mirrors/poky
1
0
Fork 0
mirror of https://git.yoctoproject.org/poky synced 2026-05-17 20:27:54 +02:00
Code Issues Packages Projects Releases Wiki Activity
Files
82ee4aeb28c080736e9bd46a6f0e00a8df49d02c
poky/meta/recipes-core
History
Hongxu Jia c169e5d26a ovmf: fix CVE-2024-38797 
According to [1]:

EDK2 contains a vulnerability in the HashPeImageByType(). A user may cause a read out of
bounds when a corrupted data pointer and length are sent via an adjecent network.
A successful exploit of this vulnerability may lead to a loss of Integrity and/or
Availability.

Backport fixes from upstream edk2 [2][3]

[1] https://nvd.nist.gov/vuln/detail/CVE-2024-38797
[2] https://github.com/tianocore/edk2/security/advisories/GHSA-4wjw-6xmf-44xf
[3] https://github.com/tianocore/edk2/pull/10928

(From OE-Core rev: a94550098d821e0055020a7d866648a761efcade)

Signed-off-by: Hongxu Jia <hongxu.jia@windriver.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
2025-06-16 17:57:29 +01:00
..
base-files
base-files: add nsswitch-resolved.conf and remove nsswitch patch
2025-05-27 09:01:17 +01:00
base-passwd
base-passwd: upgrade 3.6.6 -> 3.6.7
2025-04-03 11:06:19 +01:00
busybox
busybox: Do not define global 'const' with clang
2025-05-29 15:14:37 +01:00
coreutils
Revert "coreutils: split out coreutils-getlimits"
2025-06-12 11:03:43 +01:00
dbus
dbus: Remove 'dbus-x11' from RPROVIDES
2025-04-29 09:55:32 +01:00
dbus-wait
dbus-wait: bump srcrev
2024-01-07 12:24:57 +00:00
dropbear
dropbear: upgrade 2024.86 -> dropbear_2025.88
2025-05-15 10:55:26 +01:00
ell
ell: upgrade 0.75 -> 0.76
2025-04-10 11:05:34 +01:00
expat
expat: Upgrade 2.7.0 -> 2.7.1
2025-03-28 11:19:40 +00:00
fts
fts: Fix typo in summary
2023-04-27 14:41:31 +01:00
gettext
recipes/*: remove obsolete use of acpaths
2025-02-27 10:55:16 +00:00
glib-2.0
glib-2.0: update 2.84.1 -> 2.84.2
2025-05-27 09:01:17 +01:00
glib-networking
glib-networking: upgrade 2.78.1 -> 2.80.0
2024-07-26 12:28:42 +01:00
glibc
glibc: Always use GCC toolchain
2025-05-22 14:36:49 +01:00
ifupdown
ifupdown: mark defn2-c-man-don-t-rely-on-dpkg-architecture-to-set-a.patch as Inappropriate
2025-04-10 11:05:34 +01:00
images
core-image-ptest: increase the size of the util-linux image
2025-06-02 22:17:24 +01:00
init-ifupdown
recipes: Switch away from S = WORKDIR
2024-05-21 12:08:04 +01:00
initrdscripts
initramfs-framework: remove hard dependency with busybox
2025-04-11 11:49:59 +01:00
initscripts
initscripts: add function log_success_msg/log_failure_msg/log_warning_msg
2025-04-08 15:49:17 +01:00
kbd
kbd: upgrade 2.7.1 -> 2.8.0
2025-06-05 11:02:22 +01:00
libcgroup
libcgroup: upgrade 3.1.0 -> 3.2.0
2025-05-13 10:29:21 +01:00
libxcrypt
libxcrypt-compat,libxcrypt: upgrade 4.4.37 -> 4.4.38
2025-02-18 11:56:04 +00:00
libxml
libxml2: revert commit breaking patchs in cmake file
2025-05-27 09:01:17 +01:00
meta
buildtools-tarball: fix default_cases assignment
2025-05-12 22:01:55 +01:00
musl
musl-locale: Recommend musl-locale in every locale-base package
2025-06-05 11:02:23 +01:00
ncurses
ncurses: Pin to C17 standard
2025-03-19 09:48:14 +00:00
netbase
netbase: upgrade 6.4 -> 6.5
2025-03-19 11:49:45 +00:00
newlib
newlib: Upgrade 4.4.0 -> 4.5.0
2025-05-22 14:36:49 +01:00
os-release
meta/meta-selftest: Fix variable assignment whitespace
2025-02-01 13:42:34 +00:00
ovmf
ovmf: fix CVE-2024-38797
2025-06-16 17:57:29 +01:00
packagegroups
meta/meta-selftest: Fix variable assignment whitespace
2025-02-01 13:42:34 +00:00
picolibc
meta/meta-selftest: Fix variable assignment whitespace
2025-02-01 13:42:34 +00:00
psplash
psplash: update to latest rev
2025-05-27 09:01:16 +01:00
readline
readline: enable HOME, END, INSERT, and DELETE key bindings in inputrc
2025-05-29 15:14:37 +01:00
seatd
seatd: fix packaging error with systemd DISTRO_FEATURES
2025-06-12 11:03:43 +01:00
sysfsutils
sysfsutils: fix my_strncat function
2025-06-12 14:22:59 +01:00
systemd
systemd-boot: Pin to use gcc toolchain on arm
2025-05-29 15:14:37 +01:00
sysvinit
sysvinit: upgrade 3.13 -> 3.14
2025-03-17 22:38:32 +00:00
ttyrun
ttyrun: upgrade 2.36.0 -> 2.37.0
2025-03-17 22:38:32 +00:00
udev
classes/recipes: remove unnecessary qemu inherit and use qemuwrapper-cross
2025-04-23 09:47:42 +01:00
update-rc.d
update-rc.d: add +git to PV
2024-04-23 13:40:24 +01:00
util-linux
util-linux: Improve the package licenses
2025-06-12 11:03:43 +01:00
volatile-binds
volatile-binds: mount-copybind: fix typo
2024-10-11 12:17:03 +01:00
zlib
zlib: Enable PIE for native builds
2024-08-29 21:58:19 +01:00