| Message ID | cover.1769175900.git.yoann.congal@smile.fr |
|---|---|
| State | Not Applicable, archived |
| Headers | show |
Le ven. 23 janv. 2026 à 14:50, Yoann Congal <yoann.congal@smile.fr> a écrit : > Those are the patches from the last patch review: > > https://lore.kernel.org/openembedded-core/cover.1768906687.git.yoann.congal@smile.fr/ > > Passed a-full on autobuilder: > https://autobuilder.yoctoproject.org/valkyrie/?#/builders/29/builds/3112 > The "Send QA Email" step failed, that is a known AB-INT bug: > #15696 – AB_INT: resulttool: File exists > https://bugzilla.yoctoproject.org/show_bug.cgi?id=15696 > > The following changes since commit > dd10706cfafb5574b7cf316fca2300d166ef71b0: > > build-appliance-image: Update to whinlatter head revisions (2026-01-12 > 10:58:53 +0000) > > are available in the Git repository at: > > https://git.openembedded.org/openembedded-core-contrib > stable/whinlatter-next > > https://git.openembedded.org/openembedded-core-contrib/log/?h=stable/whinlatter-next > > for you to fetch changes up to e7891f39ae90d1c23bfcb59af0064591513a671d: > > libarchive: upgrade 3.8.4 -> 3.8.5 (2026-01-19 23:29:16 +0100) > > ---------------------------------------------------------------- > > Alexander Kanavin (3): > libpng: upgrade 1.6.52 -> 1.6.53 > I forgot to add the cherry-pick reference to this commit. I'll add it now. > ffmpeg: add a (possible) build race fix > ffmpeg: fix a build race, hopefully for real this time > > Paul Barker (1): > selftest: devtool: Set PATH when running pseudo > > Peter Marko (9): > util-linux: patch CVE-2025-14104 > gnupg: patch CVE-2025-68973 > curl: patch CVE-2025-13034 > curl: patch CVE-2025-14017 > curl: patch CVE-2025-14524 > curl: patch CVE-2025-14819 > curl: patch CVE-2025-15079 > curl: patch CVE-2025-15224 > libarchive: upgrade 3.8.4 -> 3.8.5 > > Richard Purdie (2): > pseudo: Update to pull in openat2 and efault return code changes > pseudo: Update to pull in 'makewrappers: Fix EFAULT implementation' > > meta/lib/oeqa/selftest/cases/devtool.py | 5 +- > meta/recipes-core/util-linux/util-linux.inc | 2 + > .../util-linux/CVE-2025-14104-01.patch | 33 +++++ > .../util-linux/CVE-2025-14104-02.patch | 28 +++++ > meta/recipes-devtools/pseudo/pseudo_git.bb | 2 +- > ...ibarchive_3.8.4.bb => libarchive_3.8.5.bb} | 2 +- > ...k-Consolidate-pattern-rules-for-comp.patch | 106 ++++++++++++++++ > ...s-Fix-double-build-by-disabling-.d-f.patch | 78 ++++++++++++ > ...ak-ensure-target-directories-are-cre.patch | 43 +++++++ > meta/recipes-multimedia/ffmpeg/ffmpeg_8.0.bb | 6 +- > .../{libpng_1.6.52.bb => libpng_1.6.53.bb} | 2 +- > .../curl/curl/CVE-2025-13034.patch | 37 ++++++ > .../curl/curl/CVE-2025-14017.patch | 116 ++++++++++++++++++ > .../curl/curl/CVE-2025-14524.patch | 40 ++++++ > .../curl/curl/CVE-2025-14819.patch | 73 +++++++++++ > .../curl/curl/CVE-2025-15079.patch | 32 +++++ > .../curl/curl/CVE-2025-15224.patch | 31 +++++ > meta/recipes-support/curl/curl_8.17.0.bb | 6 + > .../gnupg/gnupg/CVE-2025-68973.patch | 108 ++++++++++++++++ > meta/recipes-support/gnupg/gnupg_2.5.11.bb | 1 + > 20 files changed, 745 insertions(+), 6 deletions(-) > create mode 100644 > meta/recipes-core/util-linux/util-linux/CVE-2025-14104-01.patch > create mode 100644 > meta/recipes-core/util-linux/util-linux/CVE-2025-14104-02.patch > rename meta/recipes-extended/libarchive/{libarchive_3.8.4.bb => > libarchive_3.8.5.bb} (96%) > create mode 100644 > meta/recipes-multimedia/ffmpeg/ffmpeg/0001-ffbuild-commonmak-Consolidate-pattern-rules-for-comp.patch > create mode 100644 > meta/recipes-multimedia/ffmpeg/ffmpeg/0001-fftools-resources-Fix-double-build-by-disabling-.d-f.patch > create mode 100644 > meta/recipes-multimedia/ffmpeg/ffmpeg/0002-ffbuild-common.mak-ensure-target-directories-are-cre.patch > rename meta/recipes-multimedia/libpng/{libpng_1.6.52.bb => > libpng_1.6.53.bb} (97%) > create mode 100644 meta/recipes-support/curl/curl/CVE-2025-13034.patch > create mode 100644 meta/recipes-support/curl/curl/CVE-2025-14017.patch > create mode 100644 meta/recipes-support/curl/curl/CVE-2025-14524.patch > create mode 100644 meta/recipes-support/curl/curl/CVE-2025-14819.patch > create mode 100644 meta/recipes-support/curl/curl/CVE-2025-15079.patch > create mode 100644 meta/recipes-support/curl/curl/CVE-2025-15224.patch > create mode 100644 meta/recipes-support/gnupg/gnupg/CVE-2025-68973.patch > >
Le ven. 23 janv. 2026 à 15:25, Yoann Congal <yoann.congal@smile.fr> a écrit : > > > Le ven. 23 janv. 2026 à 14:50, Yoann Congal <yoann.congal@smile.fr> a > écrit : > >> Those are the patches from the last patch review: >> >> https://lore.kernel.org/openembedded-core/cover.1768906687.git.yoann.congal@smile.fr/ >> >> Passed a-full on autobuilder: >> https://autobuilder.yoctoproject.org/valkyrie/?#/builders/29/builds/3112 >> The "Send QA Email" step failed, that is a known AB-INT bug: >> #15696 – AB_INT: resulttool: File exists >> https://bugzilla.yoctoproject.org/show_bug.cgi?id=15696 >> >> The following changes since commit >> dd10706cfafb5574b7cf316fca2300d166ef71b0: >> >> build-appliance-image: Update to whinlatter head revisions (2026-01-12 >> 10:58:53 +0000) >> >> are available in the Git repository at: >> >> https://git.openembedded.org/openembedded-core-contrib >> stable/whinlatter-next >> >> https://git.openembedded.org/openembedded-core-contrib/log/?h=stable/whinlatter-next >> >> for you to fetch changes up to e7891f39ae90d1c23bfcb59af0064591513a671d: >> >> libarchive: upgrade 3.8.4 -> 3.8.5 (2026-01-19 23:29:16 +0100) >> >> ---------------------------------------------------------------- >> >> Alexander Kanavin (3): >> libpng: upgrade 1.6.52 -> 1.6.53 >> > > I forgot to add the cherry-pick reference to this commit. I'll add it now. > I've added it to the stable/whinlatter-nut & stable/whinlatter-next branch which is at https://git.openembedded.org/openembedded-core-contrib/commit/?h=stable/whinlatter-next&id=b4e7819b99d9c1a8995eba87e6f466fd8c77e14a I verified that there is no diff in the code between the 2 branches and started a rebuild: https://autobuilder.yoctoproject.org/valkyrie/?#/builders/29/builds/3117 I'll send a proper PR with this new branch once the build has finished. Sorry for the noise :( > > >> ffmpeg: add a (possible) build race fix >> ffmpeg: fix a build race, hopefully for real this time >> >> Paul Barker (1): >> selftest: devtool: Set PATH when running pseudo >> >> Peter Marko (9): >> util-linux: patch CVE-2025-14104 >> gnupg: patch CVE-2025-68973 >> curl: patch CVE-2025-13034 >> curl: patch CVE-2025-14017 >> curl: patch CVE-2025-14524 >> curl: patch CVE-2025-14819 >> curl: patch CVE-2025-15079 >> curl: patch CVE-2025-15224 >> libarchive: upgrade 3.8.4 -> 3.8.5 >> >> Richard Purdie (2): >> pseudo: Update to pull in openat2 and efault return code changes >> pseudo: Update to pull in 'makewrappers: Fix EFAULT implementation' >> >> meta/lib/oeqa/selftest/cases/devtool.py | 5 +- >> meta/recipes-core/util-linux/util-linux.inc | 2 + >> .../util-linux/CVE-2025-14104-01.patch | 33 +++++ >> .../util-linux/CVE-2025-14104-02.patch | 28 +++++ >> meta/recipes-devtools/pseudo/pseudo_git.bb | 2 +- >> ...ibarchive_3.8.4.bb => libarchive_3.8.5.bb} | 2 +- >> ...k-Consolidate-pattern-rules-for-comp.patch | 106 ++++++++++++++++ >> ...s-Fix-double-build-by-disabling-.d-f.patch | 78 ++++++++++++ >> ...ak-ensure-target-directories-are-cre.patch | 43 +++++++ >> meta/recipes-multimedia/ffmpeg/ffmpeg_8.0.bb | 6 +- >> .../{libpng_1.6.52.bb => libpng_1.6.53.bb} | 2 +- >> .../curl/curl/CVE-2025-13034.patch | 37 ++++++ >> .../curl/curl/CVE-2025-14017.patch | 116 ++++++++++++++++++ >> .../curl/curl/CVE-2025-14524.patch | 40 ++++++ >> .../curl/curl/CVE-2025-14819.patch | 73 +++++++++++ >> .../curl/curl/CVE-2025-15079.patch | 32 +++++ >> .../curl/curl/CVE-2025-15224.patch | 31 +++++ >> meta/recipes-support/curl/curl_8.17.0.bb | 6 + >> .../gnupg/gnupg/CVE-2025-68973.patch | 108 ++++++++++++++++ >> meta/recipes-support/gnupg/gnupg_2.5.11.bb | 1 + >> 20 files changed, 745 insertions(+), 6 deletions(-) >> create mode 100644 >> meta/recipes-core/util-linux/util-linux/CVE-2025-14104-01.patch >> create mode 100644 >> meta/recipes-core/util-linux/util-linux/CVE-2025-14104-02.patch >> rename meta/recipes-extended/libarchive/{libarchive_3.8.4.bb => >> libarchive_3.8.5.bb} (96%) >> create mode 100644 >> meta/recipes-multimedia/ffmpeg/ffmpeg/0001-ffbuild-commonmak-Consolidate-pattern-rules-for-comp.patch >> create mode 100644 >> meta/recipes-multimedia/ffmpeg/ffmpeg/0001-fftools-resources-Fix-double-build-by-disabling-.d-f.patch >> create mode 100644 >> meta/recipes-multimedia/ffmpeg/ffmpeg/0002-ffbuild-common.mak-ensure-target-directories-are-cre.patch >> rename meta/recipes-multimedia/libpng/{libpng_1.6.52.bb => >> libpng_1.6.53.bb} (97%) >> create mode 100644 meta/recipes-support/curl/curl/CVE-2025-13034.patch >> create mode 100644 meta/recipes-support/curl/curl/CVE-2025-14017.patch >> create mode 100644 meta/recipes-support/curl/curl/CVE-2025-14524.patch >> create mode 100644 meta/recipes-support/curl/curl/CVE-2025-14819.patch >> create mode 100644 meta/recipes-support/curl/curl/CVE-2025-15079.patch >> create mode 100644 meta/recipes-support/curl/curl/CVE-2025-15224.patch >> create mode 100644 meta/recipes-support/gnupg/gnupg/CVE-2025-68973.patch >> >> > > -- > Yoann Congal > Smile ECS >
