subtree updatesscarthgap

meta-openembedded: 4958bfe013..78a14731cf:
  Alex Kiernan (1):
        mdns: Upgrade 2200.80.16 -> 2200.100.94.0.2

  Alexander Kanavin (2):
        vlc: do not depend on mpeg2dec
        libgweather: fix build with gobject-introspection 1.80.0

  Alexander Vickberg (2):
        Revert "nng: upgrade 1.5.2 -> 12"
        nng: upgrade 1.5.2 -> 1.7.3

  Andre Paiusco (1):
        ydotool: Add new package

  Archana Polampalli (1):
        nodejs: upgrade 20.11.1 -> 20.12.2

  Armin Kuster (1):
        meta-openemnedded: Add myself as scarthgap maintainer

  Bartosz Golaszewski (1):
        libgpiod: update to v2.1.2

  Beniamin Sandu (7):
        mbedtls: upgrade 3.5.2 -> 3.6.0
        mbedtls: upgrade 2.28.7 -> 2.28.8
        unbound: upgrade 1.19.1 -> 1.19.3
        libtorrent: remove CVE mention
        libtorrent-rasterbar: add initial recipe for 2.0.10
        libtorrent: remove incorrect CVE mapping
        libtorrent-rasterbar: fix CVE mapping

  Chad Rockey (1):
        cppzmq-dev expects /usr/lib/libzmq.a

  Changqing Li (3):
        nodejs: don't always disable io_uring
        fuse3: remove sysv init script and install fuse kernel module explictly
        python3-grpcio: fix do_compile failure for qemuppc64/qemuppc

  Dan McGregor (3):
        dash: correct licence
        libfido2: new recipe
        libcbor: use shared libraries

  Eero Aaltonen (2):
        docopt.cpp: turn boost to a PACKAGECONFIG option
        docopt.cpp: add support for native and nativesdk

  Electric Worry (1):
        meta-python: missing closing brace

  Etienne Cordonnier (1):
        uutils-coreutils: upgrade 0.0.24 -> 0.0.25

  Fathi Boudra (1):
        composefs: add a new recipe

  Geoff Parker (2):
        python3-tornado: extend for native and nativesdk
        python3-pycurl: extend for native and nativesdk

  Gerard Salvatella (1):
        libwebsockets: fix buildpath warnings

  Guðni Már Gilbert (11):
        python3-ecdsa: remove python3-pbr
        python3-ecdsa: cleanup DEPENDS
        python3-ecdsa: upgrade 0.18.0 -> 0.19.0
        python3-twisted: cleanup FILES and recipe in general
        python3-twisted: upgrade 22.10.0 -> 24.3.0
        python3-incremental: cleanup RDEPENDS and use python_setuptools_build_meta
        python3-txdbus: cleanup RDEPENDS
        python3-pyhamcrest: cleanup RDEPENDS and correct build backend
        python3-protobuf: drop python3-six from RDEPENDS
        python3-twisted: prepend split PACKAGES
        python3-twisted: remove obsolete python3-twisted-flow

  Hitendra Prajapati (1):
        tcpdump: fix CVE-2024-2397

  Jaeyoon Jung (1):
        lvgl: Set resolution prior to buffer

  Jan Luebbe (1):
        Add class for appending dm-verity hash data to block device images

  Justin Bronder (2):
        python3-colorlog: BBCLASEXTEND native nativesdk
        python3-gcovr: add dep on python3-colorlog

  Kai Kang (1):
        daq: fix incompatible pointer type error

  Khem Raj (35):
        microsoft-gsl: Disable disabled-macro-expansion warning as error on clang/musl
        meta-python-image-ptest: Use 2G RAM for some demanding tests
        python3-pydbus: Add bash dependency for ptests
        highway,libjxl: Remove -mfp16-format=ieee when using clang compiler
        python3-pydantic-core: Enable benchmark tests
        python3-pydbus: Fix typo in ptest package name
        python3-netaddr: Ignore failing tests on musl
        python3-pydantic: Ignore failing testcases
        python3-pydantic-core: Skip failing ptests
        python3-whoosh: Fix an intermittent ptest
        python3-pyzmq: Fix ptests
        Revert "libqmi: upgrade 1.34.0 -> 1.35.2"
        Revert "libmbim: upgrade 1.30.0 -> 1.31.2"
        nftables: Fix ptest runs
        python3-flexparser,python3-flexcache: Add recipes
        python3-pint: Switch to using github SRC_URI
        libxml++: Delete recipe for 2.42.1
        jemalloc: Update to tip of dev branch
        libteam: Add missing dependencies revealed by ptests
        oprofile: Fix failing ptests
        ptest-packagelists-meta-oe: jemalloc and oprofile are passing now
        ostree: Add missing dependencies for ptests
        unixodbc: Upgrade to 2.3.12
        pv: Fix ptest failures
        unixodbc: Enable UTF8 init
        psqlodbc: Fix ptests
        python3-websockets: Remove recipe
        freediameter: Upgrade to latest on master 1.5.0+
        Revert "libtorrent: remove CVE mention"
        python3-traitlets: Upgrade to 5.14.3
        sdbus-c++: Fix build and upgrade to latest git
        ydotool: Do not package systemd unit files on non-systemd distros
        fwupd: Upgrade to 1.9.18 release
        Revert "nautilus: update 45.1 -> 46.1"
        pcapplusplus: Fix build with gcc14

  Markus Volk (30):
        apache2: preset mpm=prefork by default
        gnome-user-share: add recipe
        gnome-control-center: update 46.0 -> 46.0.1
        gdm: update 45.0.1 -> 46.0
        gnome-user-share: remove hardcoded paths
        ghex: update 45.1 -> 46.0
        libjxl: add recipe
        gnome-backgrounds: add runtime depenency for libjxl
        highway: add recipe
        webkitgtk3: update 2.42.5 -> 2.44.0
        gnome-control-center: restore Upstream-Status line
        dav1d: update 1.4.0 -> 1.4.1
        edid-decode: allow to build native variant
        pipewire: update 1.0.4 -> 1.0.5
        wireplumber: update 0.5.0 -> 0.5.1
        gnome-shell: update 46.0 -> 46.1
        mutter: update 46.0 -> 46.1
        xdg-desktop-portal-gnome: update 46.0 -> 46.1
        gnome-calendar: update 46.0 -> 46.1
        gnome-shell-extensions: update 46.0 -> 46.1
        spice-gtk: use hwdata instead of usbids
        spice-gtk: add PACKAGECONFIG for webdav
        gnome-remote-desktop: update 46.0 -> 46.1
        gnome-control-center: update 46.0.1 -> 46.1
        gupnp: fix reproducibility issue
        gssdp: fix a reproducibility issue
        rygel: update 0.42.4 -> 0.42.5
        networkmanager: fix gir build
        nautilus: update 45.1 -> 46.1
        flatpak: update 1.15.6 -> 1.15.8

  Martin Hundebøll (1):
        nodejs-oe-cache: fix offline install of dependencies

  Martin Jansa (7):
        gtkmm4: add x11 to REQUIRED_DISTRO_FEATURES
        libjxl: drop -mfp16-format=ieee
        freediameter: fix dependency from libidn to libidn2
        gst-instruments: enable ui PACKAGECONFIG only with GTK3DISTROFEATURES
        aravis: fix LICENSE and enable viewer PACKAGECONFIG only with GTK3DISTROFEATURES
        libdeflate: fix build with -mcpu=cortex-a76+crypto without -march=armv8.2-a+crypto
        libwebsockets: remove STAGING_LIBDIR with /

