xref: /openbmc/openbmc/poky/documentation/migration-guides/release-notes-4.3.2.rst (revision 8460358c3d24c71d9d38fd126c745854a6301564) 
1.. SPDX-License-Identifier: CC-BY-SA-2.0-UK
2
3Release notes for Yocto-4.3.2 (Nanbield)
4----------------------------------------
5
6Security Fixes in Yocto-4.3.2
7~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
8
9-  avahi: Fix :cve_nist:`2023-1981`, :cve_nist:`2023-38469`, :cve_nist:`2023-38470`, :cve_nist:`2023-38471`, :cve_nist:`2023-38472` and :cve_nist:`2023-38473`
10-  curl: Fix :cve_nist:`2023-46218`
11-  ghostscript: Fix :cve_nist:`2023-46751`
12-  grub: fix :cve_nist:`2023-4692` and :cve_nist:`2023-4693`
13-  gstreamer1.0: Fix :cve_mitre:`2023-44446`
14-  linux-yocto/6.1: Ignore :cve_mitre:`2023-39197`, :cve_nist:`2023-39198`, :cve_nist:`2023-5090`, :cve_nist:`2023-5633`, :cve_nist:`2023-6111`, :cve_nist:`2023-6121` and :cve_nist:`2023-6176`
15-  linux-yocto/6.5: Ignore :cve_nist:`2022-44034`, :cve_mitre:`2023-39197`, :cve_nist:`2023-39198`, :cve_nist:`2023-5972`, :cve_nist:`2023-6039`, :cve_nist:`2023-6111` and :cve_nist:`2023-6176`
16-  perl: fix :cve_nist:`2023-47100`
17-  python3-urllib3: Fix :cve_nist:`2023-45803`
18-  rust: Fix :cve_nist:`2023-40030`
19-  vim: Fix :cve_nist:`2023-48231`, :cve_nist:`2023-48232`, :cve_nist:`2023-48233`, :cve_nist:`2023-48234`, :cve_nist:`2023-48235`, :cve_nist:`2023-48236` and :cve_nist:`2023-48237`
20-  xserver-xorg: Fix :cve_nist:`2023-5367` and :cve_nist:`2023-5380`
21-  xwayland: Fix :cve_nist:`2023-5367`
22
23
24Fixes in Yocto-4.3.2
25~~~~~~~~~~~~~~~~~~~~
26
27-  base-passwd: Upgrade to 3.6.2
28-  bind: Upgrade to 9.18.20
29-  binutils: stable 2.41 branch updates
30-  bitbake: command: Make parseRecipeFile() handle virtual recipes correctly
31-  bitbake: lib/bb: Add workaround for libgcc issues with python 3.8 and 3.9
32-  bitbake: toastergui: verify that an existing layer path is given
33-  bluez5: fix connection for ps5/dualshock controllers
34-  build-appliance-image: Update to nanbield head revision
35-  cmake: Upgrade to 3.27.7
36-  contributor-guide: add License-Update tag
37-  contributor-guide: fix command option
38-  cups: Add root,sys,wheel to system groups
39-  cve-update-nvd2-native: faster requests with API keys
40-  cve-update-nvd2-native: increase the delay between subsequent request failures
41-  cve-update-nvd2-native: make number of fetch attemtps configurable
42-  cve-update-nvd2-native: remove unused variable CVE_SOCKET_TIMEOUT
43-  dev-manual: Discourage the use of SRC_URI[md5sum]
44-  dev-manual: layers: update link to YP Compatible form
45-  dev-manual: runtime-testing: fix test module name
46-  devtool: finish/update-recipe: restrict mode srcrev to recipes fetched from SCM
47-  devtool: fix update-recipe dry-run mode
48-  ell: Upgrade to 0.60
49-  enchant2: Upgrade to 2.6.2
50-  ghostscript: Upgrade to 10.02.1
51-  glib-2.0: Upgrade to 2.78.1
52-  glibc: stable 2.38 branch updates
53-  gstreamer1.0: Upgrade to 1.22.7
54-  gtk: Add rdepend on printbackend for cups
55-  harfbuzz: Upgrade to 8.2.2
56-  json-c: fix icecc compilation
57-  kern-tools: bump :term:`SRCREV` for queue processing changes
58-  kern-tools: make lower context patches reproducible
59-  kern-tools: update :term:`SRCREV` to include SECURITY.md file
60-  kernel-arch: use ccache only for compiler
61-  kernel-yocto: improve metadata patching
62-  lib/oe/buildcfg.py: Include missing import
63-  lib/oe/buildcfg.py: Remove unused parameter
64-  lib/oe/patch: ensure os.chdir restoring always happens
65-  lib/oe/path: Deploy files can start only with a dot
66-  libgcrypt: Upgrade to 1.10.3
67-  libjpeg-turbo: Upgrade to 3.0.1
68-  libnewt: Upgrade to 0.52.24
69-  libnsl2: Upgrade to 2.0.1
70-  libsolv: Upgrade to 0.7.26
71-  libxslt: Upgrade to 1.1.39
72-  linux-firmware: add audio topology symlink to the X13's audio package
73-  linux-firmware: add missing depenencies on license packages
74-  linux-firmware: add new fw file to ${PN}-rtl8821
75-  linux-firmware: add notice file to sdm845 modem firmware
76-  linux-firmware: create separate packages
77-  linux-firmware: package Qualcomm Venus 6.0 firmware
78-  linux-firmware: package Robotics RB5 sensors DSP firmware
79-  linux-firmware: package firmware for Qualcomm Adreno a702
80-  linux-firmware: package firmware for Qualcomm QCM2290 / QRB4210
81-  linux-firmware: Upgrade to 20231030
82-  linux-yocto-rt/6.1: update to -rt18
83-  linux-yocto/6.1: cfg: restore CONFIG_DEVMEM
84-  linux-yocto/6.1: drop removed IMA option
85-  linux-yocto/6.1: Upgrade to v6.1.68
86-  linux-yocto/6.5: cfg: restore CONFIG_DEVMEM
87-  linux-yocto/6.5: cfg: split runtime and symbol debug
88-  linux-yocto/6.5: drop removed IMA option
89-  linux-yocto/6.5: fix AB-INT: QEMU kernel panic: No irq handler for vector
90-  linux-yocto/6.5: Upgrade to v6.5.13
91-  linux/cve-exclusion6.1: Update to latest kernel point release
92-  log4cplus: Upgrade to 2.1.1
93-  lsb-release: use https for :term:`UPSTREAM_CHECK_URI`
94-  manuals: brief-yoctoprojectqs: align variable order with default local.conf
95-  manuals: fix URL
96-  meson: use correct targets for rust binaries
97-  migration-guide: add release notes for 4.0.14, 4.0.15, 4.2.4, 4.3.1
98-  migration-guides: release 3.5 is actually 4.0
99-  migration-guides: reword fix in release-notes-4.3.1
100-  msmtp: Upgrade to 1.8.25
101-  oeqa/selftest/tinfoil: Add tests that parse virtual recipes
102-  openssl: improve handshake test error reporting
103-  package_ipk: Fix Source: field variable dependency
104-  patchtest: shorten patch signed-off-by test output
105-  perf: lift :term:`TARGET_CC_ARCH` modification out of security_flags.inc
106-  perl: Upgrade to 5.38.2
107-  perlcross: Upgrade to 1.5.2
108-  poky.conf: bump version for 4.3.2 release
109-  python3-ptest: skip test_storlines
110-  python3-urllib3: Upgrade to 2.0.7
111-  qemu: Upgrade to 8.1.2
112-  ref-manual: Fix reference to MIRRORS/PREMIRRORS defaults
113-  ref-manual: releases.svg: update nanbield release status
114-  useradd_base: sed -i destroys symlinks
115-  rootfs-postcommands: sed -i destroys symlinks
116-  sstate: Ensure sstate searches update file mtime
117-  strace: backport fix for so_peerpidfd-test
118-  systemd-boot: Fix build issues on armv7a-linux
119-  systemd-compat-units.bb: fix postinstall script
120-  systemd: fix DynamicUser issue
121-  systemd: update :term:`LICENSE` statement
122-  tcl: skip async and event tests in run-ptest
123-  tcl: skip timing-dependent tests in run-ptest
124-  test-manual: add links to python unittest
125-  test-manual: add or improve hyperlinks
126-  test-manual: explicit or fix file paths
127-  test-manual: resource updates
128-  test-manual: text and formatting fixes
129-  test-manual: use working example
130-  testimage: Drop target_dumper and most of monitor_dumper
131-  testimage: Exclude wtmp from target-dumper commands
132-  tzdata: Upgrade to 2023d
133-  update_gtk_icon_cache: Fix for GTK4-only builds
134-  useradd_base: Fix sed command line for passwd-expire
135-  vim: Upgrade to 9.0.2130
136-  xserver-xorg: Upgrade to 21.1.9
137-  xwayland: Upgrade to 23.2.2
138
139
140Known Issues in Yocto-4.3.2
141~~~~~~~~~~~~~~~~~~~~~~~~~~~
142
143- N/A
144
145Contributors to Yocto-4.3.2
146~~~~~~~~~~~~~~~~~~~~~~~~~~~
147
148-  Adam Johnston
149-  Alexander Kanavin
150-  Anuj Mittal
151-  Bastian Krause
152-  Bruce Ashfield
153-  Chen Qi
154-  Deepthi Hemraj
155-  Dhairya Nagodra
156-  Dmitry Baryshkov
157-  Fahad Arslan
158-  Javier Tia
159-  Jermain Horsman
160-  Joakim Tjernlund
161-  Julien Stephan
162-  Justin Bronder
163-  Khem Raj
164-  Lee Chee Yang
165-  Marco Felsch
166-  Markus Volk
167-  Marta Rybczynska
168-  Massimiliano Minella
169-  Michael Opdenacker
170-  Paul Barker
171-  Peter Kjellerstedt
172-  Peter Marko
173-  Randy MacLeod
174-  Rasmus Villemoes
175-  Richard Purdie
176-  Ross Burton
177-  Shubham Kulkarni
178-  Simone Weiß
179-  Steve Sakoman
180-  Sundeep KOKKONDA
181-  Tim Orling
182-  Trevor Gamblin
183-  Vijay Anusuri
184-  Viswanath Kraleti
185-  Vyacheslav Yurkov
186-  Wang Mingyu
187-  William Lyu
188-  Zoltán Böszörményi
189
190Repositories / Downloads for Yocto-4.3.2
191~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
192
193poky
194
195-  Repository Location: :yocto_git:`/poky`
196-  Branch: :yocto_git:`nanbield </poky/log/?h=nanbield>`
197-  Tag:  :yocto_git:`yocto-4.3.2 </poky/log/?h=yocto-4.3.2>`
198-  Git Revision: :yocto_git:`f768ffb8916feb6542fcbe3e946cbf30e247b151 </poky/commit/?id=f768ffb8916feb6542fcbe3e946cbf30e247b151>`
199-  Release Artefact: poky-f768ffb8916feb6542fcbe3e946cbf30e247b151
200-  sha: 21ca1695d70aba9b4bd8626d160111feab76206883cd14fe41eb024692bdfd7b
