From: Steve Sakoman <steve@sakoman.com>
To: openembedded-core@lists.openembedded.org
Subject: [OE-core][scarthgap 00/18] Patch review
Date: Tue, 23 Dec 2025 13:22:06 -0800 [thread overview]
Message-ID: <cover.1766524798.git.steve@sakoman.com> (raw)
Please review this set of changes for scarthgap and have comments back by
end of day Tuesday, December 30
Passed a-full on autobuilder:
https://autobuilder.yoctoproject.org/valkyrie/?#/builders/29/builds/2919
The following changes since commit 2b3d2b671a149cbeea2bdc9ba42192da2015c3b7:
Revert "lib/oe/go: document map_arch, and raise an error on unknown architecture" (2025-12-11 13:41:59 -0800)
are available in the Git repository at:
https://git.openembedded.org/openembedded-core-contrib stable/scarthgap-nut
https://git.openembedded.org/openembedded-core-contrib/log/?h=stable/scarthgap-nut
Adarsh Jagadish Kamini (1):
rsync: fix CVE-2025-10158
Aleksandar Nikolic (1):
scripts/install-buildtools: Update to 5.0.14
Daniel Turull (1):
cmake-native: fix CVE-2025-9301
Deepak Rathore (2):
cups 2.4.11: Fix CVE-2025-58436
cups 2.4.11: Fix CVE-2025-61915
Deepesh Varatharajan (1):
binutils: Fix CVE-2025-11494
Enrico Jörns (1):
cml1.bbclass: use consistent make flags for menuconfig
Jiaying Song (1):
python3-urllib3: fix CVE-2025-66418 CVE-2025-66471
Kai Kang (1):
qemu: fix CVE-2025-12464
Kamel Bouhara (Schneider Electric) (3):
kernel.bbclass: Add task to export kernel configuration to SPDX
spdx30_tasks: Add support for exporting PACKAGECONFIG to SPDX
oeqa/selftest: oe-selftest: Add SPDX tests for kernel config and
PACKAGECONFIG
Martin Jansa (1):
cross.bbclass: Propagate dependencies to outhash
Mingli Yu (2):
libxslt: Fix CVE-2025-11731
ruby: Upgrade 3.3.5 -> 3.3.10
Moritz Haase (1):
curl: Use host CA bundle by default for native(sdk) builds
Yash Shinde (2):
binutils: fix CVE-2025-11839
binutils: fix CVE-2025-11840
meta/classes-recipe/cml1.bbclass | 2 +-
meta/classes-recipe/cross.bbclass | 36 +
meta/classes-recipe/kernel.bbclass | 67 +-
meta/classes/create-spdx-3.0.bbclass | 11 +
meta/lib/oe/spdx30_tasks.py | 20 +
meta/lib/oeqa/selftest/cases/spdx.py | 57 ++
.../binutils/binutils-2.42.inc | 3 +
.../binutils/0028-CVE-2025-11494.patch | 43 ++
.../binutils/0029-CVE-2025-11839.patch | 32 +
.../binutils/0030-CVE-2025-11840.patch | 37 +
.../cmake/cmake-native_3.28.3.bb | 1 +
.../python3-urllib3/CVE-2025-66418.patch | 80 +++
.../python3-urllib3/CVE-2025-66471.patch | 585 ++++++++++++++++
.../python/python3-urllib3_2.2.2.bb | 2 +
meta/recipes-devtools/qemu/qemu.inc | 1 +
.../qemu/qemu/CVE-2025-12464.patch | 70 ++
.../rsync/files/CVE-2025-10158.patch | 36 +
meta/recipes-devtools/rsync/rsync_3.2.7.bb | 1 +
.../ruby/ruby/CVE-2025-27219.patch | 31 -
.../ruby/ruby/CVE-2025-27220.patch | 78 ---
.../ruby/ruby/CVE-2025-27221-0001.patch | 57 --
.../ruby/ruby/CVE-2025-27221-0002.patch | 73 --
.../ruby/{ruby_3.3.5.bb => ruby_3.3.10.bb} | 6 +-
meta/recipes-extended/cups/cups.inc | 2 +
.../cups/cups/CVE-2025-58436.patch | 635 ++++++++++++++++++
.../cups/cups/CVE-2025-61915.patch | 491 ++++++++++++++
meta/recipes-support/curl/curl_8.7.1.bb | 11 +-
.../libxslt/files/CVE-2025-11731.patch | 42 ++
.../recipes-support/libxslt/libxslt_1.1.43.bb | 3 +-
scripts/install-buildtools | 4 +-
30 files changed, 2263 insertions(+), 254 deletions(-)
create mode 100644 meta/recipes-devtools/binutils/binutils/0028-CVE-2025-11494.patch
create mode 100644 meta/recipes-devtools/binutils/binutils/0029-CVE-2025-11839.patch
create mode 100644 meta/recipes-devtools/binutils/binutils/0030-CVE-2025-11840.patch
create mode 100644 meta/recipes-devtools/python/python3-urllib3/CVE-2025-66418.patch
create mode 100644 meta/recipes-devtools/python/python3-urllib3/CVE-2025-66471.patch
create mode 100644 meta/recipes-devtools/qemu/qemu/CVE-2025-12464.patch
create mode 100644 meta/recipes-devtools/rsync/files/CVE-2025-10158.patch
delete mode 100644 meta/recipes-devtools/ruby/ruby/CVE-2025-27219.patch
delete mode 100644 meta/recipes-devtools/ruby/ruby/CVE-2025-27220.patch
delete mode 100644 meta/recipes-devtools/ruby/ruby/CVE-2025-27221-0001.patch
delete mode 100644 meta/recipes-devtools/ruby/ruby/CVE-2025-27221-0002.patch
rename meta/recipes-devtools/ruby/{ruby_3.3.5.bb => ruby_3.3.10.bb} (95%)
create mode 100644 meta/recipes-extended/cups/cups/CVE-2025-58436.patch
create mode 100644 meta/recipes-extended/cups/cups/CVE-2025-61915.patch
create mode 100644 meta/recipes-support/libxslt/files/CVE-2025-11731.patch
--
2.43.0
next reply other threads:[~2025-12-23 21:22 UTC|newest]
Thread overview: 25+ messages / expand[flat|nested] mbox.gz Atom feed top
2025-12-23 21:22 Steve Sakoman [this message]
2025-12-23 21:22 ` [OE-core][scarthgap 01/18] cups 2.4.11: Fix CVE-2025-58436 Steve Sakoman
2025-12-23 21:22 ` [OE-core][scarthgap 02/18] cups 2.4.11: Fix CVE-2025-61915 Steve Sakoman
2025-12-23 21:22 ` [OE-core][scarthgap 03/18] rsync: fix CVE-2025-10158 Steve Sakoman
2025-12-23 21:22 ` [OE-core][scarthgap 04/18] qemu: fix CVE-2025-12464 Steve Sakoman
2025-12-23 21:22 ` [OE-core][scarthgap 05/18] python3-urllib3: fix CVE-2025-66418 CVE-2025-66471 Steve Sakoman
2025-12-23 21:22 ` [OE-core][scarthgap 06/18] cmake-native: fix CVE-2025-9301 Steve Sakoman
2025-12-23 21:22 ` [OE-core][scarthgap 07/18] binutils: Fix CVE-2025-11494 Steve Sakoman
2025-12-23 21:22 ` [OE-core][scarthgap 08/18] binutils: fix CVE-2025-11839 Steve Sakoman
2025-12-23 21:22 ` [OE-core][scarthgap 09/18] binutils: fix CVE-2025-11840 Steve Sakoman
2025-12-23 21:22 ` [OE-core][scarthgap 10/18] libxslt: Fix CVE-2025-11731 Steve Sakoman
2025-12-23 21:22 ` [OE-core][scarthgap 11/18] ruby: Upgrade 3.3.5 -> 3.3.10 Steve Sakoman
2025-12-23 21:22 ` [OE-core][scarthgap 12/18] scripts/install-buildtools: Update to 5.0.14 Steve Sakoman
2025-12-23 21:22 ` [OE-core][scarthgap 13/18] kernel.bbclass: Add task to export kernel configuration to SPDX Steve Sakoman
2025-12-23 21:22 ` [OE-core][scarthgap 14/18] spdx30_tasks: Add support for exporting PACKAGECONFIG " Steve Sakoman
2025-12-23 21:22 ` [OE-core][scarthgap 15/18] oeqa/selftest: oe-selftest: Add SPDX tests for kernel config and PACKAGECONFIG Steve Sakoman
2025-12-23 21:22 ` [OE-core][scarthgap 16/18] cml1.bbclass: use consistent make flags for menuconfig Steve Sakoman
2025-12-23 21:22 ` [OE-core][scarthgap 17/18] curl: Use host CA bundle by default for native(sdk) builds Steve Sakoman
2025-12-23 21:22 ` [OE-core][scarthgap 18/18] cross.bbclass: Propagate dependencies to outhash Steve Sakoman
-- strict thread matches above, loose matches on Subject: below --
2025-10-10 2:50 [OE-core][scarthgap 00/18] Patch review Steve Sakoman
2025-10-12 19:02 ` Gyorgy Sarvari
2025-10-12 19:19 ` Steve Sakoman
2024-10-15 18:50 Steve Sakoman
2024-08-21 12:50 Steve Sakoman
2024-08-04 17:09 Steve Sakoman
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=cover.1766524798.git.steve@sakoman.com \
--to=steve@sakoman.com \
--cc=openembedded-core@lists.openembedded.org \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.