git.ipfire.org Git - thirdparty/openembedded/openembedded-core.git/commit

author	Siddharth Doshi <sdoshi@mvista.com>
	Mon, 16 Oct 2023 14:43:50 +0000 (20:13 +0530)
committer	Steve Sakoman <steve@sakoman.com>
	Mon, 16 Oct 2023 15:07:13 +0000 (05:07 -1000)
commit	47e270a4fd2e086b5ee9f38891f326ce505f2319
tree	cf9523fb860ee93625affce6cf2aa916189eb283	tree
parent	ff386fb5632c26ceb12d2381e9128b0546aef795	commit \| diff

libxpm: upgrade to 3.5.17

- This upgrade includes multiple security fixes.
CVE-2022-4883
CVE-2022-44617
CVE-2022-46285
CVE-2022-44617
CVE-2023-43788
CVE-2023-43789

- Removed CVE-2022-46285 as it is already fixed by this upgrade.

- License-update: additional copyright holders
f0857c0 man pages: Correct Copyright/License notices
Due to this commit LIC_FILES_CHKSUM is changed

- Disable reading compressed files as that requires compress/uncompress executables.
Following the approach in oe-core/master:
7de4084634 libxpm: upgrade 3.5.14 -> 3.5.15

- Add XORG_EXT to specify tar.xz as upstream has switched from bz2 to xz compression.

Signed-off-by: Siddharth Doshi <sdoshi@mvista.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>

meta/recipes-graphics/xorg-lib/libxpm/CVE-2022-46285.patch	[deleted file]	blob \| blame \| history
meta/recipes-graphics/xorg-lib/libxpm_3.5.17.bb	[moved from meta/recipes-graphics/xorg-lib/libxpm_3.5.13.bb with 68% similarity]	diff \| blob \| blame \| history