<feed xmlns='http://www.w3.org/2005/Atom'>
<title>linux/meta-openembedded.git/meta-oe/recipes-devtools, branch dunfell-next</title>
<subtitle>Mirror of git.openembedded.org/meta-openembedded</subtitle>
<id>https://git.enea.com/cgit/linux/meta-openembedded.git/atom?h=dunfell-next</id>
<link rel='self' href='https://git.enea.com/cgit/linux/meta-openembedded.git/atom?h=dunfell-next'/>
<link rel='alternate' type='text/html' href='https://git.enea.com/cgit/linux/meta-openembedded.git/'/>
<updated>2024-03-03T21:38:27+00:00</updated>
<entry>
<title>nodejs: Set CVE_PRODUCT to "node.js"</title>
<updated>2024-03-03T21:38:27+00:00</updated>
<author>
<name>virendra thakur</name>
<email>thakur.virendra1810@gmail.com</email>
</author>
<published>2024-02-09T06:07:19+00:00</published>
<link rel='alternate' type='text/html' href='https://git.enea.com/cgit/linux/meta-openembedded.git/commit/?id=de497fb40998a1b89f6b23083264bfa4c2a70504'/>
<id>urn:sha1:de497fb40998a1b89f6b23083264bfa4c2a70504</id>
<content type='text'>
Set CVE_PRODUCT to 'node.js' for nodjs recipe

Signed-off-by: virendra thakur &lt;virendrak@kpit.com&gt;
Signed-off-by: Armin Kuster &lt;akuster808@gmail.com&gt;
</content>
</entry>
<entry>
<title>php: CVE-2022-4900 fix potential buffer overflow</title>
<updated>2023-12-17T20:36:42+00:00</updated>
<author>
<name>Hitendra Prajapati</name>
<email>hprajapati@mvista.com</email>
</author>
<published>2023-11-21T05:07:27+00:00</published>
<link rel='alternate' type='text/html' href='https://git.enea.com/cgit/linux/meta-openembedded.git/commit/?id=db0a8862fc79aedab7046e978f5c7abb5157319f'/>
<id>urn:sha1:db0a8862fc79aedab7046e978f5c7abb5157319f</id>
<content type='text'>
Upstream-Status: Backport from https://github.com/php/php-src/commit/789a37f14405e2d1a05a76c9fb4ed2d49d4580d5

Signed-off-by: Hitendra Prajapati &lt;hprajapati@mvista.com&gt;
Signed-off-by: Armin Kuster &lt;akuster808@gmail.com&gt;
</content>
</entry>
<entry>
<title>meta-oe: Drop broken BBCLASSEXTEND variants</title>
<updated>2023-12-17T20:36:41+00:00</updated>
<author>
<name>Richard Purdie</name>
<email>richard.purdie@linuxfoundation.org</email>
</author>
<published>2023-11-20T22:30:13+00:00</published>
<link rel='alternate' type='text/html' href='https://git.enea.com/cgit/linux/meta-openembedded.git/commit/?id=bc22fe346519631597555ec52a00fcd8e2c69a0c'/>
<id>urn:sha1:bc22fe346519631597555ec52a00fcd8e2c69a0c</id>
<content type='text'>
The command "bitbake universe -c fetch" currently throws a ton of warnings
as there are many 'impossible' dependencies.

In some cases these variants may never have worked and were just added by copy
and paste of recipes. In some cases they once clearly did work but became
broken somewhere along the way. Users may also be carrying local bbappend files
which add further BBCLASSEXTEND.

Having universe fetch work without warnings is desireable so clean up the broken
variants. Anyone actually needing something dropped here can propose adding it
and the correct functional dependencies back quite easily. This also then
ensures we're not carrying or fixing things nobody uses.

Signed-off-by: Richard Purdie &lt;richard.purdie@linuxfoundation.org&gt;
Signed-off-by: Khem Raj &lt;raj.khem@gmail.com&gt;
(cherry picked from commit 9962d57f7c235873de0a0bb192b5f56747762fc7)
Backport:
* Updated paths to follow PV changes
* Adapted modified recipes to the ones generating warnings
* NB: cups-filter needs poppler-native but its not available. To fix
  this, 5fa0188b8c could be backported.
Signed-off-by: Yoann Congal &lt;yoann.congal@smile.fr&gt;
Signed-off-by: Armin Kuster &lt;akuster808@gmail.com&gt;
</content>
</entry>
<entry>
<title>php: Fix CVE-2023-3824</title>
<updated>2023-09-30T12:55:03+00:00</updated>
<author>
<name>Siddharth Doshi</name>
<email>sdoshi@mvista.com</email>
</author>
<published>2023-09-27T06:57:23+00:00</published>
<link rel='alternate' type='text/html' href='https://git.enea.com/cgit/linux/meta-openembedded.git/commit/?id=0f10a0d394ddffeeb1db0ea94046d86792d704fe'/>
<id>urn:sha1:0f10a0d394ddffeeb1db0ea94046d86792d704fe</id>
<content type='text'>
Upstream-Status: Backport from [https://github.com/php/php-src/commit/80316123f3e9dcce8ac419bd9dd43546e2ccb5ef]
CVE: CVE-2023-3824
Signed-off-by: Siddharth Doshi &lt;sdoshi@mvista.com&gt;
Signed-off-by: Armin Kuster &lt;akuster808@gmail.com&gt;
</content>
</entry>
<entry>
<title>nlohmann-json: Avoid usage of nobranch=1</title>
<updated>2023-09-04T13:05:52+00:00</updated>
<author>
<name>Sourav Pramanik</name>
<email>sourav.pramanik@kpit.com</email>
</author>
<published>2023-08-21T11:52:24+00:00</published>
<link rel='alternate' type='text/html' href='https://git.enea.com/cgit/linux/meta-openembedded.git/commit/?id=a84764cd13c89eb296c0bd3fa34c41e91f52a01f'/>
<id>urn:sha1:a84764cd13c89eb296c0bd3fa34c41e91f52a01f</id>
<content type='text'>
The usage of nobranch=1 in SRC_URI allows using unprotected branches.

This change updates the real branch name in place of nobranch=1.

Signed-off-by: Sourav Kumar Pramanik &lt;pramanik.souravkumar@gmail.com&gt;
Signed-off-by: Armin Kuster &lt;akuster808@gmail.com&gt;
</content>
</entry>
<entry>
<title>rapidjson: Avoid usage of nobranch=1</title>
<updated>2023-09-04T13:05:48+00:00</updated>
<author>
<name>Sourav Pramanik</name>
<email>sourav.pramanik@kpit.com</email>
</author>
<published>2023-08-21T11:47:45+00:00</published>
<link rel='alternate' type='text/html' href='https://git.enea.com/cgit/linux/meta-openembedded.git/commit/?id=637cd4fd96b99c9a32ede741c265a105ed04eaca'/>
<id>urn:sha1:637cd4fd96b99c9a32ede741c265a105ed04eaca</id>
<content type='text'>
The usage of nobranch=1 in SRC_URI allows using unprotected branches.

This change updates the real branch name in place of nobranch=1.

Signed-off-by: Sourav Kumar Pramanik &lt;pramanik.souravkumar@gmail.com&gt;
Signed-off-by: Armin Kuster &lt;akuster808@gmail.com&gt;
</content>
</entry>
<entry>
<title>php: Backport fix CVE-2023-3247</title>
<updated>2023-08-16T12:39:45+00:00</updated>
<author>
<name>Ashish Sharma</name>
<email>asharma@mvista.com</email>
</author>
<published>2023-08-14T06:30:36+00:00</published>
<link rel='alternate' type='text/html' href='https://git.enea.com/cgit/linux/meta-openembedded.git/commit/?id=1ff41cb9c6c49373e7a5598e2e444af68428ca46'/>
<id>urn:sha1:1ff41cb9c6c49373e7a5598e2e444af68428ca46</id>
<content type='text'>
Signed-off-by: Ashish Sharma &lt;asharma@mvista.com&gt;
Signed-off-by: Armin Kuster &lt;akuster808@gmail.com&gt;
</content>
</entry>
<entry>
<title>nodejs-14: add -fpermissive BUILD_CXXFLAGS to fix build with gcc-13 on host</title>
<updated>2023-07-25T11:29:13+00:00</updated>
<author>
<name>Martin Jansa</name>
<email>Martin.Jansa@gmail.com</email>
</author>
<published>2023-07-24T12:22:27+00:00</published>
<link rel='alternate' type='text/html' href='https://git.enea.com/cgit/linux/meta-openembedded.git/commit/?id=172fc48573ab66732ed193f00a49e1159727b402'/>
<id>urn:sha1:172fc48573ab66732ed193f00a49e1159727b402</id>
<content type='text'>
Fixes nodejs-native build with gcc-13 on host:
http://errors.yoctoproject.org/Errors/Details/728221/

nodejs-12 doesn't need it yet and nodejs-16 doesn't need it as well

'-DV8_TYPED_ARRAY_MAX_SIZE_IN_HEAP=64' '-D__STDC_FORMAT_MACROS' '-DOPENSSL_NO_PINSHARED' '-DOPENSSL_THREADS' '-DV8_TARGET_ARCH_X64' '-DV8_EMBEDDER_STRING="-node.84"' '-DENABLE_DISASSEMBLER' '-DV8_PROMISE_INTERNAL_FIELD_COUNT=1' '-DENABLE_MINOR_MC' '-DOBJECT_PRINT' '-DV8_INTL_SUPPORT' '-DV8_CONCURRENT_MARKING' '-DV8_ARRAY_BUFFER_EXTENSION' '-DV8_ENABLE_LAZY_SOURCE_POSITIONS' '-DV8_USE_SIPHASH' '-DDISABLE_UNTRUSTED_CODE_MITIGATIONS' '-DV8_WIN64_UNWINDING_INFO' '-DV8_ENABLE_REGEXP_INTERPRETER_THREADED_DISPATCH' '-DV8_SNAPSHOT_COMPRESSION' -ITOPDIR/tmp-glibc/work/x86_64-linux/nodejs-native/14.18.1-r0/recipe-sysroot-native/usr/include -I../deps/v8 -I../deps/v8/include -I.//Release/obj/gen/torque-output-root -I.//Release/obj/gen/generate-bytecode-output-root  -pthread -Wno-unused-parameter -m64 -Wno-return-type -fno-strict-aliasing -m64 -O3 -fno-omit-frame-pointer -fdata-sections -ffunction-sections -O3 -fno-rtti -fno-exceptions -std=gnu++1y -MMD -MF .//Release/.deps/Release/obj.host/v8_initializers/gen/torque-output-root/torque-generated/../../deps/v8/src/builtins/array-find-tq-csa.o.d.raw -isystemTOPDIR/tmp-glibc/work/x86_64-linux/nodejs-native/14.18.1-r0/recipe-sysroot-native/usr/include -isystemTOPDIR/tmp-glibc/work/x86_64-linux/nodejs-native/14.18.1-r0/recipe-sysroot-native/usr/include -O2 -pipe -c
In file included from /usr/lib/gcc/x86_64-pc-linux-gnu/13/include/g++-v13/bits/move.h:37,
                 from /usr/lib/gcc/x86_64-pc-linux-gnu/13/include/g++-v13/bits/stl_function.h:60,
                 from /usr/lib/gcc/x86_64-pc-linux-gnu/13/include/g++-v13/functional:49,
                 from ../deps/v8/src/codegen/code-stub-assembler.h:8,
                 from ../deps/v8/src/builtins/builtins-promise-gen.h:8,
                 from ../deps/v8/src/builtins/builtins-async-gen.h:8,
                 from ../deps/v8/src/builtins/builtins-async-function-gen.cc:5:
/usr/lib/gcc/x86_64-pc-linux-gnu/13/include/g++-v13/type_traits: In instantiation of ‘struct std::is_convertible&lt;v8::internal::Cell, v8::internal::Object&gt;’:
../deps/v8/src/codegen/tnode.h:262:72:   required from ‘const bool v8::internal::is_subtype&lt;v8::internal::Cell, v8::internal::Cell&gt;::value’
../deps/v8/src/codegen/tnode.h:346:75:   required by substitution of ‘template&lt;class U, typename std::enable_if&lt;v8::internal::is_subtype&lt;U, v8::internal::Cell&gt;::value, int&gt;::type &lt;anonymous&gt; &gt; v8::internal::TNode&lt;v8::internal::Cell&gt;::TNode(const v8::internal::TNode&lt;T&gt;&amp;) [with U = v8::internal::Cell; typename std::enable_if&lt;v8::internal::is_subtype&lt;U, v8::internal::Cell&gt;::value, int&gt;::type &lt;anonymous&gt; = &lt;missing&gt;]’
../deps/v8/src/codegen/code-stub-assembler.h:1868:33:   required from here
/usr/lib/gcc/x86_64-pc-linux-gnu/13/include/g++-v13/type_traits:1417:30: error: invalid use of incomplete type ‘class v8::internal::Cell’ [-fpermissive]
 1417 |     : public __bool_constant&lt;__is_convertible(_From, _To)&gt;
      |                              ^~~~~~~~~~~~~~~~~~~~~~~~~~~~
In file included from ../deps/v8/src/objects/objects.h:26,
                 from ../deps/v8/src/objects/fixed-array.h:10,
                 from ../deps/v8/src/objects/contexts.h:8,
                 from ../deps/v8/src/execution/thread-local-top.h:10,
                 from ../deps/v8/src/execution/isolate-data.h:12,
                 from ../deps/v8/src/execution/isolate.h:24,
                 from ../deps/v8/src/codegen/interface-descriptors.h:14,
                 from ../deps/v8/src/codegen/callable.h:8,
                 from ../deps/v8/src/codegen/code-factory.h:8,
                 from ../deps/v8/src/compiler/code-assembler.h:17,
                 from ../deps/v8/src/codegen/code-stub-assembler.h:15:
../deps/v8/src/objects/object-list-macros.h:19:7: note: forward declaration of ‘class v8::internal::Cell’
   19 | class Cell;
      |       ^~~~
In file included from ../deps/v8/src/codegen/interface-descriptors.h:12:
../deps/v8/src/codegen/tnode.h: In instantiation of ‘const bool v8::internal::is_subtype&lt;v8::internal::Cell, v8::internal::Cell&gt;::value’:
../deps/v8/src/codegen/tnode.h:346:75:   required by substitution of ‘template&lt;class U, typename std::enable_if&lt;v8::internal::is_subtype&lt;U, v8::internal::Cell&gt;::value, int&gt;::type &lt;anonymous&gt; &gt; v8::internal::TNode&lt;v8::internal::Cell&gt;::TNode(const v8::internal::TNode&lt;T&gt;&amp;) [with U = v8::internal::Cell; typename std::enable_if&lt;v8::internal::is_subtype&lt;U, v8::internal::Cell&gt;::value, int&gt;::type &lt;anonymous&gt; = &lt;missing&gt;]’
../deps/v8/src/codegen/code-stub-assembler.h:1868:33:   required from here
../deps/v8/src/codegen/tnode.h:262:72: error: ‘value’ is not a member of ‘std::is_convertible&lt;v8::internal::Cell, v8::internal::Object&gt;’
  262 |                                        std::is_convertible&lt;T, Object&gt;::value);
      |                                                                        ^~~~~

Signed-off-by: Martin Jansa &lt;Martin.Jansa@gmail.com&gt;
Signed-off-by: Armin Kuster &lt;akuster808@gmail.com&gt;
</content>
</entry>
<entry>
<title>nodejs: Fix build with gcc13</title>
<updated>2023-07-25T11:29:04+00:00</updated>
<author>
<name>Khem Raj</name>
<email>raj.khem@gmail.com</email>
</author>
<published>2023-07-23T16:05:53+00:00</published>
<link rel='alternate' type='text/html' href='https://git.enea.com/cgit/linux/meta-openembedded.git/commit/?id=0aa6a3ddc607cca1bdf29c6ebb38cddcb5114e3e'/>
<id>urn:sha1:0aa6a3ddc607cca1bdf29c6ebb38cddcb5114e3e</id>
<content type='text'>
* MJ: remove AUTHORS modification from the original patch from
  nodejs-16, so that the same patch does apply for both 14 and 12
  versions used in dunfell

* MJ: gcc-13 isn't used for target builds in dunfell, but can be used
  on host, so this is useful backport for nodejs-native

* MJ: this fixes default nodejs-native-12, nodejs-native-14 with negative
  D_P might need additional fix on top

Signed-off-by: Khem Raj &lt;raj.khem@gmail.com&gt;
Signed-off-by: Armin Kuster &lt;akuster808@gmail.com&gt;
Signed-off-by: Martin Jansa &lt;Martin.Jansa@gmail.com&gt;
Signed-off-by: Armin Kuster &lt;akuster808@gmail.com&gt;
</content>
</entry>
<entry>
<title>yajl: CVE-2023-33460 memory leak in yajl_tree_parse function</title>
<updated>2023-07-14T11:08:54+00:00</updated>
<author>
<name>Hitendra Prajapati</name>
<email>hprajapati@mvista.com</email>
</author>
<published>2023-06-30T04:54:41+00:00</published>
<link rel='alternate' type='text/html' href='https://git.enea.com/cgit/linux/meta-openembedded.git/commit/?id=7ca27d5cf3ec147ec933a8660b252cf57d107a27'/>
<id>urn:sha1:7ca27d5cf3ec147ec933a8660b252cf57d107a27</id>
<content type='text'>
Upstream-Status: Backport from https://github.com/openEuler-BaseService/yajl/commit/23a122eddaa28165a6c219000adcc31ff9a8a698

Signed-off-by: Hitendra Prajapati &lt;hprajapati@mvista.com&gt;
Signed-off-by: Armin Kuster &lt;akuster808@gmail.com&gt;
</content>
</entry>
</feed>
