Mirror of git.openembedded.org/meta-openembedded https://git.enea.com/cgit/linux/meta-openembedded.git/atom?h=scarthgap 2026-03-24T03:22:08+00:00 2026-03-24T03:22:08+00:00 Gyorgy Sarvari skandigraun@gmail.com 2026-03-10T13:03:23+00:00 urn:sha1:af2304fcb982055d420bda526e8b30fbcf899339 Drop patches that are included in this release. Changes: https://www.php.net/ChangeLog-8.php#8.2.30 - Curl: Fix curl build and test failures with version 8.16. - Opcache: Reset global pointers to prevent use-after-free in zend_jit_status(). - PDO: PDO quoting result null deref - CVE-2025-14180 - Null byte termination in dns_get_record() - Heap buffer overflow in array_merge() - CVE-2025-14178 - Information Leak of Memory in getimagesize - CVE-2025-14177 Signed-off-by: Gyorgy Sarvari <skandigraun@gmail.com> Signed-off-by: Anuj Mittal <anuj.mittal@oss.qualcomm.com> 2026-02-09T04:05:51+00:00 Anil Dongare adongare@cisco.com 2026-02-04T11:43:01+00:00 urn:sha1:70822f1a81f73dd07af85c843f93203f32a36ba9 Upstream Repository: https://github.com/php/php-src.git Bug Details: https://nvd.nist.gov/vuln/detail/CVE-2025-14180 Type: Security Fix CVE: CVE-2025-14180 Score: 7.5 Patch: https://github.com/php/php-src/commit/5797b94652c3 Signed-off-by: Anil Dongare <adongare@cisco.com> Signed-off-by: Anuj Mittal <anuj.mittal@oss.qualcomm.com> 2026-02-09T04:05:51+00:00 Anil Dongare adongare@cisco.com 2026-02-04T11:43:00+00:00 urn:sha1:47502449211432157bbaeaac365d407eafc150ec Upstream Repository: https://github.com/php/php-src.git Bug Details: https://nvd.nist.gov/vuln/detail/CVE-2025-14178 Type: Security Fix CVE: CVE-2025-14178 Score: 8.2 Patch: https://github.com/php/php-src/commit/c4268c15e361 Signed-off-by: Anil Dongare <adongare@cisco.com> Signed-off-by: Anuj Mittal <anuj.mittal@oss.qualcomm.com> 2026-01-19T06:45:49+00:00 Anil Dongare adongare@cisco.com 2026-01-18T06:50:37+00:00 urn:sha1:2759d8870ea387b76c902070bed8a6649ff47b56 Upstream Repository: https://github.com/php/php-src.git Bug Details: https://nvd.nist.gov/vuln/detail/CVE-2025-14177 Type: Security Fix CVE: CVE-2025-14177 Score: 7.5 Patch: https://github.com/php/php-src/commit/c5f28c7cf0a0 Signed-off-by: Anil Dongare <adongare@cisco.com> Signed-off-by: Anuj Mittal <anuj.mittal@oss.qualcomm.com> 2025-10-06T08:05:40+00:00 Jeroen Hofstee jhofstee@victronenergy.com 2025-09-26T22:42:11+00:00 urn:sha1:0b7b87ad31abb9dd4e353ab66e5127326372bbcc CVE-2024-3566 only effects Microsoft Windows. Signed-off-by: Jeroen Hofstee <jhofstee@victronenergy.com> Signed-off-by: Khem Raj <raj.khem@gmail.com> (cherry picked from commit d68c56e1ed2adc8246a18424ed5d9ede5e8254a0) Signed-off-by: Jeroen Hofstee <jhofstee@victronenergy.com> Signed-off-by: Anuj Mittal <anuj.mittal@intel.com> 2025-09-12T00:15:06+00:00 Praveen Kumar praveen.kumar@windriver.com 2025-08-01T12:53:29+00:00 urn:sha1:3fbbd2c0804a7a7f0478f46dabea35e55a48707e This upgrade fixes below CVEs. CVE-2025-1735 CVE-2025-6491 CVE-2025-1220 Changelog: https://www.php.net/ChangeLog-8.php#8.2.29 Signed-off-by: Praveen Kumar <praveen.kumar@windriver.com> Signed-off-by: Anuj Mittal <anuj.mittal@intel.com> 2025-04-17T00:33:53+00:00 Soumya Sambu soumya.sambu@windriver.com 2025-04-09T12:55:42+00:00 urn:sha1:01eb9fb907892da37d3d88c37d1191151e2a9e31 Includes fix for - CVE-2025-1219, CVE-2025-1736, CVE-2025-1861, CVE-2025-1734 and CVE-2025-1217 Changelog: https://www.php.net/ChangeLog-8.php#8.2.28 Signed-off-by: Soumya Sambu <soumya.sambu@windriver.com> Signed-off-by: Armin Kuster <akuster808@gmail.com> 2025-01-21T00:25:38+00:00 Vijay Anusuri vanusuri@mvista.com 2025-01-07T13:17:23+00:00 urn:sha1:05ad9e725f85bd0b0dc7e851324a16e55446c994 Includes fix for CVE-2024-8929, CVE-2024-11236, CVE-2024-11234 and CVE-2024-11233 Changelog: https://www.php.net/ChangeLog-8.php#8.2.26 Signed-off-by: Vijay Anusuri <vanusuri@mvista.com> Signed-off-by: Armin Kuster <akuster808@gmail.com> 2024-12-15T18:53:05+00:00 Yogita Urade yogita.urade@windriver.com 2024-11-26T04:40:52+00:00 urn:sha1:96d9f031ba22958e416b31278d5cd043863c8b3b Includes fix for CVE-2024-8925, CVE-2024-8926, CVE-2024-8927 and CVE-2024-9026 Changelog: https://www.php.net/ChangeLog-8.php#8.2.24 Rebase 0001-ext-opcache-config.m4-enable-opcache.patch to new version Signed-off-by: Yogita Urade <yogita.urade@windriver.com> Signed-off-by: Armin Kuster <akuster808@gmail.com> 2024-06-26T11:33:55+00:00 Soumya Sambu soumya.sambu@windriver.com 2024-06-26T08:50:38+00:00 urn:sha1:78a14731cf0cf38a19ff8bd0e9255b319afaf3a7 Includes fix for CVE-2024-5458, CVE-2024-2408 and other bugs Changelog: https://www.php.net/ChangeLog-8.php#PHP_8_2 Signed-off-by: Soumya Sambu <soumya.sambu@windriver.com> Signed-off-by: Armin Kuster <akuster808@gmail.com>