[OE-core] [PATCH 1/1] binutils: fix PV to respect upstream tag and also cve database
Tom Rini
trini at konsulko.com
Thu Mar 28 14:25:24 UTC 2019
On Thu, Mar 28, 2019 at 03:08:00PM +0100, Alexander Kanavin wrote:
> On Thu, 28 Mar 2019 at 14:51, Burton, Ross <ross.burton at intel.com> wrote:
>
> > Bumping PE is even worse as a PE never goes away. I say we leave it
> > as it is, and ask upstream nicely if they'll match the tag/version in
> > the future.
>
> The tag and version upstream are both 2.32. It's Khem who declared PV
> to be 2.32.0 :)
Bumping PE is what this is for too, to not break package feeds after
we've done something wrong in PV. So lets bump PE and not break feeds.
Especially since this is so that CVE check starts to see and correctly
complain about issues that will result in "lets move this from master to
..." and so break feeds.
--
Tom
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 819 bytes
Desc: not available
URL: <http://lists.openembedded.org/pipermail/openembedded-core/attachments/20190328/ac165671/attachment-0001.sig>
More information about the Openembedded-core
mailing list