Please merge these changes for scarthgap. Tested on autobuilder and locally.
https://autobuilder.yoctoproject.org/valkyrie/#/builders/81/builds/1075 My access to contrib has not been set up correctly yet so this is currently on GitHub. Sorry about this. The following changes since commit 15e18246dd0c0585cd1515a0be8ee5e2016d1329: python3-django: upgrade 4.2.18 -> 4.2.20 (2025-10-30 15:13:43 +0800) are available in the Git repository at: https://github.com/anujm1/meta-openembedded anujm/scarthgap https://github.com/anujm1/meta-openembedded/tree/anujm/scarthgap Anil Dongare (2): python3-django 5.0.11: ignore CVE-2025-27556 python3-django 5.0.11: Fix CVE-2025-26699 Ankur Tyagi (9): neatvnc: upgrade 0.8.0 -> 0.8.1 mercurial: set CVE_PRODUCT to "mercurial-scm:mercurial" postfix: upgrade 3.8.9 -> 3.8.12 proftpd: upgrade 1.3.7c -> 1.3.7f iscsi-initiator-utils: upgrade 2.1.8 -> 2.1.9 arno-iptables-firewall: upgrade 2.1.1 -> 2.1.1a frr: upgrade 9.1 -> 9.1.3 freeradius: upgrade 3.2.5 -> 3.2.6 squid: upgrade 6.12 -> 6.14 Chaitanya Vadrevu (1): samba: Run populate-volatile.sh update in postinst Etienne Cordonnier (1): fsverity-utils: fix SRC_URI Gianfranco Costamagna (1): mosquitto: bump to 2.0.22 Gyorgy Sarvari (24): pyxdg: update SRC_URI libvdpau: update SRC_URI pcp: update SRC_URI zabbix: fix SRC_URI zabbix: upgrade 6.2.7 -> 6.2.9 xf86-video-armsoc: fix SRC_URI netsniff-ng: fix SRC_URI branch spriv-shader-generator: fix SRC_URI branch xmlsec1: fix SRC_URI gnome-chess: fix SRC_URI branch http-parser: fix SRC_URI branch breakpad: correct SRC_URI branch hiawatha: fix SRC_URI transmission: update SRC_URI branch smarty: fix SRC_URI branch id3lib: update remote patch SRC_URI wifi-test-suite: correct SRC_URI python3-behave: update SRC_URI branch iksemel: fix SRC_URI branch consolation: fix SRC_URI protocol ncftp: fix SRC_URI cmpi-bindings: fix SRC_URI branch mbedtls: update SRC_URI branch unbound: fix SRC_URI Khem Raj (2): unicode-ucd: Updates due to license.txt updates unicode-ucd: Rename the license.txt in DL_DIR to avoid conflicts Leonard Anderweit (1): cockpit: fix build error Louis Rannou (1): mosquitto: bump to 2.0.21 Martin Schwan (1): kronosnet: Fetch version tag with BB_GIT_SHALLOW_EXTRA_REFS Patrick Vogelaar (1): unbound: patch CVE-2024-33655 and CVE-2025-11411 Paul Le Guen de Kerneizon (1): cockpit: remove deprecated packages Peter Marko (4): hostapd: patch CVE-2022-37660 squid: Upgrade to 6.10 squid: upgrade 6.10 -> 6.12 squid: download from github Randolph Sapp (1): glm: add nativesdk to BBCLASSEXTEND Ross Burton (1): pureftp: fix autoreconf Vijay Anusuri (3): libssh: Fix CVE-2025-8277 wireshark: Upgrade 4.2.12 -> 4.2.14 wireshark: Fix CVE-2025-9817 Wang Mingyu (1): pure-ftpd: upgrade 1.0.51 -> 1.0.52 Yi Zhao (4): libldb: upgrade 2.8.1 -> 2.8.2 samba: upgrade 4.19.8 -> 4.19.9 postfix: upgrade 3.8.6 -> 3.8.9 yaffs2-utils: update SRC_URI .../yaffs2/yaffs2-utils_git.bb | 3 +- .../gnome-chess/gnome-chess_46.0.bb | 2 +- .../0008-libtool-do-not-use-jlibtool.patch | 105 ++- ...reeradius_3.2.5.bb => freeradius_3.2.6.bb} | 2 +- .../mbedtls/mbedtls_2.28.10.bb | 2 +- .../mosquitto/files/2895.patch | 17 +- ...osquitto_2.0.20.bb => mosquitto_2.0.22.bb} | 2 +- .../{samba_4.19.8.bb => samba_4.19.9.bb} | 8 +- ....1.8.bb => iscsi-initiator-utils_2.1.9.bb} | 2 +- .../recipes-daemons/ncftp/ncftp_3.2.7.bb | 4 +- ...0006-postfix-add-preliminary-setting.patch | 31 - .../{postfix_3.8.6.bb => postfix_3.8.12.bb} | 3 +- .../{proftpd_1.3.7c.bb => proftpd_1.3.7f.bb} | 2 +- .../pure-ftpd/pure-ftpd/nostrip.patch | 7 +- ...ure-ftpd_1.0.51.bb => pure-ftpd_1.0.52.bb} | 6 +- ...e-reference-to-nonexisting-directory.patch | 55 ++ .../files/Skip-AC_RUN_IFELSE-tests.patch | 2 +- .../squid/{squid_6.9.bb => squid_6.14.bb} | 15 +- .../kronosnet/kronosnet_1.24.bb | 2 + ....1.bb => arno-iptables-firewall_2.1.1a.bb} | 2 +- .../frr/frr/CVE-2024-31948.patch | 130 --- .../frr/frr/CVE-2024-31949.patch | 163 ---- .../frr/frr/CVE-2024-31950.patch | 68 -- .../frr/frr/CVE-2024-31951.patch | 110 --- .../frr/frr/CVE-2024-34088.patch | 83 -- .../frr/frr/CVE-2024-44070.patch | 54 -- .../frr/{frr_9.1.bb => frr_9.1.3.bb} | 8 +- .../http-parser/http-parser_2.9.4.bb | 2 +- .../{libldb_2.8.1.bb => libldb_2.8.2.bb} | 4 +- .../netsniff-ng/netsniff-ng_0.6.8.bb | 2 +- .../unbound/unbound/CVE-2024-33655.patch | 792 ++++++++++++++++++ .../unbound/unbound/CVE-2025-11411.patch | 48 ++ .../recipes-support/unbound/unbound_1.19.3.bb | 4 +- .../wireshark/files/CVE-2025-9817.patch | 32 + ...ireshark_4.2.12.bb => wireshark_4.2.14.bb} | 3 +- .../hostapd/hostapd/CVE-2022-37660-01.patch | 249 ++++++ .../hostapd/hostapd/CVE-2022-37660-02.patch | 111 +++ .../hostapd/hostapd/CVE-2022-37660-03.patch | 762 +++++++++++++++++ .../hostapd/hostapd/CVE-2022-37660-04.patch | 85 ++ .../hostapd/hostapd_2.10.bb | 4 + .../transmission/transmission_git.bb | 2 +- .../wifi-test-suite_10.10.1.bb | 2 +- .../{zabbix_6.2.7.bb => zabbix_6.2.9.bb} | 4 +- .../fsverity-utils/fsverity-utils_1.5.bb | 2 +- .../breakpad/breakpad_2023.06.01.bb | 2 +- .../mercurial/mercurial_6.5.bb | 1 + .../cmpi-bindings/cmpi-bindings_1.0.4.bb | 2 +- meta-oe/recipes-gnome/pyxdg/pyxdg_0.28.bb | 2 +- meta-oe/recipes-graphics/glm/glm_0.9.9.8.bb | 2 +- .../{neatvnc_0.8.0.bb => neatvnc_0.8.1.bb} | 4 +- .../spir/spirv-shader-generator_git.bb | 2 +- .../recipes-graphics/vdpau/libvdpau_1.5.bb | 2 +- .../xorg-driver/xf86-video-armsoc_1.4.1.bb | 2 +- .../recipes-multimedia/id3lib/id3lib_3.8.3.bb | 6 +- .../consolation/consolation_0.0.9.bb | 2 +- .../recipes-support/iksemel/iksemel_1.5.bb | 2 +- .../libssh/libssh/CVE-2025-8277-1.patch | 40 + .../libssh/libssh/CVE-2025-8277-2.patch | 94 +++ .../libssh/libssh/CVE-2025-8277-3.patch | 48 ++ .../libssh/libssh/CVE-2025-8277-4.patch | 48 ++ .../recipes-support/libssh/libssh_0.10.6.bb | 4 + meta-oe/recipes-support/pcp/pcp.inc | 6 +- .../recipes-support/smarty/smarty_4.4.1.bb | 2 +- .../unicode-ucd/unicode-ucd_14.0.0.bb | 6 +- .../recipes-support/xmlsec1/xmlsec1_1.3.4.bb | 2 +- .../python/python3-behave_1.2.6.bb | 2 +- .../python3-django/CVE-2025-26699.patch | 100 +++ .../python/python3-django_5.0.11.bb | 5 + .../recipes-httpd/hiawatha/hiawatha_10.12.bb | 2 +- .../recipes-webadmin/cockpit/cockpit_304.bb | 11 +- ...sing-src-common-directory-in-build-t.patch | 32 + 71 files changed, 2681 insertions(+), 746 deletions(-) rename meta-networking/recipes-connectivity/freeradius/{freeradius_3.2.5.bb => freeradius_3.2.6.bb} (99%) rename meta-networking/recipes-connectivity/mosquitto/{mosquitto_2.0.20.bb => mosquitto_2.0.22.bb} (97%) rename meta-networking/recipes-connectivity/samba/{samba_4.19.8.bb => samba_4.19.9.bb} (98%) rename meta-networking/recipes-daemons/iscsi-initiator-utils/{iscsi-initiator-utils_2.1.8.bb => iscsi-initiator-utils_2.1.9.bb} (98%) delete mode 100644 meta-networking/recipes-daemons/postfix/files/0006-postfix-add-preliminary-setting.patch rename meta-networking/recipes-daemons/postfix/{postfix_3.8.6.bb => postfix_3.8.12.bb} (98%) rename meta-networking/recipes-daemons/proftpd/{proftpd_1.3.7c.bb => proftpd_1.3.7f.bb} (99%) rename meta-networking/recipes-daemons/pure-ftpd/{pure-ftpd_1.0.51.bb => pure-ftpd_1.0.52.bb} (79%) create mode 100644 meta-networking/recipes-daemons/squid/files/0001-libltdl-remove-reference-to-nonexisting-directory.patch rename meta-networking/recipes-daemons/squid/{squid_6.9.bb => squid_6.14.bb} (91%) rename meta-networking/recipes-filter/arno-iptables-firewall/{arno-iptables-firewall_2.1.1.bb => arno-iptables-firewall_2.1.1a.bb} (97%) delete mode 100644 meta-networking/recipes-protocols/frr/frr/CVE-2024-31948.patch delete mode 100644 meta-networking/recipes-protocols/frr/frr/CVE-2024-31949.patch delete mode 100644 meta-networking/recipes-protocols/frr/frr/CVE-2024-31950.patch delete mode 100644 meta-networking/recipes-protocols/frr/frr/CVE-2024-31951.patch delete mode 100644 meta-networking/recipes-protocols/frr/frr/CVE-2024-34088.patch delete mode 100644 meta-networking/recipes-protocols/frr/frr/CVE-2024-44070.patch rename meta-networking/recipes-protocols/frr/{frr_9.1.bb => frr_9.1.3.bb} (94%) rename meta-networking/recipes-support/libldb/{libldb_2.8.1.bb => libldb_2.8.2.bb} (95%) create mode 100644 meta-networking/recipes-support/unbound/unbound/CVE-2024-33655.patch create mode 100644 meta-networking/recipes-support/unbound/unbound/CVE-2025-11411.patch create mode 100644 meta-networking/recipes-support/wireshark/files/CVE-2025-9817.patch rename meta-networking/recipes-support/wireshark/{wireshark_4.2.12.bb => wireshark_4.2.14.bb} (96%) create mode 100644 meta-oe/recipes-connectivity/hostapd/hostapd/CVE-2022-37660-01.patch create mode 100644 meta-oe/recipes-connectivity/hostapd/hostapd/CVE-2022-37660-02.patch create mode 100644 meta-oe/recipes-connectivity/hostapd/hostapd/CVE-2022-37660-03.patch create mode 100644 meta-oe/recipes-connectivity/hostapd/hostapd/CVE-2022-37660-04.patch rename meta-oe/recipes-connectivity/zabbix/{zabbix_6.2.7.bb => zabbix_6.2.9.bb} (94%) rename meta-oe/recipes-graphics/neatvnc/{neatvnc_0.8.0.bb => neatvnc_0.8.1.bb} (89%) create mode 100644 meta-oe/recipes-support/libssh/libssh/CVE-2025-8277-1.patch create mode 100644 meta-oe/recipes-support/libssh/libssh/CVE-2025-8277-2.patch create mode 100644 meta-oe/recipes-support/libssh/libssh/CVE-2025-8277-3.patch create mode 100644 meta-oe/recipes-support/libssh/libssh/CVE-2025-8277-4.patch create mode 100644 meta-python/recipes-devtools/python/python3-django/CVE-2025-26699.patch create mode 100644 meta-webserver/recipes-webadmin/cockpit/files/0001-build-Create-missing-src-common-directory-in-build-t.patch -- 2.51.2
-=-=-=-=-=-=-=-=-=-=-=- Links: You receive all messages sent to this group. View/Reply Online (#121650): https://lists.openembedded.org/g/openembedded-devel/message/121650 Mute This Topic: https://lists.openembedded.org/mt/116273591/21656 Group Owner: [email protected] Unsubscribe: https://lists.openembedded.org/g/openembedded-devel/unsub [[email protected]] -=-=-=-=-=-=-=-=-=-=-=-
