Thomas Petazzoni
e02167acf5
support/scripts/gen-bootin-toolchains: arcle-750d toolchain has no gdbserver
...
Since the build of gdbserver for ARC 750D is broken, Bootlin
toolchains since 2024.05 no longer provide gdbserver for ARC, causing
build failures when the autobuilders try to use it. Let's fix this by
telling gen-bootlin-toolchains that the arcle-750d toolchains don't
have gdbserver.
Fixes:
https://autobuild.buildroot.net/results/77c865f941612e99d8b6a7f66b5bc06f90d6b7db/
Cc: Yuriy Kolerov <yuriy.kolerov@synopsys.com >
Cc: Alexey Brodkin <Alexey.Brodkin@synopsys.com >
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com >
Signed-off-by: Arnout Vandecappelle <arnout@rnout.be >
(cherry picked from commit edac3dba3btitouan.christophe@mind.be >
2025-09-04 13:57:24 +02:00
Florian Larysch
608a20d7f3
docs/manual: mention checkpackageignore file
...
Currently, the manual doesn't mention the checkpackageignore file at
all, leaving the user under the assumption that running "make
check-package" and running utils/check-package directly on the package
they have touched would be equivalent, when the former evaluates the
checkpackageignore file while the latter does not. This could cause them
to forget to remove stale entries from that file.
Point out this difference in behavior.
Signed-off-by: Florian Larysch <fl@n621.de >
[Arnout: add that stale lines should be removed from
.checkpackageignore]
Signed-off-by: Arnout Vandecappelle <arnout@rnout.be >
(cherry picked from commit 47181a164ctitouan.christophe@mind.be >
2025-09-04 13:57:24 +02:00
Thomas Perale
de2acc9071
python-yarl: bump to v1.20.1
...
Since the python-cython bump to v3.1.2 (see [1]), python-yarl has been
failing on the autobuilder with the following error message:
```
ERROR Missing dependencies:
Cython~=3.0.0; python_version >= "3.12"
make: *** [package/pkg-generic.mk:273: /home/buildroot/instance-0/output-1/build/python-yarl-1.18.3/.stamp_built] Error 1
```
The cython dependency has been addressed in python-yarl v1.20.1, for
more information see the github issue [2].
For more information on the release, see:
- https://github.com/aio-libs/yarl/releases/tag/v1.19.0
- https://github.com/aio-libs/yarl/releases/tag/v1.20.0
- https://github.com/aio-libs/yarl/releases/tag/v1.20.1
[1] b536caaec0https://github.com/aio-libs/yarl/pull/1514
Fixes: https://autobuild.buildroot.org/results/d36/d367b69b85a65fa94e923ecff3ba03723b2a6e88
Signed-off-by: Thomas Perale <thomas.perale@mind.be >
Signed-off-by: Arnout Vandecappelle <arnout@rnout.be >
(cherry picked from commit 0bd88146eetitouan.christophe@mind.be >
2025-09-04 13:57:24 +02:00
Thomas Petazzoni
1ab57faa17
configs/ts7680: remove defconfig, broken
...
This defconfig no longer builds:
https://gitlab.com/buildroot.org/buildroot/-/jobs/11026774180
It has been broken for at least 2 months:
https://gitlab.com/buildroot.org/buildroot/-/jobs?name=T%3Dts7680&kind=BUILD
It uses the outdated Linux 4.9 kernel, which is no longer maintained,
and no longer builds with recent toolchains.
Unless a fix is provided, this defconfig will be removed.
Fixes:
https://gitlab.com/buildroot.org/buildroot/-/jobs/11026774180
Cc: Julien Grossholtz <julien.grossholtz@openest.io >
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com >
Signed-off-by: Arnout Vandecappelle <arnout@rnout.be >
(cherry picked from commit a933920ff0titouan.christophe@mind.be >
2025-09-04 13:57:23 +02:00
Thomas Petazzoni
d7a398b38c
configs/toradex_apalis_imx6: remove defconfig, broken
...
This defconfig no longer builds:
https://gitlab.com/buildroot.org/buildroot/-/jobs/11026774072
It has been broken for at least 2 months:
https://gitlab.com/buildroot.org/buildroot/-/jobs?name=T%3Dtoradex_apalis_imx6&kind=BUILD
It uses an outdated Linux 4.9 kernel, which no longer builds with
modern toolchains.
Unless a fix is provided, this defconfig will be removed.
Fixes:
https://gitlab.com/buildroot.org/buildroot/-/jobs/11026774072
Cc: Sergio Prado <sergio.prado@e-labworks.com >
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com >
Signed-off-by: Arnout Vandecappelle <arnout@rnout.be >
(cherry picked from commit 1a3bae6424titouan.christophe@mind.be >
2025-09-04 13:57:23 +02:00
Thomas Petazzoni
26cfbf7f7d
configs/socrates_cyclone5: remove defconfig, broken
...
This defconfig no longer builds:
https://gitlab.com/buildroot.org/buildroot/-/jobs/11026772887
It has been broken for at least 2 months:
https://gitlab.com/buildroot.org/buildroot/-/jobs?name=T%3Dsocrates_cyclone5&kind=BUILD
It uses the outdated and not even LTS 4.16.7 Linux kernel, which no
longer builds with modern toolchains.
Unless a fix is provided, this defconfig will be removed.
Fixes:
https://gitlab.com/buildroot.org/buildroot/-/jobs/11026772887
Cc: Michał Łyszczek <michal.lyszczek@bofc.pl >
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com >
Signed-off-by: Arnout Vandecappelle <arnout@rnout.be >
(cherry picked from commit 908ce5b8bbtitouan.christophe@mind.be >
2025-09-04 13:57:23 +02:00
Thomas Petazzoni
fd7720562b
configs/rock_pi_n8: remove defconfig, broken
...
This defconfig no longer builds:
https://gitlab.com/buildroot.org/buildroot/-/jobs/11026769867
It has been broken for at least 2 months:
https://gitlab.com/buildroot.org/buildroot/-/jobs?name=T%3Drock_pi_n8&kind=BUILD
This defconfig was maintained by Suniel Mahesh, but his e-mail at
Amarula is bouncing, so basically this defconfig is unmaintained.
Unless a fix is provided, this defconfig will be removed.
Fixes:
https://gitlab.com/buildroot.org/buildroot/-/jobs/11026769867
Cc: Adam Duskett <adam.duskett@amarulasolutions.com >
Cc: Dario Binacchi <dario.binacchi@amarulasolutions.com >
Cc: Jagan Teki <jagan@amarulasolutions.com >
Cc: Meena Murthy <meena.murthy@amarulasolutions.com >
Cc: Michael Trimarchi <michael@amarulasolutions.com >
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com >
Signed-off-by: Arnout Vandecappelle <arnout@rnout.be >
(cherry picked from commit 883ef369e4titouan.christophe@mind.be >
2025-09-04 13:57:23 +02:00
Thomas Petazzoni
fe80c626d4
configs/rock64: remove defconfig, broken
...
This defconfig no longer builds:
https://gitlab.com/buildroot.org/buildroot/-/jobs/11026769723
It has been broken for at least 2 months:
https://gitlab.com/buildroot.org/buildroot/-/jobs?name=T%3Drock64&kind=BUILD
The old u-boot-2020.07-rc4 no longer builds.
Unless a fix is provided, this defconfig will be removed.
Fixes:
https://gitlab.com/buildroot.org/buildroot/-/jobs/11026769723
Cc: Michał Łyszczek <michal.lyszczek@bofc.pl >
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com >
Signed-off-by: Arnout Vandecappelle <arnout@rnout.be >
(cherry picked from commit 83af501540titouan.christophe@mind.be >
2025-09-04 13:57:23 +02:00
Thomas Petazzoni
14a3ed05f3
configs/riotboard: remove defconfig, broken
...
This defconfig no longer builds:
https://gitlab.com/buildroot.org/buildroot/-/jobs/11026769450
It has been broken for at least 2 months:
https://gitlab.com/buildroot.org/buildroot/-/jobs?name=T%3Driotboard&kind=BUILD
It is using the outdated, not even LTS 4.18.x kernel, which most
likely explains why it no longer builds with modern toolchains.
Unless a fix is provided, this defconfig will be removed.
Fixes:
https://gitlab.com/buildroot.org/buildroot/-/jobs/11026769450
Cc: Nikolay Dimitrov <nikolay.dimitrov@retrohub.org >
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com >
Signed-off-by: Arnout Vandecappelle <arnout@rnout.be >
(cherry picked from commit caf055a96ctitouan.christophe@mind.be >
2025-09-04 13:57:23 +02:00
Thomas Petazzoni
3caa6986b5
configs/pine64_sopine: remove defconfig, broken
...
This defconfig no longer builds:
https://gitlab.com/buildroot.org/buildroot/-/jobs/11012274147
It has been broken for at least 2 months:
https://gitlab.com/buildroot.org/buildroot/-/jobs?name=T%3Dpine64_sopine&kind=BUILD
Unless a fix is provided, this defconfig will be removed.
Fixes:
https://gitlab.com/buildroot.org/buildroot/-/jobs/11012274147
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com >
Signed-off-by: Arnout Vandecappelle <arnout@rnout.be >
(cherry picked from commit 54ac9c6450titouan.christophe@mind.be >
2025-09-04 13:57:23 +02:00
Thomas Petazzoni
ed5efcf57a
configs/pcengines_apu2: remove defconfig, broken
...
This defconfig no longer builds:
https://gitlab.com/buildroot.org/buildroot/-/jobs/11012274139
It is using the unmaintained, not even LTS 5.16 kernel, which no
longer builds with recent toolchains.
It has been broken for at least 2 months:
https://gitlab.com/buildroot.org/buildroot/-/jobs?name=T%3Dpcengines_apu2&kind=BUILD
Unless a fix is provided, this defconfig will be removed.
Fixes:
https://gitlab.com/buildroot.org/buildroot/-/jobs/11012274139
Cc: Danilo Bargen <mail@dbrgn.ch >
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com >
Signed-off-by: Arnout Vandecappelle <arnout@rnout.be >
(cherry picked from commit 3601fb6feftitouan.christophe@mind.be >
2025-09-04 13:57:23 +02:00
Thomas Petazzoni
35488a2f87
configs/orangepi_one_plus: remove defconfig, broken
...
This defconfig no longer builds:
https://gitlab.com/buildroot.org/buildroot/-/jobs/11012274055
It has been broken for at least 2 months:
https://gitlab.com/buildroot.org/buildroot/-/jobs?name=T%3Dorangepi_one_plus&kind=BUILD
Unless a fix is provided, this defconfig will be removed.
Fixes:
https://gitlab.com/buildroot.org/buildroot/-/jobs/11012274055
Cc: Adam Duskett <adam.duskett@amarulasolutions.com >
Cc: Dario Binacchi <dario.binacchi@amarulasolutions.com >
Cc: Jagan Teki <jagan@amarulasolutions.com >
Cc: Meena Murthy <meena.murthy@amarulasolutions.com >
Cc: Michael Trimarchi <michael@amarulasolutions.com >
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com >
Signed-off-by: Arnout Vandecappelle <arnout@rnout.be >
(cherry picked from commit d1eadf2455titouan.christophe@mind.be >
2025-09-04 13:57:23 +02:00
Thomas Petazzoni
b5f10141e8
configs/orangepi_lite2: remove defconfig, broken
...
This defconfig no longer builds:
https://gitlab.com/buildroot.org/buildroot/-/jobs/11012274018
It has been broken for at least 2 months:
https://gitlab.com/buildroot.org/buildroot/-/jobs?name=T%3Dorangepi_lite2&kind=BUILD
Unless a fix is provided, this defconfig will be removed.
Fixes:
https://gitlab.com/buildroot.org/buildroot/-/jobs/11012274018
Cc: Adam Duskett <adam.duskett@amarulasolutions.com >
Cc: Dario Binacchi <dario.binacchi@amarulasolutions.com >
Cc: Jagan Teki <jagan@amarulasolutions.com >
Cc: Meena Murthy <meena.murthy@amarulasolutions.com >
Cc: Michael Trimarchi <michael@amarulasolutions.com >
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com >
Signed-off-by: Arnout Vandecappelle <arnout@rnout.be >
(cherry picked from commit ea24b22344titouan.christophe@mind.be >
2025-09-04 13:57:23 +02:00
Thomas Petazzoni
29c4281ff0
configs/odroidxu4: remove defconfig, broken
...
This defconfig no longer builds:
https://gitlab.com/buildroot.org/buildroot/-/jobs/11012273936
It has been broken for over 2 months:
https://gitlab.com/buildroot.org/buildroot/-/jobs?name=T%3Dodroidxu4&kind=BUILD
Most likely the U-Boot version used is no longer compatible with
recent toolchains.
Unless a fix is provided, this defconfig will be removed.
Cc: Pierre Crokaert <pct@crookies.net >
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com >
Signed-off-by: Arnout Vandecappelle <arnout@rnout.be >
(cherry picked from commit 585527b872titouan.christophe@mind.be >
2025-09-04 13:57:23 +02:00
Thomas Petazzoni
291d62b357
configs/galileo: remove defconfig, broken
...
This defconfig no longer builds:
https://gitlab.com/buildroot.org/buildroot/-/jobs/11012273310
It started to break not long ago, about 1 month ago, most likely due a
toolchain update:
https://gitlab.com/buildroot.org/buildroot/-/jobs?name=T%3Dgalileo&kind=BUILD
However, it is build a very old 3.14, which is anyway unmaintained,
and issues with newer toolchains are going to get worse and worse.
Unless a fix is provided, this defconfig is going to be removed.
Cc: Nicholas Sielicki <sielicki@yandex.com >
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com >
Signed-off-by: Arnout Vandecappelle <arnout@rnout.be >
(cherry picked from commit ce76a11630titouan.christophe@mind.be >
2025-09-04 13:57:23 +02:00
Thomas Petazzoni
159f701556
configs/chromebook_snow: remove defconfig, broken
...
This defconfig no longer builds:
https://gitlab.com/buildroot.org/buildroot/-/jobs/11012273111
It has been failing for over 2 months:
https://gitlab.com/buildroot.org/buildroot/-/jobs?name=T%3Dchromebook_snow&kind=BUILD
It builds a 4.15 kernel, which is not even a maintained LTS kernel.
Unless a fix is provided, this defconfig will be removed.
Cc: Alex Suykov <alex.suykov@gmail.com >
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com >
Signed-off-by: Arnout Vandecappelle <arnout@rnout.be >
(cherry picked from commit 9d1a7f5254titouan.christophe@mind.be >
2025-09-04 13:57:23 +02:00
Thomas Petazzoni
170c649dc4
configs/beelink_gs1: remove defconfig, broken
...
This defconfig no longer builds:
https://gitlab.com/buildroot.org/buildroot/-/jobs/11012273071
It has been broken for at least 2 months:
https://gitlab.com/buildroot.org/buildroot/-/jobs?name=T%3Dbeelink&kind=BUILD
Unless a fix is provided, this defconfig will be removed.
Cc: Clément Péron <peron.clem@gmail.com >
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com >
Signed-off-by: Arnout Vandecappelle <arnout@rnout.be >
(cherry picked from commit 509c63a49ctitouan.christophe@mind.be >
2025-09-04 13:57:23 +02:00
Thomas Petazzoni
78cb5a4c8b
configs/bananapro: remove defconfig, broken
...
This defconfig no longer builds:
https://gitlab.com/buildroot.org/buildroot/-/jobs/11012272989
It has been broken for at least 2 months, and it has no maintainer in
the DEVELOPERS file. We're adding Bartosz Bilas who has been the last
person doing updates to this defconfig.
Unless some fixes are provided, this defconfig will be dropped from
Buildroot.
Cc: Bartosz Bilas <b.bilas@grinn-global.com >
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com >
Signed-off-by: Arnout Vandecappelle <arnout@rnout.be >
(cherry picked from commit 754c399038titouan.christophe@mind.be >
2025-09-04 13:57:23 +02:00
Thomas Petazzoni
38f77ed491
configs/at91sam9rlek: remove defconfig, broken
...
This defconfig no longer builds:
https://gitlab.com/buildroot.org/buildroot/-/jobs/11012272534
It is still based on the 4.8.6 kernel, which is not even an LTS
kernel, so we cannot easily update to fix the issues which are most
likely due to the newer gcc/binutils versions we're using now.
There is no DEVELOPERS entry attached to this configuration as well,
and this defconfig has been broken for at least 2 months, probably
more (our Gitlab CI history is only kept for ~2 months). So let's drop
it, unless someone volunteers to resurrect it.
Cc: Alexandre Belloni <alexandre.belloni@bootlin.com >
Cc: Ludovic Desroches <ludovic.desroches@microchip.com >
Cc: Nicolas Ferre <nicolas.ferre@microchip.com >
Cc: Patrice Vilchez <Patrice.Vilchez@microchip.com >
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com >
Signed-off-by: Arnout Vandecappelle <arnout@rnout.be >
(cherry picked from commit 76bd2fc38atitouan.christophe@mind.be >
2025-09-04 13:57:23 +02:00
Thomas Petazzoni
5ecffe7d77
configs/at91sam9g45m10ek: remove defconfig, broken
...
This defconfig no longer builds:
https://gitlab.com/buildroot.org/buildroot/-/jobs/11012272530
It is still based on the 4.8.6 kernel, which is not even an LTS
kernel, so we cannot easily update to fix the issues which are most
likely due to the newer gcc/binutils versions we're using now.
There is no DEVELOPERS entry attached to this configuration as well,
and this defconfig has been broken for at least 2 months, probably
more (our Gitlab CI history is only kept for ~2 months). So let's drop
it, unless someone volunteers to resurrect it.
Cc: Alexandre Belloni <alexandre.belloni@bootlin.com >
Cc: Ludovic Desroches <ludovic.desroches@microchip.com >
Cc: Nicolas Ferre <nicolas.ferre@microchip.com >
Cc: Patrice Vilchez <Patrice.Vilchez@microchip.com >
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com >
Signed-off-by: Arnout Vandecappelle <arnout@rnout.be >
(cherry picked from commit 5f4e2e61fftitouan.christophe@mind.be >
2025-09-04 13:57:23 +02:00
Thomas Petazzoni
c658a1fff4
configs/at91sam9g20dfc: remove defconfig, broken
...
This defconfig no longer builds:
https://gitlab.com/buildroot.org/buildroot/-/jobs/11012272524
It is still based on the 4.8.6 kernel, which is not even an LTS
kernel, so we cannot easily update to fix the issues which are most
likely due to the newer gcc/binutils versions we're using now.
There is no DEVELOPERS entry attached to this configuration as well,
and this defconfig has been broken for at least 2 months, probably
more (our Gitlab CI history is only kept for ~2 months). So let's drop
it, unless someone volunteers to resurrect it.
Cc: Alexandre Belloni <alexandre.belloni@bootlin.com >
Cc: Ludovic Desroches <ludovic.desroches@microchip.com >
Cc: Nicolas Ferre <nicolas.ferre@microchip.com >
Cc: Patrice Vilchez <Patrice.Vilchez@microchip.com >
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com >
Signed-off-by: Arnout Vandecappelle <arnout@rnout.be >
(cherry picked from commit f9e0dc8ddftitouan.christophe@mind.be >
2025-09-04 13:57:23 +02:00
Andreas Ziegler
c753b52bb4
DEVELOPERS: upgrade Andreas Ziegler's email address
...
The old one lasted for 10 years, lately spam
levels reached a rather uncomfortable level ...
Signed-off-by: Andreas Ziegler <br015@umbiko.net >
Signed-off-by: Julien Olivain <ju.o@free.fr >
(cherry picked from commit e13a3c95c1titouan.christophe@mind.be >
2025-09-04 13:57:23 +02:00
Thomas Petazzoni
f8c134efa8
package/liboauth: remove package
...
This package fails to build in the autobuilders:
https://autobuild.buildroot.net/?reason=liboauth%
The last upstream release, 1.0.3, was done 11 years ago:
https://sourceforge.net/projects/liboauth/
There is a Github repo at:
https://github.com/x42/liboauth
with commits from 3 years ago, but no release.
We already carry a patch fixing the build with OpenSSL 1.1.x, which
has been submitted at https://github.com/x42/liboauth/issues/9 but
never merged, despite being opened since 2017.
This package also has no maintainer in DEVELOPERS, and it has no
reverse dependency in Buildroot, so let's get rid of it.
Fixes:
https://autobuild.buildroot.net/results/8694ece6874a5fe297e707b12af85eeaef227675/
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com >
Signed-off-by: Peter Korsgaard <peter@korsgaard.com >
(cherry picked from commit 34b585c099titouan.christophe@mind.be >
2025-09-04 13:57:23 +02:00
Yacin Belmihoub-Martel
354cc72f99
package/python-pyroute2: add missing python3 ssl dependency
...
Buildroot commit [1] "package/python-pyroute2: bump to version 0.9.4"
added the python3 ssl runtime dependency while updating the package
in the "next" branch. It incorrectly suggested the dependency was
introduced in version 0.9.4.
This dependency was in fact introduced in upstream commit [2],
first time included in pyroute2 0.8.1, which is the current version
in the Buildroot release stabilization branch. It is worth mentioning
that this package was updated to that version in Buildroot commit [3].
Running the command on target:
python3 -c 'import pyroute2'
Fails at runtime with error:
ModuleNotFoundError: No module named '_ssl'
This commit fixes the issue by adding this missing dependency,
the same was it was done in commit [1].
[1] 786557d859e87c14581b816641bbe1yacin.belmihoub-martel@silabs.com >
[Julien:
- reword commit log
- add the "runtime" comment
]
Signed-off-by: Julien Olivain <ju.o@free.fr >
(cherry picked from commit c399b6d682titouan.christophe@mind.be >
2025-09-04 13:57:23 +02:00
Edgar Bonet
60d6359700
arch/Config.in.arm: fix typo in help text
...
Signed-off-by: Edgar Bonet <bonet@grenoble.cnrs.fr >
Signed-off-by: Julien Olivain <ju.o@free.fr >
(cherry picked from commit 36eed021b6titouan.christophe@mind.be >
2025-09-04 13:57:23 +02:00
Romain Naour
b3624ce42e
package/libv4l: backport fix jpeg-v9x/gcc-14.x build
...
This issue seems to caused by gcc-14 (added in 2024.05) which has
become the default version in 2025.08.
Fixes:
https://gitlab.com/buildroot.org/buildroot/-/jobs/11042295052 (TestZbar)
https://autobuild.buildroot.org/results/e0f/e0fac4a10181139d975c627f22a55d6681547d33
Signed-off-by: Romain Naour <romain.naour@smile.fr >
Signed-off-by: Julien Olivain <ju.o@free.fr >
(cherry picked from commit 37741586aftitouan.christophe@mind.be >
2025-09-04 13:57:23 +02:00
Bernd Kuhls
b57939e619
package/ffmpeg: security bump version to 6.1.3
...
Changelog:
http://git.videolan.org/?p=ffmpeg.git;a=blob;f=Changelog;h=01cd1ba06fa6570f34e41fd8374f543c7e181604;hb=01d3f764f79b2f571174a4cec855e651258f20ec
Fixes CVE-2023-6602:
https://git.videolan.org/?p=ffmpeg.git;a=commitdiff;h=ceacc83011a0a5057769626faf14b9256bd3baa7
https://git.videolan.org/?p=ffmpeg.git;a=commitdiff;h=c599745377199fa75fffb30058fb2a6f39d64ab7
Signed-off-by: Bernd Kuhls <bernd@kuhls.net >
Signed-off-by: Julien Olivain <ju.o@free.fr >
(cherry picked from commit a3a1364f3dtitouan.christophe@mind.be >
2025-09-04 13:57:23 +02:00
Daniel Lang
7229f0fdde
package/vim: security bump to version 9.1.1684
...
Fixes the following CVEs:
- CVE-2024-41957
- CVE-2024-41965
- CVE-2024-45306
- CVE-2024-47814
- CVE-2025-1215
- CVE-2025-22134
- CVE-2025-24014
- CVE-2025-26603
- CVE-2025-29768
- CVE-2025-53905
- CVE-2025-53906
README.txt got updated three times since the last bump:
- [0] updated some wording regarding who the developers are.
- [1] updated the link to the release archives
- [2] updated the goals of the project
netrw (the builtin file explorer of vim) changed maintainer and was
subsequently restructured [3]. Therefore we need to run installpack,
otherwise we run into this on startup (reported by Julien, thanks!):
Error detected while processing
/usr/share/vim/vim91/plugin/netrwPlugin.vim:
line 7:
E919: Directory not found in 'packpath': "pack/*/opt/netrw"
Press ENTER or type command to continue
[0]: b75825f7494225f288552bfd1ee1619cfdabb074dalang@gmx.at >
Signed-off-by: Julien Olivain <ju.o@free.fr >
(cherry picked from commit 089731c8eatitouan.christophe@mind.be >
2025-09-04 13:57:23 +02:00
Bernd Kuhls
dafed7e9d2
package/libde265: security bump to version 1.0.16
...
Release notes:
https://github.com/strukturag/libde265/releases/tag/v1.0.16
Signed-off-by: Bernd Kuhls <bernd@kuhls.net >
Signed-off-by: Julien Olivain <ju.o@free.fr >
(cherry picked from commit 9323d69afbthomas.perale@mind.be >
2025-09-04 08:49:44 +02:00
Christian Hitz
74f84ce531
package/systemd: bump required toolchain headers for systemd-networkd
...
Since 256.12 systemd-networkd requires kernel >=5.4 due to the inclusion of
the sockios.h header, which uses the SIOCGSTAMP_OLD macro.
The same change has already been applied to master/2025.08 in
7d8d48cd2bchristian.hitz@bbv.ch >
Signed-off-by: Thomas Perale <thomas.perale@mind.be >
2025-08-31 18:15:21 +02:00
Thomas Perale
7bb7c0a231
package/quickjs: add patch for CVE-2025-46688
...
Fix the following vulnerability:
- CVE-2025-46688
quickjs-ng through 0.9.0 has an incorrect size calculation in
JS_ReadBigInt for a BigInt, leading to a heap-based buffer overflow.
QuickJS before 2025-04-26 is also affected.
For more information, see:
- https://www.cve.org/CVERecord?id=CVE-2025-46688
- 1eb05e44fa61e8b94428c5c7c44fa5thomas.perale@mind.be >
2025-08-31 18:15:11 +02:00
Thomas Petazzoni
b4d919a0cd
support/scripts/cve.py: handle CVEs with 'configurations' but no 'nodes' inside
...
The each_cpe() method is careful that some CVEs have no
"configurations", but some CVEs such as
https://nvd.nist.gov/vuln/detail/CVE-2025-32915 apparently have a
"configurations" node, but no "nodes" inside the "configurations",
causing an exception:
Traceback (most recent call last):
File "/home/buildroot/buildroot-stats/./support/scripts/pkg-stats", line 1382, in <module>
__main__()
File "/home/buildroot/buildroot-stats/./support/scripts/pkg-stats", line 1371, in __main__
check_package_cves(args.nvd_path, packages)
File "/home/buildroot/buildroot-stats/./support/scripts/pkg-stats", line 679, in check_package_cves
check_package_cve_affects(cve, cpe_product_pkgs)
File "/home/buildroot/buildroot-stats/./support/scripts/pkg-stats", line 638, in check_package_cve_affects
for product in cve.affected_products:
^^^^^^^^^^^^^^^^^^^^^
File "/home/buildroot/buildroot-stats/support/scripts/cve.py", line 185, in affected_products
return set(cpe_product(p['id']) for p in self.each_cpe())
^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
File "/home/buildroot/buildroot-stats/support/scripts/cve.py", line 185, in <genexpr>
return set(cpe_product(p['id']) for p in self.each_cpe())
^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
File "/home/buildroot/buildroot-stats/support/scripts/cve.py", line 173, in each_cpe
for node in nodes['nodes']:
~~~~~^^^^^^^^^
KeyError: 'nodes'
Fixes:
54f8d97c91thomas.petazzoni@bootlin.com >
[Romain:
- add reference to buildroot commit introducing the issue
- a similar patch was sent by Daniel Lang (thanks!)
- needed on 2025.02.x to fix "Daily results" email]
(cherry picked from commit 67422b9d9cromain.naour@smile.fr >
2025-08-23 22:04:45 +02:00
Florian Larysch
74c0db84cb
package/vorbis-tools: security bump to version 1.4.3
...
This is a bugfix release that among other things includes the GCC 14
build fix and resolves CVE-2023-43361.
Changelog: https://github.com/xiph/vorbis-tools/blob/v1.4.3/CHANGES
Fixes:
https://www.cve.org/CVERecord?id=CVE-2023-43361
Signed-off-by: Florian Larysch <fl@n621.de >
[Julien:
- reword commit log title to add "security"
- add link to CVE in commit log
]
Signed-off-by: Julien Olivain <ju.o@free.fr >
(cherry picked from commit ce5d173571thomas.perale@mind.be >
2025-08-21 16:31:42 +02:00
Peter Korsgaard
8717624fea
package/gstreamer1-editing-services: bump to version 1.24.13
...
Signed-off-by: Peter Korsgaard <peter@korsgaard.com >
Signed-off-by: Julien Olivain <ju.o@free.fr >
(cherry picked from commit ed03bdb360thomas.perale@mind.be >
2025-08-21 16:31:34 +02:00
Peter Korsgaard
67d996cde3
package/gst1-vaapi: bump to version 1.24.13
...
Signed-off-by: Peter Korsgaard <peter@korsgaard.com >
Signed-off-by: Julien Olivain <ju.o@free.fr >
(cherry picked from commit b60aa70d4cthomas.perale@mind.be >
2025-08-21 16:31:20 +02:00
Peter Korsgaard
b39c86294c
package/gst1-rtsp-server: bump to version 1.24.13
...
Signed-off-by: Peter Korsgaard <peter@korsgaard.com >
Signed-off-by: Julien Olivain <ju.o@free.fr >
(cherry picked from commit 3508cc5c59thomas.perale@mind.be >
2025-08-21 16:31:12 +02:00
Peter Korsgaard
6dc6f54586
package/gst1-python: bump to version 1.24.13
...
Signed-off-by: Peter Korsgaard <peter@korsgaard.com >
Signed-off-by: Julien Olivain <ju.o@free.fr >
(cherry picked from commit fbc7d7b7ffthomas.perale@mind.be >
2025-08-21 16:31:00 +02:00
Peter Korsgaard
6db89ce2a3
package/gst1-libav: bump to version 1.24.13
...
Signed-off-by: Peter Korsgaard <peter@korsgaard.com >
Signed-off-by: Julien Olivain <ju.o@free.fr >
(cherry picked from commit 74f4c954a3thomas.perale@mind.be >
2025-08-21 16:30:52 +02:00
Peter Korsgaard
a9fde59ed4
package/gst1-devtools: bump to version 1.24.13
...
Signed-off-by: Peter Korsgaard <peter@korsgaard.com >
Signed-off-by: Julien Olivain <ju.o@free.fr >
(cherry picked from commit d730e330aethomas.perale@mind.be >
2025-08-21 16:30:43 +02:00
Peter Korsgaard
4d582e9c10
package/gst1-plugins-ugly: bump to version 1.24.13
...
Signed-off-by: Peter Korsgaard <peter@korsgaard.com >
Signed-off-by: Julien Olivain <ju.o@free.fr >
(cherry picked from commit 5e64c381ccthomas.perale@mind.be >
2025-08-21 16:30:34 +02:00
Peter Korsgaard
62cbf874dd
package/gst1-plugins-bad: bump to version 1.24.13
...
Signed-off-by: Peter Korsgaard <peter@korsgaard.com >
Signed-off-by: Julien Olivain <ju.o@free.fr >
(cherry picked from commit 3b93ee15acthomas.perale@mind.be >
2025-08-21 16:30:24 +02:00
Peter Korsgaard
3a2660af55
package/gst1-plugins-good: security bump to version 1.24.13
...
Fixes the following vulnerabilities:
- CVE-2025-47219: An Out-of-bounds read in the MOV/MP4 demuxer that can
cause crashes or potentially information leaks for certain input files.
https://gstreamer.freedesktop.org/security/sa-2025-0004.html
- CVE-2025-47183: An Out-of-bounds read in the MOV/MP4 demuxer that can
cause crashes or potentially information leaks for certain input files.
https://gstreamer.freedesktop.org/security/sa-2025-0005.html
Signed-off-by: Peter Korsgaard <peter@korsgaard.com >
Signed-off-by: Julien Olivain <ju.o@free.fr >
(cherry picked from commit 4d9e973d72thomas.perale@mind.be >
2025-08-21 16:30:16 +02:00
Peter Korsgaard
e2090f7837
package/gst1-plugins-base: security bump to version 1.24.13
...
Fixes the following vulnerabilities:
- CVE-2025-47806: A stack buffer overflow in the SubRip subtitle parser that
can cause crashes for certain input files.
https://gstreamer.freedesktop.org/security/sa-2025-0006.html
- CVE-2025-47807: NULL-pointer dereference in the SubRip subtitle parser
that can cause crashes for certain input files.
https://gstreamer.freedesktop.org/security/sa-2025-0002.html
https://gstreamer.freedesktop.org/security/sa-2025-0003.html
Signed-off-by: Peter Korsgaard <peter@korsgaard.com >
Signed-off-by: Julien Olivain <ju.o@free.fr >
(cherry picked from commit 7ae23dc70fthomas.perale@mind.be >
2025-08-21 16:30:01 +02:00
Peter Korsgaard
22388b67c5
package/gstreamer1: bump to version 1.24.13
...
For various bugfixes. For details, see the release notes:
https://gstreamer.freedesktop.org/releases/1.24/
Signed-off-by: Peter Korsgaard <peter@korsgaard.com >
Signed-off-by: Julien Olivain <ju.o@free.fr >
(cherry picked from commit f001f40c8bthomas.perale@mind.be >
2025-08-21 16:29:52 +02:00
Peter Korsgaard
3b58729fe5
package/go: security bump to version 1.23.12
...
go1.23.11 (released 2025-07-08) includes security fixes to the go command,
as well as bug fixes to the compiler, the linker, and the runtime.
See:
- https://go.dev/doc/devel/release#go1.23.11
- https://github.com/golang/go/issues?q=milestone%3AGo1.23.11+label%3ACherryPickApproved
The 1.23.11 version fixes:
- https://www.cve.org/CVERecord?id=CVE-2025-4674
go1.23.12 (released 2025-08-06) includes security fixes to the database/sql
and os/exec packages, as well as bug fixes to the runtime.
See:
- https://go.dev/doc/devel/release#go1.23.12
- https://github.com/golang/go/issues?q=milestone%3AGo1.23.12+label%3ACherryPickApproved
The 1.23.12 version fixes:
- https://www.cve.org/CVERecord?id=CVE-2025-47907
Signed-off-by: Peter Korsgaard <peter@korsgaard.com >
[Julien: add links to release notes, fixed issues and CVEs]
Signed-off-by: Julien Olivain <ju.o@free.fr >
(cherry picked from commit 84276c0449thomas.perale@mind.be >
2025-08-21 16:29:40 +02:00
Thomas Perale
585d0f57e4
package/openjpeg: add patch to fix CVE-2025-54874
...
Fixes the following vulnerability:
- CVE-2025-54874
OpenJPEG is an open-source JPEG 2000 codec. In OpenJPEG 2.5.3 and
earlier, a call to opj_jp2_read_header may lead to OOB heap memory
write when the data stream p_stream is too short and p_image is not
initialized.
For more information, see:
- https://www.cve.org/CVERecord?id=CVE-2025-54874
- f809b80c67thomas.perale@mind.be >
Signed-off-by: Peter Korsgaard <peter@korsgaard.com >
(cherry picked from commit c46fb3c8b3thomas.perale@mind.be >
2025-08-21 16:29:30 +02:00
Thomas Petazzoni
626fee3421
package/elfutils: fix build after 0.193 version bump
...
The 0.193 version bump done in commit
c7508a2324https://autobuild.buildroot.net/results/3b005f7afec386f6fa4237f427f73367d55bb211/ (sparc64)
https://autobuild.buildroot.net/results/a6b1d5078abdd6c8def93aaffa2e67573250da3e/ (m68k)
https://autobuild.buildroot.net/results/45305cc2be3b255740808ee1f3486d1a10abfbb4/ (microblaze)
and a bunch more
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com >
Signed-off-by: Julien Olivain <ju.o@free.fr >
(cherry picked from commit 022ff55a39thomas.perale@mind.be >
2025-08-21 16:29:17 +02:00
Thomas Petazzoni
6243ccd337
boot/grub2: add patches to fix numerous CVEs
...
This patch brings the entire stack of Debian patches on grub2 titled
"cve-2025-jan" and available at:
https://salsa.debian.org/grub-team/grub/-/tree/debian/2.12-9/debian/patches/cve-2025-jan?ref_type=tags
As of this exact Debian grub2 version 2.12-9. Some minor conflicts had
to be fixed. All patches are in upstream Grub master, but mixed with
hundreds of other changes, which is why Debian's effort to backport
them has been leveraged here.
In addition to those patches, 2 extra patches are added:
0073-net-drivers-ieee1275-ofnet-Add-missing-grub_malloc.patch
0074-Constant-time-grub_crypto_memcmp.patch
The first one fixes an issue in one of the earlier patches. The fix is
not in Debian, but is in upstream Grub.
The second one fixes another CVE, not fixed in Debian, but fixed in
OpenSUSE. This fix is not upstream as upstream has decided to move to
libgcrypt instead to avoid the problem, but that's a fairly large
change.
Overall, this patch fixes all CVEs currently reported by pkg-stats
against our grub2 package, namely:
CVE-2024-45777
CVE-2024-45778
CVE-2024-45779
CVE-2024-45780
CVE-2024-45782
CVE-2024-56737
CVE-2024-56738
CVE-2025-0678
CVE-2025-0684
CVE-2025-0685
CVE-2025-0686
CVE-2025-0689
CVE-2025-1125
With the previous fixes on runtime tests added (to use glibc
toolchains to build grub2 tests), this commit successfully passes all
tests:
- The ISO9660 tests that use grub2:
https://gitlab.com/tpetazzoni/buildroot/-/pipelines/1985234563
- The grub2 tests:
https://gitlab.com/tpetazzoni/buildroot/-/pipelines/1985234685
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com >
[Julien: also tested by building and booting
- qemu_aarch64_sbsa_defconfig
- qemu_arm_ebbr_defconfig
- qemu_loongarch64_virt_efi_defconfig
- qemu_riscv64_virt_efi_defconfig
- pc_x86_64_bios_defconfig
- pc_x86_64_efi_defconfig
]
Tested-by: Julien Olivain <ju.o@free.fr >
[Julien:
- fix patch #72 upstream link to point to the initial patch
sumbission rather than a reply
- merge two _IGNORE_CVES blocks for patch #50 into a single one
- order _IGNORE_CVES blocks by numerical patch order
- order numerically the CVE list in commit log
- add a "Fixes:" tag in patch #74 since its commit log does not
mention the CVE.
]
Signed-off-by: Julien Olivain <ju.o@free.fr >
(cherry picked from commit ded3e0045athomas.perale@mind.be >
2025-08-21 16:28:56 +02:00
Thomas Petazzoni
cd8c99bfda
support/testing/tests/boot/test_grub.py: use glibc toolchain
...
Since the recent bump of Bootlin toolchains in
947dbc92a2https://gitlab.com/buildroot.org/buildroot/-/jobs/10972858692
https://gitlab.com/buildroot.org/buildroot/-/jobs/10972858686
https://gitlab.com/buildroot.org/buildroot/-/jobs/10972858680
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com >
Signed-off-by: Julien Olivain <ju.o@free.fr >
(cherry picked from commit f4d01d1c5ethomas.perale@mind.be >
2025-08-21 16:28:44 +02:00
Thomas Petazzoni
86c3077ff4
support/testing/tests/fs/test_iso9660.py: use a more recent toolchain
...
The ISO9660 tests are currently using an old 2017 toolchain. Let's
switch to a modern toolchain, which is regularly updated. Also, we use
a toolchain based on glibc since grub2 doesn't build with recent
uClibc toolchains.
It will work around build issues with syslinux.
Fixes:
https://gitlab.com/buildroot.org/buildroot/-/jobs/10975828975
https://gitlab.com/buildroot.org/buildroot/-/jobs/10975828871
https://gitlab.com/buildroot.org/buildroot/-/jobs/10975828770
(Even though those should be fixed separately, as syslinux should
continue to build with old compilers not supporting std=gnu17)
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com >
Signed-off-by: Julien Olivain <ju.o@free.fr >
(cherry picked from commit 2e2bfd678bthomas.perale@mind.be >
2025-08-21 16:28:33 +02:00
