From: Steve Sakoman <steve@sakoman.com>
To: openembedded-core@lists.openembedded.org
Subject: [OE-core][kirkstone 00/27] Patch review
Date: Tue, 17 Jun 2025 14:19:57 -0700 [thread overview]
Message-ID: <cover.1750195103.git.steve@sakoman.com> (raw)
Please review this set of changes for kirkstone and have comments back by
end of day Thursday, June 19
Passed a-full on autobuilder:
https://autobuilder.yoctoproject.org/valkyrie/#/builders/29/builds/1828
The following changes since commit 350513959f6800eef6579153c2ae95960ca24ea7:
kernel.bbclass: add original package name to RPROVIDES for -image and -base (2025-06-09 08:44:59 -0700)
are available in the Git repository at:
https://git.openembedded.org/openembedded-core-contrib stable/kirkstone-nut
https://git.openembedded.org/openembedded-core-contrib/log/?h=stable/kirkstone-nut
Aditya Tayade (1):
e2fsprogs: removed 'sed -u' option
Aleksandar Nikolic (1):
scripts/install-buildtools: Update to 4.0.27
Colin Pinnell McAllister (1):
ffmpeg: fix CVE-2025-1373
Guocai He (1):
babeltrace/libatomic-ops: correct the SRC_URI
Jiaying Song (1):
python3-requests: fix CVE-2024-47081
Peter Marko (1):
net-tools: patch CVE-2025-46836
Poonam Jadhav (1):
libpng: Improve ptest
Sunil Dora (9):
Glibc: Fix for CVE-2025-4802
glibc: pthreads NPTL lost wakeup fix 2
glibc: nptl Update comments and indentation for new condvar
implementation
glibc: nptl Remove unnecessary catch-all-wake in condvar group switch
glibc: nptl Remove unnecessary quadruple check in pthread_cond_wait
glibc: nptl Use a single loop in pthread_cond_wait instaed of a nested
loop
glibc: nptl Fix indentation
glibc: nptl rename __condvar_quiesce_and_switch_g1
glibc: nptl Use all of g1_start and g_signals
Vijay Anusuri (9):
libsoup-2.4: Fix CVE-2025-2784
libsoup: Fix CVE-2025-2784
libsoup-2.4: Fix CVE-2025-32050
libsoup: Fix CVE-2025-32050
libsoup-2.4: Fix CVE-2025-32052
libsoup: Fix CVE-2025-32052
libsoup-2.4: Fix CVE-2025-32053
libsoup: Fix CVE-2025-32053
libsoup: Fix CVE-2025-46420
aszh07 (2):
ffmpeg: Add "libswresample libavcodec" to CVE_PRODUCT
xz: Update LICENSE variable for xz packages
.../distro/include/ptest-packagelists.inc | 2 +-
.../glibc/glibc/0025-CVE-2025-4802.patch | 249 ++++++++++
.../glibc/glibc/0026-PR25847-1.patch | 455 ++++++++++++++++++
.../glibc/glibc/0026-PR25847-2.patch | 144 ++++++
.../glibc/glibc/0026-PR25847-3.patch | 77 +++
.../glibc/glibc/0026-PR25847-4.patch | 117 +++++
.../glibc/glibc/0026-PR25847-5.patch | 105 ++++
.../glibc/glibc/0026-PR25847-6.patch | 169 +++++++
.../glibc/glibc/0026-PR25847-7.patch | 160 ++++++
.../glibc/glibc/0026-PR25847-8.patch | 192 ++++++++
meta/recipes-core/glibc/glibc_2.35.bb | 9 +
.../e2fsprogs/e2fsprogs/run-ptest | 3 +-
.../python3-requests/CVE-2024-47081.patch | 37 ++
.../python/python3-requests_2.27.1.bb | 1 +
.../net-tools/CVE-2025-46836-01.patch | 91 ++++
.../net-tools/CVE-2025-46836-02.patch | 31 ++
.../net-tools/net-tools_2.10.bb | 2 +
meta/recipes-extended/xz/xz_5.2.6.bb | 6 +-
.../recipes-kernel/lttng/babeltrace_1.5.11.bb | 2 +-
.../recipes-multimedia/ffmpeg/ffmpeg_5.0.3.bb | 7 +
.../recipes-multimedia/libpng/files/run-ptest | 26 +-
.../libpng/libpng_1.6.39.bb | 43 +-
.../libatomic-ops/libatomic-ops_7.6.14.bb | 4 +-
.../libsoup/libsoup-2.4/CVE-2025-2784-1.patch | 52 ++
.../libsoup/libsoup-2.4/CVE-2025-2784-2.patch | 135 ++++++
.../libsoup/libsoup-2.4/CVE-2025-32050.patch | 28 ++
.../libsoup/libsoup-2.4/CVE-2025-32052.patch | 30 ++
.../libsoup/libsoup-2.4/CVE-2025-32053.patch | 38 ++
.../libsoup/libsoup-2.4_2.74.2.bb | 5 +
.../libsoup/libsoup/CVE-2025-2784-1.patch | 73 +++
.../libsoup/libsoup/CVE-2025-2784-2.patch | 140 ++++++
.../libsoup/libsoup/CVE-2025-32050.patch | 28 ++
.../libsoup/libsoup/CVE-2025-32052.patch | 30 ++
.../libsoup/libsoup/CVE-2025-32053.patch | 38 ++
.../libsoup/libsoup/CVE-2025-46420.patch | 60 +++
meta/recipes-support/libsoup/libsoup_3.0.7.bb | 6 +
scripts/install-buildtools | 4 +-
37 files changed, 2557 insertions(+), 42 deletions(-)
create mode 100644 meta/recipes-core/glibc/glibc/0025-CVE-2025-4802.patch
create mode 100644 meta/recipes-core/glibc/glibc/0026-PR25847-1.patch
create mode 100644 meta/recipes-core/glibc/glibc/0026-PR25847-2.patch
create mode 100644 meta/recipes-core/glibc/glibc/0026-PR25847-3.patch
create mode 100644 meta/recipes-core/glibc/glibc/0026-PR25847-4.patch
create mode 100644 meta/recipes-core/glibc/glibc/0026-PR25847-5.patch
create mode 100644 meta/recipes-core/glibc/glibc/0026-PR25847-6.patch
create mode 100644 meta/recipes-core/glibc/glibc/0026-PR25847-7.patch
create mode 100644 meta/recipes-core/glibc/glibc/0026-PR25847-8.patch
create mode 100644 meta/recipes-devtools/python/python3-requests/CVE-2024-47081.patch
create mode 100644 meta/recipes-extended/net-tools/net-tools/CVE-2025-46836-01.patch
create mode 100644 meta/recipes-extended/net-tools/net-tools/CVE-2025-46836-02.patch
create mode 100644 meta/recipes-support/libsoup/libsoup-2.4/CVE-2025-2784-1.patch
create mode 100644 meta/recipes-support/libsoup/libsoup-2.4/CVE-2025-2784-2.patch
create mode 100644 meta/recipes-support/libsoup/libsoup-2.4/CVE-2025-32050.patch
create mode 100644 meta/recipes-support/libsoup/libsoup-2.4/CVE-2025-32052.patch
create mode 100644 meta/recipes-support/libsoup/libsoup-2.4/CVE-2025-32053.patch
create mode 100644 meta/recipes-support/libsoup/libsoup/CVE-2025-2784-1.patch
create mode 100644 meta/recipes-support/libsoup/libsoup/CVE-2025-2784-2.patch
create mode 100644 meta/recipes-support/libsoup/libsoup/CVE-2025-32050.patch
create mode 100644 meta/recipes-support/libsoup/libsoup/CVE-2025-32052.patch
create mode 100644 meta/recipes-support/libsoup/libsoup/CVE-2025-32053.patch
create mode 100644 meta/recipes-support/libsoup/libsoup/CVE-2025-46420.patch
--
2.43.0
next reply other threads:[~2025-06-17 21:20 UTC|newest]
Thread overview: 37+ messages / expand[flat|nested] mbox.gz Atom feed top
2025-06-17 21:19 Steve Sakoman [this message]
2025-06-17 21:19 ` [OE-core][kirkstone 01/27] Glibc: Fix for CVE-2025-4802 Steve Sakoman
2025-06-17 21:19 ` [OE-core][kirkstone 02/27] python3-requests: fix CVE-2024-47081 Steve Sakoman
2025-06-17 21:20 ` [OE-core][kirkstone 03/27] net-tools: patch CVE-2025-46836 Steve Sakoman
2025-06-17 21:20 ` [OE-core][kirkstone 04/27] libsoup-2.4: Fix CVE-2025-2784 Steve Sakoman
2025-06-17 21:20 ` [OE-core][kirkstone 05/27] libsoup: " Steve Sakoman
2025-06-17 21:20 ` [OE-core][kirkstone 06/27] libsoup-2.4: Fix CVE-2025-32050 Steve Sakoman
2025-06-17 21:20 ` [OE-core][kirkstone 07/27] libsoup: " Steve Sakoman
2025-06-17 21:20 ` [OE-core][kirkstone 08/27] libsoup-2.4: Fix CVE-2025-32052 Steve Sakoman
2025-06-17 21:20 ` [OE-core][kirkstone 09/27] libsoup: " Steve Sakoman
2025-06-17 21:20 ` [OE-core][kirkstone 10/27] libsoup-2.4: Fix CVE-2025-32053 Steve Sakoman
2025-06-17 21:20 ` [OE-core][kirkstone 11/27] libsoup: " Steve Sakoman
2025-06-17 21:20 ` [OE-core][kirkstone 12/27] libsoup: Fix CVE-2025-46420 Steve Sakoman
2025-06-17 21:20 ` [OE-core][kirkstone 13/27] ffmpeg: fix CVE-2025-1373 Steve Sakoman
2025-06-17 21:20 ` [OE-core][kirkstone 14/27] ffmpeg: Add "libswresample libavcodec" to CVE_PRODUCT Steve Sakoman
2025-06-17 21:20 ` [OE-core][kirkstone 15/27] scripts/install-buildtools: Update to 4.0.27 Steve Sakoman
2025-06-17 21:20 ` [OE-core][kirkstone 16/27] babeltrace/libatomic-ops: correct the SRC_URI Steve Sakoman
2025-06-17 21:20 ` [OE-core][kirkstone 17/27] libpng: Improve ptest Steve Sakoman
2025-06-17 21:20 ` [OE-core][kirkstone 18/27] xz: Update LICENSE variable for xz packages Steve Sakoman
2025-06-17 21:20 ` [OE-core][kirkstone 19/27] e2fsprogs: removed 'sed -u' option Steve Sakoman
2025-06-17 21:20 ` [OE-core][kirkstone 20/27] glibc: pthreads NPTL lost wakeup fix 2 Steve Sakoman
2025-06-17 21:20 ` [OE-core][kirkstone 21/27] glibc: nptl Update comments and indentation for new condvar implementation Steve Sakoman
2025-06-17 21:20 ` [OE-core][kirkstone 22/27] glibc: nptl Remove unnecessary catch-all-wake in condvar group switch Steve Sakoman
2025-06-17 21:20 ` [OE-core][kirkstone 23/27] glibc: nptl Remove unnecessary quadruple check in pthread_cond_wait Steve Sakoman
2025-06-17 21:20 ` [OE-core][kirkstone 24/27] glibc: nptl Use a single loop in pthread_cond_wait instaed of a nested loop Steve Sakoman
2025-06-17 21:20 ` [OE-core][kirkstone 25/27] glibc: nptl Fix indentation Steve Sakoman
2025-06-17 21:20 ` [OE-core][kirkstone 26/27] glibc: nptl rename __condvar_quiesce_and_switch_g1 Steve Sakoman
2025-06-17 21:20 ` [OE-core][kirkstone 27/27] glibc: nptl Use all of g1_start and g_signals Steve Sakoman
-- strict thread matches above, loose matches on Subject: below --
2023-07-18 14:25 [OE-core][kirkstone 00/27] Patch review Steve Sakoman
2023-02-12 21:10 Steve Sakoman
2022-07-14 4:35 Steve Sakoman
[not found] <16E7A00050A35F84.23874@lists.openembedded.org>
2022-04-20 14:53 ` Steve Sakoman
2022-04-20 15:05 ` Khem Raj
2022-04-21 5:14 ` Randy MacLeod
2022-04-21 14:00 ` Steve Sakoman
2022-04-21 14:27 ` Randy MacLeod
2022-04-20 14:07 Steve Sakoman
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=cover.1750195103.git.steve@sakoman.com \
--to=steve@sakoman.com \
--cc=openembedded-core@lists.openembedded.org \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.