[meta-oe,14/29] openjpeg: upgrade 2.5.3 -> 2.5.4

Message ID	20250924090029.1786-14-wangmy@fujitsu.com
State	New
Headers	show Return-Path: <wangmy@fujitsu.com> ip: 139.138.36.225, mailfrom: wangmy@fujitsu.com) From: Wang Mingyu < wangmy@fujitsu.com> To: openembedded-devel@lists.openembedded.org Cc: Wang Mingyu <wangmy@fujitsu.com> Subject: [oe] [meta-oe] [PATCH 14/29] openjpeg: upgrade 2.5.3 -> 2.5.4 Date: Wed, 24 Sep 2025 17:00:14 +0800 Message-ID: <20250924090029.1786-14-wangmy@fujitsu.com> In-Reply-To: <20250924090029.1786-1-wangmy@fujitsu.com> References: <20250924090029.1786-1-wangmy@fujitsu.com> MIME-Version: 1.0 Content-Transfer-Encoding: 8bit
Series	[meta-oe,01/29] btop: upgrade 1.4.4 -> 1.4.5 \| expand [meta-oe,01/29] btop: upgrade 1.4.4 -> 1.4.5 [meta-oe,02/29] ctags: upgrade 6.2.20250907.0 -> 6.2.20250921.0 [meta-oe,03/29] dash: upgrade 0.5.12 -> 0.5.13 [meta-gnome,04/29] dconf: upgrade 0.40.0 -> 0.49.0 [meta-oe,05/29] freeipmi: upgrade 1.6.15 -> 1.6.16 [meta-gnome,06/29] gnome-system-monitor: upgrade 48.1 -> 49.0 [meta-oe,07/29] inotify-tools: upgrade 4.23.9.0 -> 4.25.9.0 [meta-oe,08/29] jsoncons: upgrade 1.4.0 -> 1.4.1 [meta-oe,09/29] leptonica: upgrade 1.85.0 -> 1.86.0 [meta-perl,10/29] libmime-types-perl: upgrade 2.28 -> 2.29 [meta-perl,11/29] liburi-perl: upgrade 5.32 -> 5.34 [meta-oe,12/29] mcelog: upgrade 204 -> 206 [meta-gnome,13/29] nautilus: upgrade 48.3 -> 49.0 [meta-oe,14/29] openjpeg: upgrade 2.5.3 -> 2.5.4 [meta-python,15/29] python3-black: upgrade 25.1.0 -> 25.9.0 [meta-python,16/29] python3-cantools: upgrade 40.5.0 -> 40.6.0 [meta-python,17/29] python3-coverage: upgrade 7.10.6 -> 7.10.7 [meta-python,18/29] python3-dirty-equals: upgrade 0.9.0 -> 0.10.0 [meta-python,19/29] python3-gevent: upgrade 25.8.2 -> 25.9.1 [meta-python,20/29] python3-grpcio-channelz: upgrade 1.74.0 -> 1.75.0 [meta-python,21/29] python3-grpcio-reflection: upgrade 1.74.0 -> 1.75.0 [meta-python,22/29] python3-grpcio-tools: upgrade 1.74.0 -> 1.75.0 [meta-python,23/29] python3-grpcio: upgrade 1.74.0 -> 1.75.0 [meta-python,24/29] python3-inline-snapshot: upgrade 0.28.0 -> 0.29.0 [meta-python,25/29] python3-pymongo: upgrade 4.15.0 -> 4.15.1 [meta-python,26/29] python3-pystemd: upgrade 0.13.4 -> 0.14.0 [meta-python,27/29] python3-regex: upgrade 2025.9.1 -> 2025.9.18 [meta-python,28/29] python3-spidev: upgrade 3.7 -> 3.8 [meta-python,29/29] python3-typer: upgrade 0.17.4 -> 0.19.1

Message ID

20250924090029.1786-14-wangmy@fujitsu.com

State

New

Headers

From: Wang Mingyu < wangmy@fujitsu.com>
To: openembedded-devel@lists.openembedded.org
Cc: Wang Mingyu <wangmy@fujitsu.com>
Subject: [oe] [meta-oe] [PATCH 14/29] openjpeg: upgrade 2.5.3 -> 2.5.4
Date: Wed, 24 Sep 2025 17:00:14 +0800
Message-ID: <20250924090029.1786-14-wangmy@fujitsu.com>
In-Reply-To: <20250924090029.1786-1-wangmy@fujitsu.com>
References: <20250924090029.1786-1-wangmy@fujitsu.com>
MIME-Version: 1.0
Content-Transfer-Encoding: 8bit

Series

[meta-oe,01/29] btop: upgrade 1.4.4 -> 1.4.5 | expand

Commit Message

Wang Mingyu Sept. 24, 2025, 9 a.m. UTC

From: Wang Mingyu <wangmy@fujitsu.com>

CVE-2025-54874.patch
removed since it's included in 2.5.4

Signed-off-by: Wang Mingyu <wangmy@fujitsu.com>
---
 .../openjpeg/openjpeg/CVE-2025-54874.patch    | 44 -------------------
 .../{openjpeg_2.5.3.bb => openjpeg_2.5.4.bb}  |  3 +-
 2 files changed, 1 insertion(+), 46 deletions(-)
 delete mode 100644 meta-oe/recipes-graphics/openjpeg/openjpeg/CVE-2025-54874.patch
 rename meta-oe/recipes-graphics/openjpeg/{openjpeg_2.5.3.bb => openjpeg_2.5.4.bb} (86%)

diff --git a/meta-oe/recipes-graphics/openjpeg/openjpeg/CVE-2025-54874.patch b/meta-oe/recipes-graphics/openjpeg/openjpeg/CVE-2025-54874.patch
deleted file mode 100644
index 187557a35c..0000000000
--- a/meta-oe/recipes-graphics/openjpeg/openjpeg/CVE-2025-54874.patch
+++ /dev/null
@@ -1,44 +0,0 @@ 
-From f809b80c67717c152a5ad30bf06774f00da4fd2d Mon Sep 17 00:00:00 2001
-From: Sebastian Rasmussen <sebras@gmail.com>
-Date: Thu, 16 Jan 2025 02:13:43 +0100
-Subject: [PATCH] opj_jp2_read_header: Check for error after parsing header.
-
-Consider the case where the caller has not set the p_image
-pointer to NULL before calling opj_read_header().
-
-If opj_j2k_read_header_procedure() fails while obtaining the rest
-of the marker segment when calling opj_stream_read_data() because
-the data stream is too short, then opj_j2k_read_header() will
-never have the chance to initialize p_image, leaving it
-uninitialized.
-
-opj_jp2_read_header() will check the p_image value whether
-opj_j2k_read_header() suceeded or failed. This may be detected as
-an error in valgrind or ASAN.
-
-The fix is to check whether opj_j2k_read_header() suceeded before
-using the output argument p_image.
-
-CVE: CVE-2025-54874
-Upstream-Status: Backport [https://github.com/uclouvain/openjpeg/commit/f809b80c67717c152a5ad30bf06774f00da4fd2d]
-Signed-off-by: Hitendra Prajapati <hprajapati@mvista.com>
----
- src/lib/openjp2/jp2.c | 2 +-
- 1 file changed, 1 insertion(+), 1 deletion(-)
-
-diff --git a/src/lib/openjp2/jp2.c b/src/lib/openjp2/jp2.c
-index 4df055a5..da506318 100644
---- a/src/lib/openjp2/jp2.c
-+++ b/src/lib/openjp2/jp2.c
-@@ -2873,7 +2873,7 @@ OPJ_BOOL opj_jp2_read_header(opj_stream_private_t *p_stream,
-                               p_image,
-                               p_manager);
- 
--    if (p_image && *p_image) {
-+    if (ret && p_image && *p_image) {
-         /* Set Image Color Space */
-         if (jp2->enumcs == 16) {
-             (*p_image)->color_space = OPJ_CLRSPC_SRGB;
--- 
-2.50.1
-
diff --git a/meta-oe/recipes-graphics/openjpeg/openjpeg_2.5.3.bb b/meta-oe/recipes-graphics/openjpeg/openjpeg_2.5.4.bb
similarity index 86%
rename from meta-oe/recipes-graphics/openjpeg/openjpeg_2.5.3.bb
rename to meta-oe/recipes-graphics/openjpeg/openjpeg_2.5.4.bb
index fff73ee46a..23f46c45cd 100644
--- a/meta-oe/recipes-graphics/openjpeg/openjpeg_2.5.3.bb
+++ b/meta-oe/recipes-graphics/openjpeg/openjpeg_2.5.4.bb
@@ -7,9 +7,8 @@  DEPENDS = "libpng tiff lcms zlib"
 
 SRC_URI = "git://github.com/uclouvain/openjpeg.git;branch=master;protocol=https \
            file://0001-Do-not-ask-cmake-to-export-binaries-they-don-t-make-.patch \
-           file://CVE-2025-54874.patch \
            "
-SRCREV = "210a8a5690d0da66f02d49420d7176a21ef409dc"
+SRCREV = "6c4a29b00211eb0430fa0e5e890f1ce5c80f409f"
 
 inherit cmake

[meta-oe,14/29] openjpeg: upgrade 2.5.3 -> 2.5.4

Commit Message

Patch