<feed xmlns='http://www.w3.org/2005/Atom'>
<title>linux/poky.git/meta/recipes-bsp, branch hardknott-next</title>
<subtitle>Mirror of git.yoctoproject.org/poky</subtitle>
<id>https://git.enea.com/cgit/linux/poky.git/atom?h=hardknott-next</id>
<link rel='self' href='https://git.enea.com/cgit/linux/poky.git/atom?h=hardknott-next'/>
<link rel='alternate' type='text/html' href='https://git.enea.com/cgit/linux/poky.git/'/>
<updated>2021-05-30T07:19:35+00:00</updated>
<entry>
<title>grub: Exclude CVE-2019-14865 from cve-check</title>
<updated>2021-05-30T07:19:35+00:00</updated>
<author>
<name>Richard Purdie</name>
<email>richard.purdie@linuxfoundation.org</email>
</author>
<published>2021-05-20T17:37:34+00:00</published>
<link rel='alternate' type='text/html' href='https://git.enea.com/cgit/linux/poky.git/commit/?id=b539668df9e0ff6930b917a8690344889c3e6194'/>
<id>urn:sha1:b539668df9e0ff6930b917a8690344889c3e6194</id>
<content type='text'>
The CVE only applies to RHEL.

(From OE-Core rev: a1130182a086eebeff5dfc5bebc708a3191fb5be)

Signed-off-by: Richard Purdie &lt;richard.purdie@linuxfoundation.org&gt;
</content>
</entry>
<entry>
<title>grub2: Add CVE whitelist entries for issues fixed in 2.06</title>
<updated>2021-05-30T07:19:35+00:00</updated>
<author>
<name>Richard Purdie</name>
<email>richard.purdie@linuxfoundation.org</email>
</author>
<published>2021-05-09T17:44:27+00:00</published>
<link rel='alternate' type='text/html' href='https://git.enea.com/cgit/linux/poky.git/commit/?id=ab2c33bd30569b24680a39b9dffba2447cf731d7'/>
<id>urn:sha1:ab2c33bd30569b24680a39b9dffba2447cf731d7</id>
<content type='text'>
We're using a pre-release version of 2.06 so these issues are fixed but
continue to show up in the checks since it is pre-2.06 and the CPE
entries are "before but excluding 2.06".

Adding these will clean up CVE reports until the 2.06 release comes out.

(From OE-Core rev: 07451418e8ffef608e05b981bf7516bef5450d49)

Signed-off-by: Richard Purdie &lt;richard.purdie@linuxfoundation.org&gt;
</content>
</entry>
<entry>
<title>grub2.inc: remove '-O2' from CFLAGS</title>
<updated>2021-05-15T16:18:21+00:00</updated>
<author>
<name>Kai Kang</name>
<email>kai.kang@windriver.com</email>
</author>
<published>2021-05-08T07:41:14+00:00</published>
<link rel='alternate' type='text/html' href='https://git.enea.com/cgit/linux/poky.git/commit/?id=7ef7ee52476dc3c35c6f02cc7bc2a05df008b14d'/>
<id>urn:sha1:7ef7ee52476dc3c35c6f02cc7bc2a05df008b14d</id>
<content type='text'>
It fails to boot grub after upgrade grub to 2.06. According to
description in

https://bugzilla.yoctoproject.org/show_bug.cgi?id=14367

it is introduced by a commit to fix CVE. So remove option '-O2' from
CFLAGS rather than revert the commit to avoid the failure.

