poky/recipes-support at 0ee1456ab2965b719b048d9052d2cfc657dd9d11 - poky

mirror of https://git.yoctoproject.org/poky synced 2026-05-17 11:27:55 +02:00

Files

ghassaneben 51fa770857 sqlite: fix CVE-2022-35737

Increase the size of loop variables in the printf() implementation to avoid integer overflow on multi-gigabyte string arguments. CVE-2022-35737.

This bug fix refers to: CVE-2022-35737 and it's a backport of a fix added in sqlite 3.39.2 (2022-07-21).

(From OE-Core rev: fdc82b2314b580c0135c16b7278ebf8786311dec)

Signed-off-by: Ghassane Ben El Aattar <ghassaneb.aattar@huawei.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>

2022-09-03 13:09:49 +01:00

apr

apr: remove obsolete support for renamed libtool

2021-12-12 18:10:22 +00:00

argp-standalone

meta/meta-selftest/meta-skeleton: Update LICENSE variable to use SPDX license identifiers

2022-02-20 16:45:25 +00:00

aspell

meta/meta-selftest/meta-skeleton: Update LICENSE variable to use SPDX license identifiers

2022-02-20 16:45:25 +00:00

atk

atk: upgrade 2.36.0 -> 2.38.0

2022-03-29 15:59:28 +01:00

attr

meta/meta-selftest/meta-skeleton: Update LICENSE variable to use SPDX license identifiers

2022-02-20 16:45:25 +00:00

bash-completion

meta/meta-selftest/meta-skeleton: Update LICENSE variable to use SPDX license identifiers

2022-02-20 16:45:25 +00:00

bmap-tools

meta: remove obsolete PIP_INSTALL_PACKAGE

2022-03-12 09:20:03 +00:00

boost

boost: fix install of fiber shared libraries

2022-08-23 15:22:52 +01:00

ca-certificates

meta/meta-selftest/meta-skeleton: Update LICENSE variable to use SPDX license identifiers

2022-02-20 16:45:25 +00:00

consolekit

meta/meta-selftest/meta-skeleton: Update LICENSE variable to use SPDX license identifiers

2022-02-20 16:45:25 +00:00

curl

curl: Fix multiple CVEs

2022-07-25 15:11:46 +01:00

db: remove obsolete support for renamed libtool

2021-12-12 18:10:22 +00:00

debianutils

meta/meta-selftest/meta-skeleton: Update LICENSE variable to use SPDX license identifiers

2022-02-20 16:45:25 +00:00

diffoscope

diffoscope: upgrade 207 -> 208

2022-03-29 15:59:28 +01:00

dos2unix

meta: Add explict branch to git SRC_URIs

2021-10-30 18:56:47 +01:00

enchant

meta/meta-selftest/meta-skeleton: Update LICENSE variable to use SPDX license identifiers

2022-02-20 16:45:25 +00:00

fribidi

fribidi: upgrade 1.0.11 -> 1.0.12

2022-05-20 10:08:06 +01:00

gdbm

meta/meta-selftest/meta-skeleton: Update LICENSE variable to use SPDX license identifiers

2022-02-20 16:45:25 +00:00

gmp

gmp: add missing COPYINGv3

2022-04-14 09:47:00 +01:00

gnome-desktop-testing

meta/meta-selftest/meta-skeleton: Update LICENSE variable to use SPDX license identifiers

2022-02-20 16:45:25 +00:00

gnupg

gnupg: upgrade to 2.3.7 to fix CVE-2022-34903

2022-08-01 16:27:29 +01:00

gnutls

gnutls: CVE-2022-2509 Double free during gnutls_pkcs7_verify

2022-08-23 15:22:52 +01:00

gpgme

gpgme: upgrade 1.17.0 -> 1.17.1

2022-03-10 13:07:37 +00:00

icu

icu: fix make_icudata dependencies

2022-01-26 06:27:00 +00:00

iso-codes

iso-codes: upgrade 4.10.0 -> 4.11.0

2022-08-28 07:51:29 +01:00

itstool

itstool: add missing COPYING.GPL3

2022-04-14 09:47:00 +01:00

libassuan

meta/meta-selftest/meta-skeleton: Update LICENSE variable to use SPDX license identifiers

2022-02-20 16:45:25 +00:00

libatomic-ops

meta/meta-selftest/meta-skeleton: Update LICENSE variable to use SPDX license identifiers

2022-02-20 16:45:25 +00:00

libbsd

libbsd: upgrade 0.11.3 -> 0.11.5

2022-02-01 07:31:17 +00:00

libcap

libcap: upgrade 2.64 -> 2.65

2022-08-28 07:51:29 +01:00

libcap-ng

meta/meta-selftest/meta-skeleton: Update LICENSE variable to use SPDX license identifiers

2022-02-20 16:45:25 +00:00

libcheck

meta/meta-selftest/meta-skeleton: Update LICENSE variable to use SPDX license identifiers

2022-02-20 16:45:25 +00:00

libcroco

meta/meta-selftest/meta-skeleton: Update LICENSE variable to use SPDX license identifiers

2022-02-20 16:45:25 +00:00

libdaemon

meta/meta-selftest/meta-skeleton: Update LICENSE variable to use SPDX license identifiers

2022-02-20 16:45:25 +00:00

libevdev

libevdev: upgrade 1.12.0 -> 1.12.1

2022-03-29 15:59:29 +01:00

libevent

libevent,btrfs-tools: fix Upstream-Status tag

2021-10-23 22:26:48 +01:00

libexif

meta/meta-selftest/meta-skeleton: Update LICENSE variable to use SPDX license identifiers

2022-02-20 16:45:25 +00:00

libffi

libffi: fix native build being not portable

2022-07-08 08:27:16 +01:00

libfm

meta/meta-selftest/meta-skeleton: Update LICENSE variable to use SPDX license identifiers

2022-02-20 16:45:25 +00:00

libgcrypt

meta/scripts: Automated conversion of OE renamed variables

2022-02-21 23:37:27 +00:00

libgit2

libgit2: upgrade 1.4.2 -> 1.4.3

2022-04-28 17:07:18 +01:00

libgpg-error

meta/meta-selftest/meta-skeleton: Update LICENSE variable to use SPDX license identifiers

2022-02-20 16:45:25 +00:00

libical

Revert "libical: Pass TOOLCHAIN_OPTIONS via CFLAGS"

2022-03-05 10:45:13 +00:00

libjitterentropy

libjitterentropy: upgrade 3.3.1 -> 3.4.0

2022-03-24 17:45:29 +00:00

libksba

meta/meta-selftest/meta-skeleton: Update LICENSE variable to use SPDX license identifiers

2022-02-20 16:45:25 +00:00

libmd

libmd: upgrade 1.0.3 -> 1.0.4

2021-10-23 17:42:26 +01:00

libmicrohttpd

meta/meta-selftest/meta-skeleton: Update LICENSE variable to use SPDX license identifiers

2022-02-20 16:45:25 +00:00

libmpc

meta/meta-selftest/meta-skeleton: Update LICENSE variable to use SPDX license identifiers

2022-02-20 16:45:25 +00:00

libnl

meta/meta-selftest/meta-skeleton: Update LICENSE variable to use SPDX license identifiers

2022-02-20 16:45:25 +00:00

libpcre

libpcre2: upgrade 10.39 -> 10.40

2022-06-07 11:53:26 +01:00

libproxy

meta/meta-selftest/meta-skeleton: Update LICENSE variable to use SPDX license identifiers

2022-02-20 16:45:25 +00:00

libpsl

libpsl: Add config knobs for runtime/builtin conversion choices

2021-04-20 13:56:48 +01:00

libseccomp

libseccomp: Correct LIC_FILES_CHKSUM

2022-06-11 10:06:13 +01:00

libsoup

libsoup: upgrade 3.0.6 -> 3.0.7

2022-07-16 06:52:45 +01:00

libssh2

libssh2: skip one of the ptests until openssh 8.8 compatibility is fixed

2021-10-23 17:42:26 +01:00

libunistring

meta/meta-selftest/meta-skeleton: Update LICENSE variable to use SPDX license identifiers

