.. SPDX-License-Identifier: CC-BY-SA-2.0-UK Release notes for Yocto-4.0.16 (Kirkstone) ------------------------------------------ Security Fixes in Yocto-4.0.16 ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ - cpio: Fix :cve_mitre:`2023-7207` - curl: Revert "curl: Backport fix CVE-2023-32001" - curl: Fix :cve_nist:`2023-46218` - dropbear:Fix :cve_nist:`2023-48795` - ffmpeg: Fix :cve_nist:`2022-3964` and :cve_nist:`2022-3965` - ghostscript: Fix :cve_nist:`2023-46751` - gnutls: Fix :cve_nist:`2024-0553` and :cve_nist:`2024-0567` - go: Fix :cve_nist:`2023-39326` - openssh: Fix :cve_nist:`2023-48795`, :cve_nist:`2023-51384` and :cve_nist:`2023-51385` - openssl: Fix :cve_nist:`2023-6129` and :cve_mitre:`2023-6237` - pam: Fix :cve_mitre:`2024-22365` - perl: Fix :cve_nist:`2023-47038` - qemu: Fix :cve_nist:`2023-5088` - sqlite3: Fix :cve_nist:`2023-7104` - systemd: Fix :cve_nist:`2023-7008` - tiff: Fix :cve_nist:`2023-6228` - xserver-xorg: Fix :cve_nist:`2023-6377`, :cve_nist:`2023-6478`, :cve_nist:`2023-6816`, :cve_mitre:`2024-0229`, :cve_nist:`2024-0408`, :cve_nist:`2024-0409`, :cve_mitre:`2024-21885` and :cve_mitre:`2024-21886` - zlib: Ignore :cve_nist:`2023-6992` Fixes in Yocto-4.0.16 ~~~~~~~~~~~~~~~~~~~~~ - bitbake: asyncrpc: Add context manager API - bitbake: data: Add missing dependency handling of remove operator - bitbake: lib/bb: Add workaround for libgcc issues with python 3.8 and 3.9 - bitbake: toastergui: verify that an existing layer path is given - build-appliance-image: Update to kirkstone head revision - contributor-guide: add License-Update tag - contributor-guide: fix command option - contributor-guide: use "apt" instead of "aptitude" - cpio: upgrade to 2.14 - cve-update-nvd2-native: faster requests with API keys - cve-update-nvd2-native: increase the delay between subsequent request failures - cve-update-nvd2-native: make number of fetch attemtps configurable - cve-update-nvd2-native: remove unused variable CVE_SOCKET_TIMEOUT - dev-manual: Discourage the use of SRC_URI[md5sum] - dev-manual: layers: update link to YP Compatible form - dev-manual: runtime-testing: fix test module name - dev-manual: start.rst: update use of Download page - docs:what-i-wish-id-known.rst: fix URL - docs: document VSCode extension - docs:brief-yoctoprojectqs:index.rst: align variable order with default local.conf - docs:migration-guides: add release notes for 4.0.15 - docs:migration-guides: release 3.5 is actually 4.0 - elfutils: Disable stringop-overflow warning for build host - externalsrc: Ensure :term:`SRCREV` is processed before accessing :term:`SRC_URI` - linux-firmware: upgrade to 20231030 - manuals: Add :term:`CONVERSION_CMD` definition - manuals: Add :term:`UBOOT_BINARY`, extend :term:`UBOOT_CONFIG` - perl: upgrade to 5.34.3 - poky.conf: bump version for 4.0.16 - pybootchartgui: fix 2 SyntaxWarnings - python3-ptest: skip test_storlines - ref-manual: Fix reference to MIRRORS/PREMIRRORS defaults - ref-manual: classes: remove insserv bbclass - ref-manual: releases.svg: update nanbield release status - ref-manual: resources: sync with master branch - ref-manual: update tested and supported distros - test-manual: add links to python unittest - test-manual: add or improve hyperlinks - test-manual: explicit or fix file paths - test-manual: resource updates - test-manual: text and formatting fixes - test-manual: use working example - testimage: Exclude wtmp from target-dumper commands - testimage: drop target_dumper, host_dumper, and monitor_dumper - tzdata: Upgrade to 2023d Known Issues in Yocto-4.0.16 ~~~~~~~~~~~~~~~~~~~~~~~~~~~~ - N/A Contributors to Yocto-4.0.16 ~~~~~~~~~~~~~~~~~~~~~~~~~~~~ - Aatir Manzur - Archana Polampalli - Dhairya Nagodra - Dmitry Baryshkov - Enguerrand de Ribaucourt - Hitendra Prajapati - Insu Park - Joshua Watt - Justin Bronder - Jörg Sommer - Khem Raj - Lee Chee Yang - mark.yang - Marta Rybczynska - Martin Jansa - Maxin B. John - Michael Opdenacker - Paul Barker - Peter Kjellerstedt - Peter Marko - Poonam Jadhav - Richard Purdie - Shubham Kulkarni - Simone Weiß - Soumya Sambu - Sourav Pramanik - Steve Sakoman - Trevor Gamblin - Vijay Anusuri - Vivek Kumbhar - Yoann Congal - Yogita Urade Repositories / Downloads for Yocto-4.0.16 ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ poky - Repository Location: :yocto_git:`/poky` - Branch: :yocto_git:`kirkstone ` - Tag: :yocto_git:`yocto-4.0.16 ` - Git Revision: :yocto_git:`54af8c5e80ebf63707ef4e51cc9d374f716da603 ` - Release Artefact: poky-54af8c5e80ebf63707ef4e51cc9d374f716da603 - sha: a53ec3a661cf56ca40c0fbf1500288c2c20abe94896d66a572bc5ccf5d92e9d6 - Download Locations: http://downloads.yoctoproject.org/releases/yocto/yocto-4.0.16/poky-54af8c5e80ebf63707ef4e51cc9d374f716da603.tar.bz2 http://mirrors.kernel.org/yocto/yocto/yocto-4.0.16/poky-54af8c5e80ebf63707ef4e51cc9d374f716da603.tar.bz2 openembedded-core - Repository Location: :oe_git:`/openembedded-core` - Branch: :oe_git:`kirkstone ` - Tag: :oe_git:`yocto-4.0.16 ` - Git Revision: :oe_git:`a744a897f0ea7d34c31c024c13031221f9a85f24 ` - Release Artefact: oecore-a744a897f0ea7d34c31c024c13031221f9a85f24 - sha: 8c2bc9487597b0caa9f5a1d72b18cfcd1ddc7e6d91f0f051313563d6af95aeec - Download Locations: http://downloads.yoctoproject.org/releases/yocto/yocto-4.0.16/oecore-a744a897f0ea7d34c31c024c13031221f9a85f24.tar.bz2 http://mirrors.kernel.org/yocto/yocto/yocto-4.0.16/oecore-a744a897f0ea7d34c31c024c13031221f9a85f24.tar.bz2 meta-mingw - Repository Location: :yocto_git:`/meta-mingw` - Branch: :yocto_git:`kirkstone ` - Tag: :yocto_git:`yocto-4.0.16 ` - Git Revision: :yocto_git:`f6b38ce3c90e1600d41c2ebb41e152936a0357d7 ` - Release Artefact: meta-mingw-f6b38ce3c90e1600d41c2ebb41e152936a0357d7 - sha: 7d57167c19077f4ab95623d55a24c2267a3a3fb5ed83688659b4c03586373b25 - Download Locations: http://downloads.yoctoproject.org/releases/yocto/yocto-4.0.16/meta-mingw-f6b38ce3c90e1600d41c2ebb41e152936a0357d7.tar.bz2 http://mirrors.kernel.org/yocto/yocto/yocto-4.0.16/meta-mingw-f6b38ce3c90e1600d41c2ebb41e152936a0357d7.tar.bz2 meta-gplv2 - Repository Location: :yocto_git:`/meta-gplv2` - Branch: :yocto_git:`kirkstone ` - Tag: :yocto_git:`yocto-4.0.16 ` - Git Revision: :yocto_git:`d2f8b5cdb285b72a4ed93450f6703ca27aa42e8a ` - Release Artefact: meta-gplv2-d2f8b5cdb285b72a4ed93450f6703ca27aa42e8a - sha: c386f59f8a672747dc3d0be1d4234b6039273d0e57933eb87caa20f56b9cca6d - Download Locations: http://downloads.yoctoproject.org/releases/yocto/yocto-4.0.16/meta-gplv2-d2f8b5cdb285b72a4ed93450f6703ca27aa42e8a.tar.bz2 http://mirrors.kernel.org/yocto/yocto/yocto-4.0.16/meta-gplv2-d2f8b5cdb285b72a4ed93450f6703ca27aa42e8a.tar.bz2 bitbake - Repository Location: :oe_git:`/bitbake` - Branch: :oe_git:`2.0 ` - Tag: :oe_git:`yocto-4.0.16 ` - Git Revision: :oe_git:`ee090484cc25d760b8c20f18add17b5eff485b40 ` - Release Artefact: bitbake-ee090484cc25d760b8c20f18add17b5eff485b40 - sha: 479e3a57ae9fbc2aa95292a7554caeef113bbfb28c226ed19547b8dde1c95314 - Download Locations: http://downloads.yoctoproject.org/releases/yocto/yocto-4.0.16/bitbake-ee090484cc25d760b8c20f18add17b5eff485b40.tar.bz2 http://mirrors.kernel.org/yocto/yocto/yocto-4.0.16/bitbake-ee090484cc25d760b8c20f18add17b5eff485b40.tar.bz2 yocto-docs - Repository Location: :yocto_git:`/yocto-docs` - Branch: :yocto_git:`kirkstone ` - Tag: :yocto_git:`yocto-4.0.16 ` - Git Revision: :yocto_git:`aba67b58711019a6ba439b2b77337f813ed799ac `