From: Steve Sakoman <steve@sakoman.com>
To: openembedded-core@lists.openembedded.org
Subject: [OE-core][scarthgap 00/26] Patch review
Date: Fri, 17 Oct 2025 13:38:43 -0700 [thread overview]
Message-ID: <cover.1760733431.git.steve@sakoman.com> (raw)
Please review this set of changes for scarthgap and have comments back by
end of day Tuesday, October 21
Passed a-full on autobuilder:
https://autobuilder.yoctoproject.org/valkyrie/#/builders/29/builds/2608
The following changes since commit 7af6b75221d5703ba5bf43c7cd9f1e7a2e0ed20b:
build-appliance-image: Update to scarthgap head revision (2025-10-13 12:47:05 -0700)
are available in the Git repository at:
https://git.openembedded.org/openembedded-core-contrib stable/scarthgap-nut
https://git.openembedded.org/openembedded-core-contrib/log/?h=stable/scarthgap-nut
Bruce Ashfield (12):
linux-yocto/6.6: update to v6.6.98
linux-yocto/6.6: update to v6.6.99
linux-yocto/6.6: update to v6.6.100
linux-yocto/6.6: update to v6.6.101
linux-yocto/6.6: update to v6.6.102
linux-yocto/6.6: update to v6.6.103
linux-yocto/6.6: update to v6.6.106
linux-yocto/6.6: update to v6.6.107
linux-yocto/6.6: update to v6.6.108
linux-yocto/6.6: update to v6.6.109
linux-yocto/6.6: update to v6.6.110
linux-yocto/6.6: update to v6.6.111
Carlos Alberto Lopez Perez (1):
icu: Backport patch to fix build issues with long paths (>512 chars)
David Nyström (2):
openssh: fix CVE-2025-61985
openssh: fix CVE-2025-61984
Deepesh Varatharajan (1):
glibc: stable 2.39 branch updates
Michael Haener (1):
oeqa/runtime/ping: don't bother trying to ping localhost
Peter Marko (5):
qemu: patch CVE-2024-8354
binutils: patch CVE-2025-11082
binutils: patch CVE-2025-11083
gnupg: mark CVE-2025-30258 as patched
python3: upgrade 3.12.11 -> 3.12.12
Rajeshkumar Ramasamy (2):
glib-networking: fix CVE-2025-60018
glib-networking: fix CVE-2025-60019
Saravanan (2):
python3-xmltodict: fix CVE-2025-9375
cmake: fix CVE-2025-9301
meta/lib/oeqa/runtime/cases/ping.py | 7 +
.../openssh/openssh/CVE-2025-61984.patch | 125 ++++++++++
.../openssh/openssh/CVE-2025-61985.patch | 47 ++++
.../openssh/openssh_9.6p1.bb | 2 +
.../glib-networking/CVE-2025-60018.patch | 83 +++++++
.../glib-networking/CVE-2025-60019.patch | 147 ++++++++++++
.../glib-networking/glib-networking_2.78.1.bb | 2 +
meta/recipes-core/glibc/glibc-version.inc | 4 +-
.../binutils/binutils-2.42.inc | 2 +
.../binutils/0024-CVE-2025-11082.patch | 46 ++++
.../binutils/0025-CVE-2025-11083.patch | 77 ++++++
.../cmake/cmake/CVE-2025-9301.patch | 71 ++++++
meta/recipes-devtools/cmake/cmake_3.28.3.bb | 1 +
.../python3-xmltodict/CVE-2025-9375-1.patch | 111 +++++++++
.../python3-xmltodict/CVE-2025-9375-2.patch | 176 ++++++++++++++
.../python/python3-xmltodict_0.13.0.bb | 2 +
...e-treat-overflow-in-UID-GID-as-failu.patch | 2 +-
.../python/python3/CVE-2025-8194.patch | 219 ------------------
...{python3_3.12.11.bb => python3_3.12.12.bb} | 3 +-
meta/recipes-devtools/qemu/qemu.inc | 1 +
.../qemu/qemu/CVE-2024-8354.patch | 75 ++++++
.../linux/linux-yocto-rt_6.6.bb | 6 +-
.../linux/linux-yocto-tiny_6.6.bb | 6 +-
meta/recipes-kernel/linux/linux-yocto_6.6.bb | 28 +--
meta/recipes-support/gnupg/gnupg_2.4.8.bb | 1 +
...813_rise_buffer_sizes_pkgdata_PR3058.patch | 72 ++++++
meta/recipes-support/icu/icu_74-2.bb | 1 +
test | 0
28 files changed, 1073 insertions(+), 244 deletions(-)
create mode 100644 meta/recipes-connectivity/openssh/openssh/CVE-2025-61984.patch
create mode 100644 meta/recipes-connectivity/openssh/openssh/CVE-2025-61985.patch
create mode 100644 meta/recipes-core/glib-networking/glib-networking/CVE-2025-60018.patch
create mode 100644 meta/recipes-core/glib-networking/glib-networking/CVE-2025-60019.patch
create mode 100644 meta/recipes-devtools/binutils/binutils/0024-CVE-2025-11082.patch
create mode 100644 meta/recipes-devtools/binutils/binutils/0025-CVE-2025-11083.patch
create mode 100644 meta/recipes-devtools/cmake/cmake/CVE-2025-9301.patch
create mode 100644 meta/recipes-devtools/python/python3-xmltodict/CVE-2025-9375-1.patch
create mode 100644 meta/recipes-devtools/python/python3-xmltodict/CVE-2025-9375-2.patch
delete mode 100644 meta/recipes-devtools/python/python3/CVE-2025-8194.patch
rename meta/recipes-devtools/python/{python3_3.12.11.bb => python3_3.12.12.bb} (99%)
create mode 100644 meta/recipes-devtools/qemu/qemu/CVE-2024-8354.patch
create mode 100644 meta/recipes-support/icu/icu/ICU-22813_rise_buffer_sizes_pkgdata_PR3058.patch
create mode 100644 test
--
2.43.0
next reply other threads:[~2025-10-17 20:39 UTC|newest]
Thread overview: 27+ messages / expand[flat|nested] mbox.gz Atom feed top
2025-10-17 20:38 Steve Sakoman [this message]
2025-10-17 20:38 ` [OE-core][scarthgap 01/26] qemu: patch CVE-2024-8354 Steve Sakoman
2025-10-17 20:38 ` [OE-core][scarthgap 02/26] python3-xmltodict: fix CVE-2025-9375 Steve Sakoman
2025-10-17 20:38 ` [OE-core][scarthgap 03/26] binutils: patch CVE-2025-11082 Steve Sakoman
2025-10-17 20:38 ` [OE-core][scarthgap 04/26] binutils: patch CVE-2025-11083 Steve Sakoman
2025-10-17 20:38 ` [OE-core][scarthgap 05/26] gnupg: mark CVE-2025-30258 as patched Steve Sakoman
2025-10-17 20:38 ` [OE-core][scarthgap 06/26] glib-networking: fix CVE-2025-60018 Steve Sakoman
2025-10-17 20:38 ` [OE-core][scarthgap 07/26] openssh: fix CVE-2025-61985 Steve Sakoman
2025-10-17 20:38 ` [OE-core][scarthgap 08/26] openssh: fix CVE-2025-61984 Steve Sakoman
2025-10-17 20:38 ` [OE-core][scarthgap 09/26] cmake: fix CVE-2025-9301 Steve Sakoman
2025-10-17 20:38 ` [OE-core][scarthgap 10/26] glib-networking: fix CVE-2025-60019 Steve Sakoman
2025-10-17 20:38 ` [OE-core][scarthgap 11/26] glibc: stable 2.39 branch updates Steve Sakoman
2025-10-17 20:38 ` [OE-core][scarthgap 12/26] linux-yocto/6.6: update to v6.6.98 Steve Sakoman
2025-10-17 20:38 ` [OE-core][scarthgap 13/26] linux-yocto/6.6: update to v6.6.99 Steve Sakoman
2025-10-17 20:38 ` [OE-core][scarthgap 14/26] linux-yocto/6.6: update to v6.6.100 Steve Sakoman
2025-10-17 20:38 ` [OE-core][scarthgap 15/26] linux-yocto/6.6: update to v6.6.101 Steve Sakoman
2025-10-17 20:38 ` [OE-core][scarthgap 16/26] linux-yocto/6.6: update to v6.6.102 Steve Sakoman
2025-10-17 20:39 ` [OE-core][scarthgap 17/26] linux-yocto/6.6: update to v6.6.103 Steve Sakoman
2025-10-17 20:39 ` [OE-core][scarthgap 18/26] linux-yocto/6.6: update to v6.6.106 Steve Sakoman
2025-10-17 20:39 ` [OE-core][scarthgap 19/26] linux-yocto/6.6: update to v6.6.107 Steve Sakoman
2025-10-17 20:39 ` [OE-core][scarthgap 20/26] linux-yocto/6.6: update to v6.6.108 Steve Sakoman
2025-10-17 20:39 ` [OE-core][scarthgap 21/26] linux-yocto/6.6: update to v6.6.109 Steve Sakoman
2025-10-17 20:39 ` [OE-core][scarthgap 22/26] linux-yocto/6.6: update to v6.6.110 Steve Sakoman
2025-10-17 20:39 ` [OE-core][scarthgap 23/26] linux-yocto/6.6: update to v6.6.111 Steve Sakoman
2025-10-17 20:39 ` [OE-core][scarthgap 24/26] python3: upgrade 3.12.11 -> 3.12.12 Steve Sakoman
2025-10-17 20:39 ` [OE-core][scarthgap 25/26] icu: Backport patch to fix build issues with long paths (>512 chars) Steve Sakoman
2025-10-17 20:39 ` [OE-core][scarthgap 26/26] oeqa/runtime/ping: don't bother trying to ping localhost Steve Sakoman
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=cover.1760733431.git.steve@sakoman.com \
--to=steve@sakoman.com \
--cc=openembedded-core@lists.openembedded.org \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.