blob: 16e0a404261c437b82c633a2d8d073686f44421b [file] [log] [blame]
Andrew Geisslerfc113ea2023-03-31 09:59:46 -05001.. SPDX-License-Identifier: CC-BY-SA-2.0-UK
2
3Release notes for Yocto-4.1.3 (Langdale)
4----------------------------------------
5
6Security Fixes in Yocto-4.1.3
7~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
8
9- apr-util: Fix :cve:`2022-25147`
10- apr: Fix :cve:`2022-24963` and :cve:`2022-28331`
11- bind: Fix :cve:`2022-3094`, :cve:`2022-3736` and :cve:`2022-3924`
12- curl: Fix :cve:`2022-43551` and :cve:`2022-43552`
13- dbus: Fix :cve:`2022-42010`, :cve:`2022-42011` and :cve:`2022-42012`
14- git: Fix :cve:`2022-23521`, :cve:`2022-39253`, :cve:`2022-39260` and :cve:`2022-41903`
15- git: Ignore :cve:`2022-41953`
16- go: Fix :cve:`2022-41717` and :cve:`2022-41720`
17- grub2: Fix :cve:`2022-2601` and :cve:`2022-3775`
18- less: Fix :cve:`2022-46663`
19- libarchive: Fix :cve:`2022-36227`
20- libksba: Fix :cve:`2022-47629`
21- openssl: Fix :cve:`2022-3996`
22- pkgconf: Fix :cve:`2023-24056`
23- ppp: Fix :cve:`2022-4603`
24- sudo: Fix :cve:`2023-22809`
25- tar: Fix :cve:`2022-48303`
26- vim: Fix :cve:`2023-0049`, :cve:`2023-0051`, :cve:`2023-0054`, :cve:`2023-0288`, :cve:`2023-0433` and :cve:`2023-0512`
27- xserver-xorg: Fix `CVE-2023-0494 <https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0494>`__
28- xwayland: Fix `CVE-2023-0494 <https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0494>`__
29
30
31Fixes in Yocto-4.1.3
32~~~~~~~~~~~~~~~~~~~~
33
34- apr-util: Upgrade to 1.6.3
35- apr: Upgrade to 1.7.2
36- apt: fix do_package_qa failure
37- at: Change when files are copied
38- base.bbclass: Fix way to check ccache path
39- bblayers/makesetup: skip git repos that are submodules
40- bblayers/setupwriters/oe-setup-layers: create dir if not exists
41- bind: Upgrade to 9.18.11
42- bitbake-layers: fix a typo
43- bitbake: bb/utils: include SSL certificate paths in export_proxies
44- bitbake: fetch2/git: Clarify the meaning of namespace
45- bitbake: fetch2/git: Prevent git fetcher from fetching gitlab repository metadata
46- bitbake: process: log odd unlink events with bitbake.sock
47- bitbake: server/process: Add bitbake.sock race handling
48- bitbake: siggen: Fix inefficient string concatenation
49- bootchart2: Fix usrmerge support
50- bsp-guide: fix broken git URLs and missing word
51- build-appliance-image: Update to langdale head revision
52- buildtools-tarball: set pkg-config search path
53- busybox: Fix depmod patch
54- busybox: always start do_compile with orig config files
55- busybox: rm temporary files if do_compile was interrupted
56- cairo: fix CVE patches assigned wrong CVE number
57- classes/fs-uuid: Fix command output decoding issue
58- classes/populate_sdk_base: Append cleandirs
59- classes: image: Set empty weak default IMAGE_LINGUAS
60- cml1: remove redundant addtask
61- core-image.bbclass: Fix missing leading whitespace with ':append'
62- createrepo-c: Include missing rpm/rpmstring.h
63- curl: don't enable debug builds
64- curl: fix dependencies when building with ldap/ldaps
65- cve-check: write the cve manifest to IMGDEPLOYDIR
66- cve-update-db-native: avoid incomplete updates
67- cve-update-db-native: show IP on failure
68- dbus: Upgrade to 1.14.6
69- dev-manual: common-tasks.rst: add link to FOSDEM 2023 video
70- dev-manual: fix old override syntax
71- devshell: Do not add scripts/git-intercept to PATH
72- devtool: fix devtool finish when gitmodules file is empty
73- devtool: process local files only for the main branch
74- dhcpcd: backport two patches to fix runtime error
75- dhcpcd: fix dhcpcd start failure on qemuppc64
76- diffutils: Upgrade to 3.9
77- ffmpeg: fix configure failure on noexec /tmp host
78- gdk-pixbuf: do not use tools from gdk-pixbuf-native when building tests
79- git: Upgrade to 2.37.6
80- glslang: branch rename master -> main
81- go: Upgrade to 1.19.4
82- gstreamer1.0 : Revert "disable flaky gstbin:test_watch_for_state_change test" and Fix race conditions in gstbin tests with upstream solution
83- harfbuzz: remove bindir only if it exists
84- httpserver: add error handler that write to the logger
85- image.bbclass: print all QA functions exceptions
86- kernel-fitimage: Adjust order of dtb/dtbo files
87- kernel-fitimage: Allow user to select dtb when multiple dtb exists
88- kernel-yocto: fix kernel-meta data detection
89- kernel/linux-kernel-base: Fix kernel build artefact determinism issues
90- lib/buildstats: handle tasks that never finished
91- lib/oe/reproducible: Use git log without gpg signature
92- libarchive: Upgrade to 3.6.2
93- libc-locale: Fix on target locale generation
94- libgit2: Upgrade to 1.5.1
95- libjpeg-turbo: Upgrade to 2.1.5.1
96- libksba: Upgrade to 1.6.3
97- libpng: Enable NEON for aarch64 to enensure consistency with arm32.
