2020年4月にリリースされたYocto3.1LTS(Dunfell)の15回目のポイントリリース、3.1.15 公開のアナウンスが2022年3月23日付けでありました。

当初の予定では2022/3/14版で構築、2022/3/25リリース予定でしたが、2022/3/11付でコミットされたものがQAを経てリリースとなっています。

本リリースより、テスト対象のディストリビューションに　fedra-35,opensuseleap-15.3,almalinux-8.5が追加されています。

3/24 9:00時点で、Vim/tiff/libxml2/re2c/qemu/bluez5 に対するCVEのfix やUpstreamの更新の反映 のコミットが始まっています。

次のポイントリリース3.1.16は 2021/4/25版で構築、QA後の2022/5/06を予定しています。

本リリースの詳細は以下のURLでご確認ください。
https://lists.yoctoproject.org/g/yocto-announce/message/241

----------------
Security Fixes
----------------
binutils: Fix CVE-2021-45078
connman: fix CVE-2021-33833
connman: fix CVE-2022-23096-7
connman: fix CVE-2022-23098
expat: fix CVE-2022-23852
expat: fix CVE-2022-23990
expat: fix CVE-2022-25235
expat: fix CVE-2022-25236
expat: fix CVE-2022-25313
expat: fix CVE-2022-25314
expat: fix CVE-2022-25315
ghostscript: fix CVE-2021-45949
go: fix CVE-2022-23772
go: fix CVE-2022-23806
grub: add a fix for CVE-2020-25632
grub: add a fix for CVE-2020-25647
libarchive: Fix for CVE-2021-36976
lighttpd: backport a fix for CVE-2022-22707
openssl: Add fix for CVE-2021-4160
systemd: Fix CVE-2021-3997
tiff: fix CVE-2022-0561 and CVE-2022-0562
tiff: fix for CVE-2022-22844
util-linux: Fix for CVE-2021-3995 and CVE-2021-3996
wpa-supplicant: fix CVE-2022-23303-4

----------------
Fixes
----------------

Revert "cve-check: add lockfile to task"
asciidoc: update git repository
bind: update to 9.11.36
binutils: Backport Include members in the variable table used when resolving DW_AT_specification tags.
bitbake: tests/fetch: Handle upstream master -> main branch change
bootchart2: Add missing python3-math dependency
buildhistory.bbclass: create the buildhistory directory when needed
cmake: remove bogus CMAKE_LDFLAGS_FLAGS definition from toolchain file
cml1.bbclass: Handle ncurses-native being available via pkg-config
common-licenses: add Spencer-94
cve-check: get_cve_info should open the database read-only
coreutils: remove obsolete ignored CVE list
cve-check: create directory of CVE_CHECK_MANIFEST before copy
default-distrovars.inc: Switch connectivity check to a yoctoproject.org page
devtool: deploy-target: Remove stripped binaries in pseudo context
docs: fix hardcoded link warning messages
documentation: update for 3.1.14 release
e2fsprogs: Use specific BSD license variant
expat: add missing Upstream-status, CVE tag and sign-off to CVE-2021-46143.patch
freetype: add missing CVE tag CVE-2020-15999
glib-2.0: Use specific BSD license variant
glibc: update to lastest 2.31 release HEAD
grub: fixed several NULL pointer, integer overflow, memory leak and possible NULL dereference
grub: add a fix for a crash in scripts
grub: add a fix for a length check
grub: add a fix for a possible negative shift
grub: add a fix for a possible unintended sign extension
grub: add a fix for an incorrect cast
grub: add a fix for malformed device path handling
grub: add a fix for unnecessary assignements
grub: add a fix for unused variable in gnulib
grub: add a missing NULL check
grub: add structure initialization in zstd
grub: fix a dangling memory pointer
grub: fix an error check
grub: fix an unitialized re_token in gnulib
grub: fix an unitialized token in gnulib
grub: fix incorrect use of a negative value
grub: fix wrong handling of argc == 0
grub: remove dead code
grub: remove unneeded return value
grub: test for malformed jpeg files
libcap: Use specific BSD license variant
libusb1: correct SRC_URI
libxml-parser-perl: Add missing RDEPENDS
linux-firmware: Add CLM blob to linux-firmware-bcm4373 package
linux-firmware: upgrade 20211216 -> 20220209
linux-yocto/5.4: update to v5.4.178
linux-yocto: update genericx86* to v5.4.178
lsof: correct LICENSE
perf-tests: add bash into RDEPENDS (v5.12-rc5+)
poky.conf: Bump version for 3.1.15 release
poky.conf: update tested distros
puzzles: Upstream changed to main branch for development
recipetool: Fix circular reference in SRC_URI
ref-system-requirements.rst: update list of supported distros
releases: update to include 3.1.14
rpm: fix intermittent compression failure in do_package_write_rpm
ruby: 2.7.4 -> 2.7.5
ruby: correctly set native/target dependencies
ruby: fix DEPENDS append
sdk: fix search for dynamic loader
shadow-sysroot: sync license with shadow
shadow: Use specific BSD license variant
sstate: A third fix for for touching files inside pseudo
sstate: inside the threadedpool don't write to the shared localdata
systemd: Ensure uid/gid ranges are set deterministically
tzdata: Remove BSD License specifier
uninative: Add version to uninative tarball name
uninative: Upgrade to 3.5
vim: Update to 8.2.4524 for further CVE fixes
vim: do not report upstream version check as broken
vim: set PACKAGECONFIG idiomatically
wireless-regdb: upgrade 2021.08.28 -> 2022.02.18