Fixed CVEs: curl: CVE-2024-32928 CVE-2024-7264 frr: CVE-2024-44070 libarchive: CVE-2024-37407 linux-yocto-onl: CVE-1999-0524 CVE-1999-0656 CVE-2006-2932 CVE-2007-2764 CVE-2007-4998 CVE-2008-2544 CVE-2008-4609 CVE-2010-4563 CVE-2016-0774 CVE-2016-3695 CVE-2016-3699 CVE-2017-1000377 CVE-2017-6264 CVE-2018-6559 CVE-2019-14899 CVE-2021-3714 CVE-2021-3864 CVE-2022-0400 CVE-2022-1247 CVE-2022-38096 CVE-2022-4543 CVE-2023-3397 CVE-2023-3640 CVE-2023-4010 CVE-2023-52889 CVE-2023-52904 CVE-2023-6238 CVE-2023-6240 CVE-2023-6535 CVE-2024-21803 CVE-2024-23848 CVE-2024-24857 CVE-2024-24858 CVE-2024-24859 CVE-2024-24864 CVE-2024-25739 CVE-2024-25740 CVE-2024-25741 CVE-2024-26596 CVE-2024-26900 CVE-2024-26913 CVE-2024-26949 CVE-2024-26952 CVE-2024-27012 CVE-2024-27017 CVE-2024-36288 CVE-2024-36478 CVE-2024-38381 CVE-2024-38608 CVE-2024-39472 CVE-2024-39486 CVE-2024-39487 CVE-2024-40951 CVE-2024-40952 CVE-2024-40954 CVE-2024-40955 CVE-2024-40956 CVE-2024-40957 CVE-2024-40958 CVE-2024-40959 CVE-2024-40960 CVE-2024-40961 CVE-2024-40964 CVE-2024-40965 CVE-2024-40967 CVE-2024-40969 CVE-2024-40970 CVE-2024-40973 CVE-2024-40977 CVE-2024-40980 CVE-2024-40981 CVE-2024-40982 CVE-2024-40994 CVE-2024-40995 CVE-2024-40996 CVE-2024-40997 CVE-2024-41000 CVE-2024-41001 CVE-2024-41002 CVE-2024-41006 CVE-2024-41007 CVE-2024-41009 CVE-2024-41010 CVE-2024-41012 CVE-2024-41036 CVE-2024-41037 CVE-2024-41038 CVE-2024-41039 CVE-2024-41040 CVE-2024-41046 CVE-2024-41049 CVE-2024-41053 CVE-2024-41054 CVE-2024-41055 CVE-2024-41057 CVE-2024-41058 CVE-2024-41059 CVE-2024-41060 CVE-2024-41061 CVE-2024-41063 CVE-2024-41064 CVE-2024-41066 CVE-2024-41070 CVE-2024-41071 CVE-2024-41073 CVE-2024-41076 CVE-2024-41080 CVE-2024-41084 CVE-2024-41085 CVE-2024-41087 CVE-2024-41088 CVE-2024-41089 CVE-2024-41092 CVE-2024-41093 CVE-2024-41094 CVE-2024-41095 CVE-2024-41096 CVE-2024-41097 CVE-2024-41098 CVE-2024-42063 CVE-2024-42064 CVE-2024-42065 CVE-2024-42066 CVE-2024-42067 CVE-2024-42068 CVE-2024-42069 CVE-2024-42070 CVE-2024-42071 CVE-2024-42072 CVE-2024-42073 CVE-2024-42074 CVE-2024-42075 CVE-2024-42076 CVE-2024-42077 CVE-2024-42078 CVE-2024-42079 CVE-2024-42080 CVE-2024-42081 CVE-2024-42082 CVE-2024-42083 CVE-2024-42085 CVE-2024-42090 CVE-2024-42093 CVE-2024-42094 CVE-2024-42101 CVE-2024-42102 CVE-2024-42104 CVE-2024-42109 CVE-2024-42114 CVE-2024-42122 CVE-2024-42123 CVE-2024-42131 CVE-2024-42136 CVE-2024-42137 CVE-2024-42140 CVE-2024-42144 CVE-2024-42148 CVE-2024-42152 CVE-2024-42153 CVE-2024-42154 CVE-2024-42155 CVE-2024-42156 CVE-2024-42157 CVE-2024-42158 CVE-2024-42159 CVE-2024-42160 CVE-2024-42161 CVE-2024-42162 CVE-2024-42223 CVE-2024-42224 CVE-2024-42225 CVE-2024-42227 CVE-2024-42228 CVE-2024-42229 CVE-2024-42230 CVE-2024-42232 CVE-2024-42235 CVE-2024-42236 CVE-2024-42237 CVE-2024-42238 CVE-2024-42239 CVE-2024-42240 CVE-2024-42241 CVE-2024-42243 CVE-2024-42244 CVE-2024-42245 CVE-2024-42246 