Toggle navigation
Patchwork
OpenEmbedded Core Layer
Patches
Bundles
About this project
Login
Register
Mail settings
Show patches with
: State =
Action Required
| 15665 patches
Series
Submitter
State
any
Action Required
New
Under Review
Accepted
Rejected
RFC
Not Applicable
Changes Requested
Awaiting Upstream
Superseded
Deferred
Search
Archived
No
Yes
Both
Delegate
------
Nobody
gitpwbot
gitpwbot
gitpwbot
gitpwbot
gitpwbot
gitpwbot
gitpwbot
gitpwbot
mototimo
mototimo
mototimo
kraj
kraj
denix
denix
reatmon
reatmon
rpurdie
rpurdie
rpurdie
rpurdie
sakoman
ycongal_smile
ycongal_smile
ycongal_smile
rossburton
rossburton
jonmason
abelloni
abelloni
agodard
mathieu
anujm
Apply
«
1
2
3
4
…
156
157
»
Patch
Series
A/R/T
S/W/F
Date
Submitter
Delegate
State
[3/3] conf/distro: Drop default-versions.inc
[1/3] nativesdk/crosssdk: Fix DISTRO_FEATURES_BACKFILL handling
- - -
-
-
-
2026-02-21
Richard Purdie
New
[2/3] binutils: Drop unneeded and problematic vardeps explict value and immediate expansion
[1/3] nativesdk/crosssdk: Fix DISTRO_FEATURES_BACKFILL handling
- - -
-
-
-
2026-02-21
Richard Purdie
New
[1/3] nativesdk/crosssdk: Fix DISTRO_FEATURES_BACKFILL handling
[1/3] nativesdk/crosssdk: Fix DISTRO_FEATURES_BACKFILL handling
- - -
-
-
-
2026-02-21
Richard Purdie
New
[v2,18/18] spdx-common: Clarify documentation and make SPDX_LICENSES extensible
spdx30: SBOM enrichment, lifecycle scope, and documentation
- - -
-
-
-
2026-02-21
Stefano Tondo
New
[v2,17/18] spdx-common: Add documentation for undocumented SPDX variables
spdx30: SBOM enrichment, lifecycle scope, and documentation
- - -
-
-
-
2026-02-21
Stefano Tondo
New
[v2,16/18] oeqa/selftest: Add test for lifecycle scope classification
spdx30: SBOM enrichment, lifecycle scope, and documentation
- - -
-
-
-
2026-02-21
Stefano Tondo
New
[v2,15/18] spdx-common: Declare SPDX_FORCE_*_SCOPE override variables
spdx30: SBOM enrichment, lifecycle scope, and documentation
- - -
-
-
-
2026-02-21
Stefano Tondo
New
[v2,14/18] cve_check: Escape special characters in CPE 2.3 formatted strings
spdx30: SBOM enrichment, lifecycle scope, and documentation
- - -
-
-
-
2026-02-21
Stefano Tondo
New
[v2,13/18] spdx.py: Add test for version extraction patterns
spdx30: SBOM enrichment, lifecycle scope, and documentation
- - -
-
-
-
2026-02-21
Stefano Tondo
New
[v2,12/18] oeqa/selftest: Add test for download_location defensive handling
spdx30: SBOM enrichment, lifecycle scope, and documentation
- - -
-
-
-
2026-02-21
Stefano Tondo
New
[v2,11/18] spdx30: Add rootfs version and dependency scope classification
spdx30: SBOM enrichment, lifecycle scope, and documentation
- - -
-
-
-
2026-02-21
Stefano Tondo
New
[v2,10/18] spdx30_tasks: Fix non-deterministic BUILDNAME in image package version
spdx30: SBOM enrichment, lifecycle scope, and documentation
- - -
-
-
-
2026-02-21
Stefano Tondo
New
[v2,09/18] spdx30: Add image root metadata package with describes relationship
spdx30: SBOM enrichment, lifecycle scope, and documentation
- - -
-
-
-
2026-02-21
Stefano Tondo
New
[v2,08/18] spdx30: Include recipe base PURL in package external identifiers
spdx30: SBOM enrichment, lifecycle scope, and documentation
- - -
-
-
-
2026-02-21
Stefano Tondo
New
[v2,07/18] spdx30: Enrich source downloads with external refs and PURLs
spdx30: SBOM enrichment, lifecycle scope, and documentation
- - -
-
-
-
2026-02-21
Stefano Tondo
New
[v2,06/18] sbom30: Fix object deduplication to preserve complete data
spdx30: SBOM enrichment, lifecycle scope, and documentation
- - -
-
-
-
2026-02-21
Stefano Tondo
New
[v2,05/18] spdx30: Add SPDX_GIT_PURL_MAPPINGS for Git hosting
spdx30: SBOM enrichment, lifecycle scope, and documentation
- - -
-
-
-
2026-02-21
Stefano Tondo
New
[v2,04/18] spdx30: Add version extraction from SRCREV for Git source components
spdx30: SBOM enrichment, lifecycle scope, and documentation
- - -
-
-
-
2026-02-21
Stefano Tondo
New
[v2,03/18] spdx30: Add ecosystem-specific PURL generation
spdx30: SBOM enrichment, lifecycle scope, and documentation
- - -
-
-
-
2026-02-21
Stefano Tondo
New
[v2,02/18] spdx30: Add supplier support for image and SDK SBOMs
spdx30: SBOM enrichment, lifecycle scope, and documentation
- - -
-
-
-
2026-02-21
Stefano Tondo
New
[v2,01/18] spdx30: Add configurable file filtering support
spdx30: SBOM enrichment, lifecycle scope, and documentation
- - -
-
-
-
2026-02-21
Stefano Tondo
New
[v2,2/2] oeqa/selftest: Add test for lifecycle scope classification
spdx30: Lifecycle scope variable declarations and test
- - -
-
-
-
2026-02-21
Stefano Tondo
New
[v2,1/2] spdx-common: Declare SPDX_FORCE_*_SCOPE override variables
spdx30: Lifecycle scope variable declarations and test
- - -
-
-
-
2026-02-21
Stefano Tondo
New
[2/2] spdx-common: Clarify documentation and make SPDX_LICENSES extensible
spdx-common: Documentation and extensibility improvements
- - -
-
-
-
2026-02-21
Stefano Tondo
New
[1/2] spdx-common: Add documentation for undocumented SPDX variables
spdx-common: Documentation and extensibility improvements
- - -
-
-
-
2026-02-21
Stefano Tondo
New
[1/1] spdx30: Read runtime dependencies from package manifests
spdx30: Runtime dependency detection from package manifests
- - -
-
-
-
2026-02-21
Stefano Tondo
New
[14/14] cve_check: Escape special characters in CPE 2.3 formatted strings
spdx30: SBOM enrichment for PURL, metadata, and compliance
- - -
-
-
-
2026-02-21
Stefano Tondo
New
[13/14] spdx.py: Add test for version extraction patterns
spdx30: SBOM enrichment for PURL, metadata, and compliance
- - -
-
-
-
2026-02-21
Stefano Tondo
New
[12/14] oeqa/selftest: Add test for download_location defensive handling
spdx30: SBOM enrichment for PURL, metadata, and compliance
- - -
-
-
-
2026-02-21
Stefano Tondo
New
[11/14] spdx30: Add rootfs version and dependency scope classification
spdx30: SBOM enrichment for PURL, metadata, and compliance
- - -
-
-
-
2026-02-21
Stefano Tondo
New
[10/14] spdx30_tasks: Fix non-deterministic BUILDNAME in image package version
spdx30: SBOM enrichment for PURL, metadata, and compliance
- - -
-
-
-
2026-02-21
Stefano Tondo
New
[09/14] spdx30: Add image root metadata package with describes relationship
spdx30: SBOM enrichment for PURL, metadata, and compliance
- - -
-
-
-
2026-02-21
Stefano Tondo
New
[08/14] spdx30: Include recipe base PURL in package external identifiers
spdx30: SBOM enrichment for PURL, metadata, and compliance
- - -
-
-
-
2026-02-21
Stefano Tondo
New
[07/14] spdx30: Enrich source downloads with external refs and PURLs
spdx30: SBOM enrichment for PURL, metadata, and compliance
- - -
-
-
-
2026-02-21
Stefano Tondo
New
[06/14] sbom30: Fix object deduplication to preserve complete data
spdx30: SBOM enrichment for PURL, metadata, and compliance
- - -
-
-
-
2026-02-21
Stefano Tondo
New
[05/14] spdx30: Add SPDX_GIT_PURL_MAPPINGS for Git hosting
spdx30: SBOM enrichment for PURL, metadata, and compliance
- - -
-
-
-
2026-02-21
Stefano Tondo
New
[04/14] spdx30: Add version extraction from SRCREV for Git source components
spdx30: SBOM enrichment for PURL, metadata, and compliance
- - -
-
-
-
2026-02-21
Stefano Tondo
New
[03/14] spdx30: Add ecosystem-specific PURL generation
spdx30: SBOM enrichment for PURL, metadata, and compliance
- - -
-
-
-
2026-02-21
Stefano Tondo
New
[02/14] spdx30: Add supplier support for image and SDK SBOMs
spdx30: SBOM enrichment for PURL, metadata, and compliance
- - -
-
-
-
2026-02-21
Stefano Tondo
New
[01/14] spdx30: Add configurable file filtering support
spdx30: SBOM enrichment for PURL, metadata, and compliance
- - -
-
-
-
2026-02-21
Stefano Tondo
New
[scarthgap,v2] busybox: Fixes CVE-2025-60876
[scarthgap,v2] busybox: Fixes CVE-2025-60876
- - -
-
-
-
2026-02-21
Livin Sunny
New
[scarthgap] busybox: Fixes CVE-2025-60876 malicious URL can be used to inject HTTP headers in the r…
[scarthgap] busybox: Fixes CVE-2025-60876 malicious URL can be used to inject HTTP headers in the r…
- - -
-
-
-
2026-02-20
Livin Sunny
New
[kirkstone] alsa-lib: patch CVE-2026-25068
[kirkstone] alsa-lib: patch CVE-2026-25068
- - -
-
-
-
2026-02-20
Marko, Peter
New
[scarthgap] alsa-lib: patch CVE-2026-25068
[scarthgap] alsa-lib: patch CVE-2026-25068
- - -
-
-
-
2026-02-20
Marko, Peter
New
[whinlatter] alsa-lib: patch CVE-2026-25068
[whinlatter] alsa-lib: patch CVE-2026-25068
- - -
-
-
-
2026-02-20
Marko, Peter
New
alsa-lib: patch CVE-2026-25068
alsa-lib: patch CVE-2026-25068
- - -
-
-
-
2026-02-20
Marko, Peter
New
[kirkstone,4/4] avahi: patch CVE-2026-24401
[kirkstone,1/4] avahi: patch CVE-2025-68276
- - -
-
-
-
2026-02-20
Marko, Peter
New
[kirkstone,3/4] avahi: patch CVE-2025-68471
[kirkstone,1/4] avahi: patch CVE-2025-68276
- - -
-
-
-
2026-02-20
Marko, Peter
New
[kirkstone,2/4] avahi: patch CVE-2025-68468
[kirkstone,1/4] avahi: patch CVE-2025-68276
- - -
-
-
-
2026-02-20
Marko, Peter
New
[kirkstone,1/4] avahi: patch CVE-2025-68276
[kirkstone,1/4] avahi: patch CVE-2025-68276
- - -
-
-
-
2026-02-20
Marko, Peter
New
[kirkstone] vim: ignore CVE-2025-66476
[kirkstone] vim: ignore CVE-2025-66476
- - -
-
-
-
2026-02-20
Marko, Peter
New
[kirkstone] ffmpeg: set status of CVE-2025-25468 and CVE-2025-25469
[kirkstone] ffmpeg: set status of CVE-2025-25468 and CVE-2025-25469
- - -
-
-
-
2026-02-20
Marko, Peter
New
[scarthgap] ffmpeg: set status of CVE-2025-25468
[scarthgap] ffmpeg: set status of CVE-2025-25468
- - -
-
-
-
2026-02-20
Marko, Peter
New
[scarthgap] libtheora: mark CVE-2024-56431 as not vulnerable yet
[scarthgap] libtheora: mark CVE-2024-56431 as not vulnerable yet
- - -
-
-
-
2026-02-20
Marko, Peter
New
[scarthgap] ffmpeg: ignore CVE-2025-1594
[scarthgap] ffmpeg: ignore CVE-2025-1594
- - -
-
-
-
2026-02-20
Marko, Peter
New
[scarthgap,3/3] glib-2.0: patch CVE-2026-1489
[scarthgap,1/3] glib-2.0: patch CVE-2026-1484
- - -
-
-
-
2026-02-20
Marko, Peter
New
[scarthgap,2/3] glib-2.0: patch CVE-2026-1485
[scarthgap,1/3] glib-2.0: patch CVE-2026-1484
- - -
-
-
-
2026-02-20
Marko, Peter
New
[scarthgap,1/3] glib-2.0: patch CVE-2026-1484
[scarthgap,1/3] glib-2.0: patch CVE-2026-1484
- - -
-
-
-
2026-02-20
Marko, Peter
New
[kirkstone,3/3] glib-2.0: patch CVE-2026-1489
[kirkstone,1/3] glib-2.0: patch CVE-2026-1484
- - -
-
-
-
2026-02-20
Marko, Peter
New
[kirkstone,2/3] glib-2.0: patch CVE-2026-1485
[kirkstone,1/3] glib-2.0: patch CVE-2026-1484
- - -
-
-
-
2026-02-20
Marko, Peter
New
[kirkstone,1/3] glib-2.0: patch CVE-2026-1484
[kirkstone,1/3] glib-2.0: patch CVE-2026-1484
- - -
-
-
-
2026-02-20
Marko, Peter
New
[kirkstone,v2] glib-2.0: patch CVE-2026-0988
[kirkstone,v2] glib-2.0: patch CVE-2026-0988
- - -
-
-
-
2026-02-20
Marko, Peter
New
[9/9] spdx_common: Check for dependent task in task flags
Add SPDX 3 Recipe Information
- - -
-
-
-
2026-02-20
Joshua Watt
New
[8/9] spdx: Ignore ASSUME_PROVIDED recipes
Add SPDX 3 Recipe Information
- - -
-
-
-
2026-02-20
Joshua Watt
New
[7/9] spdx: De-duplicate CreationInfo
Add SPDX 3 Recipe Information
- - -
-
-
-
2026-02-20
Joshua Watt
New
[6/9] spdx30: Include patch file information in VEX
Add SPDX 3 Recipe Information
- - -
-
-
-
2026-02-20
Joshua Watt
New
[5/9] spdx3: Add is-native property
Add SPDX 3 Recipe Information
- - -
-
-
-
2026-02-20
Joshua Watt
New
[4/9] spdx3: Add recipe SBoM task
Add SPDX 3 Recipe Information
- - -
-
-
-
2026-02-20
Joshua Watt
New
[3/9] spdx3: Add recipe SPDX data
Add SPDX 3 Recipe Information
- - -
-
-
-
2026-02-20
Joshua Watt
New
[2/9] gcc-source: Use allarch.bbclass
Add SPDX 3 Recipe Information
- - -
-
-
-
2026-02-20
Joshua Watt
New
[1/9] llvm-project-source: Use allarch.bbclass
Add SPDX 3 Recipe Information
- - -
-
-
-
2026-02-20
Joshua Watt
New
[scarthgap] harfbuzz: Fix CVE-2026-22693
[scarthgap] harfbuzz: Fix CVE-2026-22693
- - -
-
-
-
2026-02-20
Hugo Simeliere
New
[whinlatter] harfbuzz: Fix CVE-2026-22693
[whinlatter] harfbuzz: Fix CVE-2026-22693
- - -
-
-
-
2026-02-20
Hugo Simeliere
New
[scarthgap] zlib: Fix CVE-2026-27171
[scarthgap] zlib: Fix CVE-2026-27171
- - -
-
-
-
2026-02-20
Hugo Simeliere
New
[whinlatter] zlib: Fix CVE-2026-27171
[whinlatter] zlib: Fix CVE-2026-27171
- - -
-
-
-
2026-02-20
Hugo Simeliere
New
systemd 259.1: fix udev rootfs by-partuuid link generation
systemd 259.1: fix udev rootfs by-partuuid link generation
- - -
-
-
-
2026-02-20
Mikko Rapeli
New
[v2] systemd 258.1: fix udev rootfs by-partuuid link generation
[v2] systemd 258.1: fix udev rootfs by-partuuid link generation
- - -
-
-
-
2026-02-20
Mikko Rapeli
New
[2/2] meta: in lz4 remove reference to rejected CVE-2025-62813
meta: remove reference in patches to rejected CVE
- - -
-
-
-
2026-02-20
Benjamin ROBIN
New
[1/2] meta: update avahi patch to remove ref to rejected CVE
meta: remove reference in patches to rejected CVE
- - -
-
-
-
2026-02-20
Benjamin ROBIN
New
systemd 258.1: fix udev rootfs by-partuuid link generation
systemd 258.1: fix udev rootfs by-partuuid link generation
- - -
-
-
-
2026-02-20
Mikko Rapeli
New
[whinlatter] wic/engine: error on old host debugfs for standalone directory copy
[whinlatter] wic/engine: error on old host debugfs for standalone directory copy
- - -
-
-
-
2026-02-20
Daniel Dragomir
New
[scarthgap] wic/engine: error on old host debugfs for standalone directory copy
[scarthgap] wic/engine: error on old host debugfs for standalone directory copy
- - -
-
-
-
2026-02-20
Daniel Dragomir
New
[scarthgap,v1] libarchive: adapt ptest support from master to scarthgap
[scarthgap,v1] libarchive: adapt ptest support from master to scarthgap
- - -
-
-
-
2026-02-20
Pratik Farkase
New
[4/4] rust: Fix rust build failure
Oe-selftest for Clang, LLVM, LLD
- - -
-
-
-
2026-02-20
Deepesh Varatharajan
Under Review
[3/4] oeqa/selftest/clang: Add oe-seltests for Clang/LLVM/LLD
Oe-selftest for Clang, LLVM, LLD
- - -
-
-
-
2026-02-20
Deepesh Varatharajan
Under Review
[2/4] clang: Enable cmake flags for llvm, clang, lld tests
Oe-selftest for Clang, LLVM, LLD
- - -
-
-
-
2026-02-20
Deepesh Varatharajan
Under Review
[1/4] clang-tools-extra: disable tests
Oe-selftest for Clang, LLVM, LLD
- - -
-
-
-
2026-02-20
Deepesh Varatharajan
Under Review
[openembedded-core,scarthgap,v1,34/34] cve-update: Avoid NFS caching issues
[openembedded-core,scarthgap,v1,01/34] cve-check: encode affected product/vendor in CVE_STATUS
- - -
-
-
-
2026-02-20
Het Patel -X (hetpat - E INFOCHIPS PRIVATE LIMITED at Cisco)
New
[openembedded-core,scarthgap,v1,33/34] cve-update-nvd2-native: pycodestyle fixes
[openembedded-core,scarthgap,v1,01/34] cve-check: encode affected product/vendor in CVE_STATUS
- - -
-
-
-
2026-02-20
Het Patel -X (hetpat - E INFOCHIPS PRIVATE LIMITED at Cisco)
New
[openembedded-core,scarthgap,v1,32/34] cve-update-db-native: pycodestyle fixes
[openembedded-core,scarthgap,v1,01/34] cve-check: encode affected product/vendor in CVE_STATUS
- - -
-
-
-
2026-02-20
Het Patel -X (hetpat - E INFOCHIPS PRIVATE LIMITED at Cisco)
New
[openembedded-core,scarthgap,v1,31/34] cve-update: log timestamps and add force update for future t…
[openembedded-core,scarthgap,v1,01/34] cve-check: encode affected product/vendor in CVE_STATUS
- - -
-
-
-
2026-02-20
Het Patel -X (hetpat - E INFOCHIPS PRIVATE LIMITED at Cisco)
New
[openembedded-core,scarthgap,v1,30/34] cve-update-db-native: FKIE CVE parsing: Use Secondary metric
[openembedded-core,scarthgap,v1,01/34] cve-check: encode affected product/vendor in CVE_STATUS
- - -
-
-
-
2026-02-20
Het Patel -X (hetpat - E INFOCHIPS PRIVATE LIMITED at Cisco)
New
[openembedded-core,scarthgap,v1,29/34] cve-update-db-native: Fix FKIE CVE accessVector parsing
[openembedded-core,scarthgap,v1,01/34] cve-check: encode affected product/vendor in CVE_STATUS
- - -
-
-
-
2026-02-20
Het Patel -X (hetpat - E INFOCHIPS PRIVATE LIMITED at Cisco)
New
[openembedded-core,scarthgap,v1,28/34] cve-update: remove cleanup of db_file in downloads
[openembedded-core,scarthgap,v1,01/34] cve-check: encode affected product/vendor in CVE_STATUS
- - -
-
-
-
2026-02-20
Het Patel -X (hetpat - E INFOCHIPS PRIVATE LIMITED at Cisco)
New
[openembedded-core,scarthgap,v1,27/34] cve-update: decrease update interval to 23 hours
[openembedded-core,scarthgap,v1,01/34] cve-check: encode affected product/vendor in CVE_STATUS
- - -
-
-
-
2026-02-20
Het Patel -X (hetpat - E INFOCHIPS PRIVATE LIMITED at Cisco)
New
[openembedded-core,scarthgap,v1,26/34] cve-update-db-native: log a little more
[openembedded-core,scarthgap,v1,01/34] cve-check: encode affected product/vendor in CVE_STATUS
- - -
-
-
-
2026-02-20
Het Patel -X (hetpat - E INFOCHIPS PRIVATE LIMITED at Cisco)
New
[openembedded-core,scarthgap,v1,25/34] cve-update-db-native: Handle BB_NO_NETWORK and missing db
[openembedded-core,scarthgap,v1,01/34] cve-check: encode affected product/vendor in CVE_STATUS
- - -
-
-
-
2026-02-20
Het Patel -X (hetpat - E INFOCHIPS PRIVATE LIMITED at Cisco)
New
[openembedded-core,scarthgap,v1,24/34] cve-update-db-native: Use a local copy of the database durin…
[openembedded-core,scarthgap,v1,01/34] cve-check: encode affected product/vendor in CVE_STATUS
- - -
-
-
-
2026-02-20
Het Patel -X (hetpat - E INFOCHIPS PRIVATE LIMITED at Cisco)
New
[openembedded-core,scarthgap,v1,23/34] cve-update-db-native: fix fetcher for CVEs missing nodes
[openembedded-core,scarthgap,v1,01/34] cve-check: encode affected product/vendor in CVE_STATUS
- - -
-
-
-
2026-02-20
Het Patel -X (hetpat - E INFOCHIPS PRIVATE LIMITED at Cisco)
New
[openembedded-core,scarthgap,v1,22/34] spdx30: Allow VEX Justification to be configurable
[openembedded-core,scarthgap,v1,01/34] cve-check: encode affected product/vendor in CVE_STATUS
- - -
-
-
-
2026-02-20
Het Patel -X (hetpat - E INFOCHIPS PRIVATE LIMITED at Cisco)
New
«
1
2
3
4
…
156
157
»