Please review this set of changes for whinlatter and have comments back by end of day Monday January 5
Passed a-full on autobuilder: https://autobuilder.yoctoproject.org/valkyrie/#/builders/29/builds/2960 The following changes since commit 9964fa3da2fa1e7243fba1a826e59f7bb1813706: populate_sdk_ext: keep SDK_TARGETS so SPDX/SBOM tasks remain in locked sigs (2025-12-18 13:11:45 -0800) are available in the Git repository at: https://git.openembedded.org/openembedded-core-contrib stable/whinlatter-nut https://git.openembedded.org/openembedded-core-contrib/log/?h=stable/whinlatter-nut Ankur Tyagi (4): gnutls: patch CVE-2025-9820 sqlite3: patch CVE-2025-3277 sqlite3: patch CVE-2025-6965 libxmlb: upgrade 0.3.23 -> 0.3.24 Chen Qi (1): cups: upgrade from 2.4.14 to 2.4.15 Deepesh Varatharajan (2): llvm/clang: Upgrade to 21.1.6 release llvm/clang: Upgrade to 21.1.7 release Dmitry Baryshkov (1): mesa: upgrade 25.2.5 -> 25.2.8 Gyorgy Sarvari (1): enchant2: upgrade 2.8.12 -> 2.8.14 Jörg Sommer (1): glib-2.0: Upgrade 2.86.0 -> 2.86.1 Peter Marko (1): libarchive: upgrade 3.8.2 -> 3.8.3 Robert Yang (2): e2fsprogs: misc/create_inode.c: Fix for file larger than 2GB ccache: 4.12.1 -> 4.12.2 Wang Mingyu (13): ell: upgrade 0.79 -> 0.80 gst-devtools: upgrade 1.26.5 -> 1.26.7 gst-examples: upgrade 1.26.5 -> 1.26.7 gstreamer1.0-libav: upgrade 1.26.5 -> 1.26.7 gstreamer1.0-plugins-bad: upgrade 1.26.5 -> 1.26.7 gstreamer1.0-plugins-base: upgrade 1.26.5 -> 1.26.7 gstreamer1.0-plugins-good: upgrade 1.26.5 -> 1.26.7 gstreamer1.0-plugins-ugly: upgrade 1.26.5 -> 1.26.7 gstreamer1.0-python: upgrade 1.26.5 -> 1.26.7 gstreamer1.0-rtsp-server: upgrade 1.26.5 -> 1.26.7 gstreamer1.0: upgrade 1.26.5 -> 1.26.7 gstreamer1.0-vaapi: upgrade 1.26.5 -> 1.26.7 ccache: upgrade 4.12 -> 4.12.1 Yash Shinde (2): binutils: fix CVE-2025-11839 binutils: fix CVE-2025-11840 Zhang Peng (1): libpng: upgrade 1.6.50 -> 1.6.51 meta/conf/distro/include/maintainers.inc | 4 +- .../ell/{ell_0.79.bb => ell_0.80.bb} | 2 +- ...l_2.86.0.bb => glib-2.0-initial_2.86.1.bb} | 0 ...{glib-2.0_2.86.0.bb => glib-2.0_2.86.1.bb} | 0 meta/recipes-core/glib-2.0/glib.inc | 2 +- .../binutils/binutils-2.45.inc | 2 + .../binutils/0019-CVE-2025-11839.patch | 32 +++ .../binutils/0020-CVE-2025-11840.patch | 37 +++ .../{ccache_4.12.bb => ccache_4.12.2.bb} | 2 +- meta/recipes-devtools/clang/common-clang.inc | 2 +- meta/recipes-devtools/clang/common.inc | 2 +- ...inode.c-Fix-for-file-larger-than-2GB.patch | 40 +++ .../e2fsprogs/e2fsprogs_1.47.3.bb | 1 + .../cups/{cups_2.4.14.bb => cups_2.4.15.bb} | 2 +- ...ibarchive_3.8.2.bb => libarchive_3.8.3.bb} | 2 +- .../{libxmlb_0.3.23.bb => libxmlb_0.3.24.bb} | 2 +- meta/recipes-graphics/mesa/mesa.inc | 4 +- ...tools_1.26.5.bb => gst-devtools_1.26.7.bb} | 2 +- ...mples_1.26.5.bb => gst-examples_1.26.7.bb} | 2 +- ...1.26.5.bb => gstreamer1.0-libav_1.26.7.bb} | 2 +- ....bb => gstreamer1.0-plugins-bad_1.26.7.bb} | 2 +- ...bb => gstreamer1.0-plugins-base_1.26.7.bb} | 2 +- ...bb => gstreamer1.0-plugins-good_1.26.7.bb} | 2 +- ...bb => gstreamer1.0-plugins-ugly_1.26.7.bb} | 2 +- ....26.5.bb => gstreamer1.0-python_1.26.7.bb} | 2 +- ....bb => gstreamer1.0-rtsp-server_1.26.7.bb} | 2 +- ...1.26.5.bb => gstreamer1.0-vaapi_1.26.7.bb} | 2 +- ...er1.0_1.26.5.bb => gstreamer1.0_1.26.7.bb} | 2 +- .../{libpng_1.6.50.bb => libpng_1.6.51.bb} | 2 +- ...{enchant2_2.8.12.bb => enchant2_2.8.14.bb} | 2 +- .../gnutls/gnutls/CVE-2025-9820.patch | 233 ++++++++++++++++++ meta/recipes-support/gnutls/gnutls_3.8.10.bb | 1 + .../sqlite/files/CVE-2025-3277.patch | 29 +++ .../sqlite/files/CVE-2025-6965.patch | 117 +++++++++ meta/recipes-support/sqlite/sqlite3_3.48.0.bb | 5 +- 35 files changed, 521 insertions(+), 26 deletions(-) rename meta/recipes-core/ell/{ell_0.79.bb => ell_0.80.bb} (88%) rename meta/recipes-core/glib-2.0/{glib-2.0-initial_2.86.0.bb => glib-2.0-initial_2.86.1.bb} (100%) rename meta/recipes-core/glib-2.0/{glib-2.0_2.86.0.bb => glib-2.0_2.86.1.bb} (100%) create mode 100644 meta/recipes-devtools/binutils/binutils/0019-CVE-2025-11839.patch create mode 100644 meta/recipes-devtools/binutils/binutils/0020-CVE-2025-11840.patch rename meta/recipes-devtools/ccache/{ccache_4.12.bb => ccache_4.12.2.bb} (93%) create mode 100644 meta/recipes-devtools/e2fsprogs/e2fsprogs/0001-misc-create_inode.c-Fix-for-file-larger-than-2GB.patch rename meta/recipes-extended/cups/{cups_2.4.14.bb => cups_2.4.15.bb} (51%) rename meta/recipes-extended/libarchive/{libarchive_3.8.2.bb => libarchive_3.8.3.bb} (96%) rename meta/recipes-gnome/libxmlb/{libxmlb_0.3.23.bb => libxmlb_0.3.24.bb} (93%) rename meta/recipes-multimedia/gstreamer/{gst-devtools_1.26.5.bb => gst-devtools_1.26.7.bb} (95%) rename meta/recipes-multimedia/gstreamer/{gst-examples_1.26.5.bb => gst-examples_1.26.7.bb} (96%) rename meta/recipes-multimedia/gstreamer/{gstreamer1.0-libav_1.26.5.bb => gstreamer1.0-libav_1.26.7.bb} (91%) rename meta/recipes-multimedia/gstreamer/{gstreamer1.0-plugins-bad_1.26.5.bb => gstreamer1.0-plugins-bad_1.26.7.bb} (98%) rename meta/recipes-multimedia/gstreamer/{gstreamer1.0-plugins-base_1.26.5.bb => gstreamer1.0-plugins-base_1.26.7.bb} (98%) rename meta/recipes-multimedia/gstreamer/{gstreamer1.0-plugins-good_1.26.5.bb => gstreamer1.0-plugins-good_1.26.7.bb} (97%) rename meta/recipes-multimedia/gstreamer/{gstreamer1.0-plugins-ugly_1.26.5.bb => gstreamer1.0-plugins-ugly_1.26.7.bb} (94%) rename meta/recipes-multimedia/gstreamer/{gstreamer1.0-python_1.26.5.bb => gstreamer1.0-python_1.26.7.bb} (91%) rename meta/recipes-multimedia/gstreamer/{gstreamer1.0-rtsp-server_1.26.5.bb => gstreamer1.0-rtsp-server_1.26.7.bb} (90%) rename meta/recipes-multimedia/gstreamer/{gstreamer1.0-vaapi_1.26.5.bb => gstreamer1.0-vaapi_1.26.7.bb} (95%) rename meta/recipes-multimedia/gstreamer/{gstreamer1.0_1.26.5.bb => gstreamer1.0_1.26.7.bb} (97%) rename meta/recipes-multimedia/libpng/{libpng_1.6.50.bb => libpng_1.6.51.bb} (97%) rename meta/recipes-support/enchant/{enchant2_2.8.12.bb => enchant2_2.8.14.bb} (91%) create mode 100644 meta/recipes-support/gnutls/gnutls/CVE-2025-9820.patch create mode 100644 meta/recipes-support/sqlite/files/CVE-2025-3277.patch create mode 100644 meta/recipes-support/sqlite/files/CVE-2025-6965.patch -- 2.43.0
-=-=-=-=-=-=-=-=-=-=-=- Links: You receive all messages sent to this group. View/Reply Online (#228692): https://lists.openembedded.org/g/openembedded-core/message/228692 Mute This Topic: https://lists.openembedded.org/mt/117002841/21656 Group Owner: [email protected] Unsubscribe: https://lists.openembedded.org/g/openembedded-core/unsub [[email protected]] -=-=-=-=-=-=-=-=-=-=-=-