Le ven. 23 janv. 2026 à 17:31, Yoann Congal <yoann.congal@smile.fr> a écrit : > > > Le ven. 23 janv. 2026 à 15:25, Yoann Congal <yoann.congal@smile.fr> a > écrit : > >> >> >> Le ven. 23 janv. 2026 à 14:50, Yoann Congal <yoann.congal@smile.fr> a >> écrit : >> >>> Those are the patches from the last patch review: >>> >>> https://lore.kernel.org/openembedded-core/cover.1768906687.git.yoann.congal@smile.fr/ >>> >>> Passed a-full on autobuilder: >>> https://autobuilder.yoctoproject.org/valkyrie/?#/builders/29/builds/3112 >>> The "Send QA Email" step failed, that is a known AB-INT bug: >>> #15696 – AB_INT: resulttool: File exists >>> https://bugzilla.yoctoproject.org/show_bug.cgi?id=15696 >>> >>> The following changes since commit >>> dd10706cfafb5574b7cf316fca2300d166ef71b0: >>> >>> build-appliance-image: Update to whinlatter head revisions (2026-01-12 >>> 10:58:53 +0000) >>> >>> are available in the Git repository at: >>> >>> https://git.openembedded.org/openembedded-core-contrib >>> stable/whinlatter-next >>> >>> https://git.openembedded.org/openembedded-core-contrib/log/?h=stable/whinlatter-next >>> >>> for you to fetch changes up to e7891f39ae90d1c23bfcb59af0064591513a671d: >>> >>> libarchive: upgrade 3.8.4 -> 3.8.5 (2026-01-19 23:29:16 +0100) >>> >>> ---------------------------------------------------------------- >>> >>> Alexander Kanavin (3): >>> libpng: upgrade 1.6.52 -> 1.6.53 >>> >> >> I forgot to add the cherry-pick reference to this commit. I'll add it >> now. >> > > I've added it to the stable/whinlatter-nut & stable/whinlatter-next branch > which is at > > https://git.openembedded.org/openembedded-core-contrib/commit/?h=stable/whinlatter-next&id=b4e7819b99d9c1a8995eba87e6f466fd8c77e14a > I verified that there is no diff in the code between the 2 branches and > started a rebuild: > https://autobuilder.yoctoproject.org/valkyrie/?#/builders/29/builds/3117 > > I'll send a proper PR with this new branch once the build has finished. > The new PR is at: https://lists.openembedded.org/g/openembedded-core/message/229913 > > Sorry for the noise :( > > >> >> >>> ffmpeg: add a (possible) build race fix >>> ffmpeg: fix a build race, hopefully for real this time >>> >>> Paul Barker (1): >>> selftest: devtool: Set PATH when running pseudo >>> >>> Peter Marko (9): >>> util-linux: patch CVE-2025-14104 >>> gnupg: patch CVE-2025-68973 >>> curl: patch CVE-2025-13034 >>> curl: patch CVE-2025-14017 >>> curl: patch CVE-2025-14524 >>> curl: patch CVE-2025-14819 >>> curl: patch CVE-2025-15079 >>> curl: patch CVE-2025-15224 >>> libarchive: upgrade 3.8.4 -> 3.8.5 >>> >>> Richard Purdie (2): >>> pseudo: Update to pull in openat2 and efault return code changes >>> pseudo: Update to pull in 'makewrappers: Fix EFAULT implementation' >>> >>> meta/lib/oeqa/selftest/cases/devtool.py | 5 +- >>> meta/recipes-core/util-linux/util-linux.inc | 2 + >>> .../util-linux/CVE-2025-14104-01.patch | 33 +++++ >>> .../util-linux/CVE-2025-14104-02.patch | 28 +++++ >>> meta/recipes-devtools/pseudo/pseudo_git.bb | 2 +- >>> ...ibarchive_3.8.4.bb => libarchive_3.8.5.bb} | 2 +- >>> ...k-Consolidate-pattern-rules-for-comp.patch | 106 ++++++++++++++++ >>> ...s-Fix-double-build-by-disabling-.d-f.patch | 78 ++++++++++++ >>> ...ak-ensure-target-directories-are-cre.patch | 43 +++++++ >>> meta/recipes-multimedia/ffmpeg/ffmpeg_8.0.bb | 6 +- >>> .../{libpng_1.6.52.bb => libpng_1.6.53.bb} | 2 +- >>> .../curl/curl/CVE-2025-13034.patch | 37 ++++++ >>> .../curl/curl/CVE-2025-14017.patch | 116 ++++++++++++++++++ >>> .../curl/curl/CVE-2025-14524.patch | 40 ++++++ >>> .../curl/curl/CVE-2025-14819.patch | 73 +++++++++++ >>> .../curl/curl/CVE-2025-15079.patch | 32 +++++ >>> .../curl/curl/CVE-2025-15224.patch | 31 +++++ >>> meta/recipes-support/curl/curl_8.17.0.bb | 6 + >>> .../gnupg/gnupg/CVE-2025-68973.patch | 108 ++++++++++++++++ >>> meta/recipes-support/gnupg/gnupg_2.5.11.bb | 1 + >>> 20 files changed, 745 insertions(+), 6 deletions(-) >>> create mode 100644 >>> meta/recipes-core/util-linux/util-linux/CVE-2025-14104-01.patch >>> create mode 100644 >>> meta/recipes-core/util-linux/util-linux/CVE-2025-14104-02.patch >>> rename meta/recipes-extended/libarchive/{libarchive_3.8.4.bb => >>> libarchive_3.8.5.bb} (96%) >>> create mode 100644 >>> meta/recipes-multimedia/ffmpeg/ffmpeg/0001-ffbuild-commonmak-Consolidate-pattern-rules-for-comp.patch >>> create mode 100644 >>> meta/recipes-multimedia/ffmpeg/ffmpeg/0001-fftools-resources-Fix-double-build-by-disabling-.d-f.patch >>> create mode 100644 >>> meta/recipes-multimedia/ffmpeg/ffmpeg/0002-ffbuild-common.mak-ensure-target-directories-are-cre.patch >>> rename meta/recipes-multimedia/libpng/{libpng_1.6.52.bb => >>> libpng_1.6.53.bb} (97%) >>> create mode 100644 meta/recipes-support/curl/curl/CVE-2025-13034.patch >>> create mode 100644 meta/recipes-support/curl/curl/CVE-2025-14017.patch >>> create mode 100644 meta/recipes-support/curl/curl/CVE-2025-14524.patch >>> create mode 100644 meta/recipes-support/curl/curl/CVE-2025-14819.patch >>> create mode 100644 meta/recipes-support/curl/curl/CVE-2025-15079.patch >>> create mode 100644 meta/recipes-support/curl/curl/CVE-2025-15224.patch >>> create mode 100644 meta/recipes-support/gnupg/gnupg/CVE-2025-68973.patch >>> >>> >> >> -- >> Yoann Congal >> Smile ECS >> > > > -- > Yoann Congal > Smile ECS >
Those are the patches from the last patch review: https://lore.kernel.org/openembedded-core/cover.1768906687.git.yoann.congal@smile.fr/ Passed a-full on autobuilder: https://autobuilder.yoctoproject.org/valkyrie/?#/builders/29/builds/3112 The "Send QA Email" step failed, that is a known AB-INT bug: #15696 – AB_INT: resulttool: File exists https://bugzilla.yoctoproject.org/show_bug.cgi?id=15696 The following changes since commit dd10706cfafb5574b7cf316fca2300d166ef71b0: build-appliance-image: Update to whinlatter head revisions (2026-01-12 10:58:53 +0000) are available in the Git repository at: https://git.openembedded.org/openembedded-core-contrib stable/whinlatter-next https://git.openembedded.org/openembedded-core-contrib/log/?h=stable/whinlatter-next for you to fetch changes up to e7891f39ae90d1c23bfcb59af0064591513a671d: libarchive: upgrade 3.8.4 -> 3.8.5 (2026-01-19 23:29:16 +0100) ---------------------------------------------------------------- Alexander Kanavin (3): libpng: upgrade 1.6.52 -> 1.6.53 ffmpeg: add a (possible) build race fix ffmpeg: fix a build race, hopefully for real this time Paul Barker (1): selftest: devtool: Set PATH when running pseudo Peter Marko (9): util-linux: patch CVE-2025-14104 gnupg: patch CVE-2025-68973 curl: patch CVE-2025-13034 curl: patch CVE-2025-14017 curl: patch CVE-2025-14524 curl: patch CVE-2025-14819 curl: patch CVE-2025-15079 curl: patch CVE-2025-15224 libarchive: upgrade 3.8.4 -> 3.8.5 Richard Purdie (2): pseudo: Update to pull in openat2 and efault return code changes pseudo: Update to pull in 'makewrappers: Fix EFAULT implementation' meta/lib/oeqa/selftest/cases/devtool.py | 5 +- meta/recipes-core/util-linux/util-linux.inc | 2 + .../util-linux/CVE-2025-14104-01.patch | 33 +++++ .../util-linux/CVE-2025-14104-02.patch | 28 +++++ meta/recipes-devtools/pseudo/pseudo_git.bb | 2 +- ...ibarchive_3.8.4.bb => libarchive_3.8.5.bb} | 2 +- ...k-Consolidate-pattern-rules-for-comp.patch | 106 ++++++++++++++++ ...s-Fix-double-build-by-disabling-.d-f.patch | 78 ++++++++++++ ...ak-ensure-target-directories-are-cre.patch | 43 +++++++ meta/recipes-multimedia/ffmpeg/ffmpeg_8.0.bb | 6 +- .../{libpng_1.6.52.bb => libpng_1.6.53.bb} | 2 +- .../curl/curl/CVE-2025-13034.patch | 37 ++++++ .../curl/curl/CVE-2025-14017.patch | 116 ++++++++++++++++++ .../curl/curl/CVE-2025-14524.patch | 40 ++++++ .../curl/curl/CVE-2025-14819.patch | 73 +++++++++++ .../curl/curl/CVE-2025-15079.patch | 32 +++++ .../curl/curl/CVE-2025-15224.patch | 31 +++++ meta/recipes-support/curl/curl_8.17.0.bb | 6 + .../gnupg/gnupg/CVE-2025-68973.patch | 108 ++++++++++++++++ meta/recipes-support/gnupg/gnupg_2.5.11.bb | 1 + 20 files changed, 745 insertions(+), 6 deletions(-) create mode 100644 meta/recipes-core/util-linux/util-linux/CVE-2025-14104-01.patch create mode 100644 meta/recipes-core/util-linux/util-linux/CVE-2025-14104-02.patch rename meta/recipes-extended/libarchive/{libarchive_3.8.4.bb => libarchive_3.8.5.bb} (96%) create mode 100644 meta/recipes-multimedia/ffmpeg/ffmpeg/0001-ffbuild-commonmak-Consolidate-pattern-rules-for-comp.patch create mode 100644 meta/recipes-multimedia/ffmpeg/ffmpeg/0001-fftools-resources-Fix-double-build-by-disabling-.d-f.patch create mode 100644 meta/recipes-multimedia/ffmpeg/ffmpeg/0002-ffbuild-common.mak-ensure-target-directories-are-cre.patch rename meta/recipes-multimedia/libpng/{libpng_1.6.52.bb => libpng_1.6.53.bb} (97%) create mode 100644 meta/recipes-support/curl/curl/CVE-2025-13034.patch create mode 100644 meta/recipes-support/curl/curl/CVE-2025-14017.patch create mode 100644 meta/recipes-support/curl/curl/CVE-2025-14524.patch create mode 100644 meta/recipes-support/curl/curl/CVE-2025-14819.patch create mode 100644 meta/recipes-support/curl/curl/CVE-2025-15079.patch create mode 100644 meta/recipes-support/curl/curl/CVE-2025-15224.patch create mode 100644 meta/recipes-support/gnupg/gnupg/CVE-2025-68973.patch