Mirror of git.yoctoproject.org/poky https://git.enea.com/cgit/linux/poky.git/atom?h=master 2025-05-15T09:55:26+00:00 2025-05-15T09:55:26+00:00 Richard Purdie richard.purdie@linuxfoundation.org 2025-05-13T12:43:42+00:00 urn:sha1:09c768e203ea49307137bd59fd14c865d48d988f The last user in OE-Core was gst-examples. This has been upgraded and the dependency dropped, all other users can use libsoup3 instead. Therefore remove the obsolete and deprecated version. (From OE-Core rev: 94ebc5b798aed6eea642c5e2a4df24b386520636) Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org> 2025-05-01T13:22:54+00:00 Changqing Li changqing.li@windriver.com 2025-04-30T07:50:21+00:00 urn:sha1:e5902fa07b5d4874533e5a87ebbe9d4b0e66c3c0 CVE-2025-32911: A use-after-free type vulnerability was found in libsoup, in the soup_message_headers_get_content_disposition() function. This flaw allows a malicious HTTP client to cause memory corruption in the libsoup server. Backport patches to fix it [1] https://nvd.nist.gov/vuln/detail/CVE-2025-32911 [2] https://gitlab.gnome.org/GNOME/libsoup/-/issues/433 (From OE-Core rev: 839d93bbb1ca7a51b659b8cb9def9b354a99518f) Signed-off-by: Changqing Li <changqing.li@windriver.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>