<feed xmlns='http://www.w3.org/2005/Atom'>
<title>linux/meta-security.git/recipes-security, branch whinlatter</title>
<subtitle>Mirror of git.yoctoproject.org/meta-security.git</subtitle>
<id>https://git.enea.com/cgit/linux/meta-security.git/atom?h=whinlatter</id>
<link rel='self' href='https://git.enea.com/cgit/linux/meta-security.git/atom?h=whinlatter'/>
<link rel='alternate' type='text/html' href='https://git.enea.com/cgit/linux/meta-security.git/'/>
<updated>2025-12-22T04:35:47+00:00</updated>
<entry>
<title>libmhash: add UPSTREAM_CHECK_URI</title>
<updated>2025-12-22T04:35:47+00:00</updated>
<author>
<name>Yi Zhao</name>
<email>yi.zhao@eng.windriver.com</email>
</author>
<published>2025-11-27T10:19:01+00:00</published>
<link rel='alternate' type='text/html' href='https://git.enea.com/cgit/linux/meta-security.git/commit/?id=2ac6e7ccac51356146aae73e7cd1b9da9c1b2321'/>
<id>urn:sha1:2ac6e7ccac51356146aae73e7cd1b9da9c1b2321</id>
<content type='text'>
Add UPSTREAM_CHECK_URI to check the correct latest stable verison.

Before the patch:
$ devtool latest-version libmash
INFO: Current version: 0.9.9.9
INFO: Latest version:

After the patch:
$ devtool latest-version libmash
INFO: Current version: 0.9.9.9
INFO: Latest version: 0.9.9.9

Signed-off-by: Yi Zhao &lt;yi.zhao@windriver.com&gt;
</content>
</entry>
<entry>
<title>libgssglue: add UPSTREAM_CHECK_GITTAGREGEX</title>
<updated>2025-11-21T14:13:47+00:00</updated>
<author>
<name>Yi Zhao</name>
<email>yi.zhao@eng.windriver.com</email>
</author>
<published>2025-11-21T03:36:26+00:00</published>
<link rel='alternate' type='text/html' href='https://git.enea.com/cgit/linux/meta-security.git/commit/?id=a54650c743b7534f60fc6ee1df9b57a8f0150a4d'/>
<id>urn:sha1:a54650c743b7534f60fc6ee1df9b57a8f0150a4d</id>
<content type='text'>
Add UPSTREAM_CHECK_GITTAGREGEX to check the correct latest stable
verison.

Before the patch:
$ devtool latest-version libgssglue
INFO: Current version: 0.9
INFO: Latest version: 011
INFO: Latest version's commit: af30789052a8cc5f86b5b0c8fd4758c7ba1505ff

After the patch:
$ devtool latest-version libgssglue
INFO: Current version: 0.9
INFO: Latest version: 0.9
INFO: Latest version's commit: ada76bdaec665f70505f0b3aefe871b873e7c4b6

Signed-off-by: Yi Zhao &lt;yi.zhao@windriver.com&gt;
Signed-off-by: Scott Murray &lt;scott.murray@konsulko.com&gt;
</content>
</entry>
<entry>
<title>libgssglue: update HOMEPAGE</title>
<updated>2025-11-21T14:09:53+00:00</updated>
<author>
<name>Yi Zhao</name>
<email>yi.zhao@windriver.com</email>
</author>
<published>2025-10-11T09:53:53+00:00</published>
<link rel='alternate' type='text/html' href='https://git.enea.com/cgit/linux/meta-security.git/commit/?id=3b67d414b350301088b2c982e6963b867ca93370'/>
<id>urn:sha1:3b67d414b350301088b2c982e6963b867ca93370</id>
<content type='text'>
The original homepage is outdated.

Signed-off-by: Yi Zhao &lt;yi.zhao@windriver.com&gt;
Signed-off-by: Scott Murray &lt;scott.murray@konsulko.com&gt;
</content>
</entry>
<entry>
<title>ecryptfs-utils: Add CVE tag for ecryptfs-utils-CVE-2016-6224.patch</title>
<updated>2025-11-12T19:17:55+00:00</updated>
<author>
<name>hongxu</name>
<email>hongxu.jia@eng.windriver.com</email>
</author>
<published>2025-10-24T02:56:13+00:00</published>
<link rel='alternate' type='text/html' href='https://git.enea.com/cgit/linux/meta-security.git/commit/?id=b639be32ad038d49091ddc1ae1aaf3e2c7e5bbc5'/>
<id>urn:sha1:b639be32ad038d49091ddc1ae1aaf3e2c7e5bbc5</id>
<content type='text'>
Follow Yocto policy to add CVE tag to CVE patch

Signed-off-by: Hongxu Jia &lt;hongxu.jia@windriver.com&gt;
Signed-off-by: Robert Yang &lt;liezhi.yang@windriver.com&gt;
</content>
</entry>
<entry>
<title>paxctl: Remove recipe</title>
<updated>2025-10-08T15:34:14+00:00</updated>
<author>
<name>Scott Murray</name>
<email>scott.murray@konsulko.com</email>
</author>
<published>2025-09-26T19:26:41+00:00</published>
<link rel='alternate' type='text/html' href='https://git.enea.com/cgit/linux/meta-security.git/commit/?id=fa4057267c920f211cdcd49f0a0d060d4e8a8b84'/>
<id>urn:sha1:fa4057267c920f211cdcd49f0a0d060d4e8a8b84</id>
<content type='text'>
Remove the paxctl recipe since it has seemingly been broken for a
while without anyone noticing, and there likely have been no actual
users since grsecurity stopped doing public releases in 2017.

Signed-off-by: Scott Murray &lt;scott.murray@konsulko.com&gt;
</content>
</entry>
<entry>
<title>libest: Remove recipe</title>
<updated>2025-10-08T15:34:14+00:00</updated>
<author>
<name>Scott Murray</name>
<email>scott.murray@konsulko.com</email>
</author>
<published>2025-09-26T19:19:01+00:00</published>
<link rel='alternate' type='text/html' href='https://git.enea.com/cgit/linux/meta-security.git/commit/?id=3c1131721210d78060236069d8d9c477b02094af'/>
<id>urn:sha1:3c1131721210d78060236069d8d9c477b02094af</id>
<content type='text'>
Remove the libest recipe since it has been disabled since November
2021, and upstream has shown no activity since 2022.

Signed-off-by: Scott Murray &lt;scott.murray@konsulko.com&gt;
</content>
</entry>
<entry>
<title>libmhash: fix build with gcc 15</title>
<updated>2025-10-08T15:34:14+00:00</updated>
<author>
<name>Yi Zhao</name>
<email>yi.zhao@windriver.com</email>
</author>
<published>2025-09-26T06:10:54+00:00</published>
<link rel='alternate' type='text/html' href='https://git.enea.com/cgit/linux/meta-security.git/commit/?id=a126f7dd599854c714d4e3a6d03caf34f57cc671'/>
<id>urn:sha1:a126f7dd599854c714d4e3a6d03caf34f57cc671</id>
<content type='text'>
GCC 15 switched to C23 by default, which libmhash does not yet support.
So keep using C17.

Signed-off-by: Yi Zhao &lt;yi.zhao@windriver.com&gt;
</content>
</entry>
<entry>
<title>chipsec: disable until 6.16 support is fixed</title>
<updated>2025-10-08T15:34:14+00:00</updated>
<author>
<name>Marta Rybczynska</name>
<email>marta.rybczynska@ygreky.com</email>
</author>
<published>2025-09-29T17:48:36+00:00</published>
<link rel='alternate' type='text/html' href='https://git.enea.com/cgit/linux/meta-security.git/commit/?id=65fd11a293756b5cc0926c2e6aac865bef43c5cf'/>
<id>urn:sha1:65fd11a293756b5cc0926c2e6aac865bef43c5cf</id>
<content type='text'>
The 1.13.16 version does not work on the kernel 6.16 for now [1].

Disable when waiting for the fix.

[1] https://github.com/chipsec/chipsec/issues/2563

Signed-off-by: Marta Rybczynska &lt;marta.rybczynska@ygreky.com&gt;
</content>
</entry>
<entry>
<title>chipsec: update to 1.13.16</title>
<updated>2025-10-08T15:34:14+00:00</updated>
<author>
<name>Marta Rybczynska</name>
<email>marta.rybczynska@ygreky.com</email>
</author>
<published>2025-09-22T19:01:54+00:00</published>
<link rel='alternate' type='text/html' href='https://git.enea.com/cgit/linux/meta-security.git/commit/?id=ff601bbb19f2a033412d594b24fdc7c50db3bde0'/>
<id>urn:sha1:ff601bbb19f2a033412d594b24fdc7c50db3bde0</id>
<content type='text'>
Update from 1.9.1 (October 2022) to the latest 1.x release, 1.13.16.

Changelog: https://github.com/chipsec/chipsec/releases

Signed-off-by: Marta Rybczynska &lt;marta.rybczynska@ygreky.com&gt;
</content>
</entry>
<entry>
<title>sshguard: Update to 2.5.1</title>
<updated>2025-07-04T16:41:20+00:00</updated>
<author>
<name>Scott Murray</name>
<email>scott.murray@konsulko.com</email>
</author>
<published>2025-07-03T20:53:46+00:00</published>
<link rel='alternate' type='text/html' href='https://git.enea.com/cgit/linux/meta-security.git/commit/?id=abddea907bee174d3690003a34e7661c03a47c2c'/>
<id>urn:sha1:abddea907bee174d3690003a34e7661c03a47c2c</id>
<content type='text'>
This picks up required gcc 15 fixes.

Changelog: https://bitbucket.org/sshguard/sshguard/src/master/CHANGELOG.rst

Signed-off-by: Scott Murray &lt;scott.murray@konsulko.com&gt;
</content>
</entry>
</feed>