CVE-2024-42247 CVE-2024-42248 CVE-2024-42251 CVE-2024-42252 CVE-2024-42253 CVE-2024-42259 CVE-2024-42268 CVE-2024-42269 CVE-2024-42270 CVE-2024-42271 CVE-2024-42277 CVE-2024-42280 CVE-2024-42283 CVE-2024-42284 CVE-2024-42285 CVE-2024-42286 CVE-2024-42287 CVE-2024-42288 CVE-2024-42289 CVE-2024-42294 CVE-2024-42298 CVE-2024-42301 CVE-2024-42302 CVE-2024-42307 CVE-2024-42308 CVE-2024-42309 CVE-2024-42310 CVE-2024-42311 CVE-2024-42313 CVE-2024-42314 CVE-2024-42315 CVE-2024-42316 CVE-2024-43817 CVE-2024-43818 CVE-2024-43819 CVE-2024-43821 CVE-2024-43823 CVE-2024-43824 CVE-2024-43828 CVE-2024-43833 CVE-2024-43837 CVE-2024-43853 CVE-2024-43854 CVE-2024-43855 CVE-2024-43856 CVE-2024-43857 CVE-2024-43858 CVE-2024-43859 CVE-2024-43860 CVE-2024-43861 CVE-2024-43863 CVE-2024-43871 CVE-2024-43872 CVE-2024-43873 CVE-2024-43882 CVE-2024-43884 CVE-2024-43886 CVE-2024-43889 CVE-2024-43890 CVE-2024-43891 CVE-2024-43892 CVE-2024-43893 CVE-2024-43894 CVE-2024-43895 CVE-2024-43899 CVE-2024-43900 CVE-2024-43901 CVE-2024-43902 CVE-2024-43903 CVE-2024-43904 CVE-2024-43905 CVE-2024-43906 CVE-2024-43907 CVE-2024-43908 CVE-2024-43909 CVE-2024-43911 CVE-2024-43912 CVE-2024-43913 CVE-2024-43914 CVE-2024-44931 CVE-2024-44934 CVE-2024-44935 CVE-2024-44938 CVE-2024-44939 CVE-2024-44940 CVE-2024-44941 CVE-2024-44942 CVE-2024-44943 CVE-2024-44944 CVE-2024-44946 CVE-2024-44947 CVE-2024-44952 CVE-2024-44956 CVE-2024-44957 CVE-2024-44971 CVE-2024-44974 CVE-2024-44983 CVE-2024-44985 CVE-2024-44986 CVE-2024-44987 CVE-2024-44989 CVE-2024-44990 CVE-2024-44995 CVE-2024-44996 CVE-2024-44997 CVE-2024-44998 CVE-2024-44999 CVE-2024-45000 CVE-2024-45002 CVE-2024-45006 CVE-2024-45009 CVE-2024-45010 CVE-2024-45011 CVE-2024-45012 CVE-2024-45015 CVE-2024-45016 CVE-2024-45018 CVE-2024-45019 CVE-2024-45020 CVE-2024-45021 CVE-2024-45022 CVE-2024-45025 CVE-2024-45026 CVE-2024-45028 CVE-2024-45029 CVE-2024-45030 CVE-2024-46672 CVE-2024-46673 CVE-2024-46674 CVE-2024-46675 CVE-2024-46676 CVE-2024-46677 CVE-2024-46678 CVE-2024-46679 CVE-2024-46680 CVE-2024-46681 CVE-2024-46685 CVE-2024-46686 CVE-2024-46687 CVE-2024-46689 CVE-2024-46692 CVE-2024-46693 CVE-2024-46694 CVE-2024-46695 CVE-2024-46698 CVE-2024-46700 CVE-2024-46701 CVE-2024-46702 CVE-2024-46705 CVE-2024-46706 CVE-2024-46707 CVE-2024-46709 CVE-2024-46710 CVE-2024-46711 CVE-2024-46719 CVE-2024-46720 CVE-2024-46721 CVE-2024-46722 CVE-2024-46723 CVE-2024-46724 CVE-2024-46725 CVE-2024-46726 CVE-2024-46728 CVE-2024-46731 CVE-2024-46732 CVE-2024-46735 CVE-2024-46737 CVE-2024-46738 CVE-2024-46739 CVE-2024-46740 CVE-2024-46741 CVE-2024-46742 CVE-2024-46743 CVE-2024-46746 CVE-2024-46747 CVE-2024-46749 CVE-2024-46755 CVE-2024-46756 CVE-2024-46757 CVE-2024-46758 CVE-2024-46759 CVE-2024-46760 CVE-2024-46761 CVE-2024-46762 CVE-2024-46763 CVE-2024-46765 CVE-2024-46770 CVE-2024-46772 CVE-2024-46773 CVE-2024-46781 CVE-2024-46782 CVE-2024-46784 