| Patrick Williams | 73bd93f | 2024-02-20 08:07:48 -0600 | [diff] [blame] | 1 | .. SPDX-License-Identifier: CC-BY-SA-2.0-UK |
| 2 | |
| 3 | Release notes for Yocto-4.0.16 (Kirkstone) |
| 4 | ------------------------------------------ |
| 5 | |
| 6 | Security Fixes in Yocto-4.0.16 |
| 7 | ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ |
| 8 | |
| 9 | - cpio: Fix :cve_mitre:`2023-7207` |
| 10 | - curl: Revert "curl: Backport fix CVE-2023-32001" |
| 11 | - curl: Fix :cve:`2023-46218` |
| 12 | - dropbear:Fix :cve:`2023-48795` |
| 13 | - ffmpeg: Fix :cve:`2022-3964` and :cve:`2022-3965` |
| 14 | - ghostscript: Fix :cve:`2023-46751` |
| 15 | - gnutls: Fix :cve:`2024-0553` and :cve:`2024-0567` |
| 16 | - go: Fix :cve:`2023-39326` |
| 17 | - openssh: Fix :cve:`2023-48795`, :cve:`2023-51384` and :cve:`2023-51385` |
| 18 | - openssl: Fix :cve:`2023-6129` and :cve_mitre:`2023-6237` |
| 19 | - pam: Fix :cve_mitre:`2024-22365` |
| 20 | - perl: Fix :cve:`2023-47038` |
| 21 | - qemu: Fix :cve:`2023-5088` |
| 22 | - sqlite3: Fix :cve:`2023-7104` |
| 23 | - systemd: Fix :cve:`2023-7008` |
| 24 | - tiff: Fix :cve:`2023-6228` |
| 25 | - xserver-xorg: Fix :cve:`2023-6377`, :cve:`2023-6478`, :cve:`2023-6816`, :cve_mitre:`2024-0229`, :cve:`2024-0408`, :cve:`2024-0409`, :cve_mitre:`2024-21885` and :cve_mitre:`2024-21886` |
| 26 | - zlib: Ignore :cve:`2023-6992` |
| 27 | |
| 28 | |
| 29 | Fixes in Yocto-4.0.16 |
| 30 | ~~~~~~~~~~~~~~~~~~~~~ |
| 31 | |
| 32 | - bitbake: asyncrpc: Add context manager API |
| 33 | - bitbake: data: Add missing dependency handling of remove operator |
| 34 | - bitbake: lib/bb: Add workaround for libgcc issues with python 3.8 and 3.9 |
| 35 | - bitbake: toastergui: verify that an existing layer path is given |
| 36 | - build-appliance-image: Update to kirkstone head revision |
| 37 | - contributor-guide: add License-Update tag |
| 38 | - contributor-guide: fix command option |
| 39 | - contributor-guide: use "apt" instead of "aptitude" |
| 40 | - cpio: upgrade to 2.14 |
| 41 | - cve-update-nvd2-native: faster requests with API keys |
| 42 | - cve-update-nvd2-native: increase the delay between subsequent request failures |
| 43 | - cve-update-nvd2-native: make number of fetch attemtps configurable |
| 44 | - cve-update-nvd2-native: remove unused variable CVE_SOCKET_TIMEOUT |
| 45 | - dev-manual: Discourage the use of SRC_URI[md5sum] |
| 46 | - dev-manual: layers: update link to YP Compatible form |
| 47 | - dev-manual: runtime-testing: fix test module name |
| 48 | - dev-manual: start.rst: update use of Download page |
| 49 | - docs:what-i-wish-id-known.rst: fix URL |
| 50 | - docs: document VSCode extension |
| 51 | - docs:brief-yoctoprojectqs:index.rst: align variable order with default local.conf |
| 52 | - docs:migration-guides: add release notes for 4.0.15 |
| 53 | - docs:migration-guides: release 3.5 is actually 4.0 |
| 54 | - elfutils: Disable stringop-overflow warning for build host |
| 55 | - externalsrc: Ensure :term:`SRCREV` is processed before accessing :term:`SRC_URI` |
| 56 | - linux-firmware: upgrade to 20231030 |
| 57 | - manuals: Add :term:`CONVERSION_CMD` definition |
| 58 | - manuals: Add :term:`UBOOT_BINARY`, extend :term:`UBOOT_CONFIG` |
| 59 | - perl: upgrade to 5.34.3 |
| 60 | - poky.conf: bump version for 4.0.16 |
| 61 | - pybootchartgui: fix 2 SyntaxWarnings |
| 62 | - python3-ptest: skip test_storlines |
| 63 | - ref-manual: Fix reference to MIRRORS/PREMIRRORS defaults |
| 64 | - ref-manual: classes: remove insserv bbclass |
| 65 | - ref-manual: releases.svg: update nanbield release status |
| 66 | - ref-manual: resources: sync with master branch |
| 67 | - ref-manual: update tested and supported distros |
| 68 | - test-manual: add links to python unittest |
| 69 | - test-manual: add or improve hyperlinks |
| 70 | - test-manual: explicit or fix file paths |
| 71 | - test-manual: resource updates |
| 72 | - test-manual: text and formatting fixes |
| 73 | - test-manual: use working example |
| 74 | - testimage: Exclude wtmp from target-dumper commands |
| 75 | - testimage: drop target_dumper, host_dumper, and monitor_dumper |
| 76 | - tzdata: Upgrade to 2023d |
| 77 | |
| 78 | |
| 79 | Known Issues in Yocto-4.0.16 |
| 80 | ~~~~~~~~~~~~~~~~~~~~~~~~~~~~ |
| 81 | |
| 82 | - N/A |
| 83 | |
| 84 | |
| 85 | Contributors to Yocto-4.0.16 |
| 86 | ~~~~~~~~~~~~~~~~~~~~~~~~~~~~ |
| 87 | |
| 88 | - Aatir Manzur |
| 89 | - Archana Polampalli |
| 90 | - Dhairya Nagodra |
| 91 | - Dmitry Baryshkov |
| 92 | - Enguerrand de Ribaucourt |
| 93 | - Hitendra Prajapati |
| 94 | - Insu Park |
| 95 | - Joshua Watt |
| 96 | - Justin Bronder |
| 97 | - Jörg Sommer |
| 98 | - Khem Raj |
| 99 | - Lee Chee Yang |
| 100 | - mark.yang |
| 101 | - Marta Rybczynska |
| 102 | - Martin Jansa |
| 103 | - Maxin B. John |
| 104 | - Michael Opdenacker |
| 105 | - Paul Barker |
| 106 | - Peter Kjellerstedt |
| 107 | - Peter Marko |
| 108 | - Poonam Jadhav |
| 109 | - Richard Purdie |
| 110 | - Shubham Kulkarni |
| 111 | - Simone Weiß |
| 112 | - Soumya Sambu |
| 113 | - Sourav Pramanik |
| 114 | - Steve Sakoman |
| 115 | - Trevor Gamblin |
| 116 | - Vijay Anusuri |
| 117 | - Vivek Kumbhar |
| 118 | - Yoann Congal |
| 119 | - Yogita Urade |
| 120 | |
| 121 | |
| 122 | Repositories / Downloads for Yocto-4.0.16 |
| 123 | ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ |
| 124 | |
| 125 | poky |
| 126 | |
| 127 | - Repository Location: :yocto_git:`/poky` |
| 128 | - Branch: :yocto_git:`kirkstone </poky/log/?h=kirkstone>` |
| 129 | - Tag: :yocto_git:`yocto-4.0.16 </poky/log/?h=yocto-4.0.16>` |
| 130 | - Git Revision: :yocto_git:`54af8c5e80ebf63707ef4e51cc9d374f716da603 </poky/commit/?id=54af8c5e80ebf63707ef4e51cc9d374f716da603>` |
| 131 | - Release Artefact: poky-54af8c5e80ebf63707ef4e51cc9d374f716da603 |
| 132 | - sha: a53ec3a661cf56ca40c0fbf1500288c2c20abe94896d66a572bc5ccf5d92e9d6 |
| 133 | - Download Locations: |
| 134 | http://downloads.yoctoproject.org/releases/yocto/yocto-4.0.16/poky-54af8c5e80ebf63707ef4e51cc9d374f716da603.tar.bz2 |
| 135 | http://mirrors.kernel.org/yocto/yocto/yocto-4.0.16/poky-54af8c5e80ebf63707ef4e51cc9d374f716da603.tar.bz2 |
| 136 | |
| 137 | openembedded-core |
| 138 | |
| 139 | - Repository Location: :oe_git:`/openembedded-core` |
| 140 | - Branch: :oe_git:`kirkstone </openembedded-core/log/?h=kirkstone>` |
| 141 | - Tag: :oe_git:`yocto-4.0.16 </openembedded-core/log/?h=yocto-4.0.16>` |
| 142 | - Git Revision: :oe_git:`a744a897f0ea7d34c31c024c13031221f9a85f24 </openembedded-core/commit/?id=a744a897f0ea7d34c31c024c13031221f9a85f24>` |
| 143 | - Release Artefact: oecore-a744a897f0ea7d34c31c024c13031221f9a85f24 |
| 144 | - sha: 8c2bc9487597b0caa9f5a1d72b18cfcd1ddc7e6d91f0f051313563d6af95aeec |
| 145 | - Download Locations: |
| 146 | http://downloads.yoctoproject.org/releases/yocto/yocto-4.0.16/oecore-a744a897f0ea7d34c31c024c13031221f9a85f24.tar.bz2 |
| 147 | http://mirrors.kernel.org/yocto/yocto/yocto-4.0.16/oecore-a744a897f0ea7d34c31c024c13031221f9a85f24.tar.bz2 |
| 148 | |
| 149 | meta-mingw |
| 150 | |
| 151 | - Repository Location: :yocto_git:`/meta-mingw` |
| 152 | - Branch: :yocto_git:`kirkstone </meta-mingw/log/?h=kirkstone>` |
| 153 | - Tag: :yocto_git:`yocto-4.0.16 </meta-mingw/log/?h=yocto-4.0.16>` |
| 154 | - Git Revision: :yocto_git:`f6b38ce3c90e1600d41c2ebb41e152936a0357d7 </meta-mingw/commit/?id=f6b38ce3c90e1600d41c2ebb41e152936a0357d7>` |
| 155 | - Release Artefact: meta-mingw-f6b38ce3c90e1600d41c2ebb41e152936a0357d7 |
| 156 | - sha: 7d57167c19077f4ab95623d55a24c2267a3a3fb5ed83688659b4c03586373b25 |
| 157 | - Download Locations: |
| 158 | http://downloads.yoctoproject.org/releases/yocto/yocto-4.0.16/meta-mingw-f6b38ce3c90e1600d41c2ebb41e152936a0357d7.tar.bz2 |
| 159 | http://mirrors.kernel.org/yocto/yocto/yocto-4.0.16/meta-mingw-f6b38ce3c90e1600d41c2ebb41e152936a0357d7.tar.bz2 |
| 160 | |
| 161 | meta-gplv2 |
| 162 | |
| 163 | - Repository Location: :yocto_git:`/meta-gplv2` |
| 164 | - Branch: :yocto_git:`kirkstone </meta-gplv2/log/?h=kirkstone>` |
| 165 | - Tag: :yocto_git:`yocto-4.0.16 </meta-gplv2/log/?h=yocto-4.0.16>` |
| 166 | - Git Revision: :yocto_git:`d2f8b5cdb285b72a4ed93450f6703ca27aa42e8a </meta-gplv2/commit/?id=d2f8b5cdb285b72a4ed93450f6703ca27aa42e8a>` |
| 167 | - Release Artefact: meta-gplv2-d2f8b5cdb285b72a4ed93450f6703ca27aa42e8a |
| 168 | - sha: c386f59f8a672747dc3d0be1d4234b6039273d0e57933eb87caa20f56b9cca6d |
| 169 | - Download Locations: |
| 170 | http://downloads.yoctoproject.org/releases/yocto/yocto-4.0.16/meta-gplv2-d2f8b5cdb285b72a4ed93450f6703ca27aa42e8a.tar.bz2 |
| 171 | http://mirrors.kernel.org/yocto/yocto/yocto-4.0.16/meta-gplv2-d2f8b5cdb285b72a4ed93450f6703ca27aa42e8a.tar.bz2 |
| 172 | |
| 173 | bitbake |
| 174 | |
| 175 | - Repository Location: :oe_git:`/bitbake` |
| 176 | - Branch: :oe_git:`2.0 </bitbake/log/?h=2.0>` |
| 177 | - Tag: :oe_git:`yocto-4.0.16 </bitbake/log/?h=yocto-4.0.16>` |
| 178 | - Git Revision: :oe_git:`ee090484cc25d760b8c20f18add17b5eff485b40 </bitbake/commit/?id=ee090484cc25d760b8c20f18add17b5eff485b40>` |
| 179 | - Release Artefact: bitbake-ee090484cc25d760b8c20f18add17b5eff485b40 |
| 180 | - sha: 479e3a57ae9fbc2aa95292a7554caeef113bbfb28c226ed19547b8dde1c95314 |
| 181 | - Download Locations: |
| 182 | http://downloads.yoctoproject.org/releases/yocto/yocto-4.0.16/bitbake-ee090484cc25d760b8c20f18add17b5eff485b40.tar.bz2 |
| 183 | http://mirrors.kernel.org/yocto/yocto/yocto-4.0.16/bitbake-ee090484cc25d760b8c20f18add17b5eff485b40.tar.bz2 |
| 184 | |
| 185 | yocto-docs |
| 186 | |
| 187 | - Repository Location: :yocto_git:`/yocto-docs` |
| 188 | - Branch: :yocto_git:`kirkstone </yocto-docs/log/?h=kirkstone>` |
| 189 | - Tag: :yocto_git:`yocto-4.0.16 </yocto-docs/log/?h=yocto-4.0.16>` |
| 190 | - Git Revision: :yocto_git:`aba67b58711019a6ba439b2b77337f813ed799ac </yocto-docs/commit/?id=aba67b58711019a6ba439b2b77337f813ed799ac>` |
| 191 | |