From arnout at rnout.be Tue Apr 22 21:19:57 2025 From: arnout at rnout.be (Arnout Vandecappelle) Date: Tue, 22 Apr 2025 23:19:57 +0200 Subject: [Buildroot-users] Buildroot 2024.11.4 released Message-ID: Hi, Buildroot is a simple tool for creating complete embedded Linux systems (https://buildroot.org). Buildroot 2024.11.4 is released - Go download it at: https://buildroot.org/downloads/buildroot-2024.11.4.tar.gz or https://buildroot.org/downloads/buildroot-2024.11.4.tar.xz Or get it from Git: https://gitlab.com/buildroot.org/buildroot.git (2024.11.4 tag) Notice that the 2024.02.x series is now end of life. Please migrate to the 2025.02.x series instead. Buildroot 2024.11.4 is a bugfix release, fixing a number of important / security related issues discovered since the 2024.11.3 release. Important / security related fixes: - xserver_xorg-server & xwayland: CVE-2024-9632, CVE-2025-26594, ???CVE-2025-26595, CVE-2025-26596, CVE-2025-26597, ?CVE-2025-26598 ???CVE-2025-26599, CVE-2025-26600, CVE-2025-26601. - exim: CVE-2025-30232. - mbedtls: CVE-2025-27809, CVE-2025-27810. - augeas: CVE-2025-2588. - libarchive: CVE-2024-57970, CVE-2025-1632, CVE-2025-25724. - xwayland: CVE-2024-31081, CVE-2024-31083, CVE-2024-9632, ???CVE-2025-26594, CVE-2025-26595, CVE-2025-26596, ???CVE-2025-26597, CVE-2025-26598, CVE-2025-26599, ???CVE-2025-26600, CVE-2025-26601 - libopenh264: CVE-2025-27091. - libmodsecurity: CVE-2025-27110. - tinyxml2: CVE-2024-50615. Updated/fixed packages: libgeos, freerdp, libsoup3, cairo, linux, apr, mali-driver, libcoap, python-fastapi, python-twisted, tor, mc, linux-header, linux-tools. Test Improvements: - linux-tools: selftests: Add path containing BPF binary. - testing: add git runtime test. Infrastructure updates/fixes: - DEVELOPERS: change arnout's address. - DEVELOPERS: add Dario Binacchi for ti-k3-boot-firmware. - support/download/svn: use 'svn info' whith LC_ALL=C**. - dillo: Fix an issue related to _SITE url for make show-info. - kconfig: Handle backspace (^H) key. - pkg-stats: add -v/--verbose option Build issues/problems solved for: freeswitch, glibc, v4l2loopback, ls1028ardb, ls1028ardb, mesa3d-demos. For more details, see the CHANGES file: https://gitlab.com/buildroot.org/buildroot/-/blob/2024.11.4/CHANGES Users of the affected packages are strongly encouraged to upgrade. Many thanks to all the people contributing to this release: git shortlog -s -n 2024.11.3.. ????7 ?Bernd Kuhls ????4 ?Peter Korsgaard ????4 ?Thomas Perale ????3 ?Julien Olivain ????2 ?Colin Evrard ????2 ?Dario Binacchi ????2 ?Fiona Klute (WIWA) ????2 ?Gilles Bardoux ????2 ?Marcus Hoffmann ????2 ?Niklas Cassel ????2 ?Thomas Devoogdt ????2 ?Thomas Petazzoni ????1 ?Arnout Vandecappelle ????1 ?Frank Vanbever ????1 ?Giulio Benetti ????1 ?Matheus Tavares Bernardino ????1 ?Maxim Kochetkov ????1 ?Peter Seiderer ????1 ?Rapha?l M?lotte ????1 ?Romain Naour ????1 ?S?bastien Szymanski ????1 ?Yann E. MORIN Regards, Arnout From arnout at rnout.be Tue Apr 22 21:29:33 2025 From: arnout at rnout.be (Arnout Vandecappelle) Date: Tue, 22 Apr 2025 23:29:33 +0200 Subject: [Buildroot-users] Buildroot 2024.02.13 released Message-ID: <4a1839ca-f072-4529-bbf7-1e47e8e9a9f2@rnout.be> Hi, Buildroot is a simple tool for creating complete embedded Linux systems (https://buildroot.org). Buildroot 2024.02.13 is released - Go download it at: https://buildroot.org/downloads/buildroot-2024.02.13.tar.gz or https://buildroot.org/downloads/buildroot-2024.02.13.tar.xz Or get it from Git: https://gitlab.com/buildroot.org/buildroot.git (2024.02.13 tag) Notice that the 2024.02.x series is now end of life. Please migrate to the 2025.02.x series instead. Buildroot 2024.02.13 is a bugfix release, fixing a number of important / security related issues discovered since the 2024.02.12 release. Important / security related fixes: - xserver_xorg-server & xwayland: CVE-2024-9632, CVE-2025-26594, ???CVE-2025-26595, CVE-2025-26596, CVE-2025-26597, ?CVE-2025-26598, ???CVE-2025-26599, CVE-2025-26600, CVE-2025-26601. - exim: CVE-2025-30232. - mbedtls: CVE-2025-27809, CVE-2025-27810. - augeas: CVE-2025-2588. - libarchive: CVE-2024-57970, CVE-2025-1632, CVE-2025-25724. - libopenh264: CVE-2025-27091. - libmodsecurity: CVE-2025-27110. - tinyxml2: CVE-2024-50615. - libndp: CVE-2024-5564. - xwayland: CVE-2024-31080, CVE-2024-31081, CVE-2024-31083, ???CVE-2024-9632, CVE-2025-26594, CVE-2025-26595, ???CVE-2025-26596, CVE-2025-26597, CVE-2025-26598, ???CVE-2025-26599, CVE-2025-26600, CVE-2025-26601. - libfreeglut: CVE-2024-24258, CVE-2024-24259. Updated/fixed packages: libsoup3, linux, apr, mali-driver, libcoap, python-fastapi, python-twisted, tor, linux-header, linux-tools, libmodsecurity Test Improvements: - linux-tools: selftests: Add path containing BPF binary. - testing: add git runtime test. Infrastructure updates/fixes: - DEVELOPERS: change arnout's address. - DEVELOPERS: add Dario Binacchi for ti-k3-boot-firmware. - support/download/svn: use 'svn info' whith LC_ALL=C. - dillo: Fix an issue related to _SITE url for make show-info. - kconfig: Handle backspace (^H) key. - pkg-stats: add -v/--verbose option Build issues/problems solved for: glibc, mesa3d-demos. For more details, see the CHANGES file: https://gitlab.com/buildroot.org/buildroot/-/blob/2024.02.13/CHANGES Users of the affected packages are strongly encouraged to upgrade. Many thanks to all the people contributing to this release: git shortlog -s -n 2024.02.12.. ????5 ?Bernd Kuhls ????4 ?Peter Korsgaard ????4 ?Thomas Perale ????2 ?Colin Evrard ????2 ?Dario Binacchi ????2 ?Fiona Klute (WIWA) ????2 ?Gilles Bardoux ????2 ?Niklas Cassel ????2 ?Thomas Petazzoni ????1 ?Arnout Vandecappelle ????1 ?Frank Vanbever ????1 ?Giulio Benetti ????1 ?Julien Olivain ????1 ?Marcus Hoffmann ????1 ?Matheus Tavares Bernardino ????1 ?Rapha?l M?lotte ????1 ?Romain Naour ????1 ?S?bastien Szymanski ????1 ?Thomas Devoogdt Regards, Arnout From arnout at rnout.be Tue Apr 22 21:41:04 2025 From: arnout at rnout.be (Arnout Vandecappelle) Date: Tue, 22 Apr 2025 23:41:04 +0200 Subject: [Buildroot-users] Buildroot 2025.02.1 released Message-ID: <60b8483c-b717-41ce-a406-bceb71c3a089@rnout.be> Hi, Buildroot is a simple tool for creating complete embedded Linux systems (https://buildroot.org). Buildroot 2025.02.1 is released - Go download it at: https://buildroot.org/downloads/buildroot-2025.02.1.tar.gz or https://buildroot.org/downloads/buildroot-2025.02.1.tar.xz Or get it from Git: https://gitlab.com/buildroot.org/buildroot.git (2025.02.1 tag) Buildroot 2025.02.1 is a bugfix release, fixing a number of important / security related issues discovered since the 2025.02 release. Changes with potentially large impact: - gstreamer1 and related packages: updated from 1.22.x to 1.24.x. ?1.22.x was already EOL when Buildroot 2025.02 was released, so ?GStreamer should really already have been udpated to 1.24.x. ?This update was needed to fix a lot of vulnerabilities. - frr: updated from 9.1.3 to 10.3. Version 9 is no longer ?maintained upstream, and not in any distro either. This update ?was needed to fix a vulernability. Important / security related fixes: - libmodsecurity: CVE-2025-27110. - tinyxml2: CVE-2024-50615. - xserver_xorg-server & xwayland: CVE-2024-9632, CVE-2025-26594, ???CVE-2025-26595, CVE-2025-26596, CVE-2025-26597, ?CVE-2025-26598, ???CVE-2025-26599, CVE-2025-26600, CVE-2025-26601. - exim: CVE-2025-30232. - mbedtls: CVE-2025-27809, CVE-2025-27810. - libfreeglut: CVE-2024-24258, CVE-2024-24259. - libopenh264: CVE-2025-27091. - gstreamer1: CVE-2024-47834, CVE-2024-47835, CVE-2024-47778, ???CVE-2024-47777 CVE-2024-47776, CVE-2024-47775, CVE-2024-47774, ???CVE-2024-47615, CVE-2024-47613, CVE-2024-47607, CVE-2024-47606, ???CVE-2024-47603, CVE-2024-47602, CVE-2024-47601, CVE-2024-47600, ???CVE-2024-47599, CVE-2024-47598, CVE-2024-47597, CVE-2024-47596, ???CVE-2024-47546, CVE-2024-47545, CVE-2024-47544, CVE-2024-47543, ???CVE-2024-47542, CVE-2024-47541, CVE-2024-47540, CVE-2024-47539, ???CVE-2024-47538, CVE-2024-47537. - augeas: CVE-2025-2588. - libndp: CVE-2024-5564. - python-jinja2: CVE-2025-27516. - python-django: CVE-2025-26699. - libarchive: CVE-2024-57970, CVE-2025-1632. - frr: CVE-2024-55553. Updated / fixed packages: libmodsecurity, intel-mediadriver, intel-vpl-gpu-rt, python-aerich, python-aiohttp, python-maturin, python-tortoise-orm, python-sqlalchemy, kodi-pvr-waipu, tor, mc, tinyxml2, libgeos, intel-vpl-gpu-rt, intel-mediadriver, ruby, ncftp, xserver_xorg-server, exim, mbedtls, gdb, freerdp, uclibc, libsoup3, cairo, zabbix, armadillo, spdlog, go, linux, linux-tools, gstreamer, linux-header, ethtool, apr, mali-driver, libcoap, libcap python-fastapi, python-twisted. Test Improvements: - linux-tools: selftests: Add path containing BPF binary. - testing: make time setting portable. - testing: set date in emulated machine. - testing: add git runtime test. - test_gstreamer1: fix test by using bootlin toolchain. Infrastructure updates/fixes: - kconfig: Handle backspace (^H) key. - xilinx-embeddedsw: fix menuconfig visualization. - DEVELOPERS: change arnout's address. - support/download/svn: use 'svn info' whith LC_ALL=C - glibc: disable on RISC-V ilp32f and lp64f, not supported. - dillo: Fix an issue related to _SITE url for make show-info. - pkg-stats: add -v/--verbose option Build issues/problems solved for packages: dillo, freerdp, freeswitch, gdb, glibc, linux-tools, mesa3d-demos, ncftp, tesseract-ocr, v4l2loopback, zabbix For more details, see the CHANGES file: https://gitlab.com/buildroot.org/buildroot/-/blob/2025.02.1/CHANGES Users of the affected packages are strongly encouraged to upgrade. Many thanks to all the people contributing to this release: git shortlog -s -n 2025.02.. ???12 ?Bernd Kuhls ???11 ?Thomas Bonnefille ????7 ?Julien Olivain ????6 ?James Hilliard ????6 ?Peter Korsgaard ????6 ?Thomas Perale ????4 ?Thomas Petazzoni ????3 ?Dario Binacchi ????3 ?Waldemar Brodkorb ????3 ?Yann E. MORIN ????2 ?Arnout Vandecappelle (Essensium/Mind) ????2 ?Colin Evrard ????2 ?Fiona Klute (WIWA) ????2 ?Gilles Bardoux ????2 ?Giulio Benetti ????2 ?Marcus Hoffmann ????2 ?Niklas Cassel ????2 ?Thomas Devoogdt ????1 ?Alex Benn?e ????1 ?Arnout Vandecappelle ????1 ?Christian Stewart ????1 ?Fl?vio Tapaj?s ????1 ?Jean-Michel Hautbois ????1 ?Luca Ceresoli ????1 ?Matheus Tavares Bernardino ????1 ?Mattias Walstr?m ????1 ?Maxim Kochetkov ????1 ?Maxime Leroy ????1 ?Michael Nosthoff ????1 ?Peter Seiderer ????1 ?Rapha?l M?lotte ????1 ?Romain Naour ????1 ?S?bastien Szymanski ????1 ?Yegor Yefremov Regards, Arnout