Please review this set of changes for whinlatter and have comments back by end of day Friday, March 13.
Passed a-full on autobuilder: https://autobuilder.yoctoproject.org/valkyrie/#/builders/29/builds/3380 The following changes since commit 96d653f64e6eaa919dd1f62193a5a96f43430dc4: build-appliance-image: Update to whinlatter head revisions (2026-03-10 11:53:11 +0000) are available in the Git repository at: https://git.openembedded.org/openembedded-core-contrib stable/whinlatter-nut https://git.openembedded.org/openembedded-core-contrib/log/?h=stable/whinlatter-nut for you to fetch changes up to b37db2db1a03c856f7b4cc94e70b7e6c1ef437b5: lsb.py: strip ' from os-release file (2026-03-11 01:09:19 +0100) ---------------------------------------------------------------- Livin Sunny (1): busybox: Fixes CVE-2025-60876 Martin Jansa (1): lsb.py: strip ' from os-release file Peter Marko (3): inetutils: patch CVE-2026-28372 libpam: set status for CVE-2024-10041 go: upgrade 1.25.7 -> 1.25.8 Vijay Anusuri (1): freetype: Fix CVE-2026-23865 meta/lib/oe/lsb.py | 2 +- .../inetutils/inetutils/CVE-2026-28372.patch | 86 +++++++++++++++++++ .../inetutils/inetutils_2.6.bb | 1 + .../busybox/busybox/CVE-2025-60876.patch | 42 +++++++++ meta/recipes-core/busybox/busybox_1.37.0.bb | 1 + .../go/{go-1.25.7.inc => go-1.25.8.inc} | 2 +- ...e_1.25.7.bb => go-binary-native_1.25.8.bb} | 6 +- ..._1.25.7.bb => go-cross-canadian_1.25.8.bb} | 0 ...{go-cross_1.25.7.bb => go-cross_1.25.8.bb} | 0 ...osssdk_1.25.7.bb => go-crosssdk_1.25.8.bb} | 0 ...runtime_1.25.7.bb => go-runtime_1.25.8.bb} | 0 .../go/{go_1.25.7.bb => go_1.25.8.bb} | 0 meta/recipes-extended/pam/libpam_1.7.1.bb | 2 + .../freetype/freetype/CVE-2026-23865.patch | 54 ++++++++++++ .../freetype/freetype_2.13.3.bb | 4 +- 15 files changed, 194 insertions(+), 6 deletions(-) create mode 100644 meta/recipes-connectivity/inetutils/inetutils/CVE-2026-28372.patch create mode 100644 meta/recipes-core/busybox/busybox/CVE-2025-60876.patch rename meta/recipes-devtools/go/{go-1.25.7.inc => go-1.25.8.inc} (91%) rename meta/recipes-devtools/go/{go-binary-native_1.25.7.bb => go-binary-native_1.25.8.bb} (79%) rename meta/recipes-devtools/go/{go-cross-canadian_1.25.7.bb => go-cross-canadian_1.25.8.bb} (100%) rename meta/recipes-devtools/go/{go-cross_1.25.7.bb => go-cross_1.25.8.bb} (100%) rename meta/recipes-devtools/go/{go-crosssdk_1.25.7.bb => go-crosssdk_1.25.8.bb} (100%) rename meta/recipes-devtools/go/{go-runtime_1.25.7.bb => go-runtime_1.25.8.bb} (100%) rename meta/recipes-devtools/go/{go_1.25.7.bb => go_1.25.8.bb} (100%) create mode 100644 meta/recipes-graphics/freetype/freetype/CVE-2026-23865.patch
-=-=-=-=-=-=-=-=-=-=-=- Links: You receive all messages sent to this group. View/Reply Online (#232899): https://lists.openembedded.org/g/openembedded-core/message/232899 Mute This Topic: https://lists.openembedded.org/mt/118266827/21656 Group Owner: [email protected] Unsubscribe: https://lists.openembedded.org/g/openembedded-core/unsub [[email protected]] -=-=-=-=-=-=-=-=-=-=-=-
