[ANNOUNCEMENT] Yocto Project 2.0.1 (jethro 14.0.1) Released

Graydon, Tracy <tracy.graydon@...>


The latest release of the Yocto Project 2.0.1 (jethro-14.0.1) is now
for download at:


A gpg signed version of these release notes is available at:


Full pass test report is available at:


Thanks to everyone for your contributions to this release!

Tracy Graydon
Yocto Project
Build and Release

yocto-2.0.1 Errata

Release Name: eclipse-poky-kepler-jethro-14.0.1
Branch: kepler/jethro
Tag: kepler/jethro-14.0.1
Hash: cf60ac293629fc8ecd6c4eb3709a6f334b499d0c
md5: 4b2f259ac8a6d1a9e3711852c279243c
Download Locations:

Release Name: eclipse-poky-luna-jethro-14.0.1
Branch: luna/jethro
Tag: luna/jethro-14.0.1
Hash: 45aa5c77523bdf051d548fff4305382942db2ebb
md5: 92de61c57d9c636f635b4299a6e72e46
Download Locations:

Release Name: eclipse-poky-mars-jethro-14.0.1
Branch: mars/jethro
Tag: mars/jethro-14.0.1
Hash: 1d179ddcbd1983bf7bcfe98efdcbb186bdccca4f
md5: bae837d0eb83d6c8c411a591b46a33f2
Download Locations:

Release Name: meta-qt3-jethro-14.0.1
Branch: jethro
Tag: jethro-14.0.1
Hash: b08996efbfb3b26e62b608f34ebf5e671b36ec61
md5: 035ed8c8eb945ba1390f2cd3ad7c8608
Download Locations:

Release Name: poky-jethro-14.0.1
Branch: jethro
Tag: jethro-14.0.1
Hash: b1f23d1254682866236bfaeb843c0d8aa332efc2
md5: 99b75f053fbce4a51572e01eedf29b98
Download Locations:

Known Issues
- Yocto Bug #: 8553: qemu-native to build on Ubuntu 15.10

Building a core-image-minimal fails with error:

| ERROR: User requested feature sdl
| configure was not able to find it.
| Install SDL devel

- Fixed on Jethro branch.
CVE-2016-0800 SSL/TLS: Cross-protocol attack on TLS using SSLv2 (DROWN)
openssl: Security fix CVE-2016-0800.
Fixed on Jethro branch.

(From OE-Core rev: c99ed6b73f397906475c09323b03b53deb83de55)

Security Fixes
qemu: Security fix CVE-2016-2198
qemu: Security fix CVE-2016-2197
libgcrypt: Security fix CVE-2015-7511
uclibc: Security fix CVE-2016-2225
uclibc: Security fix CVE-2016-2224
libbsd: Security fix CVE-2016-2090
glibc: Security fix CVE-2015-7547
curl: Secuirty fix CVE-2016-0755
curl: Security fix CVE-2016-0754
nettle: Security fix CVE-2015-8804
nettle: Security fix CVE-2015-8803 and CVE-2015-8805
socat: Security fix CVE-2016-2217
libpng: Security fix CVE-2015-8472
libpng: Security fix CVE-2015-8126
foomatic-filters: Security fixes CVE-2015-8327
foomatic-filters: Security fix CVE-2015-8560
linux-yocto: Update SRCREV for genericx86* for 4.1, fixes CVE-2016-0728
linux-yocto: Update SRCREV for genericx86* for 3.19, fixes CVE-2016-0728
linux-yocto: Update SRCREV for genericx86* for 3.14, fixes CVE-2016-0728
linux-yocto: Update SRCREV for qemux86* for 4.1, fixes CVE-2016-0728
linux-yocto: Update SRCREV for qemux86* for 3.19, fixes CVE-2016-0728
linux-yocto: Update SRCREV for qemux86* for 3.14, fixes CVE-2016-0728
git: Security fix CVE-2015-7545
grub: Security fix CVE-2015-8370
gdk-pixbuf: Security fix CVE-2015-7674
librsvg: Security fix CVE-2015-7558
bind: Security fix CVE-2015-8461
bind: Security fix CVE-2015-8000
libxml2: Security fix CVE-2015-8710
libxml2: Security fix CVE-2015-8241
dpkg: Security fix CVE-2015-0860
qemu: Security fix CVE-2015-7295
qemu: Security fix CVE-2016-1568
qemu: Security fix CVE-2015-8345
qemu: Security fix CVE-2015-7512
qemu: Security fix CVE-2015-7504
qemu: Security fix CVE-2015-8504
openssl: Security fix CVE-2016-0701
openssl: Security fix CVE-2015-3197
tiff: Security fix CVE-2015-8784
tiff: Security fix CVE-2015-8781
bind: CVE-2015-8704 and CVE-2015-8705
openssh: CVE-2016-1907
glibc: CVE-2015-8776
glibc: CVE-2015-9761
glibc: CVE-2015-8779
glibc: CVE-2015-8777.patch
libxml2: security fix CVE-2015-5312
libxml2: security fix CVE-2015-8242
libxml2: security fix CVE-2015-7500
libxml2: security fix CVE-2015-7499
libxml2: security fix CVE-2015-7497
libxml2: security fix CVE-2015-7498
libxml2: security fix CVE-2015-8035
libxml2: security fix CVE-2015-7942
libxml2: security fix CVE-2015-8317
libxml2: security fix CVE-2015-7941
openssl: fix for CVE-2015-3195
openssl: fix for CVE-2015-3194
openssl: fix for CVE-2015-3193
rpcbind: Security Advisory - rpcbind - CVE-2015-7236
subversion: fix CVE-2015-3187
subversion: fix CVE-2015-3184
libsndfile: fix CVE-2014-9756
libxslt: CVE-2015-7995
unzip: rename patch to reflect CVE fix
readline: rename patch to contain CVE reference
libarchive: rename patch to reflect CVE

build-appliance-image: Update to jethro head revision
cross-localedef-native: add ABI breaking glibc patch
build-appliance-image: Update to jethro head revision
e2fsprogs: Ensure we use the right mke2fs.conf when restoring from sstate
build-appliance-image: Update to jethro head revision
ref-manual: Updated host package install requirements CentOS
toaster-manual: Updated the "Installation" to have TOASTER_DIR information
toaster-manual: Updated instructions for production setup.
meta-yocto-bsp: Remove uvesafb (v86d) from generic x86 features
yocto-bsp: Set SRCREV meta/machine revisions to AUTOREV
yocto-bsp: Set KTYPE to user selected base branch
yocto-bsp: Avoid duplication of user patches
yocto-bsp: Default kernel version to 4.1 on x86_64
piglit: don't use /tmp to write generated sources to
gen-lockedsig-cache: fix bad destination path joining
libpng12: update URL that no longer exists
libpng: update URL that no longer exists
busybox: fix build of last applet
ghostscript: add dependency for pnglibconf.h
gcr: Require x11 DISTRO_FEATURE
uClibc: enable utmp for shadow compatibility
glibc-locale: fix QA warning
tzdata: update to 2016a
tzcode: update to 2016a
kernel-yocto: fix checkout bare-cloned kernel repositories
libpcre: bug fixes include security
rpmresolve.c: Fix unfreed pointers that keep DB opened
bitbake: toaster: make runbuilds loop
nativesdk-buildtools-perl-dummy: Bump PR
nativesdk-buildtools-perl-dummy: properly set PACKAGE_ARCH
nativesdk-buildtools-perl-dummy: fix rebuilding when SDKMACHINE changes
Revert "gstreamer1.0-plugins-good.inc: add gudev back to PACKAGECONFIG"
Revert "gstreamer: Deal with merge conflict which breaks systemd builds"
build-appliance-image: Update to jethro head revision
gstreamer: Deal with merge conflict which breaks systemd builds
build-appliance-image: Update to jethro head revision
poky.conf: Bump version for 2.0.1 jethro release
ref-manual: Updated the list of supported image types.
dev-manual: Added three new wic option descriptions.
dev-manual: Added the --overhead-factor wic option description.
dev-manual: Added the --extra-space wic option description.
dev-manual: Added wic --notable option description.
kernel/kernel-arch: Explicitly mapping between i386/x86_64 and x86 for
kernel ARCH
openssh: update to 7.1p2
devtool: reset: do clean for multiple recipes at once with -a
devtool: sdk-update: fix error checking
devtool: sdk-update: fix metadata update step
devtool: sdk-update: fix not using updateserver config file option
classes/populate_sdk_ext: disable signature warnings
classes/populate_sdk_ext: fix cascading from preparation failure
scripts/oe-publish-sdk: add missing call to git update-server-info
devtool: use cp instead of shutil.copytree
buildhistory: fix not recording SDK information
recipetool: create: fix error when extracting source to a specified
recipetool: create: detect when specified URL returns a web page
recipetool: create: prevent attempting to unpack entire DL_DIR
recipetool: create: fix do_install handling for makefile-only software
recipetool: create: avoid traceback on fetch error
recipetool: create: handle https://....git URLs
devtool: sdk-update: fix traceback without update server set
classes/populate_sdk_ext: error out of install if buildtools install fails
gstreamer1.0-plugins-good.inc: add gudev back to PACKAGECONFIG
linux-yocto: Update Genericx86* BSP to 4.1.15 kernel
libaio: don't disable linking to the system libraries
linux-yocto/4.1: update to v4.1.15
logrotate: do not move binary logrotate to /usr/bin
cairo: fix license for cairo-script-interpreter
glibc: Fix ld.so / prelink interface for
gcc: Update default Power GCC settings to use secure-plt
prelink: Fix various prelink issues on IA32, ARM, and MIPS.
autotools: Allow recipe-individual configure scripts
toolchain-scripts.bbclass: unset command_not_found_handle
devtool: upgrade: fetch remote repository before checking out new revision
devtool: upgrade: remove erroneous error when not renaming recipe
devtool: upgrade: fix updating PV and SRCREV
devtool: upgrade: fix removing other recipes from workspace on reset
devtool: include do_patch in SRCTREECOVEREDTASKS
toolchain-shar-extract.sh: do not allow $ in paths for ext SDK
scripts/gen-lockedsig-cache: improve output
toolchain-shar-extract.sh: proper fix for additional env setup scripts
toolchain-shar-relocate: don't assume last state of env_setup_script is
populate_sdk_ext.bbclass: Be more permissive on the name of the buildtools
classes/populate_sdk_ext: fail if SDK_ARCH != BUILD_ARCH
classes/populate_sdk_ext: tweak reporting of workspace exclusion
classes/populate_sdk_ext: make it clear when SDK installation has failed
classes/populate_sdk_ext: tidy up preparation log file writing
classes/license: fix intermittent license collection warning
classes/metadata_scm: fix git errors showing up on non-git repositories
oeqa/selftest/layerappend: fix test if build directory is not inside
oeqa/selftest/devtool: fix test if build directory is not inside COREBASE
classes/distrodata: split SRC_URI properly before determining type
uninative.bbclass: Choose the correct loader based on BUILD_ARCH
openssl: sanity check that the bignum module is present
glibc: Backported a patch to fix glibc's bug(18589)
directfb.inc: force bfd linker for armv7a
texinfo: don't create dependency on INHERIT variable
package_manager.py: define info_dir and status_file when OPKGLIBDIR isn't
the default
libsdl2: require GLES when building Wayland support
gst-plugins-bad: add PACKAGECONFIGs for voamrwbenc, voaacenc, resindvd
gstreamer1.0-plugins-good: fix PACKAGECONFIG for gudev and add one for
v4l2 and libv4l2
gstreamer1.0-plugins-bad: fix dependencies for uvch264 PACKAGECONFIG
gstreamer1.0-plugins-{base,good}: update PACKAGECONFIGs
libunwind: fix build for qemuarm
guile, mailx, gcc, opensp, gstreamer1.0-libav, libunwind: disable thumb
where it fails for qemuarm
icu: force arm mode
libxcb: Add a workaround for gcc5 bug on mips
bitbake: fetch: use orig localpath when calling orig method
yocto-bsp: Typo on the file extension
bsp-guide: Updated the license statement.
dev-manual: Correction to the KVM stuff in the runqemu commands.
mega-manual: Added four new figures for GUI example.
poky.ent: Fixed POKYVERSION variable.
yocto-project-qs, ref-manual, poky.ent: CentOS Package updates
dev-manual: Updated runqemu command options list
toaster-manual: Removed SDKMACHINE from the json file example.
ref-manual: Updated list of supported distros.
ref-manual: Updated the GCC 5 migration section for 2.0
bitbake: lib/bb/utils: improve edit_bblayers_conf() handling of
bblayers.conf formatting
bitbake: lib/bb/utils: fix error in edit_metadata() when deleting first
linux-firmware: rtl8192cx: Add latest available firmware
init-install-efi: fix script for gummiboot loader
init-install-efi: fix script for eMMC installation
pulseaudio: Fix HDMI profile selection
allarch: Force TARGET_*FLAGS variable values
binutils: Fix octeon3 disassembly patch
opkg: add cache filename length fixes

Join {yocto-announce@lists.yoctoproject.org to automatically receive all group messages.