linux/meta-openembedded.git/meta-oe/recipes-graphics, branch stable/kirkstone-nut

freeglut: Add packageconfigs for x11/wayland/gles

2023-09-23T17:38:46+00:00

helps it compiling on on different openGL implementations which may not implement fulll openGL specs Signed-off-by: Khem Raj (cherry picked from commit a9212722c1b1a2ab29215651063ca94fb114c39b) Signed-off-by: Armin Kuster

meta-oe-components: Avoid usage of nobranch=1

2023-09-04T16:01:53+00:00

The usage of nobranch=1 in SRC_URI allows using unprotected branches. This change updates the real branch name in place of nobranch=1 for these components. Signed-off-by: Sourav Kumar Pramanik Signed-off-by: Armin Kuster

tslib: Add native & nativestdk package support

2023-05-06T11:42:01+00:00

Add support for building native and nativesdk variants. Signed-off-by: Bhargav Das Signed-off-by: Armin Kuster

lvgl,lv-lib-png,lv-drivers: fix installed-vs-shipped QA issue with multilib

2023-04-13T12:26:12+00:00

* with multilib BASELIB is just "lib" while baselib is "lib64" and libdir is "/usr/lib64". * fixes: ERROR: QA Issue: lvgl: Files/directories were installed but not shipped in any package: /usr/lib /usr/lib/liblvgl.a Please set FILES such that these items are packaged. Alternatively if they are unneeded, avoid installing them or delete them within do_install. lvgl: 2 installed and not shipped files. [installed-vs-shipped] * lowercase baselib should work for ppc64 as well (I hope) # $baselib [3 operations] # set oe-core/meta/conf/bitbake.conf:10 # "${BASELIB}" # set oe-core/meta/conf/bitbake.conf:11 # [vardepvalue] "${baselib}" # set oe-core/meta/conf/multilib.conf:2 # "${@d.getVar('BASE_LIB:tune-' + (d.getVar('DEFAULTTUNE') or 'INVALID')) or d.getVar('BASELIB')}" # pre-expansion value: # "${@d.getVar('BASE_LIB:tune-' + (d.getVar('DEFAULTTUNE') or 'INVALID')) or d.getVar('BASELIB')}" baselib="lib64" * simplify destsuffix/S setting * I was surprised that ${WORKDIR}/${PN}-${PV} works in multilib build but then I've noticed that it's because destsuffix is set to S which is a bit uncommon, so drop that and use default "git" * use ${STAGING_INCDIR} instead of ${RECIPE_SYSROOT}/${includedir} Signed-off-by: Martin Jansa Signed-off-by: Khem Raj Signed-off-by: Armin Kuster

xterm : Fix CVE-2022-45063 code execution via OSC 50 input sequences] CVE-2022-45063

2023-01-04T16:46:13+00:00

Upstream-Status: Backport [https://github.com/ThomasDickey/xterm-snapshots/commit/787636674918873a091e7a4ef5977263ba982322] CVE: CVE-2022-45063 Signed-off-by: Siddharth Doshi Signed-off-by: Armin Kuster

Fix tigervnc crash due to missing xkbcomp rdepends

2022-11-01T12:56:26+00:00

Signed-off-by: Khem Raj (cherry picked from commit 447de4d47ba2deba1af80201b91bb312f184fe0e) Signed-off-by: Armin Kuster

libsdl: add CVE-2019-14906 to allowlist

2022-10-04T19:28:53+00:00

CVE-2019-14906 is a Red Hat vulnerability and Yocto is not applicable. So add it to the allowlist. Signed-off-by: Hitomi Hasegawa Signed-off-by: Khem Raj (cherry picked from commit 8803be17aada56ec6a11fba4db9df74f16f9c58c) Signed-off-by: Armin Kuster

openjpeg: ignore CVE-2015-1239

2022-07-26T14:08:00+00:00

This CVE is patched in our version of openjpeg. The NVD database doesn't include a version range this is why it's still reported. Signed-off-by: Davide Gardenal

meta-oe: ignore patched CVEs

2022-07-21T14:17:15+00:00

Some old CVEs don't have a vulnerable version range in the NVD database, this causes come mismatch with cve-check. Ignore many CVEs that are picked up by the class but are patched in our products. Signed-off-by: Davide Gardenal Signed-off-by: Khem Raj (cherry picked from commit efa12676dd0676fd0aa63457d7ba360fe8a6fae2) Signed-off-by: Armin Kuster

tesseract-lang: switch from master branch to main

2022-06-15T13:56:01+00:00

Signed-off-by: Martin Jansa Signed-off-by: Armin Kuster