CVE-2024-46786 CVE-2024-46791 CVE-2024-46795 CVE-2024-46796 CVE-2024-46797 CVE-2024-46798 CVE-2024-46800 vim: CVE-2024-41957 CVE-2024-41965 Changes between v5.2.0 and v5.2.1: build-bisdn-linux: changelog: fix cve check with new template config location prepare-release: fix adding site.conf to git scripts/changelog.sh: add special case for meta-switch rename scripts/changelog.sh: handle changed templateconf location conf: drop and use template configuration from meta-switch prepare_release: use site.conf instead of local.conf conf: rename meta-switch in bblayers.conf.sample as well default.xml: update meta-switch => meta-bisdn-linux meta-bisdn-linux: baseboxd: Bump version to 2.2.5 baseboxd-tools: bundle-debug-info: handle dynamic systemctl path distro: bump version to 5.2.1 images: make sure rootfs.tar is reproducible images: make opkg status reproducible onie-nos-installer: make tar archive reproducible onie-nos-installer: use BUILD_ID instead of DATE directly baseboxd-tools: also collect nexthop info in debug bundle baseboxd: Bump version to 2.2.4 frr: fix CVE-2024-44070 switch_tcpdump: use c_byte value, not object baseboxd: Bump version to 2.2.3 switch_tcpdump: handle SIGTERM signal indication switch_tcpdump: use ctypes to convert to int8 templateconf: add summary and notes conf: rename meta-switch in bblayers.conf.sample as well conf: document how to enable CVE checks during build conf: drop obsolete legacy machines conf: add new generic machines and default to generic-armel-iproc local.conf.sample: BB_DISKMON_DIRS: rename "ABORT" to "HALT" local.conf.sample: bump configration version local.conf: drop image-prelink as it was removed conf: drop image-mklibs as support for it was removed accton-as5835-54x: add platform to local.conf.sample accton-as4630-54pe: add platform to local.conf.sample conf: add accton-as7726-32x to available MACHINEs conf: warn about side effects of ccache use add cel-questone-2a to local.conf.sample local.conf: provide default location for ccache files remove meta-tibit layer to allow adding it as snippet dunfell: drop python2 again bisdn-linux: switch to dunfell as base add initial generic BISDN Linux build environment rename layer matching the repository Use relative path to find installer files switch_tcpdump: break out of loop after terminating tcpdump onie-nos-installer: fix sstate skip override syntax meta-ofdpa: ofdpa: prevent client utilities from accumuating data in /tmp ofdpa: disable outer tag for inner tag on vlan flow removal ofdpa-platform: accton-as4610-30: add missing dport definitions ofdpa: also add outer tag to inner tagged packets meta-openembedded: python3-django: Upgrade 4.2.10 -> 4.2.15 python3-django: Fix CVE-2024-42005 nginx: Backport fix for CVE-2024-7347 postgresql: upgrade 14.11 -> 14.13 krb5: fix CVE-2024-26458 and CVE-2024-26461 nss: fix failed test of nss. nss: fix failed test of nss. php-fpm: fix systemd php: Fix install conflict when enable multilib. tcpreplay: Fix CVE-2023-4256 xfce4-panel-profiles:fix tar error nginx-1.20.1: Drop reference to removed patch giflib: fix build with gold and avoid imagemagick-native dependency krb5: Fix for CVE-2024-37370 and CVE-2024-37371 apache2: Upgrade 2.4.59 -> 2.4.60 meta-open-network-linux: linux-yocto-onl: drop linux 6.1 linux-yoct-onl/6.6: update to 6.6.51 linux-yocto-onl: fix resetting EXT_LEARN for updated fdb entries linux-yocto-onl/6.6: update to 6.6.45 linux-yocto-onl/6.6: update to 6.6.44 generic-armel-iproc: remove local workaround for GO linuxloader meta-virtualization: kubernetes: Security fix for CVE-2023-3676 and CVE-2023-3955 docker-distribution: Use dup3 for riscv64 poky: build-appliance-image: Update to kirkstone head revision poky.conf: bump version for 4.0.21 wireless-regdb: upgrade 2024.05.08 -> 2024.07.04 apr: upgrade 1.7.2 -> 1.7.5 python3: Security fix for CVE-2024-8088 sqlite3: Rename patch for CVE-2022-35737 sqlite3: CVE-ID correction for CVE-2023-7104 qemu: fix CVE-2024-7409 grub: fs/fat: Don't error when mtime is 0 cryptodev-module: Fix build for linux 5.10.220 bind: Upgrade 9.18.24 -> 9.18.28 vim: Upgrade 9.1.0114 -> 9.1.0682 vim: upgrade from 9.0.2190 -> 9.1.0114 curl: Ignore CVE-2024-32928 libyaml: Ignore CVE-2024-35325 libsoup: fix compile error on centos7 image_types.bbclass: Use --force also with lz4,lzop python3: add PACKAGECONFIG[editline] curl: Security fix for CVE-2024-7264 Tiff: Security fix for CVE-2024-7006 libyaml: ignore CVE-2024-35326 migration-guide: add release notes for 4.0.20 ref-manual: fix typo and move SYSROOT_DIRS example bitbake: data_smart: Improve performance for VariableHistory python3-pycryptodome(x): use python_setuptools_build_meta build class orc: upgrade 0.4.32 -> 0.4.39 python3-certifi: Fix CVE-2024-39689 busybox: CVE-2023-42364, CVE-2023-42365, CVE-2023-42366 fixes go: fix CVE-2024-24791 ghostscript: fix CVE-2024-29506 ghostscript: fix CVE-2024-29509 ofono: fix CVE-2023-2794 ghostscript: fix CVE-2024-29511 libyaml: Update status of CVE-2024-35328 lttng-modules: Upgrade 2.13.9 -> 2.13.14 linux-yocto/5.15: update to v5.15.164 linux-yocto/5.15: update to v5.15.162 linux-yocto/5.15: update to v5.15.161 linux-yocto/5.15: update to v5.15.160 linux-yocto/5.15: update to v5.15.158 go: Fix CVE-2024-24789 gtk+3 : backport fix for CVE-2024-6655 gcc-runtime: remove bashism wireless-regdb: upgrade 2024.01.23 -> 2024.05.08 llvm: Fix CVE-2024-31852 llvm: Fix CVE-2023-46049 wpa-supplicant: Patch CVE-2023-52160 uboot-sign: Fix index error in concat_dtb_helper() with multiple configs python3-jinja2: Upgrade 3.1.3 -> 3.1.4 libarchive: ignore CVE-2024-37407 busybox: Patch CVE-2021-42380 ruby: backport fix for CVE-2024-27282 busybox: Fix CVE-2023-42363 build-appliance-image: Update to kirkstone head revision poky.conf: bump version for 4.0.20