summaryrefslogtreecommitdiffstats
Commit message (Collapse)AuthorAgeFilesLines
* pavucontrol: remove x11 from REQUIRED_DISTRO_FEATURESChangqing Li8 days1-1/+0
| | | | | | | | | We add x11 into REQUIRED_DISTRO_FEATURES because one of the dependency gtkmm4 require x11, now, gtkmm4 don't require x11, so remove x11 from REQUIRED_DISTRO_FEATURES Signed-off-by: Changqing Li <changqing.li@windriver.com> Signed-off-by: Khem Raj <khem.raj@oss.qualcomm.com>
* gtkmm4: remove x11 from REQUIRED_DISTRO_FEATURESChangqing Li8 days1-2/+2
| | | | | | | | | | | We add x11 into REQUIRED_DISTRO_FEATURES because one of the dependency atkmm requires x11, refer [1], remove atkmm from dependency, and remove x11 from REQUIRED_DISTRO_FEATURES [1] https://gitlab.gnome.org/GNOME/gtkmm/-/commit/0fc81d346f50bfc30f6fb78afe6a15331c5a8790 Signed-off-by: Changqing Li <changqing.li@windriver.com> Signed-off-by: Khem Raj <khem.raj@oss.qualcomm.com>
* xdg-dbus-proxy: upgrade 0.1.6 -> 0.1.7Gyorgy Sarvari8 days3-36/+5
| | | | | | | | | | | | | | | | | | | | Contains fix for CVE-2026-34080. Since it is tracked without version info by NVD, mark it explicitily as patched. Drop the patch that is included in this release. While here, also add the recipe to the ptest list - it's a fast one, runs under a second. Changelog: - Drop the autotools build system - Unbreak the CI - Prevent a crash on disconnect - Fix building with glibc >= 2.43 - Fix the eavesdrop filtering to prevent message interception Signed-off-by: Gyorgy Sarvari <skandigraun@gmail.com> Signed-off-by: Khem Raj <khem.raj@oss.qualcomm.com>
* wolfssl: upgrade 5.9.0 -> 5.9.1Gyorgy Sarvari8 days1-1/+10
| | | | | | | | | | | | | | | | Contains many CVE fixes. Changelog: https://github.com/wolfSSL/wolfssl/releases/tag/v5.9.1-stable There are a number of fixed CVEs in this version that are tracked without version by NVD - mark them as patched explicitly. Ptests passed: Test script returned: 0 unit_test: Success for all configured tests. PASS: Wolfssl Signed-off-by: Gyorgy Sarvari <skandigraun@gmail.com> Signed-off-by: Khem Raj <khem.raj@oss.qualcomm.com>
* ntp: Fix build with -std=gnu23Khem Raj8 days3-0/+136
| | | | | | | Backport a patch from openLDAP to fix the configure errors with clang-22 -std=gnu23 Fix another issue by dropping C89 signatures in favor of C99 function prototypes Signed-off-by: Khem Raj <khem.raj@oss.qualcomm.com>
* python3-django: upgrade 5.2.12 -> 5.2.13Gyorgy Sarvari8 days1-1/+1
| | | | | | | | | | | | | | | Contains fixes for CVE-2026-3902, CVE-2026-4277, CVE-2026-4292, CVE-2026-33033 and CVE-2026-33034. Changelog: https://docs.djangoproject.com/en/6.0/releases/5.2.13/ Ptests passed successfully: Ran 18163 tests in 457.705s OK (skipped=1389, expected failures=5) Signed-off-by: Gyorgy Sarvari <skandigraun@gmail.com> Signed-off-by: Khem Raj <khem.raj@oss.qualcomm.com>
* python3-django: upgrade 6.0.3 -> 6.0.4Gyorgy Sarvari8 days1-1/+1
| | | | | | | | | | | | | | | Contains fixes for CVE-2026-3902, CVE-2026-4277, CVE-2026-4292, CVE-2026-33033 and CVE-2026-33034. Changelog: https://docs.djangoproject.com/en/6.0/releases/6.0.4/ Ptests passed successfully: Ran 18691 tests in 149.800s OK (skipped=1397, expected failures=5) Signed-off-by: Gyorgy Sarvari <skandigraun@gmail.com> Signed-off-by: Khem Raj <khem.raj@oss.qualcomm.com>
* nodejs: mark CVE-2026-21710 patchedGyorgy Sarvari8 days1-0/+1
