From: Steve Sakoman <steve@sakoman.com>
To: openembedded-core@lists.openembedded.org
Subject: [OE-core][scarthgap 00/11] Patch review
Date: Wed, 28 May 2025 07:43:03 -0700 [thread overview]
Message-ID: <cover.1748443238.git.steve@sakoman.com> (raw)
Please review this set of changes for scarthgap and have comments back by
end of day Friday, May 30
Passed a-full on autobuilder:
https://autobuilder.yoctoproject.org/valkyrie/#/builders/29/builds/1672
The following changes since commit 29d920f4c2249df7a69f00100924b4525e03c0d9:
libatomic-ops: Update GITHUB_BASE_URI (2025-05-20 08:59:39 -0700)
are available in the Git repository at:
https://git.openembedded.org/openembedded-core-contrib stable/scarthgap-nut
https://git.openembedded.org/openembedded-core-contrib/log/?h=stable/scarthgap-nut
Ashish Sharma (1):
libsoup: patch CVE-2025-4476
Divya Chellam (1):
ruby: fix CVE-2025-27221
Divyanshu Rathore (1):
ffmpeg: upgrade 6.1.1 -> 6.1.2
Harish Sadineni (2):
binutils: Fix CVE-2025-1179
binutils: set CVE_STATUS for CVE-2025-1180
Rogerio Guerra Borin (1):
u-boot: ensure keys are generated before assembling U-Boot FIT image
Vijay Anusuri (4):
libsoup-2.4: Fix CVE-2025-32910
libsoup-2.4: Fix CVE-2025-32911 & CVE-2025-32913
libsoup-2.4: Fix CVE-2025-32912
libsoup-2.4: Fix CVE-2025-32914
Virendra Thakur (1):
util-linux: Add fix to isolate test fstab entries using CUSTOM_FSTAB
meta/classes-recipe/uboot-sign.bbclass | 2 +
meta/recipes-core/util-linux/util-linux.inc | 1 +
.../util-linux/fstab-isolation.patch | 448 +++++++
.../binutils/binutils-2.42.inc | 3 +
.../binutils/binutils/CVE-2025-1179-pre.patch | 1086 +++++++++++++++++
.../binutils/binutils/CVE-2025-1179.patch | 269 ++++
.../ruby/ruby/CVE-2025-27221-0001.patch | 57 +
.../ruby/ruby/CVE-2025-27221-0002.patch | 73 ++
meta/recipes-devtools/ruby/ruby_3.3.5.bb | 2 +
.../ffmpeg/ffmpeg/CVE-2024-32230.patch | 36 -
.../ffmpeg/ffmpeg/CVE-2024-35366.patch | 35 -
.../ffmpeg/ffmpeg/CVE-2024-36613.patch | 37 -
.../ffmpeg/ffmpeg/CVE-2024-36616.patch | 35 -
.../ffmpeg/ffmpeg/CVE-2024-36617.patch | 36 -
.../ffmpeg/ffmpeg/CVE-2024-36619.patch | 36 -
.../ffmpeg/ffmpeg/CVE-2024-7055.patch | 38 -
.../ffmpeg/ffmpeg/vulkan_av1_stable_API.patch | 40 +-
.../{ffmpeg_6.1.1.bb => ffmpeg_6.1.2.bb} | 9 +-
.../libsoup-2.4/CVE-2025-32910-1.patch | 97 ++
.../libsoup-2.4/CVE-2025-32910-2.patch | 148 +++
.../libsoup-2.4/CVE-2025-32910-3.patch | 26 +
.../CVE-2025-32911_CVE-2025-32913-1.patch | 72 ++
.../CVE-2025-32911_CVE-2025-32913-2.patch | 44 +
.../libsoup-2.4/CVE-2025-32912-1.patch | 41 +
.../libsoup-2.4/CVE-2025-32912-2.patch | 30 +
.../libsoup/libsoup-2.4/CVE-2025-32914.patch | 137 +++
.../libsoup/libsoup-2.4_2.74.3.bb | 8 +
.../libsoup/libsoup-3.4.4/CVE-2025-4476.patch | 38 +
meta/recipes-support/libsoup/libsoup_3.4.4.bb | 1 +
29 files changed, 2604 insertions(+), 281 deletions(-)
create mode 100644 meta/recipes-core/util-linux/util-linux/fstab-isolation.patch
create mode 100644 meta/recipes-devtools/binutils/binutils/CVE-2025-1179-pre.patch
create mode 100644 meta/recipes-devtools/binutils/binutils/CVE-2025-1179.patch
create mode 100644 meta/recipes-devtools/ruby/ruby/CVE-2025-27221-0001.patch
create mode 100644 meta/recipes-devtools/ruby/ruby/CVE-2025-27221-0002.patch
delete mode 100644 meta/recipes-multimedia/ffmpeg/ffmpeg/CVE-2024-32230.patch
delete mode 100644 meta/recipes-multimedia/ffmpeg/ffmpeg/CVE-2024-35366.patch
delete mode 100644 meta/recipes-multimedia/ffmpeg/ffmpeg/CVE-2024-36613.patch
delete mode 100644 meta/recipes-multimedia/ffmpeg/ffmpeg/CVE-2024-36616.patch
delete mode 100644 meta/recipes-multimedia/ffmpeg/ffmpeg/CVE-2024-36617.patch
delete mode 100644 meta/recipes-multimedia/ffmpeg/ffmpeg/CVE-2024-36619.patch
delete mode 100644 meta/recipes-multimedia/ffmpeg/ffmpeg/CVE-2024-7055.patch
rename meta/recipes-multimedia/ffmpeg/{ffmpeg_6.1.1.bb => ffmpeg_6.1.2.bb} (96%)
create mode 100644 meta/recipes-support/libsoup/libsoup-2.4/CVE-2025-32910-1.patch
create mode 100644 meta/recipes-support/libsoup/libsoup-2.4/CVE-2025-32910-2.patch
create mode 100644 meta/recipes-support/libsoup/libsoup-2.4/CVE-2025-32910-3.patch
create mode 100644 meta/recipes-support/libsoup/libsoup-2.4/CVE-2025-32911_CVE-2025-32913-1.patch
create mode 100644 meta/recipes-support/libsoup/libsoup-2.4/CVE-2025-32911_CVE-2025-32913-2.patch
create mode 100644 meta/recipes-support/libsoup/libsoup-2.4/CVE-2025-32912-1.patch
create mode 100644 meta/recipes-support/libsoup/libsoup-2.4/CVE-2025-32912-2.patch
create mode 100644 meta/recipes-support/libsoup/libsoup-2.4/CVE-2025-32914.patch
create mode 100644 meta/recipes-support/libsoup/libsoup-3.4.4/CVE-2025-4476.patch
--
2.43.0
next reply other threads:[~2025-05-28 14:43 UTC|newest]
Thread overview: 24+ messages / expand[flat|nested] mbox.gz Atom feed top
2025-05-28 14:43 Steve Sakoman [this message]
2025-05-28 14:43 ` [OE-core][scarthgap 01/11] libsoup-2.4: Fix CVE-2025-32910 Steve Sakoman
2025-05-28 14:43 ` [OE-core][scarthgap 02/11] libsoup-2.4: Fix CVE-2025-32911 & CVE-2025-32913 Steve Sakoman
2025-05-28 14:43 ` [OE-core][scarthgap 03/11] libsoup-2.4: Fix CVE-2025-32912 Steve Sakoman
2025-05-28 14:43 ` [OE-core][scarthgap 04/11] libsoup-2.4: Fix CVE-2025-32914 Steve Sakoman
2025-05-28 14:43 ` [OE-core][scarthgap 05/11] binutils: Fix CVE-2025-1179 Steve Sakoman
2025-05-28 14:43 ` [OE-core][scarthgap 06/11] ruby: fix CVE-2025-27221 Steve Sakoman
2025-05-28 14:43 ` [OE-core][scarthgap 07/11] libsoup: patch CVE-2025-4476 Steve Sakoman
2025-05-28 14:43 ` [OE-core][scarthgap 08/11] binutils: set CVE_STATUS for CVE-2025-1180 Steve Sakoman
2025-05-28 14:43 ` [OE-core][scarthgap 09/11] ffmpeg: upgrade 6.1.1 -> 6.1.2 Steve Sakoman
2025-05-28 14:43 ` [OE-core][scarthgap 10/11] util-linux: Add fix to isolate test fstab entries using CUSTOM_FSTAB Steve Sakoman
2025-05-28 14:43 ` [OE-core][scarthgap 11/11] u-boot: ensure keys are generated before assembling U-Boot FIT image Steve Sakoman
-- strict thread matches above, loose matches on Subject: below --
2026-03-29 22:46 [OE-core][scarthgap 00/11] Patch review Yoann Congal
2026-03-30 7:33 ` Yoann Congal
2026-04-20 8:44 ` Joao Marcos Costa
2026-04-20 9:21 ` Yoann Congal
2026-04-20 10:51 ` Joao Marcos Costa
2026-03-07 22:52 Yoann Congal
2026-03-09 8:18 ` Paul Barker
2025-09-25 13:40 Steve Sakoman
2025-07-30 21:28 Steve Sakoman
2025-07-04 15:10 Steve Sakoman
2024-10-25 18:29 Steve Sakoman
2024-09-16 2:19 Steve Sakoman
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=cover.1748443238.git.steve@sakoman.com \
--to=steve@sakoman.com \
--cc=openembedded-core@lists.openembedded.org \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.