[00/36] Whinlatter pull request

Please merge these changes in whinlatter. Tested locally with
qemux86/qemux86-64/qemuarm/qemuarm64 and on autobuilder.

https://autobuilder.yoctoproject.org/valkyrie/#/builders/81/builds/1319

The following changes since commit d28d0a23615f4d91d125fdcd247a71245087dab3:

  Use https when accessing archive.xfce.org (2026-02-05 06:59:42 +0530)

are available in the Git repository at:

  https://git.openembedded.org/meta-openembedded-contrib stable/whinlatter-next
  https://git.openembedded.org/meta-openembedded-contrib/log/?h=stable/whinlatter-next

Ankur Tyagi (1):
  tomoyo-tools: update SRC_URI

Gyorgy Sarvari (23):
  python3-cbor2: patch CVE-2025-68131
  python3-flask-cors: upgrade 4.0.0 -> 4.0.2
  python3-ldap: upgrade 3.4.4 -> 3.4.5
  python3-lief: upgrade 0.17.1 -> 0.17.2
  python3-m2crypto: ignore CVE-2009-0127
  python3-m2crypto: mark CVE-2020-25657 as patched
  python3-orjson: upgrade 3.10.17 -> 3.10.18
  python3-py: ignore CVE-2022-42969
  python3-pyjwt: ignore CVE-2025-45768
  python3-twitter: mark CVE-2012-5825 patched
  python3-uvicorn: mark CVE-2020-7694 patched
  python3-virtualenv: patch CVE-2026-22702
  python3-werkzeug: upgrade 3.1.4 -> 3.1.5
  raptor2: patch CVE-2024-57822 and CVE-2024-57823
  redis: ignore CVE-2025-46686
  python3-python-multipart: patch CVE-2026-24486
  wireshark: patch CVE-2026-0962
  gnome-desktop: upgrade 44.1 -> 44.4
  python3-django: upgrade 5.2.9 -> 5.2.11
  python3-django: upgrade 4.2.27 -> 4.2.28
  libx86-1: upgrade 1.1 -> 1.1.1
  paho-mqtt-c: upgrade 1.3.14 -> 1.3.15
  nginx: upgrade 1.28.1 -> 1.28.2

Jason Schonberg (2):
  usbids: upgrade 2025.09.15 -> 2025.12.13
  php: upgrade 8.4.17 -> 8.4.18

Liu Yiding (1):
  minizip-ng: 4.0.8 -> 4.0.10

Markus Volk (1):
  libsdl2-compat: update 2.32.58 -> 2.32.62

Tero Kinnunen (1):
  python3-watchdog: Remove obsolete dependencies

Wang Mingyu (7):
  python3-marshmallow: upgrade 4.1.0 -> 4.1.1
  python3-marshmallow: upgrade 4.1.1 -> 4.1.2
  python3-tornado: upgrade 6.5.2 -> 6.5.3
  python3-tornado: upgrade 6.5.3 -> 6.5.4
  python3-werkzeug: upgrade 3.1.3 -> 3.1.4
  cryptsetup: upgrade 2.8.3 -> 2.8.4
  libtracefs: upgrade 1.8.2 -> 1.8.3

 ...-desktop_44.1.bb => gnome-desktop_44.4.bb} |   2 +-
 .../wireshark/files/CVE-2026-0962.patch       | 131 +++++
 .../wireshark/wireshark_4.2.14.bb             |   1 +
 ...rror-due-to-bool-keyword-with-gcc-15.patch |  37 --
 ...mqtt-c_1.3.14.bb => paho-mqtt-c_1.3.15.bb} |   5 +-
 ...0001-crypt.h-Remove-register-keyword.patch |  35 --
 ...nizip-ng_4.0.8.bb => minizip-ng_4.0.10.bb} |   3 +-
 ...ryptsetup_2.8.3.bb => cryptsetup_2.8.4.bb} |   2 +-
 .../php/{php_8.4.17.bb => php_8.4.18.bb}      |   2 +-
 ...efine-CARD32-as-uint-as-it-is-32-bit.patch |   0
 .../0001-assume-zero-is-valid-address.patch   |   0
 ...-type-of-the-void-pointer-assignment.patch |  33 --
 .../libx86-1.1/libx86-mmap-offset.patch       | 192 -------
 .../libx86-1.1/makefile-add-ldflags.patch     |  17 -
 .../{libx86-1_1.1.bb => libx86-1_1.1.1.bb}    |   9 +-
 .../recipes-extended/redis/redis_6.2.21.bb    |   1 +
 .../recipes-extended/redis/redis_7.2.12.bb    |   1 +
 ...t_2.32.58.bb => libsdl2-compat_2.32.62.bb} |   2 +-
 ...ibtracefs_1.8.2.bb => libtracefs_1.8.3.bb} |   2 +-
 .../tomoyo-tools/tomoyo-tools_2.6.1.bb        |   3 +-
 .../raptor2/raptor2/CVE-2024-57822.patch      |  44 ++
 .../raptor2/raptor2/CVE-2024-57823.patch      |  31 ++
 .../recipes-support/raptor2/raptor2_2.0.16.bb |   2 +
 ...ids_2025.09.15.bb => usbids_2025.12.13.bb} |   4 +-
 .../python/python3-cbor2/CVE-2025-68131.patch | 515 ++++++++++++++++++
 .../python/python3-cbor2_5.7.1.bb             |   1 +
 ...ngo_4.2.27.bb => python3-django_4.2.28.bb} |   2 +-
 ...ango_5.2.9.bb => python3-django_5.2.11.bb} |   2 +-
 .../python3-flask-cors/CVE-2024-6221.patch    | 110 ----
 ...s_4.0.0.bb => python3-flask-cors_4.0.2.bb} |   8 +-
 ...-lief_0.17.1.bb => python3-lief_0.17.2.bb} |   2 +-
 .../python/python3-m2crypto_0.46.2.bb         |   3 +
 ..._4.1.0.bb => python3-marshmallow_4.1.2.bb} |   2 +-
 ...n_3.10.17.bb => python3-orjson_3.10.18.bb} |   2 +-
 .../python/python3-py_1.11.0.bb               |   2 +
 .../python/python3-pyjwt_2.10.1.bb            |   2 +
 .../CVE-2026-24486.patch                      |  61 +++
 .../python/python3-python-multipart_0.0.20.bb |   1 +
 ...nado_6.5.2.bb => python3-tornado_6.5.4.bb} |   2 +-
 .../python/python3-twitter_4.16.0.bb          |   2 +
 .../python/python3-uvicorn_0.38.0.bb          |   1 +
 .../python3-virtualenv/CVE-2026-22702.patch   |  60 ++
 .../python/python3-virtualenv_20.35.4.bb      |   1 +
 .../python/python3-watchdog_6.0.0.bb          |   9 +-
 ...eug_3.1.3.bb => python3-werkzeug_3.1.5.bb} |   2 +-
 ...n3-ldap_3.4.4.bb => python3-ldap_3.4.5.bb} |   8 +-
 .../{nginx_1.28.1.bb => nginx_1.28.2.bb}      |   2 +-
 47 files changed, 892 insertions(+), 467 deletions(-)
 rename meta-gnome/recipes-gnome/gnome-desktop/{gnome-desktop_44.1.bb => gnome-desktop_44.4.bb} (93%)
 create mode 100644 meta-networking/recipes-support/wireshark/files/CVE-2026-0962.patch
 delete mode 100644 meta-oe/recipes-connectivity/paho-mqtt-c/paho-mqtt-c/0001-Fix-build-error-due-to-bool-keyword-with-gcc-15.patch
 rename meta-oe/recipes-connectivity/paho-mqtt-c/{paho-mqtt-c_1.3.14.bb => paho-mqtt-c_1.3.15.bb} (88%)
 delete mode 100644 meta-oe/recipes-core/minizip-ng/minizip-ng/0001-crypt.h-Remove-register-keyword.patch
 rename meta-oe/recipes-core/minizip-ng/{minizip-ng_4.0.8.bb => minizip-ng_4.0.10.bb} (91%)
 rename meta-oe/recipes-crypto/cryptsetup/{cryptsetup_2.8.3.bb => cryptsetup_2.8.4.bb} (98%)
 rename meta-oe/recipes-devtools/php/{php_8.4.17.bb => php_8.4.18.bb} (99%)
 rename meta-oe/recipes-extended/libx86-1/{libx86-1.1 => libx86-1.1.1}/0001-Define-CARD32-as-uint-as-it-is-32-bit.patch (100%)
 rename meta-oe/recipes-extended/libx86-1/{libx86-1.1 => libx86-1.1.1}/0001-assume-zero-is-valid-address.patch (100%)
 delete mode 100644 meta-oe/recipes-extended/libx86-1/libx86-1.1/0001-Fix-type-of-the-void-pointer-assignment.patch
 delete mode 100644 meta-oe/recipes-extended/libx86-1/libx86-1.1/libx86-mmap-offset.patch
 delete mode 100644 meta-oe/recipes-extended/libx86-1/libx86-1.1/makefile-add-ldflags.patch
 rename meta-oe/recipes-extended/libx86-1/{libx86-1_1.1.bb => libx86-1_1.1.1.bb} (74%)
 rename meta-oe/recipes-graphics/libsdl3/{libsdl2-compat_2.32.58.bb => libsdl2-compat_2.32.62.bb} (91%)
 rename meta-oe/recipes-kernel/libtracefs/{libtracefs_1.8.2.bb => libtracefs_1.8.3.bb} (94%)
 create mode 100644 meta-oe/recipes-support/raptor2/raptor2/CVE-2024-57822.patch
 create mode 100644 meta-oe/recipes-support/raptor2/raptor2/CVE-2024-57823.patch
 rename meta-oe/recipes-support/usbids/{usbids_2025.09.15.bb => usbids_2025.12.13.bb} (83%)
 create mode 100644 meta-python/recipes-devtools/python/python3-cbor2/CVE-2025-68131.patch
 rename meta-python/recipes-devtools/python/{python3-django_4.2.27.bb => python3-django_4.2.28.bb} (79%)
 rename meta-python/recipes-devtools/python/{python3-django_5.2.9.bb => python3-django_5.2.11.bb} (60%)
 delete mode 100644 meta-python/recipes-devtools/python/python3-flask-cors/CVE-2024-6221.patch
 rename meta-python/recipes-devtools/python/{python3-flask-cors_4.0.0.bb => python3-flask-cors_4.0.2.bb} (73%)
 rename meta-python/recipes-devtools/python/{python3-lief_0.17.1.bb => python3-lief_0.17.2.bb} (95%)
 rename meta-python/recipes-devtools/python/{python3-marshmallow_4.1.0.bb => python3-marshmallow_4.1.2.bb} (91%)
 rename meta-python/recipes-devtools/python/{python3-orjson_3.10.17.bb => python3-orjson_3.10.18.bb} (84%)
 create mode 100644 meta-python/recipes-devtools/python/python3-python-multipart/CVE-2026-24486.patch
 rename meta-python/recipes-devtools/python/{python3-tornado_6.5.2.bb => python3-tornado_6.5.4.bb} (93%)
 create mode 100644 meta-python/recipes-devtools/python/python3-virtualenv/CVE-2026-22702.patch
 rename meta-python/recipes-devtools/python/{python3-werkzeug_3.1.3.bb => python3-werkzeug_3.1.5.bb} (90%)
 rename meta-python/recipes-networking/python/{python3-ldap_3.4.4.bb => python3-ldap_3.4.5.bb} (76%)
 rename meta-webserver/recipes-httpd/nginx/{nginx_1.28.1.bb => nginx_1.28.2.bb} (66%)