2022-02-20 16:45:25 +00:00

libunwind

libunwind: update 1.6.0 -> 1.6.2

2021-12-08 20:22:11 +00:00

liburcu

meta/meta-selftest/meta-skeleton: Update LICENSE variable to use SPDX license identifiers

2022-02-20 16:45:25 +00:00

libusb

libusb1: upgrade 1.0.25 -> 1.0.26

2022-04-28 17:07:18 +01:00

libxslt

libxslt: Mark CVE-2022-29824 as not applying

2022-06-07 11:53:26 +01:00

libyaml

Convert to new override syntax

2021-08-02 15:44:10 +01:00

lz4

meta/scripts: Automated conversion of OE renamed variables

2022-02-21 23:37:27 +00:00

lzo

lzo: Add further info to a patch and mark as Inactive-Upstream

2022-06-11 10:06:13 +01:00

lzop

meta/meta-selftest/meta-skeleton: Update LICENSE variable to use SPDX license identifiers

2022-02-20 16:45:25 +00:00

mpfr

meta/meta-selftest/meta-skeleton: Update LICENSE variable to use SPDX license identifiers

2022-02-20 16:45:25 +00:00

nettle

meta/meta-selftest/meta-skeleton: Update LICENSE variable to use SPDX license identifiers

2022-02-20 16:45:25 +00:00

nghttp2

nghttp2: upgrade 1.46.0 -> 1.47.0

2022-03-02 18:43:24 +00:00

npth

meta/meta-selftest/meta-skeleton: Update LICENSE variable to use SPDX license identifiers

2022-02-20 16:45:25 +00:00

nss-myhostname

meta/meta-selftest/meta-skeleton: Update LICENSE variable to use SPDX license identifiers

2022-02-20 16:45:25 +00:00

numactl

meta/meta-selftest/meta-skeleton: Update LICENSE variable to use SPDX license identifiers

2022-02-20 16:45:25 +00:00

p11-kit

p11-kit: update 0.24.0 -> 0.24.1

2022-01-20 11:57:29 +00:00

pinentry

meta/meta-selftest/meta-skeleton: Update LICENSE variable to use SPDX license identifiers

2022-02-20 16:45:25 +00:00

popt

popt: fix override syntax in RDEPENDS

2022-06-22 23:46:29 +01:00

ptest-runner

meta/meta-selftest/meta-skeleton: Update LICENSE variable to use SPDX license identifiers

2022-02-20 16:45:25 +00:00

re2c

re2c: upgrade 2.2 -> 3.0

2022-02-05 17:46:05 +00:00

rng-tools

rng-tools: enable macro JENT_CONF_ENABLE_INTERNAL_TIMER

2022-03-24 17:45:29 +00:00

serf

serf: mark upstream as inactive

2021-12-17 09:56:14 +00:00

shared-mime-info

meta/meta-selftest/meta-skeleton: Update LICENSE variable to use SPDX license identifiers

2022-02-20 16:45:25 +00:00

sqlite

sqlite: fix CVE-2022-35737

2022-09-03 13:09:49 +01:00

taglib

meta/meta-selftest/meta-skeleton: Update LICENSE variable to use SPDX license identifiers

2022-02-20 16:45:25 +00:00

user-creation

Convert to new override syntax

2021-08-02 15:44:10 +01:00

vim

vim: Upgrade 9.0.0115 -> 9.0.0242

2022-08-28 07:52:28 +01:00

vte

meta/meta-selftest/meta-skeleton: Update LICENSE variable to use SPDX license identifiers

2022-02-20 16:45:25 +00:00

xxhash

xxhash: fix build with gcc 12

2022-06-22 23:46:29 +01:00