All of lore.kernel.org
 help / color / mirror / Atom feed
* [meta-networking][PATCH] mbedtls: upgrade 3.6.3.1 -> 3.6.4
@ 2025-07-15 16:14 Guðni Már Gilbert
  2025-07-16  6:53 ` [oe] " Khem Raj
  0 siblings, 1 reply; 3+ messages in thread
From: Guðni Már Gilbert @ 2025-07-15 16:14 UTC (permalink / raw)
  To: openembedded-devel; +Cc: Guðni Már Gilbert

Fixes several security vulnerabilities:
CVE-2025-49601, CVE-2025-49600, CVE-2025-52496,
CVE-2025-47917, CVE-2025-48965, CVE-2025-52497,
and CVE-2025-49087

Changelog:
https://github.com/Mbed-TLS/mbedtls/releases/tag/mbedtls-3.6.4

Signed-off-by: Guðni Már Gilbert <gudni.m.g@gmail.com>
---
 .../mbedtls/{mbedtls_3.6.3.1.bb => mbedtls_3.6.4.bb}          | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)
 rename meta-networking/recipes-connectivity/mbedtls/{mbedtls_3.6.3.1.bb => mbedtls_3.6.4.bb} (97%)

diff --git a/meta-networking/recipes-connectivity/mbedtls/mbedtls_3.6.3.1.bb b/meta-networking/recipes-connectivity/mbedtls/mbedtls_3.6.4.bb
similarity index 97%
rename from meta-networking/recipes-connectivity/mbedtls/mbedtls_3.6.3.1.bb
rename to meta-networking/recipes-connectivity/mbedtls/mbedtls_3.6.4.bb
index 0b64d661c4..3f8938bb82 100644
--- a/meta-networking/recipes-connectivity/mbedtls/mbedtls_3.6.3.1.bb
+++ b/meta-networking/recipes-connectivity/mbedtls/mbedtls_3.6.4.bb
@@ -22,11 +22,11 @@ LIC_FILES_CHKSUM = "file://LICENSE;md5=379d5819937a6c2f1ef1630d341e026d"
 
 SECTION = "libs"
 
-SRC_URI = "git://github.com/Mbed-TLS/mbedtls.git;protocol=https;branch=main;tag=v${PV} \
+SRC_URI = "git://github.com/Mbed-TLS/mbedtls.git;protocol=https;branch=mbedtls-3.6;tag=v${PV} \
            file://run-ptest \
            "
 
-SRCREV = "6fb5120fde4ab889bea402f5ab230c720b0a3b9a"
+SRCREV = "c765c831e5c2a0971410692f92f7a81d6ec65ec2"
 
 UPSTREAM_CHECK_GITTAGREGEX = "v(?P<pver>\d+(\.\d+)+)"
 
-- 
2.43.0



^ permalink raw reply related	[flat|nested] 3+ messages in thread
* Re: [oe] [meta-networking][PATCH] mbedtls: upgrade 3.6.3.1 -> 3.6.4
  2025-07-15 16:14 [meta-networking][PATCH] mbedtls: upgrade 3.6.3.1 -> 3.6.4 Guðni Már Gilbert
@ 2025-07-16  6:53 ` Khem Raj
  2025-07-16  9:48   ` Guðni Már Gilbert
  0 siblings, 1 reply; 3+ messages in thread
From: Khem Raj @ 2025-07-16  6:53 UTC (permalink / raw)
  To: gudni.m.g; +Cc: openembedded-devel

This fails to build

from mbedtls_framework import config_common
ModuleNotFoundError: No module named 'mbedtls_framework'

for detailed logs see
https://errors.yoctoproject.org/Errors/Details/872324/

I guess we need to add recipe for native python-mbedtls module

On Tue, Jul 15, 2025 at 9:14 AM Guðni Már Gilbert via
lists.openembedded.org <gudni.m.g=gmail.com@lists.openembedded.org>
wrote:
>
> Fixes several security vulnerabilities:
> CVE-2025-49601, CVE-2025-49600, CVE-2025-52496,
> CVE-2025-47917, CVE-2025-48965, CVE-2025-52497,
> and CVE-2025-49087
>
> Changelog:
> https://github.com/Mbed-TLS/mbedtls/releases/tag/mbedtls-3.6.4
>
> Signed-off-by: Guðni Már Gilbert <gudni.m.g@gmail.com>
> ---
>  .../mbedtls/{mbedtls_3.6.3.1.bb => mbedtls_3.6.4.bb}          | 4 ++--
>  1 file changed, 2 insertions(+), 2 deletions(-)
>  rename meta-networking/recipes-connectivity/mbedtls/{mbedtls_3.6.3.1.bb => mbedtls_3.6.4.bb} (97%)
>
> diff --git a/meta-networking/recipes-connectivity/mbedtls/mbedtls_3.6.3.1.bb b/meta-networking/recipes-connectivity/mbedtls/mbedtls_3.6.4.bb
> similarity index 97%
> rename from meta-networking/recipes-connectivity/mbedtls/mbedtls_3.6.3.1.bb
> rename to meta-networking/recipes-connectivity/mbedtls/mbedtls_3.6.4.bb
> index 0b64d661c4..3f8938bb82 100644
> --- a/meta-networking/recipes-connectivity/mbedtls/mbedtls_3.6.3.1.bb
> +++ b/meta-networking/recipes-connectivity/mbedtls/mbedtls_3.6.4.bb
> @@ -22,11 +22,11 @@ LIC_FILES_CHKSUM = "file://LICENSE;md5=379d5819937a6c2f1ef1630d341e026d"
>
>  SECTION = "libs"
>
> -SRC_URI = "git://github.com/Mbed-TLS/mbedtls.git;protocol=https;branch=main;tag=v${PV} \
> +SRC_URI = "git://github.com/Mbed-TLS/mbedtls.git;protocol=https;branch=mbedtls-3.6;tag=v${PV} \
>             file://run-ptest \
>             "
>
> -SRCREV = "6fb5120fde4ab889bea402f5ab230c720b0a3b9a"
> +SRCREV = "c765c831e5c2a0971410692f92f7a81d6ec65ec2"
>
>  UPSTREAM_CHECK_GITTAGREGEX = "v(?P<pver>\d+(\.\d+)+)"
>
> --
> 2.43.0
>
>
> -=-=-=-=-=-=-=-=-=-=-=-
> Links: You receive all messages sent to this group.
> View/Reply Online (#118564): https://lists.openembedded.org/g/openembedded-devel/message/118564
> Mute This Topic: https://lists.openembedded.org/mt/114169589/1997914
> Group Owner: openembedded-devel+owner@lists.openembedded.org
> Unsubscribe: https://lists.openembedded.org/g/openembedded-devel/unsub [raj.khem@gmail.com]
> -=-=-=-=-=-=-=-=-=-=-=-
>


^ permalink raw reply	[flat|nested] 3+ messages in thread
* Re: [meta-networking][PATCH] mbedtls: upgrade 3.6.3.1 -> 3.6.4
  2025-07-16  6:53 ` [oe] " Khem Raj
@ 2025-07-16  9:48   ` Guðni Már Gilbert
  0 siblings, 0 replies; 3+ messages in thread
From: Guðni Már Gilbert @ 2025-07-16  9:48 UTC (permalink / raw)
  To: openembedded-devel

[-- Attachment #1: Type: text/plain, Size: 139 bytes --]

Thanks Khem for the report. I upgraded via devtool and assumed a failure like this would be caught by devtool. I’ll take a closer look.

[-- Attachment #2: Type: text/html, Size: 160 bytes --]

^ permalink raw reply	[flat|nested] 3+ messages in thread
end of thread, other threads:[~2025-07-16  9:48 UTC | newest]

Thread overview: 3+ messages (download: mbox.gz follow: Atom feed
-- links below jump to the message on this page --
2025-07-15 16:14 [meta-networking][PATCH] mbedtls: upgrade 3.6.3.1 -> 3.6.4 Guðni Már Gilbert
2025-07-16  6:53 ` [oe] " Khem Raj
2025-07-16  9:48   ` Guðni Már Gilbert

This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.