 LINUXEXEC-9478 - libssh2: enable ptest none - wrlinux-version.inc: Move to update 13 LIN1019-5538 - python3-urllib3: move CVE patch to bb file LIN1019-5485 - python3-urllib3: Security Advisory - python-urllib3 - CVE-2020-26137 LIN1019-5480 - phpmyadmin: fix CVE-2020-26934 and CVE-2020-26935 LIN1019-5479 - phpmyadmin: fix CVE-2020-26934 and CVE-2020-26935 LIN1019-5512 - libarchive: CVE-2020-21674 LIN1019-5500 - timezone: upgrade to 2020c LIN1019-4059 - check_gpg_key: Fix gpg-agent.conf creation race condition LIN1019-5527 - wic: Using the right rootfs size during prepare_rootfs when rootfs_wic is used LIN1019-5442 - gdbm: Disable readlind LIN1019-5498 - php: Security Advisory - php - CVE-2020-7070 LIN1019-5499 - php: Security Advisory - php - CVE-2020-7069 LIN1019-5469 - grpc: Define libdir and cmakedir in terms of multilib none - Merge branch 'wr-10.19-20191106' into WRLINUX_10_19_LTS LIN1019-5502 - intel-microcode: switch upstream branch master -> main LIN1019-5464 - dpdk: fix 5 CVEs LIN1019-5463 - dpdk: fix 5 CVEs LIN1019-5462 - dpdk: fix 5 CVEs LIN1019-5461 - dpdk: fix 5 CVEs LIN1019-5460 - dpdk: fix 5 CVEs ======================= LTS 19 Update 12 =============================== none - Merge branch 'wr-10.19-20191106' into WRLINUX_10_19_LTS LIN1019-5473 - thin-provisioning-tools: switch branch master to main none - srcrev.inc: wrlinux srcrev update 2020-10-12 none - Merge branch 'wr-10.19-20191015' into WRLINUX_10_19_LTS LIN1019-5477 - intel-microcode: switch upstream branch master -> main none - srcrev.inc: wrlinux srcrev update 2020-10-12 LIN1019-5457 - python3: Security Advisory - python - CVE-2020-26116 LIN1018-6400 - initramfs-framework: Change string equal from "==" to "=" LIN1019-5459 - wrlinux-recipes-list.inc: Make python-setuptools-scm supported none - srcrev.inc: wrlinux srcrev update 2020-09-28 LINUXEXEC-9478 - wrlinux-whitelist.conf: add libssh2 none - Merge branch 'wr-10.19-20191106' into WRLINUX_10_19_LTS LINUXEXEC-9478 - libssh2: add nativesdk support LINUXEXEC-9478 - libssh2: Security Advisory - libssh2 - CVE-2019-17498 LINUXEXEC-9478 - libssh2: upgrade 1.8.2 -> 1.9.0 none - Merge branch 'WRLINUX_10_19_BASE' into WRLINUX_10_19_LTS LINUXEXEC-9478 - libssh2: add tarball to meta-oe-dl none - srcrev.inc: wrlinux srcrev update 2020-09-28 LIN1019-4216 - glibc: CVE-2020-6096 LIN1019-4842 - gcc: mitigate the Straight-line Speculation attack LIN1019-5438 - samba: regenerate the patch of upstream 10ef5b63e7a169154401e58f7a29ed25443e5318f none - IP disclosures - 2020-09-23 - 10.19.45.11 none - srcrev.inc: wrlinux srcrev update 2020-09-23 LIN1019-5264 - qemu: CVE-2020-12829 LIN1019-5438 - samba: Security Advisory - samba - CVE-2020-1472 none - srcrev.inc: wrlinux srcrev update 2020-09-22 none - srcrev.inc: wrlinux srcrev update 2020-09-21 none - Merge branch 'WRLINUX_10_19_BASE' into WRLINUX_10_19_LTS LIN1019-5383 - wrlinux-dl.xml: Add github.com.opcm.pcm.git for intel-pcm_202008.bb LIN1019-5383 - intel-pcm: upgrade to github version 202008 instead of the old zip LIN1019-5371 - libproxy: Security Advisory - libproxy - CVE-2020-25219 LIN1019-5421 - cryptsetup: fix CVE-2020-14382 LIN1019-5402 - cups: fix CVE-2019-2228 CVE-2019-8842 CVE-2020-3898 LIN1019-5401 - cups: fix CVE-2019-2228 CVE-2019-8842 CVE-2020-3898 LIN1019-5398 - cups: fix CVE-2019-2228 CVE-2019-8842 CVE-2020-3898 LIN1019-5430 - libdbi-perl: Security Advisory - libdbi-perl - CVE-2019-20919 LIN1019-5406 - meta-freescale: fmc: modify fmc to use new commit id to replace patches LIN1019-5315 - librepo: CVE-2020-14352 LIN1019-5413 - libdbi-perl: fix CVE-2020-14392 CVE-2020-14393 LIN1019-5412 - libdbi-perl: fix CVE-2020-14392 CVE-2020-14393 none - srcrev.inc: wrlinux srcrev update 2020-09-16 LINUXEXEC-8825 - wrlinux-whitelist.conf: add python3-requests-toolbelt LINUXEXEC-8825 - python3-requests-toolbelt: add tarball for v0.9.1 none - Merge branch 'wr-10.19-20191106' into WRLINUX_10_19_LTS LINUXEXEC-8825 - python3-requests-toolbelt: add recipe for v0.9.1 LIN1019-5357 - nasm: fix CVE-2020-24978 LIN1019-5406 - meta-freescale: fmc: add MIT license descriptions to fix license issue none - bison: revert the patches of CVE-2020-24979 and CVE-2020-24980 none - bison: revert the fix of CVE-2020-24979 LIN1019-5359 - bison: fix CVE-2020-24240 CVE-2020-24979 CVE-2020-24980 LIN1019-5358 - bison: fix CVE-2020-24240 CVE-2020-24979 CVE-2020-24980 LIN1019-5292 - bison: fix CVE-2020-24240 CVE-2020-24979 CVE-2020-24980 LIN1019-5373 - php: Security Advisory - php - CVE-2020-7068 LIN1019-5388 - procps: append another patch for top crash issue LIN1019-5388 - procps: fix the top command crash issue LIN1019-5382 - wrlinux-recipes-list.inc: Update it for new third-party-dl.bbclass LIN1019-5382 - third-party-dl.bbclass: Refactor to avoid unnecessary dependencies LIN1019-5329 - python3-django: fix CVE-2020-24583 CVE-2020-24584 LIN1019-5328 - python3-django: fix CVE-2020-24583 CVE-2020-24584 none - wrlinux-version.inc: Move to update 12 LIN1019-5059 - cgl-unittest: sec.1.3: fix load_policy path LIN1019-5355 - libxml2: Fix CVE-2020-24977 LIN1019-5351 - wrlinux-recipes-list.inc: Add linux-yocto-tiny to WRLINUX_SUPPORTED_RECIPES LIN1019-5367 - json-c: remove the old patches of CVE-2020-12762 LIN1019-4551 - json-c: remove the old patches of CVE-2020-12762 LIN1019-5367 - json-c: redo the fix of CVE-2020-12762 LIN1019-4551 - json-c: redo the fix of CVE-2020-12762 none - srcrev.inc: wrlinux srcrev update 2020-09-08 LIN1019-5356 - gnutls: CVE-2020-24659 LIN1019-5339 - go: Security Advisory - go - CVE-2020-24553 LIN1019-4891 - wrlinux: lxdm-theme: upgrade the resolution of wallpapers to 4k LIN1019-5323 - wrlinux-recipes-list.inc: Add libsign to WRLINUX_SUPPORTED_RECIPES LIN1019-5243 - lua: fix CVE-2020-24371 LIN1019-5324 - qemu: CVE-2020-14364 LIN1019-5305 - ceph: fix CVE-2020-1700 none - srcrev.inc: wrlinux srcrev update 2020-09-03 LIN1019-5279 - nss: fix 9 CVEs LIN1019-5326 - hostapd: CVE-2020-12695 LIN1019-5273 - bind: Security Advisory - bind - CVE-2020-8624 LIN1019-5272 - bind: Security Advisory - bind - CVE-2020-8623 LIN1019-5271 - bind: Security Advisory - bind - CVE-2020-8622 LIN1018-6645 - sssd: Make manpages buildable LIN1019-5255 - net-snmp: Fix CVE-2020-15861 and CVE-2020-15862 LIN1019-5254 - net-snmp: Fix CVE-2020-15861 and CVE-2020-15862 LIN1019-5021 - ucarp: force to use TLS1.2 during do_fetch ======================= LTS 19 Update 11 =============================== LINUXEXEC-9578 - xserver-xorg: make manpage mutlilib identical LINUXEXEC-9578 - xinit: make manpages multilib identical LINUXEXEC-9578 - libffi: fix multilib header conflict LINUXEXEC-9578 - gtk-doc: Fix reproducibity issues LINUXEXEC-9578 - gpgme: fix multilib header conflict LINUXEXEC-9578 - gcc-runtime.inc: fix m32 compile fail with x86-64 compiler LINUXEXEC-9578 - mozjs: fix multilib conflict LIN1019-5198 - feature/systemdebug: Correct kernel feature sysrq path none - srcrev.inc: wrlinux srcrev update 2020-08-28 LIN1019-5274 - create-user-key-store.sh: Replace weak des3 cipher with aes256 none - Updated docs for RCPL 11 LIN1019-5299 - xserver-xorg: fix CVE-2020-14345/CVE-2020-14346/CVE-2020-14361/CVE-2020-14362 LIN1019-5298 - xserver-xorg: fix CVE-2020-14345/CVE-2020-14346/CVE-2020-14361/CVE-2020-14362 LIN1019-5297 - xserver-xorg: fix CVE-2020-14345/CVE-2020-14346/CVE-2020-14361/CVE-2020-14362 LIN1019-5296 - xserver-xorg: fix CVE-2020-14345/CVE-2020-14346/CVE-2020-14361/CVE-2020-14362 LIN1019-5301 - libexif: fix CVE-2019-9278 CVE-2020-0198 LIN1019-5294 - libexif: fix CVE-2019-9278 CVE-2020-0198 none - srcrev.inc: wrlinux srcrev update 2020-08-27 LIN1019-5295 - libx11: Security Advisory - libx11 - CVE-2020-14363 LIN1019-5289 - nasm: Security Advisory - nasm - CVE-2020-24241 LINUXEXEC-9524 - wrlinux-recipes-list.inc: update it LIN1019-5290 - sqlite3: Security Advisory - nasm - CVE-2020-24242 LIN1019-5265 - libexif: Security Advisory - libexif - CVE-2020-0093 LIN1019-5268 - curl: Security Advisory - curl - CVE-2020-8231 LIN1018-6585 - postgresql: Security Advisory - postgresql - CVE-2020-14349 LIN1019-5194 - xfce4-session: Set higher priority to ALTERNATIVE_PRIORITY_xfce4-session LIN1019-5182 - nss: Fix regression testing failures caused by expired PayPalEE.cert LIN1019-4997 - qemu: CVE-2020-10756 none - srcrev.inc: wrlinux srcrev update 2020-08-23 LIN1019-5158 - libx11: fix CVE-2020-14344 LINUXEXEC-8812 - Revert "wrlinux-whitelist.conf: add python3-fastentrypoints" LINUXEXEC-8812 - Revert "python3-fastentrypoints: add tarball" LINUXEXEC-9521 - EULA: Add Customer notification/warning for externally downloadable components LINUXEXEC-9524 - wrlinux-recipes-list.inc: add it LINUXEXEC-9524 - wrlinux.conf: enable Enable third download notice by default LINUXEXEC-9524 - third-party-dl.bbclass: Add it LINUXEXEC-8370 - feature/template/unit-test: add feature unit-test none - Merge branch 'wr-10.19-20191106' into WRLINUX_10_19_LTS LINUXEXEC-8370 - cunit: add ptest none - Merge branch 'wr-10.19-20191106' into WRLINUX_10_19_LTS LIN1019-5240 - nginx: PNBLACKLIST use weak assignments LIN1019-5192 - qemu: CVE-2020-16092 none - srcrev.inc: wrlinux srcrev update 2020-08-17 LIN1019-5232 - ghostscript: fix 25 CVEs LIN1019-5231 - ghostscript: fix 25 CVEs LIN1019-5230 - ghostscript: fix 25 CVEs LIN1019-5229 - ghostscript: fix 25 CVEs LIN1019-5215 - ghostscript: fix 25 CVEs LIN1019-5207 - trousers: fix CVE-2020-24330 CVE-2020-24331 CVE-2020-24332 LIN1019-5206 - trousers: fix CVE-2020-24330 CVE-2020-24331 CVE-2020-24332 LIN1019-5205 - trousers: fix CVE-2020-24330 CVE-2020-24331 CVE-2020-24332 none - srcrev.inc: wrlinux srcrev update 2020-08-13 none - Merge branch 'wr-10.19-20191106' into WRLINUX_10_19_LTS LINUXEXEC-9143 - mcelog: add Icelake-server support none - srcrev.inc: wrlinux srcrev update 2020-08-13 LIN1019-4441 - bash: remove patch logic for configure none - Merge branch 'wr-10.19-20191106' into WRLINUX_10_19_LTS LIN1019-5193 - dpdk: replace the "mater" with "main" LIN1019-5159 - xserver-xorg: Security Advisory - xserver-xorg - CVE-2020-14347 LIN1019-5171 - go: CVE-2020-16845 LIN1019-5188 - apache2: fix CVE-2020-11984, CVE-2020-11993, CVE-2020-9490 LIN1019-5186 - apache2: fix CVE-2020-11984, CVE-2020-11993, CVE-2020-9490 LIN1019-5185 - apache2: fix CVE-2020-11984, CVE-2020-11993, CVE-2020-9490 none - srcrev.inc: wrlinux srcrev update 2020-08-10 LIN1019-5120 - qemu: CVE-2020-15863 none - srcrev.inc: wrlinux srcrev update 2020-08-10 LIN1019-5110 - lua: fix CVE-2020-15945 LIN1019-5175 - nxp-secure-boot: set PNWHITELIST manually none - srcrev.inc: wrlinux srcrev update 2020-08-06 LINUXEXEC-8774 - nxp-secure-boot: set correct variable value for BSP nxp-ls1043 LINUXEXEC-8774 - nxp-secure-boot: remove BOOT_HO flag from rcw file LINUXEXEC-8774 - nxp-secure-boot: improve environment variable setting for BSP nxp-ls1043 LINUXEXEC-8774 - nxp-secure-boot: create a secure boot wks file for BSP nxp-ls1043 LINUXEXEC-8774 - nxp-secure-boot: add uefi bbappend for secure boot feature LINUXEXEC-8774 - nxp-secure-boot: add u-boot-qoriq bbappend for secure boot feature LINUXEXEC-8774 - nxp-secure-boot: add secure boot README file for BSP nxp-ls1043 LINUXEXEC-8774 - nxp-secure-boot: add secure boot package for secure boot feature LINUXEXEC-8774 - nxp-secure-boot: add secure boot layer for nxp layerscape series platform LINUXEXEC-8774 - nxp-secure-boot: add sample super root key pair LINUXEXEC-8774 - nxp-secure-boot: add rcw bbappend for secure boot feature LINUXEXEC-8774 - nxp-secure-boot: add CST bbappend for secure boot feature LINUXEXEC-8774 - nxp-secure-boot: add atf bbappend for secure boot feature none - srcrev.inc: wrlinux srcrev update 2020-08-04 LIN1019-5105 - libpam: Remove option 'obscure' from common-password none - srcrev.inc: wrlinux srcrev update 2020-08-03 none - wrlinux-version.inc: Move to update 11 LIN1019-5113 - kubernetes: fix three CVE issues LIN1019-5100 - kubernetes: fix three CVE issues LIN1019-5097 - kubernetes: fix three CVE issues LIN1019-5141 - template: dpdk: add the support for qemux86_64 and qemux86 back to dpdk/template.conf none - srcrev.inc: wrlinux srcrev update 2020-07-30 none - Merge branch 'WRLINUX_10_19_BASE' into WRLINUX_10_19_LTS LIN1019-5115 - Add linux-firmware-20200619.tar.xz for linux-firmware-20200619.bb none - Merge branch 'wr-10.19-20200305' into WRLINUX_10_19_LTS LIN1019-5115 - linux-firmware: Make linux-firmware_20200619.bb not to used by default LIN1019-5115 - linux-firmware: Add linux-firmware_20200619.bb for intel-x86 bsp none - Updated docs for RCPL 10 LIN1019-4445 - glibc: CVE-2020-1751 and CVE-2020-1752 LIN1019-4352 - glibc: CVE-2020-1751 and CVE-2020-1752 LIN1019-5076 - go: Security Advisory - go - CVE-2020-15586 none - srcrev.inc: wrlinux srcrev update 2020-07-29 LINUXEXEC-8645 - template: dpdk: add specification for nxp bsps in README LINUXEXEC-8645 - template: dpdk: add support for nxp bsps none - srcrev.inc: wrlinux srcrev update 2020-07-27 LIN1019-5095 - lua: Security Advisory - lua - CVE-2020-15888 ======================= LTS 19 Update 10 =============================== LIN1019-5011 - python3: fix CVE-2019-20907 LIN1019-4996 - nss: Fix CVE-2020-12399 none - srcrev.inc: wrlinux srcrev update 2020-07-20 LINUXEXEC-8646 - wrlinux: conf: fix "No bb files matched BBFILE_PATTERN_wr-nxp-lx2xxx" warning LIN1019-4808 - qemu: CVE-2020-13253 CVE-2020-13791 LIN1019-4729 - qemu: CVE-2020-13253 CVE-2020-13791 none - Removed STIG guides per Oleg none - srcrev.inc: wrlinux srcrev update 2020-07-17 LIN1019-5070 - curl: Security Advisory - curl - CVE-2020-8169 LIN1019-5071 - curl: Security Advisory - curl - CVE-2020-8177 none - srcrev.inc: wrlinux srcrev update 2020-07-16 none - srcrev.inc: wrlinux srcrev update 2020-07-15 none - srcrev.inc: wrlinux srcrev update 2020-07-14 none - srcrev.inc: wrlinux srcrev update 2020-07-13 none - Merge branch 'WRLINUX_10_19_BASE' into WRLINUX_10_19_LTS LINUXEXEC-8646 - Add CUnit-2.1-3.tar.bz2 for cunit_2.1-3.bb none - Merge branch 'WRLINUX_10_19_BASE' into WRLINUX_10_19_LTS LINUXEXEC-8646 - wrlinux: data: xml: add dpaa2 related components support for meta-freescale-dl layer none - srcrev.inc: wrlinux srcrev update 2020-07-13 none - Merge branch 'wr-10.19-20200305' into WRLINUX_10_19_LTS none - linux-firmware: move ibt-misc to the end of ibt packages LIN1019-4940 - net-snmp: Fix CVE-2019-20892 LIN1019-4981 - perl: Adjust the line context to avoid warning LIN1019-4811 - perl: Adjust the line context to avoid warning LIN1019-4936 - sqlite3: Security Advisory - sqlite3 - CVE-2020-15358 none - srcrev.inc: wrlinux srcrev update 2020-07-12 LINUXPG-476 - python3-setuptools: patch entrypoints for faster initialization none - srcrev.inc: wrlinux srcrev update 2020-07-09 LIN1019-4966 - freediameter: Fix testcnx ptest failure none - srcrev.inc: wrlinux srcrev update 2020-07-08 LIN1019-4935 - ntp: new tempalte to enable ntp 4.2.8p15 none - Merge branch 'wr-10.19-20191106' into WRLINUX_10_19_LTS LIN1019-4935 - ntp: upgrade to 4.2.8p15 to fix CVE-2020-15025 none - Merge branch 'WRLINUX_10_19_BASE' into WRLINUX_10_19_LTS LIN1019-4935 - add ntp-4.2.8p15.tar.gz none - Merge branch 'wr-10.19-20200305' into WRLINUX_10_19_LTS LINUXEXEC-8648 - linux-firmware: fix the wrong file path for ibt-misc none - srcrev.inc: wrlinux srcrev update 2020-07-08 LIN1019-4988 - samba: fix CVE-2020-10730, CVE-2020-10745, CVE-2020-10760, CVE-2020-14303 LIN1019-4987 - samba: fix CVE-2020-10730, CVE-2020-10745, CVE-2020-10760, CVE-2020-14303 LIN1019-4983 - samba: fix CVE-2020-10730, CVE-2020-10745, CVE-2020-10760, CVE-2020-14303 LIN1019-4982 - samba: fix CVE-2020-10730, CVE-2020-10745, CVE-2020-10760, CVE-2020-14303 none - srcrev.inc: wrlinux srcrev update 2020-07-07 none - srcrev.inc: wrlinux srcrev update 2020-07-06 LIN1019-4938 - ceph: fix CVE-2020-10753 none - srcrev.inc: wrlinux srcrev update 2020-07-05 LIN1019-4811 - perl: fix CVE-2020-10878 none - Merge branch 'wr-10.19-20200305' into WRLINUX_10_19_LTS LIN1019-4972 - iso-codes: switch branch master -> main none - Updated docs for LTS 19 RCPL 9 LIN1019-4684 - qemu: Add PACKAGECONFIG for glusterfs LIN1019-3419 - pm-graph: add flags support for RT kernel LIN1019-4957 - openjpeg: Security Advisory - openjpeg - CVE-2020-15389 LIN1019-4885 - python3: Security Advisory - python3 - CVE-2020-14422 LIN1019-4727 - qemu: Security Advisory - qemu - CVE-2020-13362 none - srcrev.inc: wrlinux srcrev update 2020-07-02 none - wrlinux-version.inc: Move to update 10 none - srcrev.inc: wrlinux srcrev update 2020-07-02 LIN1019-4959 - wrlinux-whitelist.conf: fix "No bb files matched BBFILE_PATTERN_wr-nxp-ls1043 & wr-nxp-ls1028" warnings none - srcrev.inc: wrlinux srcrev update 2020-07-02 LINUXEXEC-8646 - meta-freescale: odp: modify CFLAGS to fix build errors with GCC-9.2 US102688 - meta-freescale: odp-module: add a patch to fix the build error US118835 - meta-freescale: odp: drop no existed header file to fix the build error LIN1019-4951 - meta/recipes-graphics/waffle: Add python3 dependency LIN1019-4810 - perl: Fix CVE-2020-12723 LIN1019-4812 - perl: Fix CVE-2020-10543 ======================= LTS 19 Update 9 =============================== none - Merge branch 'wr-10.19-20200305' into WRLINUX_10_19_LTS LINUXEXEC-8437 - linux-firmware: add iwlwifi FWs Qu for IceLake-Y/U none - srcrev.inc: wrlinux srcrev update 2020-06-28 LIN1019-4766 - qemu: Security Advisory - qemu - CVE-2020-13754 LIN1019-4853 - nfs-utils: fix CVE-2019-3689 none - Merge branch 'WRLINUX_10_19_BASE' into WRLINUX_10_19_LTS LINUXEXEC-8359 - wrlinux: data: xml: change tsntool dl layer from nxp-ls1028-dl to meta-freescale-dl none - srcrev.inc: wrlinux srcrev update 2020-06-27 none - Merge branch 'wr-10.19-20200305' into WRLINUX_10_19_LTS LIN1019-4894 - kexec-tools: add missing patch for arm64 kexec-tools none - srcrev.inc: wrlinux srcrev update 2020-06-27 none - meta-freescale: update tsntool to version v0.4 none - srcrev.inc: wrlinux srcrev update 2020-06-27 none - srcrev.inc: wrlinux srcrev update 2020-06-24 none - srcrev.inc: wrlinux srcrev update 2020-06-23 LINUXEXEC-7948 - qemu: enable Intel AVX512_BF16 feature none - srcrev.inc: wrlinux srcrev update 2020-06-22 none - Merge branch 'wr-10.19-20200305' into WRLINUX_10_19_LTS LIN1019-4899 - libmodulemd: switch branch master -> main none - srcrev.inc: wrlinux srcrev update 2020-06-22 LIN1019-4773 - libjpeg-turbo: Fix CVE-2020-13790 LIN1019-4768 - systemd: fix CVE-2020-13776 none - srcrev.inc: wrlinux srcrev update 2020-06-21 none - srcrev.inc: wrlinux srcrev update 2020-06-19 none - srcrev.inc: wrlinux srcrev update 2020-06-18 LIN1019-4220 - kubernetes: CVE-2019-11254 none - srcrev.inc: wrlinux srcrev update 2020-06-18 LIN1019-4774 - gnutls: fixed CVE-2020-13777 none - IP disclosures - 2020-06-17 - 10.19.45.08 LIN1019-4849 - libpcre: Security Advisory - libpcre - CVE-2020-14155 LIN1019-4814 - ffmpeg: Security Advisory - ffmpeg - CVE-2020-13904 LIN1019-4840 - toolchain-shar-extract: ignore timestamp on decompress none - Merge branch 'wr-10.19-20191015' into WRLINUX_10_19_LTS LIN1019-4829 - intel-microcode: upgrade version 20200609 none - srcrev.inc: wrlinux srcrev update 2020-06-15 LIN1019-4816 - dbus: CVE-2020-12049 LIN1019-4817 - kubernetes: CVE-2020-8555 LIN1019-4844 - qemu: fix 6 CVEs LIN1019-4839 - qemu: fix 6 CVEs LIN1019-4815 - qemu: fix 6 CVEs LIN1019-4809 - qemu: fix 6 CVEs LIN1019-4807 - qemu: fix 6 CVEs LIN1019-4767 - qemu: fix 6 CVEs none - srcrev.inc: wrlinux srcrev update 2020-06-12 none - srcrev.inc: wrlinux srcrev update 2020-06-11 LIN1019-4770 - libvirt: fix CVE-2020-10703 none - srcrev.inc: wrlinux srcrev update 2020-06-11 LIN1019-4805 - sqlite3: CVE-2020-13871 none - srcrev.inc: wrlinux srcrev update 2020-06-10 none - wrlinux-version.inc: Move to update 9 none - srcrev.inc: wrlinux srcrev update 2020-06-10 none - srcrev.inc: wrlinux srcrev update 2020-06-09 none - Merge branch 'wr-10.19-20200305' into WRLINUX_10_19_LTS LINUXEXEC-7949 - arm64: continue loading even if kaslr-seed is not wiped to zero LIN1019-4658 - bind: CVE-2020-8616, CVE-2020-8617 LIN1019-4657 - bind: CVE-2020-8616, CVE-2020-8617 none - Updated release notes, ubuntu 20.04, kernel rebase LIN1019-4827 - linux-modules.tgz: fix file permissions to root none - srcrev.inc: wrlinux srcrev update 2020-06-09 none - srcrev.inc: wrlinux srcrev update 2020-06-08 none - Merge branch 'wr-10.19-20191106' into WRLINUX_10_19_LTS LIN1019-4820 - turbostat: add libcap to DEPENDS list none - Updated docs for RCPL 8 none - srcrev.inc: wrlinux srcrev update 2020-06-08 LIN1019-4726 - sqlite3: CVE-2020-13630 CVE-2020-13631 CVE-2020-13632 LIN1019-4725 - sqlite3: CVE-2020-13630 CVE-2020-13631 CVE-2020-13632 LIN1019-4724 - sqlite3: CVE-2020-13630 CVE-2020-13631 CVE-2020-13632 LIN1019-4237 - gnutls: fix CVE-2020-11501 LIN1019-4777 - openssh: Security Advisory - openssh - CVE-2020-12062 LIN1019-4788 - python3-django: fix 6 CVEs LIN1019-4787 - python3-django: fix 6 CVEs LIN1019-4786 - python3-django: fix 6 CVEs LIN1019-4785 - python3-django: fix 6 CVEs LIN1019-4784 - python3-django: fix 6 CVEs LIN1019-4776 - python3-django: fix 6 CVEs LIN1019-3979 - python2: modify CVE-2020-8492 none - srcrev.inc: wrlinux srcrev update 2020-06-04 ======================= LTS 19 Update 8 =============================== none - srcrev.inc: wrlinux srcrev update 2020-06-03 LIN1019-4418 - ffmpeg: Security Advisory - ffmpeg - CVE-2020-12284 LIN1019-3979 - Python2: fix AbstractBasicAuthHandler of urllib2.py LIN1019-4628 - lttng-modules: Fix "conflicting types for 'trace_fast_page_fault'" error none - srcrev.inc: wrlinux srcrev update 2020-06-03 LIN1019-4732 - glib-networking: fix a build issue introduced by the fix of CVE-2020-13645 none - srcrev.inc: wrlinux srcrev update 2020-06-02 none - Merge branch 'WRLINUX_10_19_BASE' into WRLINUX_10_19_LTS LINUXEXEC-7949 - meta-freescale-dl.xml: Add source.codeaurora.org.external.qoriq.qoriq-components.rcw for rcw_git.bb LINUXEXEC-7949 - meta-freescale-dl.xml: Add source.codeaurora.org.external.qoriq.qoriq-components.u-boot for u-boot-qoriq_2019.10.bb LINUXEXEC-7949 - meta-freescale-dl.xml: Add source.codeaurora.org.external.qoriq.qoriq-components.fmlib for fmlib_git.bb LINUXEXEC-7949 - meta-freescale-dl.xml: Add source.codeaurora.org.external.qoriq.qoriq-components.fmc for fmc_git.bb LINUXEXEC-7949 - meta-freescale-dl.xml: Add source.codeaurora.org.external.qoriq.qoriq-components.dpdk for dpdk_19.11-20.04.bb LIN1019-4728 - qemu: Security Advisory - qemu - CVE-2020-13361 none - srcrev.inc: wrlinux srcrev update 2020-06-01 LIN1019-4732 - glib-networking: Security Advisory - glib-networking - CVE-2020-13645 LIN1019-3979 - Python2: fix CVE-2020-8492 LIN1019-3979 - Python3: fix CVE-2020-8492 none - srcrev.inc: wrlinux srcrev update 2020-05-28 LIN1019-4695 - sqlite3: CVE-2020-13434 CVE-2020-13435 LIN1019-4694 - sqlite3: CVE-2020-13434 CVE-2020-13435 none - srcrev.inc: wrlinux srcrev update 2020-05-26 LIN1019-4678 - libexif: fix CVE-2020-13112/CVE-2020-13113/CVE-2020-13114 LIN1019-4677 - libexif: fix CVE-2020-13112/CVE-2020-13113/CVE-2020-13114 LIN1019-4676 - libexif: fix CVE-2020-13112/CVE-2020-13113/CVE-2020-13114 LIN1019-4576 - parted: fix failing ptest t6100 LIN1019-4672 - mariadb: add crc32c_arm64.cc into build list none - srcrev.inc: wrlinux srcrev update 2020-05-24 LIN1019-4661 - dpdk: fix CVE-2020-10722/CVE-2020-10723/CVE-2020-10724 LIN1019-4660 - dpdk: fix CVE-2020-10722/CVE-2020-10723/CVE-2020-10724 LIN1019-4659 - dpdk: fix CVE-2020-10722/CVE-2020-10723/CVE-2020-10724 none - srcrev.inc: wrlinux srcrev update 2020-05-24 none - Revert "populate_sdk_base.bbclass: fix warning: name not matched" LIN1019-4655 - php: Security Advisory - php - CVE-2019-11048 LIN1019-4342 - mariadb: upgrade to 10.3.23 LIN1019-4340 - mariadb: upgrade to 10.3.23 LIN1019-4320 - mariadb: upgrade to 10.3.23 LIN1019-4319 - mariadb: upgrade to 10.3.23 LIN1019-4342 - mariadb: upgrade to 10.3.23 LIN1019-4340 - mariadb: upgrade to 10.3.23 LIN1019-4320 - mariadb: upgrade to 10.3.23 LIN1019-4319 - mariadb: upgrade to 10.3.23 none - Merge branch 'wr-10.19-20191106' into WRLINUX_10_19_LTS LINUXEXEC-7622 - intel-speed-select: add the recipe of Intel-SST to meta-oe none - srcrev.inc: wrlinux srcrev update 2020-05-20 LIN1019-4579 - lttng-tools: disable tests that sporadically fail none - srcrev.inc: wrlinux srcrev update 2020-05-20 LIN1019-4585 - lttng-modules: Fix "LTTng: vmalloc_sync_all symbol lookup failed" warnings none - srcrev.inc: wrlinux srcrev update 2020-05-19 LIN1019-4625 - apt: Security Advisory - apt - CVE-2020-3810 LIN1019-4627 - feature/initramfs-install: Clarify that this feature is only related with initramfs installation none - Merge branch 'WRLINUX_10_19_BASE' into WRLINUX_10_19_LTS LIN1019-4440 - Move xf86-video-armsoc to meta-oe-dl-3-0 LIN1019-4440 - meta-oe-dl-3-0.xml: add git source of xf86-video-armsoc none - srcrev.inc: wrlinux srcrev update 2020-05-17 none - Merge branch 'wr-10.19-20200305' into WRLINUX_10_19_LTS LIN1019-4606 - yocto-uninative.inc: version 2.8 updates glibc to 2.31 LIN1019-4584 - icu: Security Advisory - icu - CVE-2020-10531 LIN1019-4551 - json-c: Security Advisory - json-c - CVE-2020-12762 none - Merge remote-tracking branch 'base/wr-10.19-20200305' into WRLINUX_10_19_LTS none - Merge branch 'wr-10.19-20191106' into WRLINUX_10_19_LTS LIN1019-4606 - yocto-uninative.inc: version 2.8 updates glibc to 2.31 LIN1019-4606 - uninative-tarballs: Update to 2.8 LIN1019-4611 - archiver.bbclass: Fix for do_populate_sdk none - srcrev.inc: wrlinux srcrev update 2020-05-14 LINUXEXEC-7630 - feature/ipmi: template should be available if not using CGL LIN1019-4606 - yocto-uninative.inc: version 2.8 updates glibc to 2.31 LIN1019-4605 - wrlinux-common.inc: update the Ubuntu 20.04 as the supported host none - srcrev.inc: wrlinux srcrev update 2020-05-13 LIN1019-4550 - libexif: Security Advisory - libexif - CVE-2020-12767 none - srcrev.inc: wrlinux srcrev update 2020-05-12 none - srcrev.inc: wrlinux srcrev update 2020-05-11 none - srcrev.inc: wrlinux srcrev update 2020-05-10 none - Merge branch 'WRLINUX_10_19_BASE' into WRLINUX_10_19_LTS LIN1019-4578 - Remove the duplicate of uboot-imx, which is already in data/xml/meta-freescale-dl.xml LIN1019-4578 - u-boot-imx: remove the old version 2016.03 none - srcrev.inc: wrlinux srcrev update 2020-05-10 LIN1019-4536 - qemu: remove host stime() syscall none - Merge branch 'WRLINUX_10_19_BASE' into WRLINUX_10_19_LTS LIN1019-4506 - meta-virtualization-dl-3-0.xml: Update the upstream repo of go-pty LIN1019-4190 - kubernetes: CVE-2020-8551 and CVE-2020-8552 LIN1019-4189 - kubernetes: CVE-2020-8551 and CVE-2020-8552 none - wrlinux-version.inc: Move to update 8 none - srcrev.inc: wrlinux srcrev update 2020-05-08 LINUXEXEC-7568 - qat17: Add SR-IOV support LIN1019-4530 - qemu/slirp: fix CVE-2020-7211 none - srcrev.inc: wrlinux srcrev update 2020-05-08 LIN1019-4437 - opkg-keyrings: check if opkg-key exists before run postinst LIN1019-4435 - nginx: remove /var/log/nginx when do_install LIN1019-4436 - freeradius: remove /var/log/radius when do_install LIN1019-4511 - samba: fix CVE-2020-10700 and CVE-2020-10704 LIN1019-4452 - samba: fix CVE-2020-10700 and CVE-2020-10704 LIN1019-4452 - libldb: Bump version up to 1.5.7 LIN1019-4452 - ldb: Bump version up to 1.5.7 none - srcrev.inc: wrlinux srcrev update 2020-05-07 LIN1019-4218 - apache2: CVE-2020-1927 CVE-2020-1934 LIN1019-4217 - apache2: CVE-2020-1927 CVE-2020-1934 none - IP disclosures - 2020-05-07 - 10.19.45.07 LIN1019-4507 - u-boot-imx: udpate the SRC_URI none - Merge branch 'WRLINUX_10_19_BASE' into WRLINUX_10_19_LTS LIN1019-4507 - wrlinux-dl.xml: add source.codeaurora.org.external.imx.uboot-imx.git none - srcrev.inc: wrlinux srcrev update 2020-05-06 none - Merge branch 'wr-10.19-20191106' into WRLINUX_10_19_LTS LIN1019-4506 - go-pty: change the source address LIN1019-4449 - ruby: Security Advisory - ruby - CVE-2020-10933 LINUXEXEC-7568 - qat: make do_fetch depend on kernel do_shared_workdir LINUXEXEC-7568 - qat: Fix do_patch error in parallel building LINUXEXEC-7568 - README: Update QAT1.7 to 4.7.0-00006 and zlib-qat to 0.4.10-003 LINUXEXEC-7568 - zlib-qat: Upgrade to 0.4.10-003 LINUXEXEC-7568 - qat: Upgrade to qat17_4.7.0-00006 LINUXEXEC-7568 - Add zlibshim0.4.10-003.tar.gz for zlib-qat_0.4.10-003.bb LINUXEXEC-7568 - Add zlib-1.2.8.tar.gz for zlib-qat_0.4.10-003.bb LINUXEXEC-7568 - Add qat1.7.l.4.7.0-00006.tar.gz for qat17_4.7.0-00006.bb LINUXEXEC-7264 - wrlinux-whitelist.conf: whitelist redis and lua none - Merge branch 'WRLINUX_10_19_BASE' into WRLINUX_10_19_LTS LINUXEXEC-7264 - redis: add tarball LIN1019-4415 - ostree_upgrade.sh: fix upgrade failed on /boot/efi LIN1019-4417 - libvirt: Security Advisory - libvirt - CVE-2020-12430 LIN1019-3970 - populate_sdk_base.bbclass: fix warning: name not matched LIN1019-4419 - openldap: Security Advisory - openldap - CVE-2020-12243 none - srcrev.inc: wrlinux srcrev update 2020-05-05 none - Added new nxp BSP support to relnotes LIN1019-4392 - open-vm-tools: fix build error with usrmerge feature LINUXPG-400 - python3-fastentrypoints: add recipe ======================= LTS 19 Update 7 =============================== none - Merge branch 'WRLINUX_10_19_BASE' into WRLINUX_10_19_LTS none - Revert "add ntp-4.2.8p14.tar.gz" LIN1019-4248 - add ntp-4.2.8p14.tar.gz none - Updated docs for RCPL 7 LIN1019-4407 - dhcp: add RDEPENDS for dhcp-client none - srcrev.inc: wrlinux srcrev update 2020-04-29 LIN1019-4400 - php: Security Advisory - php - CVE-2020-7067 LIN1019-4403 - qemu: CVE-2020-11869 none - Merge branch 'WRLINUX_10_19_BASE' into WRLINUX_10_19_LTS LINUXEXEC-7104 - meta-oe-dl: add linuxptp-2.0.tgz to downloads LIN1019-4212 - systemd: Fix CVE-2020-1712 LIN1019-4373 - git: Security Advisory - git - CVE-2020-11008 LIN1019-3044 - wrlinux-overc: add to 'wr-init' to whitelist to fixup build error LIN1019-4390 - ceph: fix CVE-2020-1759 and CVE-2020-1760 LIN1019-4284 - ceph: fix CVE-2020-1759 and CVE-2020-1760 none - srcrev.inc: wrlinux srcrev update 2020-04-26 LIN1019-4393 - Use a non-blocking read with pselect to avoid hangs. none - srcrev.inc: wrlinux srcrev update 2020-04-26 none - srcrev.inc: wrlinux srcrev update 2020-04-25 none - Merge branch 'WRLINUX_10_19_BASE' into WRLINUX_10_19_LTS LINUXEXEC-6751 - wrlinux-x: xml: add wifi-bt firmware repo information for nxp-imx8 platform none - srcrev.inc: wrlinux srcrev update 2020-04-24 LIN1019-4385 - tzdata&tzcode: upgrade 2020a LIN1019-4385 - tzdata&tzcode: add source packages of 2020a none - srcrev.inc: wrlinux srcrev update 2020-04-23 LIN1019-4286 - tftp-hpa: Use alternatives to avoid manpage conflicts LIN1019-4286 - netkit-telnet: Use alternatives to avoid manpage conflict LIN1019-4286 - inetutils: Use alternatives to avoid manpage conflict LIN1019-4280 - openssl: fix CVE-2020-1967 none - srcrev.inc: wrlinux srcrev update 2020-04-21 LIN1019-2430 - LTTNG issue with epoch negative clock offset LIN1019-4291 - git: Security Advisory - git - CVE-2020-5260 none - Merge branch 'wr-10.19-20191106' into WRLINUX_10_19_LTS LINUXEXEC-6283 - cups: add volatiles files to create /var/log/cups LINUXEXEC-6283 - feature/container-base/template.conf: set busybox-syslog as the default syslog LINUXEXEC-6283 - Add feature/container-base template none - Merge branch 'wr-10.19-20191106' into WRLINUX_10_19_LTS LINUXEXEC-6283 - postfix: split ${PN}-bin from ${PN} to solve recursive dependency none - Merge branch 'wr-10.19-20191106' into WRLINUX_10_19_LTS LINUXEXEC-6283 - alsa-state: ignore 'No soundcards found' error in pkg_postinst none - Merge branch 'wr-10.19-20191106' into WRLINUX_10_19_LTS LINUXEXEC-6283 - samhain-server: add volatile file for systemd LINUXEXEC-7104 - meta-iot-cloud: add LAYERRECOMMENDS item to meta-iot-cloud-dl LIN1019-4359 - features: avoid enabling edac for most of mips boards none - Merge branch 'WRLINUX_10_19_BASE' into WRLINUX_10_19_LTS LINUXEXEC-7104 - wrlinux-x: xml: add meta-iot-cloud-dl cjson repo information none - srcrev.inc: wrlinux srcrev update 2020-04-20 none - Merge branch 'WRLINUX_10_19_BASE' into WRLINUX_10_19_LTS LINUXEXEC-7104 - wrlinux-x: xml: add nxp-ls1028 tsntool repo information LINUXEXEC-6674 - feature/f2fstools: ADD f2fs utils none - Merge branch 'WRLINUX_10_19_BASE' into WRLINUX_10_19_LTS LINUXEXEC-6674 - meta-filesystems-dl-3-0.xml: Add git.kernel.org.pub.scm.linux.kernel.git.jaegeuk.f2fs-tools.git for f2fs-tools_1.11.0.bb none - srcrev.inc: wrlinux srcrev update 2020-04-19 none - srcrev.inc: wrlinux srcrev update 2020-04-16 none - srcrev.inc: wrlinux srcrev update 2020-04-15 LIN1019-4156 - u-boot: fix the patch conflict introduced by fix of CVE-2020-10648 none - srcrev.inc: wrlinux srcrev update 2020-04-15 none - srcrev.inc: wrlinux srcrev update 2020-04-14 none - srcrev.inc: wrlinux srcrev update 2020-04-13 LIN1019-3716 - phpmyadmin: fix CVE-2019-18622 and CVE-2019-19617 LIN1019-3581 - phpmyadmin: fix CVE-2019-18622 and CVE-2019-19617 LIN1019-3227 - php: fix CVE-2019-11043 LIN1019-3085 - python: Security Advisory - python - CVE-2019-18348 none - wrlinux-version.inc: Move to update 7 LIN1019-4244 - openssh: explicitly skip unit tests LIN1019-4244 - openssh: applied upstream fix for "cert not yet valid" test none - srcrev.inc: wrlinux srcrev update 2020-04-12 LIN1019-4156 - u-boot: Security Advisory - u-boot - CVE-2020-10648 none - Merge branch 'wr-10.19-20191106' into WRLINUX_10_19_LTS LINUXEXEC-6642 - ovmf_%.bbappend: tweak do_sign task order to avoid racing issue LIN1019-4262 - sqlite3: fix CVE-2020-11655 and CVE-2020-11656 LIN1019-4261 - sqlite3: fix CVE-2020-11655 and CVE-2020-11656 LIN1019-4248 - ntp: add template for 4.2.8p14 none - Merge branch 'wr-10.19-20191106' into WRLINUX_10_19_LTS none - srcrev.inc: wrlinux srcrev update 2020-04-09 LIN1019-4248 - ntp: add V-4.2.8p14 none - Merge branch 'WRLINUX_10_19_BASE' into WRLINUX_10_19_LTS LIN1019-4248 - add ntp-4.2.8p14.tar.gz none - srcrev.inc: wrlinux srcrev update 2020-04-08 LINUXEXEC-7118 - wrlinux-whitelist.conf: add debtcollector, wrapt, and pbr to whitelist LINUXEXEC-7118 - python3-debtcollector: add 1.22.0 tarball to LTS19 LINUXEXEC-7118 - python3-debtcollector: add six and wrapt to RDEPENDS LIN1019-4204 - qemu:Remove "_append_" for the PACKAGECONFIG of qemu none - IP disclosures - 2020-04-08 - 10.19.45.06 LIN1019-4077 - kern-tools: Fix the lengthy processing of kernel-metadata none - Merge branch 'WRLINUX_10_19_BASE' into WRLINUX_10_19_LTS LIN1019-4247 - data/samples/local.conf.sample: add WRLinux uninative support LIN1019-4247 - wrlinux-distro/conf/distro/wrlinux-common.inc: move WRLinux uninative support to local.conf LINUXPG-400 - python3-fastentrypoints: add tarball LIN10-7065 - Revert "python3-fastentrypoints: add tarball" LIN1019-4239 - mariadb: clean up a QA warining introduced by mariadb 10.3.22 none - srcrev.inc: wrlinux srcrev update 2020-04-07 LINUXPG-400 - python3-fastentrypoints: add tarball none - Merge branch 'wr-10.19-20191106' into WRLINUX_10_19_LTS LIN1019-4185 - freeradius: don't download LFS content by default none - srcrev.inc: wrlinux srcrev update 2020-04-06 LIN1019-4210 - php: fix CVE-2020-7064 CVE-2020-7065 CVE-2020-7066 LIN1019-4209 - php: fix CVE-2020-7064 CVE-2020-7065 CVE-2020-7066 LIN1019-4208 - php: fix CVE-2020-7064 CVE-2020-7065 CVE-2020-7066 LIN1019-4225 - init-ostree.sh: reboot is only needed for selinux system LIN1019-4225 - init-ostree.sh/init-ostree-install.sh: preserve xattr attributes LINUXEXEC-6762 - wayland: add xwayland support for wrlinux none - wayland: add machine specific weston.ini files for am335x none - Updated docs for RCPL 6 LIN1019-3935 - grub-efi-efi-secure-boot.inc: use task_prepend instead of prefuncs for do_sign LIN1019-3757 - user-key-store.bbclass: Depend on gnupg-native to always use provided gpg ======================= LTS 19 Update 6 =============================== none - srcrev.inc: wrlinux srcrev update 2020-04-01 LIN1019-4136 - refpolicy: add file context for vlock.kbd LINUXPG-400 - wrlinux-whitelist.conf: add python3-fastentrypoints LINUXPG-400 - python3-fastentrypoints: add recipe none - Merge branch 'WRLINUX_10_19_BASE' into WRLINUX_10_19_LTS LINUXEXEC-6629 - nxp-s32g2xx-dl.xml: Add source.codeaurora.org.external.autobsps32.u-boot for u-boot-s32_2018.07.bb LIN1019-4150 - libpam: Add userdb packageconfig LIN1019-4150 - db: Add dbm packageconfig LIN1019-4185 - freeradius: don't download LFS content by default LIN1019-4110 - glib-2.0: fix CVE-2020-6750 LIN1019-4159 - gnupg: Security Advisory - gnupg - CVE-2019-14855 LIN1019-4109 - glibc: CVE-2020-10029 LIN1019-4183 - kernel-initramfs-image: solve missing bundled image issue none - srcrev.inc: wrlinux srcrev update 2020-03-25 LIN1019-4165 - phpmyadmin: fix CVE-2020-10802 CVE-2020-10803 CVE-2020-10804 LIN1019-4164 - phpmyadmin: fix CVE-2020-10802 CVE-2020-10803 CVE-2020-10804 LIN1019-4157 - phpmyadmin: fix CVE-2020-10802 CVE-2020-10803 CVE-2020-10804 LIN1019-3615 - sysstat: remove check for chkconfig LIN1019-4148 - nagios-nrpe: fix CVE-2020-6581 CVE-2020-6582 LIN1019-4144 - nagios-nrpe: fix CVE-2020-6581 CVE-2020-6582 LIN1019-4147 - go: Security Advisory - go - CVE-2020-7919 LIN1019-4155 - libvirt: Security Advisory - libvirt - CVE-2019-20485 LIN1019-4160 - freeradius: Security Advisory - freeradius - CVE-2019-17185 LIN1019-4135 - bluez: fix CVE-2020-0556 none - srcrev.inc: wrlinux srcrev update 2020-03-22 none - IP disclosures - 2020-03-19 - 10.19.45.05 none - Merge remote-tracking branch 'base/wr-10.19-20200305' into WRLINUX_10_19_LTS none - Merge remote-tracking branch 'base/wr-10.19-20191106' into WRLINUX_10_19_LTS none - Merge remote-tracking branch 'base/wr-10.19-20200305' into WRLINUX_10_19_LTS none - srcrev.inc: wrlinux srcrev update 2020-03-18 LIN1019-4152 - postgresql: Security Advisory - postgresql - CVE-2020-1720 none - srcrev.inc: wrlinux srcrev update 2020-03-18 LINUXEXEC-6628 - systemd: move from version 243 to 243.2 LINUXEXEC-6628 - distro: drop the second dash LINUXEXEC-6628 - Update pkgs for rebasing to zeus-22.0.2 LIN1019-4025 - rng-tools: Supply patches to fix rngd block reboot issue LIN1019-3950 - mariadb: upgrade 10.3.22 to fix following CVEs LIN1019-3006 - mariadb: upgrade 10.3.22 to fix following CVEs LIN1019-2995 - mariadb: upgrade 10.3.22 to fix following CVEs LIN1019-1924 - mariadb: upgrade 10.3.22 to fix following CVEs LIN1019-1922 - mariadb: upgrade 10.3.22 to fix following CVEs LIN1019-1921 - mariadb: upgrade 10.3.22 to fix following CVEs LIN1019-1913 - mariadb: upgrade 10.3.22 to fix following CVEs LIN1019-1896 - mariadb: upgrade 10.3.22 to fix following CVEs LIN1019-3950 - mariadb: add source package mariadb-10.3.22 LIN1019-3006 - mariadb: add source package mariadb-10.3.22 LIN1019-2995 - mariadb: add source package mariadb-10.3.22 LIN1019-1924 - mariadb: add source package mariadb-10.3.22 LIN1019-1922 - mariadb: add source package mariadb-10.3.22 LIN1019-1921 - mariadb: add source package mariadb-10.3.22 LIN1019-1913 - mariadb: add source package mariadb-10.3.22 LIN1019-1896 - mariadb: add source package mariadb-10.3.22 LIN1019-4013 - ipmitool: fixes for CVE-2020-5208 LINUXEXEC-6275 - nginx_1.17.8.bbappend: remove it none - Merge branch 'wr-10.19-20191106' into WRLINUX_10_19_LTS LINUXEXEC-6275 - nginx: blacklist this unstable version LIN1019-3886 - qemu: Security Advisory - qemu - CVE-2019-20175 LIN1019-3957 - qemu: Security Advisory - qemu - CVE-2020-7039 LIN1019-4070 - libarchive: Fix CVE-2020-9308 LIN1019-4111 - webkitgtk: Security Advisory - webkitgtk - CVE-2020-10018 LIN1019-3910 - nginx: Security Advisory - nginx - CVE-2019-20372 LINUXEXEC-6275 - nginx: whitelist nginx and blacklist mainline version none - Merge branch 'wr-10.19-20191106' into WRLINUX_10_19_LTS LINUXEXEC-6275 - nginx: fix error during service startup LINUXEXEC-6275 - nginx: update to the latest development version (1.17.8) LINUXEXEC-6275 - nginx: update to the latest stable version (1.16.1) LINUXEXEC-6275 - nginx: fix install paths LINUXEXEC-6275 - nginx: add packages for nginx none - python-urllib3/python3-urllib3: fix CVE-2020-7212 [ LIN1019-4121 ] LINUXEXEC-2128 - wrlinux-x: xml: add nxp-imx platform u-boot repo information LIN1019-2715 - wr-systemd-container.txt: fix typo LINUXEXEC-5666 - gnupg: Read GNUPG_BINDIR from environment variables for nativesdk LINUXEXEC-5666 - gnupg/libksba/npth/pinentry: Add nativesdk to BBCLASSEXTEND LINCD-10 - lttng-modules: fix do_compile failed with linux-yocto-dev LIN1019-3814 - dbus: Change path of system_bus_socket from /var/run/dbus/ to [ LIN1019-3814 ] /run/dbus/ LIN1019-3269 - buildtools-tarball: export OPENSSL_CONF for openssl LIN1019-3108 - classes/image_types_wic.bbclass: fix racing risk on rootfs LIN1019-3032 - Revert "Revert "pseudo: Fix openat() with a symlink pointing to a directory"" LIN1019-2706 - ltp: Add "udevadm trigger" before swap verification in mkswap01.sh LIN1019-2475 - python3-git: add python3-nose to RDEPENDS none - Merge branch 'WRLINUX_10_19_BASE' into WRLINUX_10_19_LTS LINUXEXEC-2128 - wrlinux-x: xml: add nxp-imx platform u-boot repo information none - srcrev.inc: wrlinux srcrev update 2020-03-15 LIN1019-3983 - aspell: CVE-2019-20433 none - Updated documentation for RCPL 5 none - wrlinux-version.inc: Move to update 6 LIN1019-4095 - php: fix CVE-2020-7061, CVE-2020-7062, CVE-2020-7063 LIN1019-4094 - php: fix CVE-2020-7061, CVE-2020-7062, CVE-2020-7063 LIN1019-4093 - php: fix CVE-2020-7061, CVE-2020-7062, CVE-2020-7063 none - srcrev.inc: wrlinux srcrev update 2020-03-12 LIN1019-972 - sssd: Security Advisory - sssd - CVE-2018-16838 LINUXEXEC-6267 - wrlinux-base-whitelist.inc: enable sssd LINUXEXEC-6267 - sssd-simple-testing-guide.txt: add doc for ssd LINUXEXEC-6267 - ding-libs: add tarball LINUXEXEC-6267 - sssd: fix for ldblibdir and systemd etc LINUXEXEC-6267 - sssd: add tarball none - srcrev.inc: wrlinux srcrev update 2020-03-10 LIN1019-4116 - qemu: CVE-2019-20382 LIN1019-3389 - wrlinux-whitelist.conf: remove oprofile from whitelist LINCD-1210 - overc/doc: fix typos in README none - srcrev.inc: wrlinux srcrev update 2020-03-08 LIN1019-3409 - cubeit-installer: Fixup warning on no network_prime LIN1019-3409 - cubeit-installer: Don't write crap files when no network_* are defined US118188 - toaster: wrlinux-specific patch set none - msg.py, knotty.py: Allow dynamic toggle of the debug log level none - layerindexlib: Add Wind River WRTemplate extension none - knotty.py: Extend knotty to support "real time" log tail for tasks none - knotty.py: Add the ability to dynamically select loglevel from stdin none - fetch2/git.py: fix the filename too long error none - bitbake-worker: Add DryRun event none - Add lib/toaster/orm/fixtures/custom.xml to .gitignore LINUXEXEC-4912 - toaster: make toaster support django 2.2 LIN1019-1170 - knotty.py: Add ability to dynamically toggle log location LIN1019-1169 - knotty.py: Add interactive commands to knotty LIN1019-1168 - knotty.py: update footer on dynamic log level change LIN1019-1008 - layer.conf: Add the 'wrl' tag in the LAYERSERIES_COMPAT none - Revert "pseudo: Fix openat() with a symlink pointing to a directory" LIN1019-2902 - live-vm-common.bbclass: install correct grub-efi boot image when enable multilib LIN1019-2724 - live-vm-common.bbclass: install correct grub-efi boot image when enable multilib LIN1019-2650 - lttng-modules: Add git based recipe directly including the tarball one LIN1019-2355 - bluez5: Fix for --enable-btpclient LIN1019-2267 - weston: Fix PACKAGECONFIG for remoting LIN1019-2267 - fixup! weston: Fix PACKAGECONFIG for remoting LIN1019-2154 - util-linux: fix uuidd failed with /run/uuidd not found LIN1019-1967 - populate_sdk: fix populate_sdk failed error none - stress-ng: Add bash to DEPENDS LIN1019-1869 - archive: fix racing between do_ar_patched and do_kernel_configme LIN1019-1755 - cve-update-db: Don't depend on do_fetch LIN1019-1670 - xmlcatalog.bbclass: execute xmlcatalog only if it's available LIN1019-1416 - openssh: Restore TCP wrappers support none - initramfs-framework: Check if busybox is the VIRTUAL-RUNTIME_base-utils LINUXEXEC-1873 - xmlto: set CLEANBROKEN = "1" LIN9-1350 - xinetd: add Init Script Actions to xinetd script LIN8-478 - opkg-utils: Change alternatives lib path from /usr/lib/opkg to /var/lib/opkg LIN10-2424 - populate_sdk_ext.bbclass: add ESDK_MANIFEST_EXCLUDES LIN10-2175 - toolchain-scripts.bbclass: do not extend dependency if extended already LIN10-2116 - staging.bbclass: staging_populate_sysroot_dir(): fix for multilib LIN10-2116 - populate_sdk_ext.bbclass: fix for multilib LIN1019-80 - grub-efi-native: workaround for fedora 29 LIN1019-26 - testsdk.py: remove workspace/sources to avoid failure in case of multilib LIN1019-1308 - dhcp: make dhclient to get configuration for other programs LIN1018-494 - eudev: create static nodes from modules LIN1018-2513 - libidn2: improve reproducibility LIN1018-1766 - toolchain-scripts.bbclass: fix paths of siteconfig files LIN1018-1376 - toolchain-shar-template.sh: do not offer sudo as an option none - conf/layer.conf: Add dl layer to LAYERRECOMMENDS none - base.bbclass: Add buildcfg multilib values none - srcrev.inc: wrlinux srcrev update 2020-03-05 LIN1019-4107 - layers/wrlinux: Update common native package list to handle machine output LINUXEXEC-6527 - wrlinux-whitelist.conf: add lftp to whitelist LINUXEXEC-6530 - lftp: add 4.8.4 tarball LIN1019-4099 - gd: Security Advisory - gd - CVE-2017-6363 LIN1019-4072 - sqlite3: CVE-2020-9327 LIN1019-4082 - openl2tp: update systemd service file none - Revert "bash: Fix CVE-2019-18276" none - cooker/siggen: Empty siggen cache during parsing none - build-appliance-image: Update to zeus head revision none - u-boot.inc: Fix devtool build u-boot for u-boot without menuconfig none - tar: Fix build determinism, disable rsh none - sysvinit: Fix Reproducibility issue none - sudo: specify where target tools are none - sudo: Set vardir deterministically none - rsync: whitelist CVE-2017-16548 none - Revert "bzip2: Fix CVE-2019-12900" none - perl: Fix various reproducibile build issues none - perl: do not install files that contain build host specific data none - patch: Extend to native/nativesdk and depend upon none - opkg-utils: upgrade to version 0.4.2 none - opkg-utils: Fix reproducibility issues in opkg-build none - openssl: Fix reproducibility issue none - oeqa/reproducible: Improve test output and ensure deb+ipk compared none - ncurses: Fix reproducibility issue none - mc: Set zipinfo presence determinstically none - mc: Fix manpage date indeterminism none - mc: Fix build reproducibility none - libxshmfence: Set shm directory deterministically none - libinput: Fix determinism issue none - libidn2: Fix reproducibility issue none - libgcrypt: Fix determinism issue none - libevdev: Fix determinism issue none - iputils: Fix build determinism none - gtk+3: sort resources for reproducible binaries none - gcc-9.2: fix bug #91102 'aarch64 ICE on Linux kernel with -Os' none - devtool/standard.py: Allow recipe to disable menuconfig logic none - curl: fix CVE-2019-15601 none - cpio: fix CVE-2019-14866 none - classes/reproducible_build: Read SDE file later none - siggen: Avoid cache mismatch issues with locked sigs none - siggen: Cache unihash values to avoid cache lookup none - siggen: Optimise get_unihash disk based cache handling none - cooker/toaster: replaced deprecated method warn() with warning() none - persist_data.py: Immediately get exclusive lock in __setitem__ none - fetch2/git: _revision_key: collapse adjacent slashes none - fetch2: do not suffix srcrev cache key with PN none - build-appliance-image: Update to zeus head revision none - poky.conf: Bump version for 3.0.2 zeus release none - webkitgtk: fix occasional link error none - python2: add ntpath none - libxml2: Fix CVE-2019-19956 none - kbd: configure.ac: Fix logic of vlock configure switch none - kbd: avoid vlock conflict with busybox none - core: recipes: fix some native tools dependencies none - bzip2: Fix CVE-2019-12900 none - bash: Fix CVE-2019-18276 none - sstatesig: Improve debug output if getpwuid() fails none - scripts/oe-build-perf-report: Avoid buildstats warning none - sstatesig: Test cross/native hashserv method extension none - wic/filemap: If FIGETBSZ iotctl fail, failback to os.stat none - multilib.conf: Ensure that RECIPE_SYSROOT is unchanged for native none - linuxloader: Correct loader for glibc on armhf none - runqueue: Use a set for the setscene tasks list none - knotty: Be consistent when creating/updating progress bars none - knotty: Hide the footer if a process progress bar is shown none - cooker: Keep track of watched files using a set instead of a list none - toaster.bbclass: Correct pkgdatadir path in toaster_package_dumpdata() none - sanity.bbclass: Move sanity_info from conf to cache none - populate_sdk_ext.bbclass: No longer needed to clean away conf/sanity_info none - licenses.conf: Remove the SRC_DISTRIBUTE_LICENSES variable none - license.bbclass: Introduce AVAILABLE_LICENSES that lists all licenses none - kernel: Make symbol link to vmlinux.64 in boot directory none - libsdl2: fix failure appeared in bitbake libsdl2-native none - pseudo: Make realpath() remove trailing slashes none - systemd: Upgrade 243 -> 243.2 none - reproducible_build_simple: inherit podfix none - python3: Upgrade 3.7.5 -> 3.7.6 none - python3: Update to apply libgcc fix to libpython, glibc only none - python3: RDEPEND on libgcc none - podfix: only alter normal files none - podfix: class to remove Pod::Man versions from manpages none - linux-yocto/5.2: update to v5.2.28 none - linux-yocto/5.2: update to v5.2.27 none - linux-yocto/5.2: update to v5.2.26 none - linux-yocto/5.2: update to v5.2.25 none - linux-yocto/5.2: update to v5.2.24 none - linux-yocto/5.2: update to v5.2.23 none - linux-yocto/5.2: update to v5.2.22 none - linux-yocto/4.19: update to v4.19.87 none - linux-yocto/4.19: update to v4.19.84 none - linux-yocto/4.19/5.2/-dev: fix gcc10 build none - liberror-perl: update 0.17027 -> 0.17028 none - linux-yocto/5.2: update to v5.2.21 none - siggen: Test extra cross/native hashserv method none - runqueue: Fix task dependency corner case in sanity test none - runqueue: Fix equiv hash handling build failures none - runqueue: Ensure task dependencies are run correctly none - prserv/serv: Use with while reading pidfile none - lib/bb: Add BB_SIGNATURE_LOCAL_DIRS_EXCLUDE to speed-up taskhash on directories none - cache: Lower debug level for wold build messages none - sstate.bbclass: Fix for consistent whitespace none - sstate: Ensure mkdir happens before mktemp none - sstate: Ensure target sstate directory exists if unihash changes none - sstate: Ensure SSTATE_PKG is reloaded when handling siginfo none - sstate: Stop overwriting SSTATE_PKG none - sstate: Add ability to hide summary output for sstate none - lttng-modules: fix NULL pointer deference error when testing rpc_task_running none - systemd-systemctl: Fix handling of aliased targets none - sysstat: fix CVE-2019-19725 none - qemu-helper-native/systemtap-native: Ensure sysroots are populated with dependencies none - python/python3: Whitelist CVE-2019-18348 none - openssl: Whitelist CVE-2019-0190 none - openssl: fix CVE-2019-1551 none - nss: Backport clang build fix none - git: upgrade 2.23.0 -> 2.23.1 none - siggen: Split get_tashhash for performance none - runqueue: Rework process_possible_migrations() to improve performance none - runqueue: Optimise task migration code slightly none - runqueue: Optimise task filtering none - runqueue: Optimise out pointless loop iteration none - runqueue: Only call into the migrations function if migrations active none - runqueue: Fix task mismatch failures from incorrect logic none - runqueue: Fix sstate task iteration performance none - lib/bb: Optimise out debug messages from cooker none - bb.utils.fileslocked: don't leak files if yield throws none - siggen: Fix performance issue in get_unihash none - siggen: Ensure new unihash propagates through the system none - siggen: Avoid taskhash mismatch errors for nostamp tasks when dependencies rehash none - runqueue/siggen: Allow handling of equivalent hashes none - runqueue: Batch scenequeue updates none - runqueue: Add extra debugging when locked sigs mismatches occur none - knotty/uihelper: Switch from pids to tids for Task event management none - hashserv: Add support for equivalent hash reporting none - Revert "libtirpc: create the symbol link for rpc header files" none - recipes: change SRC_URI to use https none - python: Whitelist CVE-2017-17522 CVE-2017-18207 CVE-2015-5652 none - opkg: Trim the text part used for the license file checksum none - meson.bbclass: Prevent meson from downloading wrapped projects none - libpng: Remove duplicate license information none - glib: Whitelist CVE-2019-12450 none - cve-check: Switch to NVD CVE JSON feed version 1.1 none - base.bbclass: add dependency on pseudo from do_prepare_recipe_sysroot none - alsa-utils: Trim the text part used for the license file checksum none - alsa-lib: Trim the text part used for the license file checksum none - nasm: fix CVE-2019-14248 none - libsoup-2.4: upgrade to 2.66.4 none - libarchive: fix CVE-2019-19221 none - go: fix CVE-2019-17596 none - glibc: fix CVE-2019-19126 none - ghostscript: fix for CVE-2019-14811 is same as CVE-2019-14813 none - ghostscript: CVE-2019-14869 none - gdb: Fix CVE-2019-1010180 none - dosfstools: fix CP437 error from `dosfsck -l` none - bind: Whitelist CVE-2019-6470 none - runqueue.py: not show warning for deferred multiconfig task none - build-appliance-image: Update to zeus head revision none - tests/runqueue: Fix to match recent task migration fixes none - build-appliance-image: Update to zeus head revision none - build-appliance: Use zeus as the branch none - build-appliance-image: Update to zeus head revision none - poky.conf: Bump version for 3.0.1 zeus release none - tiff: Refresh patch none - Revert "devtool/standard.py: Not filtering devtool workspace for devtool finish" none - python: update to 2.7.17 none - lz4: Whitelist CVE-2014-4715 none - libsoup: set CVE_PRODUCT none - gst-validate: upgrade to version 1.16.1 none - gstreamer: Change SRC_URI to use HTTPS access instead of HTTP none - gstreamer1.0-vaapi: upgrade to version 1.16.1 none - gstreamer1.0: upgrade to version 1.16.1 none - gstreamer1.0-rtsp-server: upgrade to version 1.16.1 none - gstreamer1.0-python: upgrade to version 1.16.1 none - gstreamer1.0-plugins-ugly: upgrade to version 1.16.1 none - gstreamer1.0-plugins-good: upgrade to version 1.16.1 none - gstreamer1.0-plugins-base: upgrade to version 1.16.1 none - gstreamer1.0-plugins-bad: upgrade to version 1.16.1 none - gstreamer1.0-omx: upgrade to version 1.16.1 none - gstreamer1.0-libav: upgrade to version 1.16.1 none - cve-update-db-native: don't refresh more than once an hour none - cve-update-db-native: don't hardcode the database name none - cve-update-db-native: clean up proxy handling none - cve-update-db-native: add an index on the CVE ID column none - cve-check: we don't actually need to unpack to check none - cve-check: rewrite look to fix false negatives none - cve-check: neaten get_cve_info none - cve-check: fetch CVE data once at a time instead of in a single call none - boost: fix build for x32 none - bind: fix CVE-2019-6471 and CVE-2018-5743 none - selftest: check that 'devtool upgrade' correctly drops backported patches none - sanity: Add check for tar older than 1.28 none - opkg-utils: Fix silent empty/broken opkg package creation none - opkg: Add upstream fixes for empty packages none - oeqa/selftest/sstatetests: Ensure we don't use hashequiv for sstatesigs tests none - oeqa: reproducible: Add option to capture bad packages none - core-image-full-cmdline: Add less none - cairo: the component is dual licensed none - runqueue: Ensure failed harddependencies in scenequeue are accounted for in migrations none - runqueue: Improve sstate rehashing output none - siggen: Fix hashequiv bug where new hash wasn't referenced correctly none - prserv/serv: Only restart the server if settings change none - runqueue: Fix hash equivalence duplicate tasks running none - utils: also use mmap for SHA256 and SHA1, for performance none - tests: add test for the hashing functions none - prserv: fix ResourceWarning due to unclosed socket none - fetch2/clearcase: Fix warnings from python 3.8 none - cooker: Remove a left-over comment about expanded_data none - fetch2/hg: Fix various runtime issues none - tests/fetch: add test for fetching shallow revs none - fetch2/git: fetch shallow revs when needed none - wpa-supplicant: fix CVE-2019-16275 none - sysstat: Correct when to use the package provided systemd unit files none - sysstat: Correct our systemd unit file none - python: fix CVE-2019-16935 none - iputils: Whitelist CVE-2000-1213 CVE-2000-1214 none - binutils: fix CVE-2019-17451 none - binutils: fix CVE-2019-17450 none - fetch2: Ensure cached url data is matched to a datastore none - pseudo: Add statx support to fix fedora30 issues none - initscripts/sysfs.sh: Mount /sys/firmware/efi/efivars when possible none - libtirpc: create the symbol link for rpc header files none - rm_work: Promote do_image_qa stamps to setscene versions none - linux-firmware: update packaging for brcm files none - patch: the CVE-2019-13638 fix also handles CVE-2018-20969 none - recipeutils-test: use a small dependency in the dummy recipe none - selftest: skip virgl test on centos 7 entirely none - cve-check: failure to parse versions should be more visible none - linux-yocto/5.2: update to v5.2.20 none - linux-yocto/4.19: update to v4.19.78 none - qemu-helper-native: pass compiler flags none - qemu-helper-native: showing help shouldn't be an error none - qemu-helper-native: add missing option to getopt() call none - cve-check: ensure all known CVEs are in the report none - ltp: Fix overcommit_memory failure none - mdadm: fix do_package failed when changed local.conf but not cleaned none - sudo: Fix fetching sources none - file: run test suite when building natively none - file: fix CVE-2019-18218 none - pseudo: Drop static linking to sqlite3 none - python3: Upgrade 3.7.4 -> 3.7.5 none - procps: whitelist CVE-2018-1121 none - libxslt: fix CVE-2019-18197 none - libtiff: fix CVE-2019-17546 none - libsndfile1: whitelist CVE-2018-13419 none - libsdl2: fix race when building in parallel none - libpng: whitelist CVE-2019-17371 none - libpam: set CVE_PRODUCT none - libgcrypt: fix CVE-2019-13627 none - e2fsprogs: fix CVE-2019-5094 none - bitbake-worker child process create group before registering SIGTERM handler none - wic/engine: use 'linux-swap' for swap file system none - util-linux: fix PKNAME name is NULL when use lsblk [LIN1019-2963] none - sudo: fix CVE-2019-14287 none - python: Fix CVE-2019-10160 none - openssl: make OPENSSL_ENGINES match install path none - libgcrypt: fix CVE-2019-12904 none - icecc: Export ICECC_CC and friends via wrapper-script none - go: fix CVE-2019-16276 none - dbus: update dbus-1.init to reflect new PID file none - connman: mark connman-wait-online as SYSTEMD_PACKAGE none - wic/rawcopy: Support files in sub-directories none - qemu: Fix CVE-2019-12068 none - python3: -dev should depend on distutils none - openssh: fix CVE-2019-16905 none - i2c-tools: Add missing RDEPEND none - file: explicitly disable seccomp none - uninative: check .done file instead of tarball none - sanity: check the format of SDK_VENDOR none - libsdl2: fix CVE-2019-13616 none - sysstat: fix CVE-2019-16167 none - runqemu: Remove disabling of high resolution timer none - ncurses: fix CVE-2019-17594, CVE-2019-17595 none - runqemu: unset another environment variable for 'egl-headless' none - python: CVE-2019-16056 none - python3: CVE-2019-16056 none - aspell: fix CVE-2019-17544 none - sqlite3: fix CVE-2019-16168 none - bitbake: Update to version 1.44.0 none - bitbake-user-manual: Update multiconfig syntax and explanation of BBMULTICONFIG none - toaster: Enable Zeus branch in place of Thud ======================= LTS 19 Update 5 =============================== LIN1019-4047 - kubernetes: CVE-2019-11251 LIN1019-4073 - screen: fix CVE-2020-9366 LIN1019-4088 - refpolicy: fix avc denials when use adduser LIN1019-4087 - refpolicy: label system-export ostree_exec_t LIN1019-4086 - refpolicy: fix ssh login fail to chdir to /root LIN1019-4085 - init-ostree-install.sh: disable selinux when install LIN1019-1683 - initramfs: adjust task order to aviod initrd symlink unavaiable LIN1019-4065 - dhcp: Fix REQUIRE(ctx->running) assertion triggered on SIGTERM/SIGINT LIN1019-3394 - wr-common-packages-native: fix error Missing or unbuildable dependency chain: ['wr-common-packages-native', 'update-rc'] none - Extract package names that contain dots properly LIN1019-3823 - cyrus-sasl: Security Advisory - cyrus-sasl - CVE-2019-19906 LIN1019-3965 - libxml2: Security Advisory - libxml2 - CVE-2019-20388 LIN1019-4063 - libpcre2: Security Advisory - pcre - CVE-2019-20454 LIN1019-3922 - openjpeg: Security Advisory - openjpeg - CVE-2020-6851 none - srcrev.inc: wrlinux srcrev update 2020-02-23 LIN1019-4027 - php: Security Advisory - php - CVE-2020-7059 LIN1019-3249 - overc-system-agent: recognize uncompressed kernel 'Image' LIN1019-3249 - overc-system-agent: btrfs: don't fail if the kernel file isn't foundHEADupstream-master none - IP disclosures - 2020-02-20 - 10.19.45.04 LIN1019-3985 - openjpeg: Security Advisory - openjpeg - CVE-2020-8112 LIN1019-4032 - qemu: CVE-2020-1711 LIN1019-4035 - gd: Security Advisory - gd - CVE-2018-14553 LIN1019-4013 - ipmitool: fix CVE-2020-5208 none - Merge branch 'WRLINUX_10_19_BASE' into WRLINUX_10_19_LTS LIN1019-3973 - wrlinux-x: explicitly reclaim python2 env in python2 script LIN1019-2986 - gvfs: add user polkitd and missing depends LIN1019-3986 - sudo: Security Advisory - CVE-2019-18634 LINCD-1062 - bootfs.sh: Check for bmaptool LIN1019-4023 - bootfs.sh: Improve wic size error message none - Merge remote-tracking branch 'base/wr-10.19-20191106' into WRLINUX_10_19_LTS none - Merge remote-tracking branch 'origin/WRLINUX_10_19_BASE' into WRLINUX_10_19_LTS LINUXEXEC-5926 - refpolicy: add ostree policy LINCD-648 - refpolicy: fix avc denials for mount_t when mount to dir in /tmp LINCD-648 - refpolicy: fix avc denials for mount_t LINCD-648 - refpolicy: add rules for symlinks directory /mnt /opt /media LINCD-647 - refpolicy: fix avc denials for local_login_t LINCD-647 - refpolicy: Add rules for /usr/etc LINUXEXEC-5926 - ostree_upgrade.sh: check selinux status when update with CGL rootfs LINCD-648 - image_types_ostree.bbclass: fix issue when enalbe selinux LINUXEXEC-5666 - buildtools-tarball: Add nativesdk-python3-jinja2 LINUXEXEC-5666 - buildtools-tarball: Add nativesdk-gnupg for wr-ostree LINUXEXEC-5666 - 04_wrl_buildtools.sh: Update buildtools to buildtools-standalone-10.19.45.4 LINUXEXEC-5666 - gnupg: Read GNUPG_BINDIR from environment variables for nativesdk LINUXEXEC-5666 - gnupg/libksba/npth/pinentry: Add nativesdk to BBCLASSEXTEND LINCD-958 - bootfs.sh: Look for grub-efi-bootx64.efi with non-secure boot LINCD-923 - init.luks-ostree: Fall back to sha256 pcr 7 if sha512 pcr 7 is not available LINCD-869 - initramfs install: Allow ip=dhcp in the kernel boot argument string LINCD-833 - ostree-initramfs: /init needs to wait for blkid to complete LINCD-703 - boot.scr: Add missing quotes for bootargs none - wrlinux-version.inc: Move to update 5 none - srcrev.inc: wrlinux srcrev update 2020-02-11 LIN1019-4000 - qemu: remove patch about NMI none - srcrev.inc: wrlinux srcrev update 2020-02-10 LIN1019-4004 - python3:fix CVE-2019-9674 LINCD-762 - boot.scr: Add build date generation for the time setting operation none - Merge branch 'WRLINUX_10_19_BASE' into WRLINUX_10_19_LTS LINUXEXEC-6218 - wrlinux-x: xml: add u-boot-xlnx repo information LINCD-958 - bootfs.sh: Use mktemp to create gpg home for signing LINCD-696 - bootfs.sh: Add information about the boot arguments for u-boot LINCD-688 - bootfs.sh: Sanity check the ostree_repo LINCD-687 - bootfs.sh: print error if no build directory exists and using -B LINCD-654 - bootfs.sh: Erase cache file if conf/local.conf is newer LINCD-289 - feature/ostree: Add README file none - Updated docs for RCPL 4 w/new WB tutorials ======================= LTS 19 Update 4 =============================== none - srcrev.inc: wrlinux srcrev update 2020-02-06 LINCD-759 - image_types_ota.bbclass: Fix wic generated images using the A/B layout LINCD-922 - init-ostree,init.luks-ostree: Use blockdev for auto partition expansion LINCD-703 - boot.scr, u-boot-uenv: Fix network install to use $use_fdtdtb LIN1019-4002 - ppp: Security Advisory - ppp - CVE-2020-8597 LIN1019-3982 - virglrenderer: fix CVE-2020-8002 and CVE-2020-8003 LIN1019-3981 - virglrenderer: fix CVE-2020-8002 and CVE-2020-8003 LINCD-694 - init-ostree-install.sh, bootfs.sh: Allow install using local ostree_repo on alternate device LINCD-440 - wr-ostree: add COMPATIBLE_HOST for package u-boot-uenv LINCD-799 - image_types_ostree: correct dependency to wic-tools LINCD-824 - ostree install: Add proper support for NVME devices LINCD-659 - bootfs.sh: Add information for using bmap-tools-native package LINCD-689 - bootfs.sh: Fix ostree pull URL computation LINCD-817 - bootfs.sh, grub.cfg: Add auto install support option for x86 LINCD-817 - bootfs.sh,init-ostree-install.sh: Add support for a list of disks to try LINCD-671 - init-ostree-install.sh: installing from one device to another fails none - srcrev.inc: wrlinux srcrev update 2020-02-03 LIN1019-3964 - samba: fix CVE-2019-19344 CVE-2019-14902 CVE-2019-14907 LIN1019-3963 - samba: fix CVE-2019-19344 CVE-2019-14902 CVE-2019-14907 LIN1019-3962 - samba: fix CVE-2019-19344 CVE-2019-14902 CVE-2019-14907 LIN1019-3966 - libxml2: Security Advisory - libxml2 - CVE-2020-7595 none - srcrev.inc: wrlinux srcrev update 2020-01-22 none - srcrev.inc: wrlinux srcrev update 2020-01-20 LIN1019-3926 - kbd: avoid vlock conflict with busybox LIN1019-3926 - kbd: configure.ac: Fix logic of vlock configure switch [ LIN1019-3926 ] none - srcrev.inc: wrlinux srcrev update 2020-01-19 LIN1019-3935 - grub-efi-efi-secure-boot.inc: use task_prepend instead of prefuncs for do_sign LIN1019-3932 - container image: remove wic wic.bmap image types LIN1019-3931 - container image: remove wic wic.bmap image types none - Merge branch 'wr-10.19-20191106' into WRLINUX_10_19_LTS LIN1019-3911 - cri-o: Disable for all mips machines [ LIN1019-3911 ] none - wrlinux-version.inc: Move to update 4 LIN1019-3849 - wrlinux-kernel-dev: rename bbappend file with '%' wildcard LIN1019-3911 - cri-o: Disable for all mips machines [ LIN1019-3911 ] none - IP disclosures - 2020-01-15 - 10.19.45.03 LIN1019-3896 - dnsmasq: CVE-2019-14834 LIN1019-3917 - open-vm-tools: fix build error with usrmerge feature none - Revert "rpcbind: Changing --with-statedir from /var/run/rpcbind to [ LIN1019-3815 ] /run/rpcbind" LIN1019-3815 - rpcbind: Changing ListenStream from /var/run/rpcbind.sock [ LIN1019-3815 ] to /run/rpcbind.sock LIN1019-3868 - linux-yocto-rt: Remove AUTOREV for SRCREV_* in linux-yocto-rt [ LIN1019-3868 ] LIN1019-3909 - phpmyadmin: Security Advisory - phpmyadmin - CVE-2020-5504 LIN1019-3900 - nfs-utils: get the path of rpcgen via which command none - srcrev.inc: wrlinux srcrev update 2020-01-09 LIN1019-3824 - rpm-integrity: Use _append for PACKAGECONFIG LIN1019-3866 - efitools: do not do_sign if GRUB_SIGN_VERIFY not enabled LIN1019-3907 - README.k8s.genericx86-64: add step to build cube-k8s-node LIN1019-3877 - tigervnc: fix CVE-2019-15691 CVE-2019-15693 CVE-2019-15695 LIN1019-3875 - tigervnc: fix CVE-2019-15691 CVE-2019-15693 CVE-2019-15695 LIN1019-3873 - tigervnc: fix CVE-2019-15691 CVE-2019-15693 CVE-2019-15695 ======================= LTS 19 Update 3 =============================== LIN1019-3883 - sqlite3: CVE-2019-19959, 20218 LIN1019-3882 - sqlite3: CVE-2019-19959, 20218 none - Merge branch 'WRLINUX_10_19_BASE' into WRLINUX_10_19_LTS LIN1019-3888 - setup.sh: Restrict the working python file to be python2 [ LIN1019-3888 ] none - Merge branch 'wr-10.19-20191106' into WRLINUX_10_19_LTS LINUXPG-280 - ntp: Fix the issue that ntp.sh fails to update ntp.conf on read-only-rootfs LINUXPG-280 - dhcp: Make dhclient-script can update /etc/resolv.conf on read only rootfs LINUXPG-280 - readonly-root: Added /etc/ntp into VOLATILE_BINDS LIN1019-3865 - openssl-no-weak-ciphers: fix wrong PACKAGECONFIG LIN1019-3811 - shadow: Security Advisory - shadow - CVE-2019-19882 none - srcrev.inc: wrlinux srcrev update 2020-01-06 LIN1019-3835 - python3: Fix the installation path of libpython3.7m.a for multilib LIN1019-3835 - python3: Do not hardcode "lib" for distutils LIN1019-3857 - sqlite3: CVE-2019-19923,24,25,26 LIN1019-3856 - sqlite3: CVE-2019-19923,24,25,26 LIN1019-3855 - sqlite3: CVE-2019-19923,24,25,26 LIN1019-3825 - sqlite3: CVE-2019-19923,24,25,26 none - Merge branch 'WRLINUX_10_19_BASE' into WRLINUX_10_19_LTS LIN1019-3837 - setup.sh: Restrict the python file link to python2 [V2] [ LIN1019-3837 ] LIN1019-3860 - samba: fix wrong shebang for python3 none - Merge branch 'wr-10.19-20191106' into WRLINUX_10_19_LTS LIN1019-3814 - dbus: Change path of system_bus_socket from /var/run/dbus/ to [ LIN1019-3814 ] /run/dbus/ none - Revert "04_wrl_buildtools.sh: Update buildtools to 10.19.45.3" LINUXEXEC-5666 - 04_wrl_buildtools.sh: Update buildtools to 10.19.45.3 none - Updated docs for RCPL 3 none - srcrev.inc: wrlinux srcrev update 2020-01-01 LINUXEXEC-5281 - wrlinux-overc: Adding documents for Xilinx ZC702, ZC706 and Raspberry Pi4 LINUXEXEC-5273 - sbin: adding board specific functions for Raspberry Pi4 LINUXEXEC-5273 - cube-installer: support zImage deployed on ARM board none - meta-signing-key/conf/layer.conf: Add download layers to LAYERRECOMMENDS LIN1019-3862 - libxml2: Security Advisory - libxml2 - CVE-2019-19956 LIN1019-3845 - virglrenderer: fix 4 CVEs LIN1019-3844 - virglrenderer: fix 4 CVEs LIN1019-3843 - virglrenderer: fix 4 CVEs LIN1019-3842 - virglrenderer: fix 4 CVEs LIN1019-3817 - sudo: Security Advisory - CVE-2019-19232 CVE-2019-19234 LIN1019-3816 - sudo: Security Advisory - CVE-2019-19232 CVE-2019-19234 none - srcrev.inc: wrlinux srcrev update 2019-12-25 LINUXEXEC-5381 - wrlinux-whitelist.conf: add open-vm-tools and dependencies [LINUXEXEC-5381] none - Merge branch 'WRLINUX_10_19_BASE' into WRLINUX_10_19_LTS LINUXEXEC-5381 - meta-oe-dl-3-0.xml: Add github.com.vmware.open-vm-tools.git for open-vm-tools_11.0.1.bb [LINUXEXEC-5381] LINUXEXEC-5381 - open-vm-tools: Enable tirpc explicitly, fix build with 64bit time_t [LINUXEXEC-5381] LINUXEXEC-5381 - open-vm-tools: Fix build by removing deprecated G_INLINE_FUNC [LINUXEXEC-5381] LINUXEXEC-5381 - open-vm-tools: Upgrade to 11.0.1 [LINUXEXEC-5381] LIN1019-3832 - php: fix 6 CVEs LIN1019-3831 - php: fix 6 CVEs LIN1019-3830 - php: fix 6 CVEs LIN1019-3829 - php: fix 6 CVEs LIN1019-3828 - php: fix 6 CVEs LIN1019-3827 - php: fix 6 CVEs LIN1019-3815 - rpcbind: Changing --with-statedir from /var/run/rpcbind to [ LIN1019-3815 ] /run/rpcbind LIN1019-3812 - sqlite3: CVE-2019-19880 none - srcrev.inc: wrlinux srcrev update 2019-12-19 LIN1019-3813 - ostree u-boot wic images: only partition 1 should be marked as active LIN1019-3808 - image_types_ota.bbclass: Fix OSTREE_COPY_IMAGE_BOOT_FILES LIN1019-3806 - bootfs.sh: Correctly deal with a local.conf that has no OSTREE_REMOTE_URL set LIN1019-3805 - bootfs.sh: Add capability for creating a ostree_repo with a single branch LIN1019-3802 - feature/encrypted-storage: Fix feature/ostree dependency LIN1019-3804 - init-ostree.sh: Fix rm_var_check for encrypted volumes LIN1019-3737 - sqlite3: sqlite3-CVE-2019-19603, 19645, 19646 LIN1019-3736 - sqlite3: sqlite3-CVE-2019-19603, 19645, 19646 LIN1019-3735 - sqlite3: sqlite3-CVE-2019-19603, 19645, 19646 LIN1019-3333 - wrlinux-ovp: supplement a kernel config to rt-tune none - srcrev.inc: wrlinux srcrev update 2019-12-16 none - Merge remote-tracking branch 'base/wr-10.19-20191106' into WRLINUX_10_19_LTS LINCD-467 - libsemanage: fix race issue in parallel build LINCD-467 - libselinux: fix race issue in parallel build LIN1019-3782 - rabbitmq-c: Security Advisory - rabbitmq-c - CVE-2019-18609 LINCD-467 - libsemanage: fix race issue in parallel build LINCD-467 - libselinux: fix race issue in parallel build LIN1019-3769 - sysstat: Security Advisory - sysstat - CVE-2019-19725 none - wrlinux-version.inc: Move to update 3 LINUXEXEC-5322 - add libmms-0.6.4.tar.gz LIN1019-2890 - fixup! image_types_ostree.bbclass: label file before ostree commit it none - srcrev.inc: wrlinux srcrev update 2019-12-13 LIN1019-3757 - user-key-store.bbclass: Depend on gnupg-native to always use provided gpg LINCD-553 - init-ostree-install.sh: Ignore kernel arguments without the "=" sign LIN1019-3771 - init-ostree-install.sh: Remove verbose debug information LIN1019-3759 - init-ostree.sh: partition expansion requires a partprobe before resize2fs LIN1019-2890 - image_types_ostree.bbclass: label file before ostree commit it LIN1019-2857 - libsoup: enable it only build ostree template LIN1019-3726 - openssl: Security Advisory - openssl - CVE-2019-1551 LIN1019-3744 - wrlinux-common.inc: Add rhel-7.7 to SANITY_TESTED_DISTROS LIN1019-3747 - samba: fixes of CVE-2019-14861 and CVE-2019-14870 LIN1019-3746 - samba: fixes of CVE-2019-14861 and CVE-2019-14870 LIN1019-3753 - freeradius: Security Advisory - freeradius - CVE-2019-13456 LIN1019-3745 - libxslt: Security Advisory - libxslt - CVE-2019-5815 LIN1019-3740 - installer-support/README: Remove machine intel-x86-32 support LIN1019-3706 - bash: Fix CVE-2019-18276 [ LIN1019-3706 ] ======================= LTS 19 Update 2 =============================== none - Disable OverC lockdown until scripts are fixed none - wrlinux-overc: PR lockdown files update 2019-12-10 none - wrlinux-overc: PR lockdown files update 2019-12-09 none - wrlinux-overc: PR lockdown files update 2019-12-08 none - wrlinux-overc: PR lockdown files update 2019-12-07 LINUXEXEC-5303 - initramfs-ostree-image: Conditionally enable IMA for ostree LINUXEXEC-5304 - initramfs-ostree: Remove gnu parted and replace with sgdisk/sfdisk LINUXEXEC-5304 - initramfs-ostree-image: Improve signing checks LINUXEXEC-5304 - init-ostree-install.sh, bootfs.sh: Add support for local install generation LINUXEXEC-5304 - boot.scr, bootfs.sh: Add proper -a and -L support for bootfs.sh for u-boot LINUXEXEC-5304 - bootfs.sh: Initial version of the bootfs.sh script LINUXEXEC-5304 - bootfs.sh: Add support for grub x86 bootstrap install LINUXEXEC-5290 - u-boot-uenv: Add support for device from ram LINUXEXEC-5290 - ostree_upgrade.sh and ostree-init: Add the ability to local reset /var and /etc LINUXEXEC-5290 - ostree: Adjust ostree initramfs to work util-linux oe-core split LINUXEXEC-5290 - ostree: Add feature OSTREE_ETC_MERGE_DIR=none LINUXEXEC-5290 - image_types_ota.bbclass: Conditionally copy the IMAGE_BOOT_FILES for boot partition LINUXEXEC-5290 - image_types_ostree.bbclass: By default skip the generation of rootfs.ostree.tar.bz2 files LINUXEXEC-5290 - boot.scr / boot: add handlers for dtb overlay files LINUXEXEC-5290 - boot.scr: Add fall back network install support to the boot.scr LINUXEXEC-5186 - libsoup: Fix to compile with meta-overc LINUXEXEC-5303 - grub signing integration: Add support for .sig files and grub signing LINUXEXEC-5303 - grub.cfg: Fix test arguments to work with secure signing LINUXEXEC-5290 - image_types_ostree.bbclass: conditionally build dev images LINUXEXEC-5186 - image_types_ostree.bbclass: ostree commit requires a lock LIN1019-2952 - image_types_ostree.bbclass: Fix gpg errors and bbwarn text when OSTREE_GPGID = "" LINUXEXEC-5303 - init-ostree-install.sh: Update network installer to support encrypted volumes LINUXEXEC-5303 - init-ostree.sh: Improve speed of booting with luks volumes LINUXEXEC-5303 - init.luks-ostree: Stop access to the sealed disk encryption key before switchroot LINUXEXEC-5303 - initrdscripts: Add support for QEMU swtpm LINUXEXEC-5303 - secure-core-image: Remove packagegroup-core-lsb LINUXEXEC-5303 - lvm2: Fix hanging dmcrypt volumes on boot LINUXEXEC-5303 - layer.conf gpg boot key sample: Add the gpg boot key sample files LINUXEXEC-5303 - secure boot: Make SELoader optional and copy sig files when GRUB_SIGN_VERIFY=1 LINUXEXEC-5303 - packagegroup-luks.inc: Add haveged LINUXEXEC-5303 - packagegroup-luks.inc: Add lvm2-udevrules LINUXEXEC-5303 - create-user-key-store.sh: Update for OSTree and ease of use LINUXEXEC-5303 - grub: Make SELoader optional and add gpg verify support LINUXEXEC-5303 - cryptfs-tpm2: Add support for QEMU swtpm tpm2 LINUXEXEC-5303 - sign_rpm_ext.bbclass, user-key-store.bbclass: Add boot loader signing LINUXEXEC-5303 - efitools: Uprev to fix LockDown.efi for UEFI built after 2018 LINUXEXEC-5303 - feature/encrypted-storage: Add ability to build haveged LINUXEXEC-5186 - feature/ostree: Move feature/ostree to the top level LINUXEXEC-5303 - feature/efi-secure-boot: Switch the secure boot to use grub certificate signing instead of SELoader LINUXEXEC-5303 - boot_keys: Add sample signing certificates for the boot loader LINUXEXEC-5303 - extra_hddimg_populate.bbclass: Add .sig support for grub boot signing none - wrlinux-overc: PR lockdown files update 2019-12-06 LIN1019-3617 - unfs3: fixed the issue that unfsd consumes 100% CPU none - wrlinux-overc: PR lockdown files update 2019-12-05 none - wrlinux-overc: PR lockdown files update 2019-12-04 none - wrlinux-overc: hash lockdown files update 2019-12-04 none - wrlinux-overc: PR lockdown files update 2019-12-04 none - wrlinux-overc: hash lockdown files update 2019-12-03 LIN1019-1880 - gdb: Fix CVE-2019-1010180 LIN1019-1882 - nasm: fix CVE-2019-14248 LIN1019-2642 - wpa-supplicant: fix CVE-2019-16275 none - RCPL 2 docs with new STIG guides & K8S content none - wrlinux-overc: PR lockdown files update 2019-12-03 none - wrlinux-overc: hash lockdown files update 2019-12-03 LIN1019-3607 - python3: -dev should depend on distutils none - wrlinux-overc: hash lockdown files update 2019-12-03 LINUXEXEC-2884 - wrlinux-overc: Adding document for xilinx-zynqmp LIN1019-3624 - syslog-ng: Fix multilib header conflict - syslog-ng-config.h LIN1019-3307 - wr-ostree: specify which var will be used in fstab none - srcrev.inc: wrlinux srcrev update 2019-12-02 none - wrlinux-overc: PR lockdown files update 2019-12-02 none - wrlinux-overc: hash lockdown files update 2019-12-02 none - Merge remote-tracking branch 'origin/WRLINUX_10_19_BASE' into WRLINUX_10_19_LTS LINUXEXEC-4916 - 04_wrl_buildtools.sh: Use buildtools-standalone-20191202 LINUXEXEC-2884 - cube-installer: deploy Image on ARM64 boards LIN1019-2711 - runqueue.py: not show warning for deferred multiconfig task LIN1019-3660 - sqlite3: the fixes of CVE-2019-19242, CVE-2019-19244 LIN1019-3602 - sqlite3: the fixes of CVE-2019-19242, CVE-2019-19244 LIN1019-3663 - ruby: the fixes of CVE-2019-15845, CVE-2019-16201, CVE-2019-16254, CVE-2019-16255 LIN1019-3657 - ruby: the fixes of CVE-2019-15845, CVE-2019-16201, CVE-2019-16254, CVE-2019-16255 LIN1019-3656 - ruby: the fixes of CVE-2019-15845, CVE-2019-16201, CVE-2019-16254, CVE-2019-16255 LIN1019-3655 - ruby: the fixes of CVE-2019-15845, CVE-2019-16201, CVE-2019-16254, CVE-2019-16255 LIN1019-3297 - samba: fixes of CVE-2019-10218, CVE-2019-14833, CVE-2019-14847 LIN1019-3296 - samba: fixes of CVE-2019-10218, CVE-2019-14833, CVE-2019-14847 LIN1019-3295 - samba: fixes of CVE-2019-10218, CVE-2019-14833, CVE-2019-14847 none - wrlinux-overc: PR lockdown files update 2019-12-01 none - wrlinux-overc: PR lockdown files update 2019-11-30 none - wrlinux-overc: hash lockdown files update 2019-11-30 LIN1019-3578 - libarchive: Fix CVE-2019-19221 none - python3: ensure that all forms of python3-config are in python3-dev LIN1019-3586 - python3: alternative name is python3-config not python-config none - wrlinux-overc: PR lockdown files update 2019-11-29 LIN1019-3580 - layer.conf: add u-boot-uenv to NON_MULTILIB_RECIPES LIN1019-3632 - fixup! python3-sqlparse: move this recipe to meta-python LINUXEXEC-4903 - wrlinux-overc: Add doc for how to use OverC with Kubernetes none - wrlinux-overc: PR lockdown files update 2019-11-28 none - wrlinux-overc: hash lockdown files update 2019-11-28 none - Merge branch 'wr-10.19-20191106' into WRLINUX_10_19_LTS LINUXEXEC-4912 - wrlinux-whitelist.conf: add python3-sqlparse LINUXEXEC-4912 - Django-2.2.7/sqlparse-0.3.0: add two pkgs to downloads LINUXEXEC-4912 - toaster: make toaster support django 2.2 LINUXEXEC-4912 - python3-sqlparse: move this recipe to meta-python LINUXEXEC-4912 - python-sqlparse/python3-sqlparse: move from meta-cloud-services LINUXEXEC-4912 - python3-django: upgrade 1.11.14 -> 2.2.7 none - Merge branch 'wr-10.19-20191106' into WRLINUX_10_19_LTS LIN1019-3565 - sign_rpm_ext.bbclass: check the length of GPG_PATH none - srcrev.inc: wrlinux srcrev update 2019-11-27 none - wrlinux-overc: PR lockdown files update 2019-11-27 none - wrlinux-overc: hash lockdown files update 2019-11-27 none - Merge branch 'wr-10.19-20191106' into WRLINUX_10_19_LTS LINUXEXEC-4605 - downloads: add tarballs LINUXEXEC-4605 - python-jsonschemea: add missing dependency LINUXEXEC-4605 - python3-docker-compose: remove maximum version requirements LINUXEXEC-4605 - docker: add docker-compose to docker template none - srcrev.inc: wrlinux srcrev update 2019-11-26 none - wrlinux-overc: PR lockdown files update 2019-11-26 none - wrlinux-overc: hash lockdown files update 2019-11-26 LIN1019-2962 - functions.sh: Fix grub-install to work with grub 2.04 none - Merge branch 'wr-10.19-20191106' into WRLINUX_10_19_LTS LINUXEXEC-5186 - vrf-init: Fix to build with usrmerge LINUXEXEC-5186 - pflask: Fix to work with usrmerge LINUXEXEC-5186 - cube-update: Remove #!/bin/false from config.default LIN1019-2953 - overc-utils: dom0 needs to depend on util-linux-script LINUXEXEC-5186 - screen-getty: Add support for usrmerge LINUXEXEC-5186 - rndmac: fix usrmerge problems LIN1019-3369 - cube-network hook: Fix pid detect for cube_vrf LIN1019-2952 - overc-utils: add missing RDEPENDS for util-linux-setsid none - Merge branch 'wr-10.19-20191106' into WRLINUX_10_19_LTS LIN1019-3261 - pseudo: Make realpath() remove trailing slashes LIN1019-3475 - ghostscript: CVE-2019-14869 none - wrlinux-overc: PR lockdown files update 2019-11-25 none - wrlinux-overc: hash lockdown files update 2019-11-25 none - Merge remote-tracking branch 'origin/WRLINUX_10_19_BASE' into WRLINUX_10_19_LTS LINUXEXEC-4913 - overc-installer: Use wr-10.19-20191106 branch and static rev LINUXEXEC-4913 - meta-overc.xml: Fix overc-installer none - wrlinux-overc: PR lockdown files update 2019-11-24 none - wrlinux-overc: PR lockdown files update 2019-11-23 none - wrlinux-overc: PR lockdown files update 2019-11-22 none - wrlinux-overc: hash lockdown files update 2019-11-22 LIN1019-2979 - libsemanage: fix race issue in parallel build LIN1019-2979 - libselinux: fix race issue in parallel build LIN1019-2078 - blueman: fix fail to enable bluetooth issue LIN1019-2202 - systemd: remove ${PN}-xorg-xinitrc none - Merge remote-tracking branch 'base/wr-10.19-20191106' into WRLINUX_10_19_LTS LIN1019-2886 - bind: fix CVE-2019-6471 and CVE-2018-5743 LIN1019-2883 - Revert "bind: fix CVE-2019-6471" LINUXEXEC-4903 - wrlinux-overc: wrlinux-overc.conf: set kubernetes version LINUXEXEC-4903 - wrlinux-overc: wrlinux-overc.conf: add recipes that can skip lockdown LINUXEXEC-4903 - wrlinux-overc: kubernetes: work around multilib/whitelist issue LINUXEXEC-4903 - wrlinux-overc: add layers and whitelist items to build cube-k8s-node none - Merge remote-tracking branch 'origin/WRLINUX_10_19_BASE' into WRLINUX_10_19_LTS LINUXEXEC-4903 - xml: meta-virtualization-dl: add cri-o repo none - wrlinux-overc: PR lockdown files update 2019-11-21 none - wrlinux-overc: hash lockdown files update 2019-11-21 LIN1019-3264 - Revert "classes/image_types_ostree.bbclass: workaround GPG_PATH is too long" LIN1019-3264 - classes/image_types_ostree.bbclass: check the length of GPG_PATH none - srcrev.inc: wrlinux srcrev update 2019-11-20 none - wrlinux-overc: PR lockdown files update 2019-11-20 LIN1019-3314 - ovp: system-report: Catch exception when lspci is missing LIN1019-3404 - wr-ostree: remove the lib32- prefix of u-boot-uenv package none - wrlinux-overc: PR lockdown files update 2019-11-19 none - wrlinux-overc: PR lockdown files update 2019-11-18 LIN1019-3067 - feature/run-container: minor update of README none - Merge branch 'wr-10.19-20191106' into WRLINUX_10_19_LTS LIN1019-2706 - ltp: Add "udevadm trigger" before swap verification in mkswap01.sh none - Merge branch 'wr-10.19-20191106' into WRLINUX_10_19_LTS LIN1019-3259 - sign_rpm_ext.bbclass: fix check_rpm_public_key failed while host not install gpg none - Merge branch 'WRLINUX_10_19_BASE' into WRLINUX_10_19_LTS LINUXEXEC-4570 - wrlinux-x: xml: add intel-socfpga related repo information none - wrlinux-overc: PR lockdown files update 2019-11-17 none - wrlinux-overc: PR lockdown files update 2019-11-16 none - wrlinux-version.inc: Move to update 2 none - wrlinux-overc: PR lockdown files update 2019-11-15 none - wrlinux-overc: hash lockdown files update 2019-11-15 LIN1019-3450 - fribidi: Security Advisory - fribidi - CVE-2019-18397 none - wrlinux-overc: PR lockdown files update 2019-11-14 none - Updated docs for LTS 19 GA with defect fixes included none - wrlinux-overc: PR lockdown files update 2019-11-13