[OE-core] [PATCH v2 2/2] meson: install native file in sdk

From: "Hsia-Jun(Randy) Li" Without a native environment file, find_program() can't locate the native program inside SDK. That stops wayland compositor using wayland scanner. Signed-off-by: Hsia-Jun(Randy) Li --- meta/recipes-devtools/meson/meson/meson-setup.py | 8 meta/recipes-devtoo

[OE-core] [PATCH v2 1/2] meson: move lang args to the right section

From: Randy Li After meson 0.56.0, _args and _link_args would be regarded as meson built-in options. Signed-off-by: Hsia-Jun(Randy) Li --- meta/recipes-devtools/meson/nativesdk-meson_0.59.2.bb | 6 -- 1 file changed, 4 insertions(+), 2 deletions(-) diff --git a/meta/recipes-devtools/meson

[OE-core] [PATCH v2 0/2] fix environmemt files in SDK

From: "Hsia-Jun(Randy) Li" I am sorry I am very busy recently, so I don't have time to add an QA test class this time. Thoses patches were verified two days from mail last time, I just don't have time to send them. Changelog: v2 The script generates native file in nativesdk should work now. Hsi

Re: [OE-core] [dunfell][PATCH] vim: fix 2021-3796

On Thu, Oct 21, 2021 at 5:42 PM Minjae Kim wrote: > > vim is vulnerable to Use After Free > Problem: Checking first character of url twice. > > reference: > https://github.com/vim/vim/commit/35a9a00afcb20897d462a766793ff45534810dc3 Missing your Signed-off-by: The patch also fails to apply on dun

[OE-core] OE-core CVE metrics for hardknott on Sun 24 Oct 2021 05:00:01 AM HST

Branch: hardknott New this week: 3 CVEs CVE-2021-38297: go https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-38297 * CVE-2021-3872: vim https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-3872 * CVE-2021-3875: vim https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-3875 * R

[OE-core] OE-core CVE metrics for dunfell on Sun 24 Oct 2021 04:30:01 AM HST

Branch: dunfell New this week: 3 CVEs CVE-2021-38297: go:go-native https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-38297 * CVE-2021-3872: vim https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-3872 * CVE-2021-3875: vim https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-3

[OE-core] OE-core CVE metrics for master on Sun 24 Oct 2021 04:00:01 AM HST

Branch: master New this week: 3 CVEs CVE-2021-38297: go https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-38297 * CVE-2021-3872: vim https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-3872 * CVE-2021-3875: vim https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-3875 * Remo

Re: [OE-core] [PATCH v2] librsvg: Disable 64bit atomics in crossbeam for rv32

Thanks :) Alex On Sun, 24 Oct 2021 at 08:59, Khem Raj wrote: > This fixes > | error[E0412]: cannot find type `AtomicU64` in module `core::sync::atomic` > | --> > /usr/src/debug/librsvg/2.52.2-r0/librsvg-2.52.2/vendor/crossbeam-utils/src/atomic/ > consume.rs: 78:14 > > Signed-off-by: Khem R