Cover Letter Detail
Show a cover letter.
GET /api/1.2/covers/2225388/?format=api
{ "id": 2225388, "url": "http://patchwork.ozlabs.org/api/1.2/covers/2225388/?format=api", "web_url": "http://patchwork.ozlabs.org/project/buildroot/cover/20260420220839.1232620-1-fiona.klute@gmx.de/", "project": { "id": 27, "url": "http://patchwork.ozlabs.org/api/1.2/projects/27/?format=api", "name": "Buildroot development", "link_name": "buildroot", "list_id": "buildroot.buildroot.org", "list_email": "buildroot@buildroot.org", "web_url": "", "scm_url": "", "webscm_url": "", "list_archive_url": "", "list_archive_url_format": "", "commit_url_format": "" }, "msgid": "<20260420220839.1232620-1-fiona.klute@gmx.de>", "list_archive_url": null, "date": "2026-04-20T22:08:37", "name": "[0/2] Add upstream security patches for musl 1.2.6", "submitter": { "id": 88431, "url": "http://patchwork.ozlabs.org/api/1.2/people/88431/?format=api", "name": "Fiona Klute", "email": "fiona.klute@gmx.de" }, "mbox": "http://patchwork.ozlabs.org/project/buildroot/cover/20260420220839.1232620-1-fiona.klute@gmx.de/mbox/", "series": [ { "id": 500694, "url": "http://patchwork.ozlabs.org/api/1.2/series/500694/?format=api", "web_url": "http://patchwork.ozlabs.org/project/buildroot/list/?series=500694", "date": "2026-04-20T22:08:37", "name": "Add upstream security patches for musl 1.2.6", "version": 1, "mbox": "http://patchwork.ozlabs.org/series/500694/mbox/" } ], "comments": "http://patchwork.ozlabs.org/api/covers/2225388/comments/", "headers": { "Return-Path": "<buildroot-bounces@buildroot.org>", "X-Original-To": [ "incoming-buildroot@patchwork.ozlabs.org", "buildroot@buildroot.org" ], "Delivered-To": [ "patchwork-incoming-buildroot@legolas.ozlabs.org", "buildroot@buildroot.org" ], "Authentication-Results": [ "legolas.ozlabs.org;\n\tdkim=pass (2048-bit key;\n unprotected) header.d=buildroot.org header.i=@buildroot.org\n header.a=rsa-sha256 header.s=default header.b=U3NyYs/u;\n\tdkim-atps=neutral", "legolas.ozlabs.org;\n spf=pass (sender SPF authorized) smtp.mailfrom=buildroot.org\n (client-ip=2605:bc80:3010::138; helo=smtp1.osuosl.org;\n envelope-from=buildroot-bounces@buildroot.org; receiver=patchwork.ozlabs.org)" ], "Received": [ "from smtp1.osuosl.org (smtp1.osuosl.org [IPv6:2605:bc80:3010::138])\n\t(using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits)\n\t key-exchange x25519 server-signature ECDSA (secp384r1) server-digest SHA384)\n\t(No client certificate requested)\n\tby legolas.ozlabs.org (Postfix) with ESMTPS id 4g004x2WMKz1yCv\n\tfor <incoming-buildroot@patchwork.ozlabs.org>;\n Tue, 21 Apr 2026 08:09:05 +1000 (AEST)", "from localhost (localhost [127.0.0.1])\n\tby smtp1.osuosl.org (Postfix) with ESMTP id 7D86F83231;\n\tMon, 20 Apr 2026 22:09:02 +0000 (UTC)", "from smtp1.osuosl.org ([127.0.0.1])\n by localhost (smtp1.osuosl.org [127.0.0.1]) (amavis, port 10024) with ESMTP\n id NskM-JzvYEwi; Mon, 20 Apr 2026 22:09:00 +0000 (UTC)", "from lists1.osuosl.org (lists1.osuosl.org [140.211.166.142])\n\tby smtp1.osuosl.org (Postfix) with ESMTP id CAD2B83155;\n\tMon, 20 Apr 2026 22:09:00 +0000 (UTC)", "from smtp2.osuosl.org (smtp2.osuosl.org [IPv6:2605:bc80:3010::133])\n by lists1.osuosl.org (Postfix) with ESMTP id 60A91259\n for <buildroot@buildroot.org>; Mon, 20 Apr 2026 22:08:59 +0000 (UTC)", "from localhost (localhost [127.0.0.1])\n by smtp2.osuosl.org (Postfix) with ESMTP id 3DAF440084\n for <buildroot@buildroot.org>; Mon, 20 Apr 2026 22:08:59 +0000 (UTC)", "from smtp2.osuosl.org ([127.0.0.1])\n by localhost (smtp2.osuosl.org [127.0.0.1]) (amavis, port 10024) with ESMTP\n id 44Qrm3YeXrmJ for <buildroot@buildroot.org>;\n Mon, 20 Apr 2026 22:08:58 +0000 (UTC)", "from mout.gmx.net (mout.gmx.net [212.227.15.15])\n by smtp2.osuosl.org (Postfix) with ESMTPS id 5761D40051\n for <buildroot@buildroot.org>; Mon, 20 Apr 2026 22:08:56 +0000 (UTC)", "from client.hidden.invalid by mail.gmx.net (mrgmx005\n [212.227.17.190]) with ESMTPSA (Nemesis) id 1N1fn0-1vHSJc0qs4-00unPf; Tue, 21\n Apr 2026 00:08:48 +0200" ], "X-Virus-Scanned": [ "amavis at osuosl.org", "amavis at osuosl.org" ], "X-Comment": "SPF check N/A for local connections - client-ip=140.211.166.142;\n helo=lists1.osuosl.org; envelope-from=buildroot-bounces@buildroot.org;\n receiver=<UNKNOWN> ", "DKIM-Filter": [ "OpenDKIM Filter v2.11.0 smtp1.osuosl.org CAD2B83155", "OpenDKIM Filter v2.11.0 smtp2.osuosl.org 5761D40051" ], "DKIM-Signature": "v=1; a=rsa-sha256; c=relaxed/relaxed; d=buildroot.org;\n\ts=default; t=1776722940;\n\tbh=r5jR0+uRaizicRk1HycK0dQ3g48xSNJCK19n943/k8w=;\n\th=To:Cc:Date:Subject:List-Id:List-Unsubscribe:List-Archive:\n\t List-Post:List-Help:List-Subscribe:From:Reply-To:From;\n\tb=U3NyYs/uPJzulQodig8gdllnuRz6tv1f1Ctu4h5E0IvPchRTCVi+UL9VW7/oxa6gu\n\t HUbXTtJjCaPxVH9IOMeYmZZ2G75wr3mKvyk9ZKDZ/J+nnHmTEklGxQ7Ql1LlDX5pob\n\t sYNL8Axp4VCLNflOAgp5XZCc61TonBTBQvOeqyPAQmnX63x+s0Q8fGMBZR3JKJapS/\n\t veHSRMvA112ZercBjncX1nQJjAiM8QMs6beN4swTqOJMPixvLHT3nIAHm1+KZjmTRu\n\t +wNbprj9iF7BhrJu6n3TFlbsuruqc+c7z/d1UNzQ255R2bh2YhVbcMTjdqL1YosVUZ\n\t HfbVzRRauJqmA==", "Received-SPF": "Pass (mailfrom) identity=mailfrom; client-ip=212.227.15.15;\n helo=mout.gmx.net; envelope-from=fiona.klute@gmx.de; receiver=<UNKNOWN>", "DMARC-Filter": "OpenDMARC Filter v1.4.2 smtp2.osuosl.org 5761D40051", "X-UI-Sender-Class": "724b4f7f-cbec-4199-ad4e-598c01a50d3a", "To": "buildroot@buildroot.org", "Cc": "Thomas Petazzoni <thomas.petazzoni@bootlin.com>,\n Marcus Hoffmann <buildroot@bubu1.eu>, Fiona Klute <fiona.klute@gmx.de>", "Date": "Tue, 21 Apr 2026 00:08:37 +0200", "Message-ID": "<20260420220839.1232620-1-fiona.klute@gmx.de>", "X-Mailer": "git-send-email 2.53.0", "MIME-Version": "1.0", "X-Provags-ID": "V03:K1:cYlha4C3/OZE9ZUNKgLaG22IQmmibyWjGcoCypByMWQUzj5SRTA\n 2cs7WtuoysN5hJdC1gmyle6xp0EI4H9T2D8eA6+rfPMFGGDzwjZxv7nTX/q2KdMru5CFtlx\n COzzf7mdEhVpJwH67gmF//fq+jOtScIp/TnYER8XYPHcBz/aJTuaEN/piIEvQBzPHSMr4xG\n HMQ+Oko52RyAmy0C/KUzw==", "UI-OutboundReport": "notjunk:1;M01:P0:BFJ+UoLIdek=;N3h3+BPyy+Ere31Ldww8YIBcBgd\n LnLnglzWjK+UBP4htgNeAKfR7OLDPx/NKQ5WoBreG5Uy92SSnQCeOr8QZNNvRVwWzHf71m2p+\n /cM9GYTC+RXj+0ElE2wtvcf9Ce2qSn4chmUMzGswFDA74m6yRLwGMxDGXsQSPAHdNC61h/r24\n TD55dG30WzLoVFXDgQHqWgXHywcGPuV+Q2njCeyN27Dtnt6AgJipvmlXiZP+5sfRM/pJOzfrE\n FZEZgNEwyqZ7UgTyKeoV7d+i1Y3o/PfU20I/BRtA1QqLWu9wk1Xf2I2m+A7LfAf4K3PTIr3HW\n qR5pkBFwiOgXPUnMVpwEOEHryLshwocNr6S39ctayuKcV1RNTMivabt22Qe2dQGTa255pME9K\n 28bx894+duspyd2B0+lQG75ZNFN3AX5y2mQNKy5q379oN1bOTjrsvTc+iOfv22IapWS350Hgi\n IFBH1apeFXsL04AKf/pCqyVnHSV4CIkxfHAqj6SZZ5j2HIY7yj8zbgH/5tXLIk1VuWdrCecxi\n 33SrieoqkIU8HV6lg3ZU+9bo5OrF1wLi/0qVH5mAHASYe3/B1w0DFwHygcBT5KPii47i07BSf\n 4Nw/kL1nyqWKGJ2b8CIwjWlDI8e3+PdlNcmFme14TJ3PkIb3axzdv3ygjawFVj/8NgVDxqB/e\n av0qK4Nb7jEP7xzDtAoTM+OqTIUE70BGo6r8EfR0V6hM2mvZyjUs9ypNWezNe7SwV1cntZ5fG\n TcJbImKR8rCsqxGWe2sRTZsafuIO5G0CFE/JmNSaaG11zjuHHvkz24yZJn5pD//EYn37NuvpN\n Wot368vd0fNfVb1AKQdrK3CuT+4fo5shBZiB7QI9/DsYgDfXcirgi7//HoRJ8iU9wR97Mv7Up\n PGD+MSEo73OiT3fqHdo8tu0SRxEJbdBDWlABFkiNKwLbythHS8xaXpJnYusXUKmuJkwCLnW8w\n 8MMwlNQiHH38cYzGrFzDspHZvMsrba3iniyL2Fu2dgCo9diOCj+7JH7Oj7/qSwdMiCB6UgfVS\n UMw5jsuir0YCH9nyufn+XjSk6q6aiPgMOV6T7MCyjFsf0jqWHpu3ldwesZ0vEOJZo7yGjmox+\n 2UwAZZvJ/G9EYP7Q9Aisja7DcvGIkBArm2FDCY7j+S7oPstRoTFbpfhjEecw2+WBS9kaM/3KX\n LJ5oCvuJfUpd6p0No/or7JW6zLzubPNtKhikoBpMrWjAFcbwtCAZxODrBMPSc1iPVqpKnVBi/\n nwPcCFeE/UjPkx2M0CjLG71IukclNLqpypuO0Rz+1lzkBFGLE1w5KWLvCc1fHzT+PKV4Rngb7\n YXlISNUOvGmIb4LIWFwJecLETI6H3R8rRKMp2Vz4E2IFfZdczuXP5X8Z28sI3xYhNrJr2j+P4\n KB9z/PI1+3xdsnC4zINZoIuimh/RpRDFQjJsNcsMectwckNTPfIvSyXAtpeNI+6dn5tuTH8EJ\n Ce8Zd9Wac5hq1FYjw6tsCCK1Vd2nHjG/xu5CRU4Ys3bQdvvvoW2Tpezb6hYhDJe/YtXZD/Nsr\n hmmeCokUjNiL/CyQ+ro7aