On Tue Jun 23, 2026 at 9:07 AM CEST, Yoann Congal wrote: > On Tue Jun 23, 2026 at 8:03 AM CEST, Hitendra Prajapati via > lists.openembedded.org wrote: >> Pick patch from [1] also mentioned at NVD report in [2] >> >> [1] >> https://github.com/jib/archive-tar-new/commit/17c873492a05eddc0de18c1485e0b2cccd5a9158 >> [2] https://nvd.nist.gov/vuln/detail/CVE-2026-42496 >> [3] https://security-tracker.debian.org/tracker/CVE-2026-42496 >> >> Signed-off-by: Hitendra Prajapati <[email protected]> >> --- > > Hello, > > Is that needed for wrynose and master? Since this is vendored in perl, > this is not trivial to check.
Hello, Gentle ping, is this patch needed on wrynose and/or master? Regards -- Yoann Congal
-=-=-=-=-=-=-=-=-=-=-=- Links: You receive all messages sent to this group. View/Reply Online (#240340): https://lists.openembedded.org/g/openembedded-core/message/240340 Mute This Topic: https://lists.openembedded.org/mt/119937065/21656 Group Owner: [email protected] Unsubscribe: https://lists.openembedded.org/g/openembedded-core/unsub [[email protected]] -=-=-=-=-=-=-=-=-=-=-=-
