* [OE-core][whinlatter 00/15] Pull request (cover letter only)
@ 2026-01-23 13:49 Yoann Congal
2026-01-23 14:25 ` Yoann Congal
0 siblings, 1 reply; 7+ messages in thread
From: Yoann Congal @ 2026-01-23 13:49 UTC (permalink / raw)
To: openembedded-core; +Cc: Paul Barker
Those are the patches from the last patch review:
https://lore.kernel.org/openembedded-core/cover.1768906687.git.yoann.congal@smile.fr/
Passed a-full on autobuilder:
https://autobuilder.yoctoproject.org/valkyrie/?#/builders/29/builds/3112
The "Send QA Email" step failed, that is a known AB-INT bug:
#15696 – AB_INT: resulttool: File exists
https://bugzilla.yoctoproject.org/show_bug.cgi?id=15696
The following changes since commit dd10706cfafb5574b7cf316fca2300d166ef71b0:
build-appliance-image: Update to whinlatter head revisions (2026-01-12 10:58:53 +0000)
are available in the Git repository at:
https://git.openembedded.org/openembedded-core-contrib stable/whinlatter-next
https://git.openembedded.org/openembedded-core-contrib/log/?h=stable/whinlatter-next
for you to fetch changes up to e7891f39ae90d1c23bfcb59af0064591513a671d:
libarchive: upgrade 3.8.4 -> 3.8.5 (2026-01-19 23:29:16 +0100)
----------------------------------------------------------------
Alexander Kanavin (3):
libpng: upgrade 1.6.52 -> 1.6.53
ffmpeg: add a (possible) build race fix
ffmpeg: fix a build race, hopefully for real this time
Paul Barker (1):
selftest: devtool: Set PATH when running pseudo
Peter Marko (9):
util-linux: patch CVE-2025-14104
gnupg: patch CVE-2025-68973
curl: patch CVE-2025-13034
curl: patch CVE-2025-14017
curl: patch CVE-2025-14524
curl: patch CVE-2025-14819
curl: patch CVE-2025-15079
curl: patch CVE-2025-15224
libarchive: upgrade 3.8.4 -> 3.8.5
Richard Purdie (2):
pseudo: Update to pull in openat2 and efault return code changes
pseudo: Update to pull in 'makewrappers: Fix EFAULT implementation'
meta/lib/oeqa/selftest/cases/devtool.py | 5 +-
meta/recipes-core/util-linux/util-linux.inc | 2 +
.../util-linux/CVE-2025-14104-01.patch | 33 +++++
.../util-linux/CVE-2025-14104-02.patch | 28 +++++
meta/recipes-devtools/pseudo/pseudo_git.bb | 2 +-
...ibarchive_3.8.4.bb => libarchive_3.8.5.bb} | 2 +-
...k-Consolidate-pattern-rules-for-comp.patch | 106 ++++++++++++++++
...s-Fix-double-build-by-disabling-.d-f.patch | 78 ++++++++++++
...ak-ensure-target-directories-are-cre.patch | 43 +++++++
meta/recipes-multimedia/ffmpeg/ffmpeg_8.0.bb | 6 +-
.../{libpng_1.6.52.bb => libpng_1.6.53.bb} | 2 +-
.../curl/curl/CVE-2025-13034.patch | 37 ++++++
.../curl/curl/CVE-2025-14017.patch | 116 ++++++++++++++++++
.../curl/curl/CVE-2025-14524.patch | 40 ++++++
.../curl/curl/CVE-2025-14819.patch | 73 +++++++++++
.../curl/curl/CVE-2025-15079.patch | 32 +++++
.../curl/curl/CVE-2025-15224.patch | 31 +++++
meta/recipes-support/curl/curl_8.17.0.bb | 6 +
.../gnupg/gnupg/CVE-2025-68973.patch | 108 ++++++++++++++++
meta/recipes-support/gnupg/gnupg_2.5.11.bb | 1 +
20 files changed, 745 insertions(+), 6 deletions(-)
create mode 100644 meta/recipes-core/util-linux/util-linux/CVE-2025-14104-01.patch
create mode 100644 meta/recipes-core/util-linux/util-linux/CVE-2025-14104-02.patch
rename meta/recipes-extended/libarchive/{libarchive_3.8.4.bb => libarchive_3.8.5.bb} (96%)
create mode 100644 meta/recipes-multimedia/ffmpeg/ffmpeg/0001-ffbuild-commonmak-Consolidate-pattern-rules-for-comp.patch
create mode 100644 meta/recipes-multimedia/ffmpeg/ffmpeg/0001-fftools-resources-Fix-double-build-by-disabling-.d-f.patch
create mode 100644 meta/recipes-multimedia/ffmpeg/ffmpeg/0002-ffbuild-common.mak-ensure-target-directories-are-cre.patch
rename meta/recipes-multimedia/libpng/{libpng_1.6.52.bb => libpng_1.6.53.bb} (97%)
create mode 100644 meta/recipes-support/curl/curl/CVE-2025-13034.patch
create mode 100644 meta/recipes-support/curl/curl/CVE-2025-14017.patch
create mode 100644 meta/recipes-support/curl/curl/CVE-2025-14524.patch
create mode 100644 meta/recipes-support/curl/curl/CVE-2025-14819.patch
create mode 100644 meta/recipes-support/curl/curl/CVE-2025-15079.patch
create mode 100644 meta/recipes-support/curl/curl/CVE-2025-15224.patch
create mode 100644 meta/recipes-support/gnupg/gnupg/CVE-2025-68973.patch
^ permalink raw reply [flat|nested] 7+ messages in thread
* Re: [OE-core][whinlatter 00/15] Pull request (cover letter only)
2026-01-23 13:49 Yoann Congal
@ 2026-01-23 14:25 ` Yoann Congal
2026-01-23 16:31 ` Yoann Congal
0 siblings, 1 reply; 7+ messages in thread
From: Yoann Congal @ 2026-01-23 14:25 UTC (permalink / raw)
To: openembedded-core; +Cc: Paul Barker
[-- Attachment #1: Type: text/plain, Size: 4610 bytes --]
Le ven. 23 janv. 2026 à 14:50, Yoann Congal <yoann.congal@smile.fr> a
écrit :
> Those are the patches from the last patch review:
>
> https://lore.kernel.org/openembedded-core/cover.1768906687.git.yoann.congal@smile.fr/
>
> Passed a-full on autobuilder:
> https://autobuilder.yoctoproject.org/valkyrie/?#/builders/29/builds/3112
> The "Send QA Email" step failed, that is a known AB-INT bug:
> #15696 – AB_INT: resulttool: File exists
> https://bugzilla.yoctoproject.org/show_bug.cgi?id=15696
>
> The following changes since commit
> dd10706cfafb5574b7cf316fca2300d166ef71b0:
>
> build-appliance-image: Update to whinlatter head revisions (2026-01-12
> 10:58:53 +0000)
>
> are available in the Git repository at:
>
> https://git.openembedded.org/openembedded-core-contrib
> stable/whinlatter-next
>
> https://git.openembedded.org/openembedded-core-contrib/log/?h=stable/whinlatter-next
>
> for you to fetch changes up to e7891f39ae90d1c23bfcb59af0064591513a671d:
>
> libarchive: upgrade 3.8.4 -> 3.8.5 (2026-01-19 23:29:16 +0100)
>
> ----------------------------------------------------------------
>
> Alexander Kanavin (3):
> libpng: upgrade 1.6.52 -> 1.6.53
>
I forgot to add the cherry-pick reference to this commit. I'll add it now.
> ffmpeg: add a (possible) build race fix
> ffmpeg: fix a build race, hopefully for real this time
>
> Paul Barker (1):
> selftest: devtool: Set PATH when running pseudo
>
> Peter Marko (9):
> util-linux: patch CVE-2025-14104
> gnupg: patch CVE-2025-68973
> curl: patch CVE-2025-13034
> curl: patch CVE-2025-14017
> curl: patch CVE-2025-14524
> curl: patch CVE-2025-14819
> curl: patch CVE-2025-15079
> curl: patch CVE-2025-15224
> libarchive: upgrade 3.8.4 -> 3.8.5
>
> Richard Purdie (2):
> pseudo: Update to pull in openat2 and efault return code changes
> pseudo: Update to pull in 'makewrappers: Fix EFAULT implementation'
>
> meta/lib/oeqa/selftest/cases/devtool.py | 5 +-
> meta/recipes-core/util-linux/util-linux.inc | 2 +
> .../util-linux/CVE-2025-14104-01.patch | 33 +++++
> .../util-linux/CVE-2025-14104-02.patch | 28 +++++
> meta/recipes-devtools/pseudo/pseudo_git.bb | 2 +-
> ...ibarchive_3.8.4.bb => libarchive_3.8.5.bb} | 2 +-
> ...k-Consolidate-pattern-rules-for-comp.patch | 106 ++++++++++++++++
> ...s-Fix-double-build-by-disabling-.d-f.patch | 78 ++++++++++++
> ...ak-ensure-target-directories-are-cre.patch | 43 +++++++
> meta/recipes-multimedia/ffmpeg/ffmpeg_8.0.bb | 6 +-
> .../{libpng_1.6.52.bb => libpng_1.6.53.bb} | 2 +-
> .../curl/curl/CVE-2025-13034.patch | 37 ++++++
> .../curl/curl/CVE-2025-14017.patch | 116 ++++++++++++++++++
> .../curl/curl/CVE-2025-14524.patch | 40 ++++++
> .../curl/curl/CVE-2025-14819.patch | 73 +++++++++++
> .../curl/curl/CVE-2025-15079.patch | 32 +++++
> .../curl/curl/CVE-2025-15224.patch | 31 +++++
> meta/recipes-support/curl/curl_8.17.0.bb | 6 +
