Mirror of git.openembedded.org/meta-openembedded https://git.enea.com/cgit/linux/meta-openembedded.git/atom?h=honister 2021-11-06T18:00:13+00:00 2021-11-06T18:00:13+00:00 Armin Kuster akuster808@gmail.com 2021-11-06T18:00:13+00:00 urn:sha1:1659d381992929749f47327bedc2f3a8ac4ded70 This patch updates SRC_URIs using git to include branch=master if no branch is set and also to use protocol=https for github urls as generated by the conversion script in OE-Core. I tried backporting Richard's master change but there where many merge conflicts. I went the lazy route and ran the script. This is work based on "b402a3076 recipes: Update SRC_URI branch and protocols" Signed-off-by: Armin Kuster <akuster808@gmail.com> 2021-09-10T13:55:20+00:00 Trevor Gamblin trevor.gamblin@windriver.com 2021-09-08T16:53:43+00:00 urn:sha1:4b9bceea4cbb39a3b0564f394b357d6b36887ae1 From the release notes: - CVE-2021-23437: Avoid a potential ReDoS (regular expression denial of service) in ImageColor’s getrgb() by raising ValueError if the color specifier is too long. Present since Pillow 5.2.0. - Fix 6-byte out-of-bounds (OOB) read. The previous bounds check in FliDecode.c incorrectly calculated the required read buffer size when copying a chunk, potentially reading six extra bytes off the end of the allocated buffer from the heap. Present since Pillow 7.1.0. This bug was found by Google’s OSS-Fuzz CIFuzz runs. - Pillow now includes binary wheels for Python 3.10. - Ensure TIFF RowsPerStrip is multiple of 8 for JPEG compression (#5588). - Updates for ImagePalette channel order (#5599). - Hide FriBiDi shim symbols to avoid conflict with real FriBiDi library (#5651). Signed-off-by: Trevor Gamblin <trevor.gamblin@windriver.com> Signed-off-by: Khem Raj <raj.khem@gmail.com> Signed-off-by: Trevor Gamblin <trevor.gamblin@windriver.com>