| Message ID | 20260513092304.1177892-1-skandigraun@gmail.com |
|---|---|
| State | New |
| Headers | show |
| Series | Kirkstone pull request 13th May | expand |
Thanks Gyorgy, this is installed. On Wed, May 13, 2026 at 2:23 AM Gyorgy Sarvari via lists.openembedded.org <skandigraun=gmail.com@lists.openembedded.org> wrote: > Some last minute fixes - thanks to all contributors. > > Test artifacts: > World build qemuarm: > https://github.com/OldManYellsAtCloud/meta-oe-test/actions/runs/25286703147 > World build qemuarm64: > https://github.com/OldManYellsAtCloud/meta-oe-test/actions/runs/25289100851 > World build qemux86: > https://github.com/OldManYellsAtCloud/meta-oe-test/actions/runs/25290018061 > World build qemux86-64: > https://github.com/OldManYellsAtCloud/meta-oe-test/actions/runs/25290023412 > YP layer compatibility: > https://github.com/OldManYellsAtCloud/meta-oe-test/actions/runs/25261771118 > Ptest execution (logs available at the link): > https://github.com/OldManYellsAtCloud/meta-oe-test/actions/runs/25384396207 > > The following changes since commit > 9d8ef26a9693e2c70ae34abe1a753873d42ec588: > > libssh: Fix CVE-2026-0964 (2026-03-29 11:11:33 +0200) > > are available in the Git repository at: > > git://git.openembedded.org/meta-openembedded-contrib > stable/kirkstone-nut > > for you to fetch changes up to ce8539c941f6fcbecaca4d16640ac105c0595589: > > python3-soupsieve: fix tests with Python 3.10.20 (2026-05-04 15:59:37 > +0200) > > ---------------------------------------------------------------- > Bhabu Bindu (1): > neon: Backport redirect test debug improvements > > Gyorgy Sarvari (16): > python3-cbor2: return correct error code from run-ptest > python3-cbor2: more patch indent and test fixes > nginx: set CVE_PRODUCT > tomoyo-tools: fix SRC_URI > logwatch: fix SRC_URI > dnfdragora: fix SRC_URI > ipc-run: fix SRC_URI > linux-atm: fix SRC_URI > driverctl: fix SRC_URI > libsodium: fix SRC_URI > sblim-sfcc: fix SRC_URI > ttf-sazanami: fix SRC_URI > libubox: fix SRC_URI > unicode-ucd: fix license hash (again) > ttf-vlgothic: fix SRC_URI > python3-soupsieve: fix tests with Python 3.10.20 > > Hitendra Prajapati (3): > nginx: fix CVE-2026-27784, CVE-2026-28755 > nginx: fix multiple CVEs > nginx: fix CVE-2026-32647 > > Jon Mason (1): > python3-cbor2: Fix CVE-2025-68131 CVE patch error > > Naman Jain (2): > python3-protobuf: ignore CVE-2024-7254 > imagemagick: Fix CVE-2025-68950 > > Shaik Moin (1): > imagemagick: Fix CVE-2025-62594 > > Tyler Park (1): > fmt: Updated master->main in SRC_URI. > > Vijay Anusuri (1): > strongswan: Fix CVE-2026-25075 > > Zahir Hussain (1): > rocksdb: fix typo in PACKAGECONFIG > > .../recipes-support/linux-atm/linux-atm_2.5.2.bb | 2 +- > .../strongswan/files/CVE-2026-25075.patch | 50 ++++++ > .../strongswan/strongswan_5.9.13.bb | 1 + > .../recipes-crypto/libsodium/libsodium_1.0.18.bb | 2 +- > meta-oe/recipes-dbs/rocksdb/rocksdb_6.20.3.bb | 2 +- > meta-oe/recipes-devtools/libubox/libubox_git.bb | 2 +- > .../recipes-devtools/perl/ipc-run_20200505.0.bb | 2 +- > meta-oe/recipes-extended/logwatch/logwatch_7.6.bb | 2 +- > .../sblim-sfcc/sblim-sfcc_2.2.8.bb | 2 +- > .../dnfdragora/dnfdragora_2.1.2.bb | 2 +- > .../ttf-fonts/ttf-sazanami_20040629.bb | 2 +- > .../ttf-fonts/ttf-vlgothic_20200720.bb | 2 +- > .../tomoyo-tools/tomoyo-tools_2.5.0.bb | 2 +- > .../recipes-support/driverctl/driverctl_0.111.bb | 2 +- > meta-oe/recipes-support/fmt/fmt_8.1.1.bb | 2 +- > .../imagemagick/files/CVE-2025-62594.patch | 197 > +++++++++++++++++++++ > .../imagemagick/files/CVE-2025-68950.patch | 24 +++ > .../imagemagick/imagemagick_7.0.10.bb | 2 + > .../0001-Temporarily-disable-no_redirect.patch | 45 +++++ > ...