> .../gnupg/gnupg/CVE-2025-68973.patch | 108 ++++++++++++++++
> meta/recipes-support/gnupg/gnupg_2.5.11.bb | 1 +
> 20 files changed, 745 insertions(+), 6 deletions(-)
> create mode 100644
> meta/recipes-core/util-linux/util-linux/CVE-2025-14104-01.patch
> create mode 100644
> meta/recipes-core/util-linux/util-linux/CVE-2025-14104-02.patch
> rename meta/recipes-extended/libarchive/{libarchive_3.8.4.bb =>
> libarchive_3.8.5.bb} (96%)
> create mode 100644
> meta/recipes-multimedia/ffmpeg/ffmpeg/0001-ffbuild-commonmak-Consolidate-pattern-rules-for-comp.patch
> create mode 100644
> meta/recipes-multimedia/ffmpeg/ffmpeg/0001-fftools-resources-Fix-double-build-by-disabling-.d-f.patch
> create mode 100644
> meta/recipes-multimedia/ffmpeg/ffmpeg/0002-ffbuild-common.mak-ensure-target-directories-are-cre.patch
> rename meta/recipes-multimedia/libpng/{libpng_1.6.52.bb =>
> libpng_1.6.53.bb} (97%)
> create mode 100644 meta/recipes-support/curl/curl/CVE-2025-13034.patch
> create mode 100644 meta/recipes-support/curl/curl/CVE-2025-14017.patch
> create mode 100644 meta/recipes-support/curl/curl/CVE-2025-14524.patch
> create mode 100644 meta/recipes-support/curl/curl/CVE-2025-14819.patch
> create mode 100644 meta/recipes-support/curl/curl/CVE-2025-15079.patch
> create mode 100644 meta/recipes-support/curl/curl/CVE-2025-15224.patch
> create mode 100644 meta/recipes-support/gnupg/gnupg/CVE-2025-68973.patch
>
>
--
Yoann Congal
Smile ECS
[-- Attachment #2: Type: text/html, Size: 7100 bytes --]
^ permalink raw reply [flat|nested] 7+ messages in thread
* Re: [OE-core][whinlatter 00/15] Pull request (cover letter only)
2026-01-23 14:25 ` Yoann Congal
@ 2026-01-23 16:31 ` Yoann Congal
2026-01-23 18:21 ` Yoann Congal
0 siblings, 1 reply; 7+ messages in thread
From: Yoann Congal @ 2026-01-23 16:31 UTC (permalink / raw)
To: openembedded-core; +Cc: Paul Barker
[-- Attachment #1: Type: text/plain, Size: 5349 bytes --]
Le ven. 23 janv. 2026 à 15:25, Yoann Congal <yoann.congal@smile.fr> a
écrit :
>
>
> Le ven. 23 janv. 2026 à 14:50, Yoann Congal <yoann.congal@smile.fr> a
> écrit :
>
>> Those are the patches from the last patch review:
>>
>> https://lore.kernel.org/openembedded-core/cover.1768906687.git.yoann.congal@smile.fr/
>>
>> Passed a-full on autobuilder:
>> https://autobuilder.yoctoproject.org/valkyrie/?#/builders/29/builds/3112
>> The "Send QA Email" step failed, that is a known AB-INT bug:
>> #15696 – AB_INT: resulttool: File exists
>> https://bugzilla.yoctoproject.org/show_bug.cgi?id=15696
>>
>> The following changes since commit
>> dd10706cfafb5574b7cf316fca2300d166ef71b0:
>>
>> build-appliance-image: Update to whinlatter head revisions (2026-01-12
>> 10:58:53 +0000)
>>
>> are available in the Git repository at:
>>
>> https://git.openembedded.org/openembedded-core-contrib
>> stable/whinlatter-next
>>
>> https://git.openembedded.org/openembedded-core-contrib/log/?h=stable/whinlatter-next
>>
>> for you to fetch changes up to e7891f39ae90d1c23bfcb59af0064591513a671d:
>>
>> libarchive: upgrade 3.8.4 -> 3.8.5 (2026-01-19 23:29:16 +0100)
>>
>> ----------------------------------------------------------------
>>
>> Alexander Kanavin (3):
>> libpng: upgrade 1.6.52 -> 1.6.53
>>
>
> I forgot to add the cherry-pick reference to this commit. I'll add it now.
>
I've added it to the stable/whinlatter-nut & stable/whinlatter-next branch
which is at
https://git.openembedded.org/openembedded-core-contrib/commit/?h=stable/whinlatter-next&id=b4e7819b99d9c1a8995eba87e6f466fd8c77e14a
I verified that there is no diff in the code between the 2 branches and
started a rebuild:
https://autobuilder.yoctoproject.org/valkyrie/?#/builders/29/builds/3117
I'll send a proper PR with this new branch once the build has finished.
Sorry for the noise :(
>
>
>> ffmpeg: add a (possible) build race fix
>> ffmpeg: fix a build race, hopefully for real this time
>>
>> Paul Barker (1):
>> selftest: devtool: Set PATH when running pseudo
>>
>> Peter Marko (9):
>> util-linux: patch CVE-2025-14104
>> gnupg: patch CVE-2025-68973
>> curl: patch CVE-2025-13034
>> curl: patch CVE-2025-14017
>> curl: patch CVE-2025-14524
>> curl: patch CVE-2025-14819
>> curl: patch CVE-2025-15079
>> curl: patch CVE-2025-15224
>> libarchive: upgrade 3.8.4 -> 3.8.5
>>
>> Richard Purdie (2):
>> pseudo: Update to pull in openat2 and efault return code changes
>> pseudo: Update to pull in 'makewrappers: Fix EFAULT implementation'
>>
>> meta/lib/oeqa/selftest/cases/devtool.py | 5 +-
>> meta/recipes-core/util-linux/util-linux.inc | 2 +
>> .../util-linux/CVE-2025-14104-01.patch | 33 +++++
>> .../util-linux/CVE-2025-14104-02.patch | 28 +++++
>> meta/recipes-devtools/pseudo/pseudo_git.bb | 2 +-
>> ...ibarchive_3.8.4.bb => libarchive_3.8.5.bb} | 2 +-
>> ...k-Consolidate-pattern-rules-for-comp.patch | 106 ++++++++++++++++
>> ...s-Fix-double-build-by-disabling-.d-f.patch | 78 ++++++++++++
>> ...ak-ensure-target-directories-are-cre.patch | 43 +++++++
>> meta/recipes-multimedia/ffmpeg/ffmpeg_8.0.bb | 6 +-
>> .../{libpng_1.6.52.bb => libpng_1.6.53.bb} | 2 +-
>> .../curl/curl/CVE-2025-13034.patch | 37 ++++++
>> .../curl/curl/CVE-2025-14017.patch | 116 ++++++++++++++++++
>> .../curl/curl/CVE-2025-14524.patch | 40 ++++++
>> .../curl/curl/CVE-2025-14819.patch | 73 +++++++++++
>> .../curl/curl/CVE-2025-15079.patch | 32 +++++
>> .../curl/curl/CVE-2025-15224.patch | 31 +++++
>> meta/recipes-support/curl/curl_8.17.0.bb | 6 +
>> .../gnupg/gnupg/CVE-2025-68973.patch | 108 ++++++++++++++++
>> meta/recipes-support/gnupg/gnupg_2.5.11.bb | 1 +
>> 20 files changed, 745 insertions(+), 6 deletions(-)
>> create mode 100644
>> meta/recipes-core/util-linux/util-linux/CVE-2025-14104-01.patch
>> create mode 100644
>> meta/recipes-core/util-linux/util-linux/CVE-2025-14104-02.patch
>> rename meta/recipes-extended/libarchive/{libarchive_3.8.4.bb =>
>> libarchive_3.8.5.bb} (96%)
>> create mode 100644
>> meta/recipes-multimedia/ffmpeg/ffmpeg/0001-ffbuild-commonmak-Consolidate-pattern-rules-for-comp.patch
>> create mode 100644
>> meta/recipes-multimedia/ffmpeg/ffmpeg/0001-fftools-resources-Fix-double-build-by-disabling-.d-f.patch
>> create mode 100644
>> meta/recipes-multimedia/ffmpeg/ffmpeg/0002-ffbuild-common.mak-ensure-target-directories-are-cre.patch
>> rename meta/recipes-multimedia/libpng/{libpng_1.6.52.bb =>
>> libpng_1.6.53.bb} (97%)
>> create mode 100644 meta/recipes-support/curl/curl/CVE-2025-13034.patch
>> create mode 100644 meta/recipes-support/curl/curl/CVE-2025-14017.patch
>> create mode 100644 meta/recipes-support/curl/curl/CVE-2025-14524.patch
>> create mode 100644 meta/recipes-support/curl/curl/CVE-2025-14819.patch
>> create mode 100644 meta/recipes-support/curl/curl/CVE-2025-15079.patch
>> create mode 100644 meta/recipes-support/curl/curl/CVE-2025-15224.patch
>> create mode 100644 meta/recipes-support/gnupg/gnupg/CVE-2025-68973.patch
>>
>>
>
> --
> Yoann Congal
> Smile ECS
>
--
Yoann Congal
Smile ECS
[-- Attachment #2: Type: text/html, Size: 8782 bytes --]
^ permalink raw reply [flat|nested] 7+ messages in thread
* [OE-core][whinlatter 00/15] Pull request (cover letter only)
@ 2026-01-23 18:20 Yoann Congal
0 siblings, 0 replies; 7+ messages in thread
From: Yoann Congal @ 2026-01-23 18:20 UTC (permalink / raw)
To: openembedded-core; +Cc: Paul Barker
Those are the patches from the last patch review:
https://lore.kernel.org/openembedded-core/cover.1768906687.git.yoann.congal@smile.fr/
... with cherry-pick reference added to "libpng: upgrade 1.6.52 -> 1.6.53"
Passed a-full on autobuilder:
https://autobuilder.yoctoproject.org/valkyrie/?#/builders/29/builds/3117
The following changes since commit dd10706cfafb5574b7cf316fca2300d166ef71b0:
build-appliance-image: Update to whinlatter head revisions (2026-01-12 10:58:53 +0000)
are available in the Git repository at:
https://git.openembedded.org/openembedded-core-contrib stable/whinlatter-next
https://git.openembedded.org/openembedded-core-contrib/log/?h=stable/whinlatter-next
for you to fetch changes up to b4e7819b99d9c1a8995eba87e6f466fd8c77e14a:
libarchive: upgrade 3.8.4 -> 3.8.5 (2026-01-23 15:27:32 +0100)
----------------------------------------------------------------
Alexander Kanavin (3):
libpng: upgrade 1.6.52 -> 1.6.53
ffmpeg: add a (possible) build race fix
ffmpeg: fix a build race, hopefully for real this time
Paul Barker (1):
selftest: devtool: Set PATH when running pseudo
Peter Marko (9):
util-linux: patch CVE-2025-14104
gnupg: patch CVE-2025-68973
curl: patch CVE-2025-13034
curl: patch CVE-2025-14017
curl: patch CVE-2025-14524
curl: patch CVE-2025-14819
curl: patch CVE-2025-15079
curl: patch CVE-2025-15224
libarchive: upgrade 3.8.4 -> 3.8.5
Richard Purdie (2):
pseudo: Update to pull in openat2 and efault return code changes
pseudo: Update to pull in 'makewrappers: Fix EFAULT implementation'
meta/lib/oeqa/selftest/cases/devtool.py | 5 +-
meta/recipes-core/util-linux/util-linux.inc | 2 +
.../util-linux/CVE-2025-14104-01.patch | 33 +++++
.../util-linux/CVE-2025-14104-02.patch | 28 +++++
meta/recipes-devtools/pseudo/pseudo_git.bb | 2 +-
...ibarchive_3.8.4.bb => libarchive_3.8.5.bb} | 2 +-
...k-Consolidate-pattern-rules-for-comp.patch | 106 ++++++++++++++++
...s-Fix-double-build-by-disabling-.d-f.patch | 78 ++++++++++++
...ak-ensure-target-directories-are-cre.patch | 43 +++++++
meta/recipes-multimedia/ffmpeg/ffmpeg_8.0.bb | 6 +-
.../{libpng_1.6.52.bb => libpng_1.6.53.bb} | 2 +-
.../curl/curl/CVE-2025-13034.patch | 37 ++++++
.../curl/curl/CVE-2025-14017.patch | 116 ++++++++++++++++++
.../curl/curl/CVE-2025-14524.patch | 40 ++++++
.../curl/curl/CVE-2025-14819.patch | 73 +++++++++++
.../curl/curl/CVE-2025-15079.patch | 32 +++++
.../curl/curl/CVE-2025-15224.patch | 31 +++++
meta/recipes-support/curl/curl_8.17.0.bb | 6 +
.../gnupg/gnupg/CVE-2025-68973.patch | 108 ++++++++++++++++
meta/recipes-support/gnupg/gnupg_2.5.11.bb | 1 +
20 files changed, 745 insertions(+), 6 deletions(-)
create mode 100644 meta/recipes-core/util-linux/util-linux/CVE-2025-14104-01.patch
create mode 100644 meta/recipes-core/util-linux/util-linux/CVE-2025-14104-02.patch
rename meta/recipes-extended/libarchive/{libarchive_3.8.4.bb => libarchive_3.8.5.bb} (96%)
create mode 100644 meta/recipes-multimedia/ffmpeg/ffmpeg/0001-ffbuild-commonmak-Consolidate-pattern-rules-for-comp.patch
create mode 100644 meta/recipes-multimedia/ffmpeg/ffmpeg/0001-fftools-resources-Fix-double-build-by-disabling-.d-f.patch
create mode 100644 meta/recipes-multimedia/ffmpeg/ffmpeg/0002-ffbuild-common.mak-ensure-target-directories-are-cre.patch
rename meta/recipes-multimedia/libpng/{libpng_1.6.52.bb => libpng_1.6.53.bb} (97%)
create mode 100644 meta/recipes-support/curl/curl/CVE-2025-13034.patch
create mode 100644 meta/recipes-support/curl/curl/CVE-2025-14017.patch
create mode 100644 meta/recipes-support/curl/curl/CVE-2025-14524.patch
create mode 100644 meta/recipes-support/curl/curl/CVE-2025-14819.patch
create mode 100644 meta/recipes-support/curl/curl/CVE-2025-15079.patch
create mode 100644 meta/recipes-support/curl/curl/CVE-2025-15224.patch
create mode 100644 meta/recipes-support/gnupg/gnupg/CVE-2025-68973.patch
^ permalink raw reply [flat|nested] 7+ messages in thread
* Re: [OE-core][whinlatter 00/15] Pull request (cover letter only)
2026-01-23 16:31 ` Yoann Congal
@ 2026-01-23 18:21 ` Yoann Congal
0 siblings, 0 replies; 7+ messages in thread
From: Yoann Congal @ 2026-01-23 18:21 UTC (permalink / raw)
To: openembedded-core; +Cc: Paul Barker
[-- Attachment #1: Type: text/plain, Size: 5723 bytes --]
Le ven. 23 janv. 2026 à 17:31, Yoann Congal <yoann.congal@smile.fr> a
écrit :
>
>
> Le ven. 23 janv. 2026 à 15:25, Yoann Congal <yoann.congal@smile.fr> a
> écrit :
>
>>
>>
>> Le ven. 23 janv. 2026 à 14:50, Yoann Congal <yoann.congal@smile.fr> a
>> écrit :
>>
>>> Those are the patches from the last patch review:
>>>
>>> https://lore.kernel.org/openembedded-core/cover.1768906687.git.yoann.congal@smile.fr/
>>>
>>> Passed a-full on autobuilder:
>>> https://autobuilder.yoctoproject.org/valkyrie/?#/builders/29/builds/3112
>>> The "Send QA Email" step failed, that is a known AB-INT bug:
>>> #15696 – AB_INT: resulttool: File exists
>>> https://bugzilla.yoctoproject.org/show_bug.cgi?id=15696
>>>
>>> The following changes since commit
>>> dd10706cfafb5574b7cf316fca2300d166ef71b0:
>>>
>>> build-appliance-image: Update to whinlatter head revisions (2026-01-12
>>> 10:58:53 +0000)
>>>
>>> are available in the Git repository at:
>>>
>>> https://git.openembedded.org/openembedded-core-contrib
>>> stable/whinlatter-next
>>>
>>> https://git.openembedded.org/openembedded-core-contrib/log/?h=stable/whinlatter-next
>>>
>>> for you to fetch changes up to e7891f39ae90d1c23bfcb59af0064591513a671d:
>>>
>>> libarchive: upgrade 3.8.4 -> 3.8.5 (2026-01-19 23:29:16 +0100)
>>>
>>> ----------------------------------------------------------------
>>>
>>> Alexander Kanavin (3):
>>> libpng: upgrade 1.6.52 -> 1.6.53
>>>
>>
>> I forgot to add the cherry-pick reference to this commit. I'll add it
>> now.
>>
>
> I've added it to the stable/whinlatter-nut & stable/whinlatter-next branch
> which is at
>
> https://git.openembedded.org/openembedded-core-contrib/commit/?h=stable/whinlatter-next&id=b4e7819b99d9c1a8995eba87e6f466fd8c77e14a
> I verified that there is no diff in the code between the 2 branches and
> started a rebuild:
> https://autobuilder.yoctoproject.org/valkyrie/?#/builders/29/builds/3117
>
> I'll send a proper PR with this new branch once the build has finished.
>
The new PR is at:
https://lists.openembedded.org/g/openembedded-core/message/229913
>
> Sorry for the noise :(
>
>
>>
>>
>>> ffmpeg: add a (possible) build race fix
>>> ffmpeg: fix a build race, hopefully for real this time
>>>
>>> Paul Barker (1):
>>> selftest: devtool: Set PATH when running pseudo
>>>
>>> Peter Marko (9):
>>> util-linux: patch CVE-2025-14104
>>> gnupg: patch CVE-2025-68973
>>> curl: patch CVE-2025-13034
>>> curl: patch CVE-2025-14017
>>> curl: patch CVE-2025-14524
>>> curl: patch CVE-2025-14819
>>> curl: patch CVE-2025-15079
>>> curl: patch CVE-2025-15224
>>> libarchive: upgrade 3.8.4 -> 3.8.5
>>>
>>> Richard Purdie (2):
>>> pseudo: Update to pull in openat2 and efault return code changes
>>> pseudo: Update to pull in 'makewrappers: Fix EFAULT implementation'
>>>
>>> meta/lib/oeqa/selftest/cases/devtool.py | 5 +-
>>> meta/recipes-core/util-linux/util-linux.inc | 2 +
>>> .../util-linux/CVE-2025-14104-01.patch | 33 +++++
>>> .../util-linux/CVE-2025-14104-02.patch | 28 +++++
>>> meta/recipes-devtools/pseudo/pseudo_git.bb | 2 +-
>>> ...ibarchive_3.8.4.bb => libarchive_3.8.5.bb} | 2 +-
>>> ...k-Consolidate-pattern-rules-for-comp.patch | 106 ++++++++++++++++
>>> ...s-Fix-double-build-by-disabling-.d-f.patch | 78 ++++++++++++
>>> ...ak-ensure-target-directories-are-cre.patch | 43 +++++++
>>> meta/recipes-multimedia/ffmpeg/ffmpeg_8.0.bb | 6 +-
>>> .../{libpng_1.6.52.bb => libpng_1.6.53.bb} | 2 +-
>>> .../curl/curl/CVE-2025-13034.patch | 37 ++++++
>>> .../curl/curl/CVE-2025-14017.patch | 116 ++++++++++++++++++
>>> .../curl/curl/CVE-2025-14524.patch | 40 ++++++
>>> .../curl/curl/CVE-2025-14819.patch | 73 +++++++++++
>>> .../curl/curl/CVE-2025-15079.patch | 32 +++++
>>> .../curl/curl/CVE-2025-15224.patch | 31 +++++
>>> meta/recipes-support/curl/curl_8.17.0.bb | 6 +
>>> .../gnupg/gnupg/CVE-2025-68973.patch | 108 ++++++++++++++++
>>> meta/recipes-support/gnupg/gnupg_2.5.11.bb | 1 +
>>> 20 files changed, 745 insertions(+), 6 deletions(-)
>>> create mode 100644
>>> meta/recipes-core/util-linux/util-linux/CVE-2025-14104-01.patch
>>> create mode 100644
>>> meta/recipes-core/util-linux/util-linux/CVE-2025-14104-02.patch
>>> rename meta/recipes-extended/libarchive/{libarchive_3.8.4.bb =>
>>> libarchive_3.8.5.bb} (96%)
>>> create mode 100644
>>> meta/recipes-multimedia/ffmpeg/ffmpeg/0001-ffbuild-commonmak-Consolidate-pattern-rules-for-comp.patch
>>> create mode 100644
>>> meta/recipes-multimedia/ffmpeg/ffmpeg/0001-fftools-resources-Fix-double-build-by-disabling-.d-f.patch
>>> create mode 100644
>>> meta/recipes-multimedia/ffmpeg/ffmpeg/0002-ffbuild-common.mak-ensure-target-directories-are-cre.patch
>>> rename meta/recipes-multimedia/libpng/{libpng_1.6.52.bb =>
>>> libpng_1.6.53.bb} (97%)
>>> create mode 100644 meta/recipes-support/curl/curl/CVE-2025-13034.patch
>>> create mode 100644 meta/recipes-support/curl/curl/CVE-2025-14017.patch
>>> create mode 100644 meta/recipes-support/curl/curl/CVE-2025-14524.patch
>>> create mode 100644 meta/recipes-support/curl/curl/CVE-2025-14819.patch
>>> create mode 100644 meta/recipes-support/curl/curl/CVE-2025-15079.patch
>>> create mode 100644 meta/recipes-support/curl/curl/CVE-2025-15224.patch
>>> create mode 100644 meta/recipes-support/gnupg/gnupg/CVE-2025-68973.patch
>>>
>>>
>>
>> --
>> Yoann Congal
>> Smile ECS
>>
>
>
> --
> Yoann Congal
> Smile ECS
>
--
Yoann Congal
Smile ECS
[-- Attachment #2: Type: text/html, Size: 9865 bytes --]
^ permalink raw reply [flat|nested] 7+ messages in thread
* [OE-core][whinlatter 00/15] Pull request (cover letter only)
@ 2026-04-09 8:45 Yoann Congal
2026-04-10 8:47 ` Paul Barker
0 siblings, 1 reply; 7+ messages in thread
From: Yoann Congal @ 2026-04-09 8:45 UTC (permalink / raw)
To: openembedded-core; +Cc: Paul Barker
Those are the patches from the last patch review (no changes):
https://lore.kernel.org/openembedded-core/cover.1775106968.git.yoann.congal@smile.fr/T/#t
Passed a-full on autobuilder:
https://autobuilder.yoctoproject.org/valkyrie/?#/builders/29/builds/3571
The following changes since commit f74c948779850a9759d8b24bb83bb661ff85def4:
curl: patch CVE-2026-3805 (2026-03-25 08:17:01 +0000)
are available in the Git repository at:
https://git.openembedded.org/openembedded-core-contrib stable/whinlatter-next
https://git.openembedded.org/openembedded-core-contrib/log/?h=stable/whinlatter-next
for you to fetch changes up to e8a3acb03d4c466cd08e358953df15746cb5aaca:
vim: Fix CVE-2026-26269 (2026-04-02 00:08:06 +0200)
----------------------------------------------------------------
Andrej Kozemcak (1):
ca-certificates: upgrade 20250419 -> 20260223
Anil Dongare (2):
vim: Fix CVE-2026-25749
vim: Fix CVE-2026-26269
Changqing Li (1):
libsoup: fix CVE-2025-32049/CVE-2026-1539
Deepak Rathore (3):
expat: Fix CVE-2026-32776
expat: Fix CVE-2026-32777
expat: Fix CVE-2026-32778
Jinfeng Wang (1):
tzdata/tzcode-native: upgrade 2025c -> 2026a
Logan Gallois (1):
oe-setup-build: TEMPLATECONF were not applied correctly
Paul Barker (1):
tzdata,tzcode-native: Upgrade 2025b -> 2025c
Vijay Anusuri (2):
python3-pyopenssl: Fix CVE-2026-27448
python3-pyopenssl: Fix CVE-2026-27459
Wang Mingyu (3):
ccache: upgrade 4.12.2 -> 4.12.3
libsoup: upgrade 3.6.5 -> 3.6.6
libxmlb: upgrade 0.3.24 -> 0.3.25
.../expat/expat/CVE-2026-32776.patch | 90 ++++++
.../expat/expat/CVE-2026-32777_p1.patch | 48 +++
.../expat/expat/CVE-2026-32777_p2.patch | 65 ++++
.../expat/expat/CVE-2026-32778_p1.patch | 90 ++++++
.../expat/expat/CVE-2026-32778_p2.patch | 59 ++++
meta/recipes-core/expat/expat_2.7.4.bb | 5 +
.../{ccache_4.12.2.bb => ccache_4.12.3.bb} | 4 +-
.../python3-pyopenssl/CVE-2026-27448.patch | 125 ++++++++
.../python3-pyopenssl/CVE-2026-27459.patch | 109 +++++++
.../python/python3-pyopenssl_25.1.0.bb | 5 +
meta/recipes-extended/timezone/timezone.inc | 6 +-
.../{libxmlb_0.3.24.bb => libxmlb_0.3.25.bb} | 2 +-
...0250419.bb => ca-certificates_20260223.bb} | 2 +-
.../libsoup/libsoup/CVE-2025-32049-1.patch | 229 ++++++++++++++
.../libsoup/libsoup/CVE-2025-32049-2.patch | 34 ++
.../libsoup/libsoup/CVE-2025-32049-3.patch | 133 ++++++++
.../libsoup/libsoup/CVE-2025-32049-4.patch | 291 ++++++++++++++++++
.../libsoup/libsoup/CVE-2026-1539.patch | 97 ++++++
.../{libsoup_3.6.5.bb => libsoup_3.6.6.bb} | 9 +-
.../vim/files/CVE-2026-25749.patch | 64 ++++
.../vim/files/CVE-2026-26269.patch | 150 +++++++++
meta/recipes-support/vim/vim.inc | 2 +
scripts/oe-setup-build | 2 +-
23 files changed, 1612 insertions(+), 9 deletions(-)
create mode 100644 meta/recipes-core/expat/expat/CVE-2026-32776.patch
create mode 100644 meta/recipes-core/expat/expat/CVE-2026-32777_p1.patch
create mode 100644 meta/recipes-core/expat/expat/CVE-2026-32777_p2.patch
create mode 100644 meta/recipes-core/expat/expat/CVE-2026-32778_p1.patch
create mode 100644 meta/recipes-core/expat/expat/CVE-2026-32778_p2.patch
rename meta/recipes-devtools/ccache/{ccache_4.12.2.bb => ccache_4.12.3.bb} (88%)
create mode 100644 meta/recipes-devtools/python/python3-pyopenssl/CVE-2026-27448.patch
create mode 100644 meta/recipes-devtools/python/python3-pyopenssl/CVE-2026-27459.patch
rename meta/recipes-gnome/libxmlb/{libxmlb_0.3.24.bb => libxmlb_0.3.25.bb} (93%)
rename meta/recipes-support/ca-certificates/{ca-certificates_20250419.bb => ca-certificates_20260223.bb} (97%)
create mode 100644 meta/recipes-support/libsoup/libsoup/CVE-2025-32049-1.patch
create mode 100644 meta/recipes-support/libsoup/libsoup/CVE-2025-32049-2.patch
create mode 100644 meta/recipes-support/libsoup/libsoup/CVE-2025-32049-3.patch
create mode 100644 meta/recipes-support/libsoup/libsoup/CVE-2025-32049-4.patch
create mode 100644 meta/recipes-support/libsoup/libsoup/CVE-2026-1539.patch
rename meta/recipes-support/libsoup/{libsoup_3.6.5.bb => libsoup_3.6.6.bb} (85%)
create mode 100644 meta/recipes-support/vim/files/CVE-2026-25749.patch
create mode 100644 meta/recipes-support/vim/files/CVE-2026-26269.patch
^ permalink raw reply [flat|nested] 7+ messages in thread
* Re: [OE-core][whinlatter 00/15] Pull request (cover letter only)
2026-04-09 8:45 [OE-core][whinlatter 00/15] Pull request (cover letter only) Yoann Congal
@ 2026-04-10 8:47 ` Paul Barker
0 siblings, 0 replies; 7+ messages in thread
From: Paul Barker @ 2026-04-10 8:47 UTC (permalink / raw)
To: yoann.congal, openembedded-core
[-- Attachment #1: Type: text/plain, Size: 909 bytes --]
On Thu, 2026-04-09 at 10:45 +0200, Yoann Congal via
lists.openembedded.org wrote:
> Those are the patches from the last patch review (no changes):
> https://lore.kernel.org/openembedded-core/cover.1775106968.git.yoann.congal@smile.fr/T/#t
>
> Passed a-full on autobuilder:
> https://autobuilder.yoctoproject.org/valkyrie/?#/builders/29/builds/3571
>
> The following changes since commit f74c948779850a9759d8b24bb83bb661ff85def4:
>
> curl: patch CVE-2026-3805 (2026-03-25 08:17:01 +0000)
>
> are available in the Git repository at:
>
> https://git.openembedded.org/openembedded-core-contrib stable/whinlatter-next
> https://git.openembedded.org/openembedded-core-contrib/log/?h=stable/whinlatter-next
>
> for you to fetch changes up to e8a3acb03d4c466cd08e358953df15746cb5aaca:
>
> vim: Fix CVE-2026-26269 (2026-04-02 00:08:06 +0200)
Merged, thanks!
--
Paul Barker
[-- Attachment #2: This is a digitally signed message part --]
[-- Type: application/pgp-signature, Size: 252 bytes --]
^ permalink raw reply [flat|nested] 7+ messages in thread
end of thread, other threads:[~2026-04-10 8:48 UTC | newest]
Thread overview: 7+ messages (download: mbox.gz follow: Atom feed
-- links below jump to the message on this page --
2026-04-09 8:45 [OE-core][whinlatter 00/15] Pull request (cover letter only) Yoann Congal
2026-04-10 8:47 ` Paul Barker
-- strict thread matches above, loose matches on Subject: below --
2026-01-23 18:20 Yoann Congal
2026-01-23 13:49 Yoann Congal
2026-01-23 14:25 ` Yoann Congal
2026-01-23 16:31 ` Yoann Congal
2026-01-23 18:21 ` Yoann Congal
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox