| Message ID | cover.1772700454.git.yoann.congal@smile.fr |
|---|---|
| State | Not Applicable, archived |
| Headers | show |
On Thu Mar 5, 2026 at 9:54 AM CET, Yoann Congal wrote: > Please review this set of changes for whinlatter and have comments back > by end of day Monday, March 9. > > Passed a-full on autobuilder with warnings: > https://autobuilder.yoctoproject.org/valkyrie/#/builders/29/builds/3334 > The sub-build qemux86-64-ptest had a ptest failure > https://autobuilder.yoctoproject.org/valkyrie/#/builders/73/builds/3207 > It is a known AB-INT bug: 15718 – AB-INT: gstreamer ptest never ending (Bitbake still alive) > https://bugzilla.yoctoproject.org/show_bug.cgi?id=15718 > This is not related to this series. > > The following changes since commit 45cba1329d541fdc5857d6df2624b34c91133f7a: > > build-appliance-image: Update to whinlatter head revisions (2026-02-27 17:46:44 +0000) > > are available in the Git repository at: > > https://git.openembedded.org/openembedded-core-contrib stable/whinlatter-nut > https://git.openembedded.org/openembedded-core-contrib/log/?h=stable/whinlatter-nut I plan to also add this patch to the branch: [whinlatter][PATCH] create-pull-request: Keep commit hash to be pulled in cover email https://lore.kernel.org/openembedded-core/20260305085838.1176663-2-yoann.congal@smile.fr/T/#u > > Adarsh Jagadish Kamini (1): > python3-pip: Backport fix CVE-2026-1703 > > Ankur Tyagi (1): > wireless-regdb: upgrade 2025.10.07 -> 2026.02.04 > > Antonin Godard (1): > python3: skip flaky test_default_timeout test > > Hugo SIMELIERE (2): > zlib: Fix CVE-2026-27171 > harfbuzz: Fix CVE-2026-22693 > > Peter Marko (3): > linux-yocto: apply cve-exclusions also to rt and tiny recipe variants > cve-exclusions: set status for 5 CVEs > ffmpeg: set status for CVE-2025-12343 > > Shaik Moin (1): > gdk-pixbuf: Fix CVE-2025-6199 > > Vijay Anusuri (1): > gnutls: Fix CVE-2025-14831 > > Yoann Congal (2): > README: Add whinlatter subject-prefix to git-send-email suggestion > b4-config: add send-prefixes for whinlatter > > .b4-config | 1 + > README.OE-Core.md | 2 +- > .../zlib/zlib/CVE-2026-27171.patch | 63 +++ > meta/recipes-core/zlib/zlib_1.3.1.bb | 1 + > .../python/python3-pip/CVE-2026-1703.patch | 41 ++ > .../python/python3-pip_25.2.bb | 4 +- > ...kip-flaky-test_default_timeout-tests.patch | 49 ++ > .../python/python3_3.13.11.bb | 1 + > .../gdk-pixbuf/gdk-pixbuf/CVE-2025-6199.patch | 36 ++ > .../gdk-pixbuf/gdk-pixbuf_2.42.12.bb | 1 + > .../harfbuzz/files/CVE-2026-22693.patch | 33 ++ > .../harfbuzz/harfbuzz_11.4.5.bb | 4 +- > meta/recipes-kernel/linux/cve-exclusion.inc | 16 + > .../linux/linux-yocto-rt_6.12.bb | 1 + > .../linux/linux-yocto-rt_6.16.bb | 1 + > .../linux/linux-yocto-tiny_6.12.bb | 1 + > .../linux/linux-yocto-tiny_6.16.bb | 1 + > ....10.07.bb => wireless-regdb_2026.02.04.bb} | 2 +- > meta/recipes-multimedia/ffmpeg/ffmpeg_8.0.bb | 1 + > .../gnutls/gnutls/CVE-2025-14831-1.patch | 119 +++++ > .../gnutls/gnutls/CVE-2025-14831-10.patch | 424 +++++++++++++++ > .../gnutls/gnutls/CVE-2025-14831-2.patch | 66 +++ > .../gnutls/gnutls/CVE-2025-14831-3.patch | 30 ++ > .../gnutls/gnutls/CVE-2025-14831-4.patch | 45 ++ > .../gnutls/gnutls/CVE-2025-14831-5.patch | 205 +++++++ > .../gnutls/gnutls/CVE-2025-14831-6.patch | 505 ++++++++++++++++++ > .../gnutls/gnutls/CVE-2025-14831-7.patch | 124 +++++ > .../gnutls/gnutls/CVE-2025-14831-8.patch | 155 ++++++ > .../gnutls/gnutls/CVE-2025-14831-9.patch | 110 ++++ > meta/recipes-support/gnutls/gnutls_3.8.10.bb | 10 + > 30 files changed, 2048 insertions(+), 4 deletions(-) > create mode 100644 meta/recipes-core/zlib/zlib/CVE-2026-27171.patch > create mode 100644 meta/recipes-devtools/python/python3-pip/CVE-2026-1703.patch > create mode 100644 meta/recipes-devtools/python/python3/0001-Skip-flaky-test_default_timeout-tests.patch > create mode 100644 meta/recipes-gnome/gdk-pixbuf/gdk-pixbuf/CVE-2025-6199.patch > create mode 100644 meta/recipes-graphics/harfbuzz/files/CVE-2026-22693.patch > rename meta/recipes-kernel/wireless-regdb/{wireless-regdb_2025.10.07.bb => wireless-regdb_2026.02.04.bb} (94%) > create mode 100644 meta/recipes-support/gnutls/gnutls/CVE-2025-14831-1.patch > create mode 100644 meta/recipes-support/gnutls/gnutls/CVE-2025-14831-10.patch > create mode 100644 meta/recipes-support/gnutls/gnutls/CVE-2025-14831-2.patch > create mode 100644 meta/recipes-support/gnutls/gnutls/CVE-2025-14831-3.patch > create mode 100644 meta/recipes-support/gnutls/gnutls/CVE-2025-14831-4.patch > create mode 100644 meta/recipes-support/gnutls/gnutls/CVE-2025-14831-5.patch > create mode 100644 meta/recipes-support/gnutls/gnutls/CVE-2025-14831-6.patch > create mode 100644 meta/recipes-support/gnutls/gnutls/CVE-2025-14831-7.patch > create mode 100644 meta/recipes-support/gnutls/gnutls/CVE-2025-14831-8.patch > create mode 100644 meta/recipes-support/gnutls/gnutls/CVE-2025-14831-9.patch
On Thu Mar 5, 2026 at 10:20 AM CET, Yoann Congal wrote: > On Thu Mar 5, 2026 at 9:54 AM CET, Yoann Congal wrote: >> Please review this set of changes for whinlatter and have comments back >> by end of day Monday, March 9. >> >> Passed a-full on autobuilder with warnings: >> https://autobuilder.yoctoproject.org/valkyrie/#/builders/29/builds/3334 >> The sub-build qemux86-64-ptest had a ptest failure >> https://autobuilder.yoctoproject.org/valkyrie/#/builders/73/builds/3207 >> It is a known AB-INT bug: 15718 – AB-INT: gstreamer ptest never ending (Bitbake still alive) >> https://bugzilla.yoctoproject.org/show_bug.cgi?id=15718 >> This is not related to this series. >> >> The following changes since commit 45cba1329d541fdc5857d6df2624b34c91133f7a: >> >> build-appliance-image: Update to whinlatter head revisions (2026-02-27 17:46:44 +0000) >> >> are available in the Git repository at: >> >> https://git.openembedded.org/openembedded-core-contrib stable/whinlatter-nut >> https://git.openembedded.org/openembedded-core-contrib/log/?h=stable/whinlatter-nut > > I plan to also add this patch to the branch: > [whinlatter][PATCH] create-pull-request: Keep commit hash to be pulled in cover email > https://lore.kernel.org/openembedded-core/20260305085838.1176663-2-yoann.congal@smile.fr/T/#u And also: [whinlatter][PATCH 1/2] avahi: Remove a reference to the rejected CVE-2021-36217 - Yoann Congal https://lore.kernel.org/openembedded-core/20260305093127.1179651-1-yoann.congal@smile.fr/ [whinlatter][PATCH 2/2] lz4: Remove a reference to the rejected CVE-2025-62813 - Yoann Congal https://lore.kernel.org/openembedded-core/20260305093127.1179651-2-yoann.congal@smile.fr/ >> Adarsh Jagadish Kamini (1): >> python3-pip: Backport fix CVE-2026-1703 >> >> Ankur Tyagi (1): >> wireless-regdb: upgrade 2025.10.07 -> 2026.02.04 >> >> Antonin Godard (1): >> python3: skip flaky test_default_timeout test >> >> Hugo SIMELIERE (2): >> zlib: Fix CVE-2026-27171 >> harfbuzz: Fix CVE-2026-22693 >> >> Peter Marko (3): >> linux-yocto: apply cve-exclusions also to rt and tiny recipe variants >> cve-exclusions: set status for 5 CVEs >> ffmpeg: set status for CVE-2025-12343 >> >> Shaik Moin (1): >> gdk-pixbuf: Fix CVE-2025-6199 >> >> Vijay Anusuri (1): >> gnutls: Fix CVE-2025-14831 >> >> Yoann Congal (2): >> README: Add whinlatter subject-prefix to git-send-email suggestion >> b4-config: add send-prefixes for whinlatter >> >> .b4-config | 1 + >> README.OE-Core.md | 2 +- >> .../zlib/zlib/CVE-2026-27171.patch | 63 +++ >> meta/recipes-core/zlib/zlib_1.3.1.bb | 1 + >> .../python/python3-pip/CVE-2026-1703.patch | 41 ++ >> .../python/python3-pip_25.2.bb | 4 +- >> ...kip-flaky-test_default_timeout-tests.patch | 49 ++ >> .../python/python3_3.13.11.bb | 1 + >> .../gdk-pixbuf/gdk-pixbuf/CVE-2025-6199.patch | 36 ++ >> .../gdk-pixbuf/gdk-pixbuf_2.42.12.bb | 1 + >> .../harfbuzz/files/CVE-2026-22693.patch | 33 ++ >> .../harfbuzz/harfbuzz_11.4.5.bb | 4 +- >> meta/recipes-kernel/linux/cve-exclusion.inc | 16 + >> .../linux/linux-yocto-rt_6.12.bb | 1 + >> .../linux/linux-yocto-rt_6.16.bb | 1 + >> .../linux/linux-yocto-tiny_6.12.bb | 1 + >> .../linux/linux-yocto-tiny_6.16.bb | 1 + >> ....10.07.bb => wireless-regdb_2026.02.04.bb} | 2 +- >> meta/recipes-multimedia/ffmpeg/ffmpeg_8.0.bb | 1 + >> .../gnutls/gnutls/CVE-2025-14831-1.patch | 119 +++++ >> .../gnutls/gnutls/CVE-2025-14831-10.patch | 424 +++++++++++++++ >> .../gnutls/gnutls/CVE-2025-14831-2.patch | 66 +++ >> .../gnutls/gnutls/CVE-2025-14831-3.patch | 30 ++ >> .../gnutls/gnutls/CVE-2025-14831-4.patch | 45 ++ >> .../gnutls/gnutls/CVE-2025-14831-5.patch | 205 +++++++ >> .../gnutls/gnutls/CVE-2025-14831-6.patch | 505 ++++++++++++++++++ >> .../gnutls/gnutls/CVE-2025-14831-7.patch | 124 +++++ >> .../gnutls/gnutls/CVE-2025-14831-8.patch | 155 ++++++ >> .../gnutls/gnutls/CVE-2025-14831-9.patch | 110 ++++ >> meta/recipes-support/gnutls/gnutls_3.8.10.bb | 10 + >> 30 files changed, 2048 insertions(+), 4 deletions(-) >> create mode 100644 meta/recipes-core/zlib/zlib/CVE-2026-27171.patch >> create mode 100644 meta/recipes-devtools/python/python3-pip/CVE-2026-1703.patch >> create mode 100644 meta/recipes-devtools/python/python3/0001-Skip-flaky-test_default_timeout-tests.patch >> create mode 100644 meta/recipes-gnome/gdk-pixbuf/gdk-pixbuf/CVE-2025-6199.patch >> create mode 100644 meta/recipes-graphics/harfbuzz/files/CVE-2026-22693.patch >> rename meta/recipes-kernel/wireless-regdb/{wireless-regdb_2025.10.07.bb => wireless-regdb_2026.02.04.bb} (94%) >> create mode 100644 meta/recipes-support/gnutls/gnutls/CVE-2025-14831-1.patch >> create mode 100644 meta/recipes-support/gnutls/gnutls/CVE-2025-14831-10.patch >> create mode 100644 meta/recipes-support/gnutls/gnutls/CVE-2025-14831-2.patch >> create mode 100644 meta/recipes-support/gnutls/gnutls/CVE-2025-14831-3.patch >> create mode 100644 meta/recipes-support/gnutls/gnutls/CVE-2025-14831-4.patch >> create mode 100644 meta/recipes-support/gnutls/gnutls/CVE-2025-14831-5.patch >> create mode 100644 meta/recipes-support/gnutls/gnutls/CVE-2025-14831-6.patch >> create mode 100644 meta/recipes-support/gnutls/gnutls/CVE-2025-14831-7.patch >> create mode 100644 meta/recipes-support/gnutls/gnutls/CVE-2025-14831-8.patch >> create mode 100644 meta/recipes-support/gnutls/gnutls/CVE-2025-14831-9.patch
Please review this set of changes for whinlatter and have comments back by end of day Monday, March 9. Passed a-full on autobuilder with warnings: https://autobuilder.yoctoproject.org/valkyrie/#/builders/29/builds/3334 The sub-build qemux86-64-ptest had a ptest failure https://autobuilder.yoctoproject.org/valkyrie/#/builders/73/builds/3207 It is a known AB-INT bug: 15718 – AB-INT: gstreamer ptest never ending (Bitbake still alive) https://bugzilla.yoctoproject.org/show_bug.cgi?id=15718 This is not related to this series. The following changes since commit 45cba1329d541fdc5857d6df2624b34c91133f7a: build-appliance-image: Update to whinlatter head revisions (2026-02-27 17:46:44 +0000) are available in the Git repository at: https://git.openembedded.org/openembedded-core-contrib stable/whinlatter-nut https://git.openembedded.org/openembedded-core-contrib/log/?h=stable/whinlatter-nut Adarsh Jagadish Kamini (1): python3-pip: Backport fix CVE-2026-1703 Ankur Tyagi (1): wireless-regdb: upgrade 2025.10.07 -> 2026.02.04 Antonin Godard (1): python3: skip flaky test_default_timeout test Hugo SIMELIERE (2): zlib: Fix CVE-2026-27171 harfbuzz: Fix CVE-2026-22693 Peter Marko (3): linux-yocto: apply cve-exclusions also to rt and tiny recipe variants cve-exclusions: set status for 5 CVEs ffmpeg: set status for CVE-2025-12343 Shaik Moin (1): gdk-pixbuf: Fix CVE-2025-6199 Vijay Anusuri (1): gnutls: Fix CVE-2025-14831 Yoann Congal (2): README: Add whinlatter subject-prefix to git-send-email suggestion b4-config: add send-prefixes for whinlatter .b4-config | 1 + README.OE-Core.md | 2 +- .../zlib/zlib/CVE-2026-27171.patch | 63 +++ meta/recipes-core/zlib/zlib_1.3.1.bb | 1 + .../python/python3-pip/CVE-2026-1703.patch | 41 ++ .../python/python3-pip_25.2.bb | 4 +- ...kip-flaky-test_default_timeout-tests.patch | 49 ++ .../python/python3_3.13.11.bb | 1 + .../gdk-pixbuf/gdk-pixbuf/CVE-2025-6199.patch | 36 ++ .../gdk-pixbuf/gdk-pixbuf_2.42.12.bb | 1 + .../harfbuzz/files/CVE-2026-22693.patch | 33 ++ .../harfbuzz/harfbuzz_11.4.5.bb | 4 +- meta/recipes-kernel/linux/cve-exclusion.inc | 16 + .../linux/linux-yocto-rt_6.12.bb | 1 + .../linux/linux-yocto-rt_6.16.bb | 1 + .../linux/linux-yocto-tiny_6.12.bb | 1 + .../linux/linux-yocto-tiny_6.16.bb | 1 + ....10.07.bb => wireless-regdb_2026.02.04.bb} | 2 +- meta/recipes-multimedia/ffmpeg/ffmpeg_8.0.bb | 1 + .../gnutls/gnutls/CVE-2025-14831-1.patch | 119 +++++ .../gnutls/gnutls/CVE-2025-14831-10.patch | 424 +++++++++++++++ .../gnutls/gnutls/CVE-2025-14831-2.patch | 66 +++ .../gnutls/gnutls/CVE-2025-14831-3.patch | 30 ++ .../gnutls/gnutls/CVE-2025-14831-4.patch | 45 ++ .../gnutls/gnutls/CVE-2025-14831-5.patch | 205 +++++++ .../gnutls/gnutls/CVE-2025-14831-6.patch | 505 ++++++++++++++++++ .../gnutls/gnutls/CVE-2025-14831-7.patch | 124 +++++ .../gnutls/gnutls/CVE-2025-14831-8.patch | 155 ++++++ .../gnutls/gnutls/CVE-2025-14831-9.patch | 110 ++++ meta/recipes-support/gnutls/gnutls_3.8.10.bb | 10 + 30 files changed, 2048 insertions(+), 4 deletions(-) create mode 100644 meta/recipes-core/zlib/zlib/CVE-2026-27171.patch create mode 100644 meta/recipes-devtools/python/python3-pip/CVE-2026-1703.patch create mode 100644 meta/recipes-devtools/python/python3/0001-Skip-flaky-test_default_timeout-tests.patch create mode 100644 meta/recipes-gnome/gdk-pixbuf/gdk-pixbuf/CVE-2025-6199.patch create mode 100644 meta/recipes-graphics/harfbuzz/files/CVE-2026-22693.patch rename meta/recipes-kernel/wireless-regdb/{wireless-regdb_2025.10.07.bb => wireless-regdb_2026.02.04.bb} (94%) create mode 100644 meta/recipes-support/gnutls/gnutls/CVE-2025-14831-1.patch create mode 100644 meta/recipes-support/gnutls/gnutls/CVE-2025-14831-10.patch create mode 100644 meta/recipes-support/gnutls/gnutls/CVE-2025-14831-2.patch create mode 100644 meta/recipes-support/gnutls/gnutls/CVE-2025-14831-3.patch create mode 100644 meta/recipes-support/gnutls/gnutls/CVE-2025-14831-4.patch create mode 100644 meta/recipes-support/gnutls/gnutls/CVE-2025-14831-5.patch create mode 100644 meta/recipes-support/gnutls/gnutls/CVE-2025-14831-6.patch create mode 100644 meta/recipes-support/gnutls/gnutls/CVE-2025-14831-7.patch create mode 100644 meta/recipes-support/gnutls/gnutls/CVE-2025-14831-8.patch create mode 100644 meta/recipes-support/gnutls/gnutls/CVE-2025-14831-9.patch