From: Steve Sakoman <steve@sakoman.com>
To: openembedded-core@lists.openembedded.org
Subject: [OE-core][walnascar 00/13] Patch review
Date: Wed, 16 Jul 2025 19:55:23 -0700 [thread overview]
Message-ID: <cover.1752720827.git.steve@sakoman.com> (raw)
Please review this set of changes for walnascar and have comments back by
end of day Friday, July 18
Passed a-full on autobuilder:
https://autobuilder.yoctoproject.org/valkyrie/?#/builders/29/builds/2030
The following changes since commit 4225c9abbc68e1a29a54927a9c8e1fe12208e5b4:
ltp: backport patch to fix compilation error for Skylake -march=x86-64-v3 (2025-07-11 09:55:25 -0700)
are available in the Git repository at:
https://git.openembedded.org/openembedded-core-contrib stable/walnascar-nut
https://git.openembedded.org/openembedded-core-contrib/log/?h=stable/walnascar-nut
Archana Polampalli (1):
gdk-pixbuf: fix CVE-2025-7345
Deepesh Varatharajan (3):
binutils: stable 2.44 branch updates
binutils: Fix CVE-2025-5245
binutils: Fix CVE-2025-7545
Divya Chellam (3):
libxml2: fix CVE-2025-6021
libxml2: Fix CVE-2025-49794 & CVE-2025-49796
libxml2: fix CVE-2025-49795
Jiaying Song (1):
ruby-ptest : some ptest fixes
Peter Marko (3):
busybox: apply patch for CVE-2023-39810
curl: ignore CVE-2025-4947 and CVE-2025-5025
iputils: patch CVE-2025-48964
Yash Shinde (1):
binutils: Fix CVE-2025-7546
Yi Zhao (1):
kea: set correct permissions for /var/run/kea
.../kea/files/kea-dhcp-ddns.service | 1 +
.../kea/files/kea-dhcp4.service | 1 +
.../kea/files/kea-dhcp6.service | 1 +
.../busybox/busybox/CVE-2023-39810.patch | 136 +++++++++++++
meta/recipes-core/busybox/busybox_1.37.0.bb | 1 +
.../CVE-2025-49794_CVE-2025-49796.patch | 189 ++++++++++++++++++
.../libxml/libxml2/CVE-2025-49795.patch | 75 +++++++
.../libxml/libxml2/CVE-2025-6021.patch | 59 ++++++
meta/recipes-core/libxml/libxml2_2.13.8.bb | 3 +
.../binutils/binutils-2.44.inc | 5 +-
.../binutils/0018-CVE-2025-5245.patch | 38 ++++
.../binutils/0018-CVE-2025-7546.patch | 58 ++++++
.../binutils/0019-CVE-2025-7545.patch | 39 ++++
..._rm_r_no_permissions-test-under-root.patch | 32 +++
meta/recipes-devtools/ruby/ruby/run-ptest | 2 +-
meta/recipes-devtools/ruby/ruby_3.4.4.bb | 5 +-
.../iputils/iputils/CVE-2025-48964.patch | 99 +++++++++
.../iputils/iputils_20240905.bb | 1 +
.../gdk-pixbuf/gdk-pixbuf/CVE-2025-7345.patch | 55 +++++
.../gdk-pixbuf/gdk-pixbuf_2.42.12.bb | 1 +
meta/recipes-support/curl/curl_8.12.1.bb | 2 +
21 files changed, 800 insertions(+), 3 deletions(-)
create mode 100644 meta/recipes-core/busybox/busybox/CVE-2023-39810.patch
create mode 100644 meta/recipes-core/libxml/libxml2/CVE-2025-49794_CVE-2025-49796.patch
create mode 100644 meta/recipes-core/libxml/libxml2/CVE-2025-49795.patch
create mode 100644 meta/recipes-core/libxml/libxml2/CVE-2025-6021.patch
create mode 100644 meta/recipes-devtools/binutils/binutils/0018-CVE-2025-5245.patch
create mode 100644 meta/recipes-devtools/binutils/binutils/0018-CVE-2025-7546.patch
create mode 100644 meta/recipes-devtools/binutils/binutils/0019-CVE-2025-7545.patch
create mode 100644 meta/recipes-devtools/ruby/ruby/0007-Skip-test_rm_r_no_permissions-test-under-root.patch
create mode 100644 meta/recipes-extended/iputils/iputils/CVE-2025-48964.patch
create mode 100644 meta/recipes-gnome/gdk-pixbuf/gdk-pixbuf/CVE-2025-7345.patch
--
2.43.0
next reply other threads:[~2025-07-17 2:55 UTC|newest]
Thread overview: 14+ messages / expand[flat|nested] mbox.gz Atom feed top
2025-07-17 2:55 Steve Sakoman [this message]
2025-07-17 2:55 ` [OE-core][walnascar 01/13] busybox: apply patch for CVE-2023-39810 Steve Sakoman
2025-07-17 2:55 ` [OE-core][walnascar 02/13] curl: ignore CVE-2025-4947 and CVE-2025-5025 Steve Sakoman
2025-07-17 2:55 ` [OE-core][walnascar 03/13] iputils: patch CVE-2025-48964 Steve Sakoman
2025-07-17 2:55 ` [OE-core][walnascar 04/13] gdk-pixbuf: fix CVE-2025-7345 Steve Sakoman
2025-07-17 2:55 ` [OE-core][walnascar 05/13] libxml2: fix CVE-2025-6021 Steve Sakoman
2025-07-17 2:55 ` [OE-core][walnascar 06/13] libxml2: Fix CVE-2025-49794 & CVE-2025-49796 Steve Sakoman
2025-07-17 2:55 ` [OE-core][walnascar 07/13] libxml2: fix CVE-2025-49795 Steve Sakoman
2025-07-17 2:55 ` [OE-core][walnascar 08/13] binutils: stable 2.44 branch updates Steve Sakoman
2025-07-17 2:55 ` [OE-core][walnascar 09/13] binutils: Fix CVE-2025-5245 Steve Sakoman
2025-07-17 2:55 ` [OE-core][walnascar 10/13] binutils: Fix CVE-2025-7545 Steve Sakoman
2025-07-17 2:55 ` [OE-core][walnascar 11/13] binutils: Fix CVE-2025-7546 Steve Sakoman
2025-07-17 2:55 ` [OE-core][walnascar 12/13] ruby-ptest : some ptest fixes Steve Sakoman
2025-07-17 2:55 ` [OE-core][walnascar 13/13] kea: set correct permissions for /var/run/kea Steve Sakoman
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=cover.1752720827.git.steve@sakoman.com \
--to=steve@sakoman.com \
--cc=openembedded-core@lists.openembedded.org \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.