poky/recipes-devtools at cad6e77ddf2430930b424a8cee2d8d1ae1264907 - poky

mirror of https://git.yoctoproject.org/poky synced 2026-03-19 13:49:41 +01:00

Files

Narpat Mali 79dd246cc5 python3-setuptools: fix for CVE-2022-40897

Python Packaging Authority (PyPA) setuptools before 65.5.1 allows remote attackers
to cause a denial of service via HTML in a crafted package or custom PackageIndex
page. There is a Regular Expression Denial of Service (ReDoS) in package_index.py.

CVE: CVE-2022-40897

Upstream-Status: Backport [43a9c9bfa6]

cherry-pick and modify from OE-Core rev: f574d8d57ff3fbc38e350e7a90913993081c4fdf

(From OE-Core rev: f2230ead6c145efc902336b2b9d5a4f0ecb749de)

Signed-off-by: Narpat Mali <narpat.mali@windriver.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
Signed-off-by: Chee Yang Lee <chee.yang.lee@intel.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>

2023-04-04 17:46:24 +01:00

apt

apt: re-enable version check

2023-03-21 14:26:31 +00:00

autoconf

autoconf: Update K & R stype functions

2022-09-05 08:53:22 +01:00

autoconf-archive

autoconf-archive: upgrade 2022.02.11 -> 2022.09.03

2022-09-17 07:47:07 +01:00

automake

automake: Drop redundant 'u' flag in ARFLAGS

2022-04-21 20:58:15 +01:00

binutils

binutils: Fix nativesdk ld.so search

2023-03-14 17:47:40 +00:00

bison

meta/meta-selftest/meta-skeleton: Update LICENSE variable to use SPDX license identifiers

2022-02-20 16:45:25 +00:00

bootchart2

bootchart2: Fix usrmerge support

2023-02-15 21:47:00 +00:00

btrfs-tools

btrfs-tools: upgrade 5.19 -> 5.19.1

2022-09-17 07:47:07 +01:00

cargo

rust: update from 1.62.1 to 1.63.0

2022-08-31 10:40:07 +01:00

ccache

meta: fix version checks in all github recipes using the github-releases class

2022-09-28 08:01:10 +01:00

cdrtools

meta/meta-selftest/meta-skeleton: Update LICENSE variable to use SPDX license identifiers

2022-02-20 16:45:25 +00:00

chrpath

meta/meta-selftest/meta-skeleton: Update LICENSE variable to use SPDX license identifiers

2022-02-20 16:45:25 +00:00

cmake

cmake: update 3.24.0 -> 3.24.2

2023-01-06 17:33:19 +00:00

createrepo-c

createrepo-c: Include missing rpm/rpmstring.h

2023-02-04 23:32:27 +00:00

dejagnu

meta/meta-selftest/meta-skeleton: Update LICENSE variable to use SPDX license identifiers

2022-02-20 16:45:25 +00:00

desktop-file-utils

meta/meta-selftest/meta-skeleton: Update LICENSE variable to use SPDX license identifiers

2022-02-20 16:45:25 +00:00

devel-config

Convert to new override syntax

2021-08-02 15:44:10 +01:00

diffstat

diffstat: remove unneeded patch

2021-11-25 21:55:10 +00:00

distcc

meta/meta-selftest/meta-skeleton: Update LICENSE variable to use SPDX license identifiers

2022-02-20 16:45:25 +00:00

dmidecode

dmidecode: upgrade 3.3 -> 3.4

2022-07-01 11:31:42 +01:00

dnf

dnf: add dummy packages for testing

2022-09-26 22:04:35 +01:00

docbook-xml

docbook-xml: patch is not upstreamable

2021-11-03 11:12:26 +00:00

dosfstools

meta: fix version checks in all github recipes using the github-releases class

2022-09-28 08:01:10 +01:00

dpkg

dpkg: upgrade 1.21.8 -> 1.21.9

2022-07-12 23:56:10 +01:00

dwarfsrcfiles

meta/meta-selftest/meta-skeleton: Update LICENSE variable to use SPDX license identifiers

2022-02-20 16:45:25 +00:00

e2fsprogs

e2fsprogs: add alternatives handling of lsattr as well

2022-06-14 10:04:02 +01:00

elfutils

elfutils: Enable ptests on musl targets

2022-09-17 07:47:07 +01:00

erofs-utils

erofs-utils: upgrade 1.4 -> 1.5

2022-06-17 17:57:44 +01:00

expect

expect: Fix implicit-function-declaration warnings

2022-08-17 19:57:32 +01:00

fdisk

gptfdisk: remove warning message from target system

2022-11-24 15:30:06 +00:00

file

file: upgrade 5.42 -> 5.43

2022-09-17 07:47:07 +01:00

flex

meta: fix version checks in all github recipes using the github-releases class

2022-09-28 08:01:10 +01:00

gcc

gcc-source: Ensure deploy_source_date_epoch sstate hash doesn't change

2022-11-24 15:30:06 +00:00

gdb

gdb: Upgrade to 12.1

2022-05-13 17:56:29 +01:00

git

git: ignore CVE-2023-22743

2023-03-25 23:00:14 +00:00

glide

go-helloworld/glide: Fix urls

2021-11-03 10:12:42 +00:00

gnu-config

gnu-config: update to latest version

2022-06-17 17:57:44 +01:00

go: upgrade to 1.19.7

2023-03-25 23:00:14 +00:00

help2man

help2man: upgrade 1.49.2 -> 1.49.3

2023-01-06 17:33:19 +00:00

i2c-tools

meta/meta-selftest/meta-skeleton: Update LICENSE variable to use SPDX license identifiers

2022-02-20 16:45:25 +00:00

icecc-create-env

meta, meta-selftest: Replace more non-SPDX license identifiers

2022-03-01 23:44:59 +00:00

icecc-toolchain

Convert to new override syntax

2021-08-02 15:44:10 +01:00

intltool

meta/meta-selftest/meta-skeleton: Update LICENSE variable to use SPDX license identifiers

2022-02-20 16:45:25 +00:00

jquery

meta/scripts: Automated conversion of OE renamed variables

2022-02-21 23:37:27 +00:00

json-c

json-c: Fix function prototypes

2022-08-16 14:57:58 +01:00

libcomps

libcomps: Fix callback function prototype for PyCOMPS_hash

2023-03-14 17:47:40 +00:00

libdnf

libdnf: update 0.69.0 -> 0.70.0

2023-03-21 14:26:31 +00:00

libedit

libedit: upgrade 20210714-3.1 -> 20210910-3.1

2021-10-23 17:42:25 +01:00

libmodulemd

libmodulemd: upgrade 2.13.0 -> 2.14.0

2022-02-10 10:32:08 +00:00

librepo

librepo: upgrade 1.14.4 -> 1.14.5

2022-09-17 07:47:08 +01:00

libtool

libtool: Upgrade 2.4.6 -> 2.4.7

2022-03-23 12:13:49 +00:00

llvm

mesa: do not rely on native llvm-config in target sysroot

2022-12-01 19:35:11 +00:00

log4cplus

log4cplus: upgrade 2.0.7 -> 2.0.8

2022-07-23 13:55:26 +01:00

lua

lua: Fix install conflict when enable multilib.

2023-03-14 17:47:40 +00:00

m4: Fix build on musl/ppc

2022-03-11 06:56:01 +00:00

make

meta/meta-selftest/meta-skeleton: Update LICENSE variable to use SPDX license identifiers

2022-02-20 16:45:25 +00:00

makedevs

makedevs: Don't use COPYING.patch just to add license file into ${S}

2022-05-27 23:50:48 +01:00

meson

meson: remove obsolete RPATH stripping patch

2023-03-21 14:26:31 +00:00

mmc

mmc-utils: upgrade to latest revision

2022-07-23 13:55:26 +01:00

mtd

mtd-utils: upgrade 2.1.4 -> 2.1.5

2022-12-01 19:35:10 +00:00

mtools

mtools: upgrade 4.0.40 -> 4.0.41

2022-11-04 23:31:48 +00:00

nasm

Convert to new override syntax

2021-08-02 15:44:10 +01:00

ninja

ninja: upgrade 1.11.0 -> 1.11.1

2022-09-17 07:47:07 +01:00

opkg

opkg: ensure opkg uses private gpg.conf when applying keys.

2023-01-26 23:39:06 +00:00

opkg-utils

opkg-utils: use a git clone, not a dynamic snapshot

2022-10-25 13:42:03 +01:00

orc

Convert to new override syntax

2021-08-02 15:44:10 +01:00

patch

meta/meta-selftest/meta-skeleton: Update LICENSE variable to use SPDX license identifiers

2022-02-20 16:45:25 +00:00

patchelf

patchelf: replace a rejected patch with an equivalent uninative.bbclass tweak

2022-08-14 08:13:32 +01:00

perl

perl: run builds from a pristine source tree

2022-09-01 10:07:02 +01:00

perl-cross

meta: fix version checks in all github recipes using the github-releases class

2022-09-28 08:01:10 +01:00

pkgconf

pkgconf: upgrade 1.9.3 -> 1.9.4

2023-02-24 16:41:51 +00:00

pkgconfig

meta/meta-selftest/meta-skeleton: Update LICENSE variable to use SPDX license identifiers

2022-02-20 16:45:25 +00:00

pseudo

pseudo: Update to include recent upstream minor fixes

2022-08-31 12:17:45 +01:00

python

python3-setuptools: fix for CVE-2022-40897

2023-04-04 17:46:24 +01:00

qemu

qemu: Fix CVE-2022-4144

2023-03-14 17:47:40 +00:00

quilt

quilt: use upstreamed faildiff.test fix

2023-02-04 23:32:27 +00:00

repo

repo: upgrade 2.29.1 -> 2.29.2

2022-09-17 07:47:08 +01:00

rpm

rpm: Fix hdr_hash function prototype

2023-03-14 17:47:40 +00:00

rsync

rsync: Turn on -pedantic-errors at the end of 'configure'

2022-09-01 10:14:01 +01:00

ruby

ruby: update 3.1.2 -> 3.1.3

2023-01-06 17:33:19 +00:00

run-postinsts

systemd: '${systemd_unitdir}/system' => '${systemd_system_unitdir}'

2021-09-07 21:54:11 +01:00

rust

meta: remove True option to getVar and getVarFlag calls (again)

2023-02-15 21:47:00 +00:00

squashfs-tools

squashfs-tools: build with lzo support

2022-09-05 16:49:01 +01:00

strace

strace: upgrade 5.18 -> 5.19

2022-08-21 22:51:42 +01:00

subversion

subversion: upgrade to 1.14.2

2022-04-26 18:25:08 +01:00

swig

meta/meta-selftest/meta-skeleton: Update LICENSE variable to use SPDX license identifiers

2022-02-20 16:45:25 +00:00

syslinux

syslinux: mark all pending patches as Inactive-Upstream

2022-09-02 15:58:25 +01:00

systemd-bootchart

meta/meta-selftest/meta-skeleton: Update LICENSE variable to use SPDX license identifiers

2022-02-20 16:45:25 +00:00

tcf-agent

tcf-agent: cleanup patches

2021-12-08 20:22:10 +00:00

tcltk

tcl: correct patch status

2022-11-24 15:30:06 +00:00

unfs3

unfs3: add missing Upstream-Status tag

2021-11-21 11:05:02 +00:00

unifdef

meta/recipes-devtools: Add HOMEPAGE / DESCRIPTION

2021-02-26 15:21:21 +00:00

vala

vala: Fix install conflict when enable multilib.

2023-03-14 17:47:40 +00:00

valgrind

valgrind: skip the boost_thread test on arm

2023-01-06 17:33:19 +00:00

xmlto

xmlto: remove redundant patches

2022-09-08 14:59:39 +01:00