* [OE-core][kirkstone 00/10] Patch review
@ 2023-08-03 14:04 Steve Sakoman
0 siblings, 0 replies; 21+ messages in thread
From: Steve Sakoman @ 2023-08-03 14:04 UTC (permalink / raw)
To: openembedded-core
Please review this set of changes for kirkstone and have comments back by
end of day Saturday.
Passed a-full on autobuilder:
https://autobuilder.yoctoproject.org/typhoon/#/builders/83/builds/5680
The following changes since commit dc2e760591c5ed3c999222f235484829426c71a7:
util-linux: add alternative links for ipcs,ipcrm (2023-07-31 08:12:27 -1000)
are available in the Git repository at:
https://git.openembedded.org/openembedded-core-contrib stable/kirkstone-nut
http://cgit.openembedded.org/openembedded-core-contrib/log/?h=stable/kirkstone-nut
Archana Polampalli (3):
qemu: fix CVE-2023-3301
qemu: fix CVE-2023-3255
qemu: fix CVE-2023-2861
Peter Marko (3):
libpcre2: patch CVE-2022-41409
libarchive: ignore CVE-2023-30571
openssl: Upgrade 3.0.9 -> 3.0.10
Sakib Sajal (2):
go: fix CVE-2023-24536
go: fix CVE-2023-24531
Sundeep KOKKONDA (1):
gcc : upgrade to v11.4
Yuta Hayama (1):
cve-update-nvd2-native: always pass str for json.loads()
meta/conf/distro/include/maintainers.inc | 2 +-
.../{openssl_3.0.9.bb => openssl_3.0.10.bb} | 2 +-
.../meta/cve-update-nvd2-native.bb | 2 +-
.../gcc/{gcc-11.3.inc => gcc-11.4.inc} | 6 +-
...ian_11.3.bb => gcc-cross-canadian_11.4.bb} | 0
.../{gcc-cross_11.3.bb => gcc-cross_11.4.bb} | 0
...-crosssdk_11.3.bb => gcc-crosssdk_11.4.bb} | 0
...cc-runtime_11.3.bb => gcc-runtime_11.4.bb} | 0
...itizers_11.3.bb => gcc-sanitizers_11.4.bb} | 0
...{gcc-source_11.3.bb => gcc-source_11.4.bb} | 0
...rch64-Update-Neoverse-N2-core-defini.patch | 20 +-
...rm-add-armv9-a-architecture-to-march.patch | 54 +--
...AMIC_LINKER-and-UCLIBC_DYNAMIC_LINKE.patch | 102 ++---
...s-fix-v4bx-to-linker-to-support-EABI.patch | 6 +-
.../gcc/{gcc_11.3.bb => gcc_11.4.bb} | 0
...initial_11.3.bb => libgcc-initial_11.4.bb} | 0
.../gcc/{libgcc_11.3.bb => libgcc_11.4.bb} | 0
...ibgfortran_11.3.bb => libgfortran_11.4.bb} | 0
meta/recipes-devtools/go/go-1.17.13.inc | 7 +-
.../go/go-1.19/CVE-2023-24536_1.patch | 137 +++++++
.../go/go-1.19/CVE-2023-24536_2.patch | 187 ++++++++++
.../go/go-1.19/CVE-2023-24536_3.patch | 349 ++++++++++++++++++
.../go/go-1.21/CVE-2023-24531_1.patch | 252 +++++++++++++
.../go/go-1.21/CVE-2023-24531_2.patch | 47 +++
meta/recipes-devtools/qemu/qemu.inc | 3 +
.../qemu/qemu/CVE-2023-2861.patch | 172 +++++++++
.../qemu/qemu/CVE-2023-3255.patch | 64 ++++
.../qemu/qemu/CVE-2023-3301.patch | 60 +++
.../libarchive/libarchive_3.6.2.bb | 3 +
.../libpcre/libpcre2/CVE-2022-41409.patch | 75 ++++
.../recipes-support/libpcre/libpcre2_10.40.bb | 1 +
31 files changed, 1451 insertions(+), 100 deletions(-)
rename meta/recipes-connectivity/openssl/{openssl_3.0.9.bb => openssl_3.0.10.bb} (99%)
rename meta/recipes-devtools/gcc/{gcc-11.3.inc => gcc-11.4.inc} (97%)
rename meta/recipes-devtools/gcc/{gcc-cross-canadian_11.3.bb => gcc-cross-canadian_11.4.bb} (100%)
rename meta/recipes-devtools/gcc/{gcc-cross_11.3.bb => gcc-cross_11.4.bb} (100%)
rename meta/recipes-devtools/gcc/{gcc-crosssdk_11.3.bb => gcc-crosssdk_11.4.bb} (100%)
rename meta/recipes-devtools/gcc/{gcc-runtime_11.3.bb => gcc-runtime_11.4.bb} (100%)
rename meta/recipes-devtools/gcc/{gcc-sanitizers_11.3.bb => gcc-sanitizers_11.4.bb} (100%)
rename meta/recipes-devtools/gcc/{gcc-source_11.3.bb => gcc-source_11.4.bb} (100%)
rename meta/recipes-devtools/gcc/{gcc_11.3.bb => gcc_11.4.bb} (100%)
rename meta/recipes-devtools/gcc/{libgcc-initial_11.3.bb => libgcc-initial_11.4.bb} (100%)
rename meta/recipes-devtools/gcc/{libgcc_11.3.bb => libgcc_11.4.bb} (100%)
rename meta/recipes-devtools/gcc/{libgfortran_11.3.bb => libgfortran_11.4.bb} (100%)
create mode 100644 meta/recipes-devtools/go/go-1.19/CVE-2023-24536_1.patch
create mode 100644 meta/recipes-devtools/go/go-1.19/CVE-2023-24536_2.patch
create mode 100644 meta/recipes-devtools/go/go-1.19/CVE-2023-24536_3.patch
create mode 100644 meta/recipes-devtools/go/go-1.21/CVE-2023-24531_1.patch
create mode 100644 meta/recipes-devtools/go/go-1.21/CVE-2023-24531_2.patch
create mode 100644 meta/recipes-devtools/qemu/qemu/CVE-2023-2861.patch
create mode 100644 meta/recipes-devtools/qemu/qemu/CVE-2023-3255.patch
create mode 100644 meta/recipes-devtools/qemu/qemu/CVE-2023-3301.patch
create mode 100644 meta/recipes-support/libpcre/libpcre2/CVE-2022-41409.patch
--
2.34.1
^ permalink raw reply [flat|nested] 21+ messages in thread
* [OE-core][kirkstone 00/10] Patch review
@ 2023-10-03 19:36 Steve Sakoman
2023-10-03 19:36 ` [OE-core][kirkstone 01/10] json-c: define CVE_VERSION Steve Sakoman
` (9 more replies)
0 siblings, 10 replies; 21+ messages in thread
From: Steve Sakoman @ 2023-10-03 19:36 UTC (permalink / raw)
To: openembedded-core
Please review this set of patches for kirkstone and have comments back by
end of day Thursday, October 5
Passed a-full on autobuilder:
https://autobuilder.yoctoproject.org/typhoon/#/builders/83/builds/5984
except for the meta-aws test, which breaks due to recent commits there. Maintainer notified.
The following changes since commit 7e177848f97eb9958619c28b5e5dadee12f67507:
kernel.bbclass: Add force flag to rm calls (2023-09-27 06:09:46 -1000)
are available in the Git repository at:
https://git.openembedded.org/openembedded-core-contrib stable/kirkstone-nut
https://git.openembedded.org/openembedded-core-contrib/log/?h=stable/kirkstone-nut
Bruce Ashfield (5):
linux-yocto/5.10: update to v5.10.189
linux-yocto/5.10: update to v5.10.191
linux-yocto/5.10: update to v5.10.192
linux-yocto/5.10: update to v5.10.194
linux-yocto/5.10: update to v5.10.197
Martin Jansa (2):
ccache: fix build with gcc-13
fontcache.bbclass: avoid native recipes depending on target fontconfig
Narpat Mali (1):
python3-jinja2: fix for the ptest result format
Peter Marko (1):
json-c: define CVE_VERSION
Shubham Kulkarni (1):
go: Update fix for CVE-2023-24538 & CVE-2023-39318
meta/classes/fontcache.bbclass | 1 +
...x-FTBFS-with-not-yet-released-GCC-13.patch | 92 +++
meta/recipes-devtools/ccache/ccache_4.6.bb | 4 +-
meta/recipes-devtools/go/go-1.17.13.inc | 3 +-
.../go/go-1.18/CVE-2023-24538_1.patch | 597 ++++++++++++++++++
...023-24538.patch => CVE-2023-24538_2.patch} | 175 ++++-
.../go/go-1.21/CVE-2023-39318.patch | 44 +-
meta/recipes-devtools/json-c/json-c_0.15.bb | 3 +
.../python/python3-jinja2/run-ptest | 2 +-
.../linux/linux-yocto-rt_5.10.bb | 6 +-
.../linux/linux-yocto-tiny_5.10.bb | 8 +-
meta/recipes-kernel/linux/linux-yocto_5.10.bb | 24 +-
12 files changed, 921 insertions(+), 38 deletions(-)
create mode 100644 meta/recipes-devtools/ccache/ccache/0001-build-Fix-FTBFS-with-not-yet-released-GCC-13.patch
create mode 100644 meta/recipes-devtools/go/go-1.18/CVE-2023-24538_1.patch
rename meta/recipes-devtools/go/go-1.18/{CVE-2023-24538.patch => CVE-2023-24538_2.patch} (53%)
--
2.34.1
^ permalink raw reply [flat|nested] 21+ messages in thread
* [OE-core][kirkstone 01/10] json-c: define CVE_VERSION
2023-10-03 19:36 [OE-core][kirkstone 00/10] Patch review Steve Sakoman
@ 2023-10-03 19:36 ` Steve Sakoman
2023-10-03 19:36 ` [OE-core][kirkstone 02/10] go: Update fix for CVE-2023-24538 & CVE-2023-39318 Steve Sakoman
` (8 subsequent siblings)
9 siblings, 0 replies; 21+ messages in thread
From: Steve Sakoman @ 2023-10-03 19:36 UTC (permalink / raw)
To: openembedded-core
From: Peter Marko <peter.marko@siemens.com>
Recently NVD updated all CVEs for json-c and old fixed
CVE-2020-12762 is reported by cve_check now.
NVD match clause now includes full tag name including
date which is "greater" than tag without additional numbers.
Fix it by defining CVE_VERSION identical to full tag.
Put it close to hash so recipe update patch includes this line.
Signed-off-by: Peter Marko <peter.marko@siemens.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
---
meta/recipes-devtools/json-c/json-c_0.15.bb | 3 +++
1 file changed, 3 insertions(+)
diff --git a/meta/recipes-devtools/json-c/json-c_0.15.bb b/meta/recipes-devtools/json-c/json-c_0.15.bb
index 4da30bc50c..b3679e0135 100644
--- a/meta/recipes-devtools/json-c/json-c_0.15.bb
+++ b/meta/recipes-devtools/json-c/json-c_0.15.bb
@@ -12,6 +12,9 @@ SRC_URI = " \
SRC_URI[sha256sum] = "b8d80a1ddb718b3ba7492916237bbf86609e9709fb007e7f7d4322f02341a4c6"
+# NVD uses full tag name including date
+CVE_VERSION = "0.15-20200726"
+
UPSTREAM_CHECK_URI = "https://github.com/${BPN}/${BPN}/tags"
UPSTREAM_CHECK_REGEX = "json-c-(?P<pver>\d+(\.\d+)+)-\d+"
--
2.34.1
^ permalink raw reply related [flat|nested] 21+ messages in thread
* [OE-core][kirkstone 02/10] go: Update fix for CVE-2023-24538 & CVE-2023-39318
2023-10-03 19:36 [OE-core][kirkstone 00/10] Patch review Steve Sakoman
2023-10-03 19:36 ` [OE-core][kirkstone 01/10] json-c: define CVE_VERSION Steve Sakoman
@ 2023-10-03 19:36 ` Steve Sakoman
2023-10-03 19:36 ` [OE-core][kirkstone 03/10] linux-yocto/5.10: update to v5.10.189 Steve Sakoman
` (7 subsequent siblings)
9 siblings, 0 replies; 21+ messages in thread
From: Steve Sakoman @ 2023-10-03 19:36 UTC (permalink / raw)
To: openembedded-core
From: Shubham Kulkarni <skulkarni@mvista.com>
Add missing files in fix for CVE-2023-24538 & CVE-2023-39318
Upstream Link -
CVE-2023-24538: https://github.com/golang/go/commit/b1e3ecfa06b67014429a197ec5e134ce4303ad9b
CVE-2023-39318: https://github.com/golang/go/commit/023b542edf38e2a1f87fcefb9f75ff2f99401b4c
Signed-off-by: Shubham Kulkarni <skulkarni@mvista.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
---
meta/recipes-devtools/go/go-1.17.13.inc | 3 +-
.../go/go-1.18/CVE-2023-24538_1.patch | 597 ++++++++++++++++++
...023-24538.patch => CVE-2023-24538_2.patch} | 175 ++++-
.../go/go-1.21/CVE-2023-39318.patch | 44 +-
4 files changed, 802 insertions(+), 17 deletions(-)
create mode 100644 meta/recipes-devtools/go/go-1.18/CVE-2023-24538_1.patch
rename meta/recipes-devtools/go/go-1.18/{CVE-2023-24538.patch => CVE-2023-24538_2.patch} (53%)
diff --git a/meta/recipes-devtools/go/go-1.17.13.inc b/meta/recipes-devtools/go/go-1.17.13.inc
index ed2645bc12..461819d80f 100644
--- a/meta/recipes-devtools/go/go-1.17.13.inc
+++ b/meta/recipes-devtools/go/go-1.17.13.inc
@@ -29,7 +29,8 @@ SRC_URI += "\
file://CVE-2022-41722.patch \
file://CVE-2023-24537.patch \
file://CVE-2023-24534.patch \
- file://CVE-2023-24538.patch \
+ file://CVE-2023-24538_1.patch \
+ file://CVE-2023-24538_2.patch \
file://CVE-2023-24540.patch \
file://CVE-2023-24539.patch \
file://CVE-2023-29404.patch \
diff --git a/meta/recipes-devtools/go/go-1.18/CVE-2023-24538_1.patch b/meta/recipes-devtools/go/go-1.18/CVE-2023-24538_1.patch
new file mode 100644
index 0000000000..bb0a416f46
--- /dev/null
+++ b/meta/recipes-devtools/go/go-1.18/CVE-2023-24538_1.patch
@@ -0,0 +1,597 @@
+From b1e4e8ec7e946ff2d3bb37ac99c5468ceb49c362 Mon Sep 17 00:00:00 2001
+From: Russ Cox <rsc@golang.org>
+Date: Thu, 20 May 2021 12:46:33 -0400
+Subject: [PATCH 1/2] html/template, text/template: implement break and
+ continue for range loops
+
+Break and continue for range loops was accepted as a proposal in June 2017.
+It was implemented in CL 66410 (Oct 2017)
+but then rolled back in CL 92155 (Feb 2018)
+because html/template changes had not been implemented.
+
+This CL reimplements break and continue in text/template
+and then adds support for them in html/template as well.
+
+Fixes #20531.
+
+Change-Id: I05330482a976f1c078b4b49c2287bd9031bb7616
+Reviewed-on: https://go-review.googlesource.com/c/go/+/321491
+Trust: Russ Cox <rsc@golang.org>
+Run-TryBot: Russ Cox <rsc@golang.org>
+TryBot-Result: Go Bot <gobot@golang.org>
+Reviewed-by: Rob Pike <r@golang.org>
+
+Upstream-Status: Backport from https://github.com/golang/go/commit/d0dd26a88c019d54f22463daae81e785f5867565
+CVE: CVE-2023-24538
+Signed-off-by: Shubham Kulkarni <skulkarni@mvista.com>
+---
+ src/html/template/context.go | 4 ++
+ src/html/template/escape.go | 71 ++++++++++++++++++++++++++++++++++-
+ src/html/template/escape_test.go | 24 ++++++++++++
+ src/html/template/exec_test.go | 2 +
+ src/text/template/doc.go | 8 ++++
+ src/text/template/exec.go | 24 +++++++++++-
+ src/text/template/exec_test.go | 2 +
+ src/text/template/parse/lex.go | 13 ++++++-
+ src/text/template/parse/lex_test.go | 2 +
+ src/text/template/parse/node.go | 36 ++++++++++++++++++
+ src/text/template/parse/parse.go | 42 ++++++++++++++++++++-
+ src/text/template/parse/parse_test.go | 8 ++++
+ 12 files changed, 232 insertions(+), 4 deletions(-)
+
+diff --git a/src/html/template/context.go b/src/html/template/context.go
+index f7d4849..aaa7d08 100644
+--- a/src/html/template/context.go
++++ b/src/html/template/context.go
+@@ -6,6 +6,7 @@ package template
+
+ import (
+ "fmt"
++ "text/template/parse"
+ )
+
+ // context describes the state an HTML parser must be in when it reaches the
+@@ -22,6 +23,7 @@ type context struct {
+ jsCtx jsCtx
+ attr attr
+ element element
++ n parse.Node // for range break/continue
+ err *Error
+ }
+
+@@ -141,6 +143,8 @@ const (
+ // stateError is an infectious error state outside any valid
+ // HTML/CSS/JS construct.
+ stateError
++ // stateDead marks unreachable code after a {{break}} or {{continue}}.
++ stateDead
+ )
+
+ // isComment is true for any state that contains content meant for template
+diff --git a/src/html/template/escape.go b/src/html/template/escape.go
+index 8739735..6dea79c 100644
+--- a/src/html/template/escape.go
++++ b/src/html/template/escape.go
+@@ -97,6 +97,15 @@ type escaper struct {
+ actionNodeEdits map[*parse.ActionNode][]string
+ templateNodeEdits map[*parse.TemplateNode]string
+ textNodeEdits map[*parse.TextNode][]byte
++ // rangeContext holds context about the current range loop.
++ rangeContext *rangeContext
++}
++
++// rangeContext holds information about the current range loop.
++type rangeContext struct {
++ outer *rangeContext // outer loop
++ breaks []context // context at each break action
++ continues []context // context at each continue action
+ }
+
+ // makeEscaper creates a blank escaper for the given set.
+@@ -109,6 +118,7 @@ func makeEscaper(n *nameSpace) escaper {
+ map[*parse.ActionNode][]string{},
+ map[*parse.TemplateNode]string{},
+ map[*parse.TextNode][]byte{},
++ nil,
+ }
+ }
+
+@@ -124,8 +134,16 @@ func (e *escaper) escape(c context, n parse.Node) context {
+ switch n := n.(type) {
+ case *parse.ActionNode:
+ return e.escapeAction(c, n)
++ case *parse.BreakNode:
++ c.n = n
++ e.rangeContext.breaks = append(e.rangeContext.breaks, c)
++ return context{state: stateDead}
+ case *parse.CommentNode:
+ return c
++ case *parse.ContinueNode:
++ c.n = n
++ e.rangeContext.continues = append(e.rangeContext.breaks, c)
++ return context{state: stateDead}
+ case *parse.IfNode:
+ return e.escapeBranch(c, &n.BranchNode, "if")
+ case *parse.ListNode:
+@@ -427,6 +445,12 @@ func join(a, b context, node parse.Node, nodeName string) context {
+ if b.state == stateError {
+ return b
+ }
++ if a.state == stateDead {
++ return b
++ }
++ if b.state == stateDead {
++ return a
++ }
+ if a.eq(b) {
+ return a
+ }
+@@ -466,14 +490,27 @@ func join(a, b context, node parse.Node, nodeName string) context {
+
+ // escapeBranch escapes a branch template node: "if", "range" and "with".
+ func (e *escaper) escapeBranch(c context, n *parse.BranchNode, nodeName string) context {
++ if nodeName == "range" {
++ e.rangeContext = &rangeContext{outer: e.rangeContext}
++ }
+ c0 := e.escapeList(c, n.List)
+- if nodeName == "range" && c0.state != stateError {
++ if nodeName == "range" {
++ if c0.state != stateError {
++ c0 = joinRange(c0, e.rangeContext)
++ }
++ e.rangeContext = e.rangeContext.outer
++ if c0.state == stateError {
++ return c0
++ }
++
+ // The "true" branch of a "range" node can execute multiple times.
+ // We check that executing n.List once results in the same context
+ // as executing n.List twice.
++ e.rangeContext = &rangeContext{outer: e.rangeContext}
+ c1, _ := e.escapeListConditionally(c0, n.List, nil)
+ c0 = join(c0, c1, n, nodeName)
+ if c0.state == stateError {
++ e.rangeContext = e.rangeContext.outer
+ // Make clear that this is a problem on loop re-entry
+ // since developers tend to overlook that branch when
+ // debugging templates.
+@@ -481,11 +518,39 @@ func (e *escaper) escapeBranch(c context, n *parse.BranchNode, nodeName string)
+ c0.err.Description = "on range loop re-entry: " + c0.err.Description
+ return c0
+ }
++ c0 = joinRange(c0, e.rangeContext)
++ e.rangeContext = e.rangeContext.outer
++ if c0.state == stateError {
++ return c0
++ }
+ }
+ c1 := e.escapeList(c, n.ElseList)
+ return join(c0, c1, n, nodeName)
+ }
+
++func joinRange(c0 context, rc *rangeContext) context {
++ // Merge contexts at break and continue statements into overall body context.
++ // In theory we could treat breaks differently from continues, but for now it is
++ // enough to treat them both as going back to the start of the loop (which may then stop).
++ for _, c := range rc.breaks {
++ c0 = join(c0, c, c.n, "range")
++ if c0.state == stateError {
++ c0.err.Line = c.n.(*parse.BreakNode).Line
++ c0.err.Description = "at range loop break: " + c0.err.Description
++ return c0
++ }
++ }
++ for _, c := range rc.continues {
++ c0 = join(c0, c, c.n, "range")
++ if c0.state == stateError {
++ c0.err.Line = c.n.(*parse.ContinueNode).Line
++ c0.err.Description = "at range loop continue: " + c0.err.Description
++ return c0
++ }
++ }
++ return c0
++}
++
+ // escapeList escapes a list template node.
+ func (e *escaper) escapeList(c context, n *parse.ListNode) context {
+ if n == nil {
+@@ -493,6 +558,9 @@ func (e *escaper) escapeList(c context, n *parse.ListNode) context {
+ }
+ for _, m := range n.Nodes {
+ c = e.escape(c, m)
++ if c.state == stateDead {
++ break
++ }
+ }
+ return c
+ }
+@@ -503,6 +571,7 @@ func (e *escaper) escapeList(c context, n *parse.ListNode) context {
+ // which is the same as whether e was updated.
+ func (e *escaper) escapeListConditionally(c context, n *parse.ListNode, filter func(*escaper, context) bool) (context, bool) {
+ e1 := makeEscaper(e.ns)
++ e1.rangeContext = e.rangeContext
+ // Make type inferences available to f.
+ for k, v := range e.output {
+ e1.output[k] = v
+diff --git a/src/html/template/escape_test.go b/src/html/template/escape_test.go
+index fbc84a7..3b0aa8c 100644
+--- a/src/html/template/escape_test.go
++++ b/src/html/template/escape_test.go
+@@ -920,6 +920,22 @@ func TestErrors(t *testing.T) {
+ "<a href='/foo?{{range .Items}}&{{.K}}={{.V}}{{end}}'>",
+ "",
+ },
++ {
++ "{{range .Items}}<a{{if .X}}{{end}}>{{end}}",
++ "",
++ },
++ {
++ "{{range .Items}}<a{{if .X}}{{end}}>{{continue}}{{end}}",
++ "",
++ },
++ {
++ "{{range .Items}}<a{{if .X}}{{end}}>{{break}}{{end}}",
++ "",
++ },
++ {
++ "{{range .Items}}<a{{if .X}}{{end}}>{{if .X}}{{break}}{{end}}{{end}}",
++ "",
++ },
+ // Error cases.
+ {
+ "{{if .Cond}}<a{{end}}",
+@@ -956,6 +972,14 @@ func TestErrors(t *testing.T) {
+ "z:2:8: on range loop re-entry: {{range}} branches",
+ },
+ {
++ "{{range .Items}}<a{{if .X}}{{break}}{{end}}>{{end}}",
++ "z:1:29: at range loop break: {{range}} branches end in different contexts",
++ },
++ {
++ "{{range .Items}}<a{{if .X}}{{continue}}{{end}}>{{end}}",
++ "z:1:29: at range loop continue: {{range}} branches end in different contexts",
++ },
++ {
+ "<a b=1 c={{.H}}",
+ "z: ends in a non-text context: {stateAttr delimSpaceOrTagEnd",
+ },
+diff --git a/src/html/template/exec_test.go b/src/html/template/exec_test.go
+index 8885873..523340b 100644
+--- a/src/html/template/exec_test.go
++++ b/src/html/template/exec_test.go
+@@ -567,6 +567,8 @@ var execTests = []execTest{
+ {"range empty no else", "{{range .SIEmpty}}-{{.}}-{{end}}", "", tVal, true},
+ {"range []int else", "{{range .SI}}-{{.}}-{{else}}EMPTY{{end}}", "-3--4--5-", tVal, true},
+ {"range empty else", "{{range .SIEmpty}}-{{.}}-{{else}}EMPTY{{end}}", "EMPTY", tVal, true},
++ {"range []int break else", "{{range .SI}}-{{.}}-{{break}}NOTREACHED{{else}}EMPTY{{end}}", "-3-", tVal, true},
++ {"range []int continue else", "{{range .SI}}-{{.}}-{{continue}}NOTREACHED{{else}}EMPTY{{end}}", "-3--4--5-", tVal, true},
+ {"range []bool", "{{range .SB}}-{{.}}-{{end}}", "-true--false-", tVal, true},
+ {"range []int method", "{{range .SI | .MAdd .I}}-{{.}}-{{end}}", "-20--21--22-", tVal, true},
+ {"range map", "{{range .MSI}}-{{.}}-{{end}}", "-1--3--2-", tVal, true},
+diff --git a/src/text/template/doc.go b/src/text/template/doc.go
+index 7b30294..0228b15 100644
+--- a/src/text/template/doc.go
++++ b/src/text/template/doc.go
+@@ -112,6 +112,14 @@ data, defined in detail in the corresponding sections that follow.
+ T0 is executed; otherwise, dot is set to the successive elements
+ of the array, slice, or map and T1 is executed.
+
++ {{break}}
++ The innermost {{range pipeline}} loop is ended early, stopping the
++ current iteration and bypassing all remaining iterations.
++
++ {{continue}}
++ The current iteration of the innermost {{range pipeline}} loop is
++ stopped, and the loop starts the next iteration.
++
+ {{template "name"}}
+ The template with the specified name is executed with nil data.
+
+diff --git a/src/text/template/exec.go b/src/text/template/exec.go
+index 5ad3b4e..92fa9d9 100644
+--- a/src/text/template/exec.go
++++ b/src/text/template/exec.go
+@@ -5,6 +5,7 @@
+ package template
+
+ import (
++ "errors"
+ "fmt"
+ "internal/fmtsort"
+ "io"
+@@ -243,6 +244,12 @@ func (t *Template) DefinedTemplates() string {
+ return b.String()
+ }
+
++// Sentinel errors for use with panic to signal early exits from range loops.
++var (
++ walkBreak = errors.New("break")
++ walkContinue = errors.New("continue")
++)
++
+ // Walk functions step through the major pieces of the template structure,
+ // generating output as they go.
+ func (s *state) walk(dot reflect.Value, node parse.Node) {
+@@ -255,7 +262,11 @@ func (s *state) walk(dot reflect.Value, node parse.Node) {
+ if len(node.Pipe.Decl) == 0 {
+ s.printValue(node, val)
+ }
++ case *parse.BreakNode:
++ panic(walkBreak)
+ case *parse.CommentNode:
++ case *parse.ContinueNode:
++ panic(walkContinue)
+ case *parse.IfNode:
+ s.walkIfOrWith(parse.NodeIf, dot, node.Pipe, node.List, node.ElseList)
+ case *parse.ListNode:
+@@ -334,6 +345,11 @@ func isTrue(val reflect.Value) (truth, ok bool) {
+
+ func (s *state) walkRange(dot reflect.Value, r *parse.RangeNode) {
+ s.at(r)
++ defer func() {
++ if r := recover(); r != nil && r != walkBreak {
++ panic(r)
++ }
++ }()
+ defer s.pop(s.mark())
+ val, _ := indirect(s.evalPipeline(dot, r.Pipe))
+ // mark top of stack before any variables in the body are pushed.
+@@ -347,8 +363,14 @@ func (s *state) walkRange(dot reflect.Value, r *parse.RangeNode) {
+ if len(r.Pipe.Decl) > 1 {
+ s.setTopVar(2, index)
+ }
++ defer s.pop(mark)
++ defer func() {
++ // Consume panic(walkContinue)
++ if r := recover(); r != nil && r != walkContinue {
++ panic(r)
++ }
++ }()
+ s.walk(elem, r.List)
+- s.pop(mark)
+ }
+ switch val.Kind() {
+ case reflect.Array, reflect.Slice:
+diff --git a/src/text/template/exec_test.go b/src/text/template/exec_test.go
+index ef52164..586af55 100644
+--- a/src/text/template/exec_test.go
++++ b/src/text/template/exec_test.go
+@@ -564,6 +564,8 @@ var execTests = []execTest{
+ {"range empty no else", "{{range .SIEmpty}}-{{.}}-{{end}}", "", tVal, true},
+ {"range []int else", "{{range .SI}}-{{.}}-{{else}}EMPTY{{end}}", "-3--4--5-", tVal, true},
+ {"range empty else", "{{range .SIEmpty}}-{{.}}-{{else}}EMPTY{{end}}", "EMPTY", tVal, true},
++ {"range []int break else", "{{range .SI}}-{{.}}-{{break}}NOTREACHED{{else}}EMPTY{{end}}", "-3-", tVal, true},
++ {"range []int continue else", "{{range .SI}}-{{.}}-{{continue}}NOTREACHED{{else}}EMPTY{{end}}", "-3--4--5-", tVal, true},
+ {"range []bool", "{{range .SB}}-{{.}}-{{end}}", "-true--false-", tVal, true},
+ {"range []int method", "{{range .SI | .MAdd .I}}-{{.}}-{{end}}", "-20--21--22-", tVal, true},
+ {"range map", "{{range .MSI}}-{{.}}-{{end}}", "-1--3--2-", tVal, true},
+diff --git a/src/text/template/parse/lex.go b/src/text/template/parse/lex.go
+index 6784071..95e3377 100644
+--- a/src/text/template/parse/lex.go
++++ b/src/text/template/parse/lex.go
+@@ -62,6 +62,8 @@ const (
+ // Keywords appear after all the rest.
+ itemKeyword // used only to delimit the keywords
+ itemBlock // block keyword
++ itemBreak // break keyword
++ itemContinue // continue keyword
+ itemDot // the cursor, spelled '.'
+ itemDefine // define keyword
+ itemElse // else keyword
+@@ -76,6 +78,8 @@ const (
+ var key = map[string]itemType{
+ ".": itemDot,
+ "block": itemBlock,
++ "break": itemBreak,
++ "continue": itemContinue,
+ "define": itemDefine,
+ "else": itemElse,
+ "end": itemEnd,
+@@ -119,6 +123,8 @@ type lexer struct {
+ parenDepth int // nesting depth of ( ) exprs
+ line int // 1+number of newlines seen
+ startLine int // start line of this item
++ breakOK bool // break keyword allowed
++ continueOK bool // continue keyword allowed
+ }
+
+ // next returns the next rune in the input.
+@@ -461,7 +467,12 @@ Loop:
+ }
+ switch {
+ case key[word] > itemKeyword:
+- l.emit(key[word])
++ item := key[word]
++ if item == itemBreak && !l.breakOK || item == itemContinue && !l.continueOK {
++ l.emit(itemIdentifier)
++ } else {
++ l.emit(item)
++ }
+ case word[0] == '.':
+ l.emit(itemField)
+ case word == "true", word == "false":
+diff --git a/src/text/template/parse/lex_test.go b/src/text/template/parse/lex_test.go
+index 6510eed..df6aabf 100644
+--- a/src/text/template/parse/lex_test.go
++++ b/src/text/template/parse/lex_test.go
+@@ -35,6 +35,8 @@ var itemName = map[itemType]string{
+ // keywords
+ itemDot: ".",
+ itemBlock: "block",
++ itemBreak: "break",
++ itemContinue: "continue",
+ itemDefine: "define",
+ itemElse: "else",
+ itemIf: "if",
+diff --git a/src/text/template/parse/node.go b/src/text/template/parse/node.go
+index 177482f..4726822 100644
+--- a/src/text/template/parse/node.go
++++ b/src/text/template/parse/node.go
+@@ -71,6 +71,8 @@ const (
+ NodeVariable // A $ variable.
+ NodeWith // A with action.
+ NodeComment // A comment.
++ NodeBreak // A break action.
++ NodeContinue // A continue action.
+ )
+
+ // Nodes.
+@@ -907,6 +909,40 @@ func (i *IfNode) Copy() Node {
+ return i.tr.newIf(i.Pos, i.Line, i.Pipe.CopyPipe(), i.List.CopyList(), i.ElseList.CopyList())
+ }
+
++// BreakNode represents a {{break}} action.
++type BreakNode struct {
++ tr *Tree
++ NodeType
++ Pos
++ Line int
++}
++
++func (t *Tree) newBreak(pos Pos, line int) *BreakNode {
++ return &BreakNode{tr: t, NodeType: NodeBreak, Pos: pos, Line: line}
++}
++
++func (b *BreakNode) Copy() Node { return b.tr.newBreak(b.Pos, b.Line) }
++func (b *BreakNode) String() string { return "{{break}}" }
++func (b *BreakNode) tree() *Tree { return b.tr }
++func (b *BreakNode) writeTo(sb *strings.Builder) { sb.WriteString("{{break}}") }
++
++// ContinueNode represents a {{continue}} action.
++type ContinueNode struct {
++ tr *Tree
++ NodeType
++ Pos
++ Line int
++}
++
++func (t *Tree) newContinue(pos Pos, line int) *ContinueNode {
++ return &ContinueNode{tr: t, NodeType: NodeContinue, Pos: pos, Line: line}
++}
++
++func (c *ContinueNode) Copy() Node { return c.tr.newContinue(c.Pos, c.Line) }
++func (c *ContinueNode) String() string { return "{{continue}}" }
++func (c *ContinueNode) tree() *Tree { return c.tr }
++func (c *ContinueNode) writeTo(sb *strings.Builder) { sb.WriteString("{{continue}}") }
++
+ // RangeNode represents a {{range}} action and its commands.
+ type RangeNode struct {
+ BranchNode
+diff --git a/src/text/template/parse/parse.go b/src/text/template/parse/parse.go
+index 1a63961..d92bed5 100644
+--- a/src/text/template/parse/parse.go
++++ b/src/text/template/parse/parse.go
+@@ -31,6 +31,7 @@ type Tree struct {
+ vars []string // variables defined at the moment.
+ treeSet map[string]*Tree
+ actionLine int // line of left delim starting action
++ rangeDepth int
+ mode Mode
+ }
+
+@@ -224,6 +225,8 @@ func (t *Tree) startParse(funcs []map[string]interface{}, lex *lexer, treeSet ma
+ t.vars = []string{"$"}
+ t.funcs = funcs
+ t.treeSet = treeSet
++ lex.breakOK = !t.hasFunction("break")
++ lex.continueOK = !t.hasFunction("continue")
+ }
+
+ // stopParse terminates parsing.
+@@ -386,6 +389,10 @@ func (t *Tree) action() (n Node) {
+ switch token := t.nextNonSpace(); token.typ {
+ case itemBlock:
+ return t.blockControl()
++ case itemBreak:
++ return t.breakControl(token.pos, token.line)
++ case itemContinue:
++ return t.continueControl(token.pos, token.line)
+ case itemElse:
+ return t.elseControl()
+ case itemEnd:
+@@ -405,6 +412,32 @@ func (t *Tree) action() (n Node) {
+ return t.newAction(token.pos, token.line, t.pipeline("command", itemRightDelim))
+ }
+
++// Break:
++// {{break}}
++// Break keyword is past.
++func (t *Tree) breakControl(pos Pos, line int) Node {
++ if token := t.next(); token.typ != itemRightDelim {
++ t.unexpected(token, "in {{break}}")
++ }
++ if t.rangeDepth == 0 {
++ t.errorf("{{break}} outside {{range}}")
++ }
++ return t.newBreak(pos, line)
++}
++
++// Continue:
++// {{continue}}
++// Continue keyword is past.
++func (t *Tree) continueControl(pos Pos, line int) Node {
++ if token := t.next(); token.typ != itemRightDelim {
++ t.unexpected(token, "in {{continue}}")
++ }
++ if t.rangeDepth == 0 {
++ t.errorf("{{continue}} outside {{range}}")
++ }
++ return t.newContinue(pos, line)
++}
++
+ // Pipeline:
+ // declarations? command ('|' command)*
+ func (t *Tree) pipeline(context string, end itemType) (pipe *PipeNode) {
+@@ -480,8 +513,14 @@ func (t *Tree) checkPipeline(pipe *PipeNode, context string) {
+ func (t *Tree) parseControl(allowElseIf bool, context string) (pos Pos, line int, pipe *PipeNode, list, elseList *ListNode) {
+ defer t.popVars(len(t.vars))
+ pipe = t.pipeline(context, itemRightDelim)
++ if context == "range" {
++ t.rangeDepth++
++ }
+ var next Node
+ list, next = t.itemList()
++ if context == "range" {
++ t.rangeDepth--
++ }
+ switch next.Type() {
+ case nodeEnd: //done
+ case nodeElse:
+@@ -523,7 +562,8 @@ func (t *Tree) ifControl() Node {
+ // {{range pipeline}} itemList {{else}} itemList {{end}}
+ // Range keyword is past.
+ func (t *Tree) rangeControl() Node {
+- return t.newRange(t.parseControl(false, "range"))
++ r := t.newRange(t.parseControl(false, "range"))
++ return r
+ }
+
+ // With:
+diff --git a/src/text/template/parse/parse_test.go b/src/text/template/parse/parse_test.go
+index 9b1be27..c3679a0 100644
+--- a/src/text/template/parse/parse_test.go
++++ b/src/text/template/parse/parse_test.go
+@@ -230,6 +230,10 @@ var parseTests = []parseTest{
+ `{{range $x := .SI}}{{.}}{{end}}`},
+ {"range 2 vars", "{{range $x, $y := .SI}}{{.}}{{end}}", noError,
+ `{{range $x, $y := .SI}}{{.}}{{end}}`},
++ {"range with break", "{{range .SI}}{{.}}{{break}}{{end}}", noError,
++ `{{range .SI}}{{.}}{{break}}{{end}}`},
++ {"range with continue", "{{range .SI}}{{.}}{{continue}}{{end}}", noError,
++ `{{range .SI}}{{.}}{{continue}}{{end}}`},
+ {"constants", "{{range .SI 1 -3.2i true false 'a' nil}}{{end}}", noError,
+ `{{range .SI 1 -3.2i true false 'a' nil}}{{end}}`},
+ {"template", "{{template `x`}}", noError,
+@@ -279,6 +283,10 @@ var parseTests = []parseTest{
+ {"adjacent args", "{{printf 3`x`}}", hasError, ""},
+ {"adjacent args with .", "{{printf `x`.}}", hasError, ""},
+ {"extra end after if", "{{if .X}}a{{else if .Y}}b{{end}}{{end}}", hasError, ""},
++ {"break outside range", "{{range .}}{{end}} {{break}}", hasError, ""},
++ {"continue outside range", "{{range .}}{{end}} {{continue}}", hasError, ""},
++ {"break in range else", "{{range .}}{{else}}{{break}}{{end}}", hasError, ""},
++ {"continue in range else", "{{range .}}{{else}}{{continue}}{{end}}", hasError, ""},
+ // Other kinds of assignments and operators aren't available yet.
+ {"bug0a", "{{$x := 0}}{{$x}}", noError, "{{$x := 0}}{{$x}}"},
+ {"bug0b", "{{$x += 1}}{{$x}}", hasError, ""},
+--
+2.7.4
diff --git a/meta/recipes-devtools/go/go-1.18/CVE-2023-24538.patch b/meta/recipes-devtools/go/go-1.18/CVE-2023-24538_2.patch
similarity index 53%
rename from meta/recipes-devtools/go/go-1.18/CVE-2023-24538.patch
rename to meta/recipes-devtools/go/go-1.18/CVE-2023-24538_2.patch
index 502486befc..f94f0f55c7 100644
--- a/meta/recipes-devtools/go/go-1.18/CVE-2023-24538.patch
+++ b/meta/recipes-devtools/go/go-1.18/CVE-2023-24538_2.patch
@@ -1,7 +1,7 @@
From 07cc3b8711a8efbb5885f56dd90d854049ad2f7d Mon Sep 17 00:00:00 2001
From: Roland Shoemaker <bracewell@google.com>
Date: Mon, 20 Mar 2023 11:01:13 -0700
-Subject: [PATCH] html/template: disallow actions in JS template literals
+Subject: [PATCH 2/2] html/template: disallow actions in JS template literals
ECMAScript 6 introduced template literals[0][1] which are delimited with
backticks. These need to be escaped in a similar fashion to the
@@ -52,12 +52,15 @@ CVE: CVE-2023-24538
Signed-off-by: Shubham Kulkarni <skulkarni@mvista.com>
---
src/html/template/context.go | 2 ++
- src/html/template/error.go | 13 +++++++++++++
- src/html/template/escape.go | 11 +++++++++++
+ src/html/template/error.go | 13 ++++++++
+ src/html/template/escape.go | 11 +++++++
+ src/html/template/escape_test.go | 66 ++++++++++++++++++++++-----------------
src/html/template/js.go | 2 ++
- src/html/template/jsctx_string.go | 9 +++++++++
- src/html/template/transition.go | 7 ++++++-
- 6 files changed, 43 insertions(+), 1 deletion(-)
+ src/html/template/js_test.go | 2 +-
+ src/html/template/jsctx_string.go | 9 ++++++
+ src/html/template/state_string.go | 37 ++++++++++++++++++++--
+ src/html/template/transition.go | 7 ++++-
+ 9 files changed, 116 insertions(+), 33 deletions(-)
diff --git a/src/html/template/context.go b/src/html/template/context.go
index f7d4849..0b65313 100644
@@ -125,6 +128,104 @@ index 8739735..ca078f4 100644
case stateJSRegexp:
s = append(s, "_html_template_jsregexpescaper")
case stateCSS:
+diff --git a/src/html/template/escape_test.go b/src/html/template/escape_test.go
+index 3b0aa8c..a695b17 100644
+--- a/src/html/template/escape_test.go
++++ b/src/html/template/escape_test.go
+@@ -681,35 +681,31 @@ func TestEscape(t *testing.T) {
+ }
+
+ for _, test := range tests {
+- tmpl := New(test.name)
+- tmpl = Must(tmpl.Parse(test.input))
+- // Check for bug 6459: Tree field was not set in Parse.
+- if tmpl.Tree != tmpl.text.Tree {
+- t.Errorf("%s: tree not set properly", test.name)
+- continue
+- }
+- b := new(bytes.Buffer)
+- if err := tmpl.Execute(b, data); err != nil {
+- t.Errorf("%s: template execution failed: %s", test.name, err)
+- continue
+- }
+- if w, g := test.output, b.String(); w != g {
+- t.Errorf("%s: escaped output: want\n\t%q\ngot\n\t%q", test.name, w, g)
+- continue
+- }
+- b.Reset()
+- if err := tmpl.Execute(b, pdata); err != nil {
+- t.Errorf("%s: template execution failed for pointer: %s", test.name, err)
+- continue
+- }
+- if w, g := test.output, b.String(); w != g {
+- t.Errorf("%s: escaped output for pointer: want\n\t%q\ngot\n\t%q", test.name, w, g)
+- continue
+- }
+- if tmpl.Tree != tmpl.text.Tree {
+- t.Errorf("%s: tree mismatch", test.name)
+- continue
+- }
++ t.Run(test.name, func(t *testing.T) {
++ tmpl := New(test.name)
++ tmpl = Must(tmpl.Parse(test.input))
++ // Check for bug 6459: Tree field was not set in Parse.
++ if tmpl.Tree != tmpl.text.Tree {
++ t.Fatalf("%s: tree not set properly", test.name)
++ }
++ b := new(strings.Builder)
++ if err := tmpl.Execute(b, data); err != nil {
++ t.Fatalf("%s: template execution failed: %s", test.name, err)
++ }
++ if w, g := test.output, b.String(); w != g {
++ t.Fatalf("%s: escaped output: want\n\t%q\ngot\n\t%q", test.name, w, g)
++ }
++ b.Reset()
++ if err := tmpl.Execute(b, pdata); err != nil {
++ t.Fatalf("%s: template execution failed for pointer: %s", test.name, err)
++ }
++ if w, g := test.output, b.String(); w != g {
++ t.Fatalf("%s: escaped output for pointer: want\n\t%q\ngot\n\t%q", test.name, w, g)
++ }
++ if tmpl.Tree != tmpl.text.Tree {
++ t.Fatalf("%s: tree mismatch", test.name)
++ }
++ })
+ }
+ }
+
+@@ -936,6 +932,10 @@ func TestErrors(t *testing.T) {
+ "{{range .Items}}<a{{if .X}}{{end}}>{{if .X}}{{break}}{{end}}{{end}}",
+ "",
+ },
++ {
++ "<script>var a = `${a+b}`</script>`",
++ "",
++ },
+ // Error cases.
+ {
+ "{{if .Cond}}<a{{end}}",
+@@ -1082,6 +1082,10 @@ func TestErrors(t *testing.T) {
+ // html is allowed since it is the last command in the pipeline, but urlquery is not.
+ `predefined escaper "urlquery" disallowed in template`,
+ },
++ {
++ "<script>var tmpl = `asd {{.}}`;</script>",
++ `{{.}} appears in a JS template literal`,
++ },
+ }
+ for _, test := range tests {
+ buf := new(bytes.Buffer)
+@@ -1304,6 +1308,10 @@ func TestEscapeText(t *testing.T) {
+ context{state: stateJSSqStr, delim: delimDoubleQuote, attr: attrScript},
+ },
+ {
++ "<a onclick=\"`foo",
++ context{state: stateJSBqStr, delim: delimDoubleQuote, attr: attrScript},
++ },
++ {
+ `<A ONCLICK="'`,
+ context{state: stateJSSqStr, delim: delimDoubleQuote, attr: attrScript},
+ },
diff --git a/src/html/template/js.go b/src/html/template/js.go
index ea9c183..b888eaf 100644
--- a/src/html/template/js.go
@@ -145,6 +246,19 @@ index ea9c183..b888eaf 100644
'+': `\u002b`,
'/': `\/`,
'<': `\u003c`,
+diff --git a/src/html/template/js_test.go b/src/html/template/js_test.go
+index d7ee47b..7d963ae 100644
+--- a/src/html/template/js_test.go
++++ b/src/html/template/js_test.go
+@@ -292,7 +292,7 @@ func TestEscapersOnLower7AndSelectHighCodepoints(t *testing.T) {
+ `0123456789:;\u003c=\u003e?` +
+ `@ABCDEFGHIJKLMNO` +
+ `PQRSTUVWXYZ[\\]^_` +
+- "`abcdefghijklmno" +
++ "\\u0060abcdefghijklmno" +
+ "pqrstuvwxyz{|}~\u007f" +
+ "\u00A0\u0100\\u2028\\u2029\ufeff\U0001D11E",
+ },
diff --git a/src/html/template/jsctx_string.go b/src/html/template/jsctx_string.go
index dd1d87e..2394893 100644
--- a/src/html/template/jsctx_string.go
@@ -165,6 +279,55 @@ index dd1d87e..2394893 100644
const _jsCtx_name = "jsCtxRegexpjsCtxDivOpjsCtxUnknown"
var _jsCtx_index = [...]uint8{0, 11, 21, 33}
+diff --git a/src/html/template/state_string.go b/src/html/template/state_string.go
+index 05104be..6fb1a6e 100644
+--- a/src/html/template/state_string.go
++++ b/src/html/template/state_string.go
+@@ -4,9 +4,42 @@ package template
+
+ import "strconv"
+
+-const _state_name = "stateTextstateTagstateAttrNamestateAfterNamestateBeforeValuestateHTMLCmtstateRCDATAstateAttrstateURLstateSrcsetstateJSstateJSDqStrstateJSSqStrstateJSRegexpstateJSBlockCmtstateJSLineCmtstateCSSstateCSSDqStrstateCSSSqStrstateCSSDqURLstateCSSSqURLstateCSSURLstateCSSBlockCmtstateCSSLineCmtstateError"
++func _() {
++ // An "invalid array index" compiler error signifies that the constant values have changed.
++ // Re-run the stringer command to generate them again.
++ var x [1]struct{}
++ _ = x[stateText-0]
++ _ = x[stateTag-1]
++ _ = x[stateAttrName-2]
++ _ = x[stateAfterName-3]
++ _ = x[stateBeforeValue-4]
++ _ = x[stateHTMLCmt-5]
++ _ = x[stateRCDATA-6]
++ _ = x[stateAttr-7]
++ _ = x[stateURL-8]
++ _ = x[stateSrcset-9]
++ _ = x[stateJS-10]
++ _ = x[stateJSDqStr-11]
++ _ = x[stateJSSqStr-12]
++ _ = x[stateJSBqStr-13]
++ _ = x[stateJSRegexp-14]
++ _ = x[stateJSBlockCmt-15]
++ _ = x[stateJSLineCmt-16]
++ _ = x[stateCSS-17]
++ _ = x[stateCSSDqStr-18]
++ _ = x[stateCSSSqStr-19]
++ _ = x[stateCSSDqURL-20]
++ _ = x[stateCSSSqURL-21]
++ _ = x[stateCSSURL-22]
++ _ = x[stateCSSBlockCmt-23]
++ _ = x[stateCSSLineCmt-24]
++ _ = x[stateError-25]
++ _ = x[stateDead-26]
++}
++
++const _state_name = "stateTextstateTagstateAttrNamestateAfterNamestateBeforeValuestateHTMLCmtstateRCDATAstateAttrstateURLstateSrcsetstateJSstateJSDqStrstateJSSqStrstateJSBqStrstateJSRegexpstateJSBlockCmtstateJSLineCmtstateCSSstateCSSDqStrstateCSSSqStrstateCSSDqURLstateCSSSqURLstateCSSURLstateCSSBlockCmtstateCSSLineCmtstateErrorstateDead"
+
+-var _state_index = [...]uint16{0, 9, 17, 30, 44, 60, 72, 83, 92, 100, 111, 118, 130, 142, 155, 170, 184, 192, 205, 218, 231, 244, 255, 271, 286, 296}
++var _state_index = [...]uint16{0, 9, 17, 30, 44, 60, 72, 83, 92, 100, 111, 118, 130, 142, 154, 167, 182, 196, 204, 217, 230, 243, 256, 267, 283, 298, 308, 317}
+
+ func (i state) String() string {
+ if i >= state(len(_state_index)-1) {
diff --git a/src/html/template/transition.go b/src/html/template/transition.go
index 06df679..92eb351 100644
--- a/src/html/template/transition.go
diff --git a/meta/recipes-devtools/go/go-1.21/CVE-2023-39318.patch b/meta/recipes-devtools/go/go-1.21/CVE-2023-39318.patch
index 85c6ec97c8..503a4a288a 100644
--- a/meta/recipes-devtools/go/go-1.21/CVE-2023-39318.patch
+++ b/meta/recipes-devtools/go/go-1.21/CVE-2023-39318.patch
@@ -32,11 +32,11 @@ CVE: CVE-2023-39318
Signed-off-by: Siddharth Doshi <sdoshi@mvista.com>
---
src/html/template/context.go | 6 ++-
- src/html/template/escape.go | 5 +-
- src/html/template/escape_test.go | 10 ++++
- src/html/template/state_string.go | 4 +-
- src/html/template/transition.go | 80 ++++++++++++++++++++-----------
- 5 files changed, 72 insertions(+), 33 deletions(-)
+ src/html/template/escape.go | 5 ++-
+ src/html/template/escape_test.go | 10 +++++
+ src/html/template/state_string.go | 26 +++++++------
+ src/html/template/transition.go | 80 +++++++++++++++++++++++++--------------
+ 5 files changed, 84 insertions(+), 43 deletions(-)
diff --git a/src/html/template/context.go b/src/html/template/context.go
index f5f44a1..feb6517 100644
@@ -105,14 +105,38 @@ diff --git a/src/html/template/state_string.go b/src/html/template/state_string.
index 05104be..b5cfe70 100644
--- a/src/html/template/state_string.go
+++ b/src/html/template/state_string.go
-@@ -4,9 +4,9 @@ package template
-
- import "strconv"
+@@ -25,21 +25,23 @@ func _() {
+ _ = x[stateJSRegexp-14]
+ _ = x[stateJSBlockCmt-15]
+ _ = x[stateJSLineCmt-16]
+- _ = x[stateCSS-17]
+- _ = x[stateCSSDqStr-18]
+- _ = x[stateCSSSqStr-19]
+- _ = x[stateCSSDqURL-20]
+- _ = x[stateCSSSqURL-21]
+- _ = x[stateCSSURL-22]
+- _ = x[stateCSSBlockCmt-23]
+- _ = x[stateCSSLineCmt-24]
+- _ = x[stateError-25]
+- _ = x[stateDead-26]
++ _ = x[stateJSHTMLOpenCmt-17]
++ _ = x[stateJSHTMLCloseCmt-18]
++ _ = x[stateCSS-19]
++ _ = x[stateCSSDqStr-20]
++ _ = x[stateCSSSqStr-21]
++ _ = x[stateCSSDqURL-22]
++ _ = x[stateCSSSqURL-23]
++ _ = x[stateCSSURL-24]
++ _ = x[stateCSSBlockCmt-25]
++ _ = x[stateCSSLineCmt-26]
++ _ = x[stateError-27]
++ _ = x[stateDead-28]
+ }
--const _state_name = "stateTextstateTagstateAttrNamestateAfterNamestateBeforeValuestateHTMLCmtstateRCDATAstateAttrstateURLstateSrcsetstateJSstateJSDqStrstateJSSqStrstateJSRegexpstateJSBlockCmtstateJSLineCmtstateCSSstateCSSDqStrstateCSSSqStrstateCSSDqURLstateCSSSqURLstateCSSURLstateCSSBlockCmtstateCSSLineCmtstateError"
+-const _state_name = "stateTextstateTagstateAttrNamestateAfterNamestateBeforeValuestateHTMLCmtstateRCDATAstateAttrstateURLstateSrcsetstateJSstateJSDqStrstateJSSqStrstateJSBqStrstateJSRegexpstateJSBlockCmtstateJSLineCmtstateCSSstateCSSDqStrstateCSSSqStrstateCSSDqURLstateCSSSqURLstateCSSURLstateCSSBlockCmtstateCSSLineCmtstateErrorstateDead"
+const _state_name = "stateTextstateTagstateAttrNamestateAfterNamestateBeforeValuestateHTMLCmtstateRCDATAstateAttrstateURLstateSrcsetstateJSstateJSDqStrstateJSSqStrstateJSBqStrstateJSRegexpstateJSBlockCmtstateJSLineCmtstateJSHTMLOpenCmtstateJSHTMLCloseCmtstateCSSstateCSSDqStrstateCSSSqStrstateCSSDqURLstateCSSSqURLstateCSSURLstateCSSBlockCmtstateCSSLineCmtstateErrorstateDead"
--var _state_index = [...]uint16{0, 9, 17, 30, 44, 60, 72, 83, 92, 100, 111, 118, 130, 142, 155, 170, 184, 192, 205, 218, 231, 244, 255, 271, 286, 296}
+-var _state_index = [...]uint16{0, 9, 17, 30, 44, 60, 72, 83, 92, 100, 111, 118, 130, 142, 154, 167, 182, 196, 204, 217, 230, 243, 256, 267, 283, 298, 308, 317}
+var _state_index = [...]uint16{0, 9, 17, 30, 44, 60, 72, 83, 92, 100, 111, 118, 130, 142, 154, 167, 182, 196, 214, 233, 241, 254, 267, 280, 293, 304, 320, 335, 345, 354}
func (i state) String() string {
--
2.34.1
^ permalink raw reply related [flat|nested] 21+ messages in thread
* [OE-core][kirkstone 03/10] linux-yocto/5.10: update to v5.10.189
2023-10-03 19:36 [OE-core][kirkstone 00/10] Patch review Steve Sakoman
2023-10-03 19:36 ` [OE-core][kirkstone 01/10] json-c: define CVE_VERSION Steve Sakoman
2023-10-03 19:36 ` [OE-core][kirkstone 02/10] go: Update fix for CVE-2023-24538 & CVE-2023-39318 Steve Sakoman
@ 2023-10-03 19:36 ` Steve Sakoman
2023-10-03 19:36 ` [OE-core][kirkstone 04/10] linux-yocto/5.10: update to v5.10.191 Steve Sakoman
` (6 subsequent siblings)
9 siblings, 0 replies; 21+ messages in thread
From: Steve Sakoman @ 2023-10-03 19:36 UTC (permalink / raw)
To: openembedded-core
From: Bruce Ashfield <bruce.ashfield@gmail.com>
Updating to the latest korg -stable release that comprises
the following commits:
de5f63612d16 Linux 5.10.189
2ae9a73819a7 x86: fix backwards merge of GDS/SRSO bit
f9167a2d6b94 xen/netback: Fix buffer overrun triggered by unusual packet
8457fb5740b1 x86/srso: Tie SBPB bit setting to microcode patch detection
4873939c0e1c x86/srso: Fix return thunks in generated code
384d41bea948 x86/srso: Add IBPB on VMEXIT
4acaea47e3bc x86/srso: Add IBPB
e47af0c255ae x86/srso: Add SRSO_NO support
df76a59feba5 x86/srso: Add IBPB_BRTYPE support
3f9b7101bea1 x86/srso: Add a Speculative RAS Overflow mitigation
34f23ba8a399 x86/cpu, kvm: Add support for CPUID_80000021_EAX
073a28a9b506 x86/bugs: Increase the x86 bugs vector size to two u32s
9b7fe7c6fbc0 tools headers cpufeatures: Sync with the kernel sources
437fa179f213 x86/cpufeatures: Assign dedicated feature word for CPUID_0x8000001F[EAX]
baf6d6c39e23 x86/cpu: Add VM page flush MSR availablility as a CPUID feature
675046878431 Documentation/x86: Fix backwards on/off logic about YMM support
79972c2b95ec x86/mm: Initialize text poking earlier
1ff14defdfc9 mm: Move mm_cachep initialization to mm_init()
6ee042fd240f x86/mm: Use mm_alloc() in poking_init()
f076d0817878 x86/mm: fix poking_init() for Xen PV guests
583016037a09 x86/xen: Fix secondary processors' FPU initialization
eb13cce48874 KVM: Add GDS_NO support to KVM
7db4ddcb8d8e x86/speculation: Add Kconfig option for GDS
363c98f9cfa8 x86/speculation: Add force option to GDS mitigation
288a2f6bc1ce x86/speculation: Add Gather Data Sampling mitigation
4ae1cbb730bd x86/fpu: Move FPU initialization into arch_cpu_finalize_init()
2462bc3ef061 x86/fpu: Mark init functions __init
7a2f42bce9ab x86/fpu: Remove cpuinfo argument from init functions
18fcd72da1ed init, x86: Move mem_encrypt_init() into arch_cpu_finalize_init()
09658b81d158 init: Invoke arch_cpu_finalize_init() earlier
bf2fa3a9d0e6 init: Remove check_bugs() leftovers
b05031c2bca7 um/cpu: Switch to arch_cpu_finalize_init()
2edb3b39ca79 sparc/cpu: Switch to arch_cpu_finalize_init()
3c45134b38b4 sh/cpu: Switch to arch_cpu_finalize_init()
75bb54c951e9 mips/cpu: Switch to arch_cpu_finalize_init()
1cd3fc18eb16 m68k/cpu: Switch to arch_cpu_finalize_init()
12d93c6c98d5 ia64/cpu: Switch to arch_cpu_finalize_init()
c0fff20d4efa ARM: cpu: Switch to arch_cpu_finalize_init()
e5eb18e164d0 x86/cpu: Switch to arch_cpu_finalize_init()
6e606e681873 init: Provide arch_cpu_finalize_init()
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
---
.../linux/linux-yocto-rt_5.10.bb | 6 ++---
.../linux/linux-yocto-tiny_5.10.bb | 8 +++----
meta/recipes-kernel/linux/linux-yocto_5.10.bb | 24 +++++++++----------
3 files changed, 19 insertions(+), 19 deletions(-)
diff --git a/meta/recipes-kernel/linux/linux-yocto-rt_5.10.bb b/meta/recipes-kernel/linux/linux-yocto-rt_5.10.bb
index 5b59ebac16..772ffac071 100644
--- a/meta/recipes-kernel/linux/linux-yocto-rt_5.10.bb
+++ b/meta/recipes-kernel/linux/linux-yocto-rt_5.10.bb
@@ -11,13 +11,13 @@ python () {
raise bb.parse.SkipRecipe("Set PREFERRED_PROVIDER_virtual/kernel to linux-yocto-rt to enable it")
}
-SRCREV_machine ?= "40d51460c17be51e4ebcdcc54a8ee8c86707c56c"
-SRCREV_meta ?= "9b0d4e338b1bbdd683347cf9365bacfec2169035"
+SRCREV_machine ?= "63fd205e5d1e048a576d5ba03cdbdf5782a2f6b4"
+SRCREV_meta ?= "603507f09e4a22a650e37fb9dcfbcb69ceb36841"
SRC_URI = "git://git.yoctoproject.org/linux-yocto.git;branch=${KBRANCH};name=machine \
git://git.yoctoproject.org/yocto-kernel-cache;type=kmeta;name=meta;branch=yocto-5.10;destsuffix=${KMETA}"
-LINUX_VERSION ?= "5.10.188"
+LINUX_VERSION ?= "5.10.189"
LIC_FILES_CHKSUM = "file://COPYING;md5=6bc538ed5bd9a7fc9398086aedcd7e46"
diff --git a/meta/recipes-kernel/linux/linux-yocto-tiny_5.10.bb b/meta/recipes-kernel/linux/linux-yocto-tiny_5.10.bb
index 3a58a1a659..aebec33555 100644
--- a/meta/recipes-kernel/linux/linux-yocto-tiny_5.10.bb
+++ b/meta/recipes-kernel/linux/linux-yocto-tiny_5.10.bb
@@ -6,7 +6,7 @@ KCONFIG_MODE = "--allnoconfig"
require recipes-kernel/linux/linux-yocto.inc
-LINUX_VERSION ?= "5.10.188"
+LINUX_VERSION ?= "5.10.189"
LIC_FILES_CHKSUM = "file://COPYING;md5=6bc538ed5bd9a7fc9398086aedcd7e46"
DEPENDS += "${@bb.utils.contains('ARCH', 'x86', 'elfutils-native', '', d)}"
@@ -15,9 +15,9 @@ DEPENDS += "openssl-native util-linux-native"
KMETA = "kernel-meta"
KCONF_BSP_AUDIT_LEVEL = "2"
-SRCREV_machine:qemuarm ?= "41daa5d20567419e303d0b684fd3c3c859446d24"
-SRCREV_machine ?= "085bed8577aa6435339ff83339e38dfd9e7994a6"
-SRCREV_meta ?= "9b0d4e338b1bbdd683347cf9365bacfec2169035"
+SRCREV_machine:qemuarm ?= "8f8fe5c5719959ad536be166937fc22606b7a7f3"
+SRCREV_machine ?= "452190ae123212f7d3c233fc48419c60874f4223"
+SRCREV_meta ?= "603507f09e4a22a650e37fb9dcfbcb69ceb36841"
PV = "${LINUX_VERSION}+git${SRCPV}"
diff --git a/meta/recipes-kernel/linux/linux-yocto_5.10.bb b/meta/recipes-kernel/linux/linux-yocto_5.10.bb
index 4b316b9b5f..81dce1a513 100644
--- a/meta/recipes-kernel/linux/linux-yocto_5.10.bb
+++ b/meta/recipes-kernel/linux/linux-yocto_5.10.bb
@@ -14,23 +14,23 @@ KBRANCH:qemux86 ?= "v5.10/standard/base"
KBRANCH:qemux86-64 ?= "v5.10/standard/base"
KBRANCH:qemumips64 ?= "v5.10/standard/mti-malta64"
-SRCREV_machine:qemuarm ?= "66536572b0fe35ac0e5158d69d12641281ab93ef"
-SRCREV_machine:qemuarm64 ?= "00d0178dae976305eaecc7fc119da63930bcf07f"
-SRCREV_machine:qemumips ?= "8cc44bb4c536028438decbb5abf2d8b731898ec0"
-SRCREV_machine:qemuppc ?= "1f2a193c7f82e2f2c7eefc2fa35dce5b96cc3ba9"
-SRCREV_machine:qemuriscv64 ?= "d3e6aa7bf695da482f46a6f5575dfd66bd48ba6c"
-SRCREV_machine:qemuriscv32 ?= "d3e6aa7bf695da482f46a6f5575dfd66bd48ba6c"
-SRCREV_machine:qemux86 ?= "d3e6aa7bf695da482f46a6f5575dfd66bd48ba6c"
-SRCREV_machine:qemux86-64 ?= "d3e6aa7bf695da482f46a6f5575dfd66bd48ba6c"
-SRCREV_machine:qemumips64 ?= "2fe172b06a5b6d8840c0c0226a1501b627b9e703"
-SRCREV_machine ?= "d3e6aa7bf695da482f46a6f5575dfd66bd48ba6c"
-SRCREV_meta ?= "9b0d4e338b1bbdd683347cf9365bacfec2169035"
+SRCREV_machine:qemuarm ?= "0f9599a793f23d2e1cd2da30aba53c4876b3621d"
+SRCREV_machine:qemuarm64 ?= "358a41898b853ccfc3309fcf30a95621b3d15ec6"
+SRCREV_machine:qemumips ?= "8ad0f4fa028c844dbc6f32321664488e50bd5e64"
+SRCREV_machine:qemuppc ?= "4f0a30a5edc13b65482bb788d1a2eb7a5405190a"
+SRCREV_machine:qemuriscv64 ?= "fc99f5e7ce23e4814c7b41f24c5d0296754be89e"
+SRCREV_machine:qemuriscv32 ?= "fc99f5e7ce23e4814c7b41f24c5d0296754be89e"
+SRCREV_machine:qemux86 ?= "fc99f5e7ce23e4814c7b41f24c5d0296754be89e"
+SRCREV_machine:qemux86-64 ?= "fc99f5e7ce23e4814c7b41f24c5d0296754be89e"
+SRCREV_machine:qemumips64 ?= "a01ff251fdd19b1ab7ee109c7ee2213e6b01a28b"
+SRCREV_machine ?= "fc99f5e7ce23e4814c7b41f24c5d0296754be89e"
+SRCREV_meta ?= "603507f09e4a22a650e37fb9dcfbcb69ceb36841"
SRC_URI = "git://git.yoctoproject.org/linux-yocto.git;name=machine;branch=${KBRANCH}; \
git://git.yoctoproject.org/yocto-kernel-cache;type=kmeta;name=meta;branch=yocto-5.10;destsuffix=${KMETA}"
LIC_FILES_CHKSUM = "file://COPYING;md5=6bc538ed5bd9a7fc9398086aedcd7e46"
-LINUX_VERSION ?= "5.10.188"
+LINUX_VERSION ?= "5.10.189"
DEPENDS += "${@bb.utils.contains('ARCH', 'x86', 'elfutils-native', '', d)}"
DEPENDS += "openssl-native util-linux-native"
--
2.34.1
^ permalink raw reply related [flat|nested] 21+ messages in thread
* [OE-core][kirkstone 04/10] linux-yocto/5.10: update to v5.10.191
2023-10-03 19:36 [OE-core][kirkstone 00/10] Patch review Steve Sakoman
` (2 preceding siblings ...)
2023-10-03 19:36 ` [OE-core][kirkstone 03/10] linux-yocto/5.10: update to v5.10.189 Steve Sakoman
@ 2023-10-03 19:36 ` Steve Sakoman
2023-10-03 19:36 ` [OE-core][kirkstone 05/10] linux-yocto/5.10: update to v5.10.192 Steve Sakoman
` (5 subsequent siblings)
9 siblings, 0 replies; 21+ messages in thread
From: Steve Sakoman @ 2023-10-03 19:36 UTC (permalink / raw)
To: openembedded-core
From: Bruce Ashfield <bruce.ashfield@gmail.com>
Updating to the latest korg -stable release that comprises
the following commits:
da742ebfa00c Linux 5.10.191
3b55ce96efc5 sch_netem: fix issues in netem_change() vs get_dist_table()
db9d161a0407 alpha: remove __init annotation from exported page_is_ram()
4af122b5d7b8 scsi: qedf: Fix firmware halt over suspend and resume
3bb05745cacc scsi: qedi: Fix firmware halt over suspend and resume
aa9a76d5ffde scsi: core: Fix possible memory leak if device_add() fails
58889d5ad74c scsi: snic: Fix possible memory leak if device_add() fails
a370e2d653e5 scsi: 53c700: Check that command slot is not NULL
1678408d08f3 scsi: storvsc: Fix handling of virtual Fibre Channel timeouts
267ad381c2fc scsi: core: Fix legacy /proc parsing buffer overflow
039ce5eb6ba2 netfilter: nf_tables: report use refcount overflow
93b3195d370a nvme-rdma: fix potential unbalanced freeze & unfreeze
9ad83e3e6121 nvme-tcp: fix potential unbalanced freeze & unfreeze
200ae5fa0b7e btrfs: set cache_block_group_error if we find an error
bd3175f9d597 btrfs: don't stop integrity writeback too early
c91d822127d3 ibmvnic: Handle DMA unmapping of login buffs in release functions
9024873b943d ibmvnic: Unmap DMA login rsp buffer on send login fail
d4750cea76f7 ibmvnic: Enforce stronger sanity checks on login response
879750c6a7e1 net/mlx5: Allow 0 for total host VFs
f8510dfa958b dmaengine: mcf-edma: Fix a potential un-allocated memory access
e8d349408a49 net: hns3: add wait until mac link down
70660e6faac5 net: hns3: refactor hclge_mac_link_status_wait for interface reuse
b564f32fb369 net: phy: at803x: remove set/get wol callbacks for AR8032
0d3573811894 wifi: cfg80211: fix sband iftype data lookup for AP_VLAN
33c677d1e087 IB/hfi1: Fix possible panic during hotplug remove
13f7752f4adb drivers: net: prevent tun_build_skb() to exceed the packet size limit
6d701c95ee64 dccp: fix data-race around dp->dccps_mss_cache
6d0bd7b7b3a7 bonding: Fix incorrect deletion of ETH_P_8021AD protocol vid from slaves
5850c391fd7e tunnels: fix kasan splat when generating ipv4 pmtu error
b3b6b9331abc net/packet: annotate data-races around tp->status
cafe399d4d50 mISDN: Update parameter type of dsp_cmx_send()
4f1d1cc16ad3 selftests: forwarding: tc_flower: Relax success criterion
501e3de09a53 selftests: forwarding: Switch off timeout
fe8fac37aa73 selftests: forwarding: Skip test when no interfaces are specified
44a47be97cf2 selftests: forwarding: ethtool_extended_state: Skip when using veth pairs
0a93fa240d7c selftests: forwarding: ethtool: Skip when using veth pairs
7e6af9c133c0 selftests: forwarding: Add a helper to skip test when using veth pairs
e731ad522159 selftests/rseq: Fix build with undefined __weak
cba47d0c95fb drm/nouveau/disp: Revert a NULL check inside nouveau_connector_get_modes
98eaa12c967b x86: Move gds_ucode_mitigated() declaration to header
09f78fc442fa x86/speculation: Add cpu_show_gds() prototype
5258281a930c x86/mm: Fix VDSO and VVAR placement on 5-level paging machines
eda9f8ffca46 x86/cpu/amd: Enable Zenbleed fix for AMD Custom APU 0405
cb1eefc04634 x86/srso: Fix build breakage with the LLVM linker
df8d390a210f usb: common: usb-conn-gpio: Prevent bailing out if initial role is none
598ccdb92dec usb: dwc3: Properly handle processing of pending events
fe7c3a445d22 usb-storage: alauda: Fix uninit-value in alauda_check_media()
d7e5e2b87f5d binder: fix memory leak in binder_init()
0439ce5aefcd iio: cros_ec: Fix the allocation size for cros_ec_command
aa425ee2278d io_uring: correct check for O_TMPFILE
372072408724 nilfs2: fix use-after-free of nilfs_root in dirtying inodes via iput
a16c66baa4de x86/pkeys: Revert a5eff7259790 ("x86/pkeys: Add PKRU value to init_fpstate")
04499d2c973a radix tree test suite: fix incorrect allocation size for pthreads
db0e1e2abddb hwmon: (pmbus/bel-pfe) Enable PMBUS_SKIP_STATUS_CHECK for pfe1100
a73d999fdfd9 drm/amd/display: check attr flag before set cursor degamma on DCN3+
188e8e25ae24 drm/shmem-helper: Reset vma->vm_ops before calling dma_buf_mmap()
6b6839e440d7 drm/nouveau/gr: enable memory loads on helper invocation on all channels
002cde0b78d3 riscv,mmio: Fix readX()-to-delay() ordering
8362ad5367dc dmaengine: pl330: Return DMA_PAUSED when transaction is paused
7328c5319e08 selftests/bpf: Fix sk_assign on s390x
b1a3e27d6bfc selftests/bpf: Workaround verification failure for fexit_bpf2bpf/func_replace_return_code
4af2d9ddb7e7 selftests/bpf: make test_align selftest more robust
1952a4d5e4cf bpf: aggressively forget precise markings during state checkpointing
7ca3e7459f4a bpf: stop setting precise in current state
2474ec58b96d bpf: allow precision tracking for programs with subprogs
6796c2a0c5fc ipv6: adjust ndisc_is_useropt() to also return true for PIO
f327f463c7ac mmc: moxart: read scr register without changing byte order
890ac460b0e8 wireguard: allowedips: expand maximum node depth
ec585727b63d Linux 5.10.190
b6fc2fbf8908 x86/CPU/AMD: Do not leak quotient data after a division by 0
98b7ab5e8d88 ARM: dts: nxp/imx6sll: fix wrong property name in usbphy node
14f2e2ac731b ARM: dts: imx6sll: fixup of operating points
f1c928496d2a ARM: dts: imx: add usb alias
c0e7123e896a wifi: mt76: mt7615: do not advertise 5 GHz on first phy of MT7615D (DBDC)
37fad83ae527 mt76: mt7615: Fix fall-through warnings for Clang
b85c7882fd3c mt76: move band capabilities in mt76_phy
381f7df0f3c3 exfat: check if filename entries exceeds max filename length
bd3bdb9e0d65 exfat: support dynamic allocate bh for exfat_entry_set_cache
e0d192a4023e exfat: speed up iterate/lookup by fixing start point of traversing cluster chain
86e4e949ea81 PM: sleep: wakeirq: fix wake irq arming
9a320469add4 PM / wakeirq: support enabling wake-up irq after runtime_suspend called
48d1d0ce0782 soundwire: fix enumeration completion
7d949774e7c1 soundwire: bus: pm_runtime_request_resume on peripheral attachment
662735bc1127 soundwire: bus: add better dev_dbg to track complete() calls
173d9c7090db selftests/rseq: Play nice with binaries statically linked against glibc 2.35+
c08de20e7041 selftests/rseq: check if libc rseq support is registered
fbb6657037d4 powerpc/mm/altmap: Fix altmap boundary check
1f09d67d3906 mtd: rawnand: fsl_upm: Fix an off-by one test in fun_exec_op()
027710952b53 mtd: rawnand: omap_elm: Fix incorrect type in assignment
d328849fb63b ext2: Drop fragment support
7e4e87ec56aa fs: Protect reconfiguration of sb read-write from racing writes
ec0d0be41721 net: usbnet: Fix WARNING in usbnet_start_xmit/usb_submit_urb
06f87c96216b Bluetooth: L2CAP: Fix use-after-free in l2cap_sock_ready_cb
7f740bc696d4 fs/sysv: Null check to prevent null-ptr-deref bug
426656e8dd03 tracing: Fix sleeping while atomic in kdb ftdump
4f86da9abe31 file: reinstate f_pos locking optimization for regular files
d39971d902d0 drm/ttm: check null pointer before accessing when swapping
c9c78b91c783 open: make RESOLVE_CACHED correctly test for O_TMPFILE
3048cb0dc0cc bpf: Disable preemption in bpf_event_output
33a339e717be net: tap_open(): set sk_uid from current_fsuid()
5ea23f1cb67e net: tun_chr_open(): set sk_uid from current_fsuid()
8d104bfd41a9 arm64: dts: stratix10: fix incorrect I2C property for SCL signal
8625802a1ba8 mtd: rawnand: meson: fix OOB available bytes for ECC
82dc2bffeabc mtd: spinand: toshiba: Fix ecc_get_status
ddf7cc702973 exfat: release s_lock before calling dir_emit()
79d16a84ea41 exfat: use kvmalloc_array/kvfree instead of kmalloc_array/kfree
a4b2673e3c04 ceph: defer stopping mdsc delayed_work
b5b39ff6917f USB: zaurus: Add ID for A-300/B-500/C-700
513bfdde8a3b libceph: fix potential hang in ceph_osdc_notify()
181274d2f3de scsi: zfcp: Defer fc_rport blocking until after ADISC response
6d9f5f3d8920 tcp_metrics: fix data-race in tcpm_suck_dst() vs fastopen
05d1dc88c40f tcp_metrics: annotate data-races around tm->tcpm_net
079afb181504 tcp_metrics: annotate data-races around tm->tcpm_vals[]
57bcbbb208a0 tcp_metrics: annotate data-races around tm->tcpm_lock
289091eef30f tcp_metrics: annotate data-races around tm->tcpm_stamp
420aad608f72 tcp_metrics: fix addr_same() helper
80e9488ece3d net/mlx5: fs_core: Skip the FTs in the same FS_TYPE_PRIO_CHAINS fs_prio
7a634336a03b net/mlx5: fs_core: Make find_closest_ft more generic
c650597647ec vxlan: Fix nexthop hash size
1683124129a4 ip6mr: Fix skb_under_panic in ip6mr_cache_report()
c33d5a5c5b2c s390/qeth: Don't call dev_close/dev_open (DOWN/UP)
8e309f43d0ca net: dcb: choose correct policy to parse DCB_ATTR_BCN
6d4f24736df9 net: netsec: Ignore 'phy-mode' on SynQuacer in DT mode
216092963ce5 net: ll_temac: fix error checking of irq_of_parse_and_map()
20fe059c1d47 net: ll_temac: Switch to use dev_err_probe() helper
a0e42f4bd496 bpf: sockmap: Remove preempt_disable in sock_map_sk_acquire
aaa71c4e8ad9 net/sched: cls_route: No longer copy tcf_result on update to avoid use-after-free
a8d478200b10 net/sched: cls_fw: No longer copy tcf_result on update to avoid use-after-free
b4256c99a711 net/sched: cls_u32: No longer copy tcf_result on update to avoid use-after-free
268b29ef1947 net: add missing data-race annotation for sk_ll_usec
ad417bab9d5b net: add missing data-race annotations around sk->sk_peek_off
11e0590af333 net: add missing READ_ONCE(sk->sk_rcvbuf) annotation
dc20f7bada00 net: add missing READ_ONCE(sk->sk_sndbuf) annotation
427c611d846d net: add missing READ_ONCE(sk->sk_rcvlowat) annotation
c7ebe08f4081 net: annotate data-races around sk->sk_max_pacing_rate
14db69381dd8 mISDN: hfcpci: Fix potential deadlock on &hc->lock
d163337bef20 net: sched: cls_u32: Fix match key mis-addressing
e68929f11b19 perf test uprobe_from_different_cu: Skip if there is no gcc
eb8031b7ce0c net: dsa: fix value check in bcm_sf2_sw_probe()
abb0172fa8dc rtnetlink: let rtnl_bridge_setlink checks IFLA_BRIDGE_MODE length
6b93c510684a bpf: Add length check for SK_DIAG_BPF_STORAGE_REQ_MAP_FD parsing
2cf67912078f net/mlx5e: fix return value check in mlx5e_ipsec_remove_trailer()
165159854757 net/mlx5: DR, fix memory leak in mlx5dr_cmd_create_reformat_ctx
ef3d0a732d69 wifi: cfg80211: Fix return value in scan logic
b4bdcbc0e391 KVM: s390: fix sthyi error handling
4241cfc973ad word-at-a-time: use the same return type for has_zero regardless of endianness
94f8447ab802 arm64: dts: imx8mn-var-som: add missing pull-up for onboard PHY reset pinmux
832a4d4cdb3f loop: Select I/O scheduler 'none' from inside add_disk()
3f7395c38204 perf: Fix function pointer case
a883b98dc737 io_uring: gate iowait schedule on having pending requests
058c0cbd251a x86/kprobes: Fix JNG/JNLE emulation
edc2ac7c7265 x86/kprobes: Update kcb status flag after singlestepping
f07f3938c813 x86/kprobes: Move 'inline' to the beginning of the kprobe_is_ss() declaration
2b5afe25f5b6 x86/kprobes: Fix to identify indirect jmp and others using range case
ba7d1dae9fe8 x86/kprobes: Use int3 instead of debug trap for single-step
2c57553a77e1 x86/kprobes: Identify far indirect JMP correctly
41db23bad952 x86/kprobes: Retrieve correct opcode for group instruction
ff97a14c8a86 x86/kprobes: Do not decode opcode in resume_execution()
5601d812c8d8 kprobes/x86: Fix fall-through warnings for Clang
7a413fa04726 ASoC: cs42l51: fix driver to properly autoload with automatic module loading
4d360a819453 io_uring: treat -EAGAIN for REQ_F_NOWAIT as final for io-wq
9164e27c5a8e selftests: mptcp: depend on SYN_COOKIES
f0acd6c3a2cd cpufreq: intel_pstate: Drop ACPI _PSS states table patching
a241fc02f1ce ACPI: processor: perflib: Avoid updating frequency QoS unnecessarily
ad938dd2af28 ACPI: processor: perflib: Use the "no limit" frequency QoS
4148f28f9824 drm/ttm: make ttm_bo_unpin more defensive
c0f2b2b02096 dm cache policy smq: ensure IO doesn't prevent cleaner policy progress
aae65b1793bb ceph: never send metrics if disable_send_metrics is set
4f669618c99f ASoC: wm8904: Fill the cache for WM8904_ADC_TEST_0 register
c837f121bc98 s390/dasd: fix hanging device after quiesce/resume
276738b382cf virtio-net: fix race between set queues and probe
3d10481a90c3 btrfs: check if the transaction was aborted at btrfs_wait_for_commit()
fc511ae405f7 staging: r8712: Fix memory leak in _r8712_init_xmit_priv()
223ecf871b42 staging: rtl8712: Use constants from <linux/ieee80211.h>
836b13168336 KVM: VMX: Don't fudge CR0 and CR4 for restricted L2 guest
c710ff061237 KVM: nVMX: Do not clear CR3 load/store exiting bits if L1 wants 'em
7fc51da40b9d KVM: VMX: Fold ept_update_paging_mode_cr0() back into vmx_set_cr0()
96c73bc9efef KVM: VMX: Invert handling of CR0.WP for EPT without unrestricted guest
90cd5ab951ea irqchip/gic-v4.1: Properly lock VPEs when doing a directLPI invalidation
57b8db5800a5 irq-bcm6345-l1: Do not assume a fixed block to cpu mapping
b1867cddd780 tpm_tis: Explicitly check for error code
5be81139d2ff nfsd: Remove incorrect check in nfsd4_validate_stateid
4a871fcebc02 file: always lock position for FMODE_ATOMIC_POS
c5c797ccc3b5 btrfs: check for commit error at btrfs_attach_transaction_barrier()
5e0e4e72ca21 hwmon: (nct7802) Fix for temp6 (PECI1) processed even if PECI1 disabled
7c6df7f0fc3d ALSA: hda/relatek: Enable Mute LED on HP 250 G8
8fc0eabaa73b tty: n_gsm: fix UAF in gsm_cleanup_mux
caac4b6c15b6 staging: ks7010: potential buffer overflow in ks_wlan_set_encode_ext()
baef414b1ca0 Documentation: security-bugs.rst: clarify CVE handling
0d5b23743bed Documentation: security-bugs.rst: update preferences when dealing with the linux-distros group
65cd02e3c37e Revert "usb: xhci: tegra: Fix error check"
b0fd110578e7 usb: xhci-mtk: set the dma max_seg_size
d0b588bbe4d9 USB: quirks: add quirk for Focusrite Scarlett
66a622275a11 usb: ohci-at91: Fix the unhandle interrupt when resume
96c433aff5fd usb: dwc3: don't reset device side if dwc3 was configured as host-only
05b201de4418 usb: dwc3: pci: skip BYT GPIO lookup table for hardwired phy
75ad45cef699 Revert "usb: dwc3: core: Enable AutoRetry feature in the controller"
bf468806b63f can: gs_usb: gs_can_close(): add missing set of CAN state to CAN_STATE_STOPPED
d5db33a667f5 USB: serial: simple: sort driver entries
81c54eef1dd7 USB: serial: simple: add Kaufmann RKS+CAN VCP
fca2a74eee5a USB: serial: option: add Quectel EC200A module support
c704cb21138b USB: serial: option: support Quectel EM060K_128
1037ee1dbf73 serial: sifive: Fix sifive_serial_console_setup() section
6209a7383d3a serial: 8250_dw: Preserve original value of DLF register
9e671a6116f4 serial: qcom-geni: drop bogus runtime pm state update
68e6287ac61d USB: gadget: Fix the memory leak in raw_gadget driver
da1b105dc66d Revert "usb: gadget: tegra-xudc: Fix error check in tegra_xudc_powerdomain_init()"
a6d2fd1703cd tracing: Fix warning in trace_buffered_event_disable()
0efbdbc4530c ring-buffer: Fix wrong stat of cpu_buffer->read
e410839c0cd8 ata: pata_ns87415: mark ns87560_tf_read static
82ce0ae87a96 dm raid: protect md_stop() with 'reconfig_mutex'
d6a1cf4ee5eb dm raid: clean up four equivalent goto tags in raid_ctr()
a43c761a7e1c dm raid: fix missing reconfig_mutex unlock in raid_ctr() error paths
d82bfe9686f3 block: Fix a source code comment in include/uapi/linux/blkzoned.h
ab6d14bc4041 ASoC: fsl_spdif: Silence output on stop
94bac776cd27 drm/msm: Fix IS_ERR_OR_NULL() vs NULL check in a5xx_submit_in_rb()
b0100bdb9dcd RDMA/mthca: Fix crash when polling CQ for shared QPs
62a8a4cafa96 drm/msm/adreno: Fix snapshot BINDLESS_DATA size
5c9e03b86756 drm/msm/dpu: drop enum dpu_core_perf_data_bus_id
08aa5a5297e6 RDMA/mlx4: Make check for invalid flags stricter
9d1fd118bcb4 tipc: stop tipc crypto on failure in tipc_node_create
d03de937765f tipc: check return value of pskb_trim()
3661bab5afcb benet: fix return value check in be_lancer_xmit_workarounds()
f40f7a858b3b net/sched: mqprio: Add length check for TCA_MQPRIO_{MAX/MIN}_RATE64
3ed3729a6a8e net/sched: mqprio: add extack to mqprio_parse_nlattr()
6227b461542f net/sched: mqprio: refactor nlattr parsing to a separate function
308a43f1521d netfilter: nf_tables: disallow rule addition to bound chain via NFTA_RULE_CHAIN_ID
ab5a97a94b57 netfilter: nf_tables: skip immediate deactivate in _PREPARE_ERROR
7782ce022fea netfilter: nftables: add helper function to validate set element data
893cb3c3513c netfilter: nft_set_rbtree: fix overlap expiration walk
89060b831c41 platform/x86: msi-laptop: Fix rfkill out-of-sync on MSI Wind U100
75f57acda32f team: reset team's flags when down link is P2P device
de982f46be83 bonding: reset bond's flags when down link is P2P device
b2712c4bfc3b ice: Fix memory management in ice_ethtool_fdir.c
0cd74fbd3b83 tcp: Reduce chance of collisions in inet6_hashfn().
b55a2b34b1b6 ipv6 addrconf: fix bug where deleting a mngtmpaddr can create a new temporary address
5a3c92968223 ethernet: atheros: fix return value check in atl1e_tso_csum()
ad249aa3c38f phy: hisilicon: Fix an out of bounds check in hisi_inno_phy_probe()
6f26f1457377 vxlan: calculate correct header length for GPE
d2741769d512 vxlan: move to its own directory
076f786f0414 net: hns3: fix wrong bw weight of disabled tc issue
344b7c000398 net: hns3: reconstruct function hclge_ets_validate()
111b699300a7 net: phy: marvell10g: fix 88x3310 power up
8a6cc852f658 i40e: Fix an NULL vs IS_ERR() bug for debugfs_create_dir()
39c789c9570d media: staging: atomisp: select V4L2_FWNODE
fb1db979043a phy: qcom-snps-femto-v2: properly enable ref clock
ffebc22bdd08 phy: qcom-snps-femto-v2: keep cfg_ahb_clk enabled during runtime suspend
f34090579a8b phy: qcom-snps: correct struct qcom_snps_hsphy kerneldoc
ceba255a791b phy: qcom-snps: Use dev_err_probe() to simplify code
ed3d841f2fc2 ext4: fix to check return value of freeze_bdev() in ext4_shutdown()
e3454b438c67 pwm: meson: fix handling of period/duty if greater than UINT_MAX
b306d09967ca pwm: meson: Simplify duplicated per-channel tracking
840ce9cfc86f tracing: Show real address for trace event arguments
8996b13051f0 drm/ttm: never consider pinned BOs for eviction&swap
5f6d5b58c59e drm/ttm: add ttm_bo_pin()/ttm_bo_unpin() v2
1815d9bf02b7 fs: dlm: interrupt posix locks only when process is killed
0f6741acfd5b dlm: rearrange async condition return
793123331007 dlm: cleanup plock_op vs plock_xop
838d6e86ec74 PCI/ASPM: Avoid link retraining race
9f283ca643dd PCI/ASPM: Factor out pcie_wait_for_retrain()
ffc0ee491f04 PCI/ASPM: Return 0 or -ETIMEDOUT from pcie_retrain_link()
9fd349c8858e i2c: nomadik: Remove a useless call in the remove function
a7ab5d7943b5 i2c: nomadik: Use devm_clk_get_enabled()
ec954a4ab0c8 i2c: nomadik: Remove unnecessary goto label
04b114067849 i2c: Improve size determinations
41e90f0e50f5 i2c: Delete error messages for failed memory allocations
52df40a5c71e btrfs: fix extent buffer leak after tree mod log failure at split_node()
52403c3dad20 btrfs: fix race between quota disable and relocation
3069fc0326b8 gpio: tps68470: Make tps68470_gpio_output() always set the initial value
22786d53817d io_uring: don't audit the capability check in io_uring_create()
8e635da0e0d3 KVM: s390: pv: fix index value of replaced ASCE
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
---
.../linux/linux-yocto-rt_5.10.bb | 6 ++---
.../linux/linux-yocto-tiny_5.10.bb | 8 +++----
meta/recipes-kernel/linux/linux-yocto_5.10.bb | 24 +++++++++----------
3 files changed, 19 insertions(+), 19 deletions(-)
diff --git a/meta/recipes-kernel/linux/linux-yocto-rt_5.10.bb b/meta/recipes-kernel/linux/linux-yocto-rt_5.10.bb
index 772ffac071..09eb7d1d17 100644
--- a/meta/recipes-kernel/linux/linux-yocto-rt_5.10.bb
+++ b/meta/recipes-kernel/linux/linux-yocto-rt_5.10.bb
@@ -11,13 +11,13 @@ python () {
raise bb.parse.SkipRecipe("Set PREFERRED_PROVIDER_virtual/kernel to linux-yocto-rt to enable it")
}
-SRCREV_machine ?= "63fd205e5d1e048a576d5ba03cdbdf5782a2f6b4"
-SRCREV_meta ?= "603507f09e4a22a650e37fb9dcfbcb69ceb36841"
+SRCREV_machine ?= "5204a0cb3d9b9a5512aad3f5e2483311b8834bb2"
+SRCREV_meta ?= "f16f63fae82fd0565f9314a61ae6be1d0509eb24"
SRC_URI = "git://git.yoctoproject.org/linux-yocto.git;branch=${KBRANCH};name=machine \
git://git.yoctoproject.org/yocto-kernel-cache;type=kmeta;name=meta;branch=yocto-5.10;destsuffix=${KMETA}"
-LINUX_VERSION ?= "5.10.189"
+LINUX_VERSION ?= "5.10.191"
LIC_FILES_CHKSUM = "file://COPYING;md5=6bc538ed5bd9a7fc9398086aedcd7e46"
diff --git a/meta/recipes-kernel/linux/linux-yocto-tiny_5.10.bb b/meta/recipes-kernel/linux/linux-yocto-tiny_5.10.bb
index aebec33555..4afb182d18 100644
--- a/meta/recipes-kernel/linux/linux-yocto-tiny_5.10.bb
+++ b/meta/recipes-kernel/linux/linux-yocto-tiny_5.10.bb
@@ -6,7 +6,7 @@ KCONFIG_MODE = "--allnoconfig"
require recipes-kernel/linux/linux-yocto.inc
-LINUX_VERSION ?= "5.10.189"
+LINUX_VERSION ?= "5.10.191"
LIC_FILES_CHKSUM = "file://COPYING;md5=6bc538ed5bd9a7fc9398086aedcd7e46"
DEPENDS += "${@bb.utils.contains('ARCH', 'x86', 'elfutils-native', '', d)}"
@@ -15,9 +15,9 @@ DEPENDS += "openssl-native util-linux-native"
KMETA = "kernel-meta"
KCONF_BSP_AUDIT_LEVEL = "2"
-SRCREV_machine:qemuarm ?= "8f8fe5c5719959ad536be166937fc22606b7a7f3"
-SRCREV_machine ?= "452190ae123212f7d3c233fc48419c60874f4223"
-SRCREV_meta ?= "603507f09e4a22a650e37fb9dcfbcb69ceb36841"
+SRCREV_machine:qemuarm ?= "cb953c5b7e239e63ec26076f412644875ae00f2c"
+SRCREV_machine ?= "e6837b01492363eeec6fb51e8ea923e046594f1d"
+SRCREV_meta ?= "f16f63fae82fd0565f9314a61ae6be1d0509eb24"
PV = "${LINUX_VERSION}+git${SRCPV}"
diff --git a/meta/recipes-kernel/linux/linux-yocto_5.10.bb b/meta/recipes-kernel/linux/linux-yocto_5.10.bb
index 81dce1a513..f9cb15dc16 100644
--- a/meta/recipes-kernel/linux/linux-yocto_5.10.bb
+++ b/meta/recipes-kernel/linux/linux-yocto_5.10.bb
@@ -14,23 +14,23 @@ KBRANCH:qemux86 ?= "v5.10/standard/base"
KBRANCH:qemux86-64 ?= "v5.10/standard/base"
KBRANCH:qemumips64 ?= "v5.10/standard/mti-malta64"
-SRCREV_machine:qemuarm ?= "0f9599a793f23d2e1cd2da30aba53c4876b3621d"
-SRCREV_machine:qemuarm64 ?= "358a41898b853ccfc3309fcf30a95621b3d15ec6"
-SRCREV_machine:qemumips ?= "8ad0f4fa028c844dbc6f32321664488e50bd5e64"
-SRCREV_machine:qemuppc ?= "4f0a30a5edc13b65482bb788d1a2eb7a5405190a"
-SRCREV_machine:qemuriscv64 ?= "fc99f5e7ce23e4814c7b41f24c5d0296754be89e"
-SRCREV_machine:qemuriscv32 ?= "fc99f5e7ce23e4814c7b41f24c5d0296754be89e"
-SRCREV_machine:qemux86 ?= "fc99f5e7ce23e4814c7b41f24c5d0296754be89e"
-SRCREV_machine:qemux86-64 ?= "fc99f5e7ce23e4814c7b41f24c5d0296754be89e"
-SRCREV_machine:qemumips64 ?= "a01ff251fdd19b1ab7ee109c7ee2213e6b01a28b"
-SRCREV_machine ?= "fc99f5e7ce23e4814c7b41f24c5d0296754be89e"
-SRCREV_meta ?= "603507f09e4a22a650e37fb9dcfbcb69ceb36841"
+SRCREV_machine:qemuarm ?= "e8c5b2165b5bfcef1358cd6fa70368fc174ac2f4"
+SRCREV_machine:qemuarm64 ?= "d8165863c5d9467c555ef97318193595242b85a7"
+SRCREV_machine:qemumips ?= "54bad1b3d7ed3c3cf1ccb98ee21ae2ed059c20b0"
+SRCREV_machine:qemuppc ?= "7ab0ce8ef9f6f1b4c12f3594b1f410f84ef35bfa"
+SRCREV_machine:qemuriscv64 ?= "c723f1548ae98a23895a85e67466df935d09e594"
+SRCREV_machine:qemuriscv32 ?= "c723f1548ae98a23895a85e67466df935d09e594"
+SRCREV_machine:qemux86 ?= "c723f1548ae98a23895a85e67466df935d09e594"
+SRCREV_machine:qemux86-64 ?= "c723f1548ae98a23895a85e67466df935d09e594"
+SRCREV_machine:qemumips64 ?= "702fe224e3553677ba09d28e45b7eaee31c667f4"
+SRCREV_machine ?= "c723f1548ae98a23895a85e67466df935d09e594"
+SRCREV_meta ?= "f16f63fae82fd0565f9314a61ae6be1d0509eb24"
SRC_URI = "git://git.yoctoproject.org/linux-yocto.git;name=machine;branch=${KBRANCH}; \
git://git.yoctoproject.org/yocto-kernel-cache;type=kmeta;name=meta;branch=yocto-5.10;destsuffix=${KMETA}"
LIC_FILES_CHKSUM = "file://COPYING;md5=6bc538ed5bd9a7fc9398086aedcd7e46"
-LINUX_VERSION ?= "5.10.189"
+LINUX_VERSION ?= "5.10.191"
DEPENDS += "${@bb.utils.contains('ARCH', 'x86', 'elfutils-native', '', d)}"
DEPENDS += "openssl-native util-linux-native"
--
2.34.1
^ permalink raw reply related [flat|nested] 21+ messages in thread
* [OE-core][kirkstone 05/10] linux-yocto/5.10: update to v5.10.192
2023-10-03 19:36 [OE-core][kirkstone 00/10] Patch review Steve Sakoman
` (3 preceding siblings ...)
2023-10-03 19:36 ` [OE-core][kirkstone 04/10] linux-yocto/5.10: update to v5.10.191 Steve Sakoman
@ 2023-10-03 19:36 ` Steve Sakoman
2023-10-03 19:36 ` [OE-core][kirkstone 06/10] linux-yocto/5.10: update to v5.10.194 Steve Sakoman
` (4 subsequent siblings)
9 siblings, 0 replies; 21+ messages in thread
From: Steve Sakoman @ 2023-10-03 19:36 UTC (permalink / raw)
To: openembedded-core
From: Bruce Ashfield <bruce.ashfield@gmail.com>
Updating to the latest korg -stable release that comprises
the following commits:
1599cb60bace Linux 5.10.192
0e8139f92304 x86/srso: Correct the mitigation status when SMT is disabled
23e59874657c objtool/x86: Fixup frame-pointer vs rethunk
26e3f7690cda x86/retpoline,kprobes: Fix position of thunk sections with CONFIG_LTO_CLANG
88e16ce7f8a6 x86/srso: Disable the mitigation on unaffected configurations
69712baf2495 x86/CPU/AMD: Fix the DIV(0) initial fix attempt
62ebfeb0dcf7 x86/retpoline: Don't clobber RFLAGS during srso_safe_ret()
91b349289ef1 x86/static_call: Fix __static_call_fixup()
d2be58f9215a x86/srso: Explain the untraining sequences a bit more
06597b650beb x86/cpu: Cleanup the untrain mess
e0f50b0e4186 x86/cpu: Rename srso_(.*)_alias to srso_alias_\1
0676a392539b x86/cpu: Rename original retbleed methods
8b0ff83e8ad3 x86/cpu: Clean up SRSO return thunk mess
20e24c8b4c2a x86/ibt: Add ANNOTATE_NOENDBR
bbbe1b23c7e6 objtool: Add frame-pointer-specific function ignore
bd3d12e6fda0 x86/alternative: Make custom return thunk unconditional
043d3bfe0a72 x86/cpu: Fix up srso_safe_ret() and __x86_return_thunk()
d5b3c88d153c x86/cpu: Fix __x86_return_thunk symbol type
5962f64ed2b6 mmc: f-sdh30: fix order of function calls in sdhci_f_sdh30_remove
98c7fe38c41e net: fix the RTO timer retransmitting skb every 1ms if linear option is enabled
9aead733f5e0 virtio-net: set queues after driver_ok
c080cee93030 af_unix: Fix null-ptr-deref in unix_stream_sendpage().
7aa165d761e7 netfilter: set default timeout to 3 secs for sctp shutdown send and recv state
e62de63c63f3 mmc: block: Fix in_flight[issue_type] value error
9022e9e62db9 mmc: wbsd: fix double mmc_free_host() in wbsd_init()
6e74926ede96 cifs: Release folio lock on fscache read hit.
a04ac0c31881 ALSA: usb-audio: Add support for Mythware XA001AU capture and playback interfaces.
bd70d0b28010 serial: 8250: Fix oops for port->pm on uart_change_pm()
03a7f213af46 ALSA: hda/realtek - Remodified 3k pull low procedure
b7d1c719842d ASoC: meson: axg-tdm-formatter: fix channel slot allocation
e761b7e90ac9 ASoC: rt5665: add missed regulator_bulk_disable
d23dd85903c9 arm64: dts: rockchip: Disable HS400 for eMMC on ROCK Pi 4
70626b93d6eb arm64: dts: rockchip: sort nodes/properties on rk3399-rock-4
7ba9ac0b5a90 arm64: dts: rockchip: fix regulator name on rk3399-rock-4
fba59a4b55ae arm64: dts: rockchip: add SPDIF node for ROCK Pi 4
77806f63c317 arm64: dts: rockchip: add ES8316 codec for ROCK Pi 4
1411c3e86e66 arm64: dts: rockchip: use USB host by default on rk3399-rock-pi-4
eb5b1e932c18 arm64: dts: rockchip: fix supplies on rk3399-rock-pi-4
73990370d63d bus: ti-sysc: Flush posted write on enable before reset
0a593e8a9d24 net: do not allow gso_size to be set to GSO_BY_FRAGS
51bc052db86d sock: Fix misuse of sk_under_memory_pressure()
773075d38a2f net: dsa: mv88e6xxx: Wait for EEPROM done before HW reset
0a9040dedec2 i40e: fix misleading debug logs
abe68922d774 team: Fix incorrect deletion of ETH_P_8021AD protocol vid from slaves
526d42c558f5 net: phy: broadcom: stub c45 read/write for 54810
a7653eaea0a5 netfilter: nft_dynset: disallow object maps
49f57a9087d1 ipvs: fix racy memcpy in proc_do_sync_threshold
c8d0d3811e20 drm/panel: simple: Fix AUO G121EAN01 panel timings according to the docs
86517421f470 selftests: mirror_gre_changes: Tighten up the TTL test match
614811692e21 xfrm: add forgotten nla_policy for XFRMA_MTIMER_THRESH
bd30aa9c7feb xfrm: add NULL check in xfrm_update_ae_params
0b4d69539fde ip_vti: fix potential slab-use-after-free in decode_session6
ec23b25e5687 ip6_vti: fix slab-use-after-free in decode_session6
bafa23638081 xfrm: fix slab-use-after-free in decode_session6
0f89909c80a9 net: xfrm: Amend XFRMA_SEC_CTX nla_policy structure
8b92d03cfcec net: af_key: fix sadb_x_filter validation
7e50815d2903 net: xfrm: Fix xfrm_address_filter OOB read
549e4e167a4d i2c: designware: Handle invalid SMBus block data response length value
bd7bef82ce0e btrfs: fix BUG_ON condition in btrfs_cancel_balance
483d713ba2f6 tty: serial: fsl_lpuart: Clear the error flags by writing 1 for lpuart32 platforms
869ce5e59845 tty: n_gsm: fix the UAF caused by race condition in gsm_cleanup_mux
0ba7f969be59 powerpc/rtas_flash: allow user copy to flash block cache objects
c5f59de36202 fbdev: mmp: fix value check in mmphw_probe()
268cc9bc54bd i2c: bcm-iproc: Fix bcm_iproc_i2c_isr deadlock issue
3ff54d904faf virtio-mmio: don't break lifecycle of vm_dev
b1fe05cc5126 virtio-mmio: Use to_virtio_mmio_device() to simply code
3b76d9263679 tracing/probes: Fix to update dynamic data counter if fetcharg uses it
265a979dedb1 tracing/probes: Have process_fetch_insn() take a void * instead of pt_regs
a89054535368 mmc: meson-gx: fix deferred probing
e8a41b4a5008 mmc: meson-gx: use devm_mmc_alloc_host
50ed76c9e09b mmc: core: add devm_mmc_alloc_host
d523ce6f51f1 mmc: sunxi: fix deferred probing
939a12f29a4b mmc: bcm2835: fix deferred probing
01dfc61f72a8 USB: dwc3: qcom: fix NULL-deref on suspend
3e2b5d66e926 usb: cdns3: fix NCM gadget RX speed 20x slow than expection at iMX8QM
f5c11b45f3f9 usb: cdns3: allocate TX FIFO size according to composite EP number
a461bcfb36d6 usb: gadget: udc: core: Introduce check_config to verify USB configuration
a64f5fe493b5 irqchip/mips-gic: Use raw spinlock for gic_lock
0704666c570d irqchip/mips-gic: Get rid of the reliance on irq_cpu_online()
372f1752b745 bus: mhi: host: Range check CHDBOFF and ERDBOFF
77944a6f3cf8 bus: mhi: Move host MHI code to "host" directory
f73891261566 bus: mhi: Add MMIO region length to controller structure
1cacbb711e32 bus: mhi: Add MHI PCI support for WWAN modems
436b4232533a iio: addac: stx104: Fix race condition when converting analog-to-digital
aeecd8d97da7 iio: addac: stx104: Fix race condition for stx104_write_raw()
f6576d4851fa iio: adc: stx104: Implement and utilize register structures
9d1609824554 iio: adc: stx104: Utilize iomap interface
d2ba1f40fc09 dt-bindings: iio: add AD74413R
c5e580831b2d iio: add addac subdirectory
bb70fdbfa272 IMA: allow/fix UML builds
66a3b2a12138 ring-buffer: Do not swap cpu_buffer during resize process
dd5a12cdf20c powerpc/kasan: Disable KCOV in KASAN code
9f9eed451176 ALSA: hda: fix a possible null-pointer dereference due to data race in snd_hdac_regmap_sync()
7a21c2e474ae ALSA: hda/realtek: Add quirks for Unis H3C Desktop B760 & Q760
b870b9a47fdb drm/amdgpu: Fix potential fence use-after-free v2
f19add5c7760 Bluetooth: btusb: Add MT7922 bluetooth ID for the Asus Ally
2958cf9f805b Bluetooth: L2CAP: Fix use-after-free
04bb8af40a77 pcmcia: rsrc_nonstatic: Fix memory leak in nonstatic_release_resource_db()
7c5b2649f6a3 gfs2: Fix possible data races in gfs2_show_options()
e8f3d96051c1 usb: chipidea: imx: add missing USB PHY DPDM wakeup setting
7a3a7c6fa0dc usb: chipidea: imx: don't request QoS for imx8ulp
2caeb722f0ea media: platform: mediatek: vpu: fix NULL ptr dereference
99d6afa19d6d usb: gadget: u_serial: Avoid spinlock recursion in __gs_console_push
e52de26cb374 media: v4l2-mem2mem: add lock to protect parameter num_rdy
5c094ca99482 FS: JFS: Check for read-only mounted filesystem in txBegin
2a3f20efe6c9 FS: JFS: Fix null-ptr-deref Read in txBegin
e778c8b0a9b6 MIPS: dec: prom: Address -Warray-bounds warning
911b48eec451 fs: jfs: Fix UBSAN: array-index-out-of-bounds in dbAllocDmapLev
4503f6fc95d6 udf: Fix uninitialized array access for some pathnames
a2966e0436dd ovl: check type and offset of struct vfsmount in ovl_entry
73311dd83185 RDMA/mlx5: Return the firmware result upon destroying QP/RQ
19312bc3ff67 HID: add quirk for 03f0:464a HP Elite Presenter Mouse
04bd3a362d2f drm/amdgpu: install stub fence into potential unused fence pointers
04e774fb6789 dma-remap: use kvmalloc_array/kvfree for larger dma memory remap
cbaebbba722c quota: fix warning in dqgrab()
8a4f4d47b82f quota: Properly disable quotas when add_dquot_ref() fails
df907501ba54 iopoll: Call cpu_relax() in busy loops
940ccc291cca ASoC: Intel: sof_sdw: Add support for Rex soundwire
b2882c51e6d0 ARM: dts: imx6dl: prtrvt, prtvt7, prti6q, prtwd2: fix USB related warnings
dbe0f607f84c PCI: tegra194: Fix possible array out of bounds access
10459ffd56ad ASoC: Intel: sof_sdw: add quirk for LNL RVP
9f4dd39696c8 ASoC: Intel: sof_sdw: add quirk for MTL RVP
751c5b6a2315 ALSA: emu10k1: roll up loops in DSP setup code for Audigy
e6825b30d37f drm/radeon: Fix integer overflow in radeon_cs_parser_init
e6c0a9728e3a net/mlx5: Skip clock update work when device is in error state
81cc91bba42b net/mlx5: Move all internal timer metadata into a dedicated struct
ba2e27e5100d net/mlx5: Refactor init clock function
e77ef787415b macsec: use DEV_STATS_INC()
ecf0e627fbbb macsec: Fix traffic counters/statistics
b630367a608d mmc: sdhci-f-sdh30: Replace with sdhci_pltfm
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
---
.../linux/linux-yocto-rt_5.10.bb | 6 ++---
.../linux/linux-yocto-tiny_5.10.bb | 8 +++----
meta/recipes-kernel/linux/linux-yocto_5.10.bb | 24 +++++++++----------
3 files changed, 19 insertions(+), 19 deletions(-)
diff --git a/meta/recipes-kernel/linux/linux-yocto-rt_5.10.bb b/meta/recipes-kernel/linux/linux-yocto-rt_5.10.bb
index 09eb7d1d17..eb10643530 100644
--- a/meta/recipes-kernel/linux/linux-yocto-rt_5.10.bb
+++ b/meta/recipes-kernel/linux/linux-yocto-rt_5.10.bb
@@ -11,13 +11,13 @@ python () {
raise bb.parse.SkipRecipe("Set PREFERRED_PROVIDER_virtual/kernel to linux-yocto-rt to enable it")
}
-SRCREV_machine ?= "5204a0cb3d9b9a5512aad3f5e2483311b8834bb2"
-SRCREV_meta ?= "f16f63fae82fd0565f9314a61ae6be1d0509eb24"
+SRCREV_machine ?= "b56fef81989515b6107c389373158235efa26138"
+SRCREV_meta ?= "d660385f970bb5c61304176c107a4958db9304e8"
SRC_URI = "git://git.yoctoproject.org/linux-yocto.git;branch=${KBRANCH};name=machine \
git://git.yoctoproject.org/yocto-kernel-cache;type=kmeta;name=meta;branch=yocto-5.10;destsuffix=${KMETA}"
-LINUX_VERSION ?= "5.10.191"
+LINUX_VERSION ?= "5.10.192"
LIC_FILES_CHKSUM = "file://COPYING;md5=6bc538ed5bd9a7fc9398086aedcd7e46"
diff --git a/meta/recipes-kernel/linux/linux-yocto-tiny_5.10.bb b/meta/recipes-kernel/linux/linux-yocto-tiny_5.10.bb
index 4afb182d18..255a79288a 100644
--- a/meta/recipes-kernel/linux/linux-yocto-tiny_5.10.bb
+++ b/meta/recipes-kernel/linux/linux-yocto-tiny_5.10.bb
@@ -6,7 +6,7 @@ KCONFIG_MODE = "--allnoconfig"
require recipes-kernel/linux/linux-yocto.inc
-LINUX_VERSION ?= "5.10.191"
+LINUX_VERSION ?= "5.10.192"
LIC_FILES_CHKSUM = "file://COPYING;md5=6bc538ed5bd9a7fc9398086aedcd7e46"
DEPENDS += "${@bb.utils.contains('ARCH', 'x86', 'elfutils-native', '', d)}"
@@ -15,9 +15,9 @@ DEPENDS += "openssl-native util-linux-native"
KMETA = "kernel-meta"
KCONF_BSP_AUDIT_LEVEL = "2"
-SRCREV_machine:qemuarm ?= "cb953c5b7e239e63ec26076f412644875ae00f2c"
-SRCREV_machine ?= "e6837b01492363eeec6fb51e8ea923e046594f1d"
-SRCREV_meta ?= "f16f63fae82fd0565f9314a61ae6be1d0509eb24"
+SRCREV_machine:qemuarm ?= "31f6d39bde4a241280ff357f0f052e56af1332e8"
+SRCREV_machine ?= "a9ebc91a4f1376324425811eee0a6628553d7d6e"
+SRCREV_meta ?= "d660385f970bb5c61304176c107a4958db9304e8"
PV = "${LINUX_VERSION}+git${SRCPV}"
diff --git a/meta/recipes-kernel/linux/linux-yocto_5.10.bb b/meta/recipes-kernel/linux/linux-yocto_5.10.bb
index f9cb15dc16..e37c4c21e0 100644
--- a/meta/recipes-kernel/linux/linux-yocto_5.10.bb
+++ b/meta/recipes-kernel/linux/linux-yocto_5.10.bb
@@ -14,23 +14,23 @@ KBRANCH:qemux86 ?= "v5.10/standard/base"
KBRANCH:qemux86-64 ?= "v5.10/standard/base"
KBRANCH:qemumips64 ?= "v5.10/standard/mti-malta64"
-SRCREV_machine:qemuarm ?= "e8c5b2165b5bfcef1358cd6fa70368fc174ac2f4"
-SRCREV_machine:qemuarm64 ?= "d8165863c5d9467c555ef97318193595242b85a7"
-SRCREV_machine:qemumips ?= "54bad1b3d7ed3c3cf1ccb98ee21ae2ed059c20b0"
-SRCREV_machine:qemuppc ?= "7ab0ce8ef9f6f1b4c12f3594b1f410f84ef35bfa"
-SRCREV_machine:qemuriscv64 ?= "c723f1548ae98a23895a85e67466df935d09e594"
-SRCREV_machine:qemuriscv32 ?= "c723f1548ae98a23895a85e67466df935d09e594"
-SRCREV_machine:qemux86 ?= "c723f1548ae98a23895a85e67466df935d09e594"
-SRCREV_machine:qemux86-64 ?= "c723f1548ae98a23895a85e67466df935d09e594"
-SRCREV_machine:qemumips64 ?= "702fe224e3553677ba09d28e45b7eaee31c667f4"
-SRCREV_machine ?= "c723f1548ae98a23895a85e67466df935d09e594"
-SRCREV_meta ?= "f16f63fae82fd0565f9314a61ae6be1d0509eb24"
+SRCREV_machine:qemuarm ?= "6d1f4e2827227663603efe419dc601860608862b"
+SRCREV_machine:qemuarm64 ?= "8edb39e7f3399ef6f97a416069777d0230ad68bc"
+SRCREV_machine:qemumips ?= "c37227bf802d3c489639a031f1cd8ee9e51ba044"
+SRCREV_machine:qemuppc ?= "f00b3a49bc6e9ca12497cf50080c391e59696d06"
+SRCREV_machine:qemuriscv64 ?= "11b247211e00c610587b27a762e4814f56723958"
+SRCREV_machine:qemuriscv32 ?= "11b247211e00c610587b27a762e4814f56723958"
+SRCREV_machine:qemux86 ?= "11b247211e00c610587b27a762e4814f56723958"
+SRCREV_machine:qemux86-64 ?= "11b247211e00c610587b27a762e4814f56723958"
+SRCREV_machine:qemumips64 ?= "0c17abc2a99b68c19099df5b61653729f6d17f76"
+SRCREV_machine ?= "11b247211e00c610587b27a762e4814f56723958"
+SRCREV_meta ?= "d660385f970bb5c61304176c107a4958db9304e8"
SRC_URI = "git://git.yoctoproject.org/linux-yocto.git;name=machine;branch=${KBRANCH}; \
git://git.yoctoproject.org/yocto-kernel-cache;type=kmeta;name=meta;branch=yocto-5.10;destsuffix=${KMETA}"
LIC_FILES_CHKSUM = "file://COPYING;md5=6bc538ed5bd9a7fc9398086aedcd7e46"
-LINUX_VERSION ?= "5.10.191"
+LINUX_VERSION ?= "5.10.192"
DEPENDS += "${@bb.utils.contains('ARCH', 'x86', 'elfutils-native', '', d)}"
DEPENDS += "openssl-native util-linux-native"
--
2.34.1
^ permalink raw reply related [flat|nested] 21+ messages in thread
* [OE-core][kirkstone 06/10] linux-yocto/5.10: update to v5.10.194
2023-10-03 19:36 [OE-core][kirkstone 00/10] Patch review Steve Sakoman
` (4 preceding siblings ...)
