Please review this set of changes for scarthgap and have comments back by end of day Tuesday, November 25
Passed a-full on autobuilder: https://autobuilder.yoctoproject.org/valkyrie/#/builders/29/builds/2755 The following changes since commit 471adaa5f77fa3b974eab60a2ded48e360042828: build-appliance-image: Update to scarthgap head revision (2025-11-17 17:00:25 -0800) are available in the Git repository at: https://git.openembedded.org/openembedded-core-contrib stable/scarthgap-nut https://git.openembedded.org/openembedded-core-contrib/log/?h=stable/scarthgap-nut Alexander Kanavin (1): goarch.bbclass: do not leak TUNE_FEATURES into crosssdk task signatures Gyorgy Sarvari (2): musl: patch CVE-2025-26519 glslang: fix compiling with gcc15 Hongxu Jia (1): spdx30: Provide software_packageUrl field in SPDX 3.0 SBOM Hugo SIMELIERE (1): sqlite3: patch CVE-2025-7709 Osama Abdelkader (3): go: add sdk test go: extend runtime test go: remove duplicate arch map in sdk test Ovidiu Panait (1): rust-target-config: fix nativesdk-libstd-rs build with baremetal Peter Marko (4): spdx30: fix cve status for patch files in VEX oeqa: fix package detection in go sdk tests oeqa: drop unnecessary dependency from go runtime tests oeqa/sdk/buildepoxy: skip test in eSDK Ross Burton (5): xserver-xorg: remove redundant patch xserver-xorg: fix CVE-2025-62229 CVE-2025-62230 CVE-2025-62231 testsdk: allow user to specify which tests to run oe/sdk: fix empty SDK manifests lib/oe/go: document map_arch, and raise an error on unknown architecture Yogita Urade (3): xwayland: fix CVE-2025-62229 xwayland: fix CVE-2025-62230 xwayland: fix CVE-2025-62231 meta/classes-recipe/goarch.bbclass | 3 + .../classes-recipe/rust-target-config.bbclass | 3 +- meta/classes-recipe/testsdk.bbclass | 3 + meta/classes/create-spdx-3.0.bbclass | 5 + meta/lib/oe/go.py | 6 +- meta/lib/oe/sdk.py | 3 +- meta/lib/oe/spdx30_tasks.py | 16 ++- meta/lib/oeqa/files/test.go | 7 ++ meta/lib/oeqa/runtime/cases/go.py | 66 +++++++++++ meta/lib/oeqa/sdk/cases/buildepoxy.py | 4 + meta/lib/oeqa/sdk/cases/go.py | 107 ++++++++++++++++++ meta/lib/oeqa/sdk/testsdk.py | 3 +- meta/lib/oeqa/sdkext/testsdk.py | 3 +- .../musl/musl/CVE-2025-26519-1.patch | 39 +++++++ .../musl/musl/CVE-2025-26519-2.patch | 38 +++++++ meta/recipes-core/musl/musl_git.bb | 4 +- ...uilder.h-add-missing-cstdint-include.patch | 30 +++++ .../glslang/glslang_1.3.275.0.bb | 1 + ...-duplicate-definitions-of-IOPortBase.patch | 28 ----- ...after-free-in-present_create_notifie.patch | 91 +++++++++++++++ ...ke-the-RT_XKBCLIENT-resource-private.patch | 63 +++++++++++ ...KB-resource-when-freeing-XkbInterest.patch | 92 +++++++++++++++ ...-Prevent-overflow-in-XkbSetCompatMap.patch | 53 +++++++++ .../xorg-xserver/xserver-xorg_21.1.18.bb | 7 +- .../xwayland/xwayland/CVE-2025-62229.patch | 89 +++++++++++++++ .../xwayland/CVE-2025-62230-0001.patch | 60 ++++++++++ .../xwayland/CVE-2025-62230-0002.patch | 89 +++++++++++++++ .../xwayland/xwayland/CVE-2025-62231.patch | 50 ++++++++ .../xwayland/xwayland_23.2.5.bb | 4 + .../sqlite/sqlite3/CVE-2025-7709.patch | 33 ++++++ meta/recipes-support/sqlite/sqlite3_3.45.3.bb | 1 + 31 files changed, 964 insertions(+), 37 deletions(-) create mode 100644 meta/lib/oeqa/files/test.go create mode 100644 meta/lib/oeqa/sdk/cases/go.py create mode 100644 meta/recipes-core/musl/musl/CVE-2025-26519-1.patch create mode 100644 meta/recipes-core/musl/musl/CVE-2025-26519-2.patch create mode 100644 meta/recipes-graphics/glslang/glslang/0001-SPIRV-SpvBuilder.h-add-missing-cstdint-include.patch delete mode 100644 meta/recipes-graphics/xorg-xserver/xserver-xorg/0001-Avoid-duplicate-definitions-of-IOPortBase.patch create mode 100644 meta/recipes-graphics/xorg-xserver/xserver-xorg/0001-present-Fix-use-after-free-in-present_create_notifie.patch create mode 100644 meta/recipes-graphics/xorg-xserver/xserver-xorg/0002-xkb-Make-the-RT_XKBCLIENT-resource-private.patch create mode 100644 meta/recipes-graphics/xorg-xserver/xserver-xorg/0003-xkb-Free-the-XKB-resource-when-freeing-XkbInterest.patch create mode 100644 meta/recipes-graphics/xorg-xserver/xserver-xorg/0004-xkb-Prevent-overflow-in-XkbSetCompatMap.patch create mode 100644 meta/recipes-graphics/xwayland/xwayland/CVE-2025-62229.patch create mode 100644 meta/recipes-graphics/xwayland/xwayland/CVE-2025-62230-0001.patch create mode 100644 meta/recipes-graphics/xwayland/xwayland/CVE-2025-62230-0002.patch create mode 100644 meta/recipes-graphics/xwayland/xwayland/CVE-2025-62231.patch create mode 100644 meta/recipes-support/sqlite/sqlite3/CVE-2025-7709.patch -- 2.43.0
-=-=-=-=-=-=-=-=-=-=-=- Links: You receive all messages sent to this group. View/Reply Online (#226699): https://lists.openembedded.org/g/openembedded-core/message/226699 Mute This Topic: https://lists.openembedded.org/mt/116430128/21656 Group Owner: [email protected] Unsubscribe: https://lists.openembedded.org/g/openembedded-core/unsub [[email protected]] -=-=-=-=-=-=-=-=-=-=-=-
