From: Steve Sakoman <steve@sakoman.com>
To: openembedded-core@lists.openembedded.org
Subject: [OE-core][scarthgap 00/26] Patch review
Date: Fri, 17 Oct 2025 13:38:43 -0700 [thread overview]
Message-ID: <cover.1760733431.git.steve@sakoman.com> (raw)
Please review this set of changes for scarthgap and have comments back by
end of day Tuesday, October 21
Passed a-full on autobuilder:
https://autobuilder.yoctoproject.org/valkyrie/#/builders/29/builds/2608
The following changes since commit 7af6b75221d5703ba5bf43c7cd9f1e7a2e0ed20b:
build-appliance-image: Update to scarthgap head revision (2025-10-13 12:47:05 -0700)
are available in the Git repository at:
https://git.openembedded.org/openembedded-core-contrib stable/scarthgap-nut
https://git.openembedded.org/openembedded-core-contrib/log/?h=stable/scarthgap-nut
Bruce Ashfield (12):
linux-yocto/6.6: update to v6.6.98
linux-yocto/6.6: update to v6.6.99
linux-yocto/6.6: update to v6.6.100
linux-yocto/6.6: update to v6.6.101
linux-yocto/6.6: update to v6.6.102
linux-yocto/6.6: update to v6.6.103
linux-yocto/6.6: update to v6.6.106
linux-yocto/6.6: update to v6.6.107
linux-yocto/6.6: update to v6.6.108
linux-yocto/6.6: update to v6.6.109
linux-yocto/6.6: update to v6.6.110
linux-yocto/6.6: update to v6.6.111
Carlos Alberto Lopez Perez (1):
icu: Backport patch to fix build issues with long paths (>512 chars)
David Nyström (2):
openssh: fix CVE-2025-61985
openssh: fix CVE-2025-61984
Deepesh Varatharajan (1):
glibc: stable 2.39 branch updates
Michael Haener (1):
oeqa/runtime/ping: don't bother trying to ping localhost
Peter Marko (5):
qemu: patch CVE-2024-8354
binutils: patch CVE-2025-11082
binutils: patch CVE-2025-11083
gnupg: mark CVE-2025-30258 as patched
python3: upgrade 3.12.11 -> 3.12.12
Rajeshkumar Ramasamy (2):
glib-networking: fix CVE-2025-60018
glib-networking: fix CVE-2025-60019
Saravanan (2):
python3-xmltodict: fix CVE-2025-9375
cmake: fix CVE-2025-9301
meta/lib/oeqa/runtime/cases/ping.py | 7 +
.../openssh/openssh/CVE-2025-61984.patch | 125 ++++++++++
.../openssh/openssh/CVE-2025-61985.patch | 47 ++++
.../openssh/openssh_9.6p1.bb | 2 +
.../glib-networking/CVE-2025-60018.patch | 83 +++++++
.../glib-networking/CVE-2025-60019.patch | 147 ++++++++++++
.../glib-networking/glib-networking_2.78.1.bb | 2 +
meta/recipes-core/glibc/glibc-version.inc | 4 +-
.../binutils/binutils-2.42.inc | 2 +
.../binutils/0024-CVE-2025-11082.patch | 46 ++++
.../binutils/0025-CVE-2025-11083.patch | 77 ++++++
.../cmake/cmake/CVE-2025-9301.patch | 71 ++++++
meta/recipes-devtools/cmake/cmake_3.28.3.bb | 1 +
.../python3-xmltodict/CVE-2025-9375-1.patch | 111 +++++++++
.../python3-xmltodict/CVE-2025-9375-2.patch | 176 ++++++++++++++
.../python/python3-xmltodict_0.13.0.bb | 2 +
...e-treat-overflow-in-UID-GID-as-failu.patch | 2 +-
.../python/python3/CVE-2025-8194.patch | 219 ------------------
...{python3_3.12.11.bb => python3_3.12.12.bb} | 3 +-
meta/recipes-devtools/qemu/qemu.inc | 1 +
.../qemu/qemu/CVE-2024-8354.patch | 75 ++++++
.../linux/linux-yocto-rt_6.6.bb | 6 +-
.../linux/linux-yocto-tiny_6.6.bb | 6 +-
meta/recipes-kernel/linux/linux-yocto_6.6.bb | 28 +--
meta/recipes-support/gnupg/gnupg_2.4.8.bb | 1 +
...813_rise_buffer_sizes_pkgdata_PR3058.patch | 72 ++++++
meta/recipes-support/icu/icu_74-2.bb | 1 +
test | 0
28 files changed, 1073 insertions(+), 244 deletions(-)
create mode 100644 meta/recipes-connectivity/openssh/openssh/CVE-2025-61984.patch
create mode 100644 meta/recipes-connectivity/openssh/openssh/CVE-2025-61985.patch
create mode 100644 meta/recipes-core/glib-networking/glib-networking/CVE-2025-60018.patch
create mode 100644 meta/recipes-core/glib-networking/glib-networking/CVE-2025-60019.patch
create mode 100644 meta/recipes-devtools/binutils/binutils/0024-CVE-2025-11082.patch
create mode 100644 meta/recipes-devtools/binutils/binutils/0025-CVE-2025-11083.patch
create mode 100644 meta/recipes-devtools/cmake/cmake/CVE-2025-9301.patch
create mode 100644 meta/recipes-devtools/python/python3-xmltodict/CVE-2025-9375-1.patch
create mode 100644 meta/recipes-devtools/python/python3-xmltodict/CVE-2025-9375-2.patch
delete mode 100644 meta/recipes-devtools/python/python3/CVE-2025-8194.patch
rename meta/recipes-devtools/python/{python3_3.12.11.bb => python3_3.12.12.bb} (99%)
create mode 100644 meta/recipes-devtools/qemu/qemu/CVE-2024-8354.patch
create mode 100644 meta/recipes-support/icu/icu/ICU-22813_rise_buffer_sizes_pkgdata_PR3058.patch
create mode 100644 test
--
2.43.0
next reply other threads:[~2025-10-17 20:39 UTC|newest]
Thread overview: 27+ messages / expand[flat|nested] mbox.gz Atom feed top
2025-10-17 20:38 Steve Sakoman [this message]
2025-10-17 20:38 ` [OE-core][scarthgap 01/26] qemu: patch CVE-2024-8354 Steve Sakoman
2025-10-17 20:38 ` [OE-core][scarthgap 02/26] python3-xmltodict: fix CVE-2025-9375 Steve Sakoman
2025-10-17 20:38 ` [OE-core][scarthgap 03/26] binutils: patch CVE-2025-11082 Steve Sakoman
2025-10-17 20:38 ` [OE-core][scarthgap 04/26] binutils: patch CVE-2025-11083 Steve Sakoman
2025-10-17 20:38 ` [OE-core][scarthgap 05/26] gnupg: mark CVE-2025-30258 as patched Steve Sakoman
2025-10-17 20:38 ` [OE-core][scarthgap 06/26] glib-networking: fix CVE-2025-60018 Steve Sakoman
2025-10-17 20:38 ` [OE-core][scarthgap 07/26] openssh: fix CVE-2025-61985 Steve Sakoman
2025-10-17 20:38 ` [OE-core][scarthgap 08/26] openssh: fix CVE-2025-61984 Steve Sakoman
2025-10-17 20:38 ` [OE-core][scarthgap 09/26] cmake: fix CVE-2025-9301 Steve Sakoman
2025-10-17 20:38 ` [OE-core][scarthgap 10/26] glib-networking: fix CVE-2025-60019 Steve Sakoman
2025-10-17 20:38 ` [OE-core][scarthgap 11/26] glibc: stable 2.39 branch updates Steve Sakoman
2025-10-17 20:38 ` [OE-core][scarthgap 12/26] linux-yocto/6.6: update to v6.6.98 Steve Sakoman
2025-10-17 20:38 ` [OE-core][scarthgap 13/26] linux-yocto/6.6: update to v6.6.99 Steve Sakoman
2025-10-17 20:38 ` [OE-core][scarthgap 14/26] linux-yocto/6.6: update to v6.6.100 Steve Sakoman
2025-10-17 20:38 ` [OE-core][scarthgap 15/26] linux-yocto/6.6: update to v6.6.101 Steve Sakoman
2025-10-17 20:38 ` [OE-core][scarthgap 16/26] linux-yocto/6.6: update to v6.6.102 Steve Sakoman
2025-10-17 20:39 ` [OE-core][scarthgap 17/26] linux-yocto/6.6: update to v6.6.103 Steve Sakoman
2025-10-17 20:39 ` [OE-core][scarthgap 18/26] linux-yocto/6.6: update to v6.6.106 Steve Sakoman
2025-10-17 20:39 ` [OE-core][scarthgap 19/26] linux-yocto/6.6: update to v6.6.107 Steve Sakoman
2025-10-17 20:39 ` [OE-core][scarthgap 20/26] linux-yocto/6.6: update to v6.6.108 Steve Sakoman
2025-10-17 20:39 ` [OE-core][scarthgap 21/26] linux-yocto/6.6: update to v6.6.109 Steve Sakoman
2025-10-17 20:39 ` [OE-core][scarthgap 22/26] linux-yocto/6.6: update to v6.6.110 Steve Sakoman
2025-10-17 20:39 ` [OE-core][scarthgap 23/26] linux-yocto/6.6: update to v6.6.111 Steve Sakoman
2025-10-17 20:39 ` [OE-core][scarthgap 24/26] python3: upgrade 3.12.11 -> 3.12.12 Steve Sakoman
2025-10-17 20:39 ` [OE-core][scarthgap 25/26] icu: Backport patch to fix build issues with long paths (>512 chars) Steve Sakoman
2025-10-17 20:39 ` [OE-core][scarthgap 26/26] oeqa/runtime/ping: don't bother trying to ping localhost Steve Sakoman
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=cover.1760733431.git.steve@sakoman.com \
--to=steve@sakoman.com \
--cc=openembedded-core@lists.openembedded.org \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox