From: Anuj Mittal <anuj.mittal@intel.com>
To: openembedded-devel@lists.openembedded.org
Subject: [scarthgap][PATCH 00/24] Scarthgap pull request
Date: Tue, 23 Sep 2025 19:57:03 +0800 [thread overview]
Message-ID: <cover.1758626365.git.anuj.mittal@intel.com> (raw)
Please consider merging these changes for scarthgap. Tested with
autobuilder and locally with qemux86-64 and qemuarm64:
https://autobuilder.yoctoproject.org/valkyrie/#/builders/81/builds/944
The following changes since commit b9fb6556a3c8a3e477dce334205b658cb79ad501:
protobuf 4.25.8: Mark CVE-2024-7254 as patched (2025-09-12 08:15:13 +0800)
are available in the Git repository at:
https://git.openembedded.org/meta-openembedded-contrib anujm/scarthgap
https://git.openembedded.org/meta-openembedded-contrib/log/?h=anujm/scarthgap
Anil Dongare (1):
libssh 0.10.6: Fix CVE-2025-8114
Archana Polampalli (1):
apache2: upgrade 2.4.64 - 2.4.65
AshishKumar Mishra (1):
meta-oe: image: optionally remove RAW image after sparse image
creation
Divya Chellam (2):
libssh: fix CVE-2025-4878
libssh: fix CVE-2025-5987
Gyorgy Sarvari (1):
mod-dnssd: update SRC_URI
Haixiao Yan (1):
python3-posix-ipc: fix runtime error
Hitendra Prajapati (1):
openjpeg: fix for CVE-2025-54874
Jef Driesen (1):
lcov: Add missing RDEPENDS for nativesdk
Jeroen Knoops (1):
nng: Rename default branch of github.com:nanomsg/nng.git
Khem Raj (2):
gtkwave: Add libtirpc to depends
ssmping: Use debian mirror for SRC_URI
Marc Ferland (1):
libvncserver: fix generated LibVNCServerTargets.cmake
Martin Jansa (1):
nodejs: fix build with gcc-15 on host
Peter Marko (2):
fontforge: patch CVE-2024-25081 and CVE-2024-25082
fcgi: patch CVE-2025-23016
Shubham Pushpkar (1):
cjson 1.7.18: Fix CVE-2025-57052
Wang Mingyu (2):
geoip: fix do_fetch error
rp-pppoe: update SRC_URI
Yi Zhao (1):
wxwidgets: upgrade 3.2.1 -> 3.2.6
Yoann Congal (1):
gutenprint: fix a build race-condition
Zhang Peng (2):
iperf3: fix CVE-2025-54350
wxwidgets: fix CVE-2024-58249
Zoltán Böszörményi (1):
gutenprint: 5.3.5
.../recipes-connectivity/nanomsg/nng_1.7.3.bb | 2 +-
.../rp-pppoe/rp-pppoe_3.15.bb | 2 +-
.../recipes-support/geoip/geoip_1.6.12.bb | 8 +-
.../recipes-support/ssmping/ssmping_0.9.1.bb | 3 +-
meta-oe/classes/image_types_sparse.bbclass | 6 +
.../iperf3/iperf3/CVE-2025-54350.patch | 39 +
.../recipes-benchmark/iperf3/iperf3_3.18.bb | 1 +
.../cjson/cjson/CVE-2025-57052.patch | 33 +
.../recipes-devtools/cjson/cjson_1.7.18.bb | 1 +
.../0001-src-fix-build-with-GCC-15.patch | 33 +
.../recipes-devtools/nodejs/nodejs_20.18.2.bb | 1 +
...using-glibc-specific-defines-on-musl.patch | 26 -
...able-cross-magic-it-does-not-work-fo.patch | 8 +-
...tch => 0002-fix-libdir-for-multilib.patch} | 35 +-
...003-create-links-with-relative-path.patch} | 22 +-
...-not-append-system-name-to-lib-name.patch} | 12 +-
...5-wx-config-fix-libdir-for-multilib.patch} | 29 +-
...-l.patch => 0006-Fix-locale-on-musl.patch} | 18 +-
...E_LARGEFILE_SUPPORT-to-1-explicitly.patch} | 9 +-
.../wxwidgets/wxwidgets/CVE-2024-58249.patch | 178 ++
...{wxwidgets_3.2.1.bb => wxwidgets_3.2.6.bb} | 18 +-
.../CVE-2024-25081_CVE-2024-25082.patch | 181 ++
.../fontforge/fontforge_20230101.bb | 1 +
.../gtkwave/gtkwave_3.3.119.bb | 1 +
.../libvncserver/libvncserver_0.9.14.bb | 4 +-
.../openjpeg/openjpeg/CVE-2025-54874.patch | 44 +
.../openjpeg/openjpeg_2.5.3.bb | 1 +
...-race-condition-around-empty-directo.patch | 60 +
...utenprint_5.3.4.bb => gutenprint_5.3.5.bb} | 6 +-
meta-oe/recipes-support/lcov/lcov_1.16.bb | 6 +
.../libssh/libssh/CVE-2025-4878-0001.patch | 2552 +++++++++++++++++
.../libssh/libssh/CVE-2025-4878-0002.patch | 34 +
.../libssh/libssh/CVE-2025-5987.patch | 37 +
.../libssh/libssh/CVE-2025-8114.patch | 49 +
.../recipes-support/libssh/libssh_0.10.6.bb | 4 +
...ndle-runtime-errors-and-return-None-.patch | 47 +
.../python/python3-posix-ipc_1.2.0.bb | 1 +
.../recipes-httpd/apache-mod/mod-dnssd_0.6.bb | 2 +-
.../{apache2_2.4.64.bb => apache2_2.4.65.bb} | 2 +-
.../fcgi/fcgi/CVE-2025-23016.patch | 40 +
.../recipes-support/fcgi/fcgi_git.bb | 1 +
41 files changed, 3467 insertions(+), 90 deletions(-)
create mode 100644 meta-oe/recipes-benchmark/iperf3/iperf3/CVE-2025-54350.patch
create mode 100644 meta-oe/recipes-devtools/cjson/cjson/CVE-2025-57052.patch
create mode 100644 meta-oe/recipes-devtools/nodejs/nodejs/0001-src-fix-build-with-GCC-15.patch
delete mode 100644 meta-oe/recipes-extended/wxwidgets/wxwidgets/0001-locale-Avoid-using-glibc-specific-defines-on-musl.patch
rename meta-oe/recipes-extended/wxwidgets/wxwidgets/{fix-libdir-for-multilib.patch => 0002-fix-libdir-for-multilib.patch} (82%)
rename meta-oe/recipes-extended/wxwidgets/wxwidgets/{create-links-with-relative-path.patch => 0003-create-links-with-relative-path.patch} (72%)
rename meta-oe/recipes-extended/wxwidgets/wxwidgets/{not-append-system-name-to-lib-name.patch => 0004-don-not-append-system-name-to-lib-name.patch} (73%)
rename meta-oe/recipes-extended/wxwidgets/wxwidgets/{wx-config-fix-libdir-for-multilib.patch => 0005-wx-config-fix-libdir-for-multilib.patch} (74%)
rename meta-oe/recipes-extended/wxwidgets/wxwidgets/{musl-locale-l.patch => 0006-Fix-locale-on-musl.patch} (70%)
rename meta-oe/recipes-extended/wxwidgets/wxwidgets/{0001-Set-HAVE_LARGEFILE_SUPPORT-to-1-explicitly.patch => 0007-Set-HAVE_LARGEFILE_SUPPORT-to-1-explicitly.patch} (83%)
create mode 100644 meta-oe/recipes-extended/wxwidgets/wxwidgets/CVE-2024-58249.patch
rename meta-oe/recipes-extended/wxwidgets/{wxwidgets_3.2.1.bb => wxwidgets_3.2.6.bb} (89%)
create mode 100644 meta-oe/recipes-graphics/fontforge/fontforge/CVE-2024-25081_CVE-2024-25082.patch
create mode 100644 meta-oe/recipes-graphics/openjpeg/openjpeg/CVE-2025-54874.patch
create mode 100644 meta-oe/recipes-printing/gutenprint/gutenprint/0001-cups-fix-a-build-race-condition-around-empty-directo.patch
rename meta-oe/recipes-printing/gutenprint/{gutenprint_5.3.4.bb => gutenprint_5.3.5.bb} (91%)
create mode 100644 meta-oe/recipes-support/libssh/libssh/CVE-2025-4878-0001.patch
create mode 100644 meta-oe/recipes-support/libssh/libssh/CVE-2025-4878-0002.patch
create mode 100644 meta-oe/recipes-support/libssh/libssh/CVE-2025-5987.patch
create mode 100644 meta-oe/recipes-support/libssh/libssh/CVE-2025-8114.patch
create mode 100644 meta-python/recipes-devtools/python/python3-posix-ipc/0004-build_support-handle-runtime-errors-and-return-None-.patch
rename meta-webserver/recipes-httpd/apache2/{apache2_2.4.64.bb => apache2_2.4.65.bb} (99%)
create mode 100644 meta-webserver/recipes-support/fcgi/fcgi/CVE-2025-23016.patch
next reply other threads:[~2025-09-23 11:57 UTC|newest]
Thread overview: 32+ messages / expand[flat|nested] mbox.gz Atom feed top
2025-09-23 11:57 Anuj Mittal [this message]
2025-09-23 11:57 ` [scarthgap][PATCH 01/24] libssh: fix CVE-2025-4878 Anuj Mittal
2025-09-23 11:57 ` [scarthgap][PATCH 02/24] libssh: fix CVE-2025-5987 Anuj Mittal
2025-09-23 11:57 ` [scarthgap][PATCH 03/24] nodejs: fix build with gcc-15 on host Anuj Mittal
2025-09-23 11:57 ` [scarthgap][PATCH 04/24] iperf3: fix CVE-2025-54350 Anuj Mittal
2025-09-23 11:57 ` [scarthgap][PATCH 05/24] python3-posix-ipc: fix runtime error Anuj Mittal
2025-09-23 11:57 ` [scarthgap][PATCH 06/24] wxwidgets: upgrade 3.2.1 -> 3.2.6 Anuj Mittal
2025-09-23 11:57 ` [scarthgap][PATCH 07/24] wxwidgets: fix CVE-2024-58249 Anuj Mittal
2025-09-23 11:57 ` [scarthgap][PATCH 08/24] gutenprint: fix a build race-condition Anuj Mittal
2025-09-23 11:57 ` [scarthgap][PATCH 09/24] gutenprint: 5.3.5 Anuj Mittal
2025-09-23 11:57 ` [scarthgap][PATCH 10/24] meta-oe: image: optionally remove RAW image after sparse image creation Anuj Mittal
2025-09-23 11:57 ` [scarthgap][PATCH 11/24] libssh 0.10.6: Fix CVE-2025-8114 Anuj Mittal
2025-09-23 11:57 ` [scarthgap][PATCH 12/24] apache2: upgrade 2.4.64 - 2.4.65 Anuj Mittal
2025-09-23 11:57 ` [scarthgap][PATCH 13/24] cjson 1.7.18: Fix CVE-2025-57052 Anuj Mittal
2025-09-23 11:57 ` [scarthgap][PATCH 14/24] openjpeg: fix for CVE-2025-54874 Anuj Mittal
2025-09-23 11:57 ` [scarthgap][PATCH 15/24] fontforge: patch CVE-2024-25081 and CVE-2024-25082 Anuj Mittal
2025-09-23 11:57 ` [scarthgap][PATCH 16/24] fcgi: patch CVE-2025-23016 Anuj Mittal
2025-09-23 11:57 ` [scarthgap][PATCH 17/24] lcov: Add missing RDEPENDS for nativesdk Anuj Mittal
2025-09-23 11:57 ` [scarthgap][PATCH 18/24] libvncserver: fix generated LibVNCServerTargets.cmake Anuj Mittal
2025-09-23 11:57 ` [scarthgap][PATCH 19/24] gtkwave: Add libtirpc to depends Anuj Mittal
2025-09-23 11:57 ` [scarthgap][PATCH 20/24] geoip: fix do_fetch error Anuj Mittal
2025-09-23 11:57 ` [scarthgap][PATCH 21/24] nng: Rename default branch of github.com:nanomsg/nng.git Anuj Mittal
2025-09-23 11:57 ` [scarthgap][PATCH 22/24] rp-pppoe: update SRC_URI Anuj Mittal
2025-09-23 11:57 ` [scarthgap][PATCH 23/24] mod-dnssd: " Anuj Mittal
2025-09-23 11:57 ` [scarthgap][PATCH 24/24] ssmping: Use debian mirror for SRC_URI Anuj Mittal
2025-09-23 14:46 ` [oe] [scarthgap][PATCH 00/24] Scarthgap pull request Gyorgy Sarvari
2025-09-24 4:01 ` Mittal, Anuj
2025-09-24 6:13 ` Khem Raj
-- strict thread matches above, loose matches on Subject: below --
2025-10-30 1:13 Anuj Mittal
2025-10-30 4:20 ` Khem Raj
2025-09-12 9:06 Anuj Mittal
2025-09-15 5:00 ` Khem Raj
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=cover.1758626365.git.anuj.mittal@intel.com \
--to=anuj.mittal@intel.com \
--cc=openembedded-devel@lists.openembedded.org \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.