Skip to content

[pull] master from buildroot:master#862

Merged
pull[bot] merged 9 commits intomir-one:masterfrom
buildroot:master
Feb 12, 2026
Merged

[pull] master from buildroot:master#862
pull[bot] merged 9 commits intomir-one:masterfrom
buildroot:master

Conversation

@pull
Copy link

@pull pull bot commented Feb 12, 2026

See Commits and Changes for more details.


Created by pull[bot] (v2.0.0-alpha.4)

Can you help keep this open source service alive? 💖 Please sponsor : )

alistair23 and others added 9 commits February 12, 2026 18:56
Release notes:
https://github.com/DMTF/libspdm/releases/tag/3.8.1

Fixes two issues:

 * Unaligned memory access in VENDOR_DEFINED_* : #3196
 * Build failure when mutual authentication is disabled : #3178

Signed-off-by: Alistair Francis <[email protected]>
[Julien: add link to release notes]
Signed-off-by: Julien Olivain <[email protected]>
Fixes CVE-2025-14550:
  There was a potential DoS vector for users of the
  ``asgiref.wsgi.WsgiToAsgi`` adapter. Malicious requests, including an
  unreasonably large number of values for the same header, could lead to
  resource exhaustion when building the WSGI environment.

Changelog: https://github.com/django/asgiref/blob/3.11.1/CHANGELOG.txt

Signed-off-by: Marcus Hoffmann <[email protected]>
Signed-off-by: Julien Olivain <[email protected]>
Release notes:
https://github.com/containers/skopeo/releases/tag/v1.21.0

Signed-off-by: Yann E. MORIN <[email protected]>
[Julien: add link to release notes]
Signed-off-by: Julien Olivain <[email protected]>
Release notes:
https://github.com/q66/cffi-lua/releases/tag/v0.2.4

remove upstreamed patch

Update COPYING license hash, after year update in:
q66/cffi-lua@9f2acc9

Signed-off-by: Francois Perrad <[email protected]>
[Julien: add links in commit log]
Signed-off-by: Julien Olivain <[email protected]>
Release Notes:
https://github.com/grpc/grpc/releases/tag/v1.78.0
(v1.77.0 was never released, so no log)

Signed-off-by: Michael Nosthoff <[email protected]>
Signed-off-by: Julien Olivain <[email protected]>
Commit 7eeb574 introduced the
libxmlsec1 making libxslt a mandatory dependency, which it isn't.

This commit therefore make libxslt an optional dependency of the
target libxmlsec1 package, and drops the dependency entirely for the
host package.

Signed-off-by: Thomas Petazzoni <[email protected]>
Signed-off-by: Julien Olivain <[email protected]>
@pull pull bot locked and limited conversation to collaborators Feb 12, 2026
@pull pull bot added the ⤵️ pull label Feb 12, 2026
@pull pull bot merged commit 4319507 into mir-one:master Feb 12, 2026
Sign up for free to subscribe to this conversation on GitHub. Already have an account? Sign in.

Projects

None yet

Development

Successfully merging this pull request may close these issues.

6 participants