<feed xmlns='http://www.w3.org/2005/Atom'>
<title>linux/meta-openembedded.git/meta-oe/recipes-devtools/yasm, branch styhead</title>
<subtitle>Mirror of git.openembedded.org/meta-openembedded</subtitle>
<id>https://git.enea.com/cgit/linux/meta-openembedded.git/atom?h=styhead</id>
<link rel='self' href='https://git.enea.com/cgit/linux/meta-openembedded.git/atom?h=styhead'/>
<link rel='alternate' type='text/html' href='https://git.enea.com/cgit/linux/meta-openembedded.git/'/>
<updated>2024-03-17T20:10:09+00:00</updated>
<entry>
<title>unionfs-fuse, dropwatch, postgresql, yasm, multipath-tools, python3-pybind11: add missing Upstream-Status</title>
<updated>2024-03-17T20:10:09+00:00</updated>
<author>
<name>Martin Jansa</name>
<email>martin.jansa@gmail.com</email>
</author>
<published>2024-03-15T05:15:29+00:00</published>
<link rel='alternate' type='text/html' href='https://git.enea.com/cgit/linux/meta-openembedded.git/commit/?id=e49860ee219f52525307a4e4e4a318d2df76cfa6'/>
<id>urn:sha1:e49860ee219f52525307a4e4e4a318d2df76cfa6</id>
<content type='text'>
* add Pending to .patch files where it was accidentally droped
  with upgrades or modifications in:

  f88e5b146e postgresql: upgrade 15.5 -&gt; 16.2
  c904e169db multipath-tools: upgrade 0.9.3 -&gt; 0.9.8
  105be9b3d9 unionfs-fuse: upgrade 2.2 --&gt; 3.4

  or new patches where the author didn't notice/care:

  2a7f74cdb0 dropwatch: Use header files from sysroot instead of build host
  f5cc9f272a yasm: improve reproducibility
  39028d0d9d python3-pybind11: Restore strip prevention patch

  authors of these added to CC, please be more careful with removing
  or not adding these or enable patch-status in ERROR_QA for your
  builds, see:
  https://lists.openembedded.org/g/openembedded-core/topic/104922136#197113

* added with:
  for p in `/OE/layers/openembedded-core/scripts/contrib/patchreview.py -v . | grep Missing.Upstream-Status.tag | sed 's/.*(//g;s/)$//g'`; do grep -q ^Upstream-Status: $p || sed -i "s/^---$/\nUpstream-Status: Pending\n---/g" $p;         grep -q ^Upstream-Status: $p || sed -i "1iUpstream-Status: Pending\n" $p;     done

Signed-off-by: Martin Jansa &lt;martin.jansa@gmail.com&gt;
Signed-off-by: Khem Raj &lt;raj.khem@gmail.com&gt;
</content>
</entry>
<entry>
<title>yasm: improve reproducibility</title>
<updated>2024-02-27T17:05:18+00:00</updated>
<author>
<name>Oleh Matiusha</name>
<email>omatiush@cisco.com</email>
</author>
<published>2024-02-27T13:59:12+00:00</published>
<link rel='alternate' type='text/html' href='https://git.enea.com/cgit/linux/meta-openembedded.git/commit/?id=f5cc9f272a5632ae2f57ed2632c1d9a575e6b8ab'/>
<id>urn:sha1:f5cc9f272a5632ae2f57ed2632c1d9a575e6b8ab</id>
<content type='text'>
Place reproducible build date in source files instead of
actual build date if SOURCE_DATE_EPOCH available.

Signed-off-by: Oleh Matiusha &lt;omatiush@cisco.com&gt;
Signed-off-by: Khem Raj &lt;raj.khem@gmail.com&gt;
</content>
</entry>
<entry>
<title>recipes: drop ${SRCPV} usage</title>
<updated>2024-02-09T17:52:12+00:00</updated>
<author>
<name>Martin Jansa</name>
<email>martin.jansa@gmail.com</email>
</author>
<published>2024-02-06T13:13:08+00:00</published>
<link rel='alternate' type='text/html' href='https://git.enea.com/cgit/linux/meta-openembedded.git/commit/?id=21f956598ddb1bb08855fbc9a3293acf957154d1'/>
<id>urn:sha1:21f956598ddb1bb08855fbc9a3293acf957154d1</id>
<content type='text'>
* Drop SRCPV similarly like oe-core did in:
  https://git.openembedded.org/openembedded-core/commit/?h=nanbield&amp;id=843f82a246a535c353e08072f252d1dc78217872

* SRCPV is deferred now from PV to PKGV since:
  https://git.openembedded.org/openembedded-core/commit/?h=nanbield&amp;id=a8e7b0f932b9ea69b3a218fca18041676c65aba0

Signed-off-by: Martin Jansa &lt;martin.jansa@gmail.com&gt;
</content>
</entry>
<entry>
<title>yasm: fix CVE-2023-37732</title>
<updated>2023-08-19T17:46:14+00:00</updated>
<author>
<name>Soumya</name>
<email>soumya.sambu@windriver.com</email>
</author>
<published>2023-08-18T14:38:04+00:00</published>
<link rel='alternate' type='text/html' href='https://git.enea.com/cgit/linux/meta-openembedded.git/commit/?id=76912f22d8c30ddfbbeb4575eb9ae8cb3d94a20a'/>
<id>urn:sha1:76912f22d8c30ddfbbeb4575eb9ae8cb3d94a20a</id>
<content type='text'>
Yasm v1.3.0.78 was found prone to NULL Pointer Dereference in /libyasm/intnum.c
and /elf/elf.c, which allows the attacker to cause a denial of service via a
crafted file.

References:
https://github.com/yasm/yasm/issues/233
https://nvd.nist.gov/vuln/detail/CVE-2023-37732

Signed-off-by: Soumya &lt;soumya.sambu@windriver.com&gt;
Signed-off-by: Khem Raj &lt;raj.khem@gmail.com&gt;
</content>
</entry>
<entry>
<title>yasm: fix CVE-2023-31975</title>
<updated>2023-07-21T16:39:09+00:00</updated>
<author>
<name>Archana Polampalli</name>
<email>archana.polampalli@windriver.com</email>
</author>
<published>2023-07-20T11:35:41+00:00</published>
<link rel='alternate' type='text/html' href='https://git.enea.com/cgit/linux/meta-openembedded.git/commit/?id=be2a2b5754480949975ca46e4d068301b3bb2f79'/>
<id>urn:sha1:be2a2b5754480949975ca46e4d068301b3bb2f79</id>
<content type='text'>
yasm v1.3.0 was discovered to contain a memory leak via the function
yasm_intnum_copy at /libyasm/intnum.c.

References:
https://nvd.nist.gov/vuln/detail/CVE-2023-31975
https://github.com/yasm/yasm/issues/210

Upstream patches:
https://github.com/yasm/yasm/commit/b2cc5a1693b17ac415df76d0795b15994c106441

Signed-off-by: Archana Polampalli &lt;archana.polampalli@windriver.com&gt;
Signed-off-by: Khem Raj &lt;raj.khem@gmail.com&gt;
</content>
</entry>
<entry>
<title>yasm: Only depend on xmlto when docs are enabled</title>
<updated>2022-08-24T23:59:55+00:00</updated>
<author>
<name>Mike Crowe</name>
<email>mac@mcrowe.com</email>
</author>
<published>2022-08-24T15:35:39+00:00</published>
<link rel='alternate' type='text/html' href='https://git.enea.com/cgit/linux/meta-openembedded.git/commit/?id=14c47261c2a90d6aa96bf3ff83028eb9404c10ce'/>
<id>urn:sha1:14c47261c2a90d6aa96bf3ff83028eb9404c10ce</id>
<content type='text'>
The yasm build system only requires xmlto when building its
documentation. It automatically detects whether it is present at
configure time.

Signed-off-by: Mike Crowe &lt;mac@mcrowe.com&gt;
Signed-off-by: Khem Raj &lt;raj.khem@gmail.com&gt;
</content>
</entry>
<entry>
<title>yasm: fix buildpaths warning</title>
<updated>2022-08-06T16:51:32+00:00</updated>
<author>
<name>Anuj Mittal</name>
<email>anuj.mittal@intel.com</email>
</author>
<published>2022-08-04T06:13:23+00:00</published>
<link rel='alternate' type='text/html' href='https://git.enea.com/cgit/linux/meta-openembedded.git/commit/?id=a7346d2bb1a60289225cce78d760e4d264d1b2a2'/>
<id>urn:sha1:a7346d2bb1a60289225cce78d760e4d264d1b2a2</id>
<content type='text'>
ax_create_stdint_h.m4 includes $CC as a comment in the generated header
which leads to buildpaths warning:

| WARNING: yasm-1.3.0+gitAUTOINC+ba463d3c26-r0 do_package_qa: QA Issue: File /usr/include/libyasm-stdint.h in package yasm-dev contains reference to TMPDIR [buildpaths]

Signed-off-by: Anuj Mittal &lt;anuj.mittal@intel.com&gt;
Signed-off-by: Khem Raj &lt;raj.khem@gmail.com&gt;
</content>
</entry>
<entry>
<title>recipes: Update SRC_URI branch and protocols</title>
<updated>2021-11-03T13:57:49+00:00</updated>
<author>
<name>Richard Purdie</name>
<email>richard.purdie@linuxfoundation.org</email>
</author>
<published>2021-11-02T23:06:48+00:00</published>
<link rel='alternate' type='text/html' href='https://git.enea.com/cgit/linux/meta-openembedded.git/commit/?id=b402a3076fbafe05d0b8621e50603b65c3fe8147'/>
<id>urn:sha1:b402a3076fbafe05d0b8621e50603b65c3fe8147</id>
<content type='text'>
This patch updates SRC_URIs using git to include branch=master if no branch is set
and also to use protocol=https for github urls as generated by the conversion script
in OE-Core.

Signed-off-by: Richard Purdie &lt;richard.purdie@linuxfoundation.org&gt;
Signed-off-by: Khem Raj &lt;raj.khem@gmail.com&gt;
</content>
</entry>
<entry>
<title>yasm: Fix build with autotools 2.70+</title>
<updated>2021-02-04T16:53:47+00:00</updated>
<author>
<name>Khem Raj</name>
<email>raj.khem@gmail.com</email>
</author>
<published>2021-02-03T22:28:25+00:00</published>
<link rel='alternate' type='text/html' href='https://git.enea.com/cgit/linux/meta-openembedded.git/commit/?id=efa63d8ffb2b70fe5e9f6c3c080e651a04a6ee8b'/>
<id>urn:sha1:efa63d8ffb2b70fe5e9f6c3c080e651a04a6ee8b</id>
<content type='text'>
Signed-off-by: Khem Raj &lt;raj.khem@gmail.com&gt;
</content>
</entry>
<entry>
<title>meta-oe: Remove using python2</title>
<updated>2020-01-22T17:56:34+00:00</updated>
<author>
<name>Khem Raj</name>
<email>raj.khem@gmail.com</email>
</author>
<published>2020-01-20T00:33:15+00:00</published>
<link rel='alternate' type='text/html' href='https://git.enea.com/cgit/linux/meta-openembedded.git/commit/?id=505774658338002a92c2e32c4c57c55f36c5e36e'/>
<id>urn:sha1:505774658338002a92c2e32c4c57c55f36c5e36e</id>
<content type='text'>
This change makes the parsing go though, we still might have build
issues, which will be reported in world builds seprately

Signed-off-by: Khem Raj &lt;raj.khem@gmail.com&gt;
</content>
</entry>
</feed>