  Maxim Perevozchikov (1):
        nginx: Disable login for www user

  Mikko Rapeli (1):
        fwupd: fix uefi capsule update build error

  Mingli Yu (2):
        c-ares: Improve the ptest output
        msgraph: Add opengl to REQUIRED_DISTRO_FEATURES

  Ninette Adhikari (5):
        st: Update status for CVE-2017-16224
        procmail: Update status for CVE-1999-0475
        mpd: Update status for CVE-2020-7465 and CVE-2020-7466
        sthttpd: Update status for CVE-2017-10671
        open-vm-tools: Update status for CVE-2014-4199 and CVE-2014-4200

  Perceval Arenou (1):
        aravis: new recipe

  Peter Hoyes (2):
        python3-networkx: Add BBCLASSEXTEND for native and nativesdk
        python3-decorator: Add BBCLASSEXTEND for native and nativesdk

  Peter Kjellerstedt (1):
        libnice: Update to 0.1.22

  Peter Marko (9):
        syslog-ng: fix build without ipv6 in distro features
        autoconf-2.13-native_2.13: replace oldincludedir
        waf-samba: replace oldincludedir
        soci: update build options
        gnome-shell: correct regression with glib-2.0 2.78.5
        re2: remove dev dependencies from main package
        re2: rework solibs handling
        jemalloc: add +git to version
        cjson: fix buildpath warnings

  Randolph Sapp (1):
        vulkan-cts: add workaround for createMeshShaderMiscTestsEXT

  Randy MacLeod (5):
        ncftp: Upgrade to 3.2.7
        pimd: switch SRC_URI to https
        tnftp: switch the SRC_URI to https
        postfix: switch SRC_URI to http
        libmad: switch links/SRC_URI to https sites

  Robert Yang (1):
        freeradius: 3.0.26 -> 3.2.3

  Ross Burton (2):
        yajl: set correct homepage
        renderdoc: remove vim-native DEPENDS

  Rui Costa (2):
        avro: add recipe for c++
        avro: extend avro-c++ to native and nativesdk

  Scott Murray (1):
        abseil-cpp: backport RISC-V fix

  Siddharth Doshi (1):
        nano: Security fix for CVE-2024-5742

  Soumya Sambu (4):
        apache2: Upgrade v2.4.58 -> v2.4.59
        php: Upgrade to 8.2.18
        unixodbc: Fix CVE-2024-1013
        php: Upgrade to 8.2.20

  Stanislav Angelovic (1):
        chore(sdbus-c++): upgrade to 2.0.0 release

  Tim Orling (1):
        liberror-perl: move recipe from oe-core

  Tom Geelen (7):
        python3-casttube: upgrade 0.2.0 -> 0.2.1
        python3-sqlalchemy: upgrade 2.0.25 --> 2.0.27
        python3-charset-normalizer: add native build option to recipe
        python3-chromecast: upgrade 13.1.0 -> 14.0.0
        python3-pychromecast: upgrade 14.0.0 -> 14.0.1
        python3-zeroconf: upgrade 0.131.0 -> 0.132.0
        python3-sqlalchemy: upgrade 2.0.27 -> 2.0.29

  Tomasz Żyjewski (1):
        python: python-libusb1: add recipe

  Vijay Anusuri (2):
        c-ares: Update SRC tarball path
        tipcutils: Add systemd support

  Wang Mingyu (111):
        gjs: upgrade 1.80.0 -> 1.80.2
        gnome-backgrounds: upgrade 45.0 -> 46.0
        gnome-font-viewer: upgrade 45.0 -> 46.0
        libblockdev: upgrade 3.1.0 -> 3.1.1
        libdeflate: upgrade 1.19 -> 1.20
        libmbim: upgrade 1.30.0 -> 1.31.2
        libqmi: upgrade 1.34.0 -> 1.35.2
        libtommath: upgrade 1.2.1 -> 1.3.0
        mcelog: upgrade 197 -> 198
        metacity: upgrade 3.50.0 -> 3.52.0
        python3-asgiref: upgrade 3.7.2 -> 3.8.1
        python3-blivet: upgrade 3.9.1 -> 3.9.2
        python3-cassandra-driver: upgrade 3.29.0 -> 3.29.1
        python3-djangorestframework: upgrade 3.14.0 -> 3.15.1
        python3-eth-rlp: upgrade 2.0.0 -> 2.1.0
        python3-eventlet: upgrade 0.35.2 -> 0.36.1
        python3-filelock: upgrade 3.13.1 -> 3.13.3
        python3-flask-marshmallow: upgrade 1.2.0 -> 1.2.1
        python3-flatbuffers: upgrade 24.3.7 -> 24.3.25
        python3-google-api-core: upgrade 2.17.1 -> 2.18.0
        python3-google-api-python-client: upgrade 2.122.0 -> 2.124.0
        python3-google-auth: upgrade 2.28.2 -> 2.29.0
        python3-graphviz: upgrade 0.20.1 -> 0.20.3
        python3-gspread: upgrade 6.0.2 -> 6.1.0
        python3-jdatetime: upgrade 4.1.1 -> 5.0.0
        python3-pdm: upgrade 2.12.4 -> 2.13.2
        python3-pyasn1-modules: upgrade 0.3.0 -> 0.4.0
        python3-pymisp: upgrade 2.4.187 -> 2.4.188
        python3-pytest-asyncio: upgrade 0.23.5 -> 0.23.6
        python3-pytest-cov: upgrade 4.1.0 -> 5.0.0
        python3-pytest-lazy-fixtures: upgrade 1.0.6 -> 1.0.7
        python3-pywbem: upgrade 1.6.2 -> 1.6.3
        python3-pywbemtools: upgrade 1.2.0 -> 1.2.1
        python3-pyzstd: upgrade 0.15.9 -> 0.15.10
        python3-requests-oauthlib: upgrade 1.4.0 -> 2.0.0
        python3-sentry-sdk: upgrade 1.42.0 -> 1.44.0
        python3-socketio: upgrade 5.11.1 -> 5.11.2
        python3-thrift: upgrade 0.16.0 -> 0.20.0
        python3-tox: upgrade 4.14.1 -> 4.14.2
        python3-web3: upgrade 6.15.1 -> 6.16.0
        st: upgrade 0.9 -> 0.9.1
        thingsboard-gateway: upgrade 3.4.5 -> 3.4.6
        thrift: upgrade 0.19.0 -> 0.20.0
        tracker-miners: upgrade 3.7.0 -> 3.7.1
        tracker: upgrade 3.7.0 -> 3.7.1
        wireshark: upgrade 4.2.3 -> 4.2.4
        wolfssl: upgrade 5.6.6 -> 5.7.0
        abseil-cpp: upgrade 20240116.1 -> 20240116.2
        adw-gtk3: upgrade 5.2 -> 5.3
        bindfs: upgrade 1.17.6 -> 1.17.7
        cryptsetup: upgrade 2.7.1 -> 2.7.2
        file-roller: upgrade 44.0 -> 44.1
        gnome-online-accounts: upgrade 3.50.0 -> 3.50.1
        gnome-text-editor: upgrade 46.0 -> 46.1
        gtkwave: upgrade 3.3.117 -> 3.3.119
        hwdata: upgrade 0.380 -> 0.381
        libbpf: upgrade 1.3.0 -> 1.4.0
        libcrypt-openssl-random-perl: upgrade 0.15 -> 0.16
        libopus: upgrade 1.5.1 -> 1.5.2
        makedumpfile: upgrade 1.7.4 -> 1.7.5
        opensc: upgrade 0.25.0 -> 0.25.1
        python3-aiodns: upgrade 3.1.1 -> 3.2.0
        python3-aiohttp: upgrade 3.9.3 -> 3.9.4
        python3-cbor2: upgrade 5.6.2 -> 5.6.3
        python3-django: upgrade 5.0.3 -> 5.0.4
        python3-eth-abi: upgrade 5.0.1 -> 5.1.0
        python3-eth-account: upgrade 0.11.0 -> 0.12.1
        python3-eth-typing: upgrade 4.0.0 -> 4.1.0
        python3-execnet: upgrade 2.0.2 -> 2.1.1
        python3-filelock: upgrade 3.13.3 -> 3.13.4
        python3-google-api-python-client: upgrade 2.124.0 -> 2.125.0
        python3-ipython: upgrade 8.22.2 -> 8.23.0
        python3-javaobj-py3: upgrade 0.4.3 -> 0.4.4
        python3-joblib: upgrade 1.3.2 -> 1.4.0
        python3-parso: upgrade 0.8.3 -> 0.8.4
        python3-path: upgrade 16.10.0 -> 16.14.0
        python3-pdm: upgrade 2.13.2 -> 2.14.0
        python3-pulsectl: upgrade 23.5.2 -> 24.4.0
        python3-pydantic: upgrade 2.6.4 -> 2.7.0
        python3-pymodbus: upgrade 3.6.6 -> 3.6.7
        python3-rarfile: upgrade 4.1 -> 4.2
        python3-send2trash: upgrade 1.8.2 -> 1.8.3
        python3-sentry-sdk: upgrade 1.44.0 -> 1.45.0
        python3-validators: upgrade 0.24.0 -> 0.28.0
        python3-web3: upgrade 6.16.0 -> 6.17.0
        python3-zopeinterface: upgrade 6.2 -> 6.3
        rdma-core: upgrade 50.0 -> 51.0
        sngrep: upgrade 1.8.0 -> 1.8.1
        squid: upgrade 6.8 -> 6.9
        st: upgrade 0.9.1 -> 0.9.2
        tcsh: upgrade 6.24.11 -> 6.24.12
        toybox: upgrade 0.8.10 -> 0.8.11
        webkitgtk3: upgrade 2.44.0 -> 2.44.1
        xmlsec1: upgrade 1.3.3 -> 1.3.4
        asio: upgrade 1.28.0 -> 1.30.2
        gensio: upgrade 2.8.3 -> 2.8.4
        mpich: upgrade 4.2.0 -> 4.2.1
        openfortivpn: upgrade 1.21.0 -> 1.22.0
        python3-argcomplete: upgrade 3.2.3 -> 3.3.0
        python3-croniter: upgrade 2.0.3 -> 2.0.5
        python3-grpcio-tools: upgrade 1.62.1 -> 1.62.2
        python3-grpcio: upgrade 1.62.1 -> 1.62.2
        python3-pycups: upgrade 2.0.1 -> 2.0.4
        python3-pymisp: upgrade 2.4.188 -> 2.4.190
        python3-pywbem: upgrade 1.6.3 -> 1.7.2
        python3-pywbemtools: upgrade 1.2.1 -> 1.3.0
        python3-regex: upgrade 2023.12.25 -> 2024.4.16
        python3-yamlloader: upgrade 1.3.2 -> 1.4.1
        sanlock: upgrade 3.9.1 -> 3.9.2
        postgresql: upgrade 16.2 -> 16.3
        uriparser: upgrade 0.9.7 -> 0.9.8

  William Lyu (3):
        nftables: Fix ptest output format issues
        nftables: Fix ShellCheck violations in ptest wrapper script "run-ptest"
        nftables: Fix failed ptest testcases

  Xiangyu Chen (1):
        libgpiod: fix QA error in ptest RDEPENDS

  Yi Zhao (6):
        rocksdb: fix build error for DEBUG_BUILD
        rocksdb: fix build error for multilib
        libdaq: update to latest stable version 3.0.14
        snort3: update to latest stable version 3.1.84.0
        libtevent: upgrade 0.16.0 -> 0.16.1
        samba: upgrade 4.19.5 -> 4.19.6

  Yoann Congal (3):
        reproducibility: move repro excludes from AB config.json to meta-oe
        squid: workaround a build failure with native gcc10
        libfido2: remove non-functional native and nativesdk BBCLASSEXTEND

  Yongchang Qiao (1):
        packagegroup-meta-filesystems: Fix utils typo

  Zhang Peng (1):
        hiredis: change ptest output format

  alperak (11):
        python3-validators: upgrade 0.22.0 > 0.24.0 and enable ptest
        python3-pydbus: Drop ${PYTHON_PN}
        python3-bleak: enable ptest and add missing runtime dependency
        python3-pillow: Upgrade 10.1.0 -> 10.3.0 and fix ptest
        python3-flexcache: enable ptest
        python3-flexparser: enable ptest and add missing runtime dependencies
        python3-flexcache: add missing runtime dependencies
        libcoap: fix CVE-2024-0962
        python3-ecdsa: enable ptest and add missing runtime dependency
        Use PYTHON_SITEPACKAGES_DIR instead of hard-coded site-packages directory path
        python3-scrypt: Move from PTESTS_PROBLEMS_META_PYTHON to PTESTS_SLOW_META_PYTHON

  gr embeter (1):
        python3-pytest-html: add missing runtime dependencies

  maffan (1):
        networkd-dispatcher: Add dependency on python3-json

  nikhil (1):
        giflib: upgrade to version 5.2.2

meta-security: d1522af21d..11ea91192d:
  Wang Mingyu (1):
        lynis: upgrade 3.0.9 -> 3.1.1

  Yi Zhao (2):
        ibmswtpm2: upgrade 164-2020-192.1 -> 183-2024-03-27
        ibmtpm2tss: upgrade 1661 -> 2.2.0

meta-raspberrypi: 1879cb831f..1918a27419:
  Martin Jansa (2):
        linux: drop unused rpi4-64-kernel-misc.cfg
        linux: drop unused 5.15 version

  Matthias Klein (1):
        linux-firmware-rpidistro: Fix wireless on model Zero 2 W

  Tim Orling (3):
        layer.conf: rpi5 recommends lts-u-boot-mixin
        u-boot: re-enable rapsberrypi5
        raspberrypi5.conf: Fix KERNEL_IMAGETYPE_UBOOT

  alperak (1):
        rpi-cmdline: Fix being renamed of network interfaces

poky: a88251b3e7..ca27724b44:
  Adithya Balakumar (1):
        wic/partition.py: Set hash_seed for empty ext partition

  Adriaan Schmidt (1):
        libcgroup_3.1.0: fix build on non-systemd systems

  Alexander Kanavin (13):
        icu: update 74-1 -> 74-2
        rpm: update 4.19.1 -> 4.19.1.1
        scripts/oe-setup-build: write a build environment initialization one-liner into the build directory
        documentation/poky.yaml.in: drop mesa/sdl from essential host packages
        libtraceevent: submit meson.patch upstream
        serf: mark patch as inappropriate for upstream submission
        kea: remove unnecessary reproducibility patch
        expect: mark patches as Inactive-Upstream
        apr: submit 0001-Add-option-to-disable-timed-dependant-tests.patch upstream
        busybox: submit CVE-2022-28391 patches upstream
        xinput-calibrator: mark upstream as inactive in a patch
        bash: mark build-tests.patch as Inappropriate
        icu: add upstream submission links for fix-install-manx.patch

  Alexandre Truong (2):
        oeqa/selftest/devtool: fix _test_devtool_add_git_url
        Revert "oeqa/selftest/devtool: fix test_devtool_add_git_style2"

  Anton Almqvist (1):
        devtool: modify: Catch git submodule error for go code

  Antonin Godard (1):
        devtool: ide-sdk: correct help typo

  Archana Polampalli (6):
        ghostscript: fix CVE-2024-33870
        ghostscript: fix CVE-2024-33869
        ghostscript: fix CVE-2024-33871
        ghostscript: fix CVE-2024-29510
        xserver-xorg: upgrade 21.1.11 -> 21.1.12
        gstreamer: upgrade 1.22.11 -> 1.22.12

  Bruce Ashfield (20):
        linux-yocto/6.6: update to v6.6.24
        linux-yocto/6.6: update CVE exclusions (6.6.24)
        linux-yocto/6.6: update to v6.6.25
        linux-yocto/6.6: update CVE exclusions (6.6.25)
        linux-yocto/6.6: nft: enable veth
        linux-yocto/6.6: update to v6.6.27
        linux-yocto/6.6: update CVE exclusions (6.6.27)
        linux-yocto/6.6: cfg: drop obselete options
        linux-yocto/6.6: update to v6.6.28
        linux-yocto/6.6: update CVE exclusions (6.6.28)
        linux-yocto/6.6: update to v6.6.29
        linux-yocto/6.6: update CVE exclusions (6.6.29)
        linux-yocto/6.6: fix kselftest failures
        linux-yocto/6.6: update to v6.6.30
        linux-yocto/6.6: intel configuration changes
        linux-yocto/6.6: update to v6.6.32
        linux-yocto/6.6: cfg: introduce Intel NPU fragment
        linux-yocto/6.6: update to v6.6.34
        linux-yocto/6.6: update to v6.6.35
        linux-yocto/6.6: fix AMD boot trace

  Changqing Li (1):
        ptest-runner: Bump to 2.4.4 (95f528c)

  Christian Bräuner Sørensen (1):
        systemd: sed ROOT_HOME only if sysusers PACKAGECONFIG is set

  Deepthi Hemraj (2):
        gcc : upgrade to v13.3
        llvm: Fix CVE-2024-0151

  Dmitry Baryshkov (2):
        ffmpeg: backport patches to use new Vulkan AV1 codec API
        ffmpeg: backport patch to fix errors with GCC 14

  Felix Nilsson (1):
        base-files: profile: fix error sh: 1: unknown operand

  Guðni Már Gilbert (4):
        python3-requests: cleanup RDEPENDS
        python3-setuptools: drop python3-2to3 from RDEPENDS
        python3-bcrypt: drop python3-six from RDEPENDS
        python3-pyopenssl: drop python3-six from RDEPENDS

  Heiko (1):
        kernel.bbclass: check, if directory exists before removing empty module directory

  Hitendra Prajapati (1):
        QEMU: Fix CVE-2024-3446 & CVE-2024-3567

  Jonas Gorski (1):
        linuxloader: add -armhf on arm only for TARGET_FPU 'hard'

  Jose Quaresma (6):
        go: Drop the linkmode completely
        Revert "goarch: disable dynamic linking globally"
        go: upgrade 1.22.2 -> 1.22.3
        go: upgrade 1.22.3 -> 1.22.4
        go: drop the old 1.4 bootstrap C version
        openssh: fix CVE-2024-6387

  Joshua Watt (3):
        bitbake: bb: Use namedtuple for Task data
        bitbake: hashserv: client: Add batch stream API
        bitbake: siggen: Enable batching of unihash queries

  Julien Stephan (3):
        devtool: standard: update-recipe/finish: fix update localfile in another layer
        oeqa/selftest/devtool: add test for updating local files into another layer
        oeqa: selftest: context: run tests serially if testtools/subunit modules are not found

  Kai Kang (1):
        webkitgtk: 2.44.0 -> 2.44.1

  Khem Raj (12):
        llvm: Upgrade to 18.1.4
        llvm: Upgrade to 18.1.5
        llvm: Switch to using release tarballs
        oeqa/postactions: Do not use -l option with df
        kea: Remove -fvisibility-inlines-hidden from C++ flags
        consolekit: Disable incompatible-pointer-types warning as error
        gtk4: Disable int-conversion warning as error
        ltp: Fix build with GCC-14
        iproute2: Fix build with GCC-14
        zip: Fix build with gcc-14
        kexec-tools: Fix build with GCC-14 on musl
        pcmanfm: Disable incompatible-pointer-types warning as error

  Lee Chee Yang (3):
        release-notes-5.0: update recipes changes
        migration-notes: add release notes for 4.0.18
        release-notes-5.0: update Repositories / Downloads section

  Lei Maohui (1):
        run-postinsts.service: Removed --no-reload to fix reload warning when users execute systemctl in the first boot.

  Marc Ferland (1):
        libinput: fix building with debug-gui option

  Marek Vasut (1):
        gstreamer1.0-plugins-good: Include qttools-native during the build with qt5 PACKAGECONFIG

  Mark Hatle (3):
        sstate.bbclass: Add _SSTATE_EXCLUDEDEPS_SYSROOT to vardepsexclude
        gcc: Fix for CVE-2024-0151
        binutils: Fix aarch64 disassembly abort

  Martin Hundeb?ll (1):
        classes: image_types: quote variable assignment needed by dash

  Martin Hundebøll (1):
        classes: image_types: apply EXTRA_IMAGECMD:squashfs* in oe_mksquashfs()

  Martin Jansa (7):
        expect: ignore various issues now fatal with gcc-14
        libunwind: ignore various issues now fatal with gcc-14
        p11-kit: ignore various issues fatal with gcc-14 (for 32bit MACHINEs)
        lrzsz connman-gnome libfm: ignore various issues fatal with gcc-14
        cdrtools-native: fix build with gcc-14
        db: ignore implicit-int and implicit-function-declaration issues fatal with gcc-14
        rng-tools: ignore incompatible-pointer-types errors for now

  Maxin B. John (1):
        iproute2: drop obsolete patch

  Michael Glembotzki (1):
        rootfs-postcommands.bbclass: Only set DROPBEAR_RSAKEY_DIR once

  Michael Halstead (2):
        docs: add support for scarthgap 5.0 release
        yocto-uninative: Update to 4.5 for gcc 14

  Michael Opdenacker (2):
        manuals: standards.md5: add standard for project names
        ref-manual: update releases.svg

  Mingli Yu (2):
        ncurses: Fix CVE-2023-50495
        ruby: Fix CVE-2023-36617

  Ola x Nilsson (1):
        oeqa/selftest/devtool: add test for modifying recipes using go.bbclass

  Paul Eggleton (2):
        ref-manual: variables: add USERADD_DEPENDS
        release-notes: add a few more new features

  Peter Marko (8):
        openssl: patch CVE-2024-4603
        glib-2.0: Upgrade 2.78.4 -> 2.78.5
        glib-2.0: Upgrade 2.78.5 -> 2.78.6
        glibc: Update to latest on stable 2.39 branch
        glibc: Update to latest on stable 2.39 branch
        glibc: correct license
        ttyrun: define CVE_PRODUCT
        update-rc.d: add +git to PV

  Philip Lorenz (2):
        lib/package_manager/ipk: Do not hardcode payload compression algorithm
        ipk: Fix clean up of extracted IPK payload

  Poonam Jadhav (1):
        ppp: Add RSA-MD in LICENSE

  Quentin Schulz (1):
        docs: brief-yoctoprojectqs: explicit version dependency on websockets python module

  Ralph Siemsen (1):
        uboot-sign: fix loop in do_uboot_assemble_fitimage

  Rasmus Villemoes (1):
        git: set --with-gitconfig=/etc/gitconfig for -native builds

  Ricardo Simoes (1):
        libusb1: Set CVE_PRODUCT

  Richard Purdie (21):
        buildtools-tarball: Add python3-pip
        build-appliance-image: Update to scarthgap head revision
        curl: Backport patch to fix buildtools issues
        build-appliance-image: Update to scarthgap head revision
        local.conf.sample: Fix hashequivalence server address
        brief-yoctoprojectqs: Update to the correct hash equivalence server address
        bitbake: parse: Improve/fix cache invalidation via mtime
        bitbake: runqueue: Add timing warnings around slow loops
        bitbake: runqueue: Allow rehash loop to exit in case of interrupts
        bitbake: runqueue: Process unihashes in parallel at init
        bitbake: runqueue: Improve rehash get_unihash parallelism
        bitbake: tests/fetch: Tweak test to match upstream repo url change
        oeqa/sdk/assimp: Upgrade and fix for gcc 14
        gcc-runtime: libgomp fix for gcc 14 warnings with mandb selftest
        bitbake: tests/fetch: Tweak to work on Fedora40
        bitbake: fetch2/wget: Fix failure path for files that are empty or don't exist
        maintainers: Drop go-native as recipe removed
        linux-yocto-custom: Fix comment override syntax
        python3-jinja2: Upgrade 3.1.3 -> 3.1.4
        oeqa/selftest/recipetool: Fix for usrmerge in DISTRO_FEATURES
        oeqa/selftest/devtool: Fix for usrmerge in DISTRO_FEATURES

  Robert Joslyn (1):
        libgloss: Do not apply non-existent patch

  Ross Burton (12):
        lib/oe/package-manager: allow including self in create_packages_dir
        selftest/classes: add localpkgfeed class
        oeqa/selftest/debuginfod: use localpkgfeed to speed server startup
        gdk-pixbuf: upgrade 2.42.11 -> 2.42.12
        procps: fix build with new glibc but old kernel headers
        oeqa/sdkext/devtool: replace use of librdfa
        gawk: fix readline detection
        expect: fix configure with GCC 14
        libxcrypt: correct the check for a working libucontext.h
        bash: fix configure checks that fail with GCC 14.1
        insane: handle dangling symlinks in the libdir QA check
        curl: locale-base-en-us isn't glibc-specific

  Rudolf J Streif (1):
        bitbake: fetch2/wget: Canonicalize DL_DIR paths for wget2 compatibility

  Siddharth (1):
        openssl: Upgrade 3.2.1 -> 3.2.2

  Siddharth Doshi (3):
        cups: Upgrade 2.4.7 -> 2.4.9
        libxml2: Upgrade 2.12.6 -> 2.12.8
        OpenSSL: Security fix for CVE-2024-5535

  Soumya Sambu (3):
        ncurses: Fix CVE-2023-45918
        util-linux: Fix CVE-2024-28085
        git: upgrade 2.44.0 -> 2.44.1

  Steve Sakoman (5):
        poky.conf: bump version for 5.0.1
        build-appliance-image: Update to scarthgap head revision
        build-appliance-image: Update to scarthgap head revision
        poky.conf: bump version for 5.0.2
        build-appliance-image: Update to scarthgap head revision

  Sundeep KOKKONDA (1):
        binutils: stable 2.42 branch updates

  Sven Schwermer (3):
        recipetool: Handle unclean response in go resolver
        recipetool: Handle several go-import tags in go resolver
        bitbake: fetch2/gcp: Add missing runfetchcmd import

  Trevor Gamblin (3):
        python3: skip test_concurrent_futures/test_shutdown
        patchtest: test_metadata: fix invalid escape sequences
        python3: upgrade 3.12.3 -> 3.12.4

  Vijay Anusuri (1):
        wget: Fix for CVE-2024-38428

  Vincent Kriek (1):
        devtool: sync: Fix Execution error

  Wang Mingyu (20):
        gcr: upgrade 4.2.0 -> 4.2.1
        libsdl2: upgrade 2.30.0 -> 2.30.1
        libxcursor: upgrade 1.2.1 -> 1.2.2
        pango: upgrade 1.52.0 -> 1.52.1
        bind: upgrade 9.18.24 -> 9.18.25
        libxml2: upgrade 2.12.5 -> 2.12.6
        mesa: upgrade 24.0.2 -> 24.0.3
        babeltrace2: upgrade 2.0.5 -> 2.0.6
        ell: upgrade 0.63 -> 0.64
        libdnf: upgrade 0.73.0 -> 0.73.1
        libx11: upgrade 1.8.7 -> 1.8.9
        lttng-tools: upgrade 2.13.11 -> 2.13.13
        mpg123: upgrade 1.32.5 -> 1.32.6
        llvm: upgrade 18.1.2 -> 18.1.3
        gdk-pixbuf: upgrade 2.42.10 -> 2.42.11
        cronie: upgrade 1.7.1 -> 1.7.2
        lttng-ust: upgrade 2.13.7 -> 2.13.8
        taglib: upgrade 2.0 -> 2.0.1
        mesa: upgrade 24.0.3 -> 24.0.5
        appstream: upgrade 1.0.2 -> 1.0.3

  Xiangyu Chen (2):
        iputils: splitting the ping6 as a package
        ltp: add iputils-ping6 to RDEPENDS

  Yi Zhao (1):
        libpam: fix runtime error in pam_pwhistory moudle

  Yogita Urade (1):
        libarchive: upgrade 3.7.2 -> 3.7.4

  Zev Weiss (1):
        bash: Fix file-substitution error-handling bug

  Zoltan Boszormenyi (2):
        cracklib: Modify patch to compile with GCC 14
        cdrtools-native: Fix build with GCC 14

  joshua Watt (4):
        bitbake: cooker: Use hash client to ping upstream server
        bitbake: cooker: Handle ImportError for websockets
        bitbake: siggen/runqueue: Report which dependencies affect the taskhash
        classes/create-spdx-2.2: Fix SPDX Namespace Prefix

meta-arm: 17df9c4ebc..58268ddccb:
  Abdellatif El Khlifi (5):
        arm-bsp/external-system: costone1000: install the firmware in the filesystem
        arm-bsp/u-boot: corstone1000: add external system DTS node
        arm-bsp/linux-yocto: corstone1000: add external system control support
        arm-bsp/corstone1000-recovery-image: replace core-image-minimal
        kas: update the layers SHAs

  Adam Johnston (1):
        arm-bsp/corstone1000: Fix RSA key generation issue

  Ali Can Ozaslan (1):
        arm-bsp/trusted-firmware-m: corstone1000: fix crypto failure on mps3

  Amr Mohamed (3):
        arm-systemready/linux-distros: Upgrade the Debian version to 12.4
        arm-systemready/linux-distros: Upgrade the Debian license
        arm-systemready/linux-distros: Add a third Linux distribution installation

  Ben Cownley (1):
        arm-systemready/linux-distros: Upgrade the openSUSE version to 15.5

  Bence Balogh (26):
        kas: corstone1000: disable multiconfig for firmware builds
        arm-bsp/corstone1000-flash-firmware-image: add nopt generation
        arm/uefi_capsule: use U-Boot for capsule generation
        arm-bsp/documentation: corstone1000: update capsule generation steps
        arm-bsp/u-boot: corstone1000: update TS RPC protocol
        arm-bsp/trusted-services:cs1000: fix deployments
        arm-bsp/trusted-services: rebase corstone1000 patches
        arm-bsp/trusted-firmware-m: replace OpenAMP with RSE Comms
        arm-bsp/corstone1000-flash-firmware-image: add nopt generation
        arm/uefi_capsule: use U-Boot for capsule generation
        arm-bsp/documentation: corstone1000: update capsule generation steps
        arm-bsp/corstone1000-flash-firmware-image: fix capsule dependency issue
        arm-bsp/doc: corstone1000: update A+M communication
        arm-bsp/trusted-firmware-m: remove OpenAMP and Libmetal
        arm/trusted-services: remove OpenAMP and Libmetal
        arm-bsp/trusted-services: corstone1000: fix IAT test
        arm-bsp/trusted-services: corstone1000: add EFI var handling fixes
        arm-bsp/trusted-services: corstone1000: add fixes for private auth vars
        arm-bsp/trusted-firmware-m: corstone1000: increase PS sizes
        arm-bsp/trusted-services: corstone1000: increase comm buffer size
        arm-bsp/trusted-firmware-m: corstone1000: increase RSE_COMMS buff size
        kas: corstone1000: set branch to scarthgap
        arm-bsp/trusted-firmware-m: corstone1000: remove capsule update reset
        kas: corstone1000: remove Arm-FVP-EULA flag
        arm-bsp/documentation: corstone1000: update the boot chain
        arm-bsp/documentation: corstone1000: improve tests documentation

  Delane Brandy (1):
        arm-bsp/corstone1000: update the documentation

  Drew Reed (6):
        arm-systemready: Fix regex in arm-systemready-ir-acs recipe
        arm: Handle nodistro in firmware deployment
        arm-bsp: corstone1000: Configure Corstone-1000 to use the meta-arm-systemready layer
        arm-bsp: corstone1000: Make ESP partition available to Corstone-1000
        arm-bsp/corstone1000: Update Corstone-1000 user guide
        ci: Add Corstone-1000 to the SystemReady ACS build

  Emekcan Aras (6):
        arm-bsp/u-boot: corstone1000: Change MMCOMM buffer location
        arm-bsp/trusted-services: corstone1000: Change MM comm buffer location
        arm-bsp/trusted-firmware-m: corstone1000: Enable host firewall in FVP
        arm-bsp/trusted-firmware-a: corstone1000: Remove unused NS_SHARED_RAM region
        kas: corstone1000: include TS and PSA dependency for firmware image build
        arm-bsp/trusted-firmware-a: corstone1000: fix reset sequence

  Gyorgy Szing (10):
        arm/trusted-services: Update FFA TEE driver to v2.0.0
        arm/trusted-services: Update TS to v1.0.0
        arm/trusted-services: fix MbedTLS build issue
        arm/trusted-services: fix environment handling
        arm/devtools/fvp-base-a-aem: update the AEM FVP to 11.25.15
        arm-bsp: enable Trusted Services on the fvp-base platform
        arm-bsp/trusted-services: rebase corstone1000 patches
        Add support for the TS Firmware Update service
        arm/trusted-services: update to 2024 April 19
        arm/trusted-services: fix oeqa script

  Harsimran Singh Tungal (3):
        arm-bsp: corstone1000: Enable SMM gateway authenticated variables
        arm-bsp/u-boot: corstone1000: Enable UEFI secure boot
        arm-bsp/documentation: corstone1000: Update user guide for secureboot test

  Jon Mason (13):
        arm-bsp/linux: remove kmeta SRCREV SHA
        Revert "arm-bsp/documentation: corstone1000: update capsule generation steps"
        Revert "arm/uefi_capsule: use U-Boot for capsule generation"
        Revert "arm-bsp/corstone1000-flash-firmware-image: add nopt generation"
        CI: add Yocto Project SSTATE Mirror
        CI: use scarthgap branch for meta-clang
        arm/edk2-basetools: add UPSTREAM_CHECK logic
        arm/boot-wrapper-aarch64: add to fvp-base CI
        arm/fvp-corstone1000: tweak the versioning
        arm/fvp-base-a-aem: disable version checking
        arm/trusted-firmware-a: update to lts-2.10.4
        arm/oeqa: increase optee and ftpm test timeouts
        CI: correct BB_HASHSERVE_UPSTREAM

  Mikko Rapeli (6):
        trusted-firmware-a: continue if TPM device is missing
        optee-os: inrease heap size with fTPM
        oeqa runtime: add optee.py test
        oeqa runtime: add ftpm.py test
        ci/qemuarm64-secureboot.yml: install optee and test both optee and ftpm
        ci/qemuarm-secureboot.yml: install optee and test both optee and ftpm

  Ross Burton (23):
        arm-bsp/sgi575: upgrade trusted-firmware-a to 2.10
        arm-bsp/trusted-firmware-a: remove now-unused 2.9.0 recipe
        arm-bsp/linux-yocto-dev: add bbappend to enable this kernel for our BSPs
        arm-bsp/fvp-base: improve FVP performance
        CI: use scarthgap branches
        arm/classes/wic_nopt: remove unused class
        arm-bsp/linux-yocto-rt: include linux-arm-platforms unconditionally
        ci/testimage: don't :append to IMAGE_FEATURES
        CI: add genericarm64
        arm-bsp: add new sbsa-ref machine
        arm: remove generic-arm64 and qemu-generic-arm64
        CI: sort jobs alphabetically
        CI: show the evaluated KASFILES
        arm-bsp/u-boot: add optimised timer implementation for fvp-base
        CI: add Kas schema comments
        CI: temporarily backport the procps fix
        external-arm-toolchain: ignore warnings about 32-bit time types
        CI: remove 32-bit time_t workaround
        CI: disable ptest in external-gccarm builds
        arm-systemready/arm-systemready-linux-distros: disable buildhistory
        CI: build arm-systemready distro images
        arm/boot-wrapper-aarch64: use https to fetch git source
        Revert "CI: temporarily backport the procps fix"

  Ziad Elhanafy (1):
        arm/oeqa: Enable pexpect profiling for testcase debugging

Change-Id: I01f04b6622d62ba2399da50eb3a18877660f7895
Signed-off-by: Patrick Williams <patrick@stwcx.xyz>

10 files changed, 143 insertions, 10 deletions

diff --git a/meta-openembedded/meta-networking/recipes-support/libldb/libldb_2.8.0.bb b/meta-openembedded/meta-networking/recipes-support/libldb/libldb_2.8.0.bb
index 58d683eab4..bdd87993d7 100644
--- a/meta-openembedded/meta-networking/recipes-support/libldb/libldb_2.8.0.bb
+++ b/meta-openembedded/meta-networking/recipes-support/libldb/libldb_2.8.0.bb
@@ -63,10 +63,10 @@ FILES:${PN}-dbg += "${bindir}/.debug/* \
                     ${libdir}/ldb/.debug/* \
                     ${libdir}/ldb/modules/ldb/.debug/*"
 
-FILES:pyldb = "${libdir}/python${PYTHON_BASEVERSION}/site-packages/* \
+FILES:pyldb = "${PYTHON_SITEPACKAGES_DIR}/* \
                ${libdir}/libpyldb-util.*.so.* \
               "
-FILES:pyldb-dbg = "${libdir}/python${PYTHON_BASEVERSION}/site-packages/.debug \
+FILES:pyldb-dbg = "${PYTHON_SITEPACKAGES_DIR}/.debug \
                    ${libdir}/.debug/libpyldb-util.*.so.*"
 FILES:pyldb-dev = "${libdir}/libpyldb-util.*.so"
 
diff --git a/meta-openembedded/meta-networking/recipes-support/libtalloc/libtalloc_2.4.2.bb b/meta-openembedded/meta-networking/recipes-support/libtalloc/libtalloc_2.4.2.bb
index 394c176287..b617f097cf 100644
--- a/meta-openembedded/meta-networking/recipes-support/libtalloc/libtalloc_2.4.2.bb
+++ b/meta-openembedded/meta-networking/recipes-support/libtalloc/libtalloc_2.4.2.bb
@@ -53,7 +53,7 @@ PACKAGES += "pytalloc pytalloc-dev"
 
 RPROVIDES:${PN}-dbg += "pytalloc-dbg"
 
-FILES:pytalloc = "${libdir}/python${PYTHON_BASEVERSION}/site-packages/* \
+FILES:pytalloc = "${PYTHON_SITEPACKAGES_DIR}/* \
                   ${libdir}/libpytalloc-util.so.2 \
                   ${libdir}/libpytalloc-util.so.2.1.1 \
                  "
diff --git a/meta-openembedded/meta-networking/recipes-support/libtdb/libtdb_1.4.10.bb b/meta-openembedded/meta-networking/recipes-support/libtdb/libtdb_1.4.10.bb
index f23b157e8c..bd3f9f63a9 100644
--- a/meta-openembedded/meta-networking/recipes-support/libtdb/libtdb_1.4.10.bb
+++ b/meta-openembedded/meta-networking/recipes-support/libtdb/libtdb_1.4.10.bb
@@ -58,6 +58,6 @@ RPROVIDES:${PN}-dbg += "python3-tdb-dbg"
 
 FILES:${PN} = "${libdir}/*.so.*"
 FILES:tdb-tools = "${bindir}/*"
-FILES:python3-tdb = "${libdir}/python${PYTHON_BASEVERSION}/site-packages/*"
+FILES:python3-tdb = "${PYTHON_SITEPACKAGES_DIR}/*"
 RDEPENDS:python3-tdb = "python3"
 INSANE_SKIP:${MLPREFIX}python3-tdb = "dev-so"
diff --git a/meta-openembedded/meta-networking/recipes-support/libtevent/libtevent_0.16.0.bb b/meta-openembedded/meta-networking/recipes-support/libtevent/libtevent_0.16.1.bb
index 67f36083bf..0a37d7977d 100644
--- a/meta-openembedded/meta-networking/recipes-support/libtevent/libtevent_0.16.0.bb
+++ b/meta-openembedded/meta-networking/recipes-support/libtevent/libtevent_0.16.1.bb
@@ -17,7 +17,7 @@ SRC_URI = "https://samba.org/ftp/tevent/tevent-${PV}.tar.gz \
 
 LIC_FILES_CHKSUM = "file://tevent.h;endline=26;md5=47386b7c539bf2706b7ce52dc9341681"
 
-SRC_URI[sha256sum] = "1aa58f21017ed8c2f606ae84aa7e795b5439edd4dd5f68f1a388a7d6fb40f682"
+SRC_URI[sha256sum] = "362971e0f32dc1905f6fe4736319c4b8348c22dc85aa6c3f690a28efe548029e"
 
 inherit pkgconfig ptest waf-samba
 
@@ -57,6 +57,6 @@ PACKAGES += "python3-tevent"
 
 RPROVIDES:${PN}-dbg += "python3-tevent-dbg"
 
-FILES:python3-tevent = "${libdir}/python${PYTHON_BASEVERSION}/site-packages/*"
+FILES:python3-tevent = "${PYTHON_SITEPACKAGES_DIR}/*"
 
 INSANE_SKIP:${MLPREFIX}python3-tevent = "dev-so"
diff --git a/meta-openembedded/meta-networking/recipes-support/open-vm-tools/open-vm-tools_12.3.5.bb b/meta-openembedded/meta-networking/recipes-support/open-vm-tools/open-vm-tools_12.3.5.bb
index 6696e552c7..82aab051f1 100644
--- a/meta-openembedded/meta-networking/recipes-support/open-vm-tools/open-vm-tools_12.3.5.bb
+++ b/meta-openembedded/meta-networking/recipes-support/open-vm-tools/open-vm-tools_12.3.5.bb
@@ -120,3 +120,5 @@ python() {
 }
 
 CVE_PRODUCT = "open-vm-tools vmware:tools"
+CVE_STATUS[CVE-2014-4199] = "fixed-version: No action required. The current version (12.3.5) is not affected by the CVE which affects version 10.0.3"
+CVE_STATUS[CVE-2014-4200] = "fixed-version: No action required. The current version (12.3.5) is not affected by the CVE which affects version 10.0.3"
diff --git a/meta-openembedded/meta-networking/recipes-support/rdma-core/rdma-core_50.0.bb b/meta-openembedded/meta-networking/recipes-support/rdma-core/rdma-core_51.0.bb
index ab4de22a51..7c26a8c436 100644
--- a/meta-openembedded/meta-networking/recipes-support/rdma-core/rdma-core_50.0.bb
+++ b/meta-openembedded/meta-networking/recipes-support/rdma-core/rdma-core_51.0.bb
@@ -9,7 +9,7 @@ SRC_URI = "git://github.com/linux-rdma/rdma-core.git;branch=master;protocol=http
            file://0001-cmake-Allow-SYSTEMCTL_BIN-to-be-overridden-from-envi.patch \
            file://0001-include-libgen.h-for-basename.patch \
 "
-SRCREV = "bc6b4bc134532e952fe7f8efc251e1f89b912098"
+SRCREV = "6cd09097ad2eebde9a7fa3d3bb09a2cea6e3c2d6"
 S = "${WORKDIR}/git"
 
 #Default Dual License https://github.com/linux-rdma/rdma-core/blob/master/COPYING.md
diff --git a/meta-openembedded/meta-networking/recipes-support/sngrep/sngrep_1.8.0.bb b/meta-openembedded/meta-networking/recipes-support/sngrep/sngrep_1.8.1.bb
index 2824dde883..50248078a2 100644
--- a/meta-openembedded/meta-networking/recipes-support/sngrep/sngrep_1.8.0.bb
+++ b/meta-openembedded/meta-networking/recipes-support/sngrep/sngrep_1.8.1.bb
@@ -16,7 +16,7 @@ DEPENDS = "\
 "
 
 SRC_URI = "git://github.com/irontec/sngrep.git;protocol=https;branch=master"
-SRCREV = "f7b36df3b79617892958b67cb4ad9313c6ce72d2"
+SRCREV = "373abb90804ba71f980c7120e62f90d3a5c81213"
 
 S = "${WORKDIR}/git"
 
diff --git a/meta-openembedded/meta-networking/recipes-support/spice/spice-gtk_0.42.bb b/meta-openembedded/meta-networking/recipes-support/spice/spice-gtk_0.42.bb
index 82ce7067d9..c8a3f7f532 100644
--- a/meta-openembedded/meta-networking/recipes-support/spice/spice-gtk_0.42.bb
+++ b/meta-openembedded/meta-networking/recipes-support/spice/spice-gtk_0.42.bb
@@ -40,7 +40,7 @@ DEPENDS = " \
 "
 DEPENDS:append:libc-musl = " libucontext"
 
-RDEPENDS:${PN} = "python3-pyparsing python3-six usbids"
+RDEPENDS:${PN} = "python3-pyparsing python3-six hwdata"
 
 inherit meson pkgconfig vala gobject-introspection features_check gtk-doc
 
@@ -59,8 +59,9 @@ do_configure:prepend() {
 PACKAGECONFIG ??= "${@bb.utils.contains('GI_DATA_ENABLED', 'True', 'vapi', '', d)} smartcard"
 PACKAGECONFIG[vapi] = "-Dvapi=enabled,-Dvapi=disabled"
 PACKAGECONFIG[smartcard] = "-Dsmartcard=enabled,-Dsmartcard=disabled,libcacard"
+PACKAGECONFIG[webdav] = "-Dwebdav=enabled,-Dwebdav=disabled,phodav libsoup"
 
-EXTRA_OEMESON = "-Dpie=true -Dusb-ids-path=${datadir}/usb.ids "
+EXTRA_OEMESON = "-Dpie=true -Dusb-ids-path=${datadir}/hwdata/usb.ids "
 EXTRA_OEMESON:append:libc-musl = " -Dcoroutine=libucontext"
 
 LDFLAGS += "${@bb.utils.contains('DISTRO_FEATURES', 'ld-is-lld', ' -Wl,--undefined-version', '', d)}"
diff --git a/meta-openembedded/meta-networking/recipes-support/tcpdump/tcpdump/CVE-2024-2397.patch b/meta-openembedded/meta-networking/recipes-support/tcpdump/tcpdump/CVE-2024-2397.patch
new file mode 100644
index 0000000000..69348030bb
--- /dev/null
+++ b/meta-openembedded/meta-networking/recipes-support/tcpdump/tcpdump/CVE-2024-2397.patch
@@ -0,0 +1,129 @@
+From b9811ef5bb1b7d45a90e042f81f3aaf233c8bcb2 Mon Sep 17 00:00:00 2001
+From: Guy Harris <gharris@sonic.net>
+Date: Tue, 12 Mar 2024 00:37:23 -0700
+Subject: [PATCH] ppp: use the buffer stack for the de-escaping buffer.
+
+This both saves the buffer for freeing later and saves the packet
+pointer and snapend to be restored when packet processing is complete,
+even if an exception is thrown with longjmp.
+
+This means that the hex/ASCII printing in pretty_print_packet()
+processes the packet data as captured or read from the savefile, rather
+than as modified by the PPP printer, so that the bounds checking is
+correct.
+
+That fixes CVE-2024-2397, which was caused by an exception being thrown
+by the hex/ASCII printer (which should only happen if those routines are
+called by a packet printer, not if they're called for the -X/-x/-A
+flag), which jumps back to the setjmp() that surrounds the packet
+printer.  Hilarity^Winfinite looping ensues.
+
+Also, restore ndo->ndo_packetp before calling the hex/ASCII printing
+routine, in case nd_pop_all_packet_info() didn't restore it.
+
+Upstream-Status: Backport [https://github.com/the-tcpdump-group/tcpdump/commit/b9811ef5bb1b7d45a90e042f81f3aaf233c8bcb2]
+CVE: CVE-2024-2397
+Signed-off-by: Hitendra Prajapati <hprajapati@mvista.com>
+---
+ print-ppp.c | 31 +++++++++++++++++--------------
+ print.c     |  8 ++++++--
+ 2 files changed, 23 insertions(+), 16 deletions(-)
+
+diff --git a/print-ppp.c b/print-ppp.c
+index aba243d..e5ae064 100644
+--- a/print-ppp.c
++++ b/print-ppp.c
+@@ -42,6 +42,8 @@
+ #include <net/if_ppp.h>
+ #endif
+ 
++#include <stdlib.h>
++
+ #include "netdissect.h"
+ #include "extract.h"
+ #include "addrtoname.h"
+@@ -1363,7 +1365,6 @@ ppp_hdlc(netdissect_options *ndo,
+ 	u_char *b, *t, c;
+ 	const u_char *s;
+ 	u_int i, proto;
+-	const void *sb, *se;
+ 
+ 	if (caplen == 0)
+ 		return;
+@@ -1371,9 +1372,11 @@ ppp_hdlc(netdissect_options *ndo,
+         if (length == 0)
+                 return;
+ 
+-	b = (u_char *)nd_malloc(ndo, caplen);
+-	if (b == NULL)
+-		return;
++	b = (u_char *)malloc(caplen);
++	if (b == NULL) {
++		(*ndo->ndo_error)(ndo, S_ERR_ND_MEM_ALLOC,
++			"%s: malloc", __func__);
++	}
+ 
+ 	/*
+ 	 * Unescape all the data into a temporary, private, buffer.
+@@ -1394,13 +1397,15 @@ ppp_hdlc(netdissect_options *ndo,
+ 	}
+ 
+ 	/*
+-	 * Change the end pointer, so bounds checks work.
+-	 * Change the pointer to packet data to help debugging.
++	 * Switch to the output buffer for dissection, and save it
++	 * on the buffer stack so it can be freed; our caller must
++	 * pop it when done.
+ 	 */
+-	sb = ndo->ndo_packetp;
+-	se = ndo->ndo_snapend;
+-	ndo->ndo_packetp = b;
+-	ndo->ndo_snapend = t;
++	if (!nd_push_buffer(ndo, b, b, (u_int)(t - b))) {
++		free(b);
++		(*ndo->ndo_error)(ndo, S_ERR_ND_MEM_ALLOC,
++			"%s: can't push buffer on buffer stack", __func__);
++	}
+ 	length = ND_BYTES_AVAILABLE_AFTER(b);
+ 
+         /* now lets guess about the payload codepoint format */
+@@ -1442,13 +1447,11 @@ ppp_hdlc(netdissect_options *ndo,
+         }
+ 
+ cleanup:
+-	ndo->ndo_packetp = sb;
+-	ndo->ndo_snapend = se;
++	nd_pop_packet_info(ndo);
+         return;
+ 
+ trunc:
+-	ndo->ndo_packetp = sb;
+-	ndo->ndo_snapend = se;
++	nd_pop_packet_info(ndo);
+ 	nd_print_trunc(ndo);
+ }
+ 
+diff --git a/print.c b/print.c
+index 9c0ab86..33706b9 100644
+--- a/print.c
++++ b/print.c
+@@ -431,10 +431,14 @@ pretty_print_packet(netdissect_options *ndo, const struct pcap_pkthdr *h,
+ 	nd_pop_all_packet_info(ndo);
+ 
+ 	/*
+-	 * Restore the original snapend, as a printer might have
+-	 * changed it.
++	 * Restore the originals snapend and packetp, as a printer
++	 * might have changed them.
++	 *
++	 * XXX - nd_pop_all_packet_info() should have restored the
++	 * original values, but, just in case....
+ 	 */
+ 	ndo->ndo_snapend = sp + h->caplen;
++	ndo->ndo_packetp = sp;
+ 	if (ndo->ndo_Xflag) {
+ 		/*
+ 		 * Print the raw packet data in hex and ASCII.
+-- 
+2.25.1
+
diff --git a/meta-openembedded/meta-networking/recipes-support/tcpdump/tcpdump_4.99.4.bb b/meta-openembedded/meta-networking/recipes-support/tcpdump/tcpdump_4.99.4.bb
index 803a9bb5f5..b05b832dd8 100644
--- a/meta-openembedded/meta-networking/recipes-support/tcpdump/tcpdump_4.99.4.bb
+++ b/meta-openembedded/meta-networking/recipes-support/tcpdump/tcpdump_4.99.4.bb
@@ -24,6 +24,7 @@ SRC_URI = " \
     http://www.tcpdump.org/release/${BP}.tar.gz \
     file://add-ptest.patch \
     file://run-ptest \
+    file://CVE-2024-2397.patch \
 "
 
 SRC_URI[sha256sum] = "0232231bb2f29d6bf2426e70a08a7e0c63a0d59a9b44863b7f5e2357a6e49fea"