23 Pull requests merged by 9 people

• osguard: add "which" package to OS Guard base images

  #14580 merged Aug 30, 2025

• systemd-boot-signed: add aarch64 package

  #14540 merged Aug 30, 2025

• remove duplicate linuxguard config

  #14586 merged Aug 29, 2025

• [AUTOUPGRADE-CORE] Upgrade ca-certificates Msft cert change

  #14585 merged Aug 29, 2025

• [AUTOUPGRADE-CORE] Upgrade ca-certificates Msft cert change

  #14584 merged Aug 29, 2025

• kernel-hwe: Introduce kernel-hwe and support files for building 6.12.40.1

  #13977 merged Aug 29, 2025

• [Medium] Patch kubevirt for CVE-2024-33394

  #14262 merged Aug 28, 2025

• [Medium] Patch kubevirt for CVE-2024-33394

  #14315 merged Aug 28, 2025

• [Low] Patch apparmor for CVE-2023-53154

  #14011 merged Aug 28, 2025

• [AutoPR- Security] Patch aide for CVE-2025-54409, CVE-2025-54389 [MEDIUM]

  #14574 merged Aug 26, 2025

• [AutoPR- Security] Patch nvidia-container-toolkit for CVE-2025-22872 [MEDIUM]

  #14404 merged Aug 25, 2025

• [AutoPR- Security] Patch nvidia-container-toolkit for CVE-2025-22872 [MEDIUM]

  #14405 merged Aug 25, 2025

• [Low] patch libssh for CVE-2025-4878

  #14380 merged Aug 25, 2025

• [AUTOPATCHER-CORE] Upgrade opensc to 0.26.1 for fixing multiple CVEs

  #13981 merged Aug 25, 2025

• [Low] Patch libarchive for CVE-2025-5914, CVE-2025-5915, CVE-2025-5916, CVE-2025-5917, CVE-2025-5918

  #14116 merged Aug 25, 2025

• [AutoPR- Security] Patch fluent-bit for CVE-2025-54126 [MEDIUM]

  #14445 merged Aug 25, 2025

• [AutoPR- Security] Patch rust for CVE-2024-11738 [MEDIUM]

  #14459 merged Aug 25, 2025

• [AutoPR- Security] Patch jasper for CVE-2025-8837, CVE-2025-8836 [MEDIUM]

  #14499 merged Aug 25, 2025

• [AutoPR- Security] Patch libsndfile for CVE-2024-50612 [MEDIUM]

  #14534 merged Aug 25, 2025

• [AutoPR- Security] Patch nginx for CVE-2025-53859 [MEDIUM]

  #14547 merged Aug 25, 2025

• [AutoPR- Security] Patch nginx for CVE-2025-53859 [MEDIUM]

  #14548 merged Aug 25, 2025

• [AutoPR- Security] Patch libtiff for CVE-2025-9165, CVE-2025-8851 [MEDIUM]

  #14555 merged Aug 25, 2025

• [AutoPR- Security] Patch libtiff for CVE-2025-9165, CVE-2025-8851 [MEDIUM]

  #14556 merged Aug 25, 2025

13 Pull requests opened by 11 people

• Add NO_TOOLCHAIN_CONTAINER build option for bootstrapping (#13109)

  #14568 opened Aug 24, 2025

• [Security] Patch rust for CVE-2023-48795 (Terrapin Attack)

  #14571 opened Aug 25, 2025

• [3.0] toolchain: fix missing buildid (glibc and openssl only)

  #14572 opened Aug 25, 2025

• conntrack-tools base package with no systemd dependency

  #14573 opened Aug 26, 2025

• [AUTOPATCHER-CORE] Upgrade vim to 9.1.1616 for CVE-2025-9390

  #14575 opened Aug 26, 2025

• [AUTOPATCHER-CORE] Upgrade vim to 9.1.1616 for CVE-2025-9390

  #14576 opened Aug 26, 2025

• Upgrade Kata packages

  #14578 opened Aug 27, 2025

• Fixed imagecustomizer files location to comply with RPM guidelines.

  #14579 opened Aug 27, 2025

• [Medium] patch aide for CVE-2025-54389 and CVE-2025-54409

  #14581 opened Aug 28, 2025

• Fix : patch application of CVE-2025-4802 in `glibc`

  #14582 opened Aug 28, 2025

• Bump github.com/ulikunitz/xz from 0.5.10 to 0.5.14 in /toolkit/tools

  #14583 opened Aug 28, 2025

• Upgrade cppcheck to 2.16.0 and remove the pcre dependency (HAVE_RULES=no)

  #14587 opened Aug 29, 2025

• Upgrade xfconf to version 4.2.0

  #14588 opened Aug 29, 2025

2 Issues opened by 1 person

• Reproducing msopenjdk packages?

  #14570 opened Aug 24, 2025

• Toolchain build fails on Ubuntu 22.04 (included version of rpm too old to support %bcond)

  #14569 opened Aug 24, 2025

58 Unresolved conversations

Sometimes conversations happen on old items that aren’t yet closed. Here is a list of all the Issues and Pull Requests with unresolved conversations.

• toolkit: enable downloads using Azure CLI credentials

  #14494 commented on Aug 29, 2025 • 9 new comments

• Addressed multiple grub2 CVEs

  #14017 commented on Aug 29, 2025 • 2 new comments

• [AutoPR- Security] Patch binutils for CVE-2025-8225, CVE-2025-8224 [MEDIUM]

  #14407 commented on Aug 26, 2025 • 2 new comments

• Promote cjose/freeradius/ipcalc pacakages to core

  #14516 commented on Aug 27, 2025 • 2 new comments

• [MEDIUM] Patch for python-virtualenv CVE-2025-50181

  #14239 commented on Aug 25, 2025 • 2 new comments

• [High] Patch golang & golang-1.18 for CVE-2025-47907, golang for CVE-2025-4674, CVE-2025-47906 and [Medium] Patch golang & golang-1.18 for CVE-2025-4673

  #14552 commented on Aug 29, 2025 • 1 new comment

• [Low] patch libssh for CVE-2025-4878

  #14387 commented on Aug 29, 2025 • 1 new comment

• golang: bump Go version to 1.25.0-1; major version update

  #14511 commented on Aug 29, 2025 • 1 new comment

• Upgrade:python-flask to version 3.1.0

  #13518 commented on Aug 29, 2025 • 1 new comment

• [AutoPR- Security] Patch binutils for CVE-2025-8225, CVE-2025-8224 [MEDIUM]

  #14406 commented on Aug 26, 2025 • 0 new comments

• [Medium]: Patch to upgrade llhttp from v6.1.1 to v9.1.2 to address CVE-2025-23167

  #14352 commented on Aug 26, 2025 • 0 new comments

• [Medium] Patch gdb for CVE-2025-7546

  #14349 commented on Aug 25, 2025 • 0 new comments

• Enable arm64 build for OFED stack kernel modules

  #14245 commented on Aug 29, 2025 • 0 new comments

• Upgrade kubevirt.spec to 1.5.0

  #14214 commented on Aug 29, 2025 • 0 new comments

• [Low] Patch libarchive for CVE-2025-5914, CVE-2025-5915, CVE-2025-5916, CVE-2025-5917, CVE-2025-5918

  #14120 commented on Aug 26, 2025 • 0 new comments

• [Low] Patch cmake for CVE-2025-5916, CVE-2025-5917 & CVE-2025-5918

  #14052 commented on Aug 29, 2025 • 0 new comments

• Addressed multiple grub2 CVEs

  #14018 commented on Aug 29, 2025 • 0 new comments

• AppArmor absence on AzureLinux

  #13585 commented on Aug 28, 2025 • 0 new comments

• google noto cjk fonts split into sans and serif

  #14418 commented on Aug 25, 2025 • 0 new comments

• [2.0] Fix python-zope-interface p-tests

  #14438 commented on Aug 28, 2025 • 0 new comments

• Add OSGuard ARM64 image definition

  #14447 commented on Aug 25, 2025 • 0 new comments

• [AutoPR- Security] Patch jasper for CVE-2025-8837, CVE-2025-8836, CVE-2025-8835 [MEDIUM]

  #14480 commented on Aug 26, 2025 • 0 new comments

• [High] Patch keras for CVE-2025-8747

  #14485 commented on Aug 28, 2025 • 0 new comments

• [AutoPR- Security] Patch hvloader for CVE-2025-3770 [MEDIUM]

  #14489 commented on Aug 25, 2025 • 0 new comments

• Backport erofs snapshotter into containerd2

  #14513 commented on Aug 25, 2025 • 0 new comments

• Patch qemu for CVE-2024-7409 [HIGH]

  #14519 commented on Aug 28, 2025 • 0 new comments

• Patch qemu for CVE-2024-7409 [HIGH]

  #14520 commented on Aug 28, 2025 • 0 new comments

• [AutoPR- Security] Patch helm for CVE-2025-55198 [MEDIUM]

  #14536 commented on Aug 26, 2025 • 0 new comments

• Upgrade influxdb, flux and influx-cli

  #14551 commented on Aug 26, 2025 • 0 new comments

• [AutoPR- Security] Patch cmake for CVE-2025-9301 [LOW]

  #14559 commented on Aug 26, 2025 • 0 new comments

• Allow building the initial raw toolchain without containerization

  #13109 commented on Aug 28, 2025 • 0 new comments

• Upgraded langtable to version 0.0.68

  #10886 commented on Aug 23, 2025 • 0 new comments

• Upgrade ladspa to version 1.17

  #10966 commented on Aug 23, 2025 • 0 new comments

• Upgrade lcov from version 1.14 to 2.0

  #10990 commented on Aug 27, 2025 • 0 new comments

• Upgraded lzip to version 1.25

  #11083 commented on Aug 23, 2025 • 0 new comments

• Upgrade logwatch to version 7.12

  #11115 commented on Aug 27, 2025 • 0 new comments

• Upgraded lua-term to version 0.08

  #11146 commented on Aug 23, 2025 • 0 new comments

• Upgrades lua-lpeg to version 1.1.0

  #11167 commented on Aug 28, 2025 • 0 new comments

• Upgrade ledmon to version 1.1.0

  #11192 commented on Aug 23, 2025 • 0 new comments

• Upgraded libwpg to version 0.3.4

  #11314 commented on Aug 23, 2025 • 0 new comments

• Upgraded m17n-db to version 1.8.9

  #11340 commented on Aug 23, 2025 • 0 new comments

• Upgraded m17n-lib to version 1.8.5

  #11403 commented on Aug 23, 2025 • 0 new comments

• Upgraded lua-filesystem to version 1.8.0

  #11415 commented on Aug 23, 2025 • 0 new comments

• Upgrades perl-File-BOM to version 0.18

  #11433 commented on Aug 23, 2025 • 0 new comments

• Upgraded perl-File-BaseDir to version 0.09

  #11437 commented on Aug 23, 2025 • 0 new comments

• Upgraded mod_intercept_form_submit to version 1.2.0

  #11571 commented on Aug 29, 2025 • 0 new comments

• Upgraded mythes-ca to version 2.3.1

  #11602 commented on Aug 29, 2025 • 0 new comments

• Upgraded mythes-de to version 0.20240601

  #11622 commented on Aug 29, 2025 • 0 new comments

• Upgrades udisks2 to version 2.10.1

  #13032 commented on Aug 29, 2025 • 0 new comments

• Upgrade: python-genshi to version 0.7.9

  #13098 commented on Aug 29, 2025 • 0 new comments

• Upgrade:python-fasteners to version 0.19

  #13100 commented on Aug 29, 2025 • 0 new comments

• Build fix for jboss-interceptors

  #13499 commented on Aug 29, 2025 • 0 new comments

• Upgrade:python-flake8 to version 6.1.0

  #13519 commented on Aug 29, 2025 • 0 new comments

• Upgrade: apache-commons-codec version to 1.18.0

  #13796 commented on Aug 24, 2025 • 0 new comments

• [Medium] Patch shim-unsigned-x64 for CVE-2024-9143

  #13946 commented on Aug 26, 2025 • 0 new comments

• [Medium] Patch shim-unsigned-x64 for CVE-2024-13176

  #13962 commented on Aug 26, 2025 • 0 new comments

• [Medium] Patch systemd for CVE-2025-4598

  #13997 commented on Aug 25, 2025 • 0 new comments

• [Medium] Patch systemd for CVE-2025-4598

  #14009 commented on Aug 26, 2025 • 0 new comments