28 Pull requests merged by 14 people

• Updated clang, compiler-rt, libcxx, lld, lldb, and llvm to version 18.1.8.

  #13950 merged Jun 4, 2025

• Add patch to gcr allowing meson to build

  #13951 merged Jun 4, 2025

• azl-otel-collector: Bump to latest version 0.127.0

  #13944 merged Jun 3, 2025

• [Medium] Patch cert-manager for CVE-2025-32386, CVE-2025-32387, CVE-2025-22872

  #13444 merged Jun 3, 2025

• [LOW] Patch glib for CVE-2025-3360

  #13427 merged Jun 3, 2025

• [Medium] patch memcached for CVE-2021-44964

  #13455 merged Jun 3, 2025

• Abadawi/jun release 2.0

  #13942 merged Jun 2, 2025

• xalan-j2: Build Fix

  #13856 merged Jun 2, 2025

• python-argparse-manpage: Fix ptests

  #13919 merged Jun 2, 2025

• xerces-j2: Build Fix

  #13857 merged Jun 2, 2025

• Merge for June 2025 Update

  #13935 merged Jun 2, 2025

• Remove unsupported packages and those available in the cncf repository

  #13466 merged Jun 1, 2025

• Prepare June 2025 Update

  #13928 merged Jun 1, 2025

• Remove containerd spec folder from the 3.0-dev github tree

  #13547 merged May 31, 2025

• [AUTOPATCHER-kernel] Kernel upgrade to version 6.6.92.2 - branch 3.0-dev

  #13929 merged May 31, 2025

• Remove psw protected zip file from upstream src (if psw cannot be found)

  #13898 merged May 30, 2025

• Fixed CG manifest check when parsing specs with %include.

  #13930 merged May 30, 2025

• Prepare June 2025 Release

  #13911 merged May 30, 2025

• [Medium] Patch vitess for CVE-2025-22872

  #13614 merged May 30, 2025

• [LOW] Patch nodejs for CVE-2025-47279

  #13843 merged May 30, 2025

• [LOW] Patch nodejs for CVE-2025-47279

  #13852 merged May 30, 2025

• [Low] Patch moby-engine for CVE-2024-51744

  #13885 merged May 30, 2025

• [Low] Patch moby-engine for CVE-2024-51744

  #13884 merged May 30, 2025

• [AUTO-CHERRYPICK] Patch python-setuptools for CVE-2025-47273 [High]. - branch 3.0-dev

  #13909 merged May 29, 2025

• [AUTO-CHERRYPICK] [AUTOPATCHER-CORE] Upgrade rubygem-rexml to 3.3.9 fix CVE-2024-49761 - branch 3.0-dev

  #13908 merged May 29, 2025

• address bug in OOT spec that depend on mlnx - bump to right mlnx release nb

  #13921 merged May 29, 2025

• OOT Modules -> Add kernel version and release nb into release nb

  #13645 merged May 29, 2025

• [MEDIUM] Patch libvirt for CVE-2024-1441 CVE-2024-2494

  #13886 merged May 29, 2025

29 Pull requests opened by 17 people

• Upgrade cassandra version to 5.0.0

  #13916 opened May 29, 2025

• double-conversion: Add v3.3.1

  #13918 opened May 29, 2025

• [2.0] Fixing influxdb default config, upgrading entry point script to use new command for server configuration

  #13922 opened May 29, 2025

• Abadawi/anti pattern 1 /missing patch file

  #13924 opened May 29, 2025

• Remove Unused `rubygem` Packages from Core [Bug 57244258]

  #13925 opened May 30, 2025

• [MEDIUM] patch containerd2 for CVE-2025-47291

  #13926 opened May 30, 2025

• [AUTOPATCHER-kernel] Kernel upgrade to version 5.15.184.1 - branch main

  #13927 opened May 30, 2025

• ipmitool: Apply upstream patch to fix failing lan print

  #13933 opened May 30, 2025

• Patch `glibc` for CVE-2025-4802 & CVE-2025-0395 [High]

  #13934 opened Jun 1, 2025

• Added cqlsh package to SPECS-EXTENDED

  #13936 opened Jun 2, 2025

• Added cassandra-driver package to SPECS-EXTENDED

  #13937 opened Jun 2, 2025

• [High] patch grub2 for CVE-2025-0624

  #13938 opened Jun 2, 2025

• [High] patch grub2 for CVE-2025-0624

  #13939 opened Jun 2, 2025

• Add selinux-policy-ci to specs-extended

  #13941 opened Jun 2, 2025

• [Medium] Upgrade binutils to fix CVE-2025-1179

  #13943 opened Jun 2, 2025

• pciutils: Add %{_sbindir}/lspci symlink to %{_bindir}/lspci

  #13945 opened Jun 3, 2025

• [Medium] Patch shim-unsigned-x64 for CVE-2024-9143

  #13946 opened Jun 3, 2025

• Patch shim-unsigned-aarch64 for CVE-2021-3712 [High]

  #13947 opened Jun 3, 2025

• [Medium] Patch rust for CVE-2025-4574

  #13948 opened Jun 3, 2025

• Update README.md

  #13949 opened Jun 3, 2025

• Upgrade `mysql` to 8.0.42 for fixing 25 CVEs

  #13953 opened Jun 4, 2025

• git: fix git-subtree subpackage

  #13954 opened Jun 4, 2025

• Upgrade `mysql` to 8.0.42 for fixing 25 CVEs

  #13955 opened Jun 4, 2025

• [MEDIUM] Patch perl for CVE-2025-40909

  #13957 opened Jun 4, 2025

• [AUTO-CHERRYPICK] Updated `clang`, `compiler-rt`, `libcxx`, `lld`, `lldb`, and `llvm` to version 18.1.8. - branch 3.0-dev

  #13958 opened Jun 4, 2025

• [MEDIUM] patch cmake for CVE-2025-4947

  #13959 opened Jun 4, 2025

• Add new unversioned symlink for python3 package

  #13960 opened Jun 4, 2025

• PR CHECK TESTS, TEST PR, DO NOT MERGE

  #13961 opened Jun 4, 2025

• [Medium] Patch shim-unsigned-x64 for CVE-2024-13176

  #13962 opened Jun 5, 2025

3 Issues closed by 2 people

• Bump version of llvm to 18.1.8

  #13940 closed Jun 5, 2025

• gcr in specs-extended does not build

  #13952 closed Jun 5, 2025

• New package request: Add support for nginx-webDav

  #10435 closed May 29, 2025

46 Unresolved conversations

Sometimes conversations happen on old items that aren’t yet closed. Here is a list of all the Issues and Pull Requests with unresolved conversations.

• Port fasttrack PR check to PRs that target dev branches

  #10850 commented on Jun 3, 2025 • 13 new comments

• Added simple package build PR checks.

  #13900 commented on Jun 4, 2025 • 3 new comments

• [Medium] Patch libsoup for CVE-2025-4476

  #13853 commented on Jun 4, 2025 • 3 new comments

• [Low] Patch reaper for CVE-2024-6484

  #13636 commented on Jun 4, 2025 • 3 new comments

• Added python-geomet package to SPECS-EXTENDED

  #13861 commented on Jun 5, 2025 • 2 new comments

• Patch kata-containers-cc for CVE-2024-43806 [Medium]

  #13672 commented on Jun 4, 2025 • 2 new comments

• Adding missing package double-conversion

  #13836 commented on May 29, 2025 • 1 new comment

• [Medium] Patch binutils for CVE-2025-5245 and CVE-2025-5244

  #13906 commented on May 29, 2025 • 1 new comment

• [HIGH] Patch shim-unsigned-x64 for CVE-2021-3712

  #13902 commented on Jun 4, 2025 • 1 new comment

• [Medium] Patch jq for CVE-2024-23337

  #13895 commented on Jun 4, 2025 • 1 new comment

• [Medium] patch python3 for CVE-2025-4516

  #13894 commented on Jun 4, 2025 • 1 new comment

• [Medium] patch python3 for CVE-2025-4516

  #13840 commented on Jun 4, 2025 • 0 new comments

• [Medium] Patch kata-containers-cc for CVE-2025-4574

  #13845 commented on May 29, 2025 • 0 new comments

• Patch `glibc` for CVE-2023-4527, CVE-2023-4806, CVE-2024-33599, CVE-2024-33600, CVE-2024-33601, CVE-2025-0395, CVE-2025-4802 [High]

  #13864 commented on Jun 2, 2025 • 0 new comments

• [Medium] Patch systemd & systemd-bootstrap for CVE-2023-7008

  #13866 commented on Jun 5, 2025 • 0 new comments

• Revert TTY serial driver to upstream to allow PREEMPT_RT patching for kernel-rt upgrade

  #13867 commented on Jun 4, 2025 • 0 new comments

• containerd2: add updated multi-snapshotters support patch

  #13881 commented on May 30, 2025 • 0 new comments

• [Medium] Patch systemd-bootstrap for CVE-2023-7008

  #13883 commented on Jun 3, 2025 • 0 new comments

• [Medium] Patch jq for CVE-2024-23337

  #13892 commented on Jun 4, 2025 • 0 new comments

• Upgrade bind to 9.20.9 for CVE-2025-40775

  #13893 commented on Jun 2, 2025 • 0 new comments

• Upgrade: osgi-annotation to the version 8.1.0

  #13896 commented on May 29, 2025 • 0 new comments

• containerd2: add updated tardev-snapshotter support patch

  #13899 commented on May 30, 2025 • 0 new comments

• [MEDIUM] Patch nodejs for CVE-2025-23165 CVE-2025-23166

  #13901 commented on Jun 4, 2025 • 0 new comments

• [Low] patch elfutils for CVE-2025-1352

  #13905 commented on Jun 4, 2025 • 0 new comments

• [3.0] Fixing influxdb default config, upgrading entry point script to use new command for server configuration

  #13915 commented on May 29, 2025 • 0 new comments

• Add keyutils to CBL-Mariner base image

  #8810 commented on May 30, 2025 • 0 new comments

• `git subtree` does not work

  #13907 commented on Jun 3, 2025 • 0 new comments

• Upgrades perl-GD-Barcode to version 2.00

  #13066 commented on Jun 2, 2025 • 0 new comments

• Upgrade: usbguard version to 1.1.3

  #13296 commented on May 30, 2025 • 0 new comments

• [LOW] Patch glib for CVE-2025-3360

  #13428 commented on Jun 5, 2025 • 0 new comments

• [Medium] patch ntopng for CVE-2021-44964

  #13450 commented on Jun 3, 2025 • 0 new comments

• [Medium] Patch kubernetes for CVE-2024-45310

  #13469 commented on Jun 4, 2025 • 0 new comments

• [Medium] Patch libxml2 for CVE-2025-32414 and CVE-2025-32415

  #13522 commented on Jun 5, 2025 • 0 new comments

• [MEDIUM] Patch golang for CVE-2024-24789, CVE-2024-34155 & CVE-2025-22870

  #13586 commented on Jun 4, 2025 • 0 new comments

• Fix post and postun sections in sdbus-cpp.spec

  #13588 commented on Jun 4, 2025 • 0 new comments

• Upgrades libetonyek to verson 0.1.12

  #13609 commented on Jun 2, 2025 • 0 new comments

• Upgrade: cjkuni-uming-fonts version to 0.2.20080216.2

  #13626 commented on Jun 4, 2025 • 0 new comments

• [Medium] Patch docker-buildx for CVE-2025-22872

  #13640 commented on Jun 4, 2025 • 0 new comments

• [Medium] Patch edk2 for CVE-2024-38796 and CVE-2023-45231

  #13659 commented on Jun 4, 2025 • 0 new comments

• Patch kata-containers for CVE-2024-43806 [Medium]

  #13671 commented on Jun 4, 2025 • 0 new comments

• [Medium] Patch python3 for CVE-2023-5752 and CVE-2023-45803

  #13740 commented on Jun 4, 2025 • 0 new comments

• [Medium] Upgrade ruby to 3.1.7 to fix CVE-2024-39908

  #13764 commented on May 29, 2025 • 0 new comments

• Upgrade & Addition: llhttp version 9.2.1

  #13793 commented on Jun 4, 2025 • 0 new comments

• [MEDIUM] Patch libvirt for CVE-2024-4418

  #13811 commented on May 29, 2025 • 0 new comments

• Upgrade: shapelib version to 1.6.1

  #13816 commented on Jun 4, 2025 • 0 new comments

• Patch javapackages-bootstrap for CVE-2024-25710 [HIGH]

  #13820 commented on Jun 4, 2025 • 0 new comments