2023-10-03 19:36 ` [OE-core][kirkstone 05/10] linux-yocto/5.10: update to v5.10.192 Steve Sakoman
@ 2023-10-03 19:36 ` Steve Sakoman
2023-10-03 19:36 ` [OE-core][kirkstone 07/10] linux-yocto/5.10: update to v5.10.197 Steve Sakoman
` (3 subsequent siblings)
9 siblings, 0 replies; 21+ messages in thread
From: Steve Sakoman @ 2023-10-03 19:36 UTC (permalink / raw)
To: openembedded-core
From: Bruce Ashfield <bruce.ashfield@gmail.com>
Updating to the latest korg -stable release that comprises
the following commits:
006d5847646b Linux 5.10.194
d93ba6e46e5f rcu-tasks: Add trc_inspect_reader() checks for exiting critical section
3e22624f8fd3 rcu-tasks: Wait for trc_read_check_handler() IPIs
9190c1f0aed1 rcu-tasks: Fix IPI failure handling in trc_wait_for_one_reader
ad4f8c117b8b rcu: Prevent expedited GP from enabling tick on offline CPU
268e92252277 Revert "MIPS: Alchemy: fix dbdma2"
79ea9eb723b7 Revert "drm/amdgpu: install stub fence into potential unused fence pointers"
be4ccafc077f mhi: pci_generic: Fix implicit conversion warning
df3427204f1d ARM: module: Use module_init_layout_section() to spot init sections
b59cfee8d8a2 arm64: module: Use module_init_layout_section() to spot init sections
943ed7dc5ee4 arm64: module-plts: inline linux/moduleloader.h
ecd62c85120d module: Expose module_init_layout_section()
4566606fe3a4 Linux 5.10.193
b3ac2c1d725b mm,hwpoison: fix printing of page flags
7f92be110c0f ASoC: Intel: sof_sdw: include rt711.h for RT711 JD mode
32f71ef62737 mm: memory-failure: fix unexpected return value in soft_offline_page()
20c2db79f157 mm: memory-failure: kill soft_offline_free_page()
406166a3acd7 mm: fix page reference leak in soft_offline_page()
749630ce9147 mm,hwpoison: refactor get_any_page
0df5eaab03ed dma-buf/sw_sync: Avoid recursive lock during fence signal
7592a392b3e1 pinctrl: renesas: rza2: Add lock around pinctrl_generic{{add,remove}_group,{add,remove}_function}
91cbf41a9d8b clk: Fix undefined reference to `clk_rate_exclusive_{get,put}'
148a86651caf scsi: core: raid_class: Remove raid_component_add()
5d02f4320a95 scsi: snic: Fix double free in snic_tgt_create()
d643d3f322e8 ASoC: rt711: add two jack detection modes
c7b26063fcae drm/i915: Fix premature release of request's reusable memory
2d69f68ad409 cgroup/cpuset: Free DL BW in case can_attach() fails
4603c2a104bc sched/deadline: Create DL BW alloc, free & check overflow interface
c9546921a4b9 cgroup/cpuset: Iterate only if DEADLINE tasks are present
5ac05ce56843 sched/cpuset: Keep track of SCHED_DEADLINE task in cpusets
b950133d9a73 sched/cpuset: Bring back cpuset_mutex
312713e3eae3 cgroup/cpuset: Rename functions dealing with DEADLINE accounting
b2125926ba66 timers/nohz: Switch to ONESHOT_STOPPED in the low-res handler when the tick is stopped
ae4f109b954d tick: Detect and fix jiffies update stall
c7e91047d345 torture: Fix hang during kthread shutdown phase
4bc6a4fca1f0 x86/fpu: Set X86_FEATURE_OSXSAVE feature after enabling OSXSAVE in CR4
9e0c0b4ce541 drm/display/dp: Fix the DP DSC Receiver cap size
8735d1c66c7c drm/vmwgfx: Fix shader stage validation
ff0639b222e7 PCI: acpiphp: Use pci_assign_unassigned_bridge_resources() only for non-root bus
da4e9eff0f1e media: vcodec: Fix potential array out-of-bounds in encoder queue_setup
d2540b5f5aa1 of: dynamic: Refactor action prints to not use "%pOF" inside devtree_lock
851f686ed0f5 radix tree: remove unused variable
3b9a61570bc1 lib/clz_ctz.c: Fix __clzdi2() and __ctzdi2() for 32-bit kernels
72e4a5a28ebf batman-adv: Hold rtnl lock during MTU update via netlink
ee1d443eefb2 batman-adv: Fix batadv_v_ogm_aggr_send memory leak
0c6da1d84921 batman-adv: Fix TT global entry leak when client roamed back
6f5d10c0ac60 batman-adv: Do not get eth header before batadv_check_management_packet
7c0959088366 batman-adv: Don't increase MTU when set by user
480f2a129d8d batman-adv: Trigger events for auto adjusted MTU
0dbedf9afee3 selinux: set next pointer before attaching to list
a54c2048cd75 nfsd: Fix race to FREE_STATEID and cl_revoked
7c262127d264 NFS: Fix a use after free in nfs_direct_join_group()
f3c5697aae62 mm: add a call to flush_cache_vmap() in vmap_pfn()
c9a0e31d9239 clk: Fix slab-out-of-bounds error in devm_clk_release()
f979b92db1f5 NFSv4: Fix dropped lock for racing OPEN and delegation return
0a809e01578b ibmveth: Use dcbf rather than dcbfl
ffde5f9e8876 bonding: fix macvlan over alb bond support
615ea2603dc8 net: remove bond_slave_has_mac_rcu()
c8e1e17dee53 rtnetlink: Reject negative ifindexes in RTM_NEWLINK
7b79dabd639c rtnetlink: return ENODEV when ifname does not exist and group is given
d64cdb9cb629 netfilter: nf_tables: fix out of memory error handling
5db1249c70b1 net/sched: fix a qdisc modification with ambiguous command request
3847137cd167 igb: Avoid starting unnecessary workqueues
fa7d7a7f007b ice: fix receive buffer size miscalculation
70dfdbba3070 net: validate veth and vxcan peer ifindexes
67c8d7ef54df net: bcmgenet: Fix return value check for fixed_phy_register()
92b20b1569eb net: bgmac: Fix return value check for fixed_phy_register()
0b39e3070a00 ipvlan: Fix a reference count leak warning in ipvlan_ns_exit()
8162b73eef40 dccp: annotate data-races in dccp_poll()
403cc3e6253d sock: annotate data-races around prot->memory_pressure
005b6572d039 octeontx2-af: SDP: fix receive link config
b8205dfed681 tracing: Fix memleak due to race between current_tracer and trace
9c2ceffd4e36 tracing: Fix cpu buffers unavailable due to 'record_disabled' missed
0498107394d4 rbd: prevent busy loop when requesting exclusive lock
5f1697523367 rbd: retrieve and check lock owner twice before blocklisting
2547026bb8c4 rbd: make get_lock_owner_info() return a single locker or NULL
145248ebe0b2 libceph, rbd: ignore addr->type while comparing in some cases
61c303cfb135 drm/amd/display: check TG is non-null before checking if enabled
b964eb37c020 drm/amd/display: do not wait for mpc idle if tg is disabled
7e11c58b2620 ALSA: pcm: Fix potential data race at PCM memory allocation helpers
8c3a4c3b6485 dm integrity: reduce vmalloc space footprint on 32-bit architectures
4fdfd3d2f09a dm integrity: increase RECALC_SECTORS to improve recalculate speed
570f52137e9a fbdev: fix potential OOB read in fast_imageblit()
31131cce2455 fbdev: Fix sys_imageblit() for arbitrary image widths
209a84a14c0c fbdev: Improve performance of sys_imageblit()
188edaaaad21 MIPS: cpu-features: Use boot_cpu_type for CPU type based features
61913b303b31 MIPS: cpu-features: Enable octeon_cache by cpu_type
bda55fb5ca61 fs: dlm: fix mismatch of plock results from userspace
c3a1c4d996bf fs: dlm: use dlm_plock_info for do_unlock_close
d503919895d8 fs: dlm: change plock interrupted message to debug again
1652bcbf9e71 fs: dlm: add pid to debug log
e850cd32df9f dlm: replace usage of found with dedicated list iterator variable
7b44c1f383a1 dlm: improve plock logging if interrupted
cd689b59129f PCI: acpiphp: Reassign resources on bridge if necessary
e82757215295 xprtrdma: Remap Receive buffers after a reconnect
8a64aadc29ba NFSv4: fix out path in __nfs4_get_acl_uncached
c6aecc29d29e objtool/x86: Fix SRSO mess
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
---
.../linux/linux-yocto-rt_5.10.bb | 6 +++---
.../linux/linux-yocto-tiny_5.10.bb | 4 ++--
meta/recipes-kernel/linux/linux-yocto_5.10.bb | 20 +++++++++----------
3 files changed, 15 insertions(+), 15 deletions(-)
diff --git a/meta/recipes-kernel/linux/linux-yocto-rt_5.10.bb b/meta/recipes-kernel/linux/linux-yocto-rt_5.10.bb
index eb10643530..8736873d65 100644
--- a/meta/recipes-kernel/linux/linux-yocto-rt_5.10.bb
+++ b/meta/recipes-kernel/linux/linux-yocto-rt_5.10.bb
@@ -11,13 +11,13 @@ python () {
raise bb.parse.SkipRecipe("Set PREFERRED_PROVIDER_virtual/kernel to linux-yocto-rt to enable it")
}
-SRCREV_machine ?= "b56fef81989515b6107c389373158235efa26138"
-SRCREV_meta ?= "d660385f970bb5c61304176c107a4958db9304e8"
+SRCREV_machine ?= "d68870980bca82eec6f5040ccb404717c0cac622"
+SRCREV_meta ?= "6ccf38515d9fbb6a468c2b1e470cd47599c6cf4e"
SRC_URI = "git://git.yoctoproject.org/linux-yocto.git;branch=${KBRANCH};name=machine \
git://git.yoctoproject.org/yocto-kernel-cache;type=kmeta;name=meta;branch=yocto-5.10;destsuffix=${KMETA}"
-LINUX_VERSION ?= "5.10.192"
+LINUX_VERSION ?= "5.10.194"
LIC_FILES_CHKSUM = "file://COPYING;md5=6bc538ed5bd9a7fc9398086aedcd7e46"
diff --git a/meta/recipes-kernel/linux/linux-yocto-tiny_5.10.bb b/meta/recipes-kernel/linux/linux-yocto-tiny_5.10.bb
index 255a79288a..4ee674f35e 100644
--- a/meta/recipes-kernel/linux/linux-yocto-tiny_5.10.bb
+++ b/meta/recipes-kernel/linux/linux-yocto-tiny_5.10.bb
@@ -6,7 +6,7 @@ KCONFIG_MODE = "--allnoconfig"
require recipes-kernel/linux/linux-yocto.inc
-LINUX_VERSION ?= "5.10.192"
+LINUX_VERSION ?= "5.10.194"
LIC_FILES_CHKSUM = "file://COPYING;md5=6bc538ed5bd9a7fc9398086aedcd7e46"
DEPENDS += "${@bb.utils.contains('ARCH', 'x86', 'elfutils-native', '', d)}"
@@ -17,7 +17,7 @@ KCONF_BSP_AUDIT_LEVEL = "2"
SRCREV_machine:qemuarm ?= "31f6d39bde4a241280ff357f0f052e56af1332e8"
SRCREV_machine ?= "a9ebc91a4f1376324425811eee0a6628553d7d6e"
-SRCREV_meta ?= "d660385f970bb5c61304176c107a4958db9304e8"
+SRCREV_meta ?= "6ccf38515d9fbb6a468c2b1e470cd47599c6cf4e"
PV = "${LINUX_VERSION}+git${SRCPV}"
diff --git a/meta/recipes-kernel/linux/linux-yocto_5.10.bb b/meta/recipes-kernel/linux/linux-yocto_5.10.bb
index e37c4c21e0..e4d7443df2 100644
--- a/meta/recipes-kernel/linux/linux-yocto_5.10.bb
+++ b/meta/recipes-kernel/linux/linux-yocto_5.10.bb
@@ -14,23 +14,23 @@ KBRANCH:qemux86 ?= "v5.10/standard/base"
KBRANCH:qemux86-64 ?= "v5.10/standard/base"
KBRANCH:qemumips64 ?= "v5.10/standard/mti-malta64"
-SRCREV_machine:qemuarm ?= "6d1f4e2827227663603efe419dc601860608862b"
+SRCREV_machine:qemuarm ?= "bd08a530f711f7b511d70fc142169ceed446cfdb"
SRCREV_machine:qemuarm64 ?= "8edb39e7f3399ef6f97a416069777d0230ad68bc"
-SRCREV_machine:qemumips ?= "c37227bf802d3c489639a031f1cd8ee9e51ba044"
+SRCREV_machine:qemumips ?= "582345c4ecdf0ba60551d25aa87656c2a039ad55"
SRCREV_machine:qemuppc ?= "f00b3a49bc6e9ca12497cf50080c391e59696d06"
-SRCREV_machine:qemuriscv64 ?= "11b247211e00c610587b27a762e4814f56723958"
-SRCREV_machine:qemuriscv32 ?= "11b247211e00c610587b27a762e4814f56723958"
-SRCREV_machine:qemux86 ?= "11b247211e00c610587b27a762e4814f56723958"
-SRCREV_machine:qemux86-64 ?= "11b247211e00c610587b27a762e4814f56723958"
-SRCREV_machine:qemumips64 ?= "0c17abc2a99b68c19099df5b61653729f6d17f76"
-SRCREV_machine ?= "11b247211e00c610587b27a762e4814f56723958"
-SRCREV_meta ?= "d660385f970bb5c61304176c107a4958db9304e8"
+SRCREV_machine:qemuriscv64 ?= "cf4ea7f5063f864ebc3dbc2b87ea4e550f24f803"
+SRCREV_machine:qemuriscv32 ?= "cf4ea7f5063f864ebc3dbc2b87ea4e550f24f803"
+SRCREV_machine:qemux86 ?= "cf4ea7f5063f864ebc3dbc2b87ea4e550f24f803"
+SRCREV_machine:qemux86-64 ?= "cf4ea7f5063f864ebc3dbc2b87ea4e550f24f803"
+SRCREV_machine:qemumips64 ?= "5b4830e32f3bd6fd82e93f60bf2e5da462419d31"
+SRCREV_machine ?= "cf4ea7f5063f864ebc3dbc2b87ea4e550f24f803"
+SRCREV_meta ?= "6ccf38515d9fbb6a468c2b1e470cd47599c6cf4e"
SRC_URI = "git://git.yoctoproject.org/linux-yocto.git;name=machine;branch=${KBRANCH}; \
git://git.yoctoproject.org/yocto-kernel-cache;type=kmeta;name=meta;branch=yocto-5.10;destsuffix=${KMETA}"
LIC_FILES_CHKSUM = "file://COPYING;md5=6bc538ed5bd9a7fc9398086aedcd7e46"
-LINUX_VERSION ?= "5.10.192"
+LINUX_VERSION ?= "5.10.194"
DEPENDS += "${@bb.utils.contains('ARCH', 'x86', 'elfutils-native', '', d)}"
DEPENDS += "openssl-native util-linux-native"
--
2.34.1
^ permalink raw reply related [flat|nested] 21+ messages in thread
* [OE-core][kirkstone 07/10] linux-yocto/5.10: update to v5.10.197
2023-10-03 19:36 [OE-core][kirkstone 00/10] Patch review Steve Sakoman
` (5 preceding siblings ...)
2023-10-03 19:36 ` [OE-core][kirkstone 06/10] linux-yocto/5.10: update to v5.10.194 Steve Sakoman
@ 2023-10-03 19:36 ` Steve Sakoman
2023-10-03 19:36 ` [OE-core][kirkstone 08/10] ccache: fix build with gcc-13 Steve Sakoman
` (2 subsequent siblings)
9 siblings, 0 replies; 21+ messages in thread
From: Steve Sakoman @ 2023-10-03 19:36 UTC (permalink / raw)
To: openembedded-core
From: Bruce Ashfield <bruce.ashfield@gmail.com>
Updating to the latest korg -stable release that comprises
the following commits:
393e225fe8ff Linux 5.10.197
242c5740dd17 ext4: fix rec_len verify error
8768583b2509 scsi: pm8001: Setup IRQs on resume
f4fffa1abb7f scsi: megaraid_sas: Fix deadlock on firmware crashdump
3753e568d67f ata: libata: disallow dev-initiated LPM transitions to unsupported states
993bb01d228b i2c: aspeed: Reset the i2c controller when timeout occurs
f5e303fce3be tracefs: Add missing lockdown check to tracefs_create_dir()
96afb318ae5d nfsd: fix change_info in NFSv4 RENAME replies
b3183f5f05cd tracing: Have option files inc the trace array ref count
ec7eb8b06481 tracing: Have current_trace inc the trace array ref count
bb3e295a388c drm/amd/display: enable cursor degamma for DCN3+ DRM legacy gamma
2cdcf6481cb3 mm/filemap: fix infinite loop in generic_file_buffered_read()
0c5d5f8e0d2b proc: fix a dentry lock race between release_task and lookup
8db844077ec9 net/sched: Retire rsvp classifier
7a8f285cb58e drm/amdgpu: fix amdgpu_cs_p1_user_fence
7390bb377b5f btrfs: release path before inode lookup during the ino lookup ioctl
3d379dd109f8 btrfs: fix lockdep splat and potential deadlock after failure running delayed items
c6422e6f173d ovl: fix incorrect fdput() on aio completion
68308b0a33ed attr: block mode changes of symlinks
634444dea898 md/raid1: fix error: ISO C90 forbids mixed declarations
7be3a38f0e37 samples/hw_breakpoint: fix building without module unloading
d20beafaa69b x86/boot/compressed: Reserve more memory for page tables
7635020b9bd4 scsi: lpfc: Fix the NULL vs IS_ERR() bug for debugfs_create_file()
f99005237684 selftests: tracing: Fix to unmount tracefs for recovering environment
ae889fffae52 scsi: qla2xxx: Fix NULL vs IS_ERR() bug for debugfs_create_dir()
82910aa5501d drm: gm12u320: Fix the timeout usage for usb_bulk_msg()
df380d6f5c06 btrfs: compare the correct fsid/metadata_uuid in btrfs_validate_super
ab90a3930d39 btrfs: add a helper to read the superblock metadata_uuid
cc87d2bb391c btrfs: move btrfs_pinned_by_swapfile prototype into volumes.h
e16f5f8cab65 perf tools: Add an option to build without libbfd
c56095812721 perf jevents: Make build dependency on test JSONs
4954c5a05494 mtd: rawnand: brcmnand: Fix ECC level field setting for v7.2 controller
b87d03ed6ab7 mtd: rawnand: brcmnand: Allow SoC to provide I/O operations
5df582915851 kobject: Add sanity check for kset->kobj.ktype in kset_register()
a3efb2b57e9d media: pci: ipu3-cio2: Initialise timing struct to avoid a compiler warning
f354456f8df1 serial: cpm_uart: Avoid suspicious locking
bbe3ff47bf09 scsi: target: iscsi: Fix buffer overflow in lio_target_nacl_info_show()
6d3a1dd10537 usb: gadget: fsl_qe_udc: validate endpoint index for ch9 udc
890d10e6b72f media: pci: cx23885: replace BUG with error return
2ae53dd15eef media: tuners: qt1010: replace BUG_ON with a regular error
578b67614ae0 media: dvb-usb-v2: gl861: Fix null-ptr-deref in gl861_i2c_master_xfer
a9def3e9718a media: az6007: Fix null-ptr-deref in az6007_i2c_xfer()
4a9763d2bc4a media: anysee: fix null-ptr-deref in anysee_master_xfer
c7e5ac737db2 media: af9005: Fix null-ptr-deref in af9005_i2c_xfer
97fdbdb75034 media: dw2102: Fix null-ptr-deref in dw2102_i2c_transfer()
6c01ef65de0b media: dvb-usb-v2: af9035: Fix null-ptr-deref in af9035_i2c_master_xfer
9f3b2b666833 powerpc/pseries: fix possible memory leak in ibmebus_bus_init()
756747d4b439 jfs: fix invalid free of JFS_IP(ipimap)->i_imap in diUnmount
6f8b34458948 fs/jfs: prevent double-free in dbUnmount() after failed jfs_remount()
4bff1d95ba62 ext2: fix datatype of block number in ext2_xattr_set2()
7993cfc04148 md: raid1: fix potential OOB in raid1_remove_disk()
5933cd61399c bus: ti-sysc: Configure uart quirks for k3 SoC
5475b8bea148 drm/exynos: fix a possible null-pointer dereference due to data race in exynos_drm_crtc_atomic_disable()
d51d6c42d1e5 ALSA: hda: intel-dsp-cfg: add LunarLake support
fcfb71848e9e samples/hw_breakpoint: Fix kernel BUG 'invalid opcode: 0000'
9726e8dcabae drm/bridge: tc358762: Instruct DSI host to generate HSE packets
672205c6f2d1 wifi: mac80211_hwsim: drop short frames
5bf52e431c83 netfilter: ebtables: fix fortify warnings in size_entry_mwt()
f6f0a687546e alx: fix OOB-read compiler warning
acf0019b93a6 mmc: sdhci-esdhc-imx: improve ESDHC_FLAG_ERR010450
c7a8813d91f9 tpm_tis: Resend command to recover from data transfer errors
0fc7147c6943 crypto: lib/mpi - avoid null pointer deref in mpi_cmp_ui()
03385b243bad wifi: wil6210: fix fortify warnings
269eb4e1d5ea wifi: mwifiex: fix fortify warning
08fdbe379022 wifi: ath9k: fix printk specifier
268a10c9eb0f wifi: ath9k: fix fortify warnings
8c19ddc21566 crypto: lrw,xts - Replace strlcpy with strscpy
cfca20009bff devlink: remove reload failed checks in params get/set callbacks
020ecfa7b676 hw_breakpoint: fix single-stepping when using bpf_overflow_handler
bfc747fe0725 ACPI: video: Add backlight=native DMI quirk for Apple iMac12,1 and iMac12,2
dc01bfdc3d91 perf/smmuv3: Enable HiSilicon Erratum 162001900 quirk for HIP08/09
560014aefb70 ACPI: video: Add backlight=native DMI quirk for Lenovo Ideapad Z470
3f72fdb20f6d scftorture: Forgive memory-allocation failure if KASAN
55887adc76e1 rcuscale: Move rcu_scale_writer() schedule_timeout_uninterruptible() to _idle()
f8bab887a4ae kernel/fork: beware of __put_task_struct() calling context
625c12dc04a6 ACPICA: Add AML_NO_OPERAND_RESOLVE flag to Timer
a6f4129378ca locks: fix KASAN: use-after-free in trace_event_raw_event_filelock_lock
b7c3cf2f6c42 btrfs: output extra debug info if we failed to find an inline backref
69ddafc7a7af autofs: fix memory leak of waitqueues in autofs_catatonic_mode
ff0bfa8f23eb Linux 5.10.196
2cc1f4986233 Revert "configfs: fix a race in configfs_lookup()"
5452d1be676c Linux 5.10.195
d653c35de087 parisc: Drop loops_per_jiffy from per_cpu struct
1d02ef8c8a1f drm/amd/display: Fix a bug when searching for insert_above_mpcc
2e18493c4214 kcm: Fix error handling for SOCK_DGRAM in kcm_sendmsg().
606a0d8ff674 ixgbe: fix timestamp configuration code
6edf82223fab ipv6: fix ip6_sock_set_addr_preferences() typo
a5096cc6e783 net/tls: do not free tls_rec on async operation in bpf_exec_tx_verdict()
03be4412d31e platform/mellanox: mlxbf-tmfifo: Drop jumbo frames
687031788fb1 platform/mellanox: mlxbf-tmfifo: Drop the Rx packet if no more descriptors
33db24ad811b kcm: Fix memory leak in error path of kcm_sendmsg()
ed584f1e72d7 r8152: check budget for r8152_poll()
1e90a93ac484 hsr: Fix uninit-value access in fill_frame_info()
75f2de75c118 net: ethernet: mtk_eth_soc: fix possible NULL pointer dereference in mtk_hwlro_get_fdir_all()
61054a8ddb17 net: ethernet: mvpp2_main: fix possible OOB write in mvpp2_ethtool_get_rxnfc()
d1c6c93c27a4 net/smc: use smc_lgr_list.lock to protect smc_lgr_list.list iterate in smcr_port_add
fcb9e879a53e kselftest/runner.sh: Propagate SIGTERM to runner child
d94aac13a102 selftests/kselftest/runner/run_one(): allow running non-executable files
7c8ddcdab1b9 net: ipv4: fix one memleak in __inet_del_ifa()
15dabd02a975 bus: mhi: host: Skip MHI reset if device is in RDDM
de20747ee610 ARM: dts: BCM5301X: Extend RAM to full 256MB for Linksys EA6500 V2
81d06d1919c9 ARM: dts: samsung: exynos4210-i9100: Fix LCD screen's physical size
61fa6a16bb94 scsi: qla2xxx: Flush mailbox commands on chip reset
b5775b8530b9 scsi: qla2xxx: Fix crash in PCIe error handling
41a660c204ea scsi: qla2xxx: Consolidate zio threshold setting for both FCP & NVMe
5c069bce2d67 scsi: qla2xxx: If fcport is undergoing deletion complete I/O with retry
e7ed3585d092 arm64: sdei: abort running SDEI handlers during crash
0b55460c312e ACPI: APEI: explicit init of HEST and GHES in apci_init()
c6dc2a2e11c2 perf hists browser: Fix the number of entries for 'e' key
c07e4a4ef36a perf tools: Handle old data in PERF_RECORD_ATTR
b52a33a9079c perf hists browser: Fix hierarchy mode header
d72b01d9f96f drm/amd/display: prevent potential division by zero errors
d68f639ddec4 mtd: rawnand: brcmnand: Fix potential false time out warning
d00b03126651 mtd: rawnand: brcmnand: Fix potential out-of-bounds access in oob write
c839a24d6ef7 mtd: rawnand: brcmnand: Fix crash during the panic_write
e76cef3dcdb8 btrfs: use the correct superblock to compare fsid in btrfs_validate_super
f2873a18c235 btrfs: don't start transaction when joining with TRANS_JOIN_NOSTART
3856e7b11810 fuse: nlookup missing decrement in fuse_direntplus_link
1d21b03f7738 ata: pata_ftide010: Add missing MODULE_DESCRIPTION
35a3dec703bb ata: sata_gemini: Add missing MODULE_DESCRIPTION
b1d63e2bbd5b ext4: add correct group descriptors and reserved GDT blocks to system zone
6612d5b5350d sh: boards: Fix CEU buffer size passed to dma_declare_coherent_memory()
97ef9ba7df1c net: hns3: fix the port information display when sfp is absent
780f60dde296 netfilter: nfnetlink_osf: avoid OOB read
e89a361d99f6 net: dsa: sja1105: fix -ENOSPC when replacing the same tc-cbs too many times
94a3117efff8 net: dsa: sja1105: fix bandwidth discrepancy between tc-cbs software and offload
e90e70343b24 ip_tunnels: use DEV_STATS_INC()
2539b28a2b1f idr: fix param name in idr_alloc_cyclic() doc
0878052579cb s390/zcrypt: don't leak memory if dev_set_name() fails
d878011b5d93 igb: Change IGB_MIN to allow set rx/tx value between 64 and 80
417b11433eb1 igbvf: Change IGBVF_MIN to allow set rx/tx value between 64 and 80
9444881a375d igc: Change IGC_MIN to allow set rx/tx value between 64 and 80
46f02fc7f6fb kcm: Destroy mutex in kcm_exit_net()
746a8df5e4d2 net: sched: sch_qfq: Fix UAF in qfq_dequeue()
31e08e7fa6a3 af_unix: Fix data race around sk->sk_err.
90e32f81f9cc af_unix: Fix data-races around sk->sk_shutdown.
cf29b42766ad af_unix: Fix data-race around unix_tot_inflight.
b401d7e485b0 af_unix: Fix data-races around user->unix_inflight.
98e12d075c7f net: ipv6/addrconf: avoid integer underflow in ipv6_create_tempaddr
d47bc5023e54 veth: Fixing transmit return status for dropped packets
ab9796f43cfc igb: disable virtualization features on 82580
160fdb4116e7 ipv4: ignore dst hint for multipath routes
29039819c662 drm/i915/gvt: Drop unused helper intel_vgpu_reset_gtt()
23d2651372bd drm/i915/gvt: Save/restore HW status to support GVT suspend/resume
895dc4c47171 net: read sk->sk_family once in sk_mc_loop()
8edced38dbe5 ipv4: annotate data-races around fi->fib_dead
ab5c26dc5392 sctp: annotate data-races around sk->sk_wmem_queued
94d527c3759d net/sched: fq_pie: avoid stalls in fq_pie_timer()
a2d9d884e84b pwm: lpc32xx: Remove handling of PWM channels
6909e28cf387 watchdog: intel-mid_wdt: add MODULE_ALIAS() to allow auto-load
aec02fba99f8 perf top: Don't pass an ERR_PTR() directly to perf_session__delete()
28df38af326d x86/virt: Drop unnecessary check on extended CPUID level in cpu_has_svm()
23ec6fc52c14 perf annotate bpf: Don't enclose non-debug code with an assert()
934d29b9fa91 backlight: gpio_backlight: Drop output GPIO direction check for initial power state
84f99532152b kconfig: fix possible buffer overflow
6cc6f79b931f NFSv4/pnfs: minor fix for cleanup path in nfs4_get_device_info
4185605cd0f7 NFS: Fix a potential data corruption
2ccab9f82772 soc: qcom: qmi_encdec: Restrict string length in decode
bf27518fb93f clk: qcom: gcc-mdm9615: use proper parent for pll0_vote clock
972acd701b19 clk: imx: pll14xx: dynamically configure PLL for 393216000/361267200Hz
921453672846 dt-bindings: clock: xlnx,versal-clk: drop select:false
690a22d6c581 pinctrl: cherryview: fix address_space_handler() argument
b02d1fb74e8b parisc: led: Reduce CPU overhead for disk & lan LED computation
3add85c962ab parisc: led: Fix LAN receive and transmit LEDs
2a1cf9fe09d9 lib/test_meminit: allocate pages up to order MAX_ORDER
6bfa28f441da drm/ast: Fix DRAM init on AST2200
4aade6c9100a fbdev/ep93xx-fb: Do not assign to struct fb_info.dev
db8b5a2254c3 scsi: qla2xxx: Remove unsupported ql2xenabledif option
fd48544f3e03 scsi: qla2xxx: Turn off noisy message log
931fadf9728d scsi: qla2xxx: Fix erroneous link up failure
3694f18beaa1 scsi: qla2xxx: fix inconsistent TMF timeout
4d7da12483e9 scsi: qla2xxx: Fix deletion race condition
f271e3d64b8b io_uring: break iopolling on signal
9faa6d0677ec io_uring: break out of iowq iopoll on teardown
208858d4b08a io_uring: always lock in io_apoll_task_func
6ffab754d220 net/ipv6: SKB symmetric hash should incorporate transport ports
26f9ccb7a043 udf: initialize newblock to 0
06494cd473e0 md/md-bitmap: remove unnecessary local variable in backlog_store()
5103216b863f tracing: Zero the pipe cpumask on alloc to avoid spurious -EBUSY
1c4c9191b3f8 usb: typec: tcpci: clear the fault status bit
beba5051dd34 USB: core: Fix oversight in SuperSpeed initialization
9d241c5d9a9b USB: core: Fix race by not overwriting udev->descriptor in hub_port_init()
6ceffc2ecf3d USB: core: Change usb_get_device_descriptor() API
3cef18d13f37 USB: core: Unite old scheme and new scheme descriptor reads
38e1f2ee82ba usb: typec: bus: verify partner exists in typec_altmode_attention
b97e3c5e9768 cpufreq: brcmstb-avs-cpufreq: Fix -Warray-bounds bug
a1d2e2c670a3 crypto: stm32 - fix loop iterating through scatterlist for DMA
54d03dc5d1c3 s390/ipl: add missing secure/has_secure file to ipl type 'unknown'
dc2f60de9a7d pstore/ram: Check start of empty przs during init
5b1f71c0b95a fsverity: skip PKCS#7 parser when keyring is empty
a9864e126b73 net: handle ARPHRD_PPP in dev_is_mac_header_xmit()
c681d477c03d X.509: if signature is unsupported skip validation
4b8a938e329a dccp: Fix out of bounds access in DCCP error handler
a4f4a5b41a13 dlm: fix plock lookup when using multiple lockspaces
9f73fd6972bc parisc: Fix /proc/cpuinfo output for lscpu
1f03e6dd194e procfs: block chmod on /proc/thread-self/comm
9a0b35dc3aa0 Revert "PCI: Mark NVIDIA T4 GPUs to avoid bus reset"
3d8d13a174ef ntb: Fix calculation ntb_transport_tx_free_entry()
c028e90e0de1 ntb: Clean up tx tail index on link down
3cfdc448e8bf ntb: Drop packets when qp link is down
ffed0c8fcf04 scsi: mpt3sas: Perform additional retries if doorbell read returns 0
bf67d43f07b5 Revert "scsi: qla2xxx: Fix buffer overrun"
27dfaf2ee05e media: dvb: symbol fixup for dvb_attach()
5a85727239a2 arm64: csum: Fix OoB access in IP checksum code for negative lengths
b24bebcea556 xtensa: PMU: fix base address for the newer hardware
8594605a0446 backlight/lv5207lp: Compare against struct fb_info.device
e2c77841cd8d backlight/bd6107: Compare against struct fb_info.device
35c56c48737f backlight/gpio_backlight: Compare against struct fb_info.device
13264260eb66 ARM: OMAP2+: Fix -Warray-bounds warning in _pwrdm_state_switch()
5c5f02e16b91 ipmi_si: fix a memleak in try_smi_init()
5d27baee6cd9 scsi: core: Fix the scsi_set_resid() documentation
8c90c4e61929 printk: ringbuffer: Fix truncating buffer size min_t cast
61b918dfb675 ALSA: pcm: Fix missing fixup call in compat hw_refine ioctl
ab192e5e5d3b PM / devfreq: Fix leak in devfreq_dev_release()
3e39008e9e30 igb: set max size RX buffer when store bad packet is enabled
8836c266201c skbuff: skb_segment, Call zero copy functions before using skbuff frags
5541827d13cf netfilter: xt_sctp: validate the flag_info count
a1b711c370f5 netfilter: xt_u32: validate user space input
83091f8ac03f netfilter: ipset: add the missing IP_SET_HASH_WITH_NET0 macro for ip_set_hash_netportnet.c
1186eaffd87e igmp: limit igmpv3_newpack() packet size to IP_MAX_MTU
504bb3fc66aa virtio_ring: fix avail_wrap_counter in virtqueue_add_packed
ea374bdf2374 cpufreq: Fix the race condition while updating the transition_task of policy
27b75c7203fc dmaengine: ste_dma40: Add missing IRQ check in d40_probe
cfe215a04a21 um: Fix hostaudio build errors
eb33921806fc mtd: rawnand: fsmc: handle clk prepare error in fsmc_nand_resume()
40d8f9bffed0 mtd: spi-nor: Check bus width while setting QE bit
71ac2ffd7f80 rpmsg: glink: Add check for kstrdup
268fce6ec2e0 phy/rockchip: inno-hdmi: do not power on rk3328 post pll on reg write
6739746f4b81 phy/rockchip: inno-hdmi: round fractal pixclock in rk3328 recalc_rate
88813bd9bbb7 phy/rockchip: inno-hdmi: use correct vco_div_5 macro on rk3328
3a890f993b6c mtd: rawnand: brcmnand: Fix mtd oobsize
c5d30d6aa83d tracing: Fix race issue between cpu buffer write and swap
ee519526d58c x86/speculation: Mark all Skylake CPUs as vulnerable to GDS
15ec7cb55e7d HID: multitouch: Correct devm device reference for hidinput input_dev name
e38a6f12685d HID: logitech-dj: Fix error handling in logi_dj_recv_switch_to_dj_mode()
bdb3cd9dffdf RDMA/siw: Correct wrong debug message
d006f2cb3c68 RDMA/siw: Balance the reference of cep->kref in the error path
aa950b9835f2 Revert "IB/isert: Fix incorrect release of isert connection"
9baf2278b3ee amba: bus: fix refcount leak
0c6c0280f740 serial: tegra: handle clk prepare error in tegra_uart_hw_init()
9cce8ef7a6fa scsi: fcoe: Fix potential deadlock on &fip->ctlr_lock
356da2d5c084 scsi: core: Use 32-bit hostnum in scsi_host_lookup()
629079f502fb cgroup:namespace: Remove unused cgroup_namespaces_init()
3534ae5f171b media: ov2680: Fix regulators being left enabled on ov2680_power_on() errors
a427ce197e75 media: ov2680: Fix vflip / hflip set functions
cd7a0e391eb5 media: ov2680: Fix ov2680_bayer_order()
faf1408a68c8 media: ov2680: Remove auto-gain and auto-exposure controls
e1552a0b990b media: i2c: ov2680: Set V4L2_CTRL_FLAG_MODIFY_LAYOUT on flips
2d29ce41de4d media: ov5640: Enable MIPI interface in ov5640_set_power_mipi()
44c71cbe7c5a USB: gadget: f_mass_storage: Fix unused variable warning
8f7de8215804 media: go7007: Remove redundant if statement
3183b0cab7b5 iommu/vt-d: Fix to flush cache of PASID directory table
4136094df53f iommu/qcom: Disable and reset context bank before programming
b374b039e066 fsi: aspeed: Reset master errors after CFAM reset
f8949c06c735 IB/uverbs: Fix an potential error pointer dereference
10bd5f8ceb3e driver core: test_async: fix an error code
19138f8cc651 dma-buf/sync_file: Fix docs syntax
e621dbeb9f91 coresight: tmc: Explicit type conversions to prevent integer overflow
d7f21ef741a5 scsi: qedf: Do not touch __user pointer in qedf_dbg_fp_int_cmd_read() directly
1198a0e93587 scsi: qedf: Do not touch __user pointer in qedf_dbg_debug_cmd_read() directly
d86d85e23e8a scsi: qedf: Do not touch __user pointer in qedf_dbg_stop_io_on_error_cmd_read() directly
4ede2ee95b41 x86/APM: drop the duplicate APM_MINOR_DEV macro
9a26aaea6c21 serial: sprd: Fix DMA buffer leak issue
6232bd4dca91 serial: sprd: Assign sprd_port after initialized to avoid wrong access
6d65079c69dc scsi: qla4xxx: Add length check when parsing nlattrs
b65b13d01b28 scsi: be2iscsi: Add length check when parsing nlattrs
4df82c6d6e7d scsi: iscsi: Add strlen() check in iscsi_if_set{_host}_param()
18d49266dd6e scsi: iscsi: Add length check for nlattr payload
3ef17ca47690 scsi: iscsi: Rename iscsi_set_param() to iscsi_if_set_param()
8356a3ba1083 scsi: RDMA/srp: Fix residual handling
cc2d5cdb19e3 usb: phy: mxs: fix getting wrong state with mxs_phy_is_otg_host()
5a6f480b2ecc media: mediatek: vcodec: Return NULL if no vdec_fb is found
43c69dc9a327 media: rkvdec: increase max supported height for H.264
1e5eac0022f4 scsi: hisi_sas: Fix normally completed I/O analysed as failed
b6aca9f5ab29 scsi: hisi_sas: Fix warnings detected by sparse
0d383e555fa6 scsi: hisi_sas: Modify v3 HW SATA completion error processing
634220605198 scsi: hisi_sas: Modify v3 HW SSP underflow error processing
d84e5d445af1 scsi: libsas: Introduce more SAM status code aliases in enum exec_status
519b9e3e5ce7 scsi: hisi_sas: Print SAS address for v3 hw erroneous completion print
5e5a528c29f0 media: cx24120: Add retval check for cx24120_message_send()
d13a84874a2e media: dvb-usb: m920x: Fix a potential memory leak in m920x_i2c_xfer()
656423cc56bd media: dib7000p: Fix potential division by zero
61bc9293da19 drivers: usb: smsusb: fix error handling code in smsusb_init_device
d8a8f75fce04 media: v4l2-core: Fix a potential resource leak in v4l2_fwnode_parse_link()
5865926da24e media: i2c: tvp5150: check return value of devm_kasprintf()
6dff92b3fe2f media: ad5820: Drop unsupported ad5823 from i2c_ and of_device_id tables
9d82a58d2af5 NFSv4.2: fix handling of COPY ERR_OFFLOAD_NO_REQ
7bc36ac6713e NFS: Guard against READDIR loop when entry names exceed MAXNAMELEN
3f1a2b0b2d57 NFSD: da_addr_body field missing in some GETDEVICEINFO replies
aaeac3a6b119 fs: lockd: avoid possible wrong NULL parameter
6d5361618988 jfs: validate max amount of blocks before allocation.
f08944e3c696 powerpc/iommu: Fix notifiers being shared by PCI and VIO buses
46ff3bd14b6d nfs/blocklayout: Use the passed in gfp flags
953c54dfdc5d powerpc/pseries: Rework lppaca_shared_proc() to avoid DEBUG_PREEMPT
e46cc0e42f3f powerpc: Don't include lppaca.h in paca.h
9837d6a483cf wifi: ath10k: Use RMW accessors for changing LNKCTL
924d1ab98706 net/mlx5: Use RMW accessors for changing LNKCTL
37eecd50856a drm/radeon: Use RMW accessors for changing LNKCTL
ead3dbc92bd4 drm/amdgpu: Use RMW accessors for changing LNKCTL
2f8269ca8062 powerpc/perf: Convert fsl_emb notifier to state machine callbacks
d45bf1528b7c powerpc/fadump: reset dump area size if fadump memory reserve fails
ad83d83dd891 vfio/type1: fix cap_migration information leak
d8f5613c5c6c clk: imx: composite-8m: fix clock pauses when set_rate would be a no-op
0d81a0546b19 clk: imx8mp: fix sai4 clock
69795c689e7b PCI/ASPM: Use RMW accessors for changing LNKCTL
f647b8fe55b1 PCI: pciehp: Use RMW accessors for changing LNKCTL
ae52f8ba4596 pinctrl: mcp23s08: check return value of devm_kasprintf()
ef8e561ddb33 PCI: Mark NVIDIA T4 GPUs to avoid bus reset
344c16a8441e clk: qcom: reset: Use the correct type of sleep/delay based on length
289f5a88f14a clk: qcom: gcc-sm8250: Fix gcc_sdcc2_apps_clk_src
b3a80429b1cf clk: qcom: gcc-sm8250: use ARRAY_SIZE instead of specifying num_parents
245759d987b6 ext4: correct grp validation in ext4_mb_good_group
2aefe3ae098d clk: qcom: gcc-sc7180: Fix up gcc_sdcc2_apps_clk_src
74a5f9755aa8 clk: qcom: gcc-sc7180: use ARRAY_SIZE instead of specifying num_parents
2640d3be822c clk: sunxi-ng: Modify mismatched function name
c1ff788f731d drivers: clk: keystone: Fix parameter judgment in _of_pll_clk_init()
13623b966bb6 ipmi:ssif: Fix a memory leak when scanning for an adapter
6128288d8f55 ipmi:ssif: Add check for kstrdup
8917591d7247 ALSA: ac97: Fix possible error value of *rac97
cd062ebe0cb3 of: unittest: Fix overlay type in apply/revert check
ca7634e5491b bus: ti-sysc: Fix cast to enum warning
43f561e809aa drm/mediatek: Fix potential memory leak if vmap() fail
265515548610 bus: ti-sysc: Fix build warning for 64-bit build
98ef243d5900 audit: fix possible soft lockup in __audit_inode_child()
69800bc5d7fd drm/msm/a2xx: Call adreno_gpu_init() earlier
7fcbaf4bdb75 drm/amd/pm: fix variable dereferenced issue in amdgpu_device_attr_create()
9b89db24c6b2 smackfs: Prevent underflow in smk_set_cipso()
9f4017cac70c firmware: meson_sm: fix to avoid potential NULL pointer dereference
815e42029f6e drm/msm/mdp5: Don't leak some plane state
a21e73a6d8e0 drm: xlnx: zynqmp_dpsub: Add missing check for dma_set_mask
524f23b08290 ima: Remove deprecated IMA_TRUSTED_KEYRING Kconfig
e2d1c9b39721 drm/panel: simple: Add missing connector type and pixel format for AUO T215HVN01
c02917e70a05 drm/armada: Fix off-by-one error in armada_overlay_get_property()
f41c65f8d05b of: unittest: fix null pointer dereferencing in of_unittest_find_node_by_name()
883fdbbdbe93 drm/tegra: dpaux: Fix incorrect return value of platform_get_irq
5f0994e3f271 drm/tegra: Remove superfluous error messages around platform_get_irq()
4a61d72585af md/md-bitmap: hold 'reconfig_mutex' in backlog_store()
8563d52a4f61 md/bitmap: don't set max_write_behind if there is no write mostly device
a15f309eb99c drm/amdgpu: Update min() to min_t() in 'amdgpu_info_ioctl'
8e766a94ec2d arm64: dts: qcom: sdm845: Fix the min frequency of "ice_core_clk"
36d3e4dedb86 arm64: dts: qcom: sdm845: Add missing RPMh power domain to GCC
0eea279e01fe ARM: dts: BCM53573: Fix Ethernet info for Luxul devices
ed4e48de8962 drm: adv7511: Fix low refresh rate register for ADV7533/5
61ccdd21679e ARM: dts: samsung: s5pv210-smdkv210: correct ethernet reg addresses (split)
e9875d2f2507 ARM: dts: s5pv210: add dummy 5V regulator for backlight on SMDKv210
c4c72bf42f48 ARM: dts: s5pv210: adjust node names to DT spec
bbcea0924b83 ARM: dts: samsung: s3c6410-mini6410: correct ethernet reg addresses (split)
a2d6c5e8e703 ARM: dts: s3c64xx: align pinctrl with dtschema
3f0d83994e98 x86/mm: Fix PAT bit missing from page protection modify mask
b56309c77d76 drm/etnaviv: fix dumping of active MMU context
8303282409b3 ARM: dts: BCM53573: Use updated "spi-gpio" binding properties
031ab0f10e3b ARM: dts: BCM53573: Add cells sizes to PCIe node
8415d803d840 ARM: dts: BCM53573: Drop nonexistent #usb-cells
cfc4a78e7054 ARM: dts: BCM53573: Describe on-SoC BCM53125 rev 4 switch
36d958ad4088 ARM: dts: BCM5301X: Harmonize EHCI/OHCI DT nodes name
826ef1576996 drm/amdgpu: avoid integer overflow warning in amdgpu_device_resize_fb_bar()
967cbc8a23e5 arm64: dts: qcom: msm8996: Add missing interrupt to the USB2 controller
71d2d9aa2bd8 soc: qcom: ocmem: Fix NUM_PORTS & NUM_MACROS macros
1356531e9249 soc: qcom: ocmem: Add OCMEM hardware version print
4bf179f53694 ASoC: stac9766: fix build errors with REGMAP_AC97
86d89987f099 quota: fix dqput() to follow the guarantees dquot_srcu should provide
af4ff4748985 quota: add new helper dquot_active()
905e316e5e99 quota: rename dquot_active() to inode_quota_active()
a5da2849db58 quota: factor out dquot_write_dquot()
53805176ec6a drm/bridge: tc358764: Fix debug print parameter order
abd1c17ef4fb netrom: Deny concurrent connect().
b08cc6c0396f net/sched: sch_hfsc: Ensure inner classes have fsc curve
ab04c731a198 hwmon: (tmp513) Fix the channel number in tmp51x_is_visible()
db7a3531662c mlxsw: i2c: Limit single transaction buffer size
3d36ba3f7e77 mlxsw: i2c: Fix chunk size setting in output mailbox buffer
7cc9e1dcc1af net: arcnet: Do not call kfree_skb() under local_irq_disable()
d4f79aa9ee34 wifi: ath9k: use IS_ERR() with debugfs_create_dir()
50f89daf9e62 Bluetooth: btusb: Do not call kfree_skb() under spin_lock_irqsave()
bef85d58f770 wifi: mwifiex: avoid possible NULL skb pointer dereference
cfce1973ffe0 wifi: ath9k: protect WMI command response buffer replacement with a lock
ee72b2b1f57e wifi: ath9k: fix races between ath9k_wmi_cmd and ath9k_wmi_ctrl_rx
91d92d897560 samples/bpf: fix broken map lookup probe
08a6e99a334d wifi: mwifiex: Fix missed return in oob checks failed path
0c4240d23db5 wifi: mwifiex: fix memory leak in mwifiex_histogram_read()
0fe11dd3fe05 fs: ocfs2: namei: check return value of ocfs2_add_entry()
d8f5415d4d49 lwt: Check LWTUNNEL_XMIT_CONTINUE strictly
a97f221651fc lwt: Fix return values of BPF xmit ops
97ccf9f19580 hwrng: iproc-rng200 - Implement suspend and resume calls
49729fc47289 crypto: caam - fix unchecked return value error
7a97044477c9 ice: ice_aq_check_events: fix off-by-one check when filling buffer
9b812dcf2b1e selftests/bpf: Clean up fmod_ret in bench_rename test script
88bc7122dba2 net: tcp: fix unexcepted socket die when snd_wnd is 0
e87da6a0ac6e Bluetooth: Fix potential use-after-free when clear keys
6668886ebecc Bluetooth: nokia: fix value check in nokia_bluetooth_serdev_probe()
625bf86bf53e crypto: api - Use work queue in crypto_destroy_instance
7545292d87db crypto: stm32 - Properly handle pm_runtime_get failing
323084d77d1f selftests/bpf: fix static assert compilation issue for test_cls_*.c
a8d69658437c wifi: mwifiex: fix error recovery in PCIE buffer descriptor management
3fe3923d092e wifi: mwifiex: Fix OOB and integer underflow when rx packets
5120d93c24bb can: gs_usb: gs_usb_receive_bulk_callback(): count RX overflow errors also in case of OOM
1d6c3017cea5 spi: tegra20-sflash: fix to check return value of platform_get_irq() in tegra_sflash_probe()
ca7ee1b75c36 wifi: mt76: testmode: add nla_policy for MT76_TM_ATTR_TX_LENGTH
791a12102e51 bpf: reject unhashed sockets in bpf_sk_assign
4d271804f536 udp: re-score reuseport groups when connected sockets are present
e6e11cbaa1f1 regmap: rbtree: Use alloc_flags for memory allocations
1d210321de6d hwrng: nomadik - keep clock enabled while hwrng is registered
f24152c20972 tcp: tcp_enter_quickack_mode() should be static
b275f0ae3598 bpf: Clear the probe_addr for uprobe
514116de91c4 bpftool: Use a local bpf_perf_event_value to fix accessing its fields
920b2f99bcbd cpufreq: powernow-k8: Use related_cpus instead of cpus in driver.exit()
133a1f45b9a6 x86/efistub: Fix PCI ROM preservation in mixed mode
3de36b8b9bc5 s390/paes: fix PKEY_TYPE_EP11_AES handling for secure keyblobs
e06326ff3aae s390/pkey: fix/harmonize internal keyblob headers
08b1803bfc73 perf/imx_ddr: don't enable counter0 if none of 4 counters are used
c0e1f9bddcea x86/decompressor: Don't rely on upper 32 bits of GPRs being preserved
0682fc175c82 selftests/resctrl: Close perf value read fd on errors
f399938a917d selftests/resctrl: Unmount resctrl FS if child fails to run benchmark
bf1f7aeb5780 selftests/resctrl: Don't leak buffer in fill_cache()
3ee719b3a026 OPP: Fix passing 0 to PTR_ERR in _opp_attach_genpd()
066fbd8bc981 refscale: Fix uninitalized use of wait_queue_head_t
ac96370db7e1 selftests/harness: Actually report SKIP for signal tests
ac5a73b5d933 tmpfs: verify {g,u}id mount options correctly
644e93a79056 fs: Fix error checking for d_hash_and_lookup()
731f39e4a12b eventfd: prevent underflow for eventfd semaphores
755e86f28ab9 eventfd: Export eventfd_ctx_do_read()
6b5d585e2302 reiserfs: Check the return value from __getblk()
5101e2c8a567 Revert "net: macsec: preserve ingress frame ordering"
ca8f04553ecb udf: Handle error when adding extent to a file
4ac54312f623 udf: Check consistency of Space Bitmap Descriptor
42714d3d7097 net: Avoid address overwrite in kernel_connect
4ded72985bb0 platform/mellanox: Fix mlxbf-tmfifo not handling all virtio CONSOLE notifications
0c0547d2a60a tracing: Introduce pipe_cpumask to avoid race on trace_pipes
99d8d419dd29 ALSA: seq: oss: Fix racy open/close of MIDI devices
21f47cc15ae1 scsi: storvsc: Always set no_report_opcodes
5cbc749d11f7 sctp: handle invalid error codes without calling BUG()
2bdd081a7d7c bnx2x: fix page fault following EEH recovery
d11a4542889d netlabel: fix shift wrapping bug in netlbl_catmap_setlong()
7dd6ef1cedca scsi: qedi: Fix potential deadlock on &qedi_percpu->p_work_lock
7a1a7f40adf2 idmaengine: make FSL_EDMA and INTEL_IDMA64 depends on HAS_IOMEM
d399b6ce1ae6 net: usb: qmi_wwan: add Quectel EM05GV2
bb8a4a36321d vmbus_testing: fix wrong python syntax for integer value comparison
0ff30413a738 clk: fixed-mmio: make COMMON_CLK_FIXED_MMIO depend on HAS_IOMEM
0111b7bb5143 kprobes: Prohibit probing on CFI preamble symbol
654e3d27791c security: keys: perform capable check only on privileged operations
b23cbd3c2518 ata: pata_arasan_cf: Use dev_err_probe() instead dev_err() in data_xfer()
331d85f0bc6e ovl: Always reevaluate the file signature for IMA
357badc01add drm/amd/display: Exit idle optimizations before attempt to access PHY
de0cdcceaab3 platform/x86: huawei-wmi: Silence ambient light sensor
8964b32a67e5 platform/x86: intel: hid: Always call BTNL ACPI method
6b953ee81a45 ASoC: atmel: Fix the 8K sample parameter in I2SC master
37121461dd47 ASoc: codecs: ES8316: Fix DMIC config
bc2b0d4d37f1 fs/nls: make load_nls() take a const parameter
0a584c077967 s390/dasd: fix hanging device after request requeue
0c96df6913d4 s390/dasd: use correct number of retries for ERP requests
a5fd143673f3 m68k: Fix invalid .section syntax
f7700e987f6a vxlan: generalize vxlan_parse_gpe_hdr and remove unused args
b7cd83cfff56 ethernet: atheros: fix return value check in atl1c_tso_csum()
16c113426755 ASoC: da7219: Check for failure reading AAD IRQ events
afa2dbd7d13b ASoC: da7219: Flush pending AAD IRQ when suspending
efa372af6bfe 9p: virtio: make sure 'offs' is initialized in zc_request
2f13007fbe66 media: pci: cx23885: fix error handling for cx23885 ATSC boards
92704dd05521 media: pulse8-cec: handle possible ping error
9d9cdc32bfce phy: qcom-snps-femto-v2: use qcom_snps_hsphy_suspend/resume error code
a8ba2b695955 ARM: dts: imx: Set default tuning step for imx7d usdhc
678a88ac02e5 ARM: dts: imx: Adjust dma-apbh node name
6895499b2239 ARM: dts: imx7s: Drop dma-apb interrupt-names
614c27dfdee0 ARM: dts: imx: update sdma node name format
d45e2a3d2e4f ASoC: rt5682: Fix a problem with error handling in the io init function of the soundwire
977baccbbd4e pinctrl: amd: Don't show `Invalid config param` errors
f1d637b63d8a nilfs2: fix WARNING in mark_buffer_dirty due to discarded buffer reuse
0e11bb5ad33d nilfs2: fix general protection fault in nilfs_lookup_dirty_data_buffers()
734c6d3dc7b0 fsi: master-ast-cf: Add MODULE_FIRMWARE macro
da5dc81ed2b5 firmware: stratix10-svc: Fix an NULL vs IS_ERR() bug in probe
9fda2319018c serial: sc16is7xx: fix bug when first setting GPIO direction
2f982ce208fe serial: sc16is7xx: fix broken port 0 uart init
bd0ed45dd661 serial: qcom-geni: fix opp vote on shutdown
c709c7ca020a configfs: fix a race in configfs_lookup()
746b363bef41 Bluetooth: btsdio: fix use after free bug in btsdio_remove due to race condition
b074fb0fa02e staging: rtl8712: fix race condition
65bfaf5f9dea HID: wacom: remove the battery when the EKR is off
542c61470732 usb: chipidea: imx: improve logic if samsung,picophy-* parameter is 0
5c4996c22970 usb: dwc3: meson-g12a: do post init to fix broken usb after resumption
d44fa38193c2 USB: serial: option: add FOXCONN T99W368/T99W373 product
df6696e42e68 USB: serial: option: add Quectel EM05G variant (0x030e)
f71b0b4a497e modules: only allow symbol_get of EXPORT_SYMBOL_GPL modules
92de8497c342 rtc: ds1685: use EXPORT_SYMBOL_GPL for ds1685_rtc_poweroff
1aeb76ffdfc0 net: enetc: use EXPORT_SYMBOL_GPL for enetc_phc_index
d90e5956c0cc mmc: au1xmmc: force non-modular build and remove symbol_get usage
c1112a2b54ce ARM: pxa: remove use of symbol_get()
8c599aa78ce5 erofs: ensure that the post-EOF tails are all zeroed
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
---
.../linux/linux-yocto-rt_5.10.bb | 6 ++---
.../linux/linux-yocto-tiny_5.10.bb | 8 +++----
meta/recipes-kernel/linux/linux-yocto_5.10.bb | 24 +++++++++----------
3 files changed, 19 insertions(+), 19 deletions(-)
diff --git a/meta/recipes-kernel/linux/linux-yocto-rt_5.10.bb b/meta/recipes-kernel/linux/linux-yocto-rt_5.10.bb
index 8736873d65..b61c0a98c9 100644
--- a/meta/recipes-kernel/linux/linux-yocto-rt_5.10.bb
+++ b/meta/recipes-kernel/linux/linux-yocto-rt_5.10.bb
@@ -11,13 +11,13 @@ python () {
raise bb.parse.SkipRecipe("Set PREFERRED_PROVIDER_virtual/kernel to linux-yocto-rt to enable it")
}
-SRCREV_machine ?= "d68870980bca82eec6f5040ccb404717c0cac622"
-SRCREV_meta ?= "6ccf38515d9fbb6a468c2b1e470cd47599c6cf4e"
+SRCREV_machine ?= "361bd6dc8f750afb690d28fd9aab33d116b38f68"
+SRCREV_meta ?= "080adc96faafd98d2370b009338fcad42cf8e5fd"
SRC_URI = "git://git.yoctoproject.org/linux-yocto.git;branch=${KBRANCH};name=machine \
git://git.yoctoproject.org/yocto-kernel-cache;type=kmeta;name=meta;branch=yocto-5.10;destsuffix=${KMETA}"
-LINUX_VERSION ?= "5.10.194"
+LINUX_VERSION ?= "5.10.197"
LIC_FILES_CHKSUM = "file://COPYING;md5=6bc538ed5bd9a7fc9398086aedcd7e46"
diff --git a/meta/recipes-kernel/linux/linux-yocto-tiny_5.10.bb b/meta/recipes-kernel/linux/linux-yocto-tiny_5.10.bb
index 4ee674f35e..6e98407a7b 100644
--- a/meta/recipes-kernel/linux/linux-yocto-tiny_5.10.bb
+++ b/meta/recipes-kernel/linux/linux-yocto-tiny_5.10.bb
@@ -6,7 +6,7 @@ KCONFIG_MODE = "--allnoconfig"
require recipes-kernel/linux/linux-yocto.inc
-LINUX_VERSION ?= "5.10.194"
+LINUX_VERSION ?= "5.10.197"
LIC_FILES_CHKSUM = "file://COPYING;md5=6bc538ed5bd9a7fc9398086aedcd7e46"
DEPENDS += "${@bb.utils.contains('ARCH', 'x86', 'elfutils-native', '', d)}"
@@ -15,9 +15,9 @@ DEPENDS += "openssl-native util-linux-native"
KMETA = "kernel-meta"
KCONF_BSP_AUDIT_LEVEL = "2"
-SRCREV_machine:qemuarm ?= "31f6d39bde4a241280ff357f0f052e56af1332e8"
-SRCREV_machine ?= "a9ebc91a4f1376324425811eee0a6628553d7d6e"
-SRCREV_meta ?= "6ccf38515d9fbb6a468c2b1e470cd47599c6cf4e"
+SRCREV_machine:qemuarm ?= "c27508f48245090385d55b192f866b6ad60a79f7"
+SRCREV_machine ?= "3050ddb1d59017a62d3d7d589a11d168be86b6a3"
+SRCREV_meta ?= "080adc96faafd98d2370b009338fcad42cf8e5fd"
PV = "${LINUX_VERSION}+git${SRCPV}"
diff --git a/meta/recipes-kernel/linux/linux-yocto_5.10.bb b/meta/recipes-kernel/linux/linux-yocto_5.10.bb
index e4d7443df2..adb4aa69a0 100644
--- a/meta/recipes-kernel/linux/linux-yocto_5.10.bb
+++ b/meta/recipes-kernel/linux/linux-yocto_5.10.bb
@@ -14,23 +14,23 @@ KBRANCH:qemux86 ?= "v5.10/standard/base"
KBRANCH:qemux86-64 ?= "v5.10/standard/base"
KBRANCH:qemumips64 ?= "v5.10/standard/mti-malta64"
-SRCREV_machine:qemuarm ?= "bd08a530f711f7b511d70fc142169ceed446cfdb"
-SRCREV_machine:qemuarm64 ?= "8edb39e7f3399ef6f97a416069777d0230ad68bc"
-SRCREV_machine:qemumips ?= "582345c4ecdf0ba60551d25aa87656c2a039ad55"
-SRCREV_machine:qemuppc ?= "f00b3a49bc6e9ca12497cf50080c391e59696d06"
-SRCREV_machine:qemuriscv64 ?= "cf4ea7f5063f864ebc3dbc2b87ea4e550f24f803"
-SRCREV_machine:qemuriscv32 ?= "cf4ea7f5063f864ebc3dbc2b87ea4e550f24f803"
-SRCREV_machine:qemux86 ?= "cf4ea7f5063f864ebc3dbc2b87ea4e550f24f803"
-SRCREV_machine:qemux86-64 ?= "cf4ea7f5063f864ebc3dbc2b87ea4e550f24f803"
-SRCREV_machine:qemumips64 ?= "5b4830e32f3bd6fd82e93f60bf2e5da462419d31"
-SRCREV_machine ?= "cf4ea7f5063f864ebc3dbc2b87ea4e550f24f803"
-SRCREV_meta ?= "6ccf38515d9fbb6a468c2b1e470cd47599c6cf4e"
+SRCREV_machine:qemuarm ?= "28db2d5b2451e2c6b055dcd65bbe2fa581fa1538"
+SRCREV_machine:qemuarm64 ?= "3f6544c8ee1330484b5c341dcac662ef73836a0e"
+SRCREV_machine:qemumips ?= "7643ee350375086f23ddffbe1613150ce988dce5"
+SRCREV_machine:qemuppc ?= "9320f948b72a073ab0c27f0ca884842bb8eed036"
+SRCREV_machine:qemuriscv64 ?= "4eedb5d32121ace6ad137e7d01b22f94c592923e"
+SRCREV_machine:qemuriscv32 ?= "4eedb5d32121ace6ad137e7d01b22f94c592923e"
+SRCREV_machine:qemux86 ?= "4eedb5d32121ace6ad137e7d01b22f94c592923e"
+SRCREV_machine:qemux86-64 ?= "4eedb5d32121ace6ad137e7d01b22f94c592923e"
+SRCREV_machine:qemumips64 ?= "a3f4193c0ed91cbcfaed2e6cc984eb4906e511e0"
+SRCREV_machine ?= "4eedb5d32121ace6ad137e7d01b22f94c592923e"
+SRCREV_meta ?= "080adc96faafd98d2370b009338fcad42cf8e5fd"
SRC_URI = "git://git.yoctoproject.org/linux-yocto.git;name=machine;branch=${KBRANCH}; \
git://git.yoctoproject.org/yocto-kernel-cache;type=kmeta;name=meta;branch=yocto-5.10;destsuffix=${KMETA}"
LIC_FILES_CHKSUM = "file://COPYING;md5=6bc538ed5bd9a7fc9398086aedcd7e46"
-LINUX_VERSION ?= "5.10.194"
+LINUX_VERSION ?= "5.10.197"
DEPENDS += "${@bb.utils.contains('ARCH', 'x86', 'elfutils-native', '', d)}"
DEPENDS += "openssl-native util-linux-native"
--
2.34.1
^ permalink raw reply related [flat|nested] 21+ messages in thread
* [OE-core][kirkstone 08/10] ccache: fix build with gcc-13
2023-10-03 19:36 [OE-core][kirkstone 00/10] Patch review Steve Sakoman
` (6 preceding siblings ...)
2023-10-03 19:36 ` [OE-core][kirkstone 07/10] linux-yocto/5.10: update to v5.10.197 Steve Sakoman
@ 2023-10-03 19:36 ` Steve Sakoman
2023-10-03 19:36 ` [OE-core][kirkstone 09/10] python3-jinja2: fix for the ptest result format Steve Sakoman
2023-10-03 19:36 ` [OE-core][kirkstone 10/10] fontcache.bbclass: avoid native recipes depending on target fontconfig Steve Sakoman
9 siblings, 0 replies; 21+ messages in thread
From: Steve Sakoman @ 2023-10-03 19:36 UTC (permalink / raw)
To: openembedded-core
From: Martin Jansa <martin.jansa@gmail.com>
* needed on hosts with gcc-13 for ccache-native
Signed-off-by: Martin Jansa <martin.jansa@gmail.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
---
...x-FTBFS-with-not-yet-released-GCC-13.patch | 92 +++++++++++++++++++
meta/recipes-devtools/ccache/ccache_4.6.bb | 4 +-
2 files changed, 95 insertions(+), 1 deletion(-)
create mode 100644 meta/recipes-devtools/ccache/ccache/0001-build-Fix-FTBFS-with-not-yet-released-GCC-13.patch
diff --git a/meta/recipes-devtools/ccache/ccache/0001-build-Fix-FTBFS-with-not-yet-released-GCC-13.patch b/meta/recipes-devtools/ccache/ccache/0001-build-Fix-FTBFS-with-not-yet-released-GCC-13.patch
new file mode 100644
index 0000000000..d62e1ef26b
--- /dev/null
+++ b/meta/recipes-devtools/ccache/ccache/0001-build-Fix-FTBFS-with-not-yet-released-GCC-13.patch
@@ -0,0 +1,92 @@
+From 1523eaeff4669e421b3f60618b43c878e4860fe6 Mon Sep 17 00:00:00 2001
+From: Joel Rosdahl <joel@rosdahl.net>
+Date: Tue, 5 Jul 2022 21:42:58 +0200
+Subject: [PATCH] build: Fix FTBFS with not yet released GCC 13
+
+Reference: https://gcc.gnu.org/gcc-13/porting_to.html#header-dep-changes
+
+Fixes #1105.
+
+Upstream-Status: Backport [v4.7 https://github.com/ccache/ccache/commit/19ef6e267d38d4d8b3e11c915213472d5662d593]
+Signed-off-by: Martin Jansa <martin.jansa@gmail.com>
+---
+ src/Stat.hpp | 1 +
+ src/core/CacheEntryHeader.hpp | 2 ++
+ src/core/Sloppiness.hpp | 1 +
+ src/core/Statistics.hpp | 3 ++-
+ src/util/TextTable.hpp | 3 ++-
+ 5 files changed, 8 insertions(+), 2 deletions(-)
+
+diff --git a/src/Stat.hpp b/src/Stat.hpp
+index 2f56214a..074cdeeb 100644
+--- a/src/Stat.hpp
++++ b/src/Stat.hpp
+@@ -23,6 +23,7 @@
+ #include <sys/stat.h>
+ #include <sys/types.h>
+
++#include <cstdint>
+ #include <ctime>
+ #include <string>
+
+diff --git a/src/core/CacheEntryHeader.hpp b/src/core/CacheEntryHeader.hpp
+index 4c3e04c7..dcc32e1c 100644
+--- a/src/core/CacheEntryHeader.hpp
++++ b/src/core/CacheEntryHeader.hpp
+@@ -21,6 +21,8 @@
+ #include <compression/types.hpp>
+ #include <core/types.hpp>
+
++#include <cstdint>
++
+ // Cache entry format
+ // ==================
+ //
+diff --git a/src/core/Sloppiness.hpp b/src/core/Sloppiness.hpp
+index 917526bf..1ab31d71 100644
+--- a/src/core/Sloppiness.hpp
++++ b/src/core/Sloppiness.hpp
+@@ -18,6 +18,7 @@
+
+ #pragma once
+
++#include <cstdint>
+ #include <string>
+
+ namespace core {
+diff --git a/src/core/Statistics.hpp b/src/core/Statistics.hpp
+index 3e9ed816..54f32e9c 100644
+--- a/src/core/Statistics.hpp
++++ b/src/core/Statistics.hpp
+@@ -1,4 +1,4 @@
+-// Copyright (C) 2020-2021 Joel Rosdahl and other contributors
++// Copyright (C) 2020-2022 Joel Rosdahl and other contributors
+ //
+ // See doc/AUTHORS.adoc for a complete list of contributors.
+ //
+@@ -20,6 +20,7 @@
+
+ #include <core/StatisticsCounters.hpp>
+
++#include <cstdint>
+ #include <string>
+ #include <unordered_map>
+ #include <vector>
+diff --git a/src/util/TextTable.hpp b/src/util/TextTable.hpp
+index 05c0e0e5..60edee75 100644
+--- a/src/util/TextTable.hpp
++++ b/src/util/TextTable.hpp
+@@ -1,4 +1,4 @@
+-// Copyright (C) 2021 Joel Rosdahl and other contributors
++// Copyright (C) 2021-2022 Joel Rosdahl and other contributors
+ //
+ // See doc/AUTHORS.adoc for a complete list of contributors.
+ //
+@@ -18,6 +18,7 @@
+
+ #pragma once
+
++#include <cstdint>
+ #include <string>
+ #include <vector>
+
diff --git a/meta/recipes-devtools/ccache/ccache_4.6.bb b/meta/recipes-devtools/ccache/ccache_4.6.bb
index f019679cf1..d94c5d591a 100644
--- a/meta/recipes-devtools/ccache/ccache_4.6.bb
+++ b/meta/recipes-devtools/ccache/ccache_4.6.bb
@@ -11,7 +11,9 @@ LIC_FILES_CHKSUM = "file://LICENSE.adoc;md5=ff5327dc93e2b286c931dda3d6079da9"
DEPENDS = "zstd"
-SRC_URI = "https://github.com/ccache/ccache/releases/download/v${PV}/${BP}.tar.gz"
+SRC_URI = "https://github.com/ccache/ccache/releases/download/v${PV}/${BP}.tar.gz \
+ file://0001-build-Fix-FTBFS-with-not-yet-released-GCC-13.patch \
+"
SRC_URI[sha256sum] = "73a1767ac6b7c0404a1a55f761a746d338e702883c7137fbf587023062258625"
UPSTREAM_CHECK_URI = "https://github.com/ccache/ccache/releases/"
--
2.34.1
^ permalink raw reply related [flat|nested] 21+ messages in thread
* [OE-core][kirkstone 09/10] python3-jinja2: fix for the ptest result format
2023-10-03 19:36 [OE-core][kirkstone 00/10] Patch review Steve Sakoman
` (7 preceding siblings ...)
2023-10-03 19:36 ` [OE-core][kirkstone 08/10] ccache: fix build with gcc-13 Steve Sakoman
@ 2023-10-03 19:36 ` Steve Sakoman
2023-10-03 19:36 ` [OE-core][kirkstone 10/10] fontcache.bbclass: avoid native recipes depending on target fontconfig Steve Sakoman
9 siblings, 0 replies; 21+ messages in thread
From: Steve Sakoman @ 2023-10-03 19:36 UTC (permalink / raw)
To: openembedded-core
From: Narpat Mali <narpat.mali@windriver.com>
The output of python3-jinja2 ptest should follow a unified format as below
result: testname
Reference:
https://wiki.yoctoproject.org/wiki/Ptest
Signed-off-by: Narpat Mali <narpat.mali@windriver.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
---
meta/recipes-devtools/python/python3-jinja2/run-ptest | 2 +-
1 file changed, 1 insertion(+), 1 deletion(-)
diff --git a/meta/recipes-devtools/python/python3-jinja2/run-ptest b/meta/recipes-devtools/python/python3-jinja2/run-ptest
index 5cec711696..3004024619 100644
--- a/meta/recipes-devtools/python/python3-jinja2/run-ptest
+++ b/meta/recipes-devtools/python/python3-jinja2/run-ptest
@@ -1,3 +1,3 @@
#!/bin/sh
-pytest
+pytest -o log_cli=true -o log_cli_level=INFO | sed -e 's/\[...%\]//g'| sed -e 's/PASSED/PASS/g'| sed -e 's/FAILED/FAIL/g'| sed -e 's/SKIPPED/SKIP/g'| awk '{if ($NF=="PASS" || $NF=="FAIL" || $NF=="SKIP" || $NF=="XFAIL" || $NF=="XPASS"){printf "%s : %s\n", $NF, $0}else{print}}'| awk '{if ($NF=="PASS" || $NF=="FAIL" || $NF=="SKIP" || $NF=="XFAIL" || $NF=="XPASS") {$NF="";print $0}else{print}}'
--
2.34.1
^ permalink raw reply related [flat|nested] 21+ messages in thread
* [OE-core][kirkstone 10/10] fontcache.bbclass: avoid native recipes depending on target fontconfig
2023-10-03 19:36 [OE-core][kirkstone 00/10] Patch review Steve Sakoman
` (8 preceding siblings ...)
2023-10-03 19:36 ` [OE-core][kirkstone 09/10] python3-jinja2: fix for the ptest result format Steve Sakoman
@ 2023-10-03 19:36 ` Steve Sakoman
9 siblings, 0 replies; 21+ messages in thread
From: Steve Sakoman @ 2023-10-03 19:36 UTC (permalink / raw)
To: openembedded-core
From: Martin Jansa <martin.jansa@gmail.com>
* this caused liberation-font-native to depend on TUNE_PKGARCH target fontconfig
because ${MLPREFIX}fontconfig-utils is added to RDEPENDS in anonymous python
* the dependency tree for liberation-font-native got much shorter
(just quilt-native and liberation-font-native itself):
2 after/pn-buildlist
78 before/pn-buildlist
* fixes graphviz-native signature issue as well as detected with sstate-diff-machines.sh
$ bitbake-diffsigs \
sstate-after/mako/x86_64-linux/graphviz-native/8.1.0.do_populate_sysroot.sigdata.184d4fd355f1e7a2d7d929ef4b5f62b94e2071df9dd674b2067ec21bfc7bcc1b \
sstate-after/qemux86-64/x86_64-linux/graphviz-native/8.1.0.do_populate_sysroot.sigdata.35da674d2dbc275bac02869dfce4165466315023910bdef65a6026e2cb942a46
Hash for task dependency liberation-fonts-native:do_populate_sysroot changed from 310d3da04ad9abf8ee99997e53d1ffa71c2b7d9d60fb0e8de85171a9ab6a77d3 to 048420ad1410c2b8d95498fc3c11681207335a2c722836f1f3e683cc449814da
Signed-off-by: Martin Jansa <martin.jansa@gmail.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
---
meta/classes/fontcache.bbclass | 1 +
1 file changed, 1 insertion(+)
diff --git a/meta/classes/fontcache.bbclass b/meta/classes/fontcache.bbclass
index 442bfc7392..34688591f4 100644
--- a/meta/classes/fontcache.bbclass
+++ b/meta/classes/fontcache.bbclass
@@ -7,6 +7,7 @@ PACKAGE_WRITE_DEPS += "qemu-native"
inherit qemu
FONT_PACKAGES ??= "${PN}"
+FONT_PACKAGES:class-native = ""
FONT_EXTRA_RDEPENDS ?= "${MLPREFIX}fontconfig-utils"
FONTCONFIG_CACHE_DIR ?= "${localstatedir}/cache/fontconfig"
FONTCONFIG_CACHE_PARAMS ?= "-v"
--
2.34.1
^ permalink raw reply related [flat|nested] 21+ messages in thread
* [OE-core][kirkstone 00/10] Patch review
@ 2023-10-18 15:48 Steve Sakoman
0 siblings, 0 replies; 21+ messages in thread
From: Steve Sakoman @ 2023-10-18 15:48 UTC (permalink / raw)
To: openembedded-core
Please review this set of changes for kirkstone and have comments back by
end of day Friday, October 20
Passed a-full on autobuilder:
https://autobuilder.yoctoproject.org/typhoon/#/builders/83/builds/6064
with the exception of a known vim reproducibilty error in the vim-common
package where depending on worker we are seeing either:
"Content-Type:·text/plain;·charset=CP1251\n"
or
"Content-Type:·text/plain;·charset=cp1251\n"
The issue is still under investigation, but is unrelated to this patch set.
The following changes since commit 2572b32e729831762790ebfbf930a1140657faea:
apt: add missing <cstdint> for uint16_t (2023-10-13 05:32:41 -1000)
are available in the Git repository at:
https://git.openembedded.org/openembedded-core-contrib stable/kirkstone-nut
https://git.openembedded.org/openembedded-core-contrib/log/?h=stable/kirkstone-nut
Armin Kuster (1):
binutils: CVE-2022-48063
Chaitanya Vadrevu (3):
binutils: Fix CVE-2022-47695
binutils: Mark CVE-2022-47673 as patched
binutils: Mark CVE-2022-47696 as patched
Deepthi Hemraj (2):
binutils: Fix CVE-2022-47008
binutils: Fix CVE-2022-47011
Hitendra Prajapati (1):
libtiff: Add fix for tiffcrop CVE-2023-1916
Quentin Schulz (1):
uboot-extlinux-config.bbclass: fix missed override syntax migration
Siddharth Doshi (2):
tiff: Security fix for CVE-2023-40745
libxpm: upgrade to 3.5.17
meta/classes/uboot-extlinux-config.bbclass | 2 +-
.../binutils/binutils-2.38.inc | 4 +
.../binutils/0022-CVE-2023-25584-3.patch | 2 +
.../binutils/0025-CVE-2023-25588.patch | 2 +
.../binutils/0027-CVE-2022-47008.patch | 67 +++++++++++++
.../binutils/0028-CVE-2022-47011.patch | 35 +++++++
.../binutils/0031-CVE-2022-47695.patch | 58 +++++++++++
.../binutils/binutils/CVE-2022-48063.patch | 48 +++++++++
.../{libxpm_3.5.16.bb => libxpm_3.5.17.bb} | 2 +-
.../libtiff/tiff/CVE-2023-1916.patch | 99 +++++++++++++++++++
.../libtiff/tiff/CVE-2023-40745.patch | 34 +++++++
meta/recipes-multimedia/libtiff/tiff_4.3.0.bb | 2 +
12 files changed, 353 insertions(+), 2 deletions(-)
create mode 100644 meta/recipes-devtools/binutils/binutils/0027-CVE-2022-47008.patch
create mode 100644 meta/recipes-devtools/binutils/binutils/0028-CVE-2022-47011.patch
create mode 100644 meta/recipes-devtools/binutils/binutils/0031-CVE-2022-47695.patch
create mode 100644 meta/recipes-devtools/binutils/binutils/CVE-2022-48063.patch
rename meta/recipes-graphics/xorg-lib/{libxpm_3.5.16.bb => libxpm_3.5.17.bb} (88%)
create mode 100644 meta/recipes-multimedia/libtiff/tiff/CVE-2023-1916.patch
create mode 100644 meta/recipes-multimedia/libtiff/tiff/CVE-2023-40745.patch
--
2.34.1
^ permalink raw reply [flat|nested] 21+ messages in thread
* [OE-core][kirkstone 00/10] Patch review
@ 2024-04-16 12:06 Steve Sakoman
0 siblings, 0 replies; 21+ messages in thread
From: Steve Sakoman @ 2024-04-16 12:06 UTC (permalink / raw)
To: openembedded-core
Please review this set of changes for kirkstone and have comments back by
end of day Thursday, April 18
Passed a-full on autobuilder:
https://autobuilder.yoctoproject.org/typhoon/#/builders/83/builds/6811
The following changes since commit 26a878cbfbb3bc7a6e892e105577ebf8138ce150:
common-licenses: Backport missing license (2024-04-02 08:04:42 -1000)
are available in the Git repository at:
https://git.openembedded.org/openembedded-core-contrib stable/kirkstone-nut
https://git.openembedded.org/openembedded-core-contrib/log/?h=stable/kirkstone-nut
Alex Stewart (1):
perl: ignore CVE-2023-47100
Jonathan GUILLOT (1):
cups: fix typo in CVE-2023-32360 backport patch
Khem Raj (1):
tcl: Add a way to skip ptests
Peter Marko (2):
openssl: patch CVE-2024-2511
ncurses: patch CVE-2023-50495
Ross Burton (2):
tcl: skip timing-dependent tests in run-ptest
tcl: skip async and event tests in run-ptest
Sana Kazi (1):
openssh: Add CVE-2023-51767 to CVE_CHECK_IGNORE
Steve Sakoman (1):
Revert "expat: fix CVE-2023-52425"
Vijay Anusuri (1):
xserver-xorg: Fix for CVE-2024-31080 and CVE-2024-31081
.../openssh/openssh_8.9p1.bb | 5 +
.../openssl/openssl/CVE-2024-2511.patch | 122 ++++++++++
.../openssl/openssl_3.0.13.bb | 1 +
.../expat/expat/CVE-2023-52425-0001.patch | 40 ----
.../expat/expat/CVE-2023-52425-0002.patch | 87 -------
.../expat/expat/CVE-2023-52425-0003.patch | 222 ------------------
.../expat/expat/CVE-2023-52425-0004.patch | 42 ----
.../expat/expat/CVE-2023-52425-0005.patch | 69 ------
.../expat/expat/CVE-2023-52425-0006.patch | 67 ------
.../expat/expat/CVE-2023-52425-0007.patch | 159 -------------
.../expat/expat/CVE-2023-52425-0008.patch | 95 --------
.../expat/expat/CVE-2023-52425-0009.patch | 52 ----
.../expat/expat/CVE-2023-52425-0010.patch | 111 ---------
.../expat/expat/CVE-2023-52425-0011.patch | 89 -------
.../expat/expat/CVE-2023-52425-0012.patch | 87 -------
meta/recipes-core/expat/expat_2.5.0.bb | 12 -
.../ncurses/files/CVE-2023-50495.patch | 81 +++++++
.../ncurses/ncurses_6.3+20220423.bb | 1 +
meta/recipes-devtools/perl/perl_5.34.3.bb | 3 +
meta/recipes-devtools/tcltk/tcl/run-ptest | 6 +-
meta/recipes-devtools/tcltk/tcl_8.6.11.bb | 5 +
.../cups/cups/CVE-2023-32360.patch | 2 +-
.../xserver-xorg/CVE-2024-31080.patch | 49 ++++
.../xserver-xorg/CVE-2024-31081.patch | 47 ++++
.../xorg-xserver/xserver-xorg_21.1.8.bb | 2 +
25 files changed, 322 insertions(+), 1134 deletions(-)
create mode 100644 meta/recipes-connectivity/openssl/openssl/CVE-2024-2511.patch
delete mode 100644 meta/recipes-core/expat/expat/CVE-2023-52425-0001.patch
delete mode 100644 meta/recipes-core/expat/expat/CVE-2023-52425-0002.patch
delete mode 100644 meta/recipes-core/expat/expat/CVE-2023-52425-0003.patch
delete mode 100644 meta/recipes-core/expat/expat/CVE-2023-52425-0004.patch
delete mode 100644 meta/recipes-core/expat/expat/CVE-2023-52425-0005.patch
delete mode 100644 meta/recipes-core/expat/expat/CVE-2023-52425-0006.patch
delete mode 100644 meta/recipes-core/expat/expat/CVE-2023-52425-0007.patch
delete mode 100644 meta/recipes-core/expat/expat/CVE-2023-52425-0008.patch
delete mode 100644 meta/recipes-core/expat/expat/CVE-2023-52425-0009.patch
delete mode 100644 meta/recipes-core/expat/expat/CVE-2023-52425-0010.patch
delete mode 100644 meta/recipes-core/expat/expat/CVE-2023-52425-0011.patch
delete mode 100644 meta/recipes-core/expat/expat/CVE-2023-52425-0012.patch
create mode 100644 meta/recipes-core/ncurses/files/CVE-2023-50495.patch
create mode 100644 meta/recipes-graphics/xorg-xserver/xserver-xorg/CVE-2024-31080.patch
create mode 100644 meta/recipes-graphics/xorg-xserver/xserver-xorg/CVE-2024-31081.patch
--
2.34.1
^ permalink raw reply [flat|nested] 21+ messages in thread
* [OE-core][kirkstone 00/10] Patch review
@ 2025-04-08 20:50 Steve Sakoman
0 siblings, 0 replies; 21+ messages in thread
From: Steve Sakoman @ 2025-04-08 20:50 UTC (permalink / raw)
To: openembedded-core
Please review this set of changes for kirkstone and have comments back by
end of day Thursday, April 10
Passed a-full on autobuilder:
https://autobuilder.yoctoproject.org/valkyrie/#/builders/29/builds/1367
The following changes since commit 1efbe1004bc82e7c14c1e8bd4ce644f5015c3346:
build-appliance-image: Update to kirkstone head revision (2025-04-04 08:43:24 -0700)
are available in the Git repository at:
https://git.openembedded.org/openembedded-core-contrib stable/kirkstone-nut
https://git.openembedded.org/openembedded-core-contrib/log/?h=stable/kirkstone-nut
Haixiao Yan (1):
glibc: Add single-threaded fast path to rand()
Peter Marko (2):
ofono: patch CVE-2024-7537
qemu: ignore CVE-2023-1386
Vijay Anusuri (6):
ghostscript: Fix CVE-2025-27830
ghostscript: Fix CVE-2025-27831
ghostscript: Fix CVE-2025-27832
ghostscript: Fix CVE-2025-27834
ghostscript: Fix CVE-2025-27835
ghostscript: Fix CVE-2025-27836
Yogita Urade (1):
curl: ignore CVE-2025-0725
.../ofono/ofono/CVE-2024-7537.patch | 59 +++++++++++++
meta/recipes-connectivity/ofono/ofono_1.34.bb | 1 +
...dd-single-threaded-fast-path-to-rand.patch | 47 +++++++++++
meta/recipes-core/glibc/glibc_2.35.bb | 1 +
meta/recipes-devtools/qemu/qemu.inc | 3 +
.../ghostscript/CVE-2025-27830.patch | 79 +++++++++++++++++
.../ghostscript/CVE-2025-27831-pre1.patch | 50 +++++++++++
.../ghostscript/CVE-2025-27831.patch | 84 +++++++++++++++++++
.../ghostscript/CVE-2025-27832.patch | 45 ++++++++++
.../ghostscript/CVE-2025-27834.patch | 57 +++++++++++++
.../ghostscript/CVE-2025-27835.patch | 34 ++++++++
.../ghostscript/CVE-2025-27836-1.patch | 64 ++++++++++++++
.../ghostscript/CVE-2025-27836-2.patch | 46 ++++++++++
.../ghostscript/ghostscript_9.55.0.bb | 8 ++
meta/recipes-support/curl/curl_7.82.0.bb | 2 +
15 files changed, 580 insertions(+)
create mode 100644 meta/recipes-connectivity/ofono/ofono/CVE-2024-7537.patch
create mode 100644 meta/recipes-core/glibc/glibc/0001-stdlib-Add-single-threaded-fast-path-to-rand.patch
create mode 100644 meta/recipes-extended/ghostscript/ghostscript/CVE-2025-27830.patch
create mode 100644 meta/recipes-extended/ghostscript/ghostscript/CVE-2025-27831-pre1.patch
create mode 100644 meta/recipes-extended/ghostscript/ghostscript/CVE-2025-27831.patch
create mode 100644 meta/recipes-extended/ghostscript/ghostscript/CVE-2025-27832.patch
create mode 100644 meta/recipes-extended/ghostscript/ghostscript/CVE-2025-27834.patch
create mode 100644 meta/recipes-extended/ghostscript/ghostscript/CVE-2025-27835.patch
create mode 100644 meta/recipes-extended/ghostscript/ghostscript/CVE-2025-27836-1.patch
create mode 100644 meta/recipes-extended/ghostscript/ghostscript/CVE-2025-27836-2.patch
--
2.43.0
^ permalink raw reply [flat|nested] 21+ messages in thread
* [OE-core][kirkstone 00/10] Patch review
@ 2025-05-30 15:39 Steve Sakoman
0 siblings, 0 replies; 21+ messages in thread
From: Steve Sakoman @ 2025-05-30 15:39 UTC (permalink / raw)
To: openembedded-core
Please review this set of changes for kirkstone and have comments back by
end of day Tuesday, June 3
Passed a-full on autobuilder:
https://autobuilder.yoctoproject.org/valkyrie/#/builders/29/builds/1684
The following changes since commit a99a65632116955dc69809a14bf536b22582de72:
gcc: AArch64 - Fix strict-align cpymem/setmem (2025-05-23 08:27:24 -0700)
are available in the Git repository at:
https://git.openembedded.org/openembedded-core-contrib stable/kirkstone-nut
https://git.openembedded.org/openembedded-core-contrib/log/?h=stable/kirkstone-nut
Bruce Ashfield (5):
linux-yocto/5.15: update to v5.15.180
linux-yocto/5.15: update to v5.15.181
linux-yocto/5.15: update to v5.15.182
linux-yocto/5.15: update to v5.15.183
linux-yocto/5.15: update to v5.15.184
Guocai He (1):
sysstat: correct the SRC_URI
Harish Sadineni (2):
binutils: Fix CVE-2025-1182
binutils: fix CVE-2025-1180
Hitendra Prajapati (1):
screen: Fix CVE-2025-46805
NeilBrown (1):
nfs-utils: don't use signals to shut down nfs server.
.../nfs-utils/nfs-utils/nfsserver | 28 +--
.../binutils/binutils-2.38.inc | 1 +
.../binutils/0040-CVE-2025-1180.patch | 164 ++++++++++++++++++
.../binutils/0040-CVE-2025-1182.patch | 31 ++++
.../screen/screen/CVE-2025-46805.patch | 121 +++++++++++++
meta/recipes-extended/screen/screen_4.9.0.bb | 1 +
meta/recipes-extended/sysstat/sysstat.inc | 6 +-
.../linux/linux-yocto-rt_5.15.bb | 6 +-
.../linux/linux-yocto-tiny_5.15.bb | 6 +-
meta/recipes-kernel/linux/linux-yocto_5.15.bb | 26 +--
10 files changed, 344 insertions(+), 46 deletions(-)
create mode 100644 meta/recipes-devtools/binutils/binutils/0040-CVE-2025-1180.patch
create mode 100644 meta/recipes-devtools/binutils/binutils/0040-CVE-2025-1182.patch
create mode 100644 meta/recipes-extended/screen/screen/CVE-2025-46805.patch
--
2.43.0
^ permalink raw reply [flat|nested] 21+ messages in thread
* [OE-core][kirkstone 00/10] Patch review
@ 2025-07-27 20:04 Steve Sakoman
0 siblings, 0 replies; 21+ messages in thread
From: Steve Sakoman @ 2025-07-27 20:04 UTC (permalink / raw)
To: openembedded-core
Please review this set of changes for kirkstone and have comments back by
end of day Tuesday, July 29
Passed a-full on autobuilder:
https://autobuilder.yoctoproject.org/valkyrie/#/builders/29/builds/2092
The following changes since commit d9f424921179a52ffe053411c44f20e44e7deba1:
tcf-agent: correct the SRC_URI (2025-07-15 06:42:30 -0700)
are available in the Git repository at:
https://git.openembedded.org/openembedded-core-contrib stable/kirkstone-nut
https://git.openembedded.org/openembedded-core-contrib/log/?h=stable/kirkstone-nut
Aleksandar Nikolic (1):
scripts/install-buildtools: Update to 4.0.28
Daniel Díaz (1):
ffmpeg: Ignore two CVEs fixed in 5.0.3
Deepesh Varatharajan (1):
glibc: stable 2.35 branch updates
Hitendra Prajapati (1):
libpam: fix CVE-2025-6020
Martin Jansa (1):
db: ignore implicit-int and implicit-function-declaration issues fatal
with gcc-14
Peter Marko (2):
orc: set CVE_PRODUCT
ncurses: patch CVE-2025-6141
Rob Woolley (1):
ruby: correct fix for CVE-2024-43398
Yash Shinde (1):
binutils: Fix CVE-2025-7546
Yogita Urade (1):
gnupg: fix CVE-2025-30258
meta/recipes-core/glibc/glibc-version.inc | 2 +-
.../glibc/glibc/0025-CVE-2025-4802.patch | 3 +-
meta/recipes-core/glibc/glibc_2.35.bb | 2 +-
.../ncurses/files/CVE-2025-6141.patch | 25 +
.../ncurses/ncurses_6.3+20220423.bb | 1 +
.../binutils/binutils-2.38.inc | 1 +
.../binutils/0043-CVE-2025-7546.patch | 44 +
meta/recipes-devtools/orc/orc_0.4.40.bb | 3 +
.../ruby/ruby/CVE-2024-43398-0001.patch | 212 +++
.../ruby/ruby/CVE-2024-43398-0002.patch | 130 ++
...-43398.patch => CVE-2024-43398-0003.patch} | 23 +-
meta/recipes-devtools/ruby/ruby_3.1.3.bb | 4 +-
...001-pam_inline-introduce-pam_asprint.patch | 102 ++
.../0001-pam_namespace-include-stdint-h.patch | 42 +
.../pam/libpam/CVE-2025-6020-01.patch | 1588 +++++++++++++++++
.../pam/libpam/CVE-2025-6020-02.patch | 187 ++
.../pam/libpam/CVE-2025-6020-03.patch | 35 +
meta/recipes-extended/pam/libpam_1.5.2.bb | 5 +
.../recipes-multimedia/ffmpeg/ffmpeg_5.0.3.bb | 6 +
meta/recipes-support/db/db_5.3.28.bb | 4 +
.../gnupg/gnupg/CVE-2025-30258-0001.patch | 141 ++
.../gnupg/gnupg/CVE-2025-30258-0002.patch | 131 ++
.../gnupg/gnupg/CVE-2025-30258-0003.patch | 624 +++++++
.../gnupg/gnupg/CVE-2025-30258-0004.patch | 193 ++
.../gnupg/gnupg/CVE-2025-30258-0005.patch | 36 +
meta/recipes-support/gnupg/gnupg_2.3.7.bb | 5 +
scripts/install-buildtools | 4 +-
27 files changed, 3534 insertions(+), 19 deletions(-)
create mode 100644 meta/recipes-core/ncurses/files/CVE-2025-6141.patch
create mode 100644 meta/recipes-devtools/binutils/binutils/0043-CVE-2025-7546.patch
create mode 100644 meta/recipes-devtools/ruby/ruby/CVE-2024-43398-0001.patch
create mode 100644 meta/recipes-devtools/ruby/ruby/CVE-2024-43398-0002.patch
rename meta/recipes-devtools/ruby/ruby/{CVE-2024-43398.patch => CVE-2024-43398-0003.patch} (87%)
create mode 100644 meta/recipes-extended/pam/libpam/0001-pam_inline-introduce-pam_asprint.patch
create mode 100644 meta/recipes-extended/pam/libpam/0001-pam_namespace-include-stdint-h.patch
create mode 100644 meta/recipes-extended/pam/libpam/CVE-2025-6020-01.patch
create mode 100644 meta/recipes-extended/pam/libpam/CVE-2025-6020-02.patch
create mode 100644 meta/recipes-extended/pam/libpam/CVE-2025-6020-03.patch
create mode 100644 meta/recipes-support/gnupg/gnupg/CVE-2025-30258-0001.patch
create mode 100644 meta/recipes-support/gnupg/gnupg/CVE-2025-30258-0002.patch
create mode 100644 meta/recipes-support/gnupg/gnupg/CVE-2025-30258-0003.patch
create mode 100644 meta/recipes-support/gnupg/gnupg/CVE-2025-30258-0004.patch
create mode 100644 meta/recipes-support/gnupg/gnupg/CVE-2025-30258-0005.patch
--
2.43.0
^ permalink raw reply [flat|nested] 21+ messages in thread
* [OE-core][kirkstone 00/10] Patch review
@ 2025-07-30 19:05 Steve Sakoman
0 siblings, 0 replies; 21+ messages in thread
From: Steve Sakoman @ 2025-07-30 19:05 UTC (permalink / raw)
To: openembedded-core
Please review this set of changes for kirkstone and have comments back by
end of day Friday, August 1
Passed a-full on autobuilder:
https://autobuilder.yoctoproject.org/valkyrie/#/builders/29/builds/2113
The following changes since commit 277b5ec3c0212ca8600dd89d0a33f784a060131f:
db: ignore implicit-int and implicit-function-declaration issues fatal with gcc-14 (2025-07-25 08:37:09 -0700)
are available in the Git repository at:
https://git.openembedded.org/openembedded-core-contrib stable/kirkstone-nut
https://git.openembedded.org/openembedded-core-contrib/log/?h=stable/kirkstone-nut
Deepesh Varatharajan (1):
binutils: Fix CVE-2025-7545
Peter Marko (8):
dropbear: patch CVE-2025-47203
gnutls: patch CVE-2025-32989
gnutls: patch read buffer overrun in the "pre_shared_key" extension
gnutls: patch reject zero-length version in certificate request
gnutls: patch CVE-2025-32988
gnutls: patch CVE-2025-32990
gnutls: patch CVE-2025-6395
libxml2: patch CVE-2025-6170
Vijay Anusuri (1):
sqlite3: Fix CVE-2025-6965
meta/recipes-core/dropbear/dropbear.inc | 3 +
..._snprintf-that-won-t-return-negative.patch | 48 +
...-length-paths-and-commands-in-multih.patch | 126 +
.../dropbear/dropbear/CVE-2025-47203.patch | 344 +++
.../libxml/libxml2/CVE-2025-6170.patch | 103 +
meta/recipes-core/libxml/libxml2_2.9.14.bb | 1 +
.../binutils/binutils-2.38.inc | 1 +
.../binutils/0043-CVE-2025-7545.patch | 39 +
...fer-overrun-in-the-pre_shared_key-ex.patch | 34 +
...-length-version-in-certificate-reque.patch | 37 +
.../04939b75417cc95b7372c6f208c4bda4579bdc34 | Bin 0 -> 1782 bytes
.../3e94dcdff862ef5d6db8b5cc8e59310b5f0cdfe2 | Bin 0 -> 830 bytes
.../5477db1bb507a35e8833c758ce344f4b5b246d8e | Bin 0 -> 111 bytes
.../gnutls/gnutls/CVE-2025-32988.patch | 58 +
.../gnutls/gnutls/CVE-2025-32989.patch | 50 +
.../gnutls/gnutls/CVE-2025-32990.patch | 2109 +++++++++++++++++
.../gnutls/gnutls/CVE-2025-6395.patch | 299 +++
meta/recipes-support/gnutls/gnutls_3.7.4.bb | 15 +
.../sqlite/files/CVE-2025-6965.patch | 115 +
meta/recipes-support/sqlite/sqlite3_3.38.5.bb | 1 +
20 files changed, 3383 insertions(+)
create mode 100644 meta/recipes-core/dropbear/dropbear/0001-Add-m_snprintf-that-won-t-return-negative.patch
create mode 100644 meta/recipes-core/dropbear/dropbear/0001-Handle-arbitrary-length-paths-and-commands-in-multih.patch
create mode 100644 meta/recipes-core/dropbear/dropbear/CVE-2025-47203.patch
create mode 100644 meta/recipes-core/libxml/libxml2/CVE-2025-6170.patch
create mode 100644 meta/recipes-devtools/binutils/binutils/0043-CVE-2025-7545.patch
create mode 100644 meta/recipes-support/gnutls/gnutls/0001-psk-fix-read-buffer-overrun-in-the-pre_shared_key-ex.patch
create mode 100644 meta/recipes-support/gnutls/gnutls/0001-x509-reject-zero-length-version-in-certificate-reque.patch
create mode 100644 meta/recipes-support/gnutls/gnutls/04939b75417cc95b7372c6f208c4bda4579bdc34
create mode 100644 meta/recipes-support/gnutls/gnutls/3e94dcdff862ef5d6db8b5cc8e59310b5f0cdfe2
create mode 100644 meta/recipes-support/gnutls/gnutls/5477db1bb507a35e8833c758ce344f4b5b246d8e
create mode 100644 meta/recipes-support/gnutls/gnutls/CVE-2025-32988.patch
create mode 100644 meta/recipes-support/gnutls/gnutls/CVE-2025-32989.patch
create mode 100644 meta/recipes-support/gnutls/gnutls/CVE-2025-32990.patch
create mode 100644 meta/recipes-support/gnutls/gnutls/CVE-2025-6395.patch
create mode 100644 meta/recipes-support/sqlite/files/CVE-2025-6965.patch
--
2.43.0
^ permalink raw reply [flat|nested] 21+ messages in thread
* [OE-core][kirkstone 00/10] Patch review
@ 2025-11-13 21:47 Steve Sakoman
0 siblings, 0 replies; 21+ messages in thread
From: Steve Sakoman @ 2025-11-13 21:47 UTC (permalink / raw)
To: openembedded-core
Please review this set of changes for kirkstone and have comments back by
end of day Monday, November 17
Passed a-full on autobuilder:
https://autobuilder.yoctoproject.org/valkyrie/#/builders/29/builds/2720
The following changes since commit 1e1993b72f2b6109ce3d0ef950553b74b2b37b27:
Don't use ftp.gnome.org (2025-11-03 09:18:14 -0800)
are available in the Git repository at:
https://git.openembedded.org/openembedded-core-contrib stable/kirkstone-nut
https://git.openembedded.org/openembedded-core-contrib/log/?h=stable/kirkstone-nut
Alexander Kanavin (2):
xf86-video-intel: correct SRC_URI as freedesktop anongit is down
goarch.bbclass: do not leak TUNE_FEATURES into crosssdk task
signatures
Gyorgy Sarvari (2):
efibootmgr: update SRC_URI branch
babeltrace2: fetch with https protocol
Peter Marko (1):
curl: ignore CVE-2025-10966
Saquib Iltaf (1):
rust-cross-canadian: Ignore CVE-2024-43402
Soumya Sambu (1):
python3-urllib3: Upgrade 1.26.18 -> 1.26.20
Vijay Anusuri (3):
xserver-xorg: Fix for CVE-2025-62229
xserver-xorg: Fix for CVE-2025-62230
xserver-xorg: Fix for CVE-2025-62231
meta/classes/goarch.bbclass | 3 +
meta/recipes-bsp/efibootmgr/efibootmgr_17.bb | 2 +-
..._1.26.18.bb => python3-urllib3_1.26.20.bb} | 2 +-
.../rust/rust-cross-canadian.inc | 2 +
.../xorg-driver/xf86-video-intel_git.bb | 3 +-
.../xserver-xorg/CVE-2025-62229.patch | 89 ++++++++++++++++++
.../xserver-xorg/CVE-2025-62230-1.patch | 63 +++++++++++++
.../xserver-xorg/CVE-2025-62230-2.patch | 92 +++++++++++++++++++
.../xserver-xorg/CVE-2025-62231.patch | 53 +++++++++++
.../xorg-xserver/xserver-xorg_21.1.8.bb | 4 +
.../recipes-kernel/lttng/babeltrace2_2.0.5.bb | 2 +-
meta/recipes-support/curl/curl_7.82.0.bb | 2 +
12 files changed, 312 insertions(+), 5 deletions(-)
rename meta/recipes-devtools/python/{python3-urllib3_1.26.18.bb => python3-urllib3_1.26.20.bb} (87%)
create mode 100644 meta/recipes-graphics/xorg-xserver/xserver-xorg/CVE-2025-62229.patch
create mode 100644 meta/recipes-graphics/xorg-xserver/xserver-xorg/CVE-2025-62230-1.patch
create mode 100644 meta/recipes-graphics/xorg-xserver/xserver-xorg/CVE-2025-62230-2.patch
create mode 100644 meta/recipes-graphics/xorg-xserver/xserver-xorg/CVE-2025-62231.patch
--
2.43.0
^ permalink raw reply [flat|nested] 21+ messages in thread
* [OE-core][kirkstone 00/10] Patch review
@ 2025-12-02 15:09 Steve Sakoman
0 siblings, 0 replies; 21+ messages in thread
From: Steve Sakoman @ 2025-12-02 15:09 UTC (permalink / raw)
To: openembedded-core
Please review this set of changes for kirkstone and have comments back by
end of day Thursday, December 4
Passed a-full on autobuilder:
https://autobuilder.yoctoproject.org/valkyrie/#/builders/29/builds/2808
The following changes since commit ceef3cde9b761b7b5de6f7b6b1fb8e99663af9ca:
flac: patch seeking bug (2025-11-24 07:34:36 -0800)
are available in the Git repository at:
https://git.openembedded.org/openembedded-core-contrib stable/kirkstone-nut
https://git.openembedded.org/openembedded-core-contrib/log/?h=stable/kirkstone-nut
Archana Polampalli (4):
go: fix CVE-2025-58187
go: fix CVE-2025-58189
go: fix CVE-2025-61723
go: fix CVE-2025-61724
Gyorgy Sarvari (1):
systemd-bootchart: update SRC_URI branch
Peter Marko (5):
gnutls: patch CVE-2025-9820
libpng: patch CVE-2025-64505
libpng: patch CVE-2025-64506
libpng: patch CVE-2025-64720
libpng: patch CVE-2025-65018
meta/recipes-devtools/go/go-1.17.13.inc | 4 +
.../go/go-1.18/CVE-2025-58187.patch | 349 ++++++++++++++++++
.../go/go-1.18/CVE-2025-58189.patch | 51 +++
.../go/go-1.18/CVE-2025-61723.patch | 221 +++++++++++
.../go/go-1.18/CVE-2025-61724.patch | 74 ++++
.../systemd-bootchart_234.bb | 2 +-
.../libpng/files/CVE-2025-64505-01.patch | 111 ++++++
.../libpng/files/CVE-2025-64505-02.patch | 163 ++++++++
.../libpng/files/CVE-2025-64505-03.patch | 52 +++
.../libpng/files/CVE-2025-64506.patch | 57 +++
.../libpng/files/CVE-2025-64720.patch | 103 ++++++
.../libpng/files/CVE-2025-65018-01.patch | 60 +++
.../libpng/files/CVE-2025-65018-02.patch | 163 ++++++++
.../libpng/libpng_1.6.39.bb | 7 +
.../gnutls/gnutls/CVE-2025-9820.patch | 250 +++++++++++++
meta/recipes-support/gnutls/gnutls_3.7.4.bb | 1 +
16 files changed, 1667 insertions(+), 1 deletion(-)
create mode 100644 meta/recipes-devtools/go/go-1.18/CVE-2025-58187.patch
create mode 100644 meta/recipes-devtools/go/go-1.18/CVE-2025-58189.patch
create mode 100644 meta/recipes-devtools/go/go-1.18/CVE-2025-61723.patch
create mode 100644 meta/recipes-devtools/go/go-1.18/CVE-2025-61724.patch
create mode 100644 meta/recipes-multimedia/libpng/files/CVE-2025-64505-01.patch
create mode 100644 meta/recipes-multimedia/libpng/files/CVE-2025-64505-02.patch
create mode 100644 meta/recipes-multimedia/libpng/files/CVE-2025-64505-03.patch
create mode 100644 meta/recipes-multimedia/libpng/files/CVE-2025-64506.patch
create mode 100644 meta/recipes-multimedia/libpng/files/CVE-2025-64720.patch
create mode 100644 meta/recipes-multimedia/libpng/files/CVE-2025-65018-01.patch
create mode 100644 meta/recipes-multimedia/libpng/files/CVE-2025-65018-02.patch
create mode 100644 meta/recipes-support/gnutls/gnutls/CVE-2025-9820.patch
--
2.43.0
^ permalink raw reply [flat|nested] 21+ messages in thread
* [OE-core][kirkstone 00/10] Patch review
@ 2025-12-23 21:25 Steve Sakoman
0 siblings, 0 replies; 21+ messages in thread
From: Steve Sakoman @ 2025-12-23 21:25 UTC (permalink / raw)
To: openembedded-core
Please review this set of hcanges for kirkstone and have comments back by
end of day Tuesday, December 30
Passed a-full on autobuilder:
https://autobuilder.yoctoproject.org/valkyrie/?#/builders/29/builds/2920
The following changes since commit 2ed3f8b938579dbbb804e04c45a968cc57761db7:
build-appliance-image: Update to kirkstone head revision (2025-12-12 08:52:06 -0800)
are available in the Git repository at:
https://git.openembedded.org/openembedded-core-contrib stable/kirkstone-nut
https://git.openembedded.org/openembedded-core-contrib/log/?h=stable/kirkstone-nut
Aleksandar Nikolic (1):
scripts/install-buildtools: Update to 4.0.31
Changqing Li (1):
libsoup: fix CVE-2025-12105
Deepesh Varatharajan (1):
binutils: Fix CVE-2025-11494
Kai Kang (1):
qemu: fix CVE-2025-12464
Libo Chen (1):
go: Fix CVE-2023-39323
Liyin Zhang (1):
rsync: fix CVE-2025-10158
Martin Jansa (1):
cross.bbclass: Propagate dependencies to outhash
Mingli Yu (1):
libxslt: Fix CVE-2025-11731
Yash Shinde (2):
binutils: fix CVE-2025-11839
binutils: fix CVE-2025-11840
meta/classes/cross.bbclass | 36 ++++++++++
.../binutils/binutils-2.38.inc | 3 +
.../binutils/0048-CVE-2025-11494.patch | 43 ++++++++++++
.../binutils/0049-CVE-2025-11839.patch | 32 +++++++++
.../binutils/0050-CVE-2025-11840.patch | 37 ++++++++++
meta/recipes-devtools/go/go-1.17.13.inc | 1 +
.../go/go-1.21/CVE-2023-39323.patch | 55 +++++++++++++++
meta/recipes-devtools/qemu/qemu.inc | 1 +
.../qemu/qemu/CVE-2025-12464.patch | 70 +++++++++++++++++++
.../rsync/files/CVE-2025-10158.patch | 36 ++++++++++
meta/recipes-devtools/rsync/rsync_3.2.7.bb | 1 +
.../libsoup/libsoup/CVE-2025-12105.patch | 34 +++++++++
meta/recipes-support/libsoup/libsoup_3.0.7.bb | 1 +
.../libxslt/libxslt/CVE-2025-11731.patch | 42 +++++++++++
.../recipes-support/libxslt/libxslt_1.1.35.bb | 1 +
scripts/install-buildtools | 4 +-
16 files changed, 395 insertions(+), 2 deletions(-)
create mode 100644 meta/recipes-devtools/binutils/binutils/0048-CVE-2025-11494.patch
create mode 100644 meta/recipes-devtools/binutils/binutils/0049-CVE-2025-11839.patch
create mode 100644 meta/recipes-devtools/binutils/binutils/0050-CVE-2025-11840.patch
create mode 100644 meta/recipes-devtools/go/go-1.21/CVE-2023-39323.patch
create mode 100644 meta/recipes-devtools/qemu/qemu/CVE-2025-12464.patch
create mode 100644 meta/recipes-devtools/rsync/files/CVE-2025-10158.patch
create mode 100644 meta/recipes-support/libsoup/libsoup/CVE-2025-12105.patch
create mode 100644 meta/recipes-support/libxslt/libxslt/CVE-2025-11731.patch
--
2.43.0
^ permalink raw reply [flat|nested] 21+ messages in thread
end of thread, other threads:[~2025-12-23 21:26 UTC | newest]
Thread overview: 21+ messages (download: mbox.gz follow: Atom feed
-- links below jump to the message on this page --
2023-10-03 19:36 [OE-core][kirkstone 00/10] Patch review Steve Sakoman
2023-10-03 19:36 ` [OE-core][kirkstone 01/10] json-c: define CVE_VERSION Steve Sakoman
2023-10-03 19:36 ` [OE-core][kirkstone 02/10] go: Update fix for CVE-2023-24538 & CVE-2023-39318 Steve Sakoman
2023-10-03 19:36 ` [OE-core][kirkstone 03/10] linux-yocto/5.10: update to v5.10.189 Steve Sakoman
2023-10-03 19:36 ` [OE-core][kirkstone 04/10] linux-yocto/5.10: update to v5.10.191 Steve Sakoman
2023-10-03 19:36 ` [OE-core][kirkstone 05/10] linux-yocto/5.10: update to v5.10.192 Steve Sakoman
2023-10-03 19:36 ` [OE-core][kirkstone 06/10] linux-yocto/5.10: update to v5.10.194 Steve Sakoman
2023-10-03 19:36 ` [OE-core][kirkstone 07/10] linux-yocto/5.10: update to v5.10.197 Steve Sakoman
2023-10-03 19:36 ` [OE-core][kirkstone 08/10] ccache: fix build with gcc-13 Steve Sakoman
2023-10-03 19:36 ` [OE-core][kirkstone 09/10] python3-jinja2: fix for the ptest result format Steve Sakoman
2023-10-03 19:36 ` [OE-core][kirkstone 10/10] fontcache.bbclass: avoid native recipes depending on target fontconfig Steve Sakoman
-- strict thread matches above, loose matches on Subject: below --
2025-12-23 21:25 [OE-core][kirkstone 00/10] Patch review Steve Sakoman
2025-12-02 15:09 Steve Sakoman
2025-11-13 21:47 Steve Sakoman
2025-07-30 19:05 Steve Sakoman
2025-07-27 20:04 Steve Sakoman
2025-05-30 15:39 Steve Sakoman
2025-04-08 20:50 Steve Sakoman
2024-04-16 12:06 Steve Sakoman
2023-10-18 15:48 Steve Sakoman
2023-08-03 14:04 Steve Sakoman
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox