Changqing Li
7ec28bad4d
libsoup-2.4: fix CVE-2025-4945
...
Refer:
https://gitlab.gnome.org/GNOME/libsoup/-/issues/448
(From OE-Core rev: 92039926b164fae418eed988f6fa172c3554b9e7)
Signed-off-by: Changqing Li <changqing.li@windriver.com >
Signed-off-by: Steve Sakoman <steve@sakoman.com >
2025-07-11 08:11:53 -07:00
Changqing Li
e9cf2ef270
libsoup-2.4: refresh CVE-2025-4969.patch
...
refresh CVE-2025-4969.patch to fix the following build failure for
libsoup-2.4-native on fedora40/41:
../libsoup-2.74.3/tests/multipart-test.c:578:63: error: passing argument 2 of ‘soup_multipart_new_from_message’ from incompatible pointer type [-Wincompatible-pointer-types]
578 | multipart = soup_multipart_new_from_message (headers, bytes);
| ^~~~~
| |
| GBytes * {aka struct _GBytes *}
(From OE-Core rev: aaeea20b5c0f0c5a9d6554dd5e9693a9432cfa54)
Signed-off-by: Changqing Li <changqing.li@windriver.com >
Signed-off-by: Steve Sakoman <steve@sakoman.com >
2025-07-11 08:11:53 -07:00
Changqing Li
8d4c3eb106
libsoup-2.4: fix CVE-2025-2784
...
Refer:
https://gitlab.gnome.org/GNOME/libsoup/-/issues/422
(From OE-Core rev: 9c014c1b96f4ebeb0f6f504b6c7c0d8063b6a6b7)
Signed-off-by: Changqing Li <changqing.li@windriver.com >
Signed-off-by: Steve Sakoman <steve@sakoman.com >
2025-06-13 08:58:01 -07:00
Changqing Li
47bb754e27
libsoup-2.4: fix CVE-2025-4476
...
Refer:
https://gitlab.gnome.org/GNOME/libsoup/-/issues/440
(From OE-Core rev: ebb87904c97f4b27a023b2347622519c702d4d2d)
Signed-off-by: Changqing Li <changqing.li@windriver.com >
Signed-off-by: Steve Sakoman <steve@sakoman.com >
2025-06-13 08:58:01 -07:00
Changqing Li
e21b122523
libsoup-2.4: fix CVE-2025-4948
...
Refer:
http://gitlab.gnome.org/GNOME/libsoup/-/issues/449
(From OE-Core rev: b4fb5cd0d3385989842ad5a84d34cf451679c59a)
Signed-off-by: Changqing Li <changqing.li@windriver.com >
Signed-off-by: Steve Sakoman <steve@sakoman.com >
2025-06-13 08:58:00 -07:00
Changqing Li
8944014e5c
libsoup-2.4: fix CVE-2025-46421
...
Refer:
https://gitlab.gnome.org/GNOME/libsoup/-/issues/439
(From OE-Core rev: 9e32f4fd761b591ea2f5ce26381135e9a8db94ce)
Signed-off-by: Changqing Li <changqing.li@windriver.com >
Signed-off-by: Steve Sakoman <steve@sakoman.com >
2025-06-13 08:58:00 -07:00
Changqing Li
a7a45d58e0
libsoup-2.4: fix CVE-2025-32050
...
Refer:
https://gitlab.gnome.org/GNOME/libsoup/-/issues/424
(From OE-Core rev: d16627901125854f5346711e96d635c704438705)
Signed-off-by: Changqing Li <changqing.li@windriver.com >
Signed-off-by: Steve Sakoman <steve@sakoman.com >
2025-06-13 08:58:00 -07:00
Changqing Li
d81430958e
libsoup-2.4: fix CVE-2025-32052
...
Refer:
https://gitlab.gnome.org/GNOME/libsoup/-/issues/425
(From OE-Core rev: f3890f25cc036fd184578d7b85e6410ee97dc3ad)
Signed-off-by: Changqing Li <changqing.li@windriver.com >
Signed-off-by: Steve Sakoman <steve@sakoman.com >
2025-06-13 08:58:00 -07:00
Changqing Li
ad1d671be0
libsoup-2.4: fix CVE-2025-32053
...
Refer:
https://gitlab.gnome.org/GNOME/libsoup/-/issues/426
(From OE-Core rev: d6fba14b2e98928bbf2736494e571389892da6b4)
Signed-off-by: Changqing Li <changqing.li@windriver.com >
Signed-off-by: Steve Sakoman <steve@sakoman.com >
2025-06-11 08:17:34 -07:00
Changqing Li
dd4312d080
libsoup-2.4: fix do_compile failure
...
Remove test code for fixing do_compile failure:
../libsoup-2.74.3/tests/auth-test.c:1554:39: error: unknown type name 'SoupServerMessage'; did you mean 'SoupServerClass'?
1554 | SoupServerMessage *msg,
|
(From OE-Core rev: f14a6c98e4cbf4ee2a243387b018e29beab3b56a)
Signed-off-by: Changqing Li <changqing.li@windriver.com >
Signed-off-by: Steve Sakoman <steve@sakoman.com >
2025-06-11 08:17:34 -07:00
Changqing Li
24f024f042
libsoup-2.4: fix CVE-2025-32907
...
Refer:
https://gitlab.gnome.org/GNOME/libsoup/-/issues/428
(From OE-Core rev: de53b2272919b97719e2b7f704154283caebc59f)
Signed-off-by: Changqing Li <changqing.li@windriver.com >
Signed-off-by: Steve Sakoman <steve@sakoman.com >
2025-06-11 08:17:34 -07:00
Hitendra Prajapati
d56536a618
libsoup-2.4: Fix CVE-2025-4969
...
Upstream-Status: Backport from 07b94e27afhprajapati@mvista.com >
Signed-off-by: Steve Sakoman <steve@sakoman.com >
2025-06-05 08:41:15 -07:00
Vijay Anusuri
53ab80ae8f
libsoup-2.4: Fix CVE-2025-32914
...
import patch from debian to fix
CVE-2025-32914
Upstream-Status: Backport [import from debian https://salsa.debian.org/gnome-team/libsoup/-/tree/debian/bullseye/debian/patches?ref_type=heads
Upstream commit 5bfcf81575https://gitlab.gnome.org/GNOME/libsoup/-/merge_requests/450
https://security-tracker.debian.org/tracker/CVE-2025-32914
(From OE-Core rev: 8eba970123aca651cbce13e52d43ddaddd76a7cc)
Signed-off-by: Vijay Anusuri <vanusuri@mvista.com >
Signed-off-by: Steve Sakoman <steve@sakoman.com >
2025-06-02 07:12:34 -07:00
Vijay Anusuri
a6c55c0bd7
libsoup-2.4: Fix CVE-2025-32912
...
Upstream-Status: Backport from
cd077513f2910ebdcd3dvanusuri@mvista.com >
Signed-off-by: Steve Sakoman <steve@sakoman.com >
2025-06-02 07:12:34 -07:00
Vijay Anusuri
a0e298a849
libsoup-2.4: Fix CVE-2025-32911 & CVE-2025-32913
...
Upstream-Status: Backport from
7b4ef0e004f4a761fb66vanusuri@mvista.com >
Signed-off-by: Steve Sakoman <steve@sakoman.com >
2025-06-02 07:12:34 -07:00
Vijay Anusuri
cca757c461
libsoup-2.4: Fix CVE-2025-32910
...
import patch from debian to fix
CVE-2025-32910
Upstream-Status: Backport [import from debian https://salsa.debian.org/gnome-team/libsoup/-/tree/debian/bullseye/debian/patches?ref_type=heads
Upstream commit e40df6d48a405a8a3459ea16eeacb0https://gitlab.gnome.org/GNOME/libsoup/-/merge_requests/417
https://security-tracker.debian.org/tracker/CVE-2025-32910
(From OE-Core rev: 0fc936f23e6f70021acf4e711ef49d3a5cc966fe)
Signed-off-by: Vijay Anusuri <vanusuri@mvista.com >
Signed-off-by: Steve Sakoman <steve@sakoman.com >
2025-06-02 07:12:34 -07:00
Ashish Sharma
79babbe58a
libsoup-2.4: Fix CVE-2025-46420
...
Upstream-Status: Backport [c9083869ecasharma@mvista.com >
Signed-off-by: Steve Sakoman <steve@sakoman.com >
2025-05-27 09:38:57 -07:00
Vijay Anusuri
e4df627b22
libsoup-2.4: Fix CVE-2025-32909
...
Upstream-Status: Backport from https://gitlab.gnome.org/GNOME/libsoup/-/comm
it/ba4c3a6f988beff59e45801ab36067293d24ce92
(From OE-Core rev: 90359036300731b6c26b646afbf3d66127b72fa2)
Signed-off-by: Vijay Anusuri <vanusuri@mvista.com >
Signed-off-by: Steve Sakoman <steve@sakoman.com >
2025-05-14 09:08:57 -07:00
Vijay Anusuri
adc945c074
libsoup-2.4: Fix CVE-2025-32906
...
Upstream-Status: Backport from
1f509f31b6af5b9a4a39vanusuri@mvista.com >
Signed-off-by: Steve Sakoman <steve@sakoman.com >
2025-05-14 09:08:57 -07:00
Vijay Anusuri
929989c6c3
libsoup-2.4: Fix CVE-2024-52532
...
Upstream-Status: Backport from 6adc0e3eb729b96fab254c9e75c667vanusuri@mvista.com >
Signed-off-by: Steve Sakoman <steve@sakoman.com >
2025-05-14 09:08:57 -07:00
Vijay Anusuri
e2e65311f8
libsoup-2.4: Fix CVE-2024-52531
...
import patch from ubuntu to fix
CVE-2024-52531
Upstream-Status: Backport [import from ubuntu https://git.launchpad.net/ubuntu/+source/libsoup2.4/tree/debian/patches?h=ubuntu/jammy-security
Upstream commit
a35222dd0b825fda3425https://gitlab.gnome.org/GNOME/libsoup/-/merge_requests/407/
https://ubuntu.com/security/CVE-2024-52531
(From OE-Core rev: c7ab8b45b1f533ca1b27b07c30f44b7b64a3cfde)
Signed-off-by: Vijay Anusuri <vanusuri@mvista.com >
Signed-off-by: Steve Sakoman <steve@sakoman.com >
2025-05-14 09:08:57 -07:00
Vijay Anusuri
ecdb5e1785
libsoup-2.4: Fix CVE-2024-52530
...
Upstream-Status: Backport from
04df03bc09vanusuri@mvista.com >
Signed-off-by: Steve Sakoman <steve@sakoman.com >
2025-05-14 09:08:57 -07:00
Khem Raj
9f57bfb74e
libsoup-2.4: Fix build with clang-17 and libxml2-2.12
...
(From OE-Core rev: 1dd0e731d5a02105633dc67ccbc04b3dd0d0a873)
Signed-off-by: Khem Raj <raj.khem@gmail.com >
Signed-off-by: Alexandre Belloni <alexandre.belloni@bootlin.com >
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org >
2023-11-30 08:43:04 +00:00
Alexander Kanavin
6417746ccd
libsoup-2.4: update to 2.68.3
...
Drop backported patch.
tls-check merely checks at configure time whether glib-networking has tls
support enabled (by running a target executable which doesn't work for us);
it does not affect the actual build.
(From OE-Core rev: 2537fcf3143153e272630c42fc1d7ce85b463590)
Signed-off-by: Alexander Kanavin <alex.kanavin@gmail.com >
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org >
2019-12-09 12:00:42 +00:00
Ross Burton
0d3a95b64d
libsoup: update patch upstream status
...
This has been merged to master now, so mark as a backport.
(From OE-Core rev: bf8a5c92f2c2a40150159b811fa9d0a12919d43e)
Signed-off-by: Ross Burton <ross.burton@intel.com >
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org >
2019-11-14 13:20:59 +00:00
Alistair Francis
dfd5d84ecf
libsoup: Upgrade from 2.64.2 to 2.66.1
...
(From OE-Core rev: 8e9e352a0c16296cd8a530a8bccfa138b9f04040)
Signed-off-by: Alistair Francis <alistair@alistair23.me >
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org >
2019-04-29 14:16:30 +01:00
Alexander Kanavin
46c4856377
libsoup-2.4: convert from autotools to meson
...
(From OE-Core rev: df6dbc1ba37937c3338f6d842af99f1f1c1a626d)
Signed-off-by: Alexander Kanavin <alex.kanavin@gmail.com >
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org >
2019-02-19 16:14:57 +00:00
Ross Burton
d89034988e
libsoup: upgrade to 2.62.3
...
Freeze-breaking upgrade for a security bug fix involving cookie URLs, and a
number of static analysis fixes.
Drop CVE-2018-12910.patch as this is merged in 2.62.3.
(From OE-Core rev: a8098782fab87498026a09c06716b631c77c5ad6)
Signed-off-by: Ross Burton <ross.burton@intel.com >
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org >
2018-10-09 19:04:02 +01:00
Ross Burton
4205e87a77
libsoup: fix CVE-2018-12910
...
(From OE-Core rev: 112683815ed1f63a96e845f264a2fd3390c6d01b)
Signed-off-by: Ross Burton <ross.burton@intel.com >
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org >
2018-06-29 11:07:45 +01:00