| | | | | | | | | | | | | | Details: https://nvd.nist.gov/vuln/detail/CVE-2026-21710 The CVE is fixed in the current recipe version[1], but NVD tracks it without verison info. Mark it as patched in the recipe. [1]: https://github.com/nodejs/node/blob/v22.x/doc/changelogs/CHANGELOG_V22.md Signed-off-by: Gyorgy Sarvari <skandigraun@gmail.com> Signed-off-by: Khem Raj <khem.raj@oss.qualcomm.com>
* minio: ignore irrelevant CVEsGyorgy Sarvari8 days1-1/+1
| | | | | | | | | | | | | Details: https://nvd.nist.gov/vuln/detail/CVE-2026-33419 https://nvd.nist.gov/vuln/detail/CVE-2026-34204 These CVEs were filed against minio server, but this recipe is for minio client tools, which is a related, but different project. Ignore these CVEs. Signed-off-by: Gyorgy Sarvari <skandigraun@gmail.com> Signed-off-by: Khem Raj <khem.raj@oss.qualcomm.com>
* libraw: mark fixed CVEs patchedGyorgy Sarvari8 days1-0/+2
| | | | | | | | | | | | | | | | | | | These CVEs have been fixed already in the current version, however NVD tracks them with incorrect version information. Commits that fix them: CVE-2026-20884: https://github.com/LibRaw/LibRaw/commit/aa4458eb511daeae90676c1ce5c587106e4aaec1 CVE-2026-24450: https://github.com/LibRaw/LibRaw/commit/c911c9b9edffa5fab99f828d0fee6dd2d0f6105f These commits were identified from the changelog of this version[1], which mentions the Talos ID of the vulnerabilities (and the Talos ID is mentioned in the NVD reports[2][3]). [1]: https://github.com/LibRaw/LibRaw/releases/tag/0.22.1 [2]: https://nvd.nist.gov/vuln/detail/CVE-2026-24450 [3]: https://nvd.nist.gov/vuln/detail/CVE-2026-20884 Signed-off-by: Gyorgy Sarvari <skandigraun@gmail.com> Signed-off-by: Khem Raj <khem.raj@oss.qualcomm.com>
* flatpak: upgrade 1.17.3 -> 1.17.6Gyorgy Sarvari8 days1-1/+4
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Contains fixes for CVE-2026-34078 and CVE-2026-34079 Add explicit CVE_STATUS tags for these CVEs, because they are tracked without version info by NVD at this time. Changelog: 17.6: Bug fixes: - Fix the remaining regression for Chromium based browsers by not leaking file descriptors down to wrapped command - Fix a regression when installing extra-data without a runtime, which is the case for openh264 - Fix the remaining regression for Epiphany by ignoring unusable sandbox-expose paths for sub-sandboxes in the portal - Fix the installed tests by allowing to add a new ref to an existing temporary ostree repo - Avoid closing fds 0/1/2 when they are used as a bad argument to flatpak-run, and reduce duplication in handling file descriptor arguments Enhancements: - Disable auto-pin in flatpak-repair to preserve the pin state across re-installs - Small improvements for the tests 17.5: Bug fixes: - Fix regressions caused by the sandbox escape security fix, which impact some browsers, browser-based apps and Steam (#6577, #6569, #6576, #6574) Enhancements: - Expand test coverage of flatpak-run features used by flatpak-portal (#6573) 17.4: Security fixes: - Fix a complete sandbox escape which leads to host file access and code execution in the host context (CVE-2026-34078) - Prevent arbitrary file deletion on the host filesystem (CVE-2026-34079) - Prevent arbitrary read-access to files in the system-helper context (GHSA-2fxp-43j9-pwvc) - Prevent orphaning cross-user pull operations (GHSA-89xm-3m96-w3jg) Enhancements: - Enable ntsync unconditionally - Automatic branch following