Andrew Geissler | fc113ea | 2023-03-31 09:59:46 -0500 | [diff] [blame] | 1 | .. SPDX-License-Identifier: CC-BY-SA-2.0-UK |
| 2 | |
| 3 | Release notes for Yocto-4.1.3 (Langdale) |
| 4 | ---------------------------------------- |
| 5 | |
| 6 | Security Fixes in Yocto-4.1.3 |
| 7 | ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ |
| 8 | |
| 9 | - apr-util: Fix :cve:`2022-25147` |
| 10 | - apr: Fix :cve:`2022-24963` and :cve:`2022-28331` |
| 11 | - bind: Fix :cve:`2022-3094`, :cve:`2022-3736` and :cve:`2022-3924` |
| 12 | - curl: Fix :cve:`2022-43551` and :cve:`2022-43552` |
| 13 | - dbus: Fix :cve:`2022-42010`, :cve:`2022-42011` and :cve:`2022-42012` |
| 14 | - git: Fix :cve:`2022-23521`, :cve:`2022-39253`, :cve:`2022-39260` and :cve:`2022-41903` |
| 15 | - git: Ignore :cve:`2022-41953` |
| 16 | - go: Fix :cve:`2022-41717` and :cve:`2022-41720` |
| 17 | - grub2: Fix :cve:`2022-2601` and :cve:`2022-3775` |
| 18 | - less: Fix :cve:`2022-46663` |
| 19 | - libarchive: Fix :cve:`2022-36227` |
| 20 | - libksba: Fix :cve:`2022-47629` |
| 21 | - openssl: Fix :cve:`2022-3996` |
| 22 | - pkgconf: Fix :cve:`2023-24056` |
| 23 | - ppp: Fix :cve:`2022-4603` |
| 24 | - sudo: Fix :cve:`2023-22809` |
| 25 | - tar: Fix :cve:`2022-48303` |
| 26 | - vim: Fix :cve:`2023-0049`, :cve:`2023-0051`, :cve:`2023-0054`, :cve:`2023-0288`, :cve:`2023-0433` and :cve:`2023-0512` |
| 27 | - xserver-xorg: Fix `CVE-2023-0494 <https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0494>`__ |
| 28 | - xwayland: Fix `CVE-2023-0494 <https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0494>`__ |
| 29 | |
| 30 | |
| 31 | Fixes in Yocto-4.1.3 |
| 32 | ~~~~~~~~~~~~~~~~~~~~ |
| 33 | |
| 34 | - apr-util: Upgrade to 1.6.3 |
| 35 | - apr: Upgrade to 1.7.2 |
| 36 | - apt: fix do_package_qa failure |
| 37 | - at: Change when files are copied |
| 38 | - base.bbclass: Fix way to check ccache path |
| 39 | - bblayers/makesetup: skip git repos that are submodules |
| 40 | - bblayers/setupwriters/oe-setup-layers: create dir if not exists |
| 41 | - bind: Upgrade to 9.18.11 |
| 42 | - bitbake-layers: fix a typo |
| 43 | - bitbake: bb/utils: include SSL certificate paths in export_proxies |
| 44 | - bitbake: fetch2/git: Clarify the meaning of namespace |
| 45 | - bitbake: fetch2/git: Prevent git fetcher from fetching gitlab repository metadata |
| 46 | - bitbake: process: log odd unlink events with bitbake.sock |
| 47 | - bitbake: server/process: Add bitbake.sock race handling |
| 48 | - bitbake: siggen: Fix inefficient string concatenation |
| 49 | - bootchart2: Fix usrmerge support |
| 50 | - bsp-guide: fix broken git URLs and missing word |
| 51 | - build-appliance-image: Update to langdale head revision |
| 52 | - buildtools-tarball: set pkg-config search path |
| 53 | - busybox: Fix depmod patch |
| 54 | - busybox: always start do_compile with orig config files |
| 55 | - busybox: rm temporary files if do_compile was interrupted |
| 56 | - cairo: fix CVE patches assigned wrong CVE number |
| 57 | - classes/fs-uuid: Fix command output decoding issue |
| 58 | - classes/populate_sdk_base: Append cleandirs |
| 59 | - classes: image: Set empty weak default IMAGE_LINGUAS |
| 60 | - cml1: remove redundant addtask |
| 61 | - core-image.bbclass: Fix missing leading whitespace with ':append' |
| 62 | - createrepo-c: Include missing rpm/rpmstring.h |
| 63 | - curl: don't enable debug builds |
| 64 | - curl: fix dependencies when building with ldap/ldaps |
| 65 | - cve-check: write the cve manifest to IMGDEPLOYDIR |
| 66 | - cve-update-db-native: avoid incomplete updates |
| 67 | - cve-update-db-native: show IP on failure |
| 68 | - dbus: Upgrade to 1.14.6 |
| 69 | - dev-manual: common-tasks.rst: add link to FOSDEM 2023 video |
| 70 | - dev-manual: fix old override syntax |
| 71 | - devshell: Do not add scripts/git-intercept to PATH |
| 72 | - devtool: fix devtool finish when gitmodules file is empty |
| 73 | - devtool: process local files only for the main branch |
| 74 | - dhcpcd: backport two patches to fix runtime error |
| 75 | - dhcpcd: fix dhcpcd start failure on qemuppc64 |
| 76 | - diffutils: Upgrade to 3.9 |
| 77 | - ffmpeg: fix configure failure on noexec /tmp host |
| 78 | - gdk-pixbuf: do not use tools from gdk-pixbuf-native when building tests |
| 79 | - git: Upgrade to 2.37.6 |
| 80 | - glslang: branch rename master -> main |
| 81 | - go: Upgrade to 1.19.4 |
| 82 | - gstreamer1.0 : Revert "disable flaky gstbin:test_watch_for_state_change test" and Fix race conditions in gstbin tests with upstream solution |
| 83 | - harfbuzz: remove bindir only if it exists |
| 84 | - httpserver: add error handler that write to the logger |
| 85 | - image.bbclass: print all QA functions exceptions |
| 86 | - kernel-fitimage: Adjust order of dtb/dtbo files |
| 87 | - kernel-fitimage: Allow user to select dtb when multiple dtb exists |
| 88 | - kernel-yocto: fix kernel-meta data detection |
| 89 | - kernel/linux-kernel-base: Fix kernel build artefact determinism issues |
| 90 | - lib/buildstats: handle tasks that never finished |
| 91 | - lib/oe/reproducible: Use git log without gpg signature |
| 92 | - libarchive: Upgrade to 3.6.2 |
| 93 | - libc-locale: Fix on target locale generation |
| 94 | - libgit2: Upgrade to 1.5.1 |
| 95 | - libjpeg-turbo: Upgrade to 2.1.5.1 |
| 96 | - libksba: Upgrade to 1.6.3 |
| 97 | - libpng: Enable NEON for aarch64 to enensure consistency with arm32. |
| 98 | - librsvg: Only enable the Vala bindings if GObject Introspection is enabled |
| 99 | - librsvg: enable vapi build |
| 100 | - libseccomp: fix for the ptest result format |
| 101 | - libseccomp: fix typo in DESCRIPTION |
| 102 | - libssh2: Clean up ptest patch/coverage |
| 103 | - libtirpc: Check if file exists before operating on it |
| 104 | - libusb1: Link with latomic only if compiler has no atomic builtins |
| 105 | - libusb1: Strip trailing whitespaces |
| 106 | - linux-firmware: add yamato fw files to qcom-adreno-a2xx package |
| 107 | - linux-firmware: properly set license for all Qualcomm firmware |
| 108 | - linux-firmware: Upgrade to 20230210 |
| 109 | - linux-yocto/5.15: fix perf build with clang |
| 110 | - linux-yocto/5.15: libbpf: Fix build warning on ref_ctr_off |
| 111 | - linux-yocto/5.15: ltp and squashfs fixes |
| 112 | - linux-yocto/5.15: powerpc: Fix reschedule bug in KUAP-unlocked user copy |
| 113 | - linux-yocto/5.15: Upgrade to v5.15.91 |
| 114 | - linux-yocto/5.19: fix perf build with clang |
