Mirror of git.openembedded.org/meta-openembedded https://git.enea.com/cgit/linux/meta-openembedded.git/atom?h=scarthgap 2026-04-15T08:42:18+00:00 2026-04-15T08:42:18+00:00 Ankur Tyagi ankur.tyagi85@gmail.com 2026-04-11T11:14:48+00:00 urn:sha1:3b6292cfbef8b60750071da92ccb91d50a63c2be Backport the commit[1] from version 6.5.5 which fixes this vulnerability according to the NVD[2]. [1] https://github.com/tornadoweb/tornado/commit/24a2d96ea115f663b223887deb0060f13974c104 [2] https://nvd.nist.gov/vuln/detail/CVE-2026-35536 Signed-off-by: Ankur Tyagi <ankur.tyagi85@gmail.com> Signed-off-by: Anuj Mittal <anuj.mittal@oss.qualcomm.com> 2026-02-12T08:08:12+00:00 Gyorgy Sarvari skandigraun@gmail.com 2026-02-07T10:33:56+00:00 urn:sha1:f29101aa4ed9918fac19fa20f2c895d0c778a457 Details: https://nvd.nist.gov/vuln/detail/CVE-2025-67725 According to the NVD advisory references the same commit fixes it as CVE-2025-67726. Just extend the CVE tag to make the cve-checker also see this. Signed-off-by: Gyorgy Sarvari <skandigraun@gmail.com> Signed-off-by: Anuj Mittal <anuj.mittal@oss.qualcomm.com> 2026-01-19T06:45:42+00:00 Ankur Tyagi ankur.tyagi85@gmail.com 2026-01-14T13:00:51+00:00 urn:sha1:e2b431389facf4bb69c25f9cbb3446bf4f237bc5 Details: https://nvd.nist.gov/vuln/detail/CVE-2025-67726 Signed-off-by: Ankur Tyagi <ankur.tyagi85@gmail.com> Signed-off-by: Anuj Mittal <anuj.mittal@oss.qualcomm.com> 2026-01-19T06:45:42+00:00 Ankur Tyagi ankur.tyagi85@gmail.com 2026-01-14T13:00:50+00:00 urn:sha1:cfa04fece146248b8f0c3c522aa29f8e0f3a3cf3 Details: https://nvd.nist.gov/vuln/detail/CVE-2025-67724 Signed-off-by: Ankur Tyagi <ankur.tyagi85@gmail.com> Signed-off-by: Anuj Mittal <anuj.mittal@oss.qualcomm.com> 2026-01-19T06:45:41+00:00 Ankur Tyagi ankur.tyagi85@gmail.com 2026-01-14T13:00:49+00:00 urn:sha1:a0c05c9da8dda5147269a240ce0d69dbe4c63195 Details: https://nvd.nist.gov/vuln/detail/CVE-2025-47287 Signed-off-by: Ankur Tyagi <ankur.tyagi85@gmail.com> Signed-off-by: Anuj Mittal <anuj.mittal@oss.qualcomm.com>