Yep 4.0.4 Fix 95%

: Fixes multiple vulnerabilities, including CVE-2021-3695 and CVE-2022-28733, which could potentially allow for unauthorized boot access.

: Re-initialize and reinstall dependencies to ensure all pinned versions reflect the new security patches. Release notes for Yocto-4.0.4 (Kirkstone) Yep 4.0.4 fix

The following critical CVEs (Common Vulnerabilities and Exposures) have been patched in this version: : Fixes multiple vulnerabilities

: Includes fixes for libxml2 , libtiff , zlib , and gnutls to mitigate various memory and processing exploits. Recommended Actions for Developers including CVE-2021-3695 and CVE-2022-28733

If you are managing an environment using these packages, follow these remediation steps to ensure a clean update:

: Resolves three vulnerabilities (CVE-2022-30552, CVE-2022-33967, and CVE-2022-33103) impacting bootloader security.

: Confirm you are targeting the 4.0.4 branch in your configuration files.