Changelog:
=========
* Build:
** Require libqmi 1.30.8.
* FCC unlock:
** Updated SDX55 unlock script to handle the new method introduced in
the latest firmware releases.
* Modem interface:
** Set signal quality to 0% on shutdown.
** Set signal quality as recent on init.
* MBIM:
** Fix task completion when peeking device fails.
** Fix several GError double-frees.
* mmcli:
** Don't print signal quality until modem is enabled.
* Plugins:
** foxconn: remove carrier mapping table for T99W175.
* Several other minor improvements and fixes.
Signed-off-by: Wang Mingyu <wangmy@fujitsu.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
Changelog:
==========
Fixed using an explicitly provided PIN regardless of the secure login flag
Fixed RSA_PKCS1_PADDING handling
Fixed a crash on LLP64, including 64-bit Windows
Fixed searching objects when both ID and label are specified
Fixed the OAEP "source" parameter
Fixed object searching by label
Fixed thread safety in slot enumeration
Fixed storing certificates on tokens
Fixed several memory leaks
Fixed OpenSSL 3.0 compatibility
Fixed LibreSSL compatibility
Major concurrency improvements and refactoring
Added re-numeration of slots as an engine control command
Added the PKCS11_update_slots() API function
Added support for the SHA3 hash function
Added a self-test for engine RSA operations
Signed-off-by: Wang Mingyu <wangmy@fujitsu.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
Changelog:
===========
Changes
---------
Add irssimoduledir to irssi-1.pc in the Meson build (#1383, #1378)
Fixes
--------
Use -isystem includes, limiting warnings to Irssi code. Fixes compilation with Perl 5.36 (#1381, gentoo#851522, #1384)
Fix missing lines when changing dynamic textbuffer contents (#1382, #1387). Reported by externalserver15
Fix Perl cross compilation with Meson 0.60.0 (#1377)
Fix default channel prefix used for /JOIN to default to # (#1385, #1388)
Fix crash in /LASTLOG by getting line texts before printing (#1367, #1398)
Signed-off-by: Wang Mingyu <wangmy@fujitsu.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
Changelog:
===========
- AdwLeaflet
- Fix a broken link in docs
- AdwPreferencesGroup
- Fix accessibility labels
- AdwToast
- Fix the example in docs
- Stylesheet
- Add missing borders in high contrast version
Signed-off-by: Wang Mingyu <wangmy@fujitsu.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
CVE-2017-8806 doesn't apply to out configuration of postgresql so we
can safely ignore it.
Signed-off-by: Davide Gardenal <davide.gardenal@huawei.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
CVE-2007-2728, CVE-2007-3205 and CVE-2007-4596 are patched in our
version of php but they don't have a vulnerable version range in the
NVD database, that's why they need to be ignored.
Signed-off-by: Davide Gardenal <davide.gardenal@huawei.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
CVE-2014-8180, CVE-2017-18381 and CVE-2017-2665 are not affecting our
configuration so they can be safely ignored.
Signed-off-by: Davide Gardenal <davide.gardenal@huawei.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
Some old CVEs don't have a vulnerable version range in the NVD database,
this causes come mismatch with cve-check. Ignore many CVEs that are
picked up by the class but are patched in our products.
Signed-off-by: Davide Gardenal <davide.gardenal@huawei.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
CVE-2017-5834, CVE-2017-5835 and CVE-2017-5836 are patched in our
version of libplist but they don't have a vulnerable version range in
the NVD database, that's why they need to be ignored.
Signed-off-by: Davide Gardenal <davide.gardenal@huawei.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
This one is needed for version 5.0.7.
And should not be needed anymore for version 6.x.
Signed-off-by: Jan Vermaete <jan.vermaete@gmail.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
This is needed as rdepends of the python3-jsonrpcserver package in version 5.0.7.
Is should not be needed anymore in the 6.x version.
Signed-off-by: Jan Vermaete <jan.vermaete@gmail.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
Summary was ending in a kind of cut off sentence.
The text for summary and description is taken from the homepage.
Signed-off-by: Jan Vermaete <jan.vermaete@gmail.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
It does not have compiler intrinsics for 64bit atomics
Fixes
MetricsSample.cpp:(.text._ZN16MetricsSampleApp4mainERKNSt3__16vectorINS0_12basic_stringIcNS0_11char_t
raitsIcEENS0_9allocatorIcEEEENS5_IS7_EEEE[_ZN16MetricsSampleApp4mainERKNSt3__16vectorINS0_12basic_stringIcNS0_11char_traitsIcEENS0_9allocatorIcEEEENS5_IS7_EEEE]+0x104): undefined reference to `__atomic_compare_exchange_8'
Signed-off-by: Khem Raj <raj.khem@gmail.com>
Still with the warning:
WARNING: python3-pyzmq-23.2.0-r0 do_package_qa: QA Issue: File /usr/lib/python3.10/site-packages/zmq/utils/compiler.json in package python3-pyzmq contains reference to TMPDIR
File /usr/lib/python3.10/site-packages/zmq/utils/config.json in package python3-pyzmq contains reference to TMPDIR [buildpaths]
Signed-off-by: Jan Vermaete <jan.vermaete@gmail.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
Changelog:
=========
Added
------
Add support for arbitrary size integers (#548)
Fixed
---------
CVE-2022-31116:
Replace wchar_t string decoding implementation with a uint32_t-based one (#555)
Fix handling of surrogates on decoding (#550)
CVE-2022-31117: Potential double free of buffer during string decoding
Fix memory leak on encoding errors when the buffer was resized (#549)
Integer parsing: always detect overflows (#544)
Fix handling of surrogates on encoding (#530)
Signed-off-by: Xu Huan <xuhuan.fnst@fujitsu.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
Changelog:
=========
Fixed null check for fribidi_version_info in FriBiDi shim
Added GIF decompression bomb check
Handle PCF fonts files with less than 256 characters
Improved GIF optimize condition
Reverted to array_interface with the release of NumPy 1.23
Pad PCX palette to 768 bytes when saving
Fixed bug with rounding pixels to palette colors
Use gnome-screenshot on Linux if available
Fixed loading L mode BMP RLE8 images
Fixed incorrect operator in ImageCms error
Limit FPX tile size to avoid extending outside image
Added support for decoding plain PPM formats
Added apply_transparency()
Fixed behaviour change from endian fix
Use python3
Allow remapping P images with RGBA palettes
Revert "Skip test_realloc_overflow unless libtiff 4.0.4 or higher"
[pre-commit.ci] pre-commit autoupdate
Only import ImageFont in ImageDraw when necessary
Fixed drawing translucent 1px high polygons
Pad COLORMAP to 768 items when saving TIFF
Fix P -> PA conversion
Once exif data is parsed, do not reload unless it changes
Only try to connect discontiguous corners at the end of edges
Improve transparency handling when saving GIF images
Do not update GIF frame position until local image is found
Netscape GIF extension belongs after the global color table
Only write GIF comments at the beginning of the file
Separate multiple GIF comment blocks with newlines
Always use GIF89a for comments
Ignore compression value from BMP info dictionary when saving as TIFF
If font is file-like object, do not re-read from object to get variant
Raise ValueError when trying to access internal fp after close
Support more affine expression forms in im.point()
Include 'twine check' in 'make sdist'
Ensure that furthest v is set in quantize2
Signed-off-by: Zheng Ruoqin <zhengrq.fnst@fujitsu.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
CVE-2015-1611 and CVE-2015-1612 are not referred to our implementation
of openflow as specified by the NVD database, ignore them.
Signed-off-by: Davide Gardenal <davide.gardenal@huawei.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
CVE-2002-0318 and CVE-2011-4966 are both patched in our version of
freeradius. The CPE in the NVD database doesn't reflect correctly
the vulnerable versions that's why they are incorrectly picked up.
Signed-off-by: Davide Gardenal <davide.gardenal@huawei.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
This package has strict build dependencies defined in pyproject.toml:
requires = ['setuptools ~= 41.4', 'setuptools_scm ~= 3.3', 'wheel ~= 0.33.6']
The ~= operator is "compatible release", so "setuptools ~= 41.4" can be
read as "setuptools >= 41.4, setuptools == 41.*".
We have setuptools 62.6.0 and do builds using our own packages instead
of building inside virtual environments, so these dependencies cannot
be satisfied.
Resolve this by passing --loose-depends to picobuild, which effectively
turns ~= into >=.
Signed-off-by: Ross Burton <ross.burton@arm.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
There's no need to depend on python3-toml-native, but this does need
python3-setuptools-scm-git-archive-native.
Signed-off-by: Ross Burton <ross.burton@arm.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
Add a DEPENDS on ptyhon3-setuptools-scm-git-archive-native as the setup.py
uses it.
In the future we'll have a Python building tool which validates build
requirements, so remove pip from those dependencies as it shouldn't depend
on a specific build tool being present.
Signed-off-by: Ross Burton <ross.burton@arm.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
The upstream pyproject.toml says it needs to be built with the Poetry
frontend, but that's deprecated behaviour and it should use the Poetry
Core API instead.
Signed-off-by: Ross Burton <ross.burton@arm.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
In the future we'll have a Python building tool which validates build
requirements. No package should require a specific tool to be present
(not even used, just present), so remove the dependency on 'build'.
Signed-off-by: Ross Burton <ross.burton@arm.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
The build doesn't generate the right filenames without this package.
Signed-off-by: Ross Burton <ross.burton@arm.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
