From: Steve Sakoman <steve@sakoman.com>
To: openembedded-core@lists.openembedded.org
Subject: [OE-core][walnascar 00/13] Patch review
Date: Wed, 16 Jul 2025 19:55:23 -0700 [thread overview]
Message-ID: <cover.1752720827.git.steve@sakoman.com> (raw)
Please review this set of changes for walnascar and have comments back by
end of day Friday, July 18
Passed a-full on autobuilder:
https://autobuilder.yoctoproject.org/valkyrie/?#/builders/29/builds/2030
The following changes since commit 4225c9abbc68e1a29a54927a9c8e1fe12208e5b4:
ltp: backport patch to fix compilation error for Skylake -march=x86-64-v3 (2025-07-11 09:55:25 -0700)
are available in the Git repository at:
https://git.openembedded.org/openembedded-core-contrib stable/walnascar-nut
https://git.openembedded.org/openembedded-core-contrib/log/?h=stable/walnascar-nut
Archana Polampalli (1):
gdk-pixbuf: fix CVE-2025-7345
Deepesh Varatharajan (3):
binutils: stable 2.44 branch updates
binutils: Fix CVE-2025-5245
binutils: Fix CVE-2025-7545
Divya Chellam (3):
libxml2: fix CVE-2025-6021
libxml2: Fix CVE-2025-49794 & CVE-2025-49796
libxml2: fix CVE-2025-49795
Jiaying Song (1):
ruby-ptest : some ptest fixes
Peter Marko (3):
busybox: apply patch for CVE-2023-39810
curl: ignore CVE-2025-4947 and CVE-2025-5025
iputils: patch CVE-2025-48964
Yash Shinde (1):
binutils: Fix CVE-2025-7546
Yi Zhao (1):
kea: set correct permissions for /var/run/kea
.../kea/files/kea-dhcp-ddns.service | 1 +
.../kea/files/kea-dhcp4.service | 1 +
.../kea/files/kea-dhcp6.service | 1 +
.../busybox/busybox/CVE-2023-39810.patch | 136 +++++++++++++
meta/recipes-core/busybox/busybox_1.37.0.bb | 1 +
.../CVE-2025-49794_CVE-2025-49796.patch | 189 ++++++++++++++++++
.../libxml/libxml2/CVE-2025-49795.patch | 75 +++++++
.../libxml/libxml2/CVE-2025-6021.patch | 59 ++++++
meta/recipes-core/libxml/libxml2_2.13.8.bb | 3 +
.../binutils/binutils-2.44.inc | 5 +-
.../binutils/0018-CVE-2025-5245.patch | 38 ++++
.../binutils/0018-CVE-2025-7546.patch | 58 ++++++
.../binutils/0019-CVE-2025-7545.patch | 39 ++++
..._rm_r_no_permissions-test-under-root.patch | 32 +++
meta/recipes-devtools/ruby/ruby/run-ptest | 2 +-
meta/recipes-devtools/ruby/ruby_3.4.4.bb | 5 +-
.../iputils/iputils/CVE-2025-48964.patch | 99 +++++++++
.../iputils/iputils_20240905.bb | 1 +
.../gdk-pixbuf/gdk-pixbuf/CVE-2025-7345.patch | 55 +++++
.../gdk-pixbuf/gdk-pixbuf_2.42.12.bb | 1 +
meta/recipes-support/curl/curl_8.12.1.bb | 2 +
21 files changed, 800 insertions(+), 3 deletions(-)
create mode 100644 meta/recipes-core/busybox/busybox/CVE-2023-39810.patch
create mode 100644 meta/recipes-core/libxml/libxml2/CVE-2025-49794_CVE-2025-49796.patch
create mode 100644 meta/recipes-core/libxml/libxml2/CVE-2025-49795.patch
create mode 100644 meta/recipes-core/libxml/libxml2/CVE-2025-6021.patch
create mode 100644 meta/recipes-devtools/binutils/binutils/0018-CVE-2025-5245.patch
create mode 100644 meta/recipes-devtools/binutils/binutils/0018-CVE-2025-7546.patch
create mode 100644 meta/recipes-devtools/binutils/binutils/0019-CVE-2025-7545.patch
create mode 100644 meta/recipes-devtools/ruby/ruby/0007-Skip-test_rm_r_no_permissions-test-under-root.patch
create mode 100644 meta/recipes-extended/iputils/iputils/CVE-2025-48964.patch
create mode 100644 meta/recipes-gnome/gdk-pixbuf/gdk-pixbuf/CVE-2025-7345.patch
--
2.43.0
next reply other threads:[~2025-07-17 2:55 UTC|newest]
Thread overview: 14+ messages / expand[flat|nested] mbox.gz Atom feed top
2025-07-17 2:55 Steve Sakoman [this message]
2025-07-17 2:55 ` [OE-core][walnascar 01/13] busybox: apply patch for CVE-2023-39810 Steve Sakoman
2025-07-17 2:55 ` [OE-core][walnascar 02/13] curl: ignore CVE-2025-4947 and CVE-2025-5025 Steve Sakoman
2025-07-17 2:55 ` [OE-core][walnascar 03/13] iputils: patch CVE-2025-48964 Steve Sakoman
2025-07-17 2:55 ` [OE-core][walnascar 04/13] gdk-pixbuf: fix CVE-2025-7345 Steve Sakoman
2025-07-17 2:55 ` [OE-core][walnascar 05/13] libxml2: fix CVE-2025-6021 Steve Sakoman
2025-07-17 2:55 ` [OE-core][walnascar 06/13] libxml2: Fix CVE-2025-49794 & CVE-2025-49796 Steve Sakoman
2025-07-17 2:55 ` [OE-core][walnascar 07/13] libxml2: fix CVE-2025-49795 Steve Sakoman
2025-07-17 2:55 ` [OE-core][walnascar 08/13] binutils: stable 2.44 branch updates Steve Sakoman
2025-07-17 2:55 ` [OE-core][walnascar 09/13] binutils: Fix CVE-2025-5245 Steve Sakoman
2025-07-17 2:55 ` [OE-core][walnascar 10/13] binutils: Fix CVE-2025-7545 Steve Sakoman
2025-07-17 2:55 ` [OE-core][walnascar 11/13] binutils: Fix CVE-2025-7546 Steve Sakoman
2025-07-17 2:55 ` [OE-core][walnascar 12/13] ruby-ptest : some ptest fixes Steve Sakoman
2025-07-17 2:55 ` [OE-core][walnascar 13/13] kea: set correct permissions for /var/run/kea Steve Sakoman
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=cover.1752720827.git.steve@sakoman.com \
--to=steve@sakoman.com \
--cc=openembedded-core@lists.openembedded.org \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox