[scarthgap,00/26] Patch review

Message ID	cover.1760733431.git.steve@sakoman.com
State	Not Applicable, archived
Headers	show Return-Path: <steve@sakoman.com> ip: 209.85.210.173, mailfrom: steve@sakoman.com) From: Steve Sakoman <steve@sakoman.com> To: openembedded-core@lists.openembedded.org Subject: [OE-core][scarthgap 00/26] Patch review Date: Fri, 17 Oct 2025 13:38:43 -0700 Message-ID: <cover.1760733431.git.steve@sakoman.com> MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit

Message ID

cover.1760733431.git.steve@sakoman.com

State

Not Applicable, archived

Headers

From: Steve Sakoman <steve@sakoman.com>
To: openembedded-core@lists.openembedded.org
Subject: [OE-core][scarthgap 00/26] Patch review
Date: Fri, 17 Oct 2025 13:38:43 -0700
Message-ID: <cover.1760733431.git.steve@sakoman.com>
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

Message

Steve Sakoman Oct. 17, 2025, 8:38 p.m. UTC

Please review this set of changes for scarthgap and have comments back by
end of day Tuesday, October 21

Passed a-full on autobuilder:

https://autobuilder.yoctoproject.org/valkyrie/#/builders/29/builds/2608

The following changes since commit 7af6b75221d5703ba5bf43c7cd9f1e7a2e0ed20b:

  build-appliance-image: Update to scarthgap head revision (2025-10-13 12:47:05 -0700)

are available in the Git repository at:

  https://git.openembedded.org/openembedded-core-contrib stable/scarthgap-nut
  https://git.openembedded.org/openembedded-core-contrib/log/?h=stable/scarthgap-nut

Bruce Ashfield (12):
  linux-yocto/6.6: update to v6.6.98
  linux-yocto/6.6: update to v6.6.99
  linux-yocto/6.6: update to v6.6.100
  linux-yocto/6.6: update to v6.6.101
  linux-yocto/6.6: update to v6.6.102
  linux-yocto/6.6: update to v6.6.103
  linux-yocto/6.6: update to v6.6.106
  linux-yocto/6.6: update to v6.6.107
  linux-yocto/6.6: update to v6.6.108
  linux-yocto/6.6: update to v6.6.109
  linux-yocto/6.6: update to v6.6.110
  linux-yocto/6.6: update to v6.6.111

Carlos Alberto Lopez Perez (1):
  icu: Backport patch to fix build issues with long paths (>512 chars)

David Nyström (2):
  openssh: fix CVE-2025-61985
  openssh: fix CVE-2025-61984

Deepesh Varatharajan (1):
  glibc: stable 2.39 branch updates

Michael Haener (1):
  oeqa/runtime/ping: don't bother trying to ping localhost

Peter Marko (5):
  qemu: patch CVE-2024-8354
  binutils: patch CVE-2025-11082
  binutils: patch CVE-2025-11083
  gnupg: mark CVE-2025-30258 as patched
  python3: upgrade 3.12.11 -> 3.12.12

Rajeshkumar Ramasamy (2):
  glib-networking: fix CVE-2025-60018
  glib-networking: fix CVE-2025-60019

Saravanan (2):
  python3-xmltodict: fix CVE-2025-9375
  cmake: fix CVE-2025-9301

 meta/lib/oeqa/runtime/cases/ping.py           |   7 +
 .../openssh/openssh/CVE-2025-61984.patch      | 125 ++++++++++
 .../openssh/openssh/CVE-2025-61985.patch      |  47 ++++
 .../openssh/openssh_9.6p1.bb                  |   2 +
 .../glib-networking/CVE-2025-60018.patch      |  83 +++++++
 .../glib-networking/CVE-2025-60019.patch      | 147 ++++++++++++
 .../glib-networking/glib-networking_2.78.1.bb |   2 +
 meta/recipes-core/glibc/glibc-version.inc     |   4 +-
 .../binutils/binutils-2.42.inc                |   2 +
 .../binutils/0024-CVE-2025-11082.patch        |  46 ++++
 .../binutils/0025-CVE-2025-11083.patch        |  77 ++++++
 .../cmake/cmake/CVE-2025-9301.patch           |  71 ++++++
 meta/recipes-devtools/cmake/cmake_3.28.3.bb   |   1 +
 .../python3-xmltodict/CVE-2025-9375-1.patch   | 111 +++++++++
 .../python3-xmltodict/CVE-2025-9375-2.patch   | 176 ++++++++++++++
 .../python/python3-xmltodict_0.13.0.bb        |   2 +
 ...e-treat-overflow-in-UID-GID-as-failu.patch |   2 +-
 .../python/python3/CVE-2025-8194.patch        | 219 ------------------
 ...{python3_3.12.11.bb => python3_3.12.12.bb} |   3 +-
 meta/recipes-devtools/qemu/qemu.inc           |   1 +
 .../qemu/qemu/CVE-2024-8354.patch             |  75 ++++++
 .../linux/linux-yocto-rt_6.6.bb               |   6 +-
 .../linux/linux-yocto-tiny_6.6.bb             |   6 +-
 meta/recipes-kernel/linux/linux-yocto_6.6.bb  |  28 +--
 meta/recipes-support/gnupg/gnupg_2.4.8.bb     |   1 +
 ...813_rise_buffer_sizes_pkgdata_PR3058.patch |  72 ++++++
 meta/recipes-support/icu/icu_74-2.bb          |   1 +
 test                                          |   0
 28 files changed, 1073 insertions(+), 244 deletions(-)
 create mode 100644 meta/recipes-connectivity/openssh/openssh/CVE-2025-61984.patch
 create mode 100644 meta/recipes-connectivity/openssh/openssh/CVE-2025-61985.patch
 create mode 100644 meta/recipes-core/glib-networking/glib-networking/CVE-2025-60018.patch
 create mode 100644 meta/recipes-core/glib-networking/glib-networking/CVE-2025-60019.patch
 create mode 100644 meta/recipes-devtools/binutils/binutils/0024-CVE-2025-11082.patch
 create mode 100644 meta/recipes-devtools/binutils/binutils/0025-CVE-2025-11083.patch
 create mode 100644 meta/recipes-devtools/cmake/cmake/CVE-2025-9301.patch
 create mode 100644 meta/recipes-devtools/python/python3-xmltodict/CVE-2025-9375-1.patch
 create mode 100644 meta/recipes-devtools/python/python3-xmltodict/CVE-2025-9375-2.patch
 delete mode 100644 meta/recipes-devtools/python/python3/CVE-2025-8194.patch
 rename meta/recipes-devtools/python/{python3_3.12.11.bb => python3_3.12.12.bb} (99%)
 create mode 100644 meta/recipes-devtools/qemu/qemu/CVE-2024-8354.patch
 create mode 100644 meta/recipes-support/icu/icu/ICU-22813_rise_buffer_sizes_pkgdata_PR3058.patch
 create mode 100644 test

[scarthgap,00/26] Patch review

Pull-request

Message