Signed-off-by: Chen Qi <Qi.Chen@...> --- .../nerdctl/nerdctl/modules.txt | 72 +++--- recipes-containers/nerdctl/nerdctl_git.bb | 205 +++++++++--------- 2 files changed,

Hi Bruce and Joakim, I'm recently looking into this nerdctl recipe. I'm kind of shocked by the SRC_URI number in this recipe. Looking at the discussion on the mailing list (go.bbclass: Allow network

Bump from v1.4.12 to v.1.4.13, which solves CVE-2022-23648. Signed-off-by: Chen Qi <Qi.Chen@...> --- .../containerd/containerd-opencontainers_git.bb | 4 ++-- 1 file changed,

Sorry for the typo in the subject. I'll send out V2. Regards, Qi

Bump from v1.4.12 to v.1.4.13, which solves CVE-2022-23648. Signed-off-by: Chen Qi <Qi.Chen@...> --- .../containerd/containerd-opencontainers_git.bb | 4 ++-- 1 file changed,

<bertrand.marquis@...> wrote: My fault for not being clear, I was thinking about "the upcoming LTS", aka the very-soon to be released kirstone .. but just typed "LTS", which is no longer

<Bertrand.Marquis@...> wrote: An updated patch makes sense to me. Bruce -- - Thou shalt not follow the NULL pointer, for chaos and madness await thee at its end - "Use the force Harry" -

Hi Bruce, In the meantime 4.16.1 was released. SHA is f26544492298cb82d66f9bf36e29d2f75b3133f2 We can send an updated patch if you want. Cheers Bertrand

K3s (and Kubernetes) supports load balancing via IPVS, and by default rep= orts errors when IPVS kernel modules cannot be loaded. This patch adds the missing reported kernel modules to the k3s

Hi Bruce, OK, no problem, I will send an updated patch Richard From: Bruce Ashfield <bruce.ashfield@...> Sent: Thursday, April 14, 2022 4:14 AM To: Richard Neill <Richard.Neill@...> Cc:

Hi Bruce, Thanks. For LTS, I think we said the strategy should be a bit different: - keep the original versions and update them. - keep the same default version - add/update other recipe upon

merged. Bruce In message: [meta-virtualization][PATCH] libvmi: Fix out of box build failure with xen disabled on 13/04/2022 He Zhe wrote:

merged. Bruce In message: [meta-virtualization] [hardknott][PATCH] libvirt: fix CVE-2022-0897 on 13/04/2022 Changqing Li wrote:

I'd actually prefer that the list not be sorted, at the same time as we are adding to it. Can you re-submit with just the new kernel module recommendations added. Bruce -- - Thou shalt not follow

FYI: I'm not ignoring these, and I will make sure they get into the upcoming release branch and are in place for the LTS release. I'm just waiting until Christopher gets a chance to review and see if

vbd was added for xen based VMs since bdee00fac9b4 ("Disk reading interface for Xen based VMs and example") and should be built only when xen is enabled, otherwise there would not be necessary xen

Hi Bruce, Could you please also backport this patch to the honister branch? Thanks! Richard From: meta-virtualization@... <meta-virtualization@...> on behalf of Richard Neill via

K3s (and Kubernetes) supports load balancing via IPVS, and by default rep= orts errors when IPVS kernel modules cannot be loaded. This patch adds the missing reported kernel modules to the k3s

From: Changqing Li <changqing.li@...> Signed-off-by: Changqing Li <changqing.li@...> --- .../libvirt/libvirt/CVE-2022-0897.patch | 57 +++++++++++++++++++

Just for the record, there is${nonarch_libdir} that expands to “/usr/lib” regardless of whether multilib is used or not. It is typically intended for cases like this. //Peter From: