This series fixes multiple security vulnerabilities in cups: - CVE-2026-34978 - CVE-2026-34979 - CVE-2026-34980 - CVE-2026-34990 - CVE-2026-39314 - CVE-2026-39316
The fixes are backported from upstream commits where available and adapted to apply cleanly to the version currently used in oe-core. Changes include: - Importing upstream patches - Updating cups.inc to apply the patches Tested: - Build tested successfully - No regressions observed during basic runtime validation --- Abhishek Bachiphale (6): cups: fix CVE-2026-34978 cups: fix CVE-2026-34979 cups: fix CVE-2026-34980 cups: fix CVE-2026-34990 cups: fix CVE-2026-39314 cups: fix CVE-2026-39316 meta/recipes-extended/cups/cups.inc | 6 + .../cups/cups/CVE-2026-34978.patch | 120 ++++++ .../cups/cups/CVE-2026-34979.patch | 57 +++ .../cups/cups/CVE-2026-34980.patch | 88 +++++ .../cups/cups/CVE-2026-34990.patch | 348 ++++++++++++++++++ .../cups/cups/CVE-2026-39314.patch | 47 +++ .../cups/cups/CVE-2026-39316.patch | 42 +++ 7 files changed, 708 insertions(+) create mode 100644 meta/recipes-extended/cups/cups/CVE-2026-34978.patch create mode 100644 meta/recipes-extended/cups/cups/CVE-2026-34979.patch create mode 100644 meta/recipes-extended/cups/cups/CVE-2026-34980.patch create mode 100644 meta/recipes-extended/cups/cups/CVE-2026-34990.patch create mode 100644 meta/recipes-extended/cups/cups/CVE-2026-39314.patch create mode 100644 meta/recipes-extended/cups/cups/CVE-2026-39316.patch -- 2.40.0
-=-=-=-=-=-=-=-=-=-=-=- Links: You receive all messages sent to this group. View/Reply Online (#237988): https://lists.openembedded.org/g/openembedded-core/message/237988 Mute This Topic: https://lists.openembedded.org/mt/119600002/21656 Group Owner: [email protected] Unsubscribe: https://lists.openembedded.org/g/openembedded-core/unsub [[email protected]] -=-=-=-=-=-=-=-=-=-=-=-
