Some last minute fixes - thanks to all contributors.
Test artifacts:
World build qemuarm:
https://github.com/OldManYellsAtCloud/meta-oe-test/actions/runs/25286703147
World build qemuarm64:
https://github.com/OldManYellsAtCloud/meta-oe-test/actions/runs/25289100851
World build qemux86:
https://github.com/OldManYellsAtCloud/meta-oe-test/actions/runs/25290018061
World build qemux86-64:
https://github.com/OldManYellsAtCloud/meta-oe-test/actions/runs/25290023412
YP layer compatibility:
https://github.com/OldManYellsAtCloud/meta-oe-test/actions/runs/25261771118
Ptest execution (logs available at the link):
https://github.com/OldManYellsAtCloud/meta-oe-test/actions/runs/25384396207
The following changes since commit 9d8ef26a9693e2c70ae34abe1a753873d42ec588:
libssh: Fix CVE-2026-0964 (2026-03-29 11:11:33 +0200)
are available in the Git repository at:
git://git.openembedded.org/meta-openembedded-contrib stable/kirkstone-nut
for you to fetch changes up to ce8539c941f6fcbecaca4d16640ac105c0595589:
python3-soupsieve: fix tests with Python 3.10.20 (2026-05-04 15:59:37 +0200)
----------------------------------------------------------------
Bhabu Bindu (1):
neon: Backport redirect test debug improvements
Gyorgy Sarvari (16):
python3-cbor2: return correct error code from run-ptest
python3-cbor2: more patch indent and test fixes
nginx: set CVE_PRODUCT
tomoyo-tools: fix SRC_URI
logwatch: fix SRC_URI
dnfdragora: fix SRC_URI
ipc-run: fix SRC_URI
linux-atm: fix SRC_URI
driverctl: fix SRC_URI
libsodium: fix SRC_URI
sblim-sfcc: fix SRC_URI
ttf-sazanami: fix SRC_URI
libubox: fix SRC_URI
unicode-ucd: fix license hash (again)
ttf-vlgothic: fix SRC_URI
python3-soupsieve: fix tests with Python 3.10.20
Hitendra Prajapati (3):
nginx: fix CVE-2026-27784, CVE-2026-28755
nginx: fix multiple CVEs
nginx: fix CVE-2026-32647
Jon Mason (1):
python3-cbor2: Fix CVE-2025-68131 CVE patch error
Naman Jain (2):
python3-protobuf: ignore CVE-2024-7254
imagemagick: Fix CVE-2025-68950
Shaik Moin (1):
imagemagick: Fix CVE-2025-62594
Tyler Park (1):
fmt: Updated master->main in SRC_URI.
Vijay Anusuri (1):
strongswan: Fix CVE-2026-25075
Zahir Hussain (1):
rocksdb: fix typo in PACKAGECONFIG
.../recipes-support/linux-atm/linux-atm_2.5.2.bb | 2 +-
.../strongswan/files/CVE-2026-25075.patch | 50 ++++++
.../strongswan/strongswan_5.9.13.bb | 1 +
.../recipes-crypto/libsodium/libsodium_1.0.18.bb | 2 +-
meta-oe/recipes-dbs/rocksdb/rocksdb_6.20.3.bb | 2 +-
meta-oe/recipes-devtools/libubox/libubox_git.bb | 2 +-
.../recipes-devtools/perl/ipc-run_20200505.0.bb | 2 +-
meta-oe/recipes-extended/logwatch/logwatch_7.6.bb | 2 +-
.../sblim-sfcc/sblim-sfcc_2.2.8.bb | 2 +-
.../dnfdragora/dnfdragora_2.1.2.bb | 2 +-
.../ttf-fonts/ttf-sazanami_20040629.bb | 2 +-
.../ttf-fonts/ttf-vlgothic_20200720.bb | 2 +-
.../tomoyo-tools/tomoyo-tools_2.5.0.bb | 2 +-
.../recipes-support/driverctl/driverctl_0.111.bb | 2 +-
meta-oe/recipes-support/fmt/fmt_8.1.1.bb | 2 +-
.../imagemagick/files/CVE-2025-62594.patch | 197 +++++++++++++++++++++
.../imagemagick/files/CVE-2025-68950.patch | 24 +++
.../imagemagick/imagemagick_7.0.10.bb | 2 +
.../0001-Temporarily-disable-no_redirect.patch | 45 +++++
...-enabling-no_redirect-with-more-debugging.patch | 50 ++++++
...rect-Switch-to-using-double_serve_sstring.patch | 48 +++++
.../neon/neon/0004-test-redirect.c-Cleanup.patch | 49 +++++
meta-oe/recipes-support/neon/neon_0.30.2.bb | 4 +
.../unicode-ucd/unicode-ucd_14.0.0.bb | 6 +-
.../0001-fix-test-parameterization.patch | 48 +++++
.../python/python3-cbor2/CVE-2025-68131.patch | 51 ++++--
.../python/python3-cbor2/run-ptest | 3 +-
.../recipes-devtools/python/python3-cbor2_5.4.2.bb | 1 +
.../python/python3-protobuf_3.20.3.bb | 3 +
...djustments-for-changes-in-HTML-parser-285.patch | 190 ++++++++++++++++++++
.../python/python3-soupsieve_2.3.1.bb | 8 +-
.../nginx/nginx-1.24.0/CVE-2026-27651.patch | 34 ++++
.../nginx/nginx-1.24.0/CVE-2026-27654.patch | 81 +++++++++
.../nginx/nginx-1.24.0/CVE-2026-27784.patch | 88 +++++++++
.../nginx/nginx-1.24.0/CVE-2026-28753.patch | 93 ++++++++++
.../nginx/nginx-1.24.0/CVE-2026-28755.patch | 48 +++++
.../nginx/nginx-1.24.0/CVE-2026-32647.patch | 78 ++++++++
meta-webserver/recipes-httpd/nginx/nginx.inc | 2 +
meta-webserver/recipes-httpd/nginx/nginx_1.24.0.bb | 9 +
39 files changed, 1199 insertions(+), 40 deletions(-)
create mode 100644
meta-networking/recipes-support/strongswan/files/CVE-2026-25075.patch
create mode 100644
meta-oe/recipes-support/imagemagick/files/CVE-2025-62594.patch
create mode 100644
meta-oe/recipes-support/imagemagick/files/CVE-2025-68950.patch
create mode 100644
meta-oe/recipes-support/neon/neon/0001-Temporarily-disable-no_redirect.patch
create mode 100644
meta-oe/recipes-support/neon/neon/0002-Re-enabling-no_redirect-with-more-debugging.patch
create mode 100644
meta-oe/recipes-support/neon/neon/0003-no_redirect-Switch-to-using-double_serve_sstring.patch
create mode 100644
meta-oe/recipes-support/neon/neon/0004-test-redirect.c-Cleanup.patch
create mode 100644
meta-python/recipes-devtools/python/python3-cbor2/0001-fix-test-parameterization.patch
create mode 100644
meta-python/recipes-devtools/python/python3-soupsieve/0001-Adjustments-for-changes-in-HTML-parser-285.patch
create mode 100644
meta-webserver/recipes-httpd/nginx/nginx-1.24.0/CVE-2026-27651.patch
create mode 100644
meta-webserver/recipes-httpd/nginx/nginx-1.24.0/CVE-2026-27654.patch
create mode 100644
meta-webserver/recipes-httpd/nginx/nginx-1.24.0/CVE-2026-27784.patch
create mode 100644
meta-webserver/recipes-httpd/nginx/nginx-1.24.0/CVE-2026-28753.patch
create mode 100644
meta-webserver/recipes-httpd/nginx/nginx-1.24.0/CVE-2026-28755.patch
create mode 100644
meta-webserver/recipes-httpd/nginx/nginx-1.24.0/CVE-2026-32647.patch
-=-=-=-=-=-=-=-=-=-=-=-
Links: You receive all messages sent to this group.
View/Reply Online (#126960):
https://lists.openembedded.org/g/openembedded-devel/message/126960
Mute This Topic: https://lists.openembedded.org/mt/119294323/21656
Group Owner: [email protected]
Unsubscribe: https://lists.openembedded.org/g/openembedded-devel/unsub
[[email protected]]
-=-=-=-=-=-=-=-=-=-=-=-