This service is available only in Japanese-language.
4月にリリースされたYocto3.1LTS(Dunfell)の3回目のポイントリリース、3.1.3 公開のアナウンスが
2020年10月8日付けでありました。
当初は9月14日版で構築、9月25日リリース予定でしたが、9月23日付のコミットを元にQAテストを実施
したものがリリースとなっています。
perlのptest でエラーが発生する状況となり、原因を調査した結果perlは問題なく動作しており、ptest
の修正が必要ということが確認できたため、そのままリリースとなっています。
次のポイントリリース3.1.4は 、2020/11/13 を予定しています。
なお、10/6以降、次期ポイントリリースに向けてのコミットが開始されています。
今回のリリースに間に合わなかった以下のCVE関連の対策が必要な場合は、dunfellの最新版を
取得する必要があります。
bash: fix CVE-2019-18276
libx11: fix CVE-2020-14363
xserver-xorg: fix CVE-2020-14346/14361/14362
qemu : fix CVE-2020-16092
本リリースの詳細は以下のURLでご確認ください。
https://lists.yoctoproject.org/g/yocto-announce/message/198
----------------
Known Issues
----------------
perl ptest failure: There was a perl ptest issue identified during
testing. The issue has been traced to a test error, functionality is
correct and the test issue will be addressed in the next release.
----------------
Security Fixes
----------------
libxml2: Fix CVE-2020-24977
cmake: whitelist CVE-2016-10642
curl: add vendors to CVE_PRODUCT to exclude false positives
gnutls: CVE-2020-24659
libx11 : fix CVE-2020-14344
qemu: fix CVE-2020-14364 CVE-2020-14415
xserver-xorg: fix CVE-2020-14347
json-c: Fix CVE-2020-12762
perl: fix CVE-2020-12723
fribidi: extend CVE_PRODUCT to include fribidi
gcc-9.3.inc: Mark CVE-2019-15847 as fixed
glibc: Bring in CVE fixes and other bugfixes from 2.31 release branch
grub: set CVE_PRODUCT to grub2
webkitgtk: fix CVE-2020-13753
libjpeg-turbo: fix CVE-2020-13790
qemu: fix CVE-2020-15863
ghostscript: fix CVE-2020-15900
glibc: Secruity fix for CVE-2020-6096
----------------
Fixes
----------------
build-appliance-image: Update to dunfell head revision
scripts/oe-build-perf-report: Use python3 from the environment
build-appliance-image: Update to dunfell head revision
Revert "kernel.bbclass: run do_symlink_kernsrc before do_patch"
populate_sdk_ext: Do not assume local.conf will always exist
sysvinit: Remove ${B} assignment
libubootenv: upgrade 0.3 -> 0.3.1
initramfs-framework: support kernel cmdline with double quotes
systemd-serialgetty: Replace sed quoting using ' with " to allow var expansion
systemd-serialgetty: Fix sed expression quoting
bitbake: tests/fetch: Move away from problematic freedesktop.org urls
poky.conf: Bump version for 3.1.3 release
yocto-bsp: update to v5.4.58
yocto-bsp: update to v5.4.56
yocto-bsps: update reference BSPs to 5.4.54
cve-check: avoid FileNotFoundError if no do_cve_check task has run
cve-update-db-native: use context manager for cve_f
cve-check/cve-update-db-native: use lockfile to fix usage under multiconfig
cve-update-db-native: add progress handler
cve-check.bbclass: always save cve report
ell: update to 0.33
oeqa/concurrencytest: Improve builddir path manipulations
selftest/signing: Ensure build path relocation is safe
oe-publish-sdk: fix layers init via ssh
image.bbclass: fix REPRODUCIBLE_TIMESTAMP_ROOTFS reference
runqemu: Add a hook to allow it to renice
autoconf: consolidate DEPENDS
insane: only load real files as ELF
gdk-pixbuf: add tests PACKAGECONFIG
rpcbind: Use update-alternatives for rpcinfo
uninative: Upgrade to 2.9
bitbake: fetch2: Drop cups.org from wget status checks
bitbake: siggen: clean_basepath: remove recipe full path when virtual:xyz present
Documenation: Prepared for the 3.1.3 release
package: get_package_mapping: avoid dependency mapping if renamed package provides original name
linux-libc-headers: kernel headers are installed in STAGING_KERNEL_BUILDDIR
json-glib: Backport a build fix with clang
selftest/prservice: Improve test failure message
devtool: deploy-target: Fix size calculation for hard links
insane: improve gnu-hash-style warning
insane: fix gnu-hash-style check
oeqa: sdk: Capture stderr output
util-linux: Allow update alternatives for additional apps
recipes-kernel: linux-firmware add qcom-venus-{5.2,5.4} packages
wic: misc: Add /bin to the list of searchpaths
sysstat: fix installed-vs-shipped QA Issue in systemd
sanity.conf: update BB_MIN_VERSION to 1.46.0
cml1: Move find_cfgs() helper to cml1.bbclass
kernel-yocto: checksum all modifications to available kernel fragments directories
devtool: expand SRC_URI when guessing recipe update mode
package.bbclass: explode the RPROVIDES so we don't think the versions are provides
linux-firmware: update 20200721 -> 20200817
linux-firmware: upgrade 20200619 -> 20200721
kernel.bbclass: run do_symlink_kernsrc before do_patch
linux-yocto/5.4: update to v5.4.61
linux-yocto/5.4: update to v5.4.60
linux-yocto/5.4: update to v5.4.59
libubootenv: inherit uboot-config
libubootenv: uprev to v0.3
multilib.conf: add u-boot to NON_MULTILIB_RECIPES
conf/machine: set UBOOT_MACHINE for qemumips and qemumips64
bluez5: fix builds that require ell support
bind: update to 9.11.22 ESV
perf: backport a fix for confusing non-fatal error
gpgme: fix multilib header conflict
weston: add missing packageconfigs
image_types_wic: Add ASSUME_PROVIDED to WICVARS
package.bbclass: Sort shlib2 output for hash equivalency
package_tar.bbclass: Sync to the other package_* classes
oeqa/manual/bsp-hw.json : remove X_server_can_start_up_with_runlevel_5_boot test
oeqa/manual/bsp-hw.json : remove shutdown_system test
runqemu: Show an error for conflicting graphics options
oeqa: runtime_tests: Extra GPG debugging
runqemu: Check gtk or sdl option is passed together with gl or gl-es options.
alsa-ucm-conf: use ${datadir} in do_install()
alsa-topology-conf: use ${datadir} in do_install()
libffi: fix multilib header conflict
xserver-xorg: upgrade 1.20.7 -> 1.20.8
ghostscript: update to 9.52
linux-yocto/5.4: perf cs-etm: Move definition of 'traceid_list' global variable from header file
linux-yocto/5.4: update to v5.4.58
selftest/tinfoil: Increase wait event timeout
librsvg: Upgrade 2.40.20 -> 2.40.21
linux-yocto/5.4: update to v5.4.57
linux-yocto/5.4: update to v5.4.56
linux-yocto-rt/5.4: update to rt32
go: Upgrade to 1.14.7
go: update 1.14.4 -> 1.14.6
uninative: Handle PREMIRRORS generically
oeqa: write @OETestTag content into json test reports for each case
testimage: add an overall timeout setting
allarch: Add missing allarch ttf-bitstream-vera
ltp: make copyFrom scp command non-fatal
kernel-devicetree: Fix intermittent build failures caused by DTB builds
linux-yocto/5.4: update to v5.4.54
linux-yocto/5.4: fix perf build with binutils 2.35
linux-yocto/5.4: update to v5.4.53
libexif: update to 0.6.22
ruby: upgrade 2.7.0 -> 2.7.1
glib-2.0: update 2.62.5 to 2.62.6
glib-2.0: update 2.62.4 to 2.62.5
qemumips: Use 34Kf CPU emulation
Revert "gtk-icon-cache.bbclass: add runtime dependency"
glib-networking: upgrade 2.62.3 to 2.62.4
gnutls: Fix krb5 code license to GPLv2.1+ to match the LICENSE file.
gnutls: upgrade 3.6.13 -> 3.6.14
bind: upgrade 9.11.19 -> 9.11.21
boost: backport fix to make async_pipes work with asio
cogl-1.0: correct X11 dependencies
cve-update: handle baseMetricV2 as optional
checklayer: check layer in BBLAYERS before test
initscripts: Fix populate-volatile.sh bug when file/dir exists
initscripts: Fix various shellcheck warnings in populate-volatile.sh
buildhistory: use pid for temporary txt file name
gtk-immodules-cache.bbclass: fix post install scriptlet error
busybox: make hwclock compatible with glibc 2.31
startup-notification: add time_t type mismatch patch from upstream
image.bbclass: improve wording when image size exceeds the specified limit
classes/package: Use HOST_OS for runtime dependencies
classes/cmake: Fix host detection
oeqa/qemurunner: Add priority/nice information for running processes
linux-yocto-rt/5.4: fix mmdrop stress test issues
linux-yocto/5.4: update to v5.4.51
openssl: openssl-bin requires openssl-conf to run
linux-firmware: add ibt-20 package
rpm: fix nativesdk's default var location
wic/filemap: Fall back to standard copy when no way to get the block map
wic/filemap: Drop the unused get_unmapped_ranges()
wic/filemap: Drop the unused block_is_unmapped()
bitbake: server/process: Account for xmlrpc connections
bitbake: server/process: Fix UI first connection tracking