| 115 | - linux-yocto/5.19: powerpc: Fix reschedule bug in KUAP-unlocked user copy |
| 116 | - lsof: fix old override syntax |
| 117 | - lttng-modules: Fix for 5.10.163 kernel version |
| 118 | - lttng-modules: fix for kernel 6.2+ |
| 119 | - lttng-modules: Upgrade to 2.13.8 |
| 120 | - lttng-tools: Upgrade to 2.13.9 |
| 121 | - make-mod-scripts: Ensure kernel build output is deterministic |
| 122 | - manuals: update patchwork instance URL |
| 123 | - mesa-gl: gallium is required when enabling x11 |
| 124 | - meta: remove True option to getVar and getVarFlag calls (again) |
| 125 | - migration-guides: add release-notes for 4.0.7 |
| 126 | - native: Drop special variable handling |
| 127 | - numactl: skip test case when target platform doesn't have 2 CPU node |
| 128 | - oeqa context.py: fix --target-ip comment to include ssh port number |
| 129 | - oeqa dump.py: add error counter and stop after 5 failures |
| 130 | - oeqa qemurunner.py: add timeout to QMP calls |
| 131 | - oeqa qemurunner.py: try to avoid reading one character at a time |
| 132 | - oeqa qemurunner: read more data at a time from serial |
| 133 | - oeqa ssh.py: add connection keep alive options to ssh client |
| 134 | - oeqa ssh.py: fix hangs in run() |
| 135 | - oeqa ssh.py: move output prints to new line |
| 136 | - oeqa/qemurunner: do not use Popen.poll() when terminating runqemu with a signal |
| 137 | - oeqa/rpm.py: Increase timeout and add debug output |
| 138 | - oeqa/selftest/debuginfod: improve testcase |
| 139 | - oeqa/selftest/locales: Add selftest for locale generation/presence |
| 140 | - oeqa/selftest/resulttooltests: fix minor typo |
| 141 | - openssl: Upgrade to 3.0.8 |
| 142 | - opkg: ensure opkg uses private gpg.conf when applying keys. |
| 143 | - pango: Upgrade to 1.50.12 |
| 144 | - perf: Enable debug/source packaging |
| 145 | - pkgconf: Upgrade to 1.9.4 |
| 146 | - poky.conf: Update SANITY_TESTED_DISTROS to match autobuilder |
| 147 | - poky.conf: bump version for 4.1.3 |
| 148 | - populate_sdk_ext.bbclass: Fix missing leading whitespace with ':append' |
| 149 | - profile-manual: update WireShark hyperlinks |
| 150 | - ptest-packagelists.inc: Fix missing leading whitespace with ':append' |
| 151 | - python3-pytest: depend on python3-tomli instead of python3-toml |
| 152 | - quilt: fix intermittent failure in faildiff.test |
| 153 | - quilt: use upstreamed faildiff.test fix |
| 154 | - recipe_sanity: fix old override syntax |
| 155 | - ref-manual: Fix invalid feature name |
| 156 | - ref-manual: update DEV_PKG_DEPENDENCY in variables |
| 157 | - ref-manual: variables.rst: fix broken hyperlink |
| 158 | - rm_work.bbclass: use HOSTTOOLS 'rm' binary exclusively |
| 159 | - runqemu: kill qemu if it hangs |
| 160 | - rust: Do not use default compiler flags defined in CC crate |
| 161 | - scons.bbclass: Make MAXLINELENGTH overridable |
| 162 | - scons: Pass MAXLINELENGTH to scons invocation |
| 163 | - sdkext/cases/devtool: pass a logger to HTTPService |
| 164 | - selftest/virgl: use pkg-config from the host |
| 165 | - spirv-headers/spirv-tools: set correct branch name |
| 166 | - sstate.bbclass: Fetch non-existing local .sig files if needed |
| 167 | - sstatesig: Improve output hash calculation |
| 168 | - sudo: Upgrade to 1.9.12p2 |
| 169 | - system-requirements.rst: Add Fedora 36, AlmaLinux 8.7 & 9.1, and OpenSUSE 15.4 to list of supported distros |
| 170 | - testimage: Fix error message to reflect new syntax |
| 171 | - tiff: Add packageconfig knob for webp |
| 172 | - toolchain-scripts: compatibility with unbound variable protection |
| 173 | - uninative: Upgrade to 3.8.1 to include libgcc |
| 174 | - update-alternatives: fix typos |
| 175 | - vim: Upgrade to 9.0.1293 |
| 176 | - vulkan-samples: branch rename master -> main |
| 177 | - wic: Fix usage of fstype=none in wic |
| 178 | - wireless-regdb: Upgrade to 2023.02.13 |
| 179 | - xserver-xorg: Upgrade to 21.1.7 |
| 180 | - xwayland: Upgrade to 22.1.8 |
| 181 | |
| 182 | |
| 183 | Known Issues in Yocto-4.1.3 |
| 184 | ~~~~~~~~~~~~~~~~~~~~~~~~~~~ |
| 185 | |
| 186 | - N/A |
| 187 | |
| 188 | |
| 189 | Contributors to Yocto-4.1.3 |
| 190 | ~~~~~~~~~~~~~~~~~~~~~~~~~~~ |
| 191 | |
| 192 | - Adrian Freihofer |
| 193 | - Alejandro Hernandez Samaniego |
| 194 | - Alex Kiernan |
| 195 | - Alexander Kanavin |
| 196 | - Alexis Lothoré |
| 197 | - Anton Antonov |
| 198 | - Antonin Godard |
| 199 | - Armin Kuster |
| 200 | - Arnout Vandecappelle |
| 201 | - Benoît Mauduit |
| 202 | - Bruce Ashfield |
| 203 | - Carlos Alberto Lopez Perez |
| 204 | - Changqing Li |
| 205 | - Charlie Johnston |
| 206 | - Chee Yang Lee |
| 207 | - Chen Qi |
| 208 | - Dmitry Baryshkov |
| 209 | - Enguerrand de Ribaucourt |
| 210 | - Etienne Cordonnier |
| 211 | - Fawzi KHABER |
| 212 | - Federico Pellegrin |
| 213 | - Frank de Brabander |
| 214 | - Harald Seiler |
| 215 | - He Zhe |
| 216 | - Jan Kircher |
| 217 | - Jermain Horsman |
| 218 | - Jose Quaresma |
| 219 | - Joshua Watt |
| 220 | - Kai Kang |
| 221 | - Khem Raj |
| 222 | - Lei Maohui |
| 223 | - Louis Rannou |
| 224 | - Luis |
| 225 | - Marek Vasut |
| 226 | - Markus Volk |
| 227 | - Marta Rybczynska |
| 228 | - Martin Jansa |
| 229 | - Mateusz Marciniec |
| 230 | - Mauro Queiros |
| 231 | - Michael Halstead |
| 232 | - Michael Opdenacker |
| 233 | - Mikko Rapeli |
| 234 | - Mingli Yu |
| 235 | - Narpat Mali |
| 236 | - Niko Mauno |
| 237 | - Pavel Zhukov |
| 238 | - Pawel Zalewski |
| 239 | - Peter Kjellerstedt |
| 240 | - Petr Kubizňák |
| 241 | - Quentin Schulz |
| 242 | - Randy MacLeod |
| 243 | - Richard Purdie |
| 244 | - Robert Joslyn |
| 245 | - Rodolfo Quesada Zumbado |
| 246 | - Ross Burton |
| 247 | - Sakib Sajal |
| 248 | - Sandeep Gundlupet Raju |
| 249 | - Saul Wold |
| 250 | - Siddharth Doshi |
| 251 | - Steve Sakoman |
| 252 | - Thomas Roos |
| 253 | - Tobias Hagelborn |
| 254 | - Ulrich Ölmann |
| 255 | - Vivek Kumbhar |
| 256 | - Wang Mingyu |
| 257 | - Xiangyu Chen |
| 258 | |
| 259 | |
| 260 | Repositories / Downloads for Yocto-4.1.3 |
| 261 | ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ |
| 262 | |
| 263 | poky |
| 264 | |
| 265 | - Repository Location: :yocto_git:`/poky` |
| 266 | - Branch: :yocto_git:`langdale </poky/log/?h=langdale>` |
| 267 | - Tag: :yocto_git:`yocto-4.1.3 </poky/log/?h=yocto-4.1.3>` |
| 268 | - Git Revision: :yocto_git:`91d0157d6daf4ea61d6b4e090c0b682d3f3ca60f </poky/commit/?id=91d0157d6daf4ea61d6b4e090c0b682d3f3ca60f>` |
| 269 | - Release Artefact: poky-91d0157d6daf4ea61d6b4e090c0b682d3f3ca60f |
| 270 | - sha: 94e4615eba651fe705436b29b854458be050cc39db936295f9d5eb7e85d3eff1 |
| 271 | - Download Locations: |
| 272 | http://downloads.yoctoproject.org/releases/yocto/yocto-4.1.3/poky-91d0157d6daf4ea61d6b4e090c0b682d3f3ca60f.tar.bz2 |
| 273 | http://mirrors.kernel.org/yocto/yocto/yocto-4.1.3/poky-91d0157d6daf4ea61d6b4e090c0b682d3f3ca60f.tar.bz2 |
| 274 | |
| 275 | openembedded-core |
| 276 | |
| 277 | - Repository Location: :oe_git:`/openembedded-core` |
| 278 | - Branch: :oe_git:`langdale </openembedded-core/log/?h=langdale>` |
| 279 | - Tag: :oe_git:`yocto-4.1.3 </openembedded-core/log/?h=yocto-4.1.3>` |
| 280 | - Git Revision: :oe_git:`b995ea45773211bd7bdd60eabcc9bbffda6beb5c </openembedded-core/commit/?id=b995ea45773211bd7bdd60eabcc9bbffda6beb5c>` |
| 281 | - Release Artefact: oecore-b995ea45773211bd7bdd60eabcc9bbffda6beb5c |
| 282 | - sha: 952e19361f205ee91b74e5caaa835d58fa6dd0d92ddaed50d4cd3f3fa56fab63 |
| 283 | - Download Locations: |
| 284 | http://downloads.yoctoproject.org/releases/yocto/yocto-4.1.3/oecore-b995ea45773211bd7bdd60eabcc9bbffda6beb5c.tar.bz2 |
| 285 | http://mirrors.kernel.org/yocto/yocto/yocto-4.1.3/oecore-b995ea45773211bd7bdd60eabcc9bbffda6beb5c.tar.bz2 |
| 286 | |
| 287 | meta-mingw |
| 288 | |
| 289 | - Repository Location: :yocto_git:`/meta-mingw` |
| 290 | - Branch: :yocto_git:`langdale </meta-mingw/log/?h=langdale>` |
| 291 | - Tag: :yocto_git:`yocto-4.1.3 </meta-mingw/log/?h=yocto-4.1.3>` |
| 292 | - Git Revision: :yocto_git:`b0067202db8573df3d23d199f82987cebe1bee2c </meta-mingw/commit/?id=b0067202db8573df3d23d199f82987cebe1bee2c>` |
| 293 | - Release Artefact: meta-mingw-b0067202db8573df3d23d199f82987cebe1bee2c |
| 294 | - sha: 704f2940322b81ce774e9cbd27c3cfa843111d497dc7b1eeaa39cd694d9a2366 |
| 295 | - Download Locations: |
| 296 | http://downloads.yoctoproject.org/releases/yocto/yocto-4.1.3/meta-mingw-b0067202db8573df3d23d199f82987cebe1bee2c.tar.bz2 |
| 297 | http://mirrors.kernel.org/yocto/yocto/yocto-4.1.3/meta-mingw-b0067202db8573df3d23d199f82987cebe1bee2c.tar.bz2 |
| 298 | |
| 299 | bitbake |
| 300 | |
| 301 | - Repository Location: :oe_git:`/bitbake` |
| 302 | - Branch: :oe_git:`2.2 </bitbake/log/?h=2.2>` |
| 303 | - Tag: :oe_git:`yocto-4.1.3 </bitbake/log/?h=yocto-4.1.3>` |
| 304 | - Git Revision: :oe_git:`592ee222a1c6da42925fb56801f226884b6724ec </bitbake/commit/?id=592ee222a1c6da42925fb56801f226884b6724ec>` |
| 305 | - Release Artefact: bitbake-592ee222a1c6da42925fb56801f226884b6724ec |
| 306 | - sha: 79c32f2ca66596132e32a45654ce0e9dd42b6b39186eff3540a9d6b499fe952c |
| 307 | - Download Locations: |
| 308 | http://downloads.yoctoproject.org/releases/yocto/yocto-4.1.3/bitbake-592ee222a1c6da42925fb56801f226884b6724ec.tar.bz2 |
| 309 | http://mirrors.kernel.org/yocto/yocto/yocto-4.1.3/bitbake-592ee222a1c6da42925fb56801f226884b6724ec.tar.bz2 |
| 310 | |
| 311 | yocto-docs |
| 312 | |
| 313 | - Repository Location: :yocto_git:`/yocto-docs` |
| 314 | - Branch: :yocto_git:`langdale </yocto-docs/log/?h=langdale>` |
| 315 | - Tag: :yocto_git:`yocto-4.1.3 </yocto-docs/log/?h=yocto-4.1.3>` |
| 316 | - Git Revision: :yocto_git:`3de2ad1f8ff87aeec30088779267880306a0f31a </yocto-docs/commit/?id=3de2ad1f8ff87aeec30088779267880306a0f31a>` |
| 317 | |