<feed xmlns='http://www.w3.org/2005/Atom'>
<title>linux/meta-security.git/meta-tpm, branch mickledore</title>
<subtitle>Mirror of git.yoctoproject.org/meta-security.git</subtitle>
<id>https://git.enea.com/cgit/linux/meta-security.git/atom?h=mickledore</id>
<link rel='self' href='https://git.enea.com/cgit/linux/meta-security.git/atom?h=mickledore'/>
<link rel='alternate' type='text/html' href='https://git.enea.com/cgit/linux/meta-security.git/'/>
<updated>2023-03-26T20:02:15+00:00</updated>
<entry>
<title>tpm2-tss: correct CVE product</title>
<updated>2023-03-26T20:02:15+00:00</updated>
<author>
<name>Peter Marko</name>
<email>peter.marko@siemens.com</email>
</author>
<published>2023-03-22T07:18:04+00:00</published>
<link rel='alternate' type='text/html' href='https://git.enea.com/cgit/linux/meta-security.git/commit/?id=a397a38ed9e54378e66ce750a005bda14991b719'/>
<id>urn:sha1:a397a38ed9e54378e66ce750a005bda14991b719</id>
<content type='text'>
Currently CVE-2023-22745 does not show up in kirkstone CVE report.
This fixes that.

Products from yocto's CVE check NVD database:
sqlite&gt; select * from products where product like "tpm2%";
CVE-2017-7524|tpm2-tools_project|tpm2.0-tools|||1.1.0|&lt;=
CVE-2020-24455|tpm2_software_stack_project|tpm2_software_stack|||2.4.3|&lt;
CVE-2020-24455|tpm2_software_stack_project|tpm2_software_stack|3.0.0|&gt;=|3.0.1|&lt;
CVE-2021-3565|tpm2-tools_project|tpm2-tools|5.1|&gt;=|5.1.1|&lt;
CVE-2021-3565|tpm2-tools_project|tpm2-tools|||4.3.2|&lt;
CVE-2023-22745|tpm2_software_stack_project|tpm2_software_stack|||4.0.0|&lt;=

Signed-off-by: Peter Marko &lt;peter.marko@siemens.com&gt;
Signed-off-by: Armin Kuster &lt;akuster808@gmail.com&gt;
</content>
</entry>
<entry>
<title>meta-tpm/layer: lower the priority from 10 to 6</title>
<updated>2023-03-20T20:27:24+00:00</updated>
<author>
<name>Jose Quaresma</name>
<email>quaresma.jose@gmail.com</email>
</author>
<published>2023-03-06T17:55:28+00:00</published>
<link rel='alternate' type='text/html' href='https://git.enea.com/cgit/linux/meta-security.git/commit/?id=0e648bae9cdb8a2f41bde1f9a3ecaaf5fb80df63'/>
<id>urn:sha1:0e648bae9cdb8a2f41bde1f9a3ecaaf5fb80df63</id>
<content type='text'>
The priority change on sumo version without any description.
Since then is very hard to add in other layers a new version
of any recipe on this layer with such priority so these patch
reverts the priority back to 6.

Signed-off-by: Jose Quaresma &lt;jose.quaresma@foundries.io&gt;
Signed-off-by: Armin Kuster &lt;akuster808@gmail.com&gt;
</content>
</entry>
<entry>
<title>tpm2-abrmd: upgrade 2.4.1 -&gt; 3.0.0</title>
<updated>2023-02-22T20:22:36+00:00</updated>
<author>
<name>Petr Gotthard</name>
<email>petr.gotthard@advantech.cz</email>
</author>
<published>2023-02-17T19:02:28+00:00</published>
<link rel='alternate' type='text/html' href='https://git.enea.com/cgit/linux/meta-security.git/commit/?id=c06b9a18a669d61f68796f5092d286338b4559be'/>
<id>urn:sha1:c06b9a18a669d61f68796f5092d286338b4559be</id>
<content type='text'>
Changelog:
https://github.com/tpm2-software/tpm2-abrmd/blob/3.0.0/CHANGELOG.md

Signed-off-by: Petr Gotthard &lt;petr.gotthard@advantech.cz&gt;
Signed-off-by: Armin Kuster &lt;akuster808@gmail.com&gt;
</content>
</entry>
<entry>
<title>tpm2-pkcs11: upgrade 1.8.0 -&gt; 1.9.0</title>
<updated>2023-02-22T20:22:36+00:00</updated>
<author>
<name>Petr Gotthard</name>
<email>petr.gotthard@advantech.cz</email>
</author>
<published>2023-02-17T19:02:22+00:00</published>
<link rel='alternate' type='text/html' href='https://git.enea.com/cgit/linux/meta-security.git/commit/?id=13653bf807b43e55e1d9c5d7b579a326377329bc'/>
<id>urn:sha1:13653bf807b43e55e1d9c5d7b579a326377329bc</id>
<content type='text'>
Changelog:
https://github.com/tpm2-software/tpm2-pkcs11/blob/1.9.0/CHANGELOG.md

Signed-off-by: Petr Gotthard &lt;petr.gotthard@advantech.cz&gt;
Signed-off-by: Armin Kuster &lt;akuster808@gmail.com&gt;
</content>
</entry>
<entry>
<title>tpm2-tools: upgrade 5.3 -&gt; 5.5</title>
<updated>2023-02-22T20:22:36+00:00</updated>
<author>
<name>Petr Gotthard</name>
<email>petr.gotthard@advantech.cz</email>
</author>
<published>2023-02-17T19:02:13+00:00</published>
<link rel='alternate' type='text/html' href='https://git.enea.com/cgit/linux/meta-security.git/commit/?id=1ac7c66afc48255962a40b6367aad36eb23a7c92'/>
<id>urn:sha1:1ac7c66afc48255962a40b6367aad36eb23a7c92</id>
<content type='text'>
Changelog:
https://github.com/tpm2-software/tpm2-tools/blob/5.5/docs/CHANGELOG.md

Signed-off-by: Petr Gotthard &lt;petr.gotthard@advantech.cz&gt;
Signed-off-by: Armin Kuster &lt;akuster808@gmail.com&gt;
</content>
</entry>
<entry>
<title>tpm2-tss: upgrade 3.2.0 -&gt; 4.0.1</title>
<updated>2023-02-22T20:22:36+00:00</updated>
<author>
<name>Petr Gotthard</name>
<email>petr.gotthard@advantech.cz</email>
</author>
<published>2023-02-17T19:02:04+00:00</published>
<link rel='alternate' type='text/html' href='https://git.enea.com/cgit/linux/meta-security.git/commit/?id=e188be029cdfdd18f993b0ae2b37d885cfbb191b'/>
<id>urn:sha1:e188be029cdfdd18f993b0ae2b37d885cfbb191b</id>
<content type='text'>
Changelog:
https://github.com/tpm2-software/tpm2-tss/blob/4.0.1/CHANGELOG.md

Signed-off-by: Petr Gotthard &lt;petr.gotthard@advantech.cz&gt;
Signed-off-by: Armin Kuster &lt;akuster808@gmail.com&gt;
</content>
</entry>
<entry>
<title>linux-yocto: drop version from bbappends</title>
<updated>2023-02-06T12:32:41+00:00</updated>
<author>
<name>Mikko Rapeli</name>
<email>mikko.rapeli@linaro.org</email>
</author>
<published>2023-01-30T11:01:06+00:00</published>
<link rel='alternate' type='text/html' href='https://git.enea.com/cgit/linux/meta-security.git/commit/?id=3529cfb43e47015aa0621755e7b6536b7947d295'/>
<id>urn:sha1:3529cfb43e47015aa0621755e7b6536b7947d295</id>
<content type='text'>
These bbappends apply to multiple kernel versions so no
need to make them version dependent. Fixes recipe parsing when
using meta-security master branch on kirkstone. In our custom layer we
set layer compatibility for kirkstone and I understand why meta-security
upstream would not want to do that:

LAYERSERIES_COMPAT_security-layer += 'kirkstone'
LAYERSERIES_COMPAT_parsec-layer += 'kirkstone'
LAYERSERIES_COMPAT_tpm-layer += 'kirkstone'

While I work towards supporting also yocto master branch and newer
releases than kirkstone, I would appreciate if I would not have to
branch off layers over minor details like this.

Signed-off-by: Mikko Rapeli &lt;mikko.rapeli@linaro.org&gt;
Signed-off-by: Armin Kuster &lt;akuster808@gmail.com&gt;
</content>
</entry>
<entry>
<title>meta-tpm: bump linux-yocto to 6.x kernel</title>
<updated>2023-01-28T15:17:03+00:00</updated>
<author>
<name>Armin Kuster</name>
<email>akuster808@gmail.com</email>
</author>
<published>2023-01-28T15:17:03+00:00</published>
<link rel='alternate' type='text/html' href='https://git.enea.com/cgit/linux/meta-security.git/commit/?id=92f04c78f0ed202b14e274367bec3fbc12cc0305'/>
<id>urn:sha1:92f04c78f0ed202b14e274367bec3fbc12cc0305</id>
<content type='text'>
Signed-off-by: Armin Kuster &lt;akuster808@gmail.com&gt;
</content>
</entry>
<entry>
<title>layer.conf: update LAYERSERIES_COMPAT for mickledore</title>
<updated>2023-01-04T15:32:16+00:00</updated>
<author>
<name>Martin Jansa</name>
<email>martin.jansa@gmail.com</email>
</author>
<published>2023-01-03T16:36:25+00:00</published>
<link rel='alternate' type='text/html' href='https://git.enea.com/cgit/linux/meta-security.git/commit/?id=1550c126ce8bad2dfd91cdc1eea7c295ac7891bb'/>
<id>urn:sha1:1550c126ce8bad2dfd91cdc1eea7c295ac7891bb</id>
<content type='text'>
* oe-core switched to mickedore in:
  https://git.openembedded.org/openembedded-core/commit/?id=57239d66b933c4313cf331d35d13ec2d0661c38f

Signed-off-by: Martin Jansa &lt;Martin.Jansa@gmail.com&gt;
Signed-off-by: Armin Kuster &lt;akuster808@gmail.com&gt;
</content>
</entry>
<entry>
<title>tpm2-tools: update to 5.3</title>
<updated>2022-11-19T19:01:41+00:00</updated>
<author>
<name>Michael Haener</name>
<email>michael.haener@siemens.com</email>
</author>
<published>2022-11-04T13:05:57+00:00</published>
<link rel='alternate' type='text/html' href='https://git.enea.com/cgit/linux/meta-security.git/commit/?id=dbab46107d409c167e7700685e5dcbb3ff33f42a'/>
<id>urn:sha1:dbab46107d409c167e7700685e5dcbb3ff33f42a</id>
<content type='text'>
</content>
</entry>
</feed>