201-  Download Locations:
202   http://downloads.yoctoproject.org/releases/yocto/yocto-4.3.2/poky-f768ffb8916feb6542fcbe3e946cbf30e247b151.tar.bz2
203   http://mirrors.kernel.org/yocto/yocto/yocto-4.3.2/poky-f768ffb8916feb6542fcbe3e946cbf30e247b151.tar.bz2
204
205openembedded-core
206
207-  Repository Location: :oe_git:`/openembedded-core`
208-  Branch: :oe_git:`nanbield </openembedded-core/log/?h=nanbield>`
209-  Tag:  :oe_git:`yocto-4.3.2 </openembedded-core/log/?h=yocto-4.3.2>`
210-  Git Revision: :oe_git:`ff595b937d37d2315386aebf315cea719e2362ea </openembedded-core/commit/?id=ff595b937d37d2315386aebf315cea719e2362ea>`
211-  Release Artefact: oecore-ff595b937d37d2315386aebf315cea719e2362ea
212-  sha: a7c6332dc0e09ecc08221e78b11151e8e2a3fd9fa3eaad96a4c03b67012bfb97
213-  Download Locations:
214   http://downloads.yoctoproject.org/releases/yocto/yocto-4.3.2/oecore-ff595b937d37d2315386aebf315cea719e2362ea.tar.bz2
215   http://mirrors.kernel.org/yocto/yocto/yocto-4.3.2/oecore-ff595b937d37d2315386aebf315cea719e2362ea.tar.bz2
216
217meta-mingw
218
219-  Repository Location: :yocto_git:`/meta-mingw`
220-  Branch: :yocto_git:`nanbield </meta-mingw/log/?h=nanbield>`
221-  Tag:  :yocto_git:`yocto-4.3.2 </meta-mingw/log/?h=yocto-4.3.2>`
222-  Git Revision: :yocto_git:`49617a253e09baabbf0355bc736122e9549c8ab2 </meta-mingw/commit/?id=49617a253e09baabbf0355bc736122e9549c8ab2>`
223-  Release Artefact: meta-mingw-49617a253e09baabbf0355bc736122e9549c8ab2
224-  sha: 2225115b73589cdbf1e491115221035c6a61679a92a93b2a3cf761ff87bf4ecc
225-  Download Locations:
226   http://downloads.yoctoproject.org/releases/yocto/yocto-4.3.2/meta-mingw-49617a253e09baabbf0355bc736122e9549c8ab2.tar.bz2
227   http://mirrors.kernel.org/yocto/yocto/yocto-4.3.2/meta-mingw-49617a253e09baabbf0355bc736122e9549c8ab2.tar.bz2
228
229bitbake
230
231-  Repository Location: :oe_git:`/bitbake`
232-  Branch: :oe_git:`2.6 </bitbake/log/?h=2.6>`
233-  Tag:  :oe_git:`yocto-4.3.2 </bitbake/log/?h=yocto-4.3.2>`
234-  Git Revision: :oe_git:`72bf75f0b2e7f36930185e18a1de8277ce7045d8 </bitbake/commit/?id=72bf75f0b2e7f36930185e18a1de8277ce7045d8>`
235-  Release Artefact: bitbake-72bf75f0b2e7f36930185e18a1de8277ce7045d8
236-  sha: 0b6ccd4796ccd211605090348a3d4378358c839ae1bb4c35964d0f36f2663187
237-  Download Locations:
238   http://downloads.yoctoproject.org/releases/yocto/yocto-4.3.2/bitbake-72bf75f0b2e7f36930185e18a1de8277ce7045d8.tar.bz2
239   http://mirrors.kernel.org/yocto/yocto/yocto-4.3.2/bitbake-72bf75f0b2e7f36930185e18a1de8277ce7045d8.tar.bz2
240
241yocto-docs
242
243-  Repository Location: :yocto_git:`/yocto-docs`
244-  Branch: :yocto_git:`nanbield </yocto-docs/log/?h=nanbield>`
245-  Tag: :yocto_git:`yocto-4.3.2 </yocto-docs/log/?h=yocto-4.3.2>`
246-  Git Revision: :yocto_git:`fac88b9e80646a68b31975c915a718a9b6b2b439 </yocto-docs/commit/?id=fac88b9e80646a68b31975c915a718a9b6b2b439>`
247
248