98- librsvg: Only enable the Vala bindings if GObject Introspection is enabled
99- librsvg: enable vapi build
100- libseccomp: fix for the ptest result format
101- libseccomp: fix typo in DESCRIPTION
102- libssh2: Clean up ptest patch/coverage
103- libtirpc: Check if file exists before operating on it
104- libusb1: Link with latomic only if compiler has no atomic builtins
105- libusb1: Strip trailing whitespaces
106- linux-firmware: add yamato fw files to qcom-adreno-a2xx package
107- linux-firmware: properly set license for all Qualcomm firmware
108- linux-firmware: Upgrade to 20230210
109- linux-yocto/5.15: fix perf build with clang
110- linux-yocto/5.15: libbpf: Fix build warning on ref_ctr_off
111- linux-yocto/5.15: ltp and squashfs fixes
112- linux-yocto/5.15: powerpc: Fix reschedule bug in KUAP-unlocked user copy
113- linux-yocto/5.15: Upgrade to v5.15.91
114- linux-yocto/5.19: fix perf build with clang
115- linux-yocto/5.19: powerpc: Fix reschedule bug in KUAP-unlocked user copy
116- lsof: fix old override syntax
117- lttng-modules: Fix for 5.10.163 kernel version
118- lttng-modules: fix for kernel 6.2+
119- lttng-modules: Upgrade to 2.13.8
120- lttng-tools: Upgrade to 2.13.9
121- make-mod-scripts: Ensure kernel build output is deterministic
122- manuals: update patchwork instance URL
123- mesa-gl: gallium is required when enabling x11
124- meta: remove True option to getVar and getVarFlag calls (again)
125- migration-guides: add release-notes for 4.0.7
126- native: Drop special variable handling
127- numactl: skip test case when target platform doesn't have 2 CPU node
128- oeqa context.py: fix --target-ip comment to include ssh port number
129- oeqa dump.py: add error counter and stop after 5 failures
130- oeqa qemurunner.py: add timeout to QMP calls
131- oeqa qemurunner.py: try to avoid reading one character at a time
132- oeqa qemurunner: read more data at a time from serial
133- oeqa ssh.py: add connection keep alive options to ssh client
134- oeqa ssh.py: fix hangs in run()
135- oeqa ssh.py: move output prints to new line
136- oeqa/qemurunner: do not use Popen.poll() when terminating runqemu with a signal
137- oeqa/rpm.py: Increase timeout and add debug output
138- oeqa/selftest/debuginfod: improve testcase
139- oeqa/selftest/locales: Add selftest for locale generation/presence
140- oeqa/selftest/resulttooltests: fix minor typo
141- openssl: Upgrade to 3.0.8
142- opkg: ensure opkg uses private gpg.conf when applying keys.
143- pango: Upgrade to 1.50.12
144- perf: Enable debug/source packaging
145- pkgconf: Upgrade to 1.9.4
146- poky.conf: Update SANITY_TESTED_DISTROS to match autobuilder
147- poky.conf: bump version for 4.1.3
148- populate_sdk_ext.bbclass: Fix missing leading whitespace with ':append'
149- profile-manual: update WireShark hyperlinks
150- ptest-packagelists.inc: Fix missing leading whitespace with ':append'
151- python3-pytest: depend on python3-tomli instead of python3-toml
152- quilt: fix intermittent failure in faildiff.test
153- quilt: use upstreamed faildiff.test fix
154- recipe_sanity: fix old override syntax
155- ref-manual: Fix invalid feature name
156- ref-manual: update DEV_PKG_DEPENDENCY in variables
157- ref-manual: variables.rst: fix broken hyperlink
158- rm_work.bbclass: use HOSTTOOLS 'rm' binary exclusively
159- runqemu: kill qemu if it hangs
160- rust: Do not use default compiler flags defined in CC crate
161- scons.bbclass: Make MAXLINELENGTH overridable
162- scons: Pass MAXLINELENGTH to scons invocation
163- sdkext/cases/devtool: pass a logger to HTTPService
164- selftest/virgl: use pkg-config from the host
165- spirv-headers/spirv-tools: set correct branch name
166- sstate.bbclass: Fetch non-existing local .sig files if needed
167- sstatesig: Improve output hash calculation
168- sudo: Upgrade to 1.9.12p2
169- system-requirements.rst: Add Fedora 36, AlmaLinux 8.7 & 9.1, and OpenSUSE 15.4 to list of supported distros
170- testimage: Fix error message to reflect new syntax
171- tiff: Add packageconfig knob for webp
172- toolchain-scripts: compatibility with unbound variable protection
173- uninative: Upgrade to 3.8.1 to include libgcc
174- update-alternatives: fix typos
175- vim: Upgrade to 9.0.1293
176- vulkan-samples: branch rename master -> main
177- wic: Fix usage of fstype=none in wic
178- wireless-regdb: Upgrade to 2023.02.13
179- xserver-xorg: Upgrade to 21.1.7
180- xwayland: Upgrade to 22.1.8
181
182
183Known Issues in Yocto-4.1.3
184~~~~~~~~~~~~~~~~~~~~~~~~~~~
185
186- N/A
187
188
189Contributors to Yocto-4.1.3
190~~~~~~~~~~~~~~~~~~~~~~~~~~~
191
192- Adrian Freihofer
193- Alejandro Hernandez Samaniego
194- Alex Kiernan
195- Alexander Kanavin
196- Alexis Lothoré
197- Anton Antonov
198- Antonin Godard
199- Armin Kuster
200- Arnout Vandecappelle
201- Benoît Mauduit
202- Bruce Ashfield
203- Carlos Alberto Lopez Perez
204- Changqing Li
205- Charlie Johnston
206- Chee Yang Lee
207- Chen Qi
208- Dmitry Baryshkov
209- Enguerrand de Ribaucourt
210- Etienne Cordonnier
211- Fawzi KHABER
212- Federico Pellegrin
213- Frank de Brabander
214- Harald Seiler
215- He Zhe
216- Jan Kircher
217- Jermain Horsman
218- Jose Quaresma
219- Joshua Watt
220- Kai Kang
221- Khem Raj
222- Lei Maohui
223- Louis Rannou
224- Luis
225- Marek Vasut
226- Markus Volk
227- Marta Rybczynska
228- Martin Jansa
229- Mateusz Marciniec
230- Mauro Queiros
231- Michael Halstead
232- Michael Opdenacker
233- Mikko Rapeli
234- Mingli Yu
235- Narpat Mali
236- Niko Mauno
237- Pavel Zhukov
238- Pawel Zalewski
239- Peter Kjellerstedt
240- Petr Kubizňák
241- Quentin Schulz
242- Randy MacLeod
243- Richard Purdie
244- Robert Joslyn
245- Rodolfo Quesada Zumbado
246- Ross Burton
247- Sakib Sajal
248- Sandeep Gundlupet Raju
249- Saul Wold
250- Siddharth Doshi
251- Steve Sakoman
252- Thomas Roos
253- Tobias Hagelborn
254- Ulrich Ölmann
255- Vivek Kumbhar
256- Wang Mingyu
257- Xiangyu Chen
