Toggle navigation
Patchwork
OpenEmbedded Core Layer
Patches
Bundles
About this project
Login
Register
Mail settings
Show patches with
: none
| 21911 patches
Series
Submitter
State
any
Action Required
New
Under Review
Accepted
Rejected
RFC
Not Applicable
Changes Requested
Awaiting Upstream
Superseded
Deferred
Search
Archived
No
Yes
Both
Delegate
------
Nobody
gitpwbot
gitpwbot
gitpwbot
gitpwbot
gitpwbot
gitpwbot
gitpwbot
gitpwbot
akuster
akuster
akuster
akuster
mototimo
mototimo
mototimo
kraj
kraj
denix
denix
reatmon
reatmon
rpurdie
rpurdie
rpurdie
rpurdie
sakoman
rossburton
rossburton
jonmason
Apply
«
1
2
...
117
118
119
…
219
220
»
Patch
Series
A/R/T
S/W/F
Date
Submitter
Delegate
State
[dunfell,02/14] openssh: Fix CVE-2021-41617
[dunfell,01/14] bluez: fix CVE-2021-0129
- - -
-
-
-
2021-12-22
Steve Sakoman
Accepted
[dunfell,02/14] openssh: Securiry fix for CVE-2023-38408
[dunfell,01/14] bind: Backport fix for CVE-2023-2828
- - -
-
-
-
2023-09-12
Steve Sakoman
Accepted
[dunfell,02/14] openssl: backport fix for ptest certificate expiration
[dunfell,01/14] Revert "openssl: Backport fix for ptest cert expiry"
- - -
-
-
-
2022-06-08
Steve Sakoman
Accepted
[dunfell,02/14] openssl: CVE-2023-2650 Possible DoS translating ASN.1 object identifiers
[dunfell,01/14] cups: Fix CVE-2023-32324
- - -
-
-
-
2023-06-22
Steve Sakoman
New
[dunfell,02/14] QEMU: CVE-2022-4144 QXL: qxl_phys2virt unsafe address translation can lead to out-o…
[dunfell,01/14] libarchive: fix CVE-2022-26280
- - -
-
-
-
2023-03-21
Steve Sakoman
Accepted
[dunfell,02/15] tiff: CVE patch correction for CVE-2023-3576
[dunfell,01/15] kexec-tools: Ignore Fedora/RedHat specific CVE-2021-20269
- - -
-
-
-
2023-11-11
Steve Sakoman
Accepted
[dunfell,02/16] cve-update-db-native: add more logging when fetching
[dunfell,01/16] cve-update-db-native: Allow to overrule the URL in a bbappend.
- - -
-
-
-
2023-01-25
Steve Sakoman
New
[dunfell,02/16] qemu: fix CVE-2021-3929 nvme DMA reentrancy issue leads to use-after-free
[dunfell,01/16] qemu: Fix slirp determinism issue
- - -
-
-
-
2023-02-20
Steve Sakoman
Accepted
[dunfell,02/17] sysstat: fix CVE-2023-33204
[dunfell,01/17] cups: Fix CVE-2023-34241
- - -
-
-
-
2023-07-08
Steve Sakoman
New
[dunfell,02/17] tiff: CVE patch correction for CVE-2023-3576
[dunfell,01/17] kexec-tools: Ignore Fedora/RedHat specific CVE-2021-20269
- - -
-
-
-
2023-11-15
Steve Sakoman
Accepted
[dunfell,02/18] glib-2.0: Add security fixes
[dunfell,01/18] cve-extra-exclusions: add db CVEs to exclusion list
- - -
-
-
-
2021-12-03
Steve Sakoman
New
[dunfell,02/18] go: fix CVE-2022-23806
[dunfell,01/18] libarchive: Fix for CVE-2021-36976
- - -
-
-
-
2022-03-04
Steve Sakoman
New
[dunfell,02/18] go: fix CVE-2022-41717 Excessive memory use in got server
[dunfell,01/18] grub2: CVE-2022-28735 shim_lock verifier allows non-kernel files to be loaded
- - -
-
-
-
2023-01-01
Steve Sakoman
Accepted
[dunfell,02/20] connman: fix CVE-2022-23096-7
[dunfell,01/20] expat: fix CVE-2022-23990
- - -
-
-
-
2022-02-21
Steve Sakoman
Accepted
[dunfell,02/20] systemd: Fix CVE-2021-3997
[dunfell,01/20] glibc: update to lastest 2.31 release HEAD
- - -
-
-
-
2022-02-03
Steve Sakoman
Accepted
[dunfell,02/21] systemd: Fix CVE-2022-3821 issue
[dunfell,01/21] sudo: CVE-2022-43995 heap-based overflow with very small passwords
- - -
-
-
-
2022-11-19
Steve Sakoman
Accepted
[dunfell,02/22] python3: ignore CVE-2023-36632
[dunfell,01/22] ruby/cgi-gem: CVE-2021-33621 HTTP response splitting in CGI
- - -
-
-
-
2023-08-13
Steve Sakoman
Accepted
[dunfell,02/23] tiff: fix multiple CVEs
[dunfell,01/23] curl: fix CVE-2022-43552 Use-after-free triggered by an HTTP proxy deny response
- - -
-
-
-
2023-03-07
Steve Sakoman
Accepted
[dunfell,02/42] linux-yocto/5.4: update to v5.4.155
[dunfell,01/42] linux-yocto/5.4: update to v5.4.154
- - -
-
-
-
2021-11-28
Steve Sakoman
Accepted
[dunfell,02/50] tiff: fix for CVE-2022-22844
[dunfell,01/50] openssl: Add fix for CVE-2021-4160
- - -
-
-
-
2022-02-25
Steve Sakoman
Accepted
[dunfell,03/10] curl: Backport fix for CVE-2023-38546
[dunfell,01/10] libtiff: Add fix for tiffcrop CVE-2023-1916
- - -
-
-
-
2023-10-17
Steve Sakoman
Accepted
[dunfell,03/10] gcc: Add CVE-2021-37322 to the list of CVEs to ignore
[dunfell,01/10] cve-extra-exclusions: add db CVEs to exclusion list
- - -
-
-
-
2021-12-13
Steve Sakoman
Accepted
[dunfell,03/10] go: Backport fix CVE-2023-29405
[dunfell,01/10] libjpeg-turbo: CVE-2020-35538 Null pointer dereference in jcopy_sample_rows() funct…
- - -
-
-
-
2023-06-30
Steve Sakoman
New
[dunfell,03/10] qemu: backport patch fix for CVE-2020-13791
[dunfell,01/10] libsolv: fix CVE: CVE-2021-44568-71 and CVE-2021-44573-77
- - -
-
-
-
2022-03-27
Steve Sakoman
Accepted
[dunfell,03/11] curl: ammend fix for CVE-2023-27534 to fix error when ssh is enabled
[dunfell,01/11] git: fix CVE-2023-29007
- - -
-
-
-
2023-05-20
Steve Sakoman
New
[dunfell,03/11] curl: fix CVE-2022-32221 POST following PUT
[dunfell,01/11] bluez: CVE-2022-3637 A DoS exists in monitor/jlink.c
- - -
-
-
-
2022-11-12
Steve Sakoman
Accepted
[dunfell,03/11] cve-update-db-native: use fetch task
[dunfell,01/11] valgrind: skip flakey ptest (gdbserver_tests/hginfo)
- - -
-
-
-
2022-01-13
Steve Sakoman
Accepted
[dunfell,03/11] cve_check: skip remote patches that haven't been fetched when searching for CVE tags
[dunfell,01/11] grub2: Fix several security issue of integer underflow
- - -
-
-
-
2022-08-10
Steve Sakoman
Accepted
[dunfell,03/11] expat: fix CVE-2021-46143
[dunfell,01/11] expat fix CVE-2022-22822 through CVE-2022-22827
- - -
-
-
-
2022-01-20
Steve Sakoman
Accepted
[dunfell,03/11] go: Update fix for CVE-2023-24538 & CVE-2023-39318
[dunfell,01/11] cups: Backport fix for CVE-2023-32360 and CVE-2023-4504
- - -
-
-
-
2023-10-10
Steve Sakoman
Accepted
[dunfell,03/11] golang: fix CVE-2021-44716
[dunfell,01/11] golang: fix CVE-2021-33195
