xref: /OK3568_Linux_fs/yocto/poky/documentation/migration-guides/release-notes-4.0.7.rst (revision 4882a59341e53eb6f0b4789bf948001014eff981) 
1.. SPDX-License-Identifier: CC-BY-SA-2.0-UK
2
3Release notes for Yocto-4.0.7 (Kirkstone)
4-----------------------------------------
5
6Security Fixes in Yocto-4.0.7
7~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
8
9-  binutils: Fix :cve:`2022-4285`
10-  curl: Fix :cve:`2022-43551` and `CVE-2022-43552 <https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-43552>`__
11-  ffmpeg: Fix :cve:`2022-3109` and :cve:`2022-3341`
12-  go: Fix :cve:`2022-41715` and :cve:`2022-41717`
13-  libX11: Fix :cve:`2022-3554` and :cve:`2022-3555`
14-  libarchive: Fix :cve:`2022-36227`
15-  libksba: Fix :cve:`2022-47629`
16-  libpng: Fix :cve:`2019-6129`
17-  libxml2: Fix :cve:`2022-40303` and :cve:`2022-40304`
18-  openssl: Fix :cve:`2022-3996`
19-  python3: Fix :cve:`2022-45061`
20-  python3-git: Fix :cve:`2022-24439`
21-  python3-setuptools: Fix :cve:`2022-40897`
22-  python3-wheel: Fix :cve:`2022-40898`
23-  qemu: Fix :cve:`2022-4144`
24-  sqlite: Fix :cve:`2022-46908`
25-  systemd: Fix :cve:`2022-45873`
26-  vim: Fix :cve:`2023-0049`, :cve:`2023-0051`, :cve:`2023-0054` and :cve:`2023-0088`
27-  webkitgtk: Fix :cve:`2022-32886`, `CVE-2022-32891 <https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-32891>`__ and :cve:`2022-32912`
28
29
30Fixes in Yocto-4.0.7
31~~~~~~~~~~~~~~~~~~~~
32
33-  Revert "gstreamer1.0: disable flaky gstbin:test_watch_for_state_change test"
34-  at: Change when files are copied
35-  baremetal-image: Avoid overriding qemu variables from IMAGE_CLASSES
36-  base.bbclass: Fix way to check ccache path
37-  bc: extend to nativesdk
38-  bind: upgrade to 9.18.10
39-  busybox: always start do_compile with orig config files
40-  busybox: rm temporary files if do_compile was interrupted
41-  cairo: fix CVE patches assigned wrong CVE number
42-  cairo: update patch for :cve:`2019-6461` with upstream solution
43-  classes/create-spdx: Add SPDX_PRETTY option
44-  classes: image: Set empty weak default IMAGE_LINGUAS
45-  combo-layer: add sync-revs command
46-  combo-layer: dont use bb.utils.rename
47-  combo-layer: remove unused import
48-  curl: Correct LICENSE from MIT-open-group to curl
49-  cve-check: write the cve manifest to IMGDEPLOYDIR
50-  cve-update-db-native: avoid incomplete updates
51-  cve-update-db-native: show IP on failure
52-  dbus: Add missing CVE product name
53-  devtool/upgrade: correctly handle recipes where S is a subdir of upstream tree
54-  devtool: process local files only for the main branch
55-  dhcpcd: backport two patches to fix runtime error
56-  docs: kernel-dev: faq: update tip on how to not include kernel in image
57-  docs: migration-4.0: specify variable name change for kernel inclusion in image recipe
58-  efibootmgr: update compilation with musl
59-  externalsrc: fix lookup for .gitmodules
60-  ffmpeg: refresh patches to apply cleanly
61-  freetype:update mirror site.
62-  gcc: Refactor linker patches and fix linker on arm with usrmerge
63-  glibc: stable 2.35 branch updates.
