diff --git a/.oebuild/manifest.yaml b/.oebuild/manifest.yaml index d8c6d08f31219135d38401683e7becec85498df4..e7b38b28b70b08745b8d4ac48c5d43e1426d626b 100644 --- a/.oebuild/manifest.yaml +++ b/.oebuild/manifest.yaml @@ -107,13 +107,13 @@ manifest_list: version: 8ae481d2fad9c7ecba2f74b0f8a7f8f7afaead7c autoconf: remote_url: https://gitee.com/src-openeuler/autoconf.git - version: 484a68397339b8652121bf868874f8ad198d3739 + version: 8015f42ec8a1f794c12e213685ca295ce888c191 autoconf-archive: remote_url: https://gitee.com/src-openeuler/autoconf-archive.git version: 16af475f35761ce1b2a21d47155902030befa469 automake: remote_url: https://gitee.com/src-openeuler/automake.git - version: 791a3368684d4f5cdb630b07e475668115687b95 + version: 9b1ffeefc47da7db49e2ad144cf218de89ddca62 avahi: remote_url: https://gitee.com/src-openeuler/avahi.git version: 3c0c3f00e9ebcb9bb2d03c926d8f4e6e8860f4c4 @@ -134,7 +134,7 @@ manifest_list: version: ff45e3ec2db78650cd3aa6e0a3c0456eb4587857 binutils: remote_url: https://gitee.com/src-openeuler/binutils.git - version: 3b7f67ac74e9ba81b87b49aa2bda7b534b6b6570 + version: 2cb04a01a424ec7fbaf2d859a718d9dd208a6796 bison: remote_url: https://gitee.com/src-openeuler/bison.git version: 207a16a4466b1c48a0023fc4d8d9eecd297ce805 @@ -143,7 +143,7 @@ manifest_list: version: 371095b1e6a246f8ef8f365ba8c35046a5732b17 bluez: remote_url: https://gitee.com/src-openeuler/bluez.git - version: 6bdfbaa3e816b528da3c210954c655bbf1107551 + version: e51df080197397e60a19c16f2db3b3b8eb1cd482 bmap-tools: remote_url: https://gitee.com/src-oepkgs/bmap-tools.git version: df9427eb085563d403210095870cba92f546f81b @@ -155,7 +155,7 @@ manifest_list: version: 8e639c3d54467968e384d32eb9f7007d4d7a9af5 boost: remote_url: https://gitee.com/src-openeuler/boost.git - version: f9130e1c5acdc94e3812af69ed737a794d79b4bb + version: 2fc90326b559d1ac86fd1902f5caef580c60a9a0 boost-obmc: remote_url: https://gitee.com/src-openeuler/boost.git version: 8ab4fe722e8136317f6f9b370ff20af44f61c78d @@ -278,7 +278,7 @@ manifest_list: version: 840de45f563e75c1c945789eb79cab360c01c807 curl: remote_url: https://gitee.com/src-openeuler/curl.git - version: 1c0874b674c299ffc16befacb4d8161e4d06c82b + version: ad5a04bbe3a901ad55b33d88aae76904b7eaf160 cyclonedds: remote_url: https://gitee.com/src-openeuler/cyclonedds.git version: f27e645561d9f09569cc06be645b99f5d60a476c @@ -290,7 +290,7 @@ manifest_list: version: 7cab46164e5c0398ae28a71de50eef4c427eebf8 debugedit: remote_url: https://gitee.com/src-openeuler/debugedit.git - version: a68327ce246c8c6dca05bbbda1b0c6725c14d166 + version: ee059325466e5f59c24dd1325ae84acc6eb88c85 demos: remote_url: https://gitee.com/src-openeuler/demos.git version: 5fa8de46c1a01b39d2964f77641b58f7527b0335 @@ -299,7 +299,7 @@ manifest_list: version: 58285f451c80a5d9e4c8ea4d69dbaa77446b76fa dhcp: remote_url: https://gitee.com/src-openeuler/dhcp.git - version: 40cae76e59c41ad41c255e6bb647178417ed63b7 + version: 4ce31c96edd7e13072d66c3c524d86f6d9496576 diagnostics: remote_url: https://gitee.com/src-openeuler/diagnostics.git version: 09f0fa3d874a278bff6f3df60a4bf634d9b7ed9d @@ -392,7 +392,7 @@ manifest_list: version: 214b141012a550d8ba2ed5d92bcdaad71e124a2b ffmpeg: remote_url: https://gitee.com/src-openeuler/ffmpeg.git - version: 320490bce475847ce95658127c33800e52339eb8 + version: 32bebf2eaf95b31bef845718f879612f900e1238 fgl297-fw: remote_url: https://github.com/MYiR-Dev/myir-firmware.git version: 65cbd809d32906c17c55ece3591be60e8c878735 @@ -407,7 +407,7 @@ manifest_list: version: aed3786384b99dc13a46a8d3af139df28b5642a3 flac: remote_url: https://gitee.com/src-openeuler/flac.git - version: 5f11ed0d08fe03b1792000de70ebfaf015f42268 + version: 26ed96c388fd4d183181fd23d9ac52756ff451c7 flann: remote_url: https://gitee.com/src-openeuler/flann.git version: f313e9dd5cf2fcfe6898ae2d41e1e15452c6b807 @@ -428,7 +428,7 @@ manifest_list: version: 32fda3aed4aa6a9e76e876d452cb6c330a658360 freetype: remote_url: https://gitee.com/src-openeuler/freetype.git - version: edc0b403494c714708842118d89fa0950a96e800 + version: 61634a09aea87c48ace2b6f957169098b4e588e6 fribidi: remote_url: https://gitee.com/src-openeuler/fribidi.git version: 773ce3d7ae74a5fd0b9cf5ea1885b0888c7a761c @@ -443,7 +443,7 @@ manifest_list: version: 5f6931e0f1feade0704df1d8ae7e7b78776233be gdb: remote_url: https://gitee.com/src-openeuler/gdb.git - version: 9ac4cb52af3f6f932ca6350c3bcb81c847ba6321 + version: 9516b2beb4e0b8e8a83d75c868b8db72f8d84aa2 gdbm: remote_url: https://gitee.com/src-openeuler/gdbm.git version: eac827f0e53317e9b87a08fc97a80098585485cc @@ -464,7 +464,7 @@ manifest_list: version: 90f0b261cfd2450cf9ead395232e620d12eebabf gflags: remote_url: https://gitee.com/src-openeuler/gflags.git - version: 50268556c0f9c02fed2b9e7787fe323aeb41fc21 + version: cf684d3046c41775e13344e0302e97a6b1c4161e git: remote_url: https://gitee.com/src-openeuler/git.git version: 81568744cf592dab873abb37d37c65c189818071 @@ -491,10 +491,10 @@ manifest_list: version: 582d717ff65e3b13219019f5def4e9a73e039ac6 gnu-efi: remote_url: https://gitee.com/src-openeuler/gnu-efi.git - version: b574829474d2cdae7404e49dfcd19e6a56056e8f + version: 33debcf0c4d6d99aea0390a305bfae44b734cd0a gnupg2: remote_url: https://gitee.com/src-openeuler/gnupg2.git - version: 8e100984ef99db540e6114049b71e43539c4ec52 + version: 9b90847f3fa0fb01b2e4bb74d3d01de18726c908 gnutls: remote_url: https://gitee.com/src-openeuler/gnutls.git version: 83e0afa5146ff5497b2c0857fa5432bb02117896 @@ -626,7 +626,7 @@ manifest_list: version: f1e6c38c502242bcff0cde0d62d869b6d84e37e2 initscripts: remote_url: https://gitee.com/src-openeuler/initscripts.git - version: a84eb033b2313fba01098e94c08578c35dcd824d + version: b6b1f82d406ddadb95c7da82adfc2607b003620a intel-cmt-cat: remote_url: https://gitee.com/src-openeuler/intel-cmt-cat.git version: 3c1e9e70623fdc7735fb66251d858444039a4d46 @@ -1724,7 +1724,7 @@ manifest_list: version: d203186ba7d93ae7dced52ff4ffb8f7dc9cdf8c4 gstreamer1-plugins-bad-free: remote_url: https://gitee.com/src-openeuler/gstreamer1-plugins-bad-free.git - version: a155ccde37583eaa4bcfbb611c43e6455249d212 + version: 7ec7d3cbe9c51c464348c6b676f23606274cca2e quilt: remote_url: https://gitee.com/src-openeuler/quilt.git version: e7982134da4045463d63a3f94ccc685abc5028a3 diff --git a/meta-openeuler/dynamic-layers/openembedded-layer/recipes-support/gflags/gflags_%.bbappend b/meta-openeuler/dynamic-layers/openembedded-layer/recipes-support/gflags/gflags_%.bbappend index ae84ad15f3523fa5052228dbd7f81d3e0bc3f6ea..cbef3b6a593edc27edf1e10d634459e04fd53484 100644 --- a/meta-openeuler/dynamic-layers/openembedded-layer/recipes-support/gflags/gflags_%.bbappend +++ b/meta-openeuler/dynamic-layers/openembedded-layer/recipes-support/gflags/gflags_%.bbappend @@ -7,3 +7,7 @@ S = "${WORKDIR}/${BP}" SRC_URI:prepend = " \ file://${BP}.tar.gz \ " + +SRC_URI:append = " \ + file://gflags-fix_pkgconfig.patch \ +" diff --git a/meta-openeuler/recipes-connectivity/bluez5/bluez5_%.bbappend b/meta-openeuler/recipes-connectivity/bluez5/bluez5_%.bbappend index 379e94241f993cd17070daa7ad7c1805167586ca..18e81f91fbbf3670ee73fdbe7689a446cfb380a6 100644 --- a/meta-openeuler/recipes-connectivity/bluez5/bluez5_%.bbappend +++ b/meta-openeuler/recipes-connectivity/bluez5/bluez5_%.bbappend @@ -11,10 +11,14 @@ SRC_URI:prepend = "\ " SRC_URI:sw_64:prepend = " \ file://bluez-5.54-sw.patch \ + file://add-sw_64-support.patch \ " # removed by rpi in 5.66 version -SRC_URI:remove = "file://0004-Move-the-43xx-firmware-into-lib-firmware.patch" +SRC_URI:remove = "\ + file://0004-Move-the-43xx-firmware-into-lib-firmware.patch \ + file://bluez-5.54-sw.patch \ +" FILESEXTRAPATHS:prepend := "${THISDIR}/${BPN}:" SRC_URI:append:rpi = " \ diff --git a/meta-openeuler/recipes-connectivity/dhcp/dhcp_%.bbappend b/meta-openeuler/recipes-connectivity/dhcp/dhcp_%.bbappend index 8fd04ae01335ea9777abad6314ffe575389716fc..0a876811a77ef5cae90c419eb0e24720865c294d 100644 --- a/meta-openeuler/recipes-connectivity/dhcp/dhcp_%.bbappend +++ b/meta-openeuler/recipes-connectivity/dhcp/dhcp_%.bbappend @@ -63,7 +63,8 @@ SRC_URI:prepend = " \ # file://backport-0002-CVE-2024-1737.patch # file://backport-0003-CVE-2024-1737.patch # file://backport-0004-CVE-2024-1737.patch - +# file://backport-0028-CVE-2023-3341.patch +# file://backport-0029-CVE-2024-11187.patch diff --git a/meta-openeuler/recipes-devtools/binutils/binutils-src.inc b/meta-openeuler/recipes-devtools/binutils/binutils-src.inc index 3c2ce64fba6f7ffb2c1a2a3c8569e7c210444aee..3081138ec66da83c9e5ac6c466ed56c66cdbe462 100644 --- a/meta-openeuler/recipes-devtools/binutils/binutils-src.inc +++ b/meta-openeuler/recipes-devtools/binutils/binutils-src.inc @@ -7,6 +7,7 @@ FILESEXTRAPATHS:prepend := "${THISDIR}/files/:" SRC_URI = " \ file://${BP}.tar.xz \ file://X86-Change-fpic-to-fPIC-in-PICFLAG.patch \ + file://Sw64-binutils-Add-Sw64-support.patch \ file://binutils-libtool-lib64.patch \ file://binutils-export-demangle.h.patch \ file://binutils-no-config-h-check.patch \ @@ -16,6 +17,9 @@ SRC_URI = " \ file://binutils-update-linker-manual.patch \ file://binutils-gold-empty-dwp.patch \ file://Fix-gold-linker-relocation-offset.patch \ + file://nm-Avoid-potential-segmentation-fault-when-displaying.patch \ + file://backport-CVE-2025-0840.patch \ + file://aarch64-add-l4-instruction.patch \ " # apply used patches from poky diff --git a/meta-openeuler/recipes-graphics/freetype/freetype_%.bbappend b/meta-openeuler/recipes-graphics/freetype/freetype_%.bbappend index f3b6f888b1ac2d41a519d2fcc3222777e73168f8..a5fff252013cc8e245e87d3a6572abfef279cd90 100644 --- a/meta-openeuler/recipes-graphics/freetype/freetype_%.bbappend +++ b/meta-openeuler/recipes-graphics/freetype/freetype_%.bbappend @@ -21,6 +21,7 @@ SRC_URI:prepend = " \ file://backport-freetype-2.8-multilib.patch \ file://backport-freetype-2.10.0-internal-outline.patch \ file://backport-freetype-2.10.1-debughook.patch \ + file://backport-CVE-2025-27363.patch \ " LIC_FILES_CHKSUM = "file://LICENSE.TXT;md5=843b6efc16f6b1652ec97f89d5a516c0 \ diff --git a/meta-openeuler/recipes-multimedia/ffmpeg/ffmpeg_%.bbappend b/meta-openeuler/recipes-multimedia/ffmpeg/ffmpeg_%.bbappend index 2e50d35879f963348b93766e759fedb2d1a60cc8..29d2192316328507604f5efbeeb46dc078e4795a 100644 --- a/meta-openeuler/recipes-multimedia/ffmpeg/ffmpeg_%.bbappend +++ b/meta-openeuler/recipes-multimedia/ffmpeg/ffmpeg_%.bbappend @@ -19,6 +19,13 @@ SRC_URI:prepend = "file://${BP}.tar.xz \ file://CVE-2023-49501.patch \ file://backport-CVE-2024-35366.patch \ file://backport-CVE-2024-35367.patch \ + file://backport-CVE-2024-35368.patch \ + file://backport-CVE-2024-36616.patch \ + file://backport-CVE-2024-36618.patch \ + file://backport-CVE-2024-36617.patch \ + file://backport-CVE-2024-36619.patch \ + file://backport-CVE-2024-35369.patch \ + file://backport-CVE-2024-36613.patch \ " # x264 and some pkgconfig need LICENSE_FLAGS_ACCEPTED commercial flag diff --git a/meta-openeuler/recipes-multimedia/flac/flac_%.bbappend b/meta-openeuler/recipes-multimedia/flac/flac_%.bbappend index b2915ed1513ea05c4bd2505c5f13f3544c4d2e23..21a8645957addf423041819f6fb46bd2c48a5188 100644 --- a/meta-openeuler/recipes-multimedia/flac/flac_%.bbappend +++ b/meta-openeuler/recipes-multimedia/flac/flac_%.bbappend @@ -2,4 +2,9 @@ PV = "1.4.3" SRC_URI = " \ file://${BP}.tar.xz \ + file://flac-1.4.3-sw.patch \ + file://Limit-the-number-of-clock-calls.patch \ + file://Documentation-man-flac.md-fix-typo.patch \ + file://flac-foreign_metadata-fix-Walloc-size.patch \ + file://Fix-format-ending-up-with-wrong-subformat.patch \ " diff --git a/meta-openeuler/recipes-support/boost/boost-build-native_%.bbappend b/meta-openeuler/recipes-support/boost/boost-build-native_%.bbappend index 2ad3a0f6ab54bb252b6495af390dd3fa9e2b2140..978c8a56419f12306312191d69bc61678dc297d4 100644 --- a/meta-openeuler/recipes-support/boost/boost-build-native_%.bbappend +++ b/meta-openeuler/recipes-support/boost/boost-build-native_%.bbappend @@ -8,7 +8,7 @@ BOOST_VER = "${@"_".join(d.getVar("PV").split("."))