for extensions to ensure that "no-autodownload" extensions stay functional after an update that requires a new branch - Translation updates: eo, kk, sr, zh_CN Bug fixes: - Prevent CPR sequence from showing up in the terminal - Fix a crash for apps/runtimes with multiarch permission - Fixes for Coverity warnings - Add test-preinstall.sh to the test matrix source - Fix a test message to refer to "systemd-localed" instead of "located" Signed-off-by: Gyorgy Sarvari <skandigraun@gmail.com> Signed-off-by: Khem Raj <khem.raj@oss.qualcomm.com>
* ez-ipupdate: add CVE tag to CVE-fixing patchGyorgy Sarvari8 days1-1/+6
| | | | | | | | | | | | | | | | An already existing patch fixes a CVE (CVE-2004-0980), but it since the patch didn't have the CVE tag, the cve checker did not pick it up. Rectify this ommission. CVE details: https://nvd.nist.gov/vuln/detail/CVE-2004-0980 The same patch is used by Gentoo to mitigate this issue. Gentoo CVE advisory: https://security.gentoo.org/glsa/200411-20 Linked Gentoo bug, containing this patch: https://bugs.gentoo.org/69658 Signed-off-by: Gyorgy Sarvari <skandigraun@gmail.com> Signed-off-by: Khem Raj <khem.raj@oss.qualcomm.com>
* corosync: patch CVE-2026-35092Gyorgy Sarvari8 days2-0/+58
| | | | | | | | | | | | Details: https://nvd.nist.gov/vuln/detail/CVE-2026-35092 Pick the patch that mentions the CVE ID explicitly (the same commit was identified by Debian also[1]) [1]: https://security-tracker.debian.org/tracker/CVE-2026-35092 Signed-off-by: Gyorgy Sarvari <skandigraun@gmail.com> Signed-off-by: Khem Raj <khem.raj@oss.qualcomm.com>
* corosync: patch CVE-2026-35091Gyorgy Sarvari8 days2-0/+48
| | | | | | | | | | | | Details: https://nvd.nist.gov/vuln/detail/CVE-2026-35091 Pick the patch that mentions the CVE ID explicitly (it was identified by Debian also as the fix[1]) [1]: https://security-tracker.debian.org/tracker/CVE-2026-35091 Signed-off-by: Gyorgy Sarvari <skandigraun@gmail.com> Signed-off-by: Khem Raj <khem.raj@oss.qualcomm.com>
* tbb: Fix build with LLD linkerKhem Raj8 days1-0/+1
| | | | | | | | | | | | | | | | | | | fixes | aarch64-yoe-linux-ld.lld: error: version script assignment of 'local' to symbol 'ITT_DoOneTimeInitialization' failed: symbol not defined | aarch64-yoe-linux-ld.lld: error: version script assignment of 'local' to symbol 'TBB_runtime_interface_version' failed: symbol not defined | aarch64-yoe-linux-ld.lld: error: version script assignment of 'local' to symbol 'get_memcpy_largest_cachelinesize' failed: symbol not defined | aarch64-yoe-linux-ld.lld: error: version script assignment of 'local' to symbol 'get_memcpy_largest_cache_size' failed: symbol not defined | aarch64-yoe-linux-ld.lld: error: version script assignment of 'local' to symbol 'get_mem_ops_method' failed: symbol not defined | aarch64-yoe-linux-ld.lld: error: version script assignment of 'local' to symbol 'init_mem_ops_method' failed: symbol not defined | aarch64-yoe-linux-ld.lld: error: version script assignment of 'local' to symbol 'irc__get_msg' failed: symbol not defined | aarch64-yoe-linux-ld.lld: error: version script assignment of 'local' to symbol 'irc__print' failed: symbol not defined | aarch64-yoe-linux-ld.lld: error: version script assignment of 'local' to symbol 'override_mem_ops_method' failed: symbol not defined | aarch64-yoe-linux-ld.lld: error: version script assignment of 'local' to symbol 'set_memcpy_largest_cachelinesize' failed: symbol not defined | aarch64-yoe-linux-ld.lld: error: version script assignment of 'local' to symbol 'set_memcpy_largest_cache_size' failed: symbol not defined | aarch64-yoe-linux-clang: error: linker command failed with exit code 1 (use -v to see invocation) | [45/49] Linking CXX shared library clang_22.1_cxx11_64_release/libtbb.so.12.17 Signed-off-by: Khem Raj <khem.raj@oss.qualcomm.com>
* keyutils: Fix build with lld linkerKhem Raj8 days1-0/+2
| | | | Signed-off-by: Khem Raj <khem.raj@oss.qualcomm.com>
* python3-blivet: upgrade 3.12.1 -> 3.13.2Jiaying Song8 days2-38/+14
| | | | | | | | | | | | | | | | | | | | | | | | | | Changelog: https://github.com/storaged-project/blivet/releases 1. Drop 0008-use-oe-variable-to-replace-hardcoded-dir.patch and add do_install:append to manually install D-Bus and systemd files: Upstream commit 0f0fd84d [1] removed data_files from setup.py and moved their installation to a Makefile target (install-dbus), but OE uses setuptools3_legacy which only runs setup.py install and does not invoke the Makefile. 2. Add missing RDEPENDS: - python3-dasbus: upstream replaced the internal safe_dbus module with the external dasbus library [2]. - python3-pygobject: was always required (gi.repository for libblockdev) but missing from old recipe. - util-linux: blivet directly calls lsblk, mount, umount and blockdev via subprocess. [1] https://github.com/storaged-project/blivet/commit/0f0fd84d [2] https://github.com/storaged-project/blivet/commit/1e7c5409 Signed-off-by: Jiaying Song <jiaying.song.cn@windriver.com> Signed-off-by: Khem Raj <khem.raj@oss.qualcomm.com>
* tailscale: upgrade 1.84.3 -> 1.94.2Ayoub Zaki9 days3-64/+95
| | | | | | | | | | -Update tailscale recipe to version 1.94.2 -Regenerate go module dependencies and license checksums -Export GOFLAGS with build tags so do_update_modules discovers all dependencies -Manually verify and complete Unknown license entries Signed-off-by: Ayoub Zaki <ayoub.zaki@embetrix.com> Signed-off-by: Khem Raj <khem.raj@oss.qualcomm.com>
* atop: Fix binmergeJörg Sommer9 days1-1/+1
| | | | | | | In case $sbindir = $bindir we have to pass this setting to make install. Signed-off-by: Jörg Sommer <joerg.sommer@navimatix.de> Signed-off-by: Khem Raj <khem.raj@oss.qualcomm.com>
* atop: Add packages atop-acctd and atop-gpudJörg Sommer9 days1-4/+7
| | | | | | | For some users these programmes might be useful. Signed-off-by: Jörg Sommer <joerg.sommer@navimatix.de> Signed-off-by: Khem Raj <khem.raj@oss.qualcomm.com>
* ltrace: Upgrade to 0.8.1 and clang build errorsKhem Raj9 days5-119/+125
| | | | | | | | Drop the upstream applied patches Add patches to fix build with clang-22 Bump PE to account for version going from 7.x to 0.8 Signed-off-by: Khem Raj <khem.raj@oss.qualcomm.com>
* netperf: Fix build with std=gnu23Khem Raj9 days2-0/+26
| | | | Signed-off-by: Khem Raj <khem.raj@oss.qualcomm.com>
* libwebsockets: Add missing dep on libcap when ssl is enabledKhem Raj10 days1-1/+4
| | | | | | Disable tests, they do not build in cross-build environment Signed-off-by: Khem Raj <khem.raj@oss.qualcomm.com>
* log4c: convert K&R function declarations to ANSI C prototypesKhem Raj10 days2-0/+93
| | | | Signed-off-by: Khem Raj <khem.raj@oss.qualcomm.com>
* dlt-daemon: Fix build with clang-22Khem Raj10 days2-0/+1004
| | | | Signed-off-by: Khem Raj <khem.raj@oss.qualcomm.com>
* samba: upgrade 4.19.9 -> 4.23.5Gyorgy Sarvari10 days7-441/+74
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | Samba has a new build-time dependency, libquic[1]. The repository builds an out-of-tree kernel module and a regular userspace library with the same build script, however the Makefile seems to be fairly hostile to cross-compilation. The Samba tarball also vendors the same with their own build script - for now, this venodred version is used. There are some efforts that the kernel part is mainlined[2], once it happens it should be possible to easily remove this from the recipe. pyldb was removed from RDEPENDS, as it seems that samba now builds its own version of it. Patches updated, unneeded patches dropped. Some patches contained a considerable amount of whitespace changes - those were trimmed for the ease of rebasing. Changelog: https://gitlab.com/samba-team/samba/-/blob/samba-4.23.5/WHATSNEW.txt?ref_type=tags (Switch to other branches to see earlier changelogs) [1]: https://github.com/lxin/quic/ [2]: https://github.com/lxin/net-next/commits/quic/ Signed-off-by: Gyorgy Sarvari <skandigraun@gmail.com> Signed-off-by: Khem Raj <raj.khem@gmail.com> Signed-off-by: Khem Raj <khem.raj@oss.qualcomm.com>
* minizip: upgrade 1.3.1 -> 1.3.2Wang Mingyu10 days1-2/+2
| | | | | | | License-Update: "Version 1.1, February 14h, 2010" removed Signed-off-by: Wang Mingyu <wangmy@fujitsu.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>
* libtar: Fix build with clang-22 -std=gnu23Khem Raj10 days2-0/+63
| | | | Signed-off-by: Khem Raj <khem.raj@oss.qualcomm.com>
* cyrus-sasl: Fix build with std=gnu23Khem Raj11 days2-0/+302
| | | | | | clang has dropped K&R style with std=c23 Signed-off-by: Khem Raj <khem.raj@oss.qualcomm.com>
* audit: fix build with autoconf-2.73Martin Jansa11 days2-0/+197
| | | | | | | | On hosts with gcc-13 it was trying to use -std=gnu23 and failing with unrecognized command-line option (gnu23 needs gcc-14 and newer) Signed-off-by: Martin Jansa <martin.jansa@gmail.com> Signed-off-by: Khem Raj <khem.raj@oss.qualcomm.com>
* dovecot: Fix checksum mismatchWang Mingyu11 days1-1/+1
| | | | | | | Update the sha256sum to match the current upstream archive. Signed-off-by: Wang Mingyu <wangmy@fujitsu.com> Signed-off-by: Khem Raj <khem.raj@oss.qualcomm.com>
* dlt-daemon: disable DLT_USE_IPv6Changqing Li11 days2-6/+11
| | | | | | | | | | | There is a bug when DLT_USE_IPv6 enabled, refer [1]. This make dlt-adaptor-udp.service startup failed with error "Bind: Invalid argument". Disable DLT_USE_IPv6 to workaround the issue [1] https://github.com/COVESA/dlt-daemon/issues/849 Signed-off-by: Changqing Li <changqing.li@windriver.com> Signed-off-by: Khem Raj <khem.raj@oss.qualcomm.com>
* dlt-daemon: fix wrong CONFIGURATION_FILES_DIRChangqing Li11 days2-0/+43
| | | | | | | | | | The not aligned value of CONFIGURATION_FILES_DIR makes the configuration file install path is different with the default configuration file path from where the application to read, then make the service dlt/dlt-system not works well. Signed-off-by: Changqing Li <changqing.li@windriver.com> Signed-off-by: Khem Raj <khem.raj@oss.qualcomm.com>
* python3-pytest-runner: remove using pkg_resourcesLi Zhou11 days2-0/+81
| | | | | | | | | | The python3 setuptools 82 dropped pkg_resources module by now. To avoid the failure "No module named 'pkg_resources'", replace the functions from this module with other functions from modules packaging and importlib.metadata. Signed-off-by: Li Zhou <li.zhou@windriver.com> Signed-off-by: Khem Raj <khem.raj@oss.qualcomm.com>
* php: upgrade 8.5.4 -> 8.5.5Jason Schonberg11 days1-1/+1
| | | | | | | | | This is a bug fix release. Changelog: https://www.php.net/ChangeLog-8.php#8.5.5 Signed-off-by: Jason Schonberg <schonm@gmail.com> Signed-off-by: Khem Raj <khem.raj@oss.qualcomm.com>
* python3-pytest-codspeed: upgrade 3.0.0 -> 4.3.0Zhang Peng11 days1-2/+2
| | | | | | | | | | | | | | | | | | | | | | | Remove explicit python3-hatchling-native from DEPENDS since it is automatically added when inheriting python_hatchling. Add python3-cffi-native to DEPENDS since v4.0.0 introduced CodSpeedHQ/instrument-hooks which uses cffi FFI bindings at build time. Changelog: https://github.com/CodSpeedHQ/pytest-codspeed/releases/tag/v4.3.0 https://github.com/CodSpeedHQ/pytest-codspeed/releases/tag/v4.2.0 https://github.com/CodSpeedHQ/pytest-codspeed/releases/tag/v4.1.1 https://github.com/CodSpeedHQ/pytest-codspeed/releases/tag/v4.1.0 https://github.com/CodSpeedHQ/pytest-codspeed/releases/tag/v4.0.0 https://github.com/CodSpeedHQ/pytest-codspeed/releases/tag/v3.2.0 https://github.com/CodSpeedHQ/pytest-codspeed/releases/tag/v3.1.2 https://github.com/CodSpeedHQ/pytest-codspeed/releases/tag/v3.1.1 https://github.com/CodSpeedHQ/pytest-codspeed/releases/tag/v3.1.0 Signed-off-by: Zhang Peng <peng.zhang1.cn@windriver.com> Signed-off-by: Khem Raj <khem.raj@oss.qualcomm.com>
* freeradius: Update to latest on 3.2 releaseKhem Raj11 days7-563/+6
| | | | | | | Drop backports which are already in this SHA update Add -DTLS_STORAGE_CLASS=__thread via cflags Signed-off-by: Khem Raj <khem.raj@oss.qualcomm.com>
* Revert "refpolicy-targeted: Added sepolicy for adb service"Gargi Misra11 days2-81/+0
| | | | | | This reverts commit 00616ccdaf0ce9e54ac7c75fabdb2d8f079c7578. Signed-off-by: Khem Raj <khem.raj@oss.qualcomm.com>
* Revert "refpolicy-targeted: Add sepolicy for adb service"Gargi Misra11 days1-2/+2
| | | | | | This reverts commit 801addc52851b88b335d2349f6f7787b8200c95c. Signed-off-by: Khem Raj <khem.raj@oss.qualcomm.com>
* libvarlink: add new recipePeter Marko11 days1-0/+17
| | | | | | | | | Varlink C library and command line tool. Remove unuseful vim integration. Signed-off-by: Peter Marko <peter.marko@siemens.com> Signed-off-by: Khem Raj <khem.raj@oss.qualcomm.com>
* mjansson-mdns: add new recipePeter Marko11 days2-0/+35
| | | | | | | | | | | | | Public domain mDNS/DNS-SD library in C Add github namespace to recipe name and handle it in CVE_PRODUCT because there already is a different mdns recipe in meta-openembedded. Example application is built but not installed. This is good to verify that current toolchain is copatible with headers. Signed-off-by: Peter Marko <peter.marko@siemens.com> Signed-off-by: Khem Raj <khem.raj@oss.qualcomm.com>
* ttyd: add new recipePeter Marko11 days1-0/+11
| | | | | | | ttyd is a simple command-line tool for sharing terminal over the web. Signed-off-by: Peter Marko <peter.marko@siemens.com> Signed-off-by: Khem Raj <khem.raj@oss.qualcomm.com>
* crow: add new recipePeter Marko11 days1-0/+20
| | | | | | | | | | Crow is a C++ framework for creating HTTP or Websocket web services. Disable tests as they are using CPM (Cmake Dependency Manager), which would be downloading the test dependencies in configuration step. Signed-off-by: Peter Marko <peter.marko@siemens.com> Signed-off-by: Khem Raj <khem.raj@oss.qualcomm.com>
* ostree: Fix build with C23/glibc-2.43Khem Raj11 days2-0/+30
| | | | Signed-off-by: Khem Raj <khem.raj@oss.qualcomm.com>
* python3-yappi: Upgrade 1.7.3 -> 1.7.6Leon Anavi11 days2-3847/+1
| | | | | | | | | | | | | | | | | Upgrade to release 1.7.6: - Fix VERSION file missing from source distribution (sdist) >From 1.7.5: - Fix callgrind export producing duplicate entries for top-level functions - Fix various edge cases - Add limit parameter to print_all - Fix file reading to use UTF-8 encoding Signed-off-by: Leon Anavi <leon.anavi@konsulko.com> Signed-off-by: Khem Raj <khem.raj@oss.qualcomm.com>
* python3-charset-normalizer: Upgrade 3.4.6 -> 3.4.7Leon Anavi11 days2-28/+1
| | | | | | | | | | | Upgrade to release 3.4.7: - Pre-built optimized version using mypy[c] v1.20. - Relax setuptools constraint to setuptools>=68,<82.1. - Correctly remove SIG remnant in utf-7 decoded string. Signed-off-by: Leon Anavi <leon.anavi@konsulko.com> Signed-off-by: Khem Raj <khem.raj@oss.qualcomm.com>
* python3-aiofiles: Upgrade 24.1.0 -> 25.1.0Leon Anavi11 days1-1/+5
| | | | | | | | | | | Upgrade to release 25.1.0: - Switch to uv + add Python v3.14 support. - Add ruff formatter and linter. - Drop Python 3.8 support. If you require it, use version 24.1.0. Signed-off-by: Leon Anavi <leon.anavi@konsulko.com> Signed-off-by: Khem Raj <khem.raj@oss.qualcomm.com>
* netplan upgrade 1.1.2 -> 1.2.1Yi Zhao11 days2-6/+7
| | | | | | | | | ChangeLog: https://github.com/canonical/netplan/releases/tag/1.2 https://github.com/canonical/netplan/releases/tag/1.2.1 Signed-off-by: Yi Zhao <yi.zhao@windriver.com> Signed-off-by: Khem Raj <khem.raj@oss.qualcomm.com>
* python3-gpiod: update to v2.4.2Bartosz Golaszewski11 days1-1/+1
| | | | | | | | | Bug-fix release addressing a buffer overflow bug discovered during an AI-augmented security audit as well as another minor issue with unnecessarily duplicated code. Signed-off-by: Bartosz Golaszewski <bartosz.golaszewski@oss.qualcomm.com> Signed-off-by: Khem Raj <khem.raj@oss.qualcomm.com>
* libgpiod: update to v2.2.4Bartosz Golaszewski11 days2-85/+1
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | Bug-fix release addressing several issues discovered during an AI-augmented security audit. The most severe bug was found in the C extension code of the python bindings - which also get an update - but there were some memory leaks and integer overflow bugs in the core C library as well as in tools and DBus daemon. Full changelog: Bug fixes: - fix buffer over-read bugs when translating uAPI structs to library types - fix variable and argument types where necessary - sanitize values returned by the kernel to avoid potential buffer overflows - fix memory leaks in gpio-tools - add missing return value checks in gpio-tools - fix period parsing in gpio-tools - use correct loop counter in error path in gpio-manager Improvements: - make tests work with newer coreutils by removing cases checking tools' behavior on SIGINT which stopped working due to changes in behavior of the timeout tool Also: drop the patch that's now upstream from the recipe. Signed-off-by: Bartosz Golaszewski <bartosz.golaszewski@oss.qualcomm.com> Signed-off-by: Khem Raj <khem.raj@oss.qualcomm.com>
generated by cgit v1.2.3-54-g00ecf (git 2.39.0) at 2026-04-21 22:03:31 +0000