-enabling-no_redirect-with-more-debugging.patch | 50 ++++++ > ...rect-Switch-to-using-double_serve_sstring.patch | 48 +++++ > .../neon/neon/0004-test-redirect.c-Cleanup.patch | 49 +++++ > meta-oe/recipes-support/neon/neon_0.30.2.bb | 4 + > .../unicode-ucd/unicode-ucd_14.0.0.bb | 6 +- > .../0001-fix-test-parameterization.patch | 48 +++++ > .../python/python3-cbor2/CVE-2025-68131.patch | 51 ++++-- > .../python/python3-cbor2/run-ptest | 3 +- > .../recipes-devtools/python/python3-cbor2_5.4.2.bb | 1 + > .../python/python3-protobuf_3.20.3.bb | 3 + > ...djustments-for-changes-in-HTML-parser-285.patch | 190 > ++++++++++++++++++++ > .../python/python3-soupsieve_2.3.1.bb | 8 +- > .../nginx/nginx-1.24.0/CVE-2026-27651.patch | 34 ++++ > .../nginx/nginx-1.24.0/CVE-2026-27654.patch | 81 +++++++++ > .../nginx/nginx-1.24.0/CVE-2026-27784.patch | 88 +++++++++ > .../nginx/nginx-1.24.0/CVE-2026-28753.patch | 93 ++++++++++ > .../nginx/nginx-1.24.0/CVE-2026-28755.patch | 48 +++++ > .../nginx/nginx-1.24.0/CVE-2026-32647.patch | 78 ++++++++ > meta-webserver/recipes-httpd/nginx/nginx.inc | 2 + > meta-webserver/recipes-httpd/nginx/nginx_1.24.0.bb | 9 + > 39 files changed, 1199 insertions(+), 40 deletions(-) > create mode 100644 > meta-networking/recipes-support/strongswan/files/CVE-2026-25075.patch > create mode 100644 > meta-oe/recipes-support/imagemagick/files/CVE-2025-62594.patch > create mode 100644 > meta-oe/recipes-support/imagemagick/files/CVE-2025-68950.patch > create mode 100644 > meta-oe/recipes-support/neon/neon/0001-Temporarily-disable-no_redirect.patch > create mode 100644 > meta-oe/recipes-support/neon/neon/0002-Re-enabling-no_redirect-with-more-debugging.patch > create mode 100644 > meta-oe/recipes-support/neon/neon/0003-no_redirect-Switch-to-using-double_serve_sstring.patch > create mode 100644 > meta-oe/recipes-support/neon/neon/0004-test-redirect.c-Cleanup.patch > create mode 100644 > meta-python/recipes-devtools/python/python3-cbor2/0001-fix-test-parameterization.patch > create mode 100644 > meta-python/recipes-devtools/python/python3-soupsieve/0001-Adjustments-for-changes-in-HTML-parser-285.patch > create mode 100644 > meta-webserver/recipes-httpd/nginx/nginx-1.24.0/CVE-2026-27651.patch > create mode 100644 > meta-webserver/recipes-httpd/nginx/nginx-1.24.0/CVE-2026-27654.patch > create mode 100644 > meta-webserver/recipes-httpd/nginx/nginx-1.24.0/CVE-2026-27784.patch > create mode 100644 > meta-webserver/recipes-httpd/nginx/nginx-1.24.0/CVE-2026-28753.patch > create mode 100644 > meta-webserver/recipes-httpd/nginx/nginx-1.24.0/CVE-2026-28755.patch > create mode 100644 > meta-webserver/recipes-httpd/nginx/nginx-1.24.0/CVE-2026-32647.patch > > -=-=-=-=-=-=-=-=-=-=-=- > Links: You receive all messages sent to this group. > View/Reply Online (#126960): > https://lists.openembedded.org/g/openembedded-devel/message/126960 > Mute This Topic: https://lists.openembedded.org/mt/119294323/1997914 > Group Owner: openembedded-devel+owner@lists.openembedded.org > Unsubscribe: https://lists.openembedded.org/g/openembedded-devel/unsub [ > raj.khem@gmail.com] > -=-=-=-=-=-=-=-=-=-=-=- > >
With this the upstream support for the Kirkstone branch of meta-oe is concluded. You can still send patches to the ML for others to benefit, but there are no plans to integrate any new patches into this branch. Thank you to all who contributed to this branch over its whole lifetime. On 5/14/26 02:50, Khem Raj wrote: > Thanks Gyorgy, this is installed. > > On Wed, May 13, 2026 at 2:23 AM Gyorgy Sarvari via > lists.openembedded.org <http://lists.openembedded.org> > <skandigraun=gmail.com@lists.openembedded.org > <mailto:gmail.com@lists.openembedded.org>> wrote: > > Some last minute fixes - thanks to all contributors. > > Test artifacts: > World build qemuarm: https://github.com/OldManYellsAtCloud/meta-oe- > test/actions/runs/25286703147 <https://github.com/ > OldManYellsAtCloud/meta-oe-test/actions/runs/25286703147> > World build qemuarm64: https://github.com/OldManYellsAtCloud/meta- > oe-test/actions/runs/25289100851 <https://github.com/ > OldManYellsAtCloud/meta-oe-test/actions/runs/25289100851> > World build qemux86: https://github.com/OldManYellsAtCloud/meta-oe- > test/actions/runs/25290018061 <https://github.com/ > OldManYellsAtCloud/meta-oe-test/actions/runs/25290018061> > World build qemux86-64: https://github.com/OldManYellsAtCloud/meta- > oe-test/actions/runs/25290023412 <https://github.com/ > OldManYellsAtCloud/meta-oe-test/actions/runs/25290023412> > YP layer compatibility: https://github.com/OldManYellsAtCloud/meta- > oe-test/actions/runs/25261771118 <https://github.com/ > OldManYellsAtCloud/meta-oe-test/actions/runs/25261771118> > Ptest execution (logs available at the link): https://github.com/ > OldManYellsAtCloud/meta-oe-test/actions/runs/25384396207 <https:// > github.com/OldManYellsAtCloud/meta-oe-test/actions/runs/25384396207> > > The following changes since commit > 9d8ef26a9693e2c70ae34abe1a753873d42ec588: > > libssh: Fix CVE-2026-0964 (2026-03-29 11:11:33 +0200) > > are available in the Git repository at: > > git://git.openembedded.org/meta-openembedded-contrib <http:// > git.openembedded.org/meta-openembedded-contrib> stable/kirkstone-nut > > for you to fetch changes up to ce8539c941f6fcbecaca4d16640ac105c0595589: > > python3-soupsieve: fix tests with Python 3.10.20 (2026-05-04 > 15:59:37 +0200) > > ---------------------------------------------------------------- > Bhabu Bindu (1): > neon: Backport redirect test debug improvements > > Gyorgy Sarvari (16): > python3-cbor2: return correct error code from run-ptest > python3-cbor2: more patch indent and test fixes > nginx: set CVE_PRODUCT > tomoyo-tools: fix SRC_URI > logwatch: fix SRC_URI > dnfdragora: fix SRC_URI > ipc-run: fix SRC_URI > linux-atm: fix SRC_URI > driverctl: fix SRC_URI > libsodium: fix SRC_URI > sblim-sfcc: fix SRC_URI > ttf-sazanami: fix SRC_URI > libubox: fix SRC_URI > unicode-ucd: fix license hash (again) > ttf-vlgothic: fix SRC_URI > python3-soupsieve: fix tests with Python 3.10.20 > > Hitendra Prajapati (3): > nginx: fix CVE-2026-27784, CVE-2026-28755 > nginx: fix multiple CVEs > nginx: fix CVE-2026-32647 > > Jon Mason (1): > python3-cbor2: Fix CVE-2025-68131 CVE patch error > > Naman Jain (2): > python3-protobuf: ignore CVE-2024-7254 > imagemagick: Fix CVE-2025-68950 > > Shaik Moin (1): > imagemagick: Fix CVE-2025-62594 > > Tyler Park (1): > fmt: Updated master->main in SRC_URI. > > Vijay Anusuri (1): > strongswan: Fix CVE-2026-25075 > > Zahir Hussain (1): > rocksdb: fix typo in PACKAGECONFIG > > .../recipes-support/linux-atm/linux-atm_2.5.2.bb <http://linux- > atm_2.5.2.bb> | 2 +- > .../strongswan/files/CVE-2026-25075.patch | 50 ++++++ > .../strongswan/strongswan_5.9.13.bb <http://strongswan_5.9.13.bb> > | 1 + > .../recipes-crypto/libsodium/libsodium_1.0.18.bb <http:// > libsodium_1.0.18.bb> | 2 +- > meta-oe/recipes-dbs/rocksdb/rocksdb_6.20.3.bb <http:// > rocksdb_6.20.3.bb> | 2 +- > meta-oe/recipes-devtools/libubox/libubox_git.bb <http:// > libubox_git.bb> | 2 +- > .../recipes-devtools/perl/ipc-run_20200505.0.bb <http://ipc- > run_20200505.0.bb> | 2 +- > meta-oe/recipes-extended/logwatch/logwatch_7.6.bb <http:// > logwatch_7.6.bb> | 2 +- > .../sblim-sfcc/sblim-sfcc_2.2.8.bb <http://sblim-sfcc_2.2.8.bb> > | 2 +- > .../dnfdragora/dnfdragora_2.1.2.bb <http://dnfdragora_2.1.2.bb> > | 2 +- > .../ttf-fonts/ttf-sazanami_20040629.bb <http://ttf- > sazanami_20040629.bb> | 2 +- > .../ttf-fonts/ttf-vlgothic_20200720.bb <http://ttf- > vlgothic_20200720.bb> | 2 +- > .../tomoyo-tools/tomoyo-tools_2.5.0.bb <http://tomoyo- > tools_2.5.0.bb> | 2 +- > .../recipes-support/driverctl/driverctl_0.111.bb <http:// > driverctl_0.111.bb> | 2 +- > meta-oe/recipes-support/fmt/fmt_8.1.1.bb <http://fmt_8.1.1.bb> > | 2 +- > .../imagemagick/files/CVE-2025-62594.patch | 197 ++++++++++ > +++++++++++ > .../imagemagick/files/CVE-2025-68950.patch | 24 +++ > .../imagemagick/imagemagick_7.0.10.bb <http:// > imagemagick_7.0.10.bb> | 2 + > .../0001-Temporarily-disable-no_redirect.patch | 45 +++++ > ...-enabling-no_redirect-with-more-debugging.patch | 50 ++++++ > ...rect-Switch-to-using-double_serve_sstring.patch | 48 +++++ > .../neon/neon/0004-test-redirect.c-Cleanup.patch | 49 +++++ > meta-oe/recipes-support/neon/neon_0.30.2.bb <http:// > neon_0.30.2.bb> | 4 + > .../unicode-ucd/unicode-ucd_14.0.0.bb <http://unicode- > ucd_14.0.0.bb> | 6 +- > .../0001-fix-test-parameterization.patch | 48 +++++ > .../python/python3-cbor2/CVE-2025-68131.patch | 51 ++++-- > .../python/python3-cbor2/run-ptest | 3 +- > .../recipes-devtools/python/python3-cbor2_5.4.2.bb <http://python3- > cbor2_5.4.2.bb> | 1 + > .../python/python3-protobuf_3.20.3.bb <http://python3- > protobuf_3.20.3.bb> | 3 + > ...djustments-for-changes-in-HTML-parser-285.patch | 190 ++++++++++ > ++++++++++ > .../python/python3-soupsieve_2.3.1.bb <http://python3- > soupsieve_2.3.1.bb> | 8 +- > .../nginx/nginx-1.24.0/CVE-2026-27651.patch | 34 ++++ > .../nginx/nginx-1.24.0/CVE-2026-27654.patch | 81 +++++++++ > .../nginx/nginx-1.24.0/CVE-2026-27784.patch | 88 +++++++++ > .../nginx/nginx-1.24.0/CVE-2026-28753.patch | 93 ++++++++++ > .../nginx/nginx-1.24.0/CVE-2026-28755.patch | 48 +++++ > .../nginx/nginx-1.24.0/CVE-2026-32647.patch | 78 ++++++++ > meta-webserver/recipes-httpd/nginx/nginx.inc | 2 + > meta-webserver/recipes-httpd/nginx/nginx_1.24.0.bb <http:// > nginx_1.24.0.bb> | 9 + > 39 files changed, 1199 insertions(+), 40 deletions(-) > create mode 100644 meta-networking/recipes-support/strongswan/ > files/CVE-2026-25075.patch > create mode 100644 meta-oe/recipes-support/imagemagick/files/ > CVE-2025-62594.patch > create mode 100644 meta-oe/recipes-support/imagemagick/files/ > CVE-2025-68950.patch > create mode 100644 meta-oe/recipes-support/neon/neon/0001- > Temporarily-disable-no_redirect.patch > create mode 100644 meta-oe/recipes-support/neon/neon/0002-Re- > enabling-no_redirect-with-more-debugging.patch > create mode 100644 meta-oe/recipes-support/neon/neon/0003- > no_redirect-Switch-to-using-double_serve_sstring.patch > create mode 100644 meta-oe/recipes-support/neon/neon/0004-test- > redirect.c-Cleanup.patch > create mode 100644 meta-python/recipes-devtools/python/python3- > cbor2/0001-fix-test-parameterization.patch > create mode 100644 meta-python/recipes-devtools/python/python3- > soupsieve/0001-Adjustments-for-changes-in-HTML-parser-285.patch > create mode 100644 meta-webserver/recipes-httpd/nginx/nginx-1.24.0/ > CVE-2026-27651.patch > create mode 100644 meta-webserver/recipes-httpd/nginx/nginx-1.24.0/ > CVE-2026-27654.patch > create mode 100644 meta-webserver/recipes-httpd/nginx/nginx-1.24.0/ > CVE-2026-27784.patch > create mode 100644 meta-webserver/recipes-httpd/nginx/nginx-1.24.0/ > CVE-2026-28753.patch > create mode 100644 meta-webserver/recipes-httpd/nginx/nginx-1.24.0/ > CVE-2026-28755.patch > create mode 100644 meta-webserver/recipes-httpd/nginx/nginx-1.24.0/ > CVE-2026-32647.patch > > -=-=-=-=-=-=-=-=-=-=-=- > Links: You receive all messages sent to this group. > View/Reply Online (#126960): https://lists.openembedded.org/g/ > openembedded-devel/message/126960 <https://lists.openembedded.org/g/ > openembedded-devel/message/126960> > Mute This Topic: https://lists.openembedded.org/mt/119294323/1997914 > <https://lists.openembedded.org/mt/119294323/1997914> > Group Owner: openembedded-devel+owner@lists.openembedded.org > <mailto:openembedded-devel%2Bowner@lists.openembedded.org> > Unsubscribe: https://lists.openembedded.org/g/openembedded-devel/ > unsub <https://lists.openembedded.org/g/openembedded-devel/unsub> > [raj.khem@gmail.com <mailto:raj.khem@gmail.com>] > -=-=-=-=-=-=-=-=-=-=-=- >
On Wed, May 13, 2026 at 6:13 PM Gyorgy Sarvari via lists.openembedded.org <skandigraun=gmail.com@lists.openembedded.org> wrote: > With this the upstream support for the Kirkstone branch of meta-oe is > concluded. > > You can still send patches to the ML for others to benefit, but there > are no plans to integrate any new patches into this branch. > > Thank you to all who contributed to this branch over its whole lifetime. > Thanks Armin and Gyorgy for maintaining this LTS for its lifetime. > > > On 5/14/26 02:50, Khem Raj wrote: > > Thanks Gyorgy, this is installed. > > > > On Wed, May 13, 2026 at 2:23 AM Gyorgy Sarvari via > > lists.openembedded.org <http://lists.openembedded.org> > > <skandigraun=gmail.com@lists.openembedded.org > > <mailto:gmail.com@lists.openembedded.org>> wrote: > > > > Some last minute fixes - thanks to all contributors. > > > > Test artifacts: > > World build qemuarm: https://github.com/OldManYellsAtCloud/meta-oe- > > test/actions/runs/25286703147 <https://github.com/ > > OldManYellsAtCloud/meta-oe-test/actions/runs/25286703147> > > World build qemuarm64: https://github.com/OldManYellsAtCloud/meta- > > oe-test/actions/runs/25289100851 <https://github.com/ > > OldManYellsAtCloud/meta-oe-test/actions/runs/25289100851> > > World build qemux86: https://github.com/OldManYellsAtCloud/meta-oe- > > test/actions/runs/25290018061 <https://github.com/ > > OldManYellsAtCloud/meta-oe-test/actions/runs/25290018061> > > World build qemux86-64: https://github.com/OldManYellsAtCloud/meta- > > oe-test/actions/runs/25290023412 <https://github.com/ > > OldManYellsAtCloud/meta-oe-test/actions/runs/25290023412> > > YP layer compatibility: https://github.com/OldManYellsAtCloud/meta- > > oe-test/actions/runs/25261771118 <https://github.com/ > > OldManYellsAtCloud/meta-oe-test/actions/runs/25261771118> > > Ptest execution (logs available at the link): https://github.com/ > > OldManYellsAtCloud/meta-oe-test/actions/runs/25384396207 <https:// > > github.com/OldManYellsAtCloud/meta-oe-test/actions/runs/25384396207> > > > > The following changes since commit > > 9d8ef26a9693e2c70ae34abe1a753873d42ec588: > > > > libssh: Fix CVE-2026-0964 (2026-03-29 11:11:33 +0200) > > > > are available in the Git repository at: > > > > git://git.openembedded.org/meta-openembedded-contrib <http:// > > git.openembedded.org/meta-openembedded-contrib> stable/kirkstone-nut > > > > for you to fetch changes up to > ce8539c941f6fcbecaca4d16640ac105c0595589: > > > > python3-soupsieve: fix tests with Python 3.10.20 (2026-05-04 > > 15:59:37 +0200) > > > > ---------------------------------------------------------------- > > Bhabu Bindu (1): > > neon: Backport redirect test debug improvements > > > > Gyorgy Sarvari (16): > > python3-cbor2: return correct error code from run-ptest > > python3-cbor2: more patch indent and test fixes > > nginx: set CVE_PRODUCT > > tomoyo-tools: fix SRC_URI > > logwatch: fix SRC_URI > > dnfdragora: fix SRC_URI > > ipc-run: fix SRC_URI > > linux-atm: fix SRC_URI > > driverctl: fix SRC_URI > > libsodium: fix SRC_URI > > sblim-sfcc: fix SRC_URI > > ttf-sazanami: fix SRC_URI > > libubox: fix SRC_URI > > unicode-ucd: fix license hash (again) > > ttf-vlgothic: fix SRC_URI > > python3-soupsieve: fix tests with Python 3.10.20 > > > > Hitendra Prajapati (3): > > nginx: fix CVE-2026-27784, CVE-2026-28755 > > nginx: fix multiple CVEs > > nginx: fix CVE-2026-32647 > > > > Jon Mason (1): > > python3-cbor2: Fix CVE-2025-68131 CVE patch error > > > > Naman Jain (2): > > python3-protobuf: ignore CVE-2024-7254 > > imagemagick: Fix CVE-2025-68950 > > > > Shaik Moin (1): > > imagemagick: Fix CVE-2025-62594 > > > > Tyler Park (1): > > fmt: Updated master->main in SRC_URI. > > > > Vijay Anusuri (1): > > strongswan: Fix CVE-2026-25075 > > > > Zahir Hussain (1): > > rocksdb: fix typo in PACKAGECONFIG > > > > .../recipes-support/linux-atm/linux-atm_2.5.2.bb <http://linux- > > atm_2.5.2.bb> | 2 +- > > .../strongswan/files/CVE-2026-25075.patch | 50 ++++++ > > .../strongswan/strongswan_5.9.13.bb <http://strongswan_5.9.13.bb> > > | 1 + > > .../recipes-crypto/libsodium/libsodium_1.0.18.bb <http:// > > libsodium_1.0.18.bb> | 2 +- > > meta-oe/recipes-dbs/rocksdb/rocksdb_6.20.3.bb <http:// > > rocksdb_6.20.3.bb> | 2 +- > > meta-oe/recipes-devtools/libubox/libubox_git.bb <http:// > > libubox_git.bb> | 2 +- > > .../recipes-devtools/perl/ipc-run_20200505.0.bb <http://ipc- > > run_20200505.0.bb> | 2 +- > > meta-oe/recipes-extended/logwatch/logwatch_7.6.bb <http:// > > logwatch_7.6.bb> | 2 +- > > .../sblim-sfcc/sblim-sfcc_2.2.8.bb <http://sblim-sfcc_2.2.8.bb> > > | 2 +- > > .../dnfdragora/dnfdragora_2.1.2.bb <http://dnfdragora_2.1.2.bb> > > | 2 +- > > .../ttf-fonts/ttf-sazanami_20040629.bb <http://ttf- > > sazanami_20040629.bb> | 2 +- > > .../ttf-fonts/ttf-vlgothic_20200720.bb <http://ttf- > > vlgothic_20200720.bb> | 2 +- > > .../tomoyo-tools/tomoyo-tools_2.5.0.bb <http://tomoyo- > > tools_2.5.0.bb> | 2 +- > > .../recipes-support/driverctl/driverctl_0.111.bb <http:// > > driverctl_0.111.bb> | 2 +- > > meta-oe/recipes-support/fmt/fmt_8.1.1.bb <http://fmt_8.1.1.bb> > > | 2 +- > > .../imagemagick/files/CVE-2025-62594.patch | 197 ++++++++++ > > +++++++++++ > > .../imagemagick/files/CVE-2025-68950.patch | 24 +++ > > .../imagemagick/imagemagick_7.0.10.bb <http:// > > imagemagick_7.0.10.bb> | 2 + > > .../0001-Temporarily-disable-no_redirect.patch | 45 +++++ > > ...-enabling-no_redirect-with-more-debugging.patch | 50 ++++++ > > ...rect-Switch-to-using-double_serve_sstring.patch | 48 +++++ > > .../neon/neon/0004-test-redirect.c-Cleanup.patch | 49 +++++ > > meta-oe/recipes-support/neon/neon_0.30.2.bb <http:// > > neon_0.30.2.bb> | 4 + > > .../unicode-ucd/unicode-ucd_14.0.0.bb <http://unicode- > > ucd_14.0.0.bb> | 6 +- > > .../0001-fix-test-parameterization.patch | 48 +++++ > > .../python/python3-cbor2/CVE-2025-68131.patch | 51 ++++-- > > .../python/python3-cbor2/run-ptest | 3 +- > > .../recipes-devtools/python/python3-cbor2_5.4.2.bb <http://python3- > > cbor2_5.4.2.bb> | 1 + > > .../python/python3-protobuf_3.20.3.bb <http://python3- > > protobuf_3.20.3.bb> | 3 + > > ...djustments-for-changes-in-HTML-parser-285.patch | 190 ++++++++++ > > ++++++++++ > > .../python/python3-soupsieve_2.3.1.bb <http://python3- > > soupsieve_2.3.1.bb> | 8 +- > > .../nginx/nginx-1.24.0/CVE-2026-27651.patch | 34 ++++ > > .../nginx/nginx-1.24.0/CVE-2026-27654.patch | 81 +++++++++ > > .../nginx/nginx-1.24.0/CVE-2026-27784.patch | 88 +++++++++ > > .../nginx/nginx-1.24.0/CVE-2026-28753.patch | 93 ++++++++++ > > .../nginx/nginx-1.24.0/CVE-2026-28755.patch | 48 +++++ > > .../nginx/nginx-1.24.0/CVE-2026-32647.patch | 78 ++++++++ > > meta-webserver/recipes-httpd/nginx/nginx.inc | 2 + > > meta-webserver/recipes-httpd/nginx/nginx_1.24.0.bb <http:// > > nginx_1.24.0.bb> | 9 + > > 39 files changed, 1199 insertions(+), 40 deletions(-) > > create mode 100644 meta-networking/recipes-support/strongswan/ > > files/CVE-2026-25075.patch > > create mode 100644 meta-oe/recipes-support/imagemagick/files/ > > CVE-2025-62594.patch > > create mode 100644 meta-oe/recipes-support/imagemagick/files/ > > CVE-2025-68950.patch > > create mode 100644 meta-oe/recipes-support/neon/neon/0001- > > Temporarily-disable-no_redirect.patch > > create mode 100644 meta-oe/recipes-support/neon/neon/0002-Re- > > enabling-no_redirect-with-more-debugging.patch > > create mode 100644 meta-oe/recipes-support/neon/neon/0003- > > no_redirect-Switch-to-using-double_serve_sstring.patch > > create mode 100644 meta-oe/recipes-support/neon/neon/0004-test- > > redirect.c-Cleanup.patch > > create mode 100644 meta-python/recipes-devtools/python/python3- > > cbor2/0001-fix-test-parameterization.patch > > create mode 100644 meta-python/recipes-devtools/python/python3- > > soupsieve/0001-Adjustments-for-changes-in-HTML-parser-285.patch > > create mode 100644 meta-webserver/recipes-httpd/nginx/nginx-1.24.0/ > > CVE-2026-27651.patch > > create mode 100644 meta-webserver/recipes-httpd/nginx/nginx-1.24.0/ > > CVE-2026-27654.patch > > create mode 100644 meta-webserver/recipes-httpd/nginx/nginx-1.24.0/ > > CVE-2026-27784.patch > > create mode 100644 meta-webserver/recipes-httpd/nginx/nginx-1.24.0/ > > CVE-2026-28753.patch > > create mode 100644 meta-webserver/recipes-httpd/nginx/nginx-1.24.0/ > > CVE-2026-28755.patch > > create mode 100644 meta-webserver/recipes-httpd/nginx/nginx-1.24.0/ > > CVE-2026-32647.patch > > > > > > > > > -=-=-=-=-=-=-=-=-=-=-=- > Links: You receive all messages sent to this group. > View/Reply Online (#126980): > https://lists.openembedded.org/g/openembedded-devel/message/126980 > Mute This Topic: https://lists.openembedded.org/mt/119294323/1997914 > Group Owner: openembedded-devel+owner@lists.openembedded.org > Unsubscribe: https://lists.openembedded.org/g/openembedded-devel/unsub [ > raj.khem@gmail.com] > -=-=-=-=-=-=-=-=-=-=-=- > >
Some last minute fixes - thanks to all contributors. Test artifacts: World build qemuarm: https://github.com/OldManYellsAtCloud/meta-oe-test/actions/runs/25286703147 World build qemuarm64: https://github.com/OldManYellsAtCloud/meta-oe-test/actions/runs/25289100851 World build qemux86: https://github.com/OldManYellsAtCloud/meta-oe-test/actions/runs/25290018061 World build qemux86-64: https://github.com/OldManYellsAtCloud/meta-oe-test/actions/runs/25290023412 YP layer compatibility: https://github.com/OldManYellsAtCloud/meta-oe-test/actions/runs/25261771118 Ptest execution (logs available at the link): https://github.com/OldManYellsAtCloud/meta-oe-test/actions/runs/25384396207 The following changes since commit 9d8ef26a9693e2c70ae34abe1a753873d42ec588: libssh: Fix CVE-2026-0964 (2026-03-29 11:11:33 +0200) are available in the Git repository at: git://git.openembedded.org/meta-openembedded-contrib stable/kirkstone-nut for you to fetch changes up to ce8539c941f6fcbecaca4d16640ac105c0595589: python3-soupsieve: fix tests with Python 3.10.20 (2026-05-04 15:59:37 +0200) ---------------------------------------------------------------- Bhabu Bindu (1): neon: Backport redirect test debug improvements Gyorgy Sarvari (16): python3-cbor2: return correct error code from run-ptest python3-cbor2: more patch indent and test fixes nginx: set CVE_PRODUCT tomoyo-tools: fix SRC_URI logwatch: fix SRC_URI dnfdragora: fix SRC_URI ipc-run: fix SRC_URI linux-atm: fix SRC_URI driverctl: fix SRC_URI libsodium: fix SRC_URI sblim-sfcc: fix SRC_URI ttf-sazanami: fix SRC_URI libubox: fix SRC_URI unicode-ucd: fix license hash (again) ttf-vlgothic: fix SRC_URI python3-soupsieve: fix tests with Python 3.10.20 Hitendra Prajapati (3): nginx: fix CVE-2026-27784, CVE-2026-28755 nginx: fix multiple CVEs nginx: fix CVE-2026-32647 Jon Mason (1): python3-cbor2: Fix CVE-2025-68131 CVE patch error Naman Jain (2): python3-protobuf: ignore CVE-2024-7254 imagemagick: Fix CVE-2025-68950 Shaik Moin (1): imagemagick: Fix CVE-2025-62594 Tyler Park (1): fmt: Updated master->main in SRC_URI. Vijay Anusuri (1): strongswan: Fix CVE-2026-25075 Zahir Hussain (1): rocksdb: fix typo in PACKAGECONFIG .../recipes-support/linux-atm/linux-atm_2.5.2.bb | 2 +- .../strongswan/files/CVE-2026-25075.patch | 50 ++++++ .../strongswan/strongswan_5.9.13.bb | 1 + .../recipes-crypto/libsodium/libsodium_1.0.18.bb | 2 +- meta-oe/recipes-dbs/rocksdb/rocksdb_6.20.3.bb | 2 +- meta-oe/recipes-devtools/libubox/libubox_git.bb | 2 +- .../recipes-devtools/perl/ipc-run_20200505.0.bb | 2 +- meta-oe/recipes-extended/logwatch/logwatch_7.6.bb | 2 +- .../sblim-sfcc/sblim-sfcc_2.2.8.bb | 2 +- .../dnfdragora/dnfdragora_2.1.2.bb | 2 +- .../ttf-fonts/ttf-sazanami_20040629.bb | 2 +- .../ttf-fonts/ttf-vlgothic_20200720.bb | 2 +- .../tomoyo-tools/tomoyo-tools_2.5.0.bb | 2 +- .../recipes-support/driverctl/driverctl_0.111.bb | 2 +- meta-oe/recipes-support/fmt/fmt_8.1.1.bb | 2 +- .../imagemagick/files/CVE-2025-62594.patch | 197 +++++++++++++++++++++ .../imagemagick/files/CVE-2025-68950.patch | 24 +++ .../imagemagick/imagemagick_7.0.10.bb | 2 + .../0001-Temporarily-disable-no_redirect.patch | 45 +++++ ...-enabling-no_redirect-with-more-debugging.patch | 50 ++++++ ...rect-Switch-to-using-double_serve_sstring.patch | 48 +++++ .../neon/neon/0004-test-redirect.c-Cleanup.patch | 49 +++++ meta-oe/recipes-support/neon/neon_0.30.2.bb | 4 + .../unicode-ucd/unicode-ucd_14.0.0.bb | 6 +- .../0001-fix-test-parameterization.patch | 48 +++++ .../python/python3-cbor2/CVE-2025-68131.patch | 51 ++++-- .../python/python3-cbor2/run-ptest | 3 +- .../recipes-devtools/python/python3-cbor2_5.4.2.bb | 1 + .../python/python3-protobuf_3.20.3.bb | 3 + ...djustments-for-changes-in-HTML-parser-285.patch | 190 ++++++++++++++++++++ .../python/python3-soupsieve_2.3.1.bb | 8 +- .../nginx/nginx-1.24.0/CVE-2026-27651.patch | 34 ++++ .../nginx/nginx-1.24.0/CVE-2026-27654.patch | 81 +++++++++ .../nginx/nginx-1.24.0/CVE-2026-27784.patch | 88 +++++++++ .../nginx/nginx-1.24.0/CVE-2026-28753.patch | 93 ++++++++++ .../nginx/nginx-1.24.0/CVE-2026-28755.patch | 48 +++++ .../nginx/nginx-1.24.0/CVE-2026-32647.patch | 78 ++++++++ meta-webserver/recipes-httpd/nginx/nginx.inc | 2 + meta-webserver/recipes-httpd/nginx/nginx_1.24.0.bb | 9 + 39 files changed, 1199 insertions(+), 40 deletions(-) create mode 100644 meta-networking/recipes-support/strongswan/files/CVE-2026-25075.patch create mode 100644 meta-oe/recipes-support/imagemagick/files/CVE-2025-62594.patch create mode 100644 meta-oe/recipes-support/imagemagick/files/CVE-2025-68950.patch create mode 100644 meta-oe/recipes-support/neon/neon/0001-Temporarily-disable-no_redirect.patch create mode 100644 meta-oe/recipes-support/neon/neon/0002-Re-enabling-no_redirect-with-more-debugging.patch create mode 100644 meta-oe/recipes-support/neon/neon/0003-no_redirect-Switch-to-using-double_serve_sstring.patch create mode 100644 meta-oe/recipes-support/neon/neon/0004-test-redirect.c-Cleanup.patch create mode 100644 meta-python/recipes-devtools/python/python3-cbor2/0001-fix-test-parameterization.patch create mode 100644 meta-python/recipes-devtools/python/python3-soupsieve/0001-Adjustments-for-changes-in-HTML-parser-285.patch create mode 100644 meta-webserver/recipes-httpd/nginx/nginx-1.24.0/CVE-2026-27651.patch create mode 100644 meta-webserver/recipes-httpd/nginx/nginx-1.24.0/CVE-2026-27654.patch create mode 100644 meta-webserver/recipes-httpd/nginx/nginx-1.24.0/CVE-2026-27784.patch create mode 100644 meta-webserver/recipes-httpd/nginx/nginx-1.24.0/CVE-2026-28753.patch create mode 100644 meta-webserver/recipes-httpd/nginx/nginx-1.24.0/CVE-2026-28755.patch create mode 100644 meta-webserver/recipes-httpd/nginx/nginx-1.24.0/CVE-2026-32647.patch