}" BOOST_P = "boost_${BOOST_VER}" SRC_URI:prepend = " \ - file://${BOOST_P}.tar.gz \ + file://${BOOST_P}.tar.bz2 \ " S = "${WORKDIR}/${BOOST_P}/tools/build" diff --git a/meta-openeuler/recipes-support/boost/boost_%.bbappend b/meta-openeuler/recipes-support/boost/boost_%.bbappend index 0b4a3362325d6038ede1bef39edb63b1c5138201..2ab34021b5a43dfb0ccffce02c5356d424951148 100644 --- a/meta-openeuler/recipes-support/boost/boost_%.bbappend +++ b/meta-openeuler/recipes-support/boost/boost_%.bbappend @@ -8,12 +8,13 @@ FILESEXTRAPATHS:prepend := "${THISDIR}/${BPN}:" # For example, meta-phosphor needs boost 1.78.0 to be built SRC_URI = " \ - file://${BOOST_P}.tar.gz \ + file://${BOOST_P}.tar.bz2 \ file://boost-1.81-graph-Dont-run-performance-test-in-CI.patch \ file://boost-1.81-random-Update-multiprecision_float_test.cpp-to-not-overflow.patch \ file://boost-1.81-random-Update-multiprecision_int_test.cpp-to-not-accidental.patch \ file://boost-1.81-random-test-Add-missing-includes.patch \ file://boost-1.81-phoenix-Update-avoid-placeholders-uarg1.10-ODR-violates.patch \ + file://boost-1.73.0-cmakedir.patch \ " S = "${WORKDIR}/${BOOST_P}" diff --git a/meta-openeuler/recipes-support/curl/curl_%.bbappend b/meta-openeuler/recipes-support/curl/curl_%.bbappend index 0e44e0b10298e2a755a9a79514adfbd8aed57f21..1891c9a344650765c049f45efd12a25eb0001412 100644 --- a/meta-openeuler/recipes-support/curl/curl_%.bbappend +++ b/meta-openeuler/recipes-support/curl/curl_%.bbappend @@ -27,6 +27,21 @@ SRC_URI = " \ file://backport-url-allow-DoH-transfers-to-override-max-connection-limit.patch \ file://backport-pre-CVE-2024-9681.patch \ file://backport-CVE-2024-9681.patch \ + file://backport-multi-check-that-the-multi-handle-is-valid-in-curl_m.patch \ + file://backport-cookie-treat-cookie-name-case-sensitively.patch \ + file://backport-CVE-2024-11053-pre1.patch \ + file://backport-CVE-2024-11053-pre2.patch \ + file://backport-CVE-2024-11053-pre3.patch \ + file://backport-CVE-2024-11053-pre4.patch \ + file://backport-CVE-2024-11053-pre5.patch \ + file://backport-CVE-2024-11053.patch \ + file://backport-CVE-2024-11053-post1.patch \ + file://backport-CVE-2024-11053-post2.patch \ + file://backport-CVE-2025-0167.patch \ + file://backport-CVE-2025-0725.patch \ + file://backport-altsvc-avoid-integer-overflow-in-expire-calculation.patch \ + file://backport-urlapi-fix-redirect-to-a-new-fragment-or-query-only-adapt.patch \ + file://backport-tool_getparam-clear-sensitive-arguments-better.patch \ " ### openeuler configuration diff --git a/meta-openeuler/recipes-support/gnupg/gnupg_%.bbappend b/meta-openeuler/recipes-support/gnupg/gnupg_%.bbappend index e246f035f56a4b6450f727eab2b8e19d10af51a7..55ad65c4422d4f851f8d97e6fc1dd7de4d20c9dd 100644 --- a/meta-openeuler/recipes-support/gnupg/gnupg_%.bbappend +++ b/meta-openeuler/recipes-support/gnupg/gnupg_%.bbappend @@ -16,4 +16,11 @@ SRC_URI:append = " \ file://backport-dirmngr-Enable-the-call-of-ks_ldap_help_variables-wh.patch \ file://backport-gpg-Make-no-literal-work-again-for-c-and-store.patch \ file://backport-gpg-Fix-minor-memory-leak-during-certain-smartcard-o.patch \ + file://backport-0001-CVE-2025-30258.patch \ + file://backport-0002-CVE-2025-30258.patch \ + file://backport-0003-CVE-2025-30258.patch \ + file://backport-0004-CVE-2025-30258.patch \ + file://backport-0005-CVE-2025-30258.patch \ + file://backport-0006-CVE-2025-30258.patch \ + file://backport-gpg-Fix-double-free-of-internal-data.patch \ "