[pull] master from buildroot:master #392
Merged
Conversation
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
![pull[bot]](https://avatars.githubusercontent.com/in/12910?s=60&v=4){kind=small}
Release notes: https://www.kitware.com/cmake-3-31-2-available-for-download/ Rebased patch. Signed-off-by: Bernd Kuhls <[email protected]> Signed-off-by: Julien Olivain <[email protected]>
Fixes the following security issues: CVE-2024-53907: Potential denial-of-service in django.utils.html.strip_tags() The strip_tags() method and striptags template filter are subject to a potential denial-of-service attack via certain inputs containing large sequences of nested incomplete HTML entities. CVE-2024-53908: Potential SQL injection in HasKey(lhs, rhs) on Oracle Direct usage of the django.db.models.fields.json.HasKey lookup on Oracle is subject to SQL injection if untrusted data is used as a lhs value. Applications that use the jsonfield.has_key lookup through the __ syntax are unaffected. https://www.djangoproject.com/weblog/2024/dec/04/security-releases/ Signed-off-by: Peter Korsgaard <[email protected]> Signed-off-by: Julien Olivain <[email protected]>
Release notes: https://sqlite.org/releaselog/3_47_2.html Signed-off-by: Bernd Kuhls <[email protected]> Signed-off-by: Julien Olivain <[email protected]>
Updating the hash of the WHENCE file, due to firmware additions and firmware changes, but no changes to the redistribution/licensing conditions. Signed-off-by: Bernd Kuhls <[email protected]> Signed-off-by: Julien Olivain <[email protected]>
Release notes: https://chromium.googlesource.com/webm/libvpx/+/refs/tags/v1.15.0 https://chromium.googlesource.com/webm/libvpx/+/refs/tags/v1.14.1 https://chromium.googlesource.com/webm/libvpx/+/refs/tags/v1.14.0 Signed-off-by: Bernd Kuhls <[email protected]> Signed-off-by: Julien Olivain <[email protected]>
Release notes: https://lists.x.org/archives/xorg-announce/2024-December/003562.html Signed-off-by: Bernd Kuhls <[email protected]> Signed-off-by: Julien Olivain <[email protected]>
The 4.19.x series is now EOL upstream, so drop the linux-headers option and add legacy handling for it. Signed-off-by: Bernd Kuhls <[email protected]> Signed-off-by: Julien Olivain <[email protected]>
Signed-off-by: Bernd Kuhls <[email protected]> Signed-off-by: Julien Olivain <[email protected]>
Fixes: http://autobuild.buildroot.net/results/23f0f7386f7d430c402b24f3b58b1c20c1c8344a/ Linux commit d69d8048459 "driver core: have match() callback in struct bus_type take a const *", which was added in 6.11-rc1, changed the interface for sysfs match callback to accept a const struct device_driver, breaking the build of dahdi-linux: CC [M] build/dahdi-linux-3.3.0/drivers/dahdi/dahdi-sysfs.o build/dahdi-linux-3.3.0/drivers/dahdi/dahdi-sysfs.c:275:27: error: initialization of "int (*)(struct device *, const struct device_driver *)" from incompatible pointer type "int (*)(struct device *, struct device_driver *)" [-Werror=incompatible-pointer-types] 275 | .match = span_match, Add a patch submitted upstream to fix that. Signed-off-by: Peter Korsgaard <[email protected]> Signed-off-by: Julien Olivain <[email protected]>
Pull driver fixes for v6.9+ kernels. Signed-off-by: Sergey Matyukevich <[email protected]> Signed-off-by: Julien Olivain <[email protected]>
Switch to the new Linux LTS release 6.12.3 and to the latest U-Boot 2024.10. Tune the patch for xr819 interrupts for the new kernel. Add hashes for Linux kernel/headers and U-Boot. Finally, add BR2_TARGET_UBOOT_NEEDS_GNUTLS option required by new U-Boot. Signed-off-by: Sergey Matyukevich <[email protected]> [Julien: - add BR2_DOWNLOAD_FORCE_CHECK_HASHES=y - remove .checkpackageignore entry - change linux.hash comment to use upstream hashes ] Signed-off-by: Julien Olivain <[email protected]>
Switch to the new Linux LTS release 6.12.3 and to the latest U-Boot 2024.10. Add hashes for Linux kernel/headers and U-Boot. Finally, add BR2_TARGET_UBOOT_NEEDS_GNUTLS option required by new U-Boot. Signed-off-by: Sergey Matyukevich <[email protected]> [Julien: - add BR2_DOWNLOAD_FORCE_CHECK_HASHES=y - remove .checkpackageignore entry - change linux.hash comment to use upstream hashes - add missing BR2_GLOBAL_PATCH_DIR ] Signed-off-by: Julien Olivain <[email protected]>
Changelog: https://github.com/ebiggers/libdeflate/blob/master/NEWS.md Updated license hash due to upstream commit: ebiggers/libdeflate@439f301 Signed-off-by: Bernd Kuhls <[email protected]> Signed-off-by: Julien Olivain <[email protected]>
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
See Commits and Changes for more details.
Created by
pull[bot] (v2.0.0-alpha.1)
Can you help keep this open source service alive? 💖 Please sponsor : )