Fix — Yep 4.0.4

: Addresses five separate security flaws (CVE-2021-3507 through CVE-2022-0358) related to virtualization and hardware emulation.

: Resolves three vulnerabilities (CVE-2022-30552, CVE-2022-33967, and CVE-2022-33103) impacting bootloader security.

: Re-initialize and reinstall dependencies to ensure all pinned versions reflect the new security patches. Release notes for Yocto-4.0.4 (Kirkstone) Yep 4.0.4 fix

If you are managing an environment using these packages, follow these remediation steps to ensure a clean update:

: Fixes CVE-2022-35737 to prevent potential crashes or data corruption during database operations. Release notes for Yocto-4

: Includes fixes for libxml2 , libtiff , zlib , and gnutls to mitigate various memory and processing exploits. Recommended Actions for Developers

: Run a clean command (e.g., npm cache clean or your build system's equivalent) to prevent old, vulnerable artifacts from persisting. This write-up covers the key security and functional

This write-up covers the key security and functional fixes for the release, which addresses several critical vulnerabilities across core components. Release Overview