2021年4月にリリースされたYocto3.3(Hardknott)の3回目のポイントリリース3.3.3公開のアナウンスが2021年9月17日付けでありました。
2021年9月9日付けでコミットされたものがQAを経てリリースとなっています。
当初予定では 10/1 公開予定でしたが、10月末リリース予定の3.4のM4リリースとのスケジュールの都合で、早目のリリースとなっています。

既知の問題点として、64bit x86プラットフォームで、systemtap の問題が原因で stap.StapTest.test_stap がエラーになる現象が確認されていますが、masterブランチで fix が行われており、9/17にバックポートがcommitされています。

次のポイントリリース3.3.4はスケジュール未定となっていますが、本日現在既に次回リリース向けの更新の登録が始まっています。

本リリースの詳細は以下のURLでご確認ください。

https://lists.yoctoproject.org/g/yocto-announce/message/227

---------------
Known Issues
---------------
stap.StapTest.test_stap failure: This is a systemtap issue on some 64 bit x86 platforms.
The fix is available in master and will be ported to hardknott.

--------------
Security Fixes
---------------
xdg-utils: Add fix for CVE-2020-27748
cpio: backport fix for CVE-2021-38185
lz4: Security Fix for CVE-2021-3520
bluez5: fix CVE-2021-3658
glibc: Fix CVE-2021-38604
lzo: add CVE_PRODUCT
tar: ignore node-tar CVEs
ffmpeg: fix CVE-2020-22019 and CVE-2020-22033
ffmpeg: fix CVE-2020-22021
ffmpeg: fix CVE-2020-22015
ffmpeg: fix CVE-2020-20453
ffmpeg: fix CVE-2020-20446
qemu: fix CVE-2021-3608
qemu: fix CVE-2021-3607
qemu: fix CVE-2021-3582
glibc: Fix CVE-2021-35942
qemu: fix CVE-2021-3527
qemu: fix virtio vhost-user-gpu CVEs
util-linux: fix CVE 2021-37600
curl: fix CVES
curl: fix CVE-2021-22925
cve-check: improve comment about CVE patch file names
cve-check: update link to NVD website for CVE details
aspell: fix CVE-2019-25051
zstd: fix CVE_PRODUCT
avahi: fix CVE-2021-36217, crash on pinging '.local'
glibc: Fix CVE-2021-33574
systemd: fix CVE-2020-13529
go: fix CVE-2020-29509, CVE-2020-29511
python3-pip: fix CVE-2021-3572

---------------
Fixes
---------------
build-appliance-image: Update to hardknott head revision
oeqa/runtime/parselogs: Make DVD ata error apply to all qemux86 machines
parselogs.py: ignore intermittent CD/DVDROM identification failure
linux-yocto/5.10: update to v5.10.60
linux-yocto/5.10: update to v5.10.59
vim: add option to disable NLS support
sdk: Decouple default install path from built in path
kernel-yocto: Simplify no git repo case in do_kernel_checkout
bitbake: server: Fix early parsing errors preventing zombie bitbake
build-appliance-image: Update to hardknott head revision
poky.conf: bump version for 3.3.3 hardknott release
documentation: prepare for 3.3.3 release
linux-yocto/5.4: update to v5.4.142
linux-yocto/5.4: update to v5.4.141
linux-firmware: upgrade 20210511 -> 20210818
image_types: Restore pre-btrfs-tools 4.14.1 mkfs.btrfs shrink behavior
tcf-agent: fetching over git:// no longer works
weston: Re-order gbm destruction at DRM-backend tear down
file: fix close_on_exec for multithreaded decompression
openssl: upgrade from 1.1.1k to 1.1.1l
icu: increase pkgdata command buffer size
sdk: Enable do_populate_sdk with multilibs
sdk: fix relocate symlink failed
wic: don't forcibly pass -T default
e2fsprogs: ensure small images have 256-byte inodes
utils: Reduce the number of calls to the "dirname" command
kernel-devsrc: fix 5.14+ objtool compilation
kernel-devsrc: 5.14+ updates
linux-yocto/5.10: update to v5.10.57
linux-yocto/5.4: update to v5.4.139
linux-yocto/5.4: update to v5.4.137
linux-yocto/5.10: update to v5.10.55
terminal.bbclass: force bash for devshell
oeqa/runtime/cases: make date.DateTest.test_date more reliable
kmod: use nonarch_base_libdir for depmod.d and modprobe.d
pixman: re-disable iwmmxt
sstate.bbclass: fix error handling when sstate mirrors is ro
linux-firmware: add more Qualcomm firmware packages
go: upgrade 1.16.5 -> 1.16.7
gnutls: upgrade 3.7.1 -> 3.7.2
gnutls: Point to staging area for finding seccomp libs and includes
gnutls: Enable seccomp if FEATURE is set
nettle: update 3.7.2 -> 3.7.3
cve-check: fix comments
oeqa/runtime/cases/ptest: Increase test timeout from 300s to 450s
createrepo-c: fix createrepo-c failed in nativesdk
runqemu: Fix typo in error message
license: Exclude COPYING.MIT from pseudo
sstate: Fix rebuilds when changing layer config
linux-yocto/5.10: enable TYPEC_TCPCI in usbc fragment
linux-yocto-rt/5.10: update to -rt47
linux-yocto/5.4: update to v5.4.135
linux-yocto/5.10: update to v5.10.53
devtool: print a warning on upgrades if PREFERRED_VERSION is set
parselogs.py: qemuarm should be qemuarmv5
stress-ng: Drop defining daddr_t
oe-setup-builddir: update YP docs and OE URLs
ovmf: Fix VLA warnings with GCC 11
update-rc.d: update SRCREV to pull in fix for non-bash shell support
archiver.bbclass: fix do_ar_configured failure for kernel
yocto-check-layer: ensure that all layer dependencies are tested too
checklayer: rename _find_layer_depends
checklayer: new function get_layer_dependencies()
yocto-check-layer: improve missed dependencies
glew: fix Makefile race
initramfs-framework/setup-live: fix shebang
initramfs-framework: fix whitespace issue
bitbake.conf: change GNOME_MIRROR to new one
initscripts: fix creation order for /var/log with VOLATILE_LOG_DIR=true
archiver.bbclass: Fix patch error for recipes that inherit dos2unix.
oeqa/manual/toaster: fix small typo
linux-yocto/5.4: update to v5.4.134
linux-yocto/5.10: update to v5.10.52
parted: skip tests that need vfat support
parted: fix ptest RRECOMMENDS
parted: improve ptest execution
linux-yocto/5.4: update to v5.4.132
linux-yocto/5.10: update to v5.10.50
linux-yocto/5.4: update to v5.4.131
linux-yocto/5.10: update to v5.10.49
linux-yocto: add vfat KERNEL_FEATURE when MACHINE_FEATURES include vfat
valgrind: skip flaky ptest fb_test_amd64
devtool: correctly handle non-standard source tree locations in upgrades
gobject-introspection: Fix the license (add MIT)
sstate: Drop pseudo exclusion
pseudo: Update to latest version including statx fix
pseudo: Add uninative configuration sanity check
netbase: use git fetcher
bitbake: data_smart: Allow colon in variable expansion regex
bitbake: data_smart/parse: Allow ':' characters in variable/function names