<feed xmlns='http://www.w3.org/2005/Atom'>
<title>linux/meta-openembedded.git/meta-oe/recipes-graphics, branch scarthgap-next</title>
<subtitle>Mirror of git.openembedded.org/meta-openembedded</subtitle>
<id>https://git.enea.com/cgit/linux/meta-openembedded.git/atom?h=scarthgap-next</id>
<link rel='self' href='https://git.enea.com/cgit/linux/meta-openembedded.git/atom?h=scarthgap-next'/>
<link rel='alternate' type='text/html' href='https://git.enea.com/cgit/linux/meta-openembedded.git/'/>
<updated>2025-03-03T12:58:15+00:00</updated>
<entry>
<title>openjpeg: upgrade 2.5.0 -&gt; 2.5.3</title>
<updated>2025-03-03T12:58:15+00:00</updated>
<author>
<name>Vijay Anusuri</name>
<email>vanusuri@mvista.com</email>
</author>
<published>2025-02-14T12:55:57+00:00</published>
<link rel='alternate' type='text/html' href='https://git.enea.com/cgit/linux/meta-openembedded.git/commit/?id=0468aae77fe828a7a0018669a7f9834fcdc41269'/>
<id>urn:sha1:0468aae77fe828a7a0018669a7f9834fcdc41269</id>
<content type='text'>
Includes fix for CVE-2024-56826 and CVE-2024-56827

ChangeLog:
https://github.com/uclouvain/openjpeg/blob/v2.5.3/NEWS.md

* Refresh 0002-Do-not-ask-cmake-to-export-binaries-they-don-t-make-.patch

Signed-off-by: Vijay Anusuri &lt;vanusuri@mvista.com&gt;
Signed-off-by: Armin Kuster &lt;akuster808@gmail.com&gt;
</content>
</entry>
<entry>
<title>source-han-sans-*-fonts: Switch away from SVN fetcher in SRC_URI</title>
<updated>2025-03-03T12:57:49+00:00</updated>
<author>
<name>Alexandre Truong</name>
<email>alexandre.truong@smile.fr</email>
</author>
<published>2025-02-07T09:13:52+00:00</published>
<link rel='alternate' type='text/html' href='https://git.enea.com/cgit/linux/meta-openembedded.git/commit/?id=81e606b329a6206f20ae9e5f51d1a75fe7071caa'/>
<id>urn:sha1:81e606b329a6206f20ae9e5f51d1a75fe7071caa</id>
<content type='text'>
We get fetch errors from the SRC_URI provided. See errors at [0].
svn protocol was used but it's not supported by github anymore
So, an http url will be passed instead.

* For the record the svn protocol itself isn't deprecated in bitbake
fetcher, just github no longer provides a svn access as mentioned in [1]

* github no longer provides support for subversion clients [2]
it was shut down on 2024-01-08 [3]

* The sha256sum has also been changed since the previous one was
for the 1.004 release's archive, while we are on 2.004.

[0]: https://autobuilder.yoctoproject.org/typhoon/#/builders/156/builds/353/steps/16/logs/errors
[1]: https://git.openembedded.org/bitbake/commit/?h=master&amp;id=a735898abcf056f897c9350bb128a5637e6b4617
[2]: https://docs.github.com/en/enterprise-server@3.11/get-started/working-with-subversion-on-github/support-for-subversion-clients
[3]: https://github.blog/2023-01-20-sunsetting-subversion-support/

Signed-off-by: Alexandre Truong &lt;alexandre.truong@smile.fr&gt;
Reviewed-by: Yoann Congal &lt;yoann.congal@smile.fr&gt;
Signed-off-by: Khem Raj &lt;raj.khem@gmail.com&gt;
Signed-off-by: Armin Kuster &lt;akuster808@gmail.com&gt;
</content>
</entry>
<entry>
<title>gphoto2: Fix contains reference to TMPDIR [buildpaths] warning</title>
<updated>2025-01-21T00:46:16+00:00</updated>
<author>
<name>Hieu Van Nguyen</name>
<email>hieu2.nguyen@lge.com</email>
</author>
<published>2025-01-17T03:39:58+00:00</published>
<link rel='alternate' type='text/html' href='https://git.enea.com/cgit/linux/meta-openembedded.git/commit/?id=dda0d53326017d6758ec6bdfdaf2f484c089d13f'/>
<id>urn:sha1:dda0d53326017d6758ec6bdfdaf2f484c089d13f</id>
<content type='text'>
Remove ${RECIPE_SYSROOT} path from ${B}/config.h to fix the QA warning:
WARNING: gphoto2-2.5.28-r0 do_package_qa: QA Issue: File /usr/bin/gphoto2 in package gphoto2 contains reference to TMPDIR [buildpaths]

Signed-off-by: Hieu Van Nguyen &lt;hieu2.nguyen@lge.com&gt;
Signed-off-by: Armin Kuster &lt;akuster808@gmail.com&gt;
</content>
</entry>
<entry>
<title>graphviz: remove obsolete and problematic patch</title>
<updated>2024-11-09T19:32:39+00:00</updated>
<author>
<name>Chen Qi</name>
<email>Qi.Chen@windriver.com</email>
</author>
<published>2024-10-25T03:33:20+00:00</published>
<link rel='alternate' type='text/html' href='https://git.enea.com/cgit/linux/meta-openembedded.git/commit/?id=78751d3726b6f1176e7dc28cf4eb55aadef8276d'/>
<id>urn:sha1:78751d3726b6f1176e7dc28cf4eb55aadef8276d</id>
<content type='text'>
Remove 0001-Set-use_tcl-to-be-empty-string-if-tcl-is-disabled.patch.

This patch is obsolete and not needed because the current graphviz
configure.ac has correct logic of checking use_tcl. This use_tcl
variable needs to be set when '--disable-tcl' is set, otherwise,
things will behave as if no option is supplied and the configure
process will check tcl automatically.

This patch is problematic because its logic against the current version
is wrong. The recipe has already explicitly set '--disable-tcl', so
the configure process should not do automatic checking for tcl at do_configure.

This patch fixes do_configure error when host has tcl8.6-dev installed. The
error is like below:

  QA Issue: This autoconf log indicates errors, it looked at host include and/or
  library paths while determining system capabilities.
  Rerun configure task after fixing this. [configure-unsafe]

Signed-off-by: Chen Qi &lt;Qi.Chen@windriver.com&gt;
Signed-off-by: Armin Kuster &lt;akuster808@gmail.com&gt;
</content>
</entry>
<entry>
<title>graphviz: fix CVE-2023-46045</title>
<updated>2024-08-03T15:58:41+00:00</updated>
<author>
<name>Yogita Urade</name>
<email>yogita.urade@windriver.com</email>
</author>
<published>2024-07-29T10:48:56+00:00</published>
<link rel='alternate' type='text/html' href='https://git.enea.com/cgit/linux/meta-openembedded.git/commit/?id=ec85533ee538c0a91bf8fb219d134c4fca123def'/>
<id>urn:sha1:ec85533ee538c0a91bf8fb219d134c4fca123def</id>
<content type='text'>
Graphviz 2.36 before 10.0.0 has an out-of-bounds read via a
crafted config6a file. NOTE: exploitability may be uncommon
because this file is typically owned by root.

CVE-2023-46045-0003.patch is the CVE fix and CVE-2023-46045-0001.patch,
CVE-2023-46045-0002.patch are dependent commits to fix the CVE.

Reference:
https://nvd.nist.gov/vuln/detail/CVE-2023-46045

Upstream patches:
https://gitlab.com/graphviz/graphviz/-/commit/361f274ca901c3c476697a6404662d95f4dd43cb
https://gitlab.com/graphviz/graphviz/-/commit/3f31704cafd7da3e86bb2861accf5e90c973e62a
https://gitlab.com/graphviz/graphviz/-/commit/a95f977f5d809915ec4b14836d2b5b7f5e74881e

Signed-off-by: Yogita Urade &lt;yogita.urade@windriver.com&gt;
Signed-off-by: Armin Kuster &lt;akuster808@gmail.com&gt;
</content>
</entry>
<entry>
<title>openbox: fix crash on alt+tab with fullscreen app</title>
<updated>2024-07-18T00:02:19+00:00</updated>
<author>
<name>Alexandre Videgrain</name>
<email>alexandre.videgrain@smile.fr</email>
</author>
<published>2024-07-16T08:02:29+00:00</published>
<link rel='alternate' type='text/html' href='https://git.enea.com/cgit/linux/meta-openembedded.git/commit/?id=c336a5880a9ea0d985ee08aa5560c94e58285713'/>
<id>urn:sha1:c336a5880a9ea0d985ee08aa5560c94e58285713</id>
<content type='text'>
Apply an openbox patch to openbox recipe to fix crashes on alt+tab with
fullscreen app.

Github issue: https://github.com/openembedded/meta-openembedded/issues/837

Signed-off-by: Alexandre Videgrain &lt;alexandre.videgrain@smile.fr&gt;
Suggested-by: Ludovic Jozeau &lt;ludovic.jozeau@smile.fr&gt;
Signed-off-by: Yoann Congal &lt;yoann.congal@smile.fr&gt;
Signed-off-by: Khem Raj &lt;raj.khem@gmail.com&gt;
(cherry picked from commit 85132c16210d1bdf83e8be5b3da4f430ce7b4b91)
Signed-off-by: Armin Kuster &lt;akuster808@gmail.com&gt;
</content>
</entry>
<entry>
<title>vulkan-cts: add workaround for createMeshShaderMiscTestsEXT</title>
<updated>2024-06-26T11:31:38+00:00</updated>
<author>
<name>Randolph Sapp</name>
<email>rs@ti.com</email>
</author>
<published>2024-06-25T20:38:50+00:00</published>
<link rel='alternate' type='text/html' href='https://git.enea.com/cgit/linux/meta-openembedded.git/commit/?id=30c7e5b94f3cdcac3fb46900c54423c976fdafe8'/>
<id>urn:sha1:30c7e5b94f3cdcac3fb46900c54423c976fdafe8</id>
<content type='text'>
Remove the CXX flag "-O2" for GCC 13 and 14. There's a bug with ARM GCC
that breaks the iteration of "types" in the createMeshShaderMiscTestsEXT
function. This issue is not present for clang or x86_64 GCC 14.

It seems that the array is not initialized before the first iteration.
In testing this can result in a random value being used. This can
manifest in LINES type being processed twice, resulting in the following
error:

FATAL ERROR: Failed to initialize dEQP: Test case with non-unique name
'no_lines' added to group 'misc'.

Signed-off-by: Randolph Sapp &lt;rs@ti.com&gt;
Signed-off-by: Khem Raj &lt;raj.khem@gmail.com&gt;
Signed-off-by: Armin Kuster &lt;akuster808@gmail.com&gt;
</content>
</entry>
<entry>
<title>renderdoc: remove vim-native DEPENDS</title>
<updated>2024-04-30T18:00:35+00:00</updated>
<author>
<name>Ross Burton</name>
<email>ross.burton@arm.com</email>
</author>
<published>2024-04-30T13:07:16+00:00</published>
<link rel='alternate' type='text/html' href='https://git.enea.com/cgit/linux/meta-openembedded.git/commit/?id=a67c2d04a001c416273899ac93fa059657eee4c9'/>
<id>urn:sha1:a67c2d04a001c416273899ac93fa059657eee4c9</id>
<content type='text'>
This need for this was removed in 2016[1]

[1] https://github.com/baldurk/renderdoc/commit/fff93a4bcc036f8288fd31dcdd1209fea36b9b58

Signed-off-by: Ross Burton &lt;ross.burton@arm.com&gt;
Signed-off-by: Khem Raj &lt;raj.khem@gmail.com&gt;
</content>
</entry>
<entry>
<title>st: Update status for CVE-2017-16224</title>
<updated>2024-04-30T18:00:33+00:00</updated>
<author>
<name>Ninette Adhikari</name>
<email>ninette@thehoodiefirm.com</email>
</author>
<published>2024-04-29T14:31:17+00:00</published>
<link rel='alternate' type='text/html' href='https://git.enea.com/cgit/linux/meta-openembedded.git/commit/?id=e7fdb6c5b218a9c300ed566269666870c5bc7043'/>
<id>urn:sha1:e7fdb6c5b218a9c300ed566269666870c5bc7043</id>
<content type='text'>
The recipe used in the meta-openembedded is a different st package compared to the one which has the CVE issue.
Package used in meta-embedded: https://st.suckless.org/
Package with CVE issue: https://www.npmjs.com/package/st
No action required.

Signed-off-by: Ninette Adhikari &lt;ninette@thehoodiefirm.com&gt;
Signed-off-by: Khem Raj &lt;raj.khem@gmail.com&gt;
</content>
</entry>
<entry>
<title>ydotool: Do not package systemd unit files on non-systemd distros</title>
<updated>2024-04-21T17:52:51+00:00</updated>
<author>
<name>Khem Raj</name>
<email>raj.khem@gmail.com</email>
</author>
<published>2024-04-20T01:39:21+00:00</published>
<link rel='alternate' type='text/html' href='https://git.enea.com/cgit/linux/meta-openembedded.git/commit/?id=6819f825caf750b4deac5d8dda1b81f3380615be'/>
<id>urn:sha1:6819f825caf750b4deac5d8dda1b81f3380615be</id>
<content type='text'>
Fixes

ERROR: ydotool-1.0.4+git-r0 do_package: QA Issue: ydotool: Files/directories were installed but not shipped in any package:
  /usr/lib
  /usr/lib/systemd
  /usr/lib/systemd/user
  /usr/lib/systemd/user/ydotoold.service

Signed-off-by: Khem Raj &lt;raj.khem@gmail.com&gt;
</content>
</entry>
</feed>