[YOCTO #14367]

CC: Tony Battersby &lt;tonyb@cybernetics.com&gt;
(From OE-Core rev: 7520bd4f72d550052774042c542a3d3ee874b363)

Signed-off-by: Kai Kang &lt;kai.kang@windriver.com&gt;
Signed-off-by: Richard Purdie &lt;richard.purdie@linuxfoundation.org&gt;
(cherry picked from commit 69805629b8f47fd46a37b7c5cc435982e2ac3d1d)
Signed-off-by: Anuj Mittal &lt;anuj.mittal@intel.com&gt;
Signed-off-by: Richard Purdie &lt;richard.purdie@linuxfoundation.org&gt;
</content>
</entry>
<entry>
<title>u-boot: Move definitions to common locations</title>
<updated>2021-04-06T10:36:51+00:00</updated>
<author>
<name>Klaus Heinrich Kiwi</name>
<email>klaus@linux.vnet.ibm.com</email>
</author>
<published>2021-03-26T20:14:07+00:00</published>
<link rel='alternate' type='text/html' href='https://git.enea.com/cgit/linux/poky.git/commit/?id=068d114385adc679770dc5e8909ad7c432bf8ec1'/>
<id>urn:sha1:068d114385adc679770dc5e8909ad7c432bf8ec1</id>
<content type='text'>
Move some definitions from u-boot.inc into uboot-config.bbclass and
similarly from kernel-fitimage.bbclass into uboot-sign.bbclass, so that
they can be useful when signing the U-boot proper fitimage, for a
verified-boot SPL.

(From OE-Core rev: cc6c3e31526d3b6ef3a87ba5e548fcad7483bd51)

Signed-off-by: Klaus Heinrich Kiwi &lt;klaus@linux.vnet.ibm.com&gt;
Signed-off-by: Richard Purdie &lt;richard.purdie@linuxfoundation.org&gt;
</content>
</entry>
<entry>
<title>grub2: Enable on riscv32</title>
<updated>2021-03-30T23:06:23+00:00</updated>
<author>
<name>Khem Raj</name>
<email>raj.khem@gmail.com</email>
</author>
<published>2021-03-29T02:22:09+00:00</published>
<link rel='alternate' type='text/html' href='https://git.enea.com/cgit/linux/poky.git/commit/?id=eba2ca9aef130535fede2a6dfcaea16fcb860f50'/>
<id>urn:sha1:eba2ca9aef130535fede2a6dfcaea16fcb860f50</id>
<content type='text'>
Update the patch as submitted upstream to grub2

(From OE-Core rev: a1ce702bb5317712083ae32332051c36923c4a50)

Signed-off-by: Khem Raj &lt;raj.khem@gmail.com&gt;
Signed-off-by: Richard Purdie &lt;richard.purdie@linuxfoundation.org&gt;
</content>
</entry>
<entry>
<title>grub-efi: Re-introduce lost cast to long</title>
<updated>2021-03-28T21:28:27+00:00</updated>
<author>
<name>Khem Raj</name>
<email>raj.khem@gmail.com</email>
</author>
<published>2021-03-26T19:12:14+00:00</published>
<link rel='alternate' type='text/html' href='https://git.enea.com/cgit/linux/poky.git/commit/?id=57b37e3b03d9074bdb6bed5cc4a850385332cc63'/>
<id>urn:sha1:57b37e3b03d9074bdb6bed5cc4a850385332cc63</id>
<content type='text'>
This cast was accidentally dropped in
https://git.savannah.gnu.org/cgit/grub.git/commit/?id=2bf40e9e5be9808b17852e688eead87acff14420

(From OE-Core rev: c032297695e9e4bb4d0fb12dc883044bdfa870f2)

Signed-off-by: Khem Raj &lt;raj.khem@gmail.com&gt;
Cc: Alistair Francis &lt;alistair.francis@wdc.com&gt;
Signed-off-by: Richard Purdie &lt;richard.purdie@linuxfoundation.org&gt;
</content>
</entry>
<entry>
<title>grub2: Disable for RISCV32</title>
<updated>2021-03-28T21:28:27+00:00</updated>
<author>
<name>Khem Raj</name>
<email>raj.khem@gmail.com</email>
</author>
<published>2021-03-26T04:37:08+00:00</published>
<link rel='alternate' type='text/html' href='https://git.enea.com/cgit/linux/poky.git/commit/?id=ab91b0756d819343a83625c58adb9626610864f8'/>
<id>urn:sha1:ab91b0756d819343a83625c58adb9626610864f8</id>
<content type='text'>
A full working port is not available yet, until such time disable it

(From OE-Core rev: a8a8b7f3db955bbdb1abfce1e0be004521348669)

Signed-off-by: Khem Raj &lt;raj.khem@gmail.com&gt;
Cc: Alistair Francis &lt;alistair.francis@wdc.com&gt;
Signed-off-by: Richard Purdie &lt;richard.purdie@linuxfoundation.org&gt;
</content>
</entry>
<entry>
<title>u-boot: Fix CVE-2021-27097, CVE-2021-27138</title>
<updated>2021-03-23T22:51:25+00:00</updated>
<author>
<name>Scott Murray</name>
<email>scott.murray@konsulko.com</email>
</author>
<published>2021-03-22T02:53:55+00:00</published>
<link rel='alternate' type='text/html' href='https://git.enea.com/cgit/linux/poky.git/commit/?id=33132ec14676c62167d86cb1efff7c1f5ded107f'/>
<id>urn:sha1:33132ec14676c62167d86cb1efff7c1f5ded107f</id>
<content type='text'>
Backport fixes for CVE-2021-27097 and CVE-2021-27138 as well as
a precursor fdt validation fix that allows using the upstream
patches for the CVEs without significant rebasing.  Note that
the additional upstream changes to add new U-Boot fit image tests
have been left out to keep the patch count down.  Those tests are
currently not used for ptest or oe-selftest, so it is believed
their absence should not be problematic.

(From OE-Core rev: b6c2df341d7e6da5defca9a5567fdb7212489efa)

Signed-off-by: Scott Murray &lt;scott.murray@konsulko.com&gt;
Signed-off-by: Richard Purdie &lt;richard.purdie@linuxfoundation.org&gt;
</content>
</entry>
<entry>
<title>grub: upgrade 2.04 -&gt; 2.06~rc1</title>
<updated>2021-03-20T18:54:56+00:00</updated>
<author>
<name>Naveen Saini</name>
<email>naveen.kumar.saini@intel.com</email>
</author>
<published>2021-03-19T07:14:33+00:00</published>
<link rel='alternate' type='text/html' href='https://git.enea.com/cgit/linux/poky.git/commit/?id=da9b0583de455b48b91d2afe73200dcc0d778da3'/>
<id>urn:sha1:da9b0583de455b48b91d2afe73200dcc0d778da3</id>
<content type='text'>
2.06 RC1 release have a number of CVEs fixed:
CVE-2020-15705
CVE-2021-3418
CVE-2020-27749
CVE-2021-20233
CVE-2021-20225
CVE-2020-25647
CVE-2020-25632
CVE-2020-27779
CVE-2020-14372
CVE-2020-15707
CVE-2020-15706
CVE-2020-14309
CVE-2020-14310
CVE-2020-14311
CVE-2020-14308
CVE-2020-10713
CVE-2014-4607

Dropped backported patches.

(From OE-Core rev: 36a59d63619c2225fe48aa1d8fb1cdabedfffc03)

Signed-off-by: Richard Purdie &lt;richard.purdie@linuxfoundation.org&gt;
</content>
</entry>
<entry>
<title>u-boot: Add support for building for qemuriscv32</title>
<updated>2021-03-14T16:33:59+00:00</updated>
<author>
<name>Alistair Francis</name>
<email>alistair.francis@wdc.com</email>
</author>
<published>2021-03-12T21:38:25+00:00</published>
<link rel='alternate' type='text/html' href='https://git.enea.com/cgit/linux/poky.git/commit/?id=7aaa97c9040d4c87ea4de09eed73a68ff24d53dc'/>
<id>urn:sha1:7aaa97c9040d4c87ea4de09eed73a68ff24d53dc</id>
<content type='text'>
(From OE-Core rev: a9666fbfe2dcb43fe9e8fd78e357eaacd99ca75e)

Signed-off-by: Alistair Francis &lt;alistair.francis@wdc.com&gt;
Signed-off-by: Richard Purdie &lt;richard.purdie@linuxfoundation.org&gt;
</content>
</entry>
</feed>
