<feed xmlns='http://www.w3.org/2005/Atom'>
<title>linux/meta-openembedded.git/meta-networking, branch scarthgap</title>
<subtitle>Mirror of git.openembedded.org/meta-openembedded</subtitle>
<id>https://git.enea.com/cgit/linux/meta-openembedded.git/atom?h=scarthgap</id>
<link rel='self' href='https://git.enea.com/cgit/linux/meta-openembedded.git/atom?h=scarthgap'/>
<link rel='alternate' type='text/html' href='https://git.enea.com/cgit/linux/meta-openembedded.git/'/>
<updated>2026-05-21T04:26:21+00:00</updated>
<entry>
<title>dnsmasq: Fix CVE-2026-5172</title>
<updated>2026-05-21T04:26:21+00:00</updated>
<author>
<name>Hugo SIMELIERE (Schneider Electric)</name>
<email>hsimeliere.opensource@witekio.com</email>
</author>
<published>2026-05-20T12:29:08+00:00</published>
<link rel='alternate' type='text/html' href='https://git.enea.com/cgit/linux/meta-openembedded.git/commit/?id=f1d78e95277e4a74a71a75098da88edb2927b9a6'/>
<id>urn:sha1:f1d78e95277e4a74a71a75098da88edb2927b9a6</id>
<content type='text'>
Pick patch from [1] dnsmasq 2.90 debian bookworm pacthes.

[1] https://sources.debian.org/src/dnsmasq/2.90-4~deb12u2/debian/patches/CVE-2026-5172.patch

Signed-off-by: Hugo SIMELIERE (Schneider Electric) &lt;hsimeliere.opensource@witekio.com&gt;
Reviewed-by: Bruno VERNAY &lt;bruno.vernay@se.com&gt;
Signed-off-by: Anuj Mittal &lt;anuj.mittal@oss.qualcomm.com&gt;
</content>
</entry>
<entry>
<title>dnsmasq: Fix CVE-2026-4893</title>
<updated>2026-05-21T04:26:20+00:00</updated>
<author>
<name>Hugo SIMELIERE (Schneider Electric)</name>
<email>hsimeliere.opensource@witekio.com</email>
</author>
<published>2026-05-20T12:29:07+00:00</published>
<link rel='alternate' type='text/html' href='https://git.enea.com/cgit/linux/meta-openembedded.git/commit/?id=7dda8e9bd75855300f55faa2d803deebac226d43'/>
<id>urn:sha1:7dda8e9bd75855300f55faa2d803deebac226d43</id>
<content type='text'>
Pick patch from [1] dnsmasq 2.90 debian bookworm pacthes.

[1] https://sources.debian.org/src/dnsmasq/2.90-4~deb12u2/debian/patches/CVE-2026-4893.patch

Signed-off-by: Hugo SIMELIERE (Schneider Electric) &lt;hsimeliere.opensource@witekio.com&gt;
Reviewed-by: Bruno VERNAY &lt;bruno.vernay@se.com&gt;
Signed-off-by: Anuj Mittal &lt;anuj.mittal@oss.qualcomm.com&gt;
</content>
</entry>
<entry>
<title>dnsmasq: Fix CVE-2026-4892</title>
<updated>2026-05-21T04:26:20+00:00</updated>
<author>
<name>Hugo SIMELIERE (Schneider Electric)</name>
<email>hsimeliere.opensource@witekio.com</email>
</author>
<published>2026-05-20T12:29:06+00:00</published>
<link rel='alternate' type='text/html' href='https://git.enea.com/cgit/linux/meta-openembedded.git/commit/?id=e614003e0af184d59b3eb85658149c8bef2ed50e'/>
<id>urn:sha1:e614003e0af184d59b3eb85658149c8bef2ed50e</id>
<content type='text'>
Pick patch from [1] dnsmasq 2.90 debian bookworm pacthes.

[1] https://sources.debian.org/src/dnsmasq/2.90-4~deb12u2/debian/patches/CVE-2026-4892.patch

Signed-off-by: Hugo SIMELIERE (Schneider Electric) &lt;hsimeliere.opensource@witekio.com&gt;
Reviewed-by: Bruno VERNAY &lt;bruno.vernay@se.com&gt;
Signed-off-by: Anuj Mittal &lt;anuj.mittal@oss.qualcomm.com&gt;
</content>
</entry>
<entry>
<title>dnsmasq: Fix CVE-2026-4891</title>
<updated>2026-05-21T04:26:19+00:00</updated>
<author>
<name>Hugo SIMELIERE (Schneider Electric)</name>
<email>hsimeliere.opensource@witekio.com</email>
</author>
<published>2026-05-20T12:29:05+00:00</published>
<link rel='alternate' type='text/html' href='https://git.enea.com/cgit/linux/meta-openembedded.git/commit/?id=cab6f6c603ee2b35c72f9f7e70bf22e23706c9a0'/>
<id>urn:sha1:cab6f6c603ee2b35c72f9f7e70bf22e23706c9a0</id>
<content type='text'>
Pick patch from [1] dnsmasq 2.90 debian bookworm pacthes.

[1] https://sources.debian.org/src/dnsmasq/2.90-4~deb12u2/debian/patches/CVE-2026-4891.patch

Signed-off-by: Hugo SIMELIERE (Schneider Electric) &lt;hsimeliere.opensource@witekio.com&gt;
Reviewed-by: Bruno VERNAY &lt;bruno.vernay@se.com&gt;
Signed-off-by: Anuj Mittal &lt;anuj.mittal@oss.qualcomm.com&gt;
</content>
</entry>
<entry>
<title>strongswan: fix for CVE-2026-35334</title>
<updated>2026-05-21T03:27:48+00:00</updated>
<author>
<name>Hitendra Prajapati</name>
<email>hprajapati@mvista.com</email>
</author>
<published>2026-05-14T13:15:41+00:00</published>
<link rel='alternate' type='text/html' href='https://git.enea.com/cgit/linux/meta-openembedded.git/commit/?id=a587f53a0eff978246f7aec466fb42588c339056'/>
<id>urn:sha1:a587f53a0eff978246f7aec466fb42588c339056</id>
<content type='text'>
Pick patch according to [1]

[1] https://download.strongswan.org/security/CVE-2026-35334
[2] https://www.strongswan.org/blog/2026/04/22/strongswan-vulnerability-(cve-2026-35334).html
[3] https://security-tracker.debian.org/tracker/CVE-2026-35334

Signed-off-by: Hitendra Prajapati &lt;hprajapati@mvista.com&gt;
Signed-off-by: Anuj Mittal &lt;anuj.mittal@oss.qualcomm.com&gt;
</content>
</entry>
<entry>
<title>nanomsg: upgrade 1.2.1 -&gt; 1.2.2</title>
<updated>2026-05-21T03:27:47+00:00</updated>
<author>
<name>Ankur Tyagi</name>
<email>ankur.tyagi85@gmail.com</email>
</author>
<published>2026-05-13T05:04:49+00:00</published>
<link rel='alternate' type='text/html' href='https://git.enea.com/cgit/linux/meta-openembedded.git/commit/?id=797f2baebeebab32dead447cca4e91ca9a4e7cb8'/>
<id>urn:sha1:797f2baebeebab32dead447cca4e91ca9a4e7cb8</id>
<content type='text'>
Changelog:
https://github.com/nanomsg/nanomsg/releases/tag/1.2.2

Signed-off-by: Ankur Tyagi &lt;ankur.tyagi85@gmail.com&gt;
Signed-off-by: Anuj Mittal &lt;anuj.mittal@oss.qualcomm.com&gt;
</content>
</entry>
<entry>
<title>postfix: upgrade 3.8.12 -&gt; 3.8.16</title>
<updated>2026-05-21T03:27:47+00:00</updated>
<author>
<name>Ankur Tyagi</name>
<email>ankur.tyagi85@gmail.com</email>
</author>
<published>2026-05-13T05:04:48+00:00</published>
<link rel='alternate' type='text/html' href='https://git.enea.com/cgit/linux/meta-openembedded.git/commit/?id=c756576c1c8013c40159b62f25e486475f6c15c6'/>
<id>urn:sha1:c756576c1c8013c40159b62f25e486475f6c15c6</id>
<content type='text'>
3.8.13
http://www.postfix.org/announcements/postfix-3.10.6.html

3.8.14
http://www.postfix.org/announcements/postfix-3.10.7.html

3.8.15
http://www.postfix.org/announcements/postfix-3.10.8.html

3.8.16
http://www.postfix.org/announcements/postfix-3.11.2.html

Signed-off-by: Ankur Tyagi &lt;ankur.tyagi85@gmail.com&gt;
Signed-off-by: Anuj Mittal &lt;anuj.mittal@oss.qualcomm.com&gt;
</content>
</entry>
<entry>
<title>frr: patch CVE-2026-28532</title>
<updated>2026-05-21T03:27:45+00:00</updated>
<author>
<name>Ankur Tyagi</name>
<email>ankur.tyagi85@gmail.com</email>
</author>
<published>2026-05-13T05:04:45+00:00</published>
<link rel='alternate' type='text/html' href='https://git.enea.com/cgit/linux/meta-openembedded.git/commit/?id=fdd887bc2979ae4d1666d1fb5750c60201622ef2'/>
<id>urn:sha1:fdd887bc2979ae4d1666d1fb5750c60201622ef2</id>
<content type='text'>
Details: https://nvd.nist.gov/vuln/detail/CVE-2026-28532

Signed-off-by: Ankur Tyagi &lt;ankur.tyagi85@gmail.com&gt;
Signed-off-by: Anuj Mittal &lt;anuj.mittal@oss.qualcomm.com&gt;
</content>
</entry>
<entry>
<title>firewalld: upgrade 1.3.2 -&gt; 1.3.4</title>
<updated>2026-05-21T03:27:45+00:00</updated>
<author>
<name>Ankur Tyagi</name>
<email>ankur.tyagi85@gmail.com</email>
</author>
<published>2026-05-13T05:04:44+00:00</published>
<link rel='alternate' type='text/html' href='https://git.enea.com/cgit/linux/meta-openembedded.git/commit/?id=764a8f2154aa26b3716c12ace1119115d15768a9'/>
<id>urn:sha1:764a8f2154aa26b3716c12ace1119115d15768a9</id>
<content type='text'>
https://github.com/firewalld/firewalld/releases/tag/v1.3.3
https://github.com/firewalld/firewalld/releases/tag/v1.3.4

Signed-off-by: Ankur Tyagi &lt;ankur.tyagi85@gmail.com&gt;
Signed-off-by: Anuj Mittal &lt;anuj.mittal@oss.qualcomm.com&gt;
</content>
</entry>
<entry>
<title>open-vm-tools: Add entry to CVE_PRODUCT to support the product name</title>
<updated>2026-05-21T03:27:43+00:00</updated>
<author>
<name>Het Patel</name>
<email>hetpat@cisco.com</email>
</author>
<published>2026-05-08T06:29:14+00:00</published>
<link rel='alternate' type='text/html' href='https://git.enea.com/cgit/linux/meta-openembedded.git/commit/?id=90a0e3bf89582e3ce7afc7d7d598ab467d44004d'/>
<id>urn:sha1:90a0e3bf89582e3ce7afc7d7d598ab467d44004d</id>
<content type='text'>
- Added 'vmware:open_vm_tools' to CVE_PRODUCT to align with the NVD
CPE and ensure accurate CVE reporting.

Signed-off-by: Het Patel &lt;hetpat@cisco.com&gt;
Signed-off-by: Khem Raj &lt;raj.khem@gmail.com&gt;
(cherry picked from commit 9b69587ecb92b3acb7b3092217357de9c1be14e6)
Signed-off-by: Himanshu Jadon &lt;hjadon@cisco.com&gt;
Signed-off-by: Anuj Mittal &lt;anuj.mittal@oss.qualcomm.com&gt;
</content>
</entry>
</feed>