- - -
-
-
-
2022-11-17
Ralph Siemsen
Accepted
[dunfell,03/11] libsdl2: Add fix for CVE-2021-33657
[dunfell,01/11] ruby: Upgrade ruby to 2.7.6 for security fix
- - -
-
-
-
2022-06-02
Steve Sakoman
Accepted
[dunfell,03/11] mdadm: Backport fix for CVE-2023-28938
[dunfell,01/11] binutils 2.34: Fix CVE-2021-46174
- - -
-
-
-
2023-12-06
Steve Sakoman
Accepted
[dunfell,03/11] xserver-xorg: Security fix CVE-2023-0494 and CVE-2023-1393
[dunfell,01/11] ffmpeg: Fix CVE-2022-48434
- - -
-
-
-
2023-06-08
Steve Sakoman
New
[dunfell,03/11] zlib: backport the fix for CVE-2018-25032
[dunfell,01/11] vim: Upgrade 8.2.4524 -> 8.2.4681
- - -
-
-
-
2022-04-16
Steve Sakoman
Accepted
[dunfell,03/11] zlib: CVE-2022-37434 a heap-based buffer over-read
[dunfell,01/11] qemu: CVE-2020-27821 heap buffer overflow in msix_table_mmio_write
- - -
-
-
-
2022-08-18
Steve Sakoman
Accepted
[dunfell,03/12] cve-update-nvd2-native: Add an age threshold for incremental update
[dunfell,01/12] libxml2: Backport fix for CVE-2024-25062
- - -
-
-
-
2024-03-20
Steve Sakoman
sakoman
Accepted
[dunfell,03/12] libpcre2: update SRC_URI
[dunfell,01/12] grub: fix CVE-2020-14372 and CVE-2020-27779
- - -
-
-
-
2022-01-09
Steve Sakoman
Accepted
[dunfell,03/12] lttng-modules: update 2.11.6 -> 2.11.7
[dunfell,01/12] go: fix CVE-2022-1962 go/parser stack exhaustion in all Parse* functions
- - -
-
-
-
2023-02-04
Steve Sakoman
New
[dunfell,03/12] unzip: fix CVE-2021-4217
[dunfell,01/12] golang: CVE-2022-24675 encoding/pem: fix stack overflow in Decode
- - -
-
-
-
2022-06-30
Steve Sakoman
Accepted
[dunfell,03/12] vim: Upgrade 8.2.5034 -> 8.2.5083
[dunfell,01/12] cups: fix CVE-2022-26691
- - -
-
-
-
2022-06-19
Steve Sakoman
Accepted
[dunfell,03/13] curl: Fix CVE CVE-2022-35260
[dunfell,01/13] xserver-xorg: backport fixes for CVE-2022-3550, CVE-2022-3551 and CVE-2022-3553
- - -
-
-
-
2022-12-16
Steve Sakoman
Accepted
[dunfell,03/13] curl: fix CVE-2023-28320 siglongjmp race condition may lead to crash
[dunfell,01/13] libx11: Fix CVE-2023-3138 for dunfell branch
- - -
-
-
-
2023-07-18
Steve Sakoman
Accepted
[dunfell,03/13] libxpm: fix CVE-2022-46285
[dunfell,01/13] mdadm: Backport fix for CVE-2023-28736
- - -
-
-
-
2023-09-30
Steve Sakoman
Accepted
[dunfell,03/13] python3-setuptools: fix CVE-2022-40897
[dunfell,01/13] libx11: Fix for CVE-2023-43785 CVE-2023-43786 and CVE-2023-43787
- - -
-
-
-
2023-11-28
Steve Sakoman
Accepted
[dunfell,03/13] re2c: backport fix for CVE-2018-21232
[dunfell,01/13] libxml2: backport fix for CVE-2022-23308
- - -
-
-
-
2022-03-21
Steve Sakoman
Accepted
[dunfell,03/14] busybox: fix CVE-2022-28391
[dunfell,01/14] fribidi: Add fix for CVE-2022-25308, CVE-2022-25309 and CVE-2022-25310
- - -
-
-
-
2022-05-11
Steve Sakoman
Accepted
[dunfell,03/14] cve-update-nvd2-native: new CVE database fetcher
[dunfell,01/14] cups: Fix CVE-2023-32324
- - -
-
-
-
2023-06-22
Steve Sakoman
New
[dunfell,03/14] ghostscript: add CVE tag for check-stack-limits-after-function-evalution.patch
[dunfell,01/14] libarchive: fix CVE-2022-26280
- - -
-
-
-
2023-03-21
Steve Sakoman
Accepted
[dunfell,03/14] golang: fix CVE-2022-30632 and CVE-2022-30633
[dunfell,01/14] libtiff: CVE-2022-34526 A stack overflow was discovered
- - -
-
-
-
2022-08-29
Steve Sakoman
Accepted
[dunfell,03/14] openssh: Whitelist CVE-2016-20012
[dunfell,01/14] bluez: fix CVE-2021-0129
- - -
-
-
-
2021-12-22
Steve Sakoman
Accepted
[dunfell,03/14] openssl: Minor security upgrade 1.1.1o to 1.1.1p
[dunfell,01/14] cve-extra-exclusions: Clean up and ignore three CVEs (2xqemu and nasm)
- - -
-
-
-
2022-07-07
Steve Sakoman
New
[dunfell,03/14] openssl: update the epoch time for ct_test ptest
[dunfell,01/14] Revert "openssl: Backport fix for ptest cert expiry"
- - -
-
-
-
2022-06-08
Steve Sakoman
Accepted
[dunfell,03/14] qemu: Backport fix CVE-2023-3180
[dunfell,01/14] bind: Backport fix for CVE-2023-2828
- - -
-
-
-
2023-09-12
Steve Sakoman
Accepted
[dunfell,03/14] tiff: CVE-2022-3599.patch also fix CVE-2022-4645 CVE-2023-30774
[dunfell,01/14] curl: Backport fix CVE-2023-32001
- - -
-
-
-
2023-08-25
Steve Sakoman
Accepted
[dunfell,03/15] glibc: ignore CVE-2023-4527
[dunfell,01/15] kexec-tools: Ignore Fedora/RedHat specific CVE-2021-20269
- - -
-
-
-
2023-11-11
Steve Sakoman
Accepted
[dunfell,03/16] cve-update-db-native: avoid incomplete updates
[dunfell,01/16] cve-update-db-native: Allow to overrule the URL in a bbappend.
- - -
-
-
-
2023-01-25
Steve Sakoman
New
[dunfell,03/16] sudo: Fix CVE-2023-22809
[dunfell,01/16] qemu: Fix slirp determinism issue
- - -
-
-
-
2023-02-20
Steve Sakoman
Accepted
[dunfell,03/17] grub2: Fix Multiple CVEs
[dunfell,01/17] cups: Fix CVE-2023-34241
- - -
-
-
-
2023-07-08
Steve Sakoman
New
[dunfell,03/17] tiff: Security fix for CVE-2023-40745
[dunfell,01/17] kexec-tools: Ignore Fedora/RedHat specific CVE-2021-20269
- - -
-
-
-
2023-11-15
Steve Sakoman
Accepted
[dunfell,03/18] busybox: Fix for CVE-2021-42374
[dunfell,01/18] cve-extra-exclusions: add db CVEs to exclusion list
- - -
-
-
-
2021-12-03
Steve Sakoman
Accepted
[dunfell,03/18] go: fix CVE-2022-23772
[dunfell,01/18] libarchive: Fix for CVE-2021-36976
- - -
-
-
-
2022-03-04
Steve Sakoman
Accepted
[dunfell,03/18] rsync: fix CVE-2022-29154 remote arbitrary files write inside the directories of co…
[dunfell,01/18] grub2: CVE-2022-28735 shim_lock verifier allows non-kernel files to be loaded
- - -
-
-
-
2023-01-01
Steve Sakoman
Accepted
[dunfell,03/20] connman: fix CVE-2022-23098
[dunfell,01/20] expat: fix CVE-2022-23990
- - -
-
-
-
2022-02-21
Steve Sakoman
Accepted
[dunfell,03/20] grub: add a fix for CVE-2020-25632
[dunfell,01/20] glibc: update to lastest 2.31 release HEAD
- - -
-
-
-
2022-02-03
Steve Sakoman
Accepted
[dunfell,03/21] python3: Fix CVE-2022-45061
[dunfell,01/21] sudo: CVE-2022-43995 heap-based overflow with very small passwords
- - -
-
-
-
2022-11-19
Steve Sakoman
Accepted
[dunfell,03/22] libjpeg-turbo: patch CVE-2023-2804
[dunfell,01/22] ruby/cgi-gem: CVE-2021-33621 HTTP response splitting in CGI
- - -
-
-
-
2023-08-13
Steve Sakoman
Accepted
[dunfell,03/23] git: Security fix for CVE-2022-41903
[dunfell,01/23] curl: fix CVE-2022-43552 Use-after-free triggered by an HTTP proxy deny response
- - -
-
-
-
2023-03-07
Steve Sakoman
Accepted
[dunfell,03/42] linux-yocto/5.4: update to v5.4.156
[dunfell,01/42] linux-yocto/5.4: update to v5.4.154
- - -
-
-
-
2021-11-28
Steve Sakoman
Accepted
[dunfell,03/50] ruby: 2.7.4 -> 2.7.5
[dunfell,01/50] openssl: Add fix for CVE-2021-4160
- - -
-
-
-
2022-02-25
Steve Sakoman
Accepted
[dunfell,04/10] apt: backport patch fix for CVE-2020-3810
[dunfell,01/10] libsolv: fix CVE: CVE-2021-44568-71 and CVE-2021-44573-77
- - -
-
-
-
2022-03-27
Steve Sakoman
Accepted
[dunfell,04/10] busybox: Fix multiple security issues in awk
[dunfell,01/10] cve-extra-exclusions: add db CVEs to exclusion list
- - -
-
-
-
2021-12-13
Steve Sakoman
Accepted
[dunfell,04/10] glib-2.0: Fix multiple vulnerabilities
[dunfell,01/10] libtiff: Add fix for tiffcrop CVE-2023-1916
- - -
-
-
-
2023-10-17
Steve Sakoman
Accepted
[dunfell,04/10] go: fix CVE-2023-29402 & CVE-2023-29404
[dunfell,01/10] libjpeg-turbo: CVE-2020-35538 Null pointer dereference in jcopy_sample_rows() funct…
- - -
-
-
-
2023-06-30
Steve Sakoman
New
[dunfell,04/11] cve-check: add lockfile to task
[dunfell,01/11] valgrind: skip flakey ptest (gdbserver_tests/hginfo)
- - -
-
-
-
2022-01-13
Steve Sakoman
Accepted
[dunfell,04/11] dbus: Backport fix for CVE-2023-34969
[dunfell,01/11] cups: Backport fix for CVE-2023-32360 and CVE-2023-4504
- - -
-
-
-
2023-10-10
Steve Sakoman
Accepted
[dunfell,04/11] ffmpeg: Fix for CVE-2022-1475
[dunfell,01/11] ruby: Upgrade ruby to 2.7.6 for security fix
- - -
-
-
-
2022-06-02
Steve Sakoman
Accepted
[dunfell,04/11] golang: fix CVE-2022-24291
[dunfell,01/11] golang: fix CVE-2021-33195
- - -
-
-
-
2022-11-17
Ralph Siemsen
Accepted
[dunfell,04/11] golang: Fix CVE-2023-24539
[dunfell,01/11] ffmpeg: Fix CVE-2022-48434
- - -
-
-
-
2023-06-08
Steve Sakoman
New
[dunfell,04/11] libsndfile: fix CVE-2022-33065 Signed integer overflow in src/mat4.c
[dunfell,01/11] binutils 2.34: Fix CVE-2021-46174
- - -
-
-
-
2023-12-06
Steve Sakoman
Accepted
[dunfell,04/11] linux-yocto/5.4: update to v5.4.208
[dunfell,01/11] grub2: Fix several security issue of integer underflow
- - -
-
-
-
2022-08-10
Steve Sakoman
Accepted
[dunfell,04/11] pypi.bbclass: Set CVE_PRODUCT to PYPI_PACKAGE
[dunfell,01/11] git: fix CVE-2023-29007
- - -
-
-
-
2023-05-20
Steve Sakoman
New
[dunfell,04/11] qemu: fix CVE-2021-3638 ati-vga: inconsistent check in ati_2d_blt() may lead to out…
[dunfell,01/11] bluez: CVE-2022-3637 A DoS exists in monitor/jlink.c
- - -
-
-
-
2022-11-12
Steve Sakoman
Accepted
[dunfell,04/11] speex: fix CVE-2020-23903
[dunfell,01/11] expat fix CVE-2022-22822 through CVE-2022-22827
- - -
-
-
-
2022-01-20
Steve Sakoman
Accepted
[dunfell,04/11] vim: Upgrade 9.0.0021 -> 9.0.0063
[dunfell,01/11] qemu: CVE-2020-27821 heap buffer overflow in msix_table_mmio_write
- - -
-
-
-
2022-08-18
Steve Sakoman
Accepted
[dunfell,04/11] xz: fix CVE-2022-1271
[dunfell,01/11] vim: Upgrade 8.2.4524 -> 8.2.4681
- - -
-
-
-
2022-04-16
Steve Sakoman
Accepted
[dunfell,04/12] cve-update-nvd2-native: Remove duplicated CVE_CHECK_DB_FILE definition
[dunfell,01/12] libxml2: Backport fix for CVE-2024-25062
- - -
-
-
-
2024-03-20
Steve Sakoman
sakoman
Accepted
[dunfell,04/12] kernel-yocto.bbclass: Reset to exiting on non-zero return code at end of task
[dunfell,01/12] cups: fix CVE-2022-26691
- - -
-
-
-
2022-06-19
Steve Sakoman
Accepted
[dunfell,04/12] lttng-modules: update 2.11.7 -> 2.11.8
[dunfell,01/12] go: fix CVE-2022-1962 go/parser stack exhaustion in all Parse* functions
- - -
-
-
-
2023-02-04
Steve Sakoman
New
[dunfell,04/12] openssl: Add reproducibility fix
[dunfell,01/12] grub: fix CVE-2020-14372 and CVE-2020-27779
- - -
-
-
-
2022-01-09
Steve Sakoman
Accepted
[dunfell,04/12] unzip: Port debian fixes for two CVEs
[dunfell,01/12] golang: CVE-2022-24675 encoding/pem: fix stack overflow in Decode
- - -
-
-
-
2022-06-30
Steve Sakoman
Accepted
[dunfell,04/13] libarchive: CVE-2022-36227 NULL pointer dereference in archive_write.c
[dunfell,01/13] xserver-xorg: backport fixes for CVE-2022-3550, CVE-2022-3551 and CVE-2022-3553
- - -
-
-
-
2022-12-16
Steve Sakoman
Accepted
[dunfell,04/13] nasm: fix CVE-2022-44370
[dunfell,01/13] mdadm: Backport fix for CVE-2023-28736
- - -
-
-
-
2023-09-30
Steve Sakoman
Accepted
[dunfell,04/13] python3: fix CVE-2023-24329 urllib.parse url blocklisting bypass
[dunfell,01/13] libx11: Fix CVE-2023-3138 for dunfell branch
- - -
-
-
-
2023-07-18
Steve Sakoman
Accepted
[dunfell,04/13] qemu: backport fix for CVE-2020-13253
[dunfell,01/13] libxml2: backport fix for CVE-2022-23308
- - -
-
-
-
2022-03-21
Steve Sakoman
New
[dunfell,04/13] shadow: backport patch to fix CVE-2023-29383
[dunfell,01/13] libx11: Fix for CVE-2023-43785 CVE-2023-43786 and CVE-2023-43787
- - -
-
-
-
2023-11-28
Steve Sakoman
Accepted
[dunfell,04/14] cve-update-nvd2-native: added the missing http import
[dunfell,01/14] cups: Fix CVE-2023-32324
- - -
-
-
-
2023-06-22
Steve Sakoman
New
[dunfell,04/14] cve_check: Fix cpe_id generation
[dunfell,01/14] curl: Backport fix CVE-2023-32001
- - -
-
-
-
2023-08-25
Steve Sakoman
Accepted
[dunfell,04/14] e2fsprogs: CVE-2022-1304 out-of-bounds read/write via crafted filesystem
[dunfell,01/14] Revert "openssl: Backport fix for ptest cert expiry"
- - -
-
-
-
2022-06-08
Steve Sakoman
Accepted
[dunfell,04/14] golang: fix CVE-2022-30635 and CVE-2022-32148
[dunfell,01/14] libtiff: CVE-2022-34526 A stack overflow was discovered
- - -
-
-
-
2022-08-29
Steve Sakoman
Accepted
«
1
2
...
117
118
119
…
219
220
»