[oe] [PATCH 00/30] Whinlatter pull request

Anuj Mittal via lists.openembedded.org Wed, 07 Jan 2026 18:12:03 -0800

Please merge these changes in whinlatter. Tested on AB and locally.

https://autobuilder.yoctoproject.org/valkyrie/#/builders/81/builds/1225


The following changes since commit a4e768dcfae181dd99e39c4286fa0729ca7f4e47:

  bpftool-native: Empty DEBUG_PREFIX_MAP_EXTRA (2025-12-17 16:54:28 +0530)

are available in the Git repository at:

  https://git.openembedded.org/meta-openembedded-contrib stable/whinlatter-next
  
https://git.openembedded.org/meta-openembedded-contrib/log/?h=stable/whinlatter-next

Ankur Tyagi (1):
  fetchmail: patch CVE-2025-61962

Gyorgy Sarvari (26):
  fex: ignore unrelated CVEs
  accountsservice: ignore CVE-2023-3297
  minio: ignore irrelevant CVEs
  cifs-utils: patch CVE-2025-2312
  cups-filters: patch CVE-2025-64524
  dovecot: patch CVE-2025-30189
  fio: ignore CVE-2025-10824
  tigervnc: fix typo in CVE_STATUS
  tigervnc: sync xserver code with oe-core
  tigervnc: ignore CVE-2023-6377
  tigervnc: ignore CVE-2023-6478
  tigervnc: ignore CVE-2025-26594...26601
  civetweb: ignore CVE-2025-9648
  freerdp3: ignore CVE-2025-68118
  gimp: patch CVE-2025-14422
  gimp: patch CVE-2025-14423
  gimp: patch CVE-2025-14424
  gimp: patch CVE-2025-14425
  imagemagick: upgrade 7.1.2-8 -> 7.1.2-12
  libcoap: ignore CVE-2025-50518
  openvpn: upgrade 2.6.16 -> 2.6.17
  php: upgrade 8.4.15 -> 8.4.16
  postgresql: upgrade 17.6 -> 17.7
  python3-configobj: ignore CVE-2023-26112
  python3-django: upgrade 4.2.26 -> 4.2.27
  python3-django: upgrade 5.2.8 -> 5.2.9

Hugo SIMELIERE (2):
  libwebsockets: fix CVE-2025-11677
  libwebsockets: fix CVE-2025-11678

Jason Schonberg (1):
  c-ares: upgrade 1.34.5 -> 1.34.6

 .../gimp/gimp/CVE-2025-14422.patch            |  66 +++++++
 .../gimp/gimp/CVE-2025-14423.patch            | 106 ++++++++++++
 .../gimp/gimp/CVE-2025-14424.patch            |  34 ++++
 .../gimp/gimp/CVE-2025-14425.patch            |  79 +++++++++
 meta-gnome/recipes-gimp/gimp/gimp_3.0.6.bb    |  15 +-
 .../accountsservice_23.13.9.bb                |   2 +
 .../civetweb/civetweb_1.16.bb                 |   3 +-
 .../libcoap/libcoap_4.3.5a.bb                 |   2 +
 .../cifs/cifs-utils/CVE-2025-2312.patch       | 135 +++++++++++++++
 .../recipes-support/cifs/cifs-utils_7.0.bb    |   4 +-
 .../dovecot/dovecot/CVE-2025-30189-1.patch    | 128 ++++++++++++++
 .../dovecot/dovecot/CVE-2025-30189-2.patch    |  51 ++++++
 .../dovecot/dovecot/CVE-2025-30189-3.patch    |  36 ++++
 .../dovecot/dovecot/CVE-2025-30189-4.patch    |  72 ++++++++
 .../dovecot/dovecot/CVE-2025-30189-5.patch    |  31 ++++
 .../dovecot/dovecot/CVE-2025-30189-6.patch    |  88 ++++++++++
 .../dovecot/dovecot/CVE-2025-30189-7.patch    |  76 +++++++++
 .../dovecot/dovecot_2.4.1-4.bb                |   7 +
 .../fetchmail/fetchmail/CVE-2025-61962.patch  |  51 ++++++
 .../fetchmail/fetchmail_6.5.2.bb              |   1 +
 .../{openvpn_2.6.16.bb => openvpn_2.6.17.bb}  |   2 +-
 meta-oe/recipes-benchmark/fio/fio_3.39.bb     |   2 +
 .../libwebsockets/CVE-2025-11677.patch        | 161 ++++++++++++++++++
 .../libwebsockets/CVE-2025-11678.patch        | 128 ++++++++++++++
 .../libwebsockets/libwebsockets_4.3.5.bb      |   2 +
 ...c-bypass-autoconf-2.69-version-check.patch |   2 +-
 ...{postgresql_17.6.bb => postgresql_17.7.bb} |   4 +-
 meta-oe/recipes-devtools/fex/fex_2511.bb      |   6 +
 .../php/{php_8.4.15.bb => php_8.4.16.bb}      |   2 +-
 meta-oe/recipes-extended/minio/minio_git.bb   |   6 +
 .../tigervnc/tigervnc_1.15.0.bb               |  16 +-
 .../cups/cups-filters/CVE-2025-64524.patch    |  82 +++++++++
 .../cups/cups-filters_2.0.1.bb                |  10 +-
 .../c-ares/0001-ares_uri-memory-leak.patch    |  21 ---
 .../{c-ares_1.34.5.bb => c-ares_1.34.6.bb}    |   3 +-
 .../freerdp/freerdp3_3.18.0.bb                |   1 +
 ...ick_7.1.2-8.bb => imagemagick_7.1.2-12.bb} |   2 +-
 .../python/python3-configobj_5.0.9.bb         |   2 +
 ...ngo_4.2.26.bb => python3-django_4.2.27.bb} |   2 +-
 ...jango_5.2.8.bb => python3-django_5.2.9.bb} |   2 +-
 40 files changed, 1397 insertions(+), 46 deletions(-)
 create mode 100644 meta-gnome/recipes-gimp/gimp/gimp/CVE-2025-14422.patch
 create mode 100644 meta-gnome/recipes-gimp/gimp/gimp/CVE-2025-14423.patch
 create mode 100644 meta-gnome/recipes-gimp/gimp/gimp/CVE-2025-14424.patch
 create mode 100644 meta-gnome/recipes-gimp/gimp/gimp/CVE-2025-14425.patch
 create mode 100644 
meta-networking/recipes-support/cifs/cifs-utils/CVE-2025-2312.patch
 create mode 100644 
meta-networking/recipes-support/dovecot/dovecot/CVE-2025-30189-1.patch
 create mode 100644 
meta-networking/recipes-support/dovecot/dovecot/CVE-2025-30189-2.patch
 create mode 100644 
meta-networking/recipes-support/dovecot/dovecot/CVE-2025-30189-3.patch
 create mode 100644 
meta-networking/recipes-support/dovecot/dovecot/CVE-2025-30189-4.patch
 create mode 100644 
meta-networking/recipes-support/dovecot/dovecot/CVE-2025-30189-5.patch
 create mode 100644 
meta-networking/recipes-support/dovecot/dovecot/CVE-2025-30189-6.patch
 create mode 100644 
meta-networking/recipes-support/dovecot/dovecot/CVE-2025-30189-7.patch
 create mode 100644 
meta-networking/recipes-support/fetchmail/fetchmail/CVE-2025-61962.patch
 rename meta-networking/recipes-support/openvpn/{openvpn_2.6.16.bb => 
openvpn_2.6.17.bb} (98%)
 create mode 100644 
meta-oe/recipes-connectivity/libwebsockets/libwebsockets/CVE-2025-11677.patch
 create mode 100644 
meta-oe/recipes-connectivity/libwebsockets/libwebsockets/CVE-2025-11678.patch
 rename meta-oe/recipes-dbs/postgresql/{postgresql_17.6.bb => 
postgresql_17.7.bb} (69%)
 rename meta-oe/recipes-devtools/php/{php_8.4.15.bb => php_8.4.16.bb} (99%)
 create mode 100644 
meta-oe/recipes-printing/cups/cups-filters/CVE-2025-64524.patch
 delete mode 100644 
meta-oe/recipes-support/c-ares/c-ares/0001-ares_uri-memory-leak.patch
 rename meta-oe/recipes-support/c-ares/{c-ares_1.34.5.bb => c-ares_1.34.6.bb} 
(87%)
 rename meta-oe/recipes-support/imagemagick/{imagemagick_7.1.2-8.bb => 
imagemagick_7.1.2-12.bb} (99%)
 rename meta-python/recipes-devtools/python/{python3-django_4.2.26.bb => 
python3-django_4.2.27.bb} (79%)
 rename meta-python/recipes-devtools/python/{python3-django_5.2.8.bb => 
python3-django_5.2.9.bb} (60%)

-- 
2.52.0

-=-=-=-=-=-=-=-=-=-=-=-
Links: You receive all messages sent to this group.
View/Reply Online (#123243): 
https://lists.openembedded.org/g/openembedded-devel/message/123243
Mute This Topic: https://lists.openembedded.org/mt/117146356/21656
Group Owner: [email protected]
Unsubscribe: https://lists.openembedded.org/g/openembedded-devel/unsub 
[[email protected]]
-=-=-=-=-=-=-=-=-=-=-=-

[oe] [PATCH 00/30] Whinlatter pull request

Reply via email to