From: "Yoann Congal" <yoann.congal@smile.fr>
To: "Yoann Congal" <yoann.congal@smile.fr>,
<openembedded-core@lists.openembedded.org>
Subject: Re: [OE-core][whinlatter 00/12] Patch review
Date: Thu, 05 Mar 2026 10:35:30 +0100 [thread overview]
Message-ID: <DGUQVVEMFLF8.35QYS5F0MJVQT@smile.fr> (raw)
In-Reply-To: <DGUQKJKLZTVJ.Y3Q751XS5KRZ@smile.fr>
On Thu Mar 5, 2026 at 10:20 AM CET, Yoann Congal wrote:
> On Thu Mar 5, 2026 at 9:54 AM CET, Yoann Congal wrote:
>> Please review this set of changes for whinlatter and have comments back
>> by end of day Monday, March 9.
>>
>> Passed a-full on autobuilder with warnings:
>> https://autobuilder.yoctoproject.org/valkyrie/#/builders/29/builds/3334
>> The sub-build qemux86-64-ptest had a ptest failure
>> https://autobuilder.yoctoproject.org/valkyrie/#/builders/73/builds/3207
>> It is a known AB-INT bug: 15718 – AB-INT: gstreamer ptest never ending (Bitbake still alive)
>> https://bugzilla.yoctoproject.org/show_bug.cgi?id=15718
>> This is not related to this series.
>>
>> The following changes since commit 45cba1329d541fdc5857d6df2624b34c91133f7a:
>>
>> build-appliance-image: Update to whinlatter head revisions (2026-02-27 17:46:44 +0000)
>>
>> are available in the Git repository at:
>>
>> https://git.openembedded.org/openembedded-core-contrib stable/whinlatter-nut
>> https://git.openembedded.org/openembedded-core-contrib/log/?h=stable/whinlatter-nut
>
> I plan to also add this patch to the branch:
> [whinlatter][PATCH] create-pull-request: Keep commit hash to be pulled in cover email
> https://lore.kernel.org/openembedded-core/20260305085838.1176663-2-yoann.congal@smile.fr/T/#u
And also:
[whinlatter][PATCH 1/2] avahi: Remove a reference to the rejected CVE-2021-36217 - Yoann Congal
https://lore.kernel.org/openembedded-core/20260305093127.1179651-1-yoann.congal@smile.fr/
[whinlatter][PATCH 2/2] lz4: Remove a reference to the rejected CVE-2025-62813 - Yoann Congal
https://lore.kernel.org/openembedded-core/20260305093127.1179651-2-yoann.congal@smile.fr/
>> Adarsh Jagadish Kamini (1):
>> python3-pip: Backport fix CVE-2026-1703
>>
>> Ankur Tyagi (1):
>> wireless-regdb: upgrade 2025.10.07 -> 2026.02.04
>>
>> Antonin Godard (1):
>> python3: skip flaky test_default_timeout test
>>
>> Hugo SIMELIERE (2):
>> zlib: Fix CVE-2026-27171
>> harfbuzz: Fix CVE-2026-22693
>>
>> Peter Marko (3):
>> linux-yocto: apply cve-exclusions also to rt and tiny recipe variants
>> cve-exclusions: set status for 5 CVEs
>> ffmpeg: set status for CVE-2025-12343
>>
>> Shaik Moin (1):
>> gdk-pixbuf: Fix CVE-2025-6199
>>
>> Vijay Anusuri (1):
>> gnutls: Fix CVE-2025-14831
>>
>> Yoann Congal (2):
>> README: Add whinlatter subject-prefix to git-send-email suggestion
>> b4-config: add send-prefixes for whinlatter
>>
>> .b4-config | 1 +
>> README.OE-Core.md | 2 +-
>> .../zlib/zlib/CVE-2026-27171.patch | 63 +++
>> meta/recipes-core/zlib/zlib_1.3.1.bb | 1 +
>> .../python/python3-pip/CVE-2026-1703.patch | 41 ++
>> .../python/python3-pip_25.2.bb | 4 +-
>> ...kip-flaky-test_default_timeout-tests.patch | 49 ++
>> .../python/python3_3.13.11.bb | 1 +
>> .../gdk-pixbuf/gdk-pixbuf/CVE-2025-6199.patch | 36 ++
>> .../gdk-pixbuf/gdk-pixbuf_2.42.12.bb | 1 +
>> .../harfbuzz/files/CVE-2026-22693.patch | 33 ++
>> .../harfbuzz/harfbuzz_11.4.5.bb | 4 +-
>> meta/recipes-kernel/linux/cve-exclusion.inc | 16 +
>> .../linux/linux-yocto-rt_6.12.bb | 1 +
>> .../linux/linux-yocto-rt_6.16.bb | 1 +
>> .../linux/linux-yocto-tiny_6.12.bb | 1 +
>> .../linux/linux-yocto-tiny_6.16.bb | 1 +
>> ....10.07.bb => wireless-regdb_2026.02.04.bb} | 2 +-
>> meta/recipes-multimedia/ffmpeg/ffmpeg_8.0.bb | 1 +
>> .../gnutls/gnutls/CVE-2025-14831-1.patch | 119 +++++
>> .../gnutls/gnutls/CVE-2025-14831-10.patch | 424 +++++++++++++++
>> .../gnutls/gnutls/CVE-2025-14831-2.patch | 66 +++
>> .../gnutls/gnutls/CVE-2025-14831-3.patch | 30 ++
>> .../gnutls/gnutls/CVE-2025-14831-4.patch | 45 ++
>> .../gnutls/gnutls/CVE-2025-14831-5.patch | 205 +++++++
>> .../gnutls/gnutls/CVE-2025-14831-6.patch | 505 ++++++++++++++++++
>> .../gnutls/gnutls/CVE-2025-14831-7.patch | 124 +++++
>> .../gnutls/gnutls/CVE-2025-14831-8.patch | 155 ++++++
>> .../gnutls/gnutls/CVE-2025-14831-9.patch | 110 ++++
>> meta/recipes-support/gnutls/gnutls_3.8.10.bb | 10 +
>> 30 files changed, 2048 insertions(+), 4 deletions(-)
>> create mode 100644 meta/recipes-core/zlib/zlib/CVE-2026-27171.patch
>> create mode 100644 meta/recipes-devtools/python/python3-pip/CVE-2026-1703.patch
>> create mode 100644 meta/recipes-devtools/python/python3/0001-Skip-flaky-test_default_timeout-tests.patch
>> create mode 100644 meta/recipes-gnome/gdk-pixbuf/gdk-pixbuf/CVE-2025-6199.patch
>> create mode 100644 meta/recipes-graphics/harfbuzz/files/CVE-2026-22693.patch
>> rename meta/recipes-kernel/wireless-regdb/{wireless-regdb_2025.10.07.bb => wireless-regdb_2026.02.04.bb} (94%)
>> create mode 100644 meta/recipes-support/gnutls/gnutls/CVE-2025-14831-1.patch
>> create mode 100644 meta/recipes-support/gnutls/gnutls/CVE-2025-14831-10.patch
>> create mode 100644 meta/recipes-support/gnutls/gnutls/CVE-2025-14831-2.patch
>> create mode 100644 meta/recipes-support/gnutls/gnutls/CVE-2025-14831-3.patch
>> create mode 100644 meta/recipes-support/gnutls/gnutls/CVE-2025-14831-4.patch
>> create mode 100644 meta/recipes-support/gnutls/gnutls/CVE-2025-14831-5.patch
>> create mode 100644 meta/recipes-support/gnutls/gnutls/CVE-2025-14831-6.patch
>> create mode 100644 meta/recipes-support/gnutls/gnutls/CVE-2025-14831-7.patch
>> create mode 100644 meta/recipes-support/gnutls/gnutls/CVE-2025-14831-8.patch
>> create mode 100644 meta/recipes-support/gnutls/gnutls/CVE-2025-14831-9.patch
--
Yoann Congal
Smile ECS
prev parent reply other threads:[~2026-03-05 9:35 UTC|newest]
Thread overview: 16+ messages / expand[flat|nested] mbox.gz Atom feed top
2026-03-05 8:54 [OE-core][whinlatter 00/12] Patch review Yoann Congal
2026-03-05 8:54 ` [OE-core][whinlatter 01/12] python3-pip: Backport fix CVE-2026-1703 Yoann Congal
2026-03-05 8:54 ` [OE-core][whinlatter 02/12] wireless-regdb: upgrade 2025.10.07 -> 2026.02.04 Yoann Congal
2026-03-05 8:54 ` [OE-core][whinlatter 03/12] gdk-pixbuf: Fix CVE-2025-6199 Yoann Congal
2026-03-05 8:54 ` [OE-core][whinlatter 04/12] linux-yocto: apply cve-exclusions also to rt and tiny recipe variants Yoann Congal
2026-03-05 8:54 ` [OE-core][whinlatter 05/12] cve-exclusions: set status for 5 CVEs Yoann Congal
2026-03-05 8:54 ` [OE-core][whinlatter 06/12] ffmpeg: set status for CVE-2025-12343 Yoann Congal
2026-03-05 8:54 ` [OE-core][whinlatter 07/12] zlib: Fix CVE-2026-27171 Yoann Congal
2026-03-05 8:54 ` [OE-core][whinlatter 08/12] harfbuzz: Fix CVE-2026-22693 Yoann Congal
2026-03-05 8:54 ` [OE-core][whinlatter 09/12] gnutls: Fix CVE-2025-14831 Yoann Congal
2026-03-05 8:54 ` [OE-core][whinlatter 10/12] README: Add whinlatter subject-prefix to git-send-email suggestion Yoann Congal
2026-03-05 8:55 ` [OE-core][whinlatter 11/12] b4-config: add send-prefixes for whinlatter Yoann Congal
2026-03-05 17:59 ` Quentin Schulz
2026-03-05 8:55 ` [OE-core][whinlatter 12/12] python3: skip flaky test_default_timeout test Yoann Congal
2026-03-05 9:20 ` [OE-core][whinlatter 00/12] Patch review Yoann Congal
2026-03-05 9:35 ` Yoann Congal [this message]
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=DGUQVVEMFLF8.35QYS5F0MJVQT@smile.fr \
--to=yoann.congal@smile.fr \
--cc=openembedded-core@lists.openembedded.org \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox