From: "Yoann Congal" <yoann.congal@smile.fr>
To: "Yoann Congal" <yoann.congal@smile.fr>,
<openembedded-core@lists.openembedded.org>
Subject: Re: [OE-core][whinlatter 0/6] Patch review
Date: Fri, 13 Mar 2026 00:24:41 +0100 [thread overview]
Message-ID: <DH16WK99VETV.3SSCSO4EXHGY9@smile.fr> (raw)
In-Reply-To: <cover.1773257124.git.yoann.congal@smile.fr>
On Wed Mar 11, 2026 at 8:27 PM CET, Yoann Congal wrote:
> Please review this set of changes for whinlatter and have comments back by
> end of day Friday, March 13.
>
> Passed a-full on autobuilder:
> https://autobuilder.yoctoproject.org/valkyrie/#/builders/29/builds/3380
>
> The following changes since commit 96d653f64e6eaa919dd1f62193a5a96f43430dc4:
>
> build-appliance-image: Update to whinlatter head revisions (2026-03-10 11:53:11 +0000)
>
> are available in the Git repository at:
>
> https://git.openembedded.org/openembedded-core-contrib stable/whinlatter-nut
> https://git.openembedded.org/openembedded-core-contrib/log/?h=stable/whinlatter-nut
>
> for you to fetch changes up to b37db2db1a03c856f7b4cc94e70b7e6c1ef437b5:
>
> lsb.py: strip ' from os-release file (2026-03-11 01:09:19 +0100)
I plan to also add to this merge: [whinlatter][PATCH] scripts/install-buildtools: Update to 5.3.2
https://lore.kernel.org/openembedded-core/20260312231730.751467-1-yoann.congal@smile.fr/T/#u
>
> ----------------------------------------------------------------
>
> Livin Sunny (1):
> busybox: Fixes CVE-2025-60876
>
> Martin Jansa (1):
> lsb.py: strip ' from os-release file
>
> Peter Marko (3):
> inetutils: patch CVE-2026-28372
> libpam: set status for CVE-2024-10041
> go: upgrade 1.25.7 -> 1.25.8
>
> Vijay Anusuri (1):
> freetype: Fix CVE-2026-23865
>
> meta/lib/oe/lsb.py | 2 +-
> .../inetutils/inetutils/CVE-2026-28372.patch | 86 +++++++++++++++++++
> .../inetutils/inetutils_2.6.bb | 1 +
> .../busybox/busybox/CVE-2025-60876.patch | 42 +++++++++
> meta/recipes-core/busybox/busybox_1.37.0.bb | 1 +
> .../go/{go-1.25.7.inc => go-1.25.8.inc} | 2 +-
> ...e_1.25.7.bb => go-binary-native_1.25.8.bb} | 6 +-
> ..._1.25.7.bb => go-cross-canadian_1.25.8.bb} | 0
> ...{go-cross_1.25.7.bb => go-cross_1.25.8.bb} | 0
> ...osssdk_1.25.7.bb => go-crosssdk_1.25.8.bb} | 0
> ...runtime_1.25.7.bb => go-runtime_1.25.8.bb} | 0
> .../go/{go_1.25.7.bb => go_1.25.8.bb} | 0
> meta/recipes-extended/pam/libpam_1.7.1.bb | 2 +
> .../freetype/freetype/CVE-2026-23865.patch | 54 ++++++++++++
> .../freetype/freetype_2.13.3.bb | 4 +-
> 15 files changed, 194 insertions(+), 6 deletions(-)
> create mode 100644 meta/recipes-connectivity/inetutils/inetutils/CVE-2026-28372.patch
> create mode 100644 meta/recipes-core/busybox/busybox/CVE-2025-60876.patch
> rename meta/recipes-devtools/go/{go-1.25.7.inc => go-1.25.8.inc} (91%)
> rename meta/recipes-devtools/go/{go-binary-native_1.25.7.bb => go-binary-native_1.25.8.bb} (79%)
> rename meta/recipes-devtools/go/{go-cross-canadian_1.25.7.bb => go-cross-canadian_1.25.8.bb} (100%)
> rename meta/recipes-devtools/go/{go-cross_1.25.7.bb => go-cross_1.25.8.bb} (100%)
> rename meta/recipes-devtools/go/{go-crosssdk_1.25.7.bb => go-crosssdk_1.25.8.bb} (100%)
> rename meta/recipes-devtools/go/{go-runtime_1.25.7.bb => go-runtime_1.25.8.bb} (100%)
> rename meta/recipes-devtools/go/{go_1.25.7.bb => go_1.25.8.bb} (100%)
> create mode 100644 meta/recipes-graphics/freetype/freetype/CVE-2026-23865.patch
--
Yoann Congal
Smile ECS
prev parent reply other threads:[~2026-03-12 23:24 UTC|newest]
Thread overview: 8+ messages / expand[flat|nested] mbox.gz Atom feed top
2026-03-11 19:27 [OE-core][whinlatter 0/6] Patch review Yoann Congal
2026-03-11 19:27 ` [OE-core][whinlatter 1/6] busybox: Fixes CVE-2025-60876 Yoann Congal
2026-03-11 19:27 ` [OE-core][whinlatter 2/6] inetutils: patch CVE-2026-28372 Yoann Congal
2026-03-11 19:27 ` [OE-core][whinlatter 3/6] libpam: set status for CVE-2024-10041 Yoann Congal
2026-03-11 19:27 ` [OE-core][whinlatter 4/6] go: upgrade 1.25.7 -> 1.25.8 Yoann Congal
2026-03-11 19:27 ` [OE-core][whinlatter 5/6] freetype: Fix CVE-2026-23865 Yoann Congal
2026-03-11 19:27 ` [OE-core][whinlatter 6/6] lsb.py: strip ' from os-release file Yoann Congal
2026-03-12 23:24 ` Yoann Congal [this message]
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=DH16WK99VETV.3SSCSO4EXHGY9@smile.fr \
--to=yoann.congal@smile.fr \
--cc=openembedded-core@lists.openembedded.org \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox