-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256


- --------------------------
yocto-2.7.4 Release Notes
- --------------------------


- --------------------------
 Repositories/Downloads
- --------------------------

Repository Name: poky
Repository Location: https://git.yoctoproject.org/git/poky
Branch: warrior
Tag: yocto-2.7.4
Git Revision: f65b24e9ca0918a4ede70ea48ed8b7cc4620f07f
Release Arefact: poky-warrior-21.0.4
sha: cc3fbef5a514eee7e0a6ed7918a8e78ea47f7c57314de2e24fb20b99fde54cbb
Download Locations:
http://downloads.yoctoproject.org/releases/yocto/yocto-2.7.4/poky-warrior-21.0.4.tar.bz2
http://mirrors.kernel.org/yocto/yocto/yocto-2.7.4/poky-warrior-21.0.4.tar.bz2

Repository Name: openembedded-core
Repository Location: https://git.openembedded.org/openembedded-core
Branch: warrior
Tag: 2019-04.4-warrior
Git Revision: db3ce703d03b18e8a4120969d32ff7f344f34fe9
Release Arefact: oecore-warrior-21.0.4
sha: 27185ef148b443dd415bb1f7f8a8fd8438a53ea3fc32fc1d7298156ea930d1c9
Download Locations:
http://downloads.yoctoproject.org/releases/yocto/yocto-2.7.4/oecore-warrior-21.0.4.tar.bz2
http://mirrors.kernel.org/yocto/yocto/yocto-2.7.4/oecore-warrior-21.0.4.tar.bz2

Repository Name: meta-mingw
Repository Location: https://git.yoctoproject.org/git/meta-mingw
Branch: warrior
Tag: yocto-2.7.4
Git Revision: 10695afe8cd406844e0d0dd868c11677e07557d4
Release Arefact: meta-mingw-warrior-21.0.4
sha: 2e8e856aab006e0da4e78aa1550c3a9e29ec545cefde85fa97c9a8cfb964a9e7
Download Locations:
http://downloads.yoctoproject.org/releases/yocto/yocto-2.7.4/meta-mingw-warrior-21.0.4.tar.bz2
http://mirrors.kernel.org/yocto/yocto/yocto-2.7.4/meta-mingw-warrior-21.0.4.tar.bz2

Repository Name: meta-gplv2
Repository Location: https://git.yoctoproject.org/git/meta-gplv2
Branch: warrior
Tag: yocto-2.7.4
Git Revision: d5d9fc9a4bbd365d6cd6fe4d6a8558f7115c17da
Release Arefact: meta-gplv2-warrior-21.0.4
sha: 9d018da2baf8ad01d367e91877d24038b44a1dbd0530799c45c02b8f4e0a742b
Download Locations:
http://downloads.yoctoproject.org/releases/yocto/yocto-2.7.4/meta-gplv2-warrior-21.0.4.tar.bz2
http://mirrors.kernel.org/yocto/yocto/yocto-2.7.4/meta-gplv2-warrior-21.0.4.tar.bz2

Repository Name: bitbake
Repository Location: https://git.openembedded.org/bitbake
Branch: warrior
Tag: 2019-04.4-warrior
Git Revision: 7f7126211170439ac1d7d72e980786ce0edb7bb7
Release Arefact: bitbake-warrior-21.0.4
sha: 791a52bb2595f4dd04e32ee4c441d6cc5e0d49a0931b7a8da366d0c8e4355a17
Download Locations:
http://downloads.yoctoproject.org/releases/yocto/yocto-2.7.4/bitbake-warrior-21.0.4.tar.bz2
http://mirrors.kernel.org/yocto/yocto/yocto-2.7.4/bitbake-warrior-21.0.4.tar.bz2

- ---------------
Contributors
- ---------------
Adrian Bunk
akuster
Alexander Kanavin
Anuj Mittal
Daisuke Yamane
Denys Dmytriyenko
Jan Luebbe
Jain Sangeeta
Lee Chee Yang
Martin Jansa
Michael Halstead
Nicolas Dechesne
Oleksandr Kravchuk
Qi.Chen@windriver.com
Richard Purdie
Stephen Jolley
Ross Burton
Vineela Tummalapalli
Yi Zhao
Zang Ruochen

- ---------------
 Known Issues
- ---------------
N/A


- ---------------
Security Fixes
- ---------------
openssl10: Add CVE_PRODUCT
systemd: Backport the CVE-2019-20386 fix
e2fsprogs: fix CVE-2019-5188
ppp: Security fix CVE-2020-8597
ncurses: add CVE_VERSION
libxml2: Fix CVE-2019-20388
libxml2: fix CVE-2020-7595
sqlite3: fix CVE-2019-16168
libsoup: set CVE_PRODUCT


- ---------------
Fixes
- ---------------
build-appliance-image: Update to warrior head revision
prservice.py: fix do_package with newer Python in Ubuntu 20.04
build-appliance-image: Update to warrior head revision
poky.conf: Bump version for 2.7.4 warrior release
cve-check: CPE version '-' as all version
openssl: upgrade 1.1.1f -> 1.1.1g
openssl: update to 1.1.1f
openssl: Upgrade 1.1.1d -> 1.1.1e
openssl: recommend cryptodev-module for corresponding PACKAGECONFIG
openssl: Fix reproducibility issue
python: Upgrade 2.7.17 -> 2.17.18
git: Upgrade 2.20.1 -> 2.20.4
Documenation: Prepared for the 2.7.4 release
yocto-uninative.inc: version 2.8 updates glibc to 2.31
python3: Upgrade 3.7.6 -> 3.7.7
gnupg: upgrade 2.2.16 -> 2.2.17
gnupg: upgrade 2.2.15 -> 2.2.16
gnupg: update to 2.2.15
openssl10: Upgrade 1.0.2r -> 1.0.2u
e2fsprogs: backport upstream patch
boost: fix build for x32
openssh: backport patch to fix "cert not yet valid" test
bitbake: lib/bb/utils.py: Preserve ownership of symlink
-----BEGIN PGP SIGNATURE-----

iQEzBAEBCAAdFiEETAATlWjYlkbLPLeFXGgH0cJ5dnMFAl7W1bAACgkQXGgH0cJ5
dnPG6Qf+Kh/WaWFF8cb8d2Ydxp9S+mq0Pw9NwPJ3z4Dd6hlezI+wmlxtJ7thvvYz
KgxfxViT4ANvV34Gel/1Uch2m06Gt10Hu89EPbCUkkTvi6/Q3jC2VNDIjceqdvsD
piUSQKbxfxgWu6AHKSwlqix7NKwNM8vKaiIlqWORkHX/T3KINSrbEFi2K+8/Yv4P
vz7oqYunJUkDjPk9LVHO4bhgG5A0qJSrOunzVXeOQAqUwGankTcKirVyFwu7Q0F0
y/760DUUlRKpVj6jK9L6Z8LG/xgFK+JBc2uC3LYnbFVwgUIhW7XnuK79HS8azGx1
dgD3ogDNnm7E44Z9YxNMSacBeHfU7w==
=guZ5
-----END PGP SIGNATURE-----