This repository was archived by the owner on Jun 28, 2021. It is now read-only.
Update buildroot fork to latest upstream master#8
Open
tmagik wants to merge 10000 commits intosifive:masterfrom
Open
Update buildroot fork to latest upstream master#8tmagik wants to merge 10000 commits intosifive:masterfrom
tmagik wants to merge 10000 commits intosifive:masterfrom
Conversation
Fixes the following vulnerability: - CVE-2025-46394 In tar in BusyBox through 1.37.0, a TAR archive can have filenames hidden from a listing through the use of terminal escape sequences. For more information, see: - https://nvd.nist.gov//vuln/detail/CVE-2025-46394 - https://git.busybox.net/busybox/commit/?id=f5e1bf966b19ea1821f00a8c9ecd7774598689b4 - https://patchwork.yoctoproject.org/project/oe-core/patch/20250928221332.1308547-1-peter.marko@siemens.com/#31415 - https://lists.busybox.net/pipermail/busybox/2025-October/091743.html Signed-off-by: Thomas Perale <thomas.perale@mind.be> Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
This is also fixed in systemd v258+. Fixes: https://autobuild.buildroot.net/results/8ff/8ff77e79cc7373f452c25212c7e2058368cdd05f/ Signed-off-by: Marcus Hoffmann <buildroot@bubu1.eu> Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
We're about to bump abseil to a version >= 20250512.02, which requires C++17, meaning that protobuf/grpc will also C++17. This in turn means that the grpc support in collectd will also need C++17. So just like our current patch 0002-configure.ac-fix-grpc-build.patch updates the collectd logic from C++11 to C++14, this new patch (accepted upstream) updates the collectd logic again from C++14 to C++17. Signed-off-by: Michael Nosthoff <buildroot@heine.tech> Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
- enforce C++17 as this is required since 20250512 Release Notes: https://github.com/abseil/abseil-cpp/releases/tag/20250814.1 https://github.com/abseil/abseil-cpp/releases/tag/20250814.0 https://github.com/abseil/abseil-cpp/releases/tag/20250512.0 Signed-off-by: Michael Nosthoff <buildroot@heine.tech> Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
- use new flag gRPC_DOWNLOAD_ARCHIVES=OFF which removed the need for patch 0003 - refresh patches - update 0002 to properly apply and re-enable utf8_range_lib as its linked against grpc_plugin_support Release Notes since 1.66: https://github.com/grpc/grpc/releases/tag/v1.67.0 https://github.com/grpc/grpc/releases/tag/v1.68.0 https://github.com/grpc/grpc/releases/tag/v1.69.0 https://github.com/grpc/grpc/releases/tag/v1.70.0 https://github.com/grpc/grpc/releases/tag/v1.71.0 https://github.com/grpc/grpc/releases/tag/v1.72.0 https://github.com/grpc/grpc/releases/tag/v1.73.0 https://github.com/grpc/grpc/releases/tag/v1.74.0 https://github.com/grpc/grpc/releases/tag/v1.75.0 https://github.com/grpc/grpc/releases/tag/v1.76.0 Fixes: 2d19a0b "package/{python-}protobuf: bump to version 33.2" This bump of protobuf broke the build of grpc 1.66.1, which can be reproduced with: BR2_arm=y BR2_cortex_a53=y BR2_TOOLCHAIN_EXTERNAL=y BR2_TOOLCHAIN_EXTERNAL_BOOTLIN=y BR2_PACKAGE_COLLECTD=y BR2_PACKAGE_COLLECTD_GRPC=y Fixes: https://autobuild.buildroot.net/results/84764134062f28f86ecb1646a536ee4862e4f8df/ Signed-off-by: Michael Nosthoff <buildroot@heine.tech> Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
Change log at https://github.com/ndilieto/uacme/blob/upstream/1.8.0/ChangeLog Signed-off-by: Nicola Di Lieto <nicola.dilieto@gmail.com> Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
For list of changes since v10.1.0, see: https://gitlab.com/qemu-project/qemu/-/commits/v10.1.3 Note: this bump is a bugfix release for the stable-10.1 branch. This commit can backported to Buildroot LTS branches. Signed-off-by: Julien Olivain <ju.o@free.fr> Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
For change log, see: https://wiki.qemu.org/ChangeLog/10.2 Note: this commit switches to the new qemu stable-10.2 branch series. Signed-off-by: Julien Olivain <ju.o@free.fr> Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
Added four upstream patches backported from FreeRDP 3.x.
The remaining build error:
/home/bernd/buildroot/output/build/freerdp-2.11.7-18-g0ee17e2f8e49d56ab5b90d5160fa8f87ffc445e0/
channels/client/tables.c:129:22:
error: initialization of ‘UINT (*)(void)’ {aka ‘unsigned int (*)(void)’}
from incompatible pointer type ‘UINT (*)(void *)’ {aka ‘unsigned int (*)(void *)’}
[-Wincompatible-pointer-types]
129 | { "oss", "", oss_freerdp_rdpsnd_client_subsystem_entry },
is fixed by adding -Wno-incompatible-pointer-types to CFLAGS due to
tables.c being dynamically created during the build and backporting the
supposed upstream fix
FreeRDP/FreeRDP@fe6d861
is too invasive.
Signed-off-by: Bernd Kuhls <bernd@kuhls.net>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
Signed-off-by: Bernd Kuhls <bernd@kuhls.net> Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
Signed-off-by: Bernd Kuhls <bernd@kuhls.net> Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
Buildroot commit f9a91bf bumped igt-gpu-tools to 2.3 which includes upstream commit https://gitlab.freedesktop.org/drm/igt-gpu-tools/-/commit/ff3b7435bc56e34cf8b97c44ff32b7a1cc5dab7a which limits the package to little endian archs causing build errors on big endian archs: In file included from ../lib/igt_panthor.c:5: ../lib/igt_panthor.h:61:2: error: #error "big endian not supported" 61 | #error "big endian not supported" Fixes: https://autobuild.buildroot.org/results/e3faeba1bff3d0e781032ddc9a760f34a9bf5714/ Signed-off-by: Bernd Kuhls <bernd@kuhls.net> Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
We're already testing the ARC architecture with one Bootlin toolchain, it doesn't make sense to also test with two Buildroot internal toolchains the ARC architecture, which is not a primary architecture for Buildroot. Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com> Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
Building internal toolchains takes a long time, and since the differences between the 3 internal ARM toolchains is just the libc, and we're already testing uclibc/musl with external toolchains, it doesn't make much sense to build 3 different ARM internal toolchains. Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com> Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
… configs - br-i386-pentium4-full.config as an x86 32-bit toolchain test is already reasonably covered by bootlin-x86-i686-musl.config - br-microblazeel-full-internal.config as a Microblaze toolchain test is already reasonably covered by bootlin-microblazeel-uclibc.config - br-powerpc-internal-full.config and br-powerpc-603e-basic-cpp.config as PowerPC 32-bit toolchain tests are already reasonably covered by bootlin-powerpc-e500mc-uclibc.config - br-powerpc64-power7-glibc.config as a PowerPC 64-bit toolchain test is already reasonably covered by bootlin-powerpc64le-power8-glibc.config - br-riscv64-full-internal.config as a RISC-V 64-bit toolchain test is already reasonably covered by bootlin-riscv64-glibc.config and bootlin-riscv64-musl.config - br-s390x-z13-internal-glibc.config as a s390 toolchain test is already reasonably covered by bootlin-s390x-z13-glibc.config - br-xtensa-full-internal.config as an Xtensa toolchain test is already reasonably covered by bootlin-xtensa-uclibc.config Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com> Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
The prebuilt MIPS64 toolchains are very old, causing build issues (for example recently with the systemd v258 update). Replace them both a single toolchain configuration that uses one of the mips64el Bootlin toolchains. Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com> Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
Testing with a really old toolchain is helpful to catch issues related to kernel headers version issues, gcc version issues, etc. We chose a glibc toolchain though as old musl or uClibc-ng versions tend to lack a number of features that are needed by modern software. This toolchain is placed near the top of toolchain-configs.csv, so that it is used as part of the "base" set of toolchain that test-pkg uses, even without the -a option. test-pkg takes the 6 first toolchains of this CSV file for its base test, and actually the comment in toolchain-configs.csv was wrong since commit 53a8c51, which removed a toolchain from the base set, but not realizing that test-pkg would anyway continue to test the first 6 toolchains. Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com> Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
Cc: Alexander Shirokov <shirokovalexs@gmail.com> Tested-by: Alexander Shirokov <shirokovalexs@gmail.com> Signed-off-by: Julien Olivain <ju.o@free.fr>
For change log, see: https://git.kernel.org/pub/scm/utils/dash/dash.git/log/?h=a768fcc0aafbe50a37d2d06bba23eb6671d3a9b3 NOTE: Tag v0.5.13.1 has not been emitted. Signed-off-by: Giulio Benetti <giulio.benetti@benettiengineering.com> [Peter: fix sha512 hash] Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
Python 3.14 introduced a new zstd module [1][2] that requires zstd package as dependency. Packages that requires this new module should select BR2_PACKAGE_PYTHON3_ZSTD. [1] https://docs.python.org/3.14/library/compression.zstd.html [2] https://peps.python.org/pep-0784/ Signed-off-by: Romain Naour <romain.naour@smile.fr> [Julien: change link [1] to use 3.14 specific version] Signed-off-by: Julien Olivain <ju.o@free.fr>
Since zipstream-ng v1.9.0 the python zstd module introduced in python 3.14 is required at runtime [1]. Fixes: https://gitlab.com/buildroot.org/buildroot/-/jobs/12857413941 [1] pR0Ps/zipstream-ng@1e3754c Signed-off-by: Romain Naour <romain.naour@smile.fr> Signed-off-by: Julien Olivain <ju.o@free.fr>
Signed-off-by: Marcus Hoffmann <buildroot@bubu1.eu> Signed-off-by: Julien Olivain <ju.o@free.fr>
…test name Signed-off-by: Marcus Hoffmann <buildroot@bubu1.eu> Signed-off-by: Julien Olivain <ju.o@free.fr>
…emd vconsole The test failed in the past, due to kbd build failure. See [1]. This specific issue was fixed by commit [2]. This commit was originally written to workaround this issue, which was unrelated to the actual package being tested. Since systemd-vconsole is not needed anyway, this commit removes it from the test config. [1] https://gitlab.com/buildroot.org/buildroot/-/jobs/12363929666 [2] https://gitlab.com/buildroot.org/buildroot/-/commit/d98d9ba28ffa5b468fa243ae1a359aadef3ed0a0 Signed-off-by: Marcus Hoffmann <buildroot@bubu1.eu> [Julien: reword the commit log] Signed-off-by: Julien Olivain <ju.o@free.fr>
The new target provides a convenient way to run utils/check-package on
any external trees, using .checkpackageignore files from the
respective trees if present.
While .checkpackageignore should be used as little as possible, in a
few cases adding overrides for false-positives to the affected files
is not feasible, a practical example of this is a Markdown file
misidentified as Python by libmagic (likely due to code blocks).
Signed-off-by: Fiona Klute <fiona.klute@gmx.de>
[Arnout: set ${ignore} explicitly to empty, in case it exists in the
environment.]
Signed-off-by: Arnout Vandecappelle <arnout@rnout.be>
Drop all local patches that are committed to github benetti-engineering repositories. Signed-off-by: Giulio Benetti <giulio.benetti@benettiengineering.com> Acked-by: Kris Bahnsen <Kris@embeddedTS.com> Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
Arm Trusted Firmware (TF-A) can be used to load U-Boot or another bootloader, which in turn loads the Linux kernel. However, TF-A is capable of loading the kernel directly. To this end, we need to define the BL33 and BL33_CFG compile options containing, respectively, the zImage and the DTB. This config introduces a new config option, BR2_TARGET_ARM_TRUSTED_FIRMWARE_LINUX_AS_BL33, which sets the BL33 and BL33_CFG parameters, and ensures that the kernel is built before the TF-A by having linux as a _DEPENDENCY of the TF-A. Signed-off-by: Jakob Kastelic <kastelic.jakob@gmail.com> Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
Backport a fix to support python 3.14 [1]. depot-tools is used to build flutter package but it doesn't run due to deprecated ast.Str et al. (since Py3.8) that was removed from python 3.14. Fixes: https://gitlab.com/buildroot.org/buildroot/-/jobs/12944797062 [1] https://chromium.googlesource.com/chromium/tools/depot_tools/+/80d6ca1b1ac55fbd9dd8f506417824591251b8eb Cc: Adam Duskett <adam.duskett@amarulasolutions.com> Signed-off-by: Romain Naour <romain.naour@smile.fr> Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
Bump the binutils-bare-metal package to version 2.46.0. Release notes can be found here: https://sourceware.org/pipermail/binutils/2026-February/148149.html Signed-off-by: Neal Frager <neal.frager@amd.com> Signed-off-by: Julien Olivain <ju.o@free.fr>
For release note, see: https://hg-edge.mozilla.org/projects/nss/file/471dd263e131d2f14b3c047bc2f3f5315db9a015/doc/rst/releases/nss_3_120_1.rst Signed-off-by: Giulio Benetti <giulio.benetti@benettiengineering.com> [Julien: fix release notes url in commit log] Signed-off-by: Julien Olivain <ju.o@free.fr>
changelog: https://github.com/catchorg/Catch2/releases/tag/v3.13.0 Signed-off-by: Michael Nosthoff <buildroot@heine.tech> Signed-off-by: Julien Olivain <ju.o@free.fr>
Removed patch that fixed building with libseccomp and old kernel headers
as systemd has fixed that upstream now.
Notable changes:
- Add -Dlibmount=enabled to host and target build. Disabling this
option disables building most of systemd's tools apart from
libsystemd.
- remove gcrypt and gnutls from dependencies and build options.
openssl is the only supported crypto library now.
- Disable nspawn build for host variant and add a Config.in option
for the target variant.
- systemd now requires kernel >= 5.4 while the recommended kernel
version moved to >=5.7. This make systemd depend on
BR2_TOOLCHAIN_HEADERS_AT_LEAST_5_4, removing various dependencies
on older kernel header versions from sub options.
- The sha256sum of LICENSES/README.md changed due to various
license clarification, removal of some vendored files as well as
changing some file paths. Licensing did not actually change.
For changelog, see:
https://github.com/systemd/systemd/blob/v258.3/NEWS
Tested with `./support/testing/run-tests tests.init.test_systemd`
All tests passed
One of the tests now needs a bigger rootfs size.
Signed-off-by: Marcus Hoffmann <buildroot@bubu1.eu>
[Peter: fix check-package warnings]
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
Signed-off-by: Bernd Kuhls <bernd@kuhls.net> Signed-off-by: Julien Olivain <ju.o@free.fr>
https://github.com/madler/zlib/releases/tag/v1.3.2 https://github.com/madler/zlib/blob/v1.3.2/ChangeLog https://7asecurity.com/blog/2026/02/zlib-7asecurity-audit/ Updated license hash due to copyright year bumps: madler/zlib@570720b madler/zlib@9e35567 Signed-off-by: Bernd Kuhls <bernd@kuhls.net> Signed-off-by: Julien Olivain <ju.o@free.fr>
Release announce: https://www.ruby-lang.org/en/news/2026/01/13/ruby-4-0-1-released/ Signed-off-by: James Hilliard <james.hilliard1@gmail.com> [Julien: add link to release announce] Signed-off-by: Julien Olivain <ju.o@free.fr>
See the release notes here: https://anyio.readthedocs.io/en/stable/versionhistory.html Signed-off-by: Manuel Diener <manuel.diener@oss.othermo.de> Signed-off-by: Marcus Hoffmann <buildroot@bubu1.eu>
See the release notes here: https://github.com/python-jsonschema/jsonschema/blob/main/CHANGELOG.rst/\#v4260 Signed-off-by: Manuel Diener <manuel.diener@oss.othermo.de> Signed-off-by: Marcus Hoffmann <buildroot@bubu1.eu>
See the release notes here: https://starlette.dev/release-notes/ This also includes the versions 0.51.0 and 0.52.0 Signed-off-by: Manuel Diener <manuel.diener@oss.othermo.de> Signed-off-by: Marcus Hoffmann <buildroot@bubu1.eu>
See the release notes here: https://fastapi.tiangolo.com/release-notes//\#01290 Signed-off-by: Manuel Diener <manuel.diener@oss.othermo.de> Signed-off-by: Marcus Hoffmann <buildroot@bubu1.eu>
Signed-off-by: Giulio Benetti <giulio.benetti@benettiengineering.com> Signed-off-by: Julien Olivain <ju.o@free.fr>
Signed-off-by: Giulio Benetti <giulio.benetti@benettiengineering.com> Signed-off-by: Julien Olivain <ju.o@free.fr>
…x 6.18.3 hash Signed-off-by: Giulio Benetti <giulio.benetti@benettiengineering.com> Signed-off-by: Julien Olivain <ju.o@free.fr>
…ries Signed-off-by: Bernd Kuhls <bernd@kuhls.net> Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
Changes: systemd/systemd@v258.3...v258.4 Signed-off-by: Marcus Hoffmann <buildroot@bubu1.eu> Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
Signed-off-by: Arnout Vandecappelle <arnout@rnout.be>
Signed-off-by: Thomas Perale <thomas.perale@mind.be> Signed-off-by: Arnout Vandecappelle <arnout@rnout.be> (cherry picked from commit 25dfd17)
Signed-off-by: Thomas Perale <thomas.perale@mind.be> Signed-off-by: Arnout Vandecappelle <arnout@rnout.be> (cherry picked from commit c1143cd)
The 2026.02-rc1 release forgot to update the series and date and the 2025.02.11 release forgot to update the data, fix that. Reported-by: Julien Olivain <ju.o@free.fr> Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
Reported-by: Marcus Hoffmann <buildroot@bubu1.eu> Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
Current site is down, switch to Debian. Fixes: https://autobuild.buildroot.net/results/679/679a9f6224d1771ec2ab52e45fd74af8d03c1604/ Signed-off-by: Bernd Kuhls <bernd@kuhls.net> Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
Buildroot commmit edfc67f bumped the package from 9.1.0 to 9.2.0 without removing support for CRIS which was removed upstream in version 9.2.0: https://gitlab.com/qemu-project/qemu/-/commit/01d01edc9fc4623e93118bc8cb8c69a46d707026 https://wiki.qemu.org/ChangeLog/9.2 "The CRIS target has been removed without replacement" Fixes: https://autobuild.buildroot.net/results/376/376ea96ddfc0f220bca8bd241614303747f61bd4/ Signed-off-by: Bernd Kuhls <bernd@kuhls.net> Signed-off-by: Julien Olivain <ju.o@free.fr>
Release notes: https://ftp.isc.org/isc/bind9/9.18.45/doc/arm/html/notes.html Changelog: https://ftp.isc.org/isc/bind9/9.18.45/doc/arm/html/changelog.html Signed-off-by: Giulio Benetti <giulio.benetti@benettiengineering.com> [Julien: fix signature url in license hash file comment] Signed-off-by: Julien Olivain <ju.o@free.fr>
…oded version Fixes build error with python-pillow since its version bump to 12.0.0 which introduced a dependency to pybind with buildroot commit 5f446a8: FileNotFoundError: [Errno 2] No such file or directory: '/home/bernd/buildroot/output/host/lib/python3.13/site-packages/include/pybind11/detail/common.h' Implement the solution suggested by Vincent Fazio [1]: Generate `pybind11/_version.py` file with a hard-coded version to avoid copying pybind11 headers in HOST_DIR. Fixes: https://gitlab.com/buildroot.org/buildroot/-/jobs/13138981946 (TestPythonPybind) [1] https://lists.busybox.net/pipermail/buildroot/2026-February/796082.html Cc: Vincent Fazio <vfazio@xes-inc.com> Cc: James Hilliard <james.hilliard1@gmail.com> Cc: Bernd Kuhls <bernd@kuhls.net> Signed-off-by: Romain Naour <romain.naour@smile.fr> Tested-by: Vincent Fazio <vfazio@xes-inc.com> Signed-off-by: Julien Olivain <ju.o@free.fr>
Fixes the following security vulnerability:
- CVE-2025-68615:
net-snmp is a SNMP application library, tools and daemon. Prior to
versions 5.9.5 and 5.10.pre2, a specially crafted packet to an net-
snmp snmptrapd daemon can cause a buffer overflow and the daemon to
crash. This issue has been patched in versions 5.9.5 and 5.10.pre2.
For more information, see:
- https://www.cve.org/CVERecord?id=CVE-2025-68615
- net-snmp/net-snmp@b4e6f82
Signed-off-by: Thomas Perale <thomas.perale@mind.be>
Signed-off-by: Julien Olivain <ju.o@free.fr>
For more information about the release, see: - https://github.com/c-ares/c-ares/releases/tag/v1.34.6 Fixes the following vulnerability: - CVE-2025-62408: c-ares is an asynchronous resolver library. Versions 1.32.3 through 1.34.5 terminate a query after maximum attempts when using read_answer() and process_answer(), which can cause a Denial of Service. This issue is fixed in version 1.34.6. For more information, see: - https://www.cve.org/CVERecord?id=CVE-2025-62408 - c-ares/c-ares@714bf56 Signed-off-by: Thomas Perale <thomas.perale@mind.be> Signed-off-by: Julien Olivain <ju.o@free.fr>
Buildroot commit 2882cf4 bumped the package from 2.44.4 to 2.48.3. This bump includes upstream commit WebKit/WebKit@3b54e45 which was added to wpewebkit 2.45.1: https://wpewebkit.org/release/wpewebkit-2.45.1.html "Use Skia by default instead of Cairo for rendering." The upstream commit includes dependencies to fontconfig & freetype which were not added to buildroot and cause build errors with this defconfig: BR2_aarch64=y BR2_TOOLCHAIN_EXTERNAL=y BR2_TOOLCHAIN_EXTERNAL_BOOTLIN=y BR2_PER_PACKAGE_DIRECTORIES=y BR2_PACKAGE_MESA3D=y BR2_PACKAGE_MESA3D_GALLIUM_DRIVER_SOFTPIPE=y BR2_PACKAGE_MESA3D_OPENGL_EGL=y BR2_PACKAGE_MESA3D_OPENGL_ES=y BR2_PACKAGE_WPEWEBKIT=y BR2_PACKAGE_WPEWEBKIT_SANDBOX=y BR2_PACKAGE_WPEWEBKIT_MULTIMEDIA=y BR2_PACKAGE_WPEWEBKIT_MEDIA_STREAM=y BR2_PACKAGE_WPEWEBKIT_WEBDRIVER=y Reported-by: Julien Olivain <ju.o@free.fr> [https://patchwork.ozlabs.org/project/buildroot/patch/20251017131035.224739-1-aperez@igalia.com/#3599999] Signed-off-by: Bernd Kuhls <bernd@kuhls.net> Acked-by: Adrian Perez de Castro <aperez@igalia.com> Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
This updates WPE WebKit to the 2.50 stable series. WPE WebKit 2.50 highlights and 2.50.[1-5] release notes: - https://wpewebkit.org/release/wpewebkit-2.50.0.html - https://wpewebkit.org/release/wpewebkit-2.50.1.html - https://wpewebkit.org/release/wpewebkit-2.50.2.html - https://wpewebkit.org/release/wpewebkit-2.50.3.html - https://wpewebkit.org/release/wpewebkit-2.50.4.html - https://wpewebkit.org/release/wpewebkit-2.50.5.html Fixes the following security issues: - From https://wpewebkit.org/security/WSA-2025-0007.html CVE-2025-43343 - From https://wpewebkit.org/security/WSA-2025-0006.html CVE-2025-43272, CVE-2025-43342, CVE-2025-43356, CVE-2025-43368 - From https://wpewebkit.org/security/WSA-2025-0005.html CVE-2025-31273, CVE-2025-31278, CVE-2025-43211, CVE-2025-43212, CVE-2025-43216, CVE-2025-43227, CVE-2025-43228, CVE-2025-43240, CVE-2025-43265, CVE-2025-6558 Removed patch 0001 which is included in this release. Signed-off-by: Adrian Perez de Castro <aperez@igalia.com> [Bernd: bumped to 2.50.5, removed two patches originally added by Adrian which were added to upstream version 2.50.2] Signed-off-by: Bernd Kuhls <bernd@kuhls.net> Acked-by: Adrian Perez de Castro <aperez@igalia.com> Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Sign up for free
to subscribe to this conversation on GitHub.
Already have an account?
Sign in.
20 participants
Add this suggestion to a batch that can be applied as a single commit.This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Add this suggestion to a batch that can be applied as a single commit.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.Outdated suggestions cannot be applied.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.Suggestions cannot be applied on multi-line comments.Suggestions cannot be applied while the pull request is queued to merge.Suggestion cannot be applied right now. Please check back later.
Update to buildroot in preparation to switch freedom-u-sdk over to replace riscv-gnu-toolchain with the toolchain supported in buildroot, which builds faster using upstream sources and takes less space.