Mirror of git.openembedded.org/meta-openembedded https://git.enea.com/cgit/linux/meta-openembedded.git/atom?h=kirkstone 2026-03-29T09:11:33+00:00 2026-03-29T09:11:33+00:00 Vijay Anusuri vanusuri@mvista.com 2026-03-27T09:59:04+00:00 urn:sha1:9d8ef26a9693e2c70ae34abe1a753873d42ec588 Pick commit according to [1] [1] https://security-tracker.debian.org/tracker/CVE-2026-0964 [2] https://www.libssh.org/security/advisories/CVE-2026-0964.txt Signed-off-by: Vijay Anusuri <vanusuri@mvista.com> Signed-off-by: Gyorgy Sarvari <skandigraun@gmail.com> 2026-03-29T09:11:24+00:00 Vijay Anusuri vanusuri@mvista.com 2026-03-27T09:59:03+00:00 urn:sha1:f589378b4835499affa7d5d6f362628580f59b7f Corrected the ssh_print_hexa to ssh_print_hash in the patch Signed-off-by: Vijay Anusuri <vanusuri@mvista.com> Signed-off-by: Gyorgy Sarvari <skandigraun@gmail.com> 2026-03-29T09:11:09+00:00 Vijay Anusuri vanusuri@mvista.com 2026-03-25T12:41:41+00:00 urn:sha1:4a119f766dc4a4333a84da20037d0d3dddd61342 Pick commits according to [1] [1] https://security-tracker.debian.org/tracker/CVE-2026-0966 [2] https://www.libssh.org/security/advisories/CVE-2026-0966.txt Skip the test commit as it's not applicable in libssh-0.8.9 Signed-off-by: Vijay Anusuri <vanusuri@mvista.com> Signed-off-by: Gyorgy Sarvari <skandigraun@gmail.com> 2026-03-26T05:54:14+00:00 Vijay Anusuri vanusuri@mvista.com 2026-03-26T03:50:04+00:00 urn:sha1:b54d0fb888b8784afd99a0720a3efe8d4e35f02d Pick patch according to [1] [1] https://www.facebook.com/security/advisories/cve-2026-23868 [2] https://nvd.nist.gov/vuln/detail/CVE-2026-23868 Signed-off-by: Vijay Anusuri <vanusuri@mvista.com> Signed-off-by: Gyorgy Sarvari <skandigraun@gmail.com> 2026-03-25T07:41:41+00:00 Hitendra Prajapati hprajapati@mvista.com 2026-03-25T06:43:54+00:00 urn:sha1:2fd8d7e4852ca25ca91b7bdb276b4d4ff8fc9527 Pick patch from [1]. [1] https://security-tracker.debian.org/tracker/CVE-2025-5601 [2] https://gitlab.com/wireshark/wireshark/-/issues/20509 More details : https://nvd.nist.gov/vuln/detail/CVE-2025-5601 Signed-off-by: Hitendra Prajapati <hprajapati@mvista.com> Signed-off-by: Gyorgy Sarvari <skandigraun@gmail.com> 2026-03-24T09:40:05+00:00 Vijay Anusuri vanusuri@mvista.com 2026-03-24T08:37:41+00:00 urn:sha1:553e138481b03ff4dffa12aeb0bd257ee64faa38 Pick commits according to [1] [1] https://jira.mariadb.org/browse/MDEV-37483 Signed-off-by: Vijay Anusuri <vanusuri@mvista.com> Signed-off-by: Gyorgy Sarvari <skandigraun@gmail.com> 2026-03-21T12:19:26+00:00 Gyorgy Sarvari skandigraun@gmail.com 2026-03-21T12:00:56+00:00 urn:sha1:144725f1e36675fe4d76c6f8a73c00cc6c66ebe0 Details: https://nvd.nist.gov/vuln/detail/CVE-2025-61147 Backport the patch referenced by the NVD advisory. Note that this is a partial backport - only the parts that are used by the application, and without pulling in c++17 headers. Signed-off-by: Gyorgy Sarvari <skandigraun@gmail.com> 2026-03-18T12:39:29+00:00 Nitin Wankhade nitin.wankhade333@gmail.com 2026-03-18T09:09:45+00:00 urn:sha1:a9b824a5000d767776a24c2c77d0ccb4fcfc4fbb Reference: https://github.com/ImageMagick/ImageMagick/commit/2fae24192b78fdfdd27d766fd21d90aeac6ea8b8 Signed-off-by: Nitin Wankhade <nitin.wankhade333@gmail.com> Signed-off-by: Gyorgy Sarvari <skandigraun@gmail.com> 2026-03-18T12:39:28+00:00 Nitin Wankhade nitin.wankhade333@gmail.com 2026-03-18T09:09:41+00:00 urn:sha1:6577243d2cf76a520f4e674a5b8a28c2812a2c6a Reference: https://github.com/ImageMagick/ImageMagick/commit/2a09644b10a5b146e0a7c63b778bd74a112ebec3 Signed-off-by: Nitin Wankhade <nitin.wankhade333@gmail.com> Signed-off-by: Gyorgy Sarvari <skandigraun@gmail.com> 2026-03-18T12:39:27+00:00 Nitin Wankhade nitin.wankhade333@gmail.com 2026-03-18T09:09:37+00:00 urn:sha1:b091a7cc1266946b3dfc960c6969d16061da32d1 Reference: https://github.com/ImageMagick/ImageMagick/commit/3e0330721020e0c5bb52e4b77c347527dd71658e Signed-off-by: Nitin Wankhade <nitin.wankhade333@gmail.com> Signed-off-by: Gyorgy Sarvari <skandigraun@gmail.com>