64-  go-crosssdk: avoid host contamination by GOCACHE
65-  gstreamer1.0: Fix race conditions in gstbin tests
66-  gstreamer1.0: upgrade to 1.20.5
67-  gtk-icon-cache: Fix GTKIC_CMD if-else condition
68-  harfbuzz: remove bindir only if it exists
69-  kernel-fitimage: Adjust order of dtb/dtbo files
70-  kernel-fitimage: Allow user to select dtb when multiple dtb exists
71-  kernel.bbclass: remove empty module directories to prevent QA issues
72-  lib/buildstats: fix parsing of trees with reduced_proc_pressure directories
73-  lib/oe/reproducible: Use git log without gpg signature
74-  libepoxy: remove upstreamed patch
75-  libnewt: update 0.52.21 -> 0.52.23
76-  libseccomp: fix typo in DESCRIPTION
77-  libxcrypt-compat: upgrade 4.4.30 -> 4.4.33
78-  libxml2: fix test data checksums
79-  linux-firmware: upgrade 20221109 -> 20221214
80-  linux-yocto/5.10: update to v5.10.152
81-  linux-yocto/5.10: update to v5.10.154
82-  linux-yocto/5.10: update to v5.10.160
83-  linux-yocto/5.15: fix perf build with clang
84-  linux-yocto/5.15: libbpf: Fix build warning on ref_ctr_off
85-  linux-yocto/5.15: ltp and squashfs fixes
86-  linux-yocto/5.15: powerpc: Fix reschedule bug in KUAP-unlocked user copy
87-  linux-yocto/5.15: update to v5.15.84
88-  lsof: add update-alternatives logic
89-  lttng-modules: update 2.13.7 -> 2.13.8
90-  manuals: add 4.0.5 and 4.0.6 release notes
91-  manuals: document SPDX_PRETTY variable
92-  mpfr: upgrade 4.1.0 -> 4.1.1
93-  oeqa/concurrencytest: Add number of failures to summary output
94-  oeqa/rpm.py: Increase timeout and add debug output
95-  oeqa/selftest/externalsrc: add test for srctree_hash_files
96-  openssh: remove RRECOMMENDS to rng-tools for sshd package
97-  poky.conf: bump version for 4.0.7
98-  qemuboot.bbclass: make sure runqemu boots bundled initramfs kernel image
99-  rm_work.bbclass: use HOSTTOOLS 'rm' binary exclusively
100-  rm_work: adjust dependency to make do_rm_work_all depend on do_rm_work
101-  ruby: merge .inc into .bb
102-  ruby: update 3.1.2 -> 3.1.3
103-  selftest/virgl: use pkg-config from the host
104-  tiff: Add packageconfig knob for webp
105-  toolchain-scripts: compatibility with unbound variable protection
106-  tzdata: update 2022d -> 2022g
107-  valgrind: skip the boost_thread test on arm
108-  xserver-xorg: upgrade 21.1.4 -> 21.1.6
109-  xwayland: libxshmfence is needed when dri3 is enabled
110-  xwayland: upgrade 22.1.5 -> 22.1.7
111-  yocto-check-layer: Allow OE-Core to be tested
112
113
114Known Issues in Yocto-4.0.7
115~~~~~~~~~~~~~~~~~~~~~~~~~~~
116
117- N/A
118
119
120Contributors to Yocto-4.0.7
121~~~~~~~~~~~~~~~~~~~~~~~~~~~
122
123-  Alejandro Hernandez Samaniego
124-  Alex Kiernan
125-  Alex Stewart
126-  Alexander Kanavin
127-  Antonin Godard
128-  Benoît Mauduit
129-  Bhabu Bindu
130-  Bruce Ashfield
131-  Carlos Alberto Lopez Perez
132-  Changqing Li
133-  Chen Qi
134-  Daniel Gomez
135-  Florin Diaconescu
136-  He Zhe
137-  Hitendra Prajapati
138-  Jagadeesh Krishnanjanappa
139-  Jan Kircher
140-  Jermain Horsman
141-  Jose Quaresma
142-  Joshua Watt
143-  KARN JYE LAU
144-  Kai Kang
145-  Khem Raj
146-  Luis
147-  Marta Rybczynska
148-  Martin Jansa
149-  Mathieu Dubois-Briand
150-  Michael Opdenacker
151-  Narpat Mali
152-  Ovidiu Panait
153-  Pavel Zhukov
154-  Peter Marko
155-  Petr Kubizňák
156-  Quentin Schulz
157-  Randy MacLeod
158-  Ranjitsinh Rathod
159-  Richard Purdie
160-  Robert Andersson
161-  Ross Burton
162-  Sandeep Gundlupet Raju
163-  Saul Wold
164-  Steve Sakoman
165-  Vivek Kumbhar
166-  Wang Mingyu
167-  Xiangyu Chen
168-  Yash Shinde
169-  Yogita Urade
170
171
172Repositories / Downloads for Yocto-4.0.7
173~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
174
175poky
176
177-  Repository Location: :yocto_git:`/poky`
178-  Branch: :yocto_git:`kirkstone </poky/log/?h=kirkstone>`
179-  Tag:  :yocto_git:`yocto-4.0.7 </poky/log/?h=yocto-4.0.7>`
180-  Git Revision: :yocto_git:`65dafea22018052fe7b2e17e6e4d7eb754224d38 </poky/commit/?id=65dafea22018052fe7b2e17e6e4d7eb754224d38>`
181-  Release Artefact: poky-65dafea22018052fe7b2e17e6e4d7eb754224d38
182-  sha: 6b1b67600b84503e2d5d29bcd6038547339f4f9413b830cd2408df825eda642d
183-  Download Locations:
184   http://downloads.yoctoproject.org/releases/yocto/yocto-4.0.7/poky-65dafea22018052fe7b2e17e6e4d7eb754224d38.tar.bz2
185   http://mirrors.kernel.org/yocto/yocto/yocto-4.0.7/poky-65dafea22018052fe7b2e17e6e4d7eb754224d38.tar.bz2
186
187openembedded-core
188
189-  Repository Location: :oe_git:`/openembedded-core`
190-  Branch: :oe_git:`kirkstone </openembedded-core/log/?h=kirkstone>`
191-  Tag:  :oe_git:`yocto-4.0.7 </openembedded-core/log/?h=yocto-4.0.7>`
192-  Git Revision: :oe_git:`a8c82902384f7430519a31732a4bb631f21693ac </openembedded-core/commit/?id=a8c82902384f7430519a31732a4bb631f21693ac>`
193-  Release Artefact: oecore-a8c82902384f7430519a31732a4bb631f21693ac
194-  sha: 6f2dbc4ea1e388620ef77ac3a7bbb2b5956bb8bf9349b0c16cd7610e9996f5ea
195-  Download Locations:
196   http://downloads.yoctoproject.org/releases/yocto/yocto-4.0.7/oecore-a8c82902384f7430519a31732a4bb631f21693ac.tar.bz2
197   http://mirrors.kernel.org/yocto/yocto/yocto-4.0.7/oecore-a8c82902384f7430519a31732a4bb631f21693ac.tar.bz2
198
199meta-mingw
200
201-  Repository Location: :yocto_git:`/meta-mingw`
202-  Branch: :yocto_git:`kirkstone </meta-mingw/log/?h=kirkstone>`
203-  Tag:  :yocto_git:`yocto-4.0.7 </meta-mingw/log/?h=yocto-4.0.7>`
204-  Git Revision: :yocto_git:`a90614a6498c3345704e9611f2842eb933dc51c1 </meta-mingw/commit/?id=a90614a6498c3345704e9611f2842eb933dc51c1>`
205-  Release Artefact: meta-mingw-a90614a6498c3345704e9611f2842eb933dc51c1
206-  sha: 49f9900bfbbc1c68136f8115b314e95d0b7f6be75edf36a75d9bcd1cca7c6302
207-  Download Locations:
208   http://downloads.yoctoproject.org/releases/yocto/yocto-4.0.7/meta-mingw-a90614a6498c3345704e9611f2842eb933dc51c1.tar.bz2
209   http://mirrors.kernel.org/yocto/yocto/yocto-4.0.7/meta-mingw-a90614a6498c3345704e9611f2842eb933dc51c1.tar.bz2
210
211meta-gplv2
212
213-  Repository Location: :yocto_git:`/meta-gplv2`
214-  Branch: :yocto_git:`kirkstone </meta-gplv2/log/?h=kirkstone>`
215-  Tag:  :yocto_git:`yocto-4.0.7 </meta-gplv2/log/?h=yocto-4.0.7>`
216-  Git Revision: :yocto_git:`d2f8b5cdb285b72a4ed93450f6703ca27aa42e8a </meta-gplv2/commit/?id=d2f8b5cdb285b72a4ed93450f6703ca27aa42e8a>`
217-  Release Artefact: meta-gplv2-d2f8b5cdb285b72a4ed93450f6703ca27aa42e8a
218-  sha: c386f59f8a672747dc3d0be1d4234b6039273d0e57933eb87caa20f56b9cca6d
219-  Download Locations:
220   http://downloads.yoctoproject.org/releases/yocto/yocto-4.0.7/meta-gplv2-d2f8b5cdb285b72a4ed93450f6703ca27aa42e8a.tar.bz2
221   http://mirrors.kernel.org/yocto/yocto/yocto-4.0.7/meta-gplv2-d2f8b5cdb285b72a4ed93450f6703ca27aa42e8a.tar.bz2
222
223bitbake
224
225-  Repository Location: :oe_git:`/bitbake`
226-  Branch: :oe_git:`2.0 </bitbake/log/?h=2.0>`
227-  Tag:  :oe_git:`yocto-4.0.7 </bitbake/log/?h=yocto-4.0.7>`
228-  Git Revision: :oe_git:`7e268c107bb0240d583d2c34e24a71e373382509 </bitbake/commit/?id=7e268c107bb0240d583d2c34e24a71e373382509>`
229-  Release Artefact: bitbake-7e268c107bb0240d583d2c34e24a71e373382509
230-  sha: c3e2899012358c95962c7a5c85cf98dc30c58eae0861c374124e96d9556bb901
231-  Download Locations:
232   http://downloads.yoctoproject.org/releases/yocto/yocto-4.0.7/bitbake-7e268c107bb0240d583d2c34e24a71e373382509.tar.bz2
233   http://mirrors.kernel.org/yocto/yocto/yocto-4.0.7/bitbake-7e268c107bb0240d583d2c34e24a71e373382509.tar.bz2
234
235yocto-docs
236
237-  Repository Location: :yocto_git:`/yocto-docs`
238-  Branch: :yocto_git:`kirkstone </yocto-docs/log/?h=kirkstone>`
239-  Tag: :yocto_git:`yocto-4.0.7 </yocto-docs/log/?h=yocto-4.0.7>`
240-  Git Revision: :yocto_git:`5883e897c34f25401b358a597fb6e18d80f7f90b </yocto-docs/commit/?id=5883e897c34f25401b358a597fb6e18d80f7f90b>`
241
242
243