From: Scott Murray <scott.murray@konsulko.com>
To: yocto-patches@lists.yoctoproject.org
Cc: Marta Rybczynska <rybczynska@gmail.com>
Subject: [meta-security][scarthgap][PATCH 0/6] Assorted updates 01/19
Date: Mon, 19 Jan 2026 15:39:55 -0500 [thread overview]
Message-ID: <cover.1768854779.git.scott.murray@konsulko.com> (raw)
This patch series rolls up the contributed patches from the past couple
weeks, plus backported lynis updates and a sssd update from myself.
These changes are queued on the scarthgap-next branch if you would like
to check them out to test yourself. I intend to merge these to scarthgap
branch at end of day tomorrow (Eastern Time, Jan. 20) unless there are
objections.
Scott
Changes:
Marta Rybczynska (1):
lynis: move to GitHub fetching
Michael Opdenacker (1):
lynis: update to 3.1.5
Scott Murray (2):
sssd: Upgrade to 2.9.7
lynis: upgrade to 3.1.6
Vijay Anusuri (2):
sssd: Upgrade 2.9.2 -> 2.9.5
sssd: Fix for CVE-2025-11561
.../0001-sssctl-add-error-analyzer.patch | 42 +++++++++-------
.../sssd/files/CVE-2025-11561.patch | 50 +++++++++++++++++++
.../sssd/files/drop_ntpdate_chk.patch | 17 +++++--
.../sssd/files/fix-ldblibdir.patch | 9 +++-
.../recipes-security/sssd/files/fix_gid.patch | 16 ++++--
.../sssd/files/musl_fixup.patch | 34 +++++++------
.../recipes-security/sssd/files/no_gen.patch | 18 ++++---
.../sssd/{sssd_2.9.2.bb => sssd_2.9.7.bb} | 3 +-
.../lynis/{lynis_3.1.4.bb => lynis_3.1.6.bb} | 6 +--
9 files changed, 141 insertions(+), 54 deletions(-)
create mode 100644 dynamic-layers/networking-layer/recipes-security/sssd/files/CVE-2025-11561.patch
rename dynamic-layers/networking-layer/recipes-security/sssd/{sssd_2.9.2.bb => sssd_2.9.7.bb} (98%)
rename recipes-compliance/lynis/{lynis_3.1.4.bb => lynis_3.1.6.bb} (87%)
--
2.51.0
next reply other threads:[~2026-01-19 20:40 UTC|newest]
Thread overview: 7+ messages / expand[flat|nested] mbox.gz Atom feed top
2026-01-19 20:39 Scott Murray [this message]
2026-01-19 20:39 ` [meta-security][scarthgap][PATCH 1/6] sssd: Upgrade 2.9.2 -> 2.9.5 Scott Murray
2026-01-19 20:39 ` [meta-security][scarthgap][PATCH 2/6] sssd: Fix for CVE-2025-11561 Scott Murray
2026-01-19 20:39 ` [meta-security][scarthgap][PATCH 3/6] sssd: Upgrade to 2.9.7 Scott Murray
2026-01-19 20:39 ` [meta-security][scarthgap][PATCH 4/6] lynis: update to 3.1.5 Scott Murray
2026-01-19 20:40 ` [meta-security][scarthgap][PATCH 5/6] lynis: move to GitHub fetching Scott Murray
2026-01-19 20:40 ` [meta-security][scarthgap][PATCH 6/6] lynis: upgrade to 3.1.6 Scott Murray
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=cover.1768854779.git.scott.murray@konsulko.com \
--to=scott.murray@konsulko.com \
--cc=rybczynska@gmail.com \
--cc=yocto-patches@lists.yoctoproject.org \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.