258
259
260Repositories / Downloads for Yocto-4.1.3
261~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
262
263poky
264
265- Repository Location: :yocto_git:`/poky`
266- Branch: :yocto_git:`langdale </poky/log/?h=langdale>`
267- Tag: :yocto_git:`yocto-4.1.3 </poky/log/?h=yocto-4.1.3>`
268- Git Revision: :yocto_git:`91d0157d6daf4ea61d6b4e090c0b682d3f3ca60f </poky/commit/?id=91d0157d6daf4ea61d6b4e090c0b682d3f3ca60f>`
269- Release Artefact: poky-91d0157d6daf4ea61d6b4e090c0b682d3f3ca60f
270- sha: 94e4615eba651fe705436b29b854458be050cc39db936295f9d5eb7e85d3eff1
271- Download Locations:
272 http://downloads.yoctoproject.org/releases/yocto/yocto-4.1.3/poky-91d0157d6daf4ea61d6b4e090c0b682d3f3ca60f.tar.bz2
273 http://mirrors.kernel.org/yocto/yocto/yocto-4.1.3/poky-91d0157d6daf4ea61d6b4e090c0b682d3f3ca60f.tar.bz2
274
275openembedded-core
276
277- Repository Location: :oe_git:`/openembedded-core`
278- Branch: :oe_git:`langdale </openembedded-core/log/?h=langdale>`
279- Tag: :oe_git:`yocto-4.1.3 </openembedded-core/log/?h=yocto-4.1.3>`
280- Git Revision: :oe_git:`b995ea45773211bd7bdd60eabcc9bbffda6beb5c </openembedded-core/commit/?id=b995ea45773211bd7bdd60eabcc9bbffda6beb5c>`
281- Release Artefact: oecore-b995ea45773211bd7bdd60eabcc9bbffda6beb5c
282- sha: 952e19361f205ee91b74e5caaa835d58fa6dd0d92ddaed50d4cd3f3fa56fab63
283- Download Locations:
284 http://downloads.yoctoproject.org/releases/yocto/yocto-4.1.3/oecore-b995ea45773211bd7bdd60eabcc9bbffda6beb5c.tar.bz2
285 http://mirrors.kernel.org/yocto/yocto/yocto-4.1.3/oecore-b995ea45773211bd7bdd60eabcc9bbffda6beb5c.tar.bz2
286
287meta-mingw
288
289- Repository Location: :yocto_git:`/meta-mingw`
290- Branch: :yocto_git:`langdale </meta-mingw/log/?h=langdale>`
291- Tag: :yocto_git:`yocto-4.1.3 </meta-mingw/log/?h=yocto-4.1.3>`
292- Git Revision: :yocto_git:`b0067202db8573df3d23d199f82987cebe1bee2c </meta-mingw/commit/?id=b0067202db8573df3d23d199f82987cebe1bee2c>`
293- Release Artefact: meta-mingw-b0067202db8573df3d23d199f82987cebe1bee2c
294- sha: 704f2940322b81ce774e9cbd27c3cfa843111d497dc7b1eeaa39cd694d9a2366
295- Download Locations:
296 http://downloads.yoctoproject.org/releases/yocto/yocto-4.1.3/meta-mingw-b0067202db8573df3d23d199f82987cebe1bee2c.tar.bz2
297 http://mirrors.kernel.org/yocto/yocto/yocto-4.1.3/meta-mingw-b0067202db8573df3d23d199f82987cebe1bee2c.tar.bz2
298
299bitbake
300
301- Repository Location: :oe_git:`/bitbake`
302- Branch: :oe_git:`2.2 </bitbake/log/?h=2.2>`
303- Tag: :oe_git:`yocto-4.1.3 </bitbake/log/?h=yocto-4.1.3>`
304- Git Revision: :oe_git:`592ee222a1c6da42925fb56801f226884b6724ec </bitbake/commit/?id=592ee222a1c6da42925fb56801f226884b6724ec>`
305- Release Artefact: bitbake-592ee222a1c6da42925fb56801f226884b6724ec
306- sha: 79c32f2ca66596132e32a45654ce0e9dd42b6b39186eff3540a9d6b499fe952c
307- Download Locations:
308 http://downloads.yoctoproject.org/releases/yocto/yocto-4.1.3/bitbake-592ee222a1c6da42925fb56801f226884b6724ec.tar.bz2
309 http://mirrors.kernel.org/yocto/yocto/yocto-4.1.3/bitbake-592ee222a1c6da42925fb56801f226884b6724ec.tar.bz2
310
311yocto-docs
312
313- Repository Location: :yocto_git:`/yocto-docs`
314- Branch: :yocto_git:`langdale </yocto-docs/log/?h=langdale>`
315- Tag: :yocto_git:`yocto-4.1.3 </yocto-docs/log/?h=yocto-4.1.3>`
316- Git Revision: :yocto_git:`3de2ad1f8ff87aeec30088779267880306a0f31a </yocto-docs/commit/?id=3de2ad1f8ff87aeec30088779267880306a0f31a>`
317