From: Steve Sakoman <steve@sakoman.com>
To: openembedded-core@lists.openembedded.org
Subject: [OE-core][kirkstone 00/27] Patch review
Date: Tue, 17 Jun 2025 14:19:57 -0700 [thread overview]
Message-ID: <cover.1750195103.git.steve@sakoman.com> (raw)
Please review this set of changes for kirkstone and have comments back by
end of day Thursday, June 19
Passed a-full on autobuilder:
https://autobuilder.yoctoproject.org/valkyrie/#/builders/29/builds/1828
The following changes since commit 350513959f6800eef6579153c2ae95960ca24ea7:
kernel.bbclass: add original package name to RPROVIDES for -image and -base (2025-06-09 08:44:59 -0700)
are available in the Git repository at:
https://git.openembedded.org/openembedded-core-contrib stable/kirkstone-nut
https://git.openembedded.org/openembedded-core-contrib/log/?h=stable/kirkstone-nut
Aditya Tayade (1):
e2fsprogs: removed 'sed -u' option
Aleksandar Nikolic (1):
scripts/install-buildtools: Update to 4.0.27
Colin Pinnell McAllister (1):
ffmpeg: fix CVE-2025-1373
Guocai He (1):
babeltrace/libatomic-ops: correct the SRC_URI
Jiaying Song (1):
python3-requests: fix CVE-2024-47081
Peter Marko (1):
net-tools: patch CVE-2025-46836
Poonam Jadhav (1):
libpng: Improve ptest
Sunil Dora (9):
Glibc: Fix for CVE-2025-4802
glibc: pthreads NPTL lost wakeup fix 2
glibc: nptl Update comments and indentation for new condvar
implementation
glibc: nptl Remove unnecessary catch-all-wake in condvar group switch
glibc: nptl Remove unnecessary quadruple check in pthread_cond_wait
glibc: nptl Use a single loop in pthread_cond_wait instaed of a nested
loop
glibc: nptl Fix indentation
glibc: nptl rename __condvar_quiesce_and_switch_g1
glibc: nptl Use all of g1_start and g_signals
Vijay Anusuri (9):
libsoup-2.4: Fix CVE-2025-2784
libsoup: Fix CVE-2025-2784
libsoup-2.4: Fix CVE-2025-32050
libsoup: Fix CVE-2025-32050
libsoup-2.4: Fix CVE-2025-32052
libsoup: Fix CVE-2025-32052
libsoup-2.4: Fix CVE-2025-32053
libsoup: Fix CVE-2025-32053
libsoup: Fix CVE-2025-46420
aszh07 (2):
ffmpeg: Add "libswresample libavcodec" to CVE_PRODUCT
xz: Update LICENSE variable for xz packages
.../distro/include/ptest-packagelists.inc | 2 +-
.../glibc/glibc/0025-CVE-2025-4802.patch | 249 ++++++++++
.../glibc/glibc/0026-PR25847-1.patch | 455 ++++++++++++++++++
.../glibc/glibc/0026-PR25847-2.patch | 144 ++++++
.../glibc/glibc/0026-PR25847-3.patch | 77 +++
.../glibc/glibc/0026-PR25847-4.patch | 117 +++++
.../glibc/glibc/0026-PR25847-5.patch | 105 ++++
.../glibc/glibc/0026-PR25847-6.patch | 169 +++++++
.../glibc/glibc/0026-PR25847-7.patch | 160 ++++++
.../glibc/glibc/0026-PR25847-8.patch | 192 ++++++++
meta/recipes-core/glibc/glibc_2.35.bb | 9 +
.../e2fsprogs/e2fsprogs/run-ptest | 3 +-
.../python3-requests/CVE-2024-47081.patch | 37 ++
.../python/python3-requests_2.27.1.bb | 1 +
.../net-tools/CVE-2025-46836-01.patch | 91 ++++
.../net-tools/CVE-2025-46836-02.patch | 31 ++
.../net-tools/net-tools_2.10.bb | 2 +
meta/recipes-extended/xz/xz_5.2.6.bb | 6 +-
.../recipes-kernel/lttng/babeltrace_1.5.11.bb | 2 +-
.../recipes-multimedia/ffmpeg/ffmpeg_5.0.3.bb | 7 +
.../recipes-multimedia/libpng/files/run-ptest | 26 +-
.../libpng/libpng_1.6.39.bb | 43 +-
.../libatomic-ops/libatomic-ops_7.6.14.bb | 4 +-
.../libsoup/libsoup-2.4/CVE-2025-2784-1.patch | 52 ++
.../libsoup/libsoup-2.4/CVE-2025-2784-2.patch | 135 ++++++
.../libsoup/libsoup-2.4/CVE-2025-32050.patch | 28 ++
.../libsoup/libsoup-2.4/CVE-2025-32052.patch | 30 ++
.../libsoup/libsoup-2.4/CVE-2025-32053.patch | 38 ++
.../libsoup/libsoup-2.4_2.74.2.bb | 5 +
.../libsoup/libsoup/CVE-2025-2784-1.patch | 73 +++
.../libsoup/libsoup/CVE-2025-2784-2.patch | 140 ++++++
.../libsoup/libsoup/CVE-2025-32050.patch | 28 ++
.../libsoup/libsoup/CVE-2025-32052.patch | 30 ++
.../libsoup/libsoup/CVE-2025-32053.patch | 38 ++
.../libsoup/libsoup/CVE-2025-46420.patch | 60 +++
meta/recipes-support/libsoup/libsoup_3.0.7.bb | 6 +
scripts/install-buildtools | 4 +-
37 files changed, 2557 insertions(+), 42 deletions(-)
create mode 100644 meta/recipes-core/glibc/glibc/0025-CVE-2025-4802.patch
create mode 100644 meta/recipes-core/glibc/glibc/0026-PR25847-1.patch
create mode 100644 meta/recipes-core/glibc/glibc/0026-PR25847-2.patch
create mode 100644 meta/recipes-core/glibc/glibc/0026-PR25847-3.patch
create mode 100644 meta/recipes-core/glibc/glibc/0026-PR25847-4.patch
create mode 100644 meta/recipes-core/glibc/glibc/0026-PR25847-5.patch
create mode 100644 meta/recipes-core/glibc/glibc/0026-PR25847-6.patch
create mode 100644 meta/recipes-core/glibc/glibc/0026-PR25847-7.patch
create mode 100644 meta/recipes-core/glibc/glibc/0026-PR25847-8.patch
create mode 100644 meta/recipes-devtools/python/python3-requests/CVE-2024-47081.patch
create mode 100644 meta/recipes-extended/net-tools/net-tools/CVE-2025-46836-01.patch
create mode 100644 meta/recipes-extended/net-tools/net-tools/CVE-2025-46836-02.patch
create mode 100644 meta/recipes-support/libsoup/libsoup-2.4/CVE-2025-2784-1.patch
create mode 100644 meta/recipes-support/libsoup/libsoup-2.4/CVE-2025-2784-2.patch
create mode 100644 meta/recipes-support/libsoup/libsoup-2.4/CVE-2025-32050.patch
create mode 100644 meta/recipes-support/libsoup/libsoup-2.4/CVE-2025-32052.patch
create mode 100644 meta/recipes-support/libsoup/libsoup-2.4/CVE-2025-32053.patch
create mode 100644 meta/recipes-support/libsoup/libsoup/CVE-2025-2784-1.patch
create mode 100644 meta/recipes-support/libsoup/libsoup/CVE-2025-2784-2.patch
create mode 100644 meta/recipes-support/libsoup/libsoup/CVE-2025-32050.patch
create mode 100644 meta/recipes-support/libsoup/libsoup/CVE-2025-32052.patch
create mode 100644 meta/recipes-support/libsoup/libsoup/CVE-2025-32053.patch
create mode 100644 meta/recipes-support/libsoup/libsoup/CVE-2025-46420.patch
--
2.43.0
next reply other threads:[~2025-06-17 21:20 UTC|newest]
Thread overview: 37+ messages / expand[flat|nested] mbox.gz Atom feed top
2025-06-17 21:19 Steve Sakoman [this message]
2025-06-17 21:19 ` [OE-core][kirkstone 01/27] Glibc: Fix for CVE-2025-4802 Steve Sakoman
2025-06-17 21:19 ` [OE-core][kirkstone 02/27] python3-requests: fix CVE-2024-47081 Steve Sakoman
2025-06-17 21:20 ` [OE-core][kirkstone 03/27] net-tools: patch CVE-2025-46836 Steve Sakoman
2025-06-17 21:20 ` [OE-core][kirkstone 04/27] libsoup-2.4: Fix CVE-2025-2784 Steve Sakoman
2025-06-17 21:20 ` [OE-core][kirkstone 05/27] libsoup: " Steve Sakoman
2025-06-17 21:20 ` [OE-core][kirkstone 06/27] libsoup-2.4: Fix CVE-2025-32050 Steve Sakoman
2025-06-17 21:20 ` [OE-core][kirkstone 07/27] libsoup: " Steve Sakoman
2025-06-17 21:20 ` [OE-core][kirkstone 08/27] libsoup-2.4: Fix CVE-2025-32052 Steve Sakoman
2025-06-17 21:20 ` [OE-core][kirkstone 09/27] libsoup: " Steve Sakoman
2025-06-17 21:20 ` [OE-core][kirkstone 10/27] libsoup-2.4: Fix CVE-2025-32053 Steve Sakoman
2025-06-17 21:20 ` [OE-core][kirkstone 11/27] libsoup: " Steve Sakoman
2025-06-17 21:20 ` [OE-core][kirkstone 12/27] libsoup: Fix CVE-2025-46420 Steve Sakoman
2025-06-17 21:20 ` [OE-core][kirkstone 13/27] ffmpeg: fix CVE-2025-1373 Steve Sakoman
2025-06-17 21:20 ` [OE-core][kirkstone 14/27] ffmpeg: Add "libswresample libavcodec" to CVE_PRODUCT Steve Sakoman
2025-06-17 21:20 ` [OE-core][kirkstone 15/27] scripts/install-buildtools: Update to 4.0.27 Steve Sakoman
2025-06-17 21:20 ` [OE-core][kirkstone 16/27] babeltrace/libatomic-ops: correct the SRC_URI Steve Sakoman
2025-06-17 21:20 ` [OE-core][kirkstone 17/27] libpng: Improve ptest Steve Sakoman
2025-06-17 21:20 ` [OE-core][kirkstone 18/27] xz: Update LICENSE variable for xz packages Steve Sakoman
2025-06-17 21:20 ` [OE-core][kirkstone 19/27] e2fsprogs: removed 'sed -u' option Steve Sakoman
2025-06-17 21:20 ` [OE-core][kirkstone 20/27] glibc: pthreads NPTL lost wakeup fix 2 Steve Sakoman
2025-06-17 21:20 ` [OE-core][kirkstone 21/27] glibc: nptl Update comments and indentation for new condvar implementation Steve Sakoman
2025-06-17 21:20 ` [OE-core][kirkstone 22/27] glibc: nptl Remove unnecessary catch-all-wake in condvar group switch Steve Sakoman
2025-06-17 21:20 ` [OE-core][kirkstone 23/27] glibc: nptl Remove unnecessary quadruple check in pthread_cond_wait Steve Sakoman
2025-06-17 21:20 ` [OE-core][kirkstone 24/27] glibc: nptl Use a single loop in pthread_cond_wait instaed of a nested loop Steve Sakoman
2025-06-17 21:20 ` [OE-core][kirkstone 25/27] glibc: nptl Fix indentation Steve Sakoman
2025-06-17 21:20 ` [OE-core][kirkstone 26/27] glibc: nptl rename __condvar_quiesce_and_switch_g1 Steve Sakoman
2025-06-17 21:20 ` [OE-core][kirkstone 27/27] glibc: nptl Use all of g1_start and g_signals Steve Sakoman
-- strict thread matches above, loose matches on Subject: below --
2023-07-18 14:25 [OE-core][kirkstone 00/27] Patch review Steve Sakoman
2023-02-12 21:10 Steve Sakoman
2022-07-14 4:35 Steve Sakoman
[not found] <16E7A00050A35F84.23874@lists.openembedded.org>
2022-04-20 14:53 ` Steve Sakoman
2022-04-20 15:05 ` Khem Raj
2022-04-21 5:14 ` Randy MacLeod
2022-04-21 14:00 ` Steve Sakoman
2022-04-21 14:27 ` Randy MacLeod
2022-04-20 14:07 Steve Sakoman
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=cover.1750195103.git.steve@sakoman.com \
--to=steve@sakoman.com \
--cc=openembedded-core@lists.openembedded.org \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox