mirrors/poky
1
0
Fork 0
mirror of https://git.yoctoproject.org/poky synced 2026-06-27 02:13:39 +02:00
Code Issues Packages Projects Releases Wiki Activity
Files
1401e6e00321bc6e5d2d7dfedd3daabb9fdc54dc
poky/meta
History
Sudhir Dumbhare 1401e6e003 python3: Fix CVE-2026-4519 and CVE-2026-4786 
Apply the upstream v3.12 fix [1], aligned with the original v3.11 fix [2],
and follow-up fix [3] to address CVE-2026-4519 by disallowing URLs with
leading dashes when invoking browser commands, as referenced in [5].

CVE-2026-4786 [6] revealed the CVE-2026-4519 fix was incomplete, as %action
in URLs could bypass dash-prefix checks. Apply follow-up fix [4], noted in
[5], to revalidate the URL after %action expansion.

[1] cbba611939
[2] ceac1efc66
[3] 96fc504860
[4] f4654824ae
[5] https://security-tracker.debian.org/tracker/CVE-2026-4519
[6] https://security-tracker.debian.org/tracker/CVE-2026-4786

References:
https://nvd.nist.gov/vuln/detail/CVE-2026-4519
https://nvd.nist.gov/vuln/detail/CVE-2026-4786

(From OE-Core rev: e6d81b3be531e97058366c81056a38c0b6fa7380)

Signed-off-by: Sudhir Dumbhare <sudumbha@cisco.com>
Signed-off-by: Yoann Congal <yoann.congal@smile.fr>
Signed-off-by: Paul Barker <paul@pbarker.dev>
2026-06-26 16:55:53 +01:00
..
classes
meta/lib/oe/package.py: fix path to kernel sources in save_debugsources_info
2026-06-16 20:42:20 +01:00
classes-global
classes/base: prefer gnu-prefixed HOSTTOOLS
2026-06-10 14:35:20 +01:00
classes-recipe
python_setuptools_build_meta: clean the build directory in configure
2026-06-19 12:49:08 +01:00
conf
conf/machine: fix typos in ARM and x86 README files
2026-06-19 12:49:07 +01:00
files
meta/files/layers.example.json: switch to https clone URIs
2026-05-04 13:57:32 +01:00
lib
meta: fix generation of kernel CONFIG_ in SPDX3
2026-06-19 12:49:07 +01:00
recipes-bsp
grub: update search parameter
2026-05-12 21:31:34 +01:00
recipes-connectivity
openssh: fix CVE-2026-35386
2026-06-26 16:55:53 +01:00
recipes-core
util-linux: Fix CVE-2026-27456
2026-06-16 20:42:19 +01:00
recipes-devtools
python3: Fix CVE-2026-4519 and CVE-2026-4786
2026-06-26 16:55:53 +01:00
recipes-extended
xz: Fix CVE-2026-34743
2026-06-16 20:42:19 +01:00
recipes-gnome
gdk-pixbuf: Fix CVE-2026-5201
2026-05-12 21:31:34 +01:00
recipes-graphics
xserver-xorg: Fix CVE-2026-34003
2026-06-19 12:49:08 +01:00
recipes-kernel
linux-yocto/6.6: update CVE exclusions (6.6.127)
2026-06-10 14:35:21 +01:00
recipes-multimedia
tiff: fix CVE-2026-4775
2026-06-26 16:55:53 +01:00
recipes-rt
rt-tests: rt_bmark.py: fix TypeError
2024-08-06 19:11:18 -07:00
recipes-sato
webkitgtk: upgrade 2.44.3 -> 2.44.4
2025-11-14 06:45:29 -08:00
recipes-support
gnupg: upgrade 2.4.8 -> 2.4.9
2026-06-10 14:35:20 +01:00
site
site: remove at-spi2-core values
2023-09-02 07:45:29 +01:00
COPYING.MIT
recipes.txt
Remove LSB support
2019-08-29 14:05:12 +01:00