Please merge these changes in whinlatter. Tested locally with qemux86/qemux86-64/qemuarm/qemuarm64 and on autobuilder.
https://autobuilder.yoctoproject.org/valkyrie/#/builders/81/builds/1319 The following changes since commit d28d0a23615f4d91d125fdcd247a71245087dab3: Use https when accessing archive.xfce.org (2026-02-05 06:59:42 +0530) are available in the Git repository at: https://git.openembedded.org/meta-openembedded-contrib stable/whinlatter-next https://git.openembedded.org/meta-openembedded-contrib/log/?h=stable/whinlatter-next Ankur Tyagi (1): tomoyo-tools: update SRC_URI Gyorgy Sarvari (23): python3-cbor2: patch CVE-2025-68131 python3-flask-cors: upgrade 4.0.0 -> 4.0.2 python3-ldap: upgrade 3.4.4 -> 3.4.5 python3-lief: upgrade 0.17.1 -> 0.17.2 python3-m2crypto: ignore CVE-2009-0127 python3-m2crypto: mark CVE-2020-25657 as patched python3-orjson: upgrade 3.10.17 -> 3.10.18 python3-py: ignore CVE-2022-42969 python3-pyjwt: ignore CVE-2025-45768 python3-twitter: mark CVE-2012-5825 patched python3-uvicorn: mark CVE-2020-7694 patched python3-virtualenv: patch CVE-2026-22702 python3-werkzeug: upgrade 3.1.4 -> 3.1.5 raptor2: patch CVE-2024-57822 and CVE-2024-57823 redis: ignore CVE-2025-46686 python3-python-multipart: patch CVE-2026-24486 wireshark: patch CVE-2026-0962 gnome-desktop: upgrade 44.1 -> 44.4 python3-django: upgrade 5.2.9 -> 5.2.11 python3-django: upgrade 4.2.27 -> 4.2.28 libx86-1: upgrade 1.1 -> 1.1.1 paho-mqtt-c: upgrade 1.3.14 -> 1.3.15 nginx: upgrade 1.28.1 -> 1.28.2 Jason Schonberg (2): usbids: upgrade 2025.09.15 -> 2025.12.13 php: upgrade 8.4.17 -> 8.4.18 Liu Yiding (1): minizip-ng: 4.0.8 -> 4.0.10 Markus Volk (1): libsdl2-compat: update 2.32.58 -> 2.32.62 Tero Kinnunen (1): python3-watchdog: Remove obsolete dependencies Wang Mingyu (7): python3-marshmallow: upgrade 4.1.0 -> 4.1.1 python3-marshmallow: upgrade 4.1.1 -> 4.1.2 python3-tornado: upgrade 6.5.2 -> 6.5.3 python3-tornado: upgrade 6.5.3 -> 6.5.4 python3-werkzeug: upgrade 3.1.3 -> 3.1.4 cryptsetup: upgrade 2.8.3 -> 2.8.4 libtracefs: upgrade 1.8.2 -> 1.8.3 ...-desktop_44.1.bb => gnome-desktop_44.4.bb} | 2 +- .../wireshark/files/CVE-2026-0962.patch | 131 +++++ .../wireshark/wireshark_4.2.14.bb | 1 + ...rror-due-to-bool-keyword-with-gcc-15.patch | 37 -- ...mqtt-c_1.3.14.bb => paho-mqtt-c_1.3.15.bb} | 5 +- ...0001-crypt.h-Remove-register-keyword.patch | 35 -- ...nizip-ng_4.0.8.bb => minizip-ng_4.0.10.bb} | 3 +- ...ryptsetup_2.8.3.bb => cryptsetup_2.8.4.bb} | 2 +- .../php/{php_8.4.17.bb => php_8.4.18.bb} | 2 +- ...efine-CARD32-as-uint-as-it-is-32-bit.patch | 0 .../0001-assume-zero-is-valid-address.patch | 0 ...-type-of-the-void-pointer-assignment.patch | 33 -- .../libx86-1.1/libx86-mmap-offset.patch | 192 ------- .../libx86-1.1/makefile-add-ldflags.patch | 17 - .../{libx86-1_1.1.bb => libx86-1_1.1.1.bb} | 9 +- .../recipes-extended/redis/redis_6.2.21.bb | 1 + .../recipes-extended/redis/redis_7.2.12.bb | 1 + ...t_2.32.58.bb => libsdl2-compat_2.32.62.bb} | 2 +- ...ibtracefs_1.8.2.bb => libtracefs_1.8.3.bb} | 2 +- .../tomoyo-tools/tomoyo-tools_2.6.1.bb | 3 +- .../raptor2/raptor2/CVE-2024-57822.patch | 44 ++ .../raptor2/raptor2/CVE-2024-57823.patch | 31 ++ .../recipes-support/raptor2/raptor2_2.0.16.bb | 2 + ...ids_2025.09.15.bb => usbids_2025.12.13.bb} | 4 +- .../python/python3-cbor2/CVE-2025-68131.patch | 515 ++++++++++++++++++ .../python/python3-cbor2_5.7.1.bb | 1 + ...ngo_4.2.27.bb => python3-django_4.2.28.bb} | 2 +- ...ango_5.2.9.bb => python3-django_5.2.11.bb} | 2 +- .../python3-flask-cors/CVE-2024-6221.patch | 110 ---- ...s_4.0.0.bb => python3-flask-cors_4.0.2.bb} | 8 +- ...-lief_0.17.1.bb => python3-lief_0.17.2.bb} | 2 +- .../python/python3-m2crypto_0.46.2.bb | 3 + ..._4.1.0.bb => python3-marshmallow_4.1.2.bb} | 2 +- ...n_3.10.17.bb => python3-orjson_3.10.18.bb} | 2 +- .../python/python3-py_1.11.0.bb | 2 + .../python/python3-pyjwt_2.10.1.bb | 2 + .../CVE-2026-24486.patch | 61 +++ .../python/python3-python-multipart_0.0.20.bb | 1 + ...nado_6.5.2.bb => python3-tornado_6.5.4.bb} | 2 +- .../python/python3-twitter_4.16.0.bb | 2 + .../python/python3-uvicorn_0.38.0.bb | 1 + .../python3-virtualenv/CVE-2026-22702.patch | 60 ++ .../python/python3-virtualenv_20.35.4.bb | 1 + .../python/python3-watchdog_6.0.0.bb | 9 +- ...eug_3.1.3.bb => python3-werkzeug_3.1.5.bb} | 2 +- ...n3-ldap_3.4.4.bb => python3-ldap_3.4.5.bb} | 8 +- .../{nginx_1.28.1.bb => nginx_1.28.2.bb} | 2 +- 47 files changed, 892 insertions(+), 467 deletions(-) rename meta-gnome/recipes-gnome/gnome-desktop/{gnome-desktop_44.1.bb => gnome-desktop_44.4.bb} (93%) create mode 100644 meta-networking/recipes-support/wireshark/files/CVE-2026-0962.patch delete mode 100644 meta-oe/recipes-connectivity/paho-mqtt-c/paho-mqtt-c/0001-Fix-build-error-due-to-bool-keyword-with-gcc-15.patch rename meta-oe/recipes-connectivity/paho-mqtt-c/{paho-mqtt-c_1.3.14.bb => paho-mqtt-c_1.3.15.bb} (88%) delete mode 100644 meta-oe/recipes-core/minizip-ng/minizip-ng/0001-crypt.h-Remove-register-keyword.patch rename meta-oe/recipes-core/minizip-ng/{minizip-ng_4.0.8.bb => minizip-ng_4.0.10.bb} (91%) rename meta-oe/recipes-crypto/cryptsetup/{cryptsetup_2.8.3.bb => cryptsetup_2.8.4.bb} (98%) rename meta-oe/recipes-devtools/php/{php_8.4.17.bb => php_8.4.18.bb} (99%) rename meta-oe/recipes-extended/libx86-1/{libx86-1.1 => libx86-1.1.1}/0001-Define-CARD32-as-uint-as-it-is-32-bit.patch (100%) rename meta-oe/recipes-extended/libx86-1/{libx86-1.1 => libx86-1.1.1}/0001-assume-zero-is-valid-address.patch (100%) delete mode 100644 meta-oe/recipes-extended/libx86-1/libx86-1.1/0001-Fix-type-of-the-void-pointer-assignment.patch delete mode 100644 meta-oe/recipes-extended/libx86-1/libx86-1.1/libx86-mmap-offset.patch delete mode 100644 meta-oe/recipes-extended/libx86-1/libx86-1.1/makefile-add-ldflags.patch rename meta-oe/recipes-extended/libx86-1/{libx86-1_1.1.bb => libx86-1_1.1.1.bb} (74%) rename meta-oe/recipes-graphics/libsdl3/{libsdl2-compat_2.32.58.bb => libsdl2-compat_2.32.62.bb} (91%) rename meta-oe/recipes-kernel/libtracefs/{libtracefs_1.8.2.bb => libtracefs_1.8.3.bb} (94%) create mode 100644 meta-oe/recipes-support/raptor2/raptor2/CVE-2024-57822.patch create mode 100644 meta-oe/recipes-support/raptor2/raptor2/CVE-2024-57823.patch rename meta-oe/recipes-support/usbids/{usbids_2025.09.15.bb => usbids_2025.12.13.bb} (83%) create mode 100644 meta-python/recipes-devtools/python/python3-cbor2/CVE-2025-68131.patch rename meta-python/recipes-devtools/python/{python3-django_4.2.27.bb => python3-django_4.2.28.bb} (79%) rename meta-python/recipes-devtools/python/{python3-django_5.2.9.bb => python3-django_5.2.11.bb} (60%) delete mode 100644 meta-python/recipes-devtools/python/python3-flask-cors/CVE-2024-6221.patch rename meta-python/recipes-devtools/python/{python3-flask-cors_4.0.0.bb => python3-flask-cors_4.0.2.bb} (73%) rename meta-python/recipes-devtools/python/{python3-lief_0.17.1.bb => python3-lief_0.17.2.bb} (95%) rename meta-python/recipes-devtools/python/{python3-marshmallow_4.1.0.bb => python3-marshmallow_4.1.2.bb} (91%) rename meta-python/recipes-devtools/python/{python3-orjson_3.10.17.bb => python3-orjson_3.10.18.bb} (84%) create mode 100644 meta-python/recipes-devtools/python/python3-python-multipart/CVE-2026-24486.patch rename meta-python/recipes-devtools/python/{python3-tornado_6.5.2.bb => python3-tornado_6.5.4.bb} (93%) create mode 100644 meta-python/recipes-devtools/python/python3-virtualenv/CVE-2026-22702.patch rename meta-python/recipes-devtools/python/{python3-werkzeug_3.1.3.bb => python3-werkzeug_3.1.5.bb} (90%) rename meta-python/recipes-networking/python/{python3-ldap_3.4.4.bb => python3-ldap_3.4.5.bb} (76%) rename meta-webserver/recipes-httpd/nginx/{nginx_1.28.1.bb => nginx_1.28.2.bb} (66%) -- 2.53.0
-=-=-=-=-=-=-=-=-=-=-=- Links: You receive all messages sent to this group. View/Reply Online (#124582): https://lists.openembedded.org/g/openembedded-devel/message/124582 Mute This Topic: https://lists.openembedded.org/mt/117976207/21656 Group Owner: [email protected] Unsubscribe: https://lists.openembedded.org/g/openembedded-devel/unsub [[email protected]] -=-=-=-=-=-=-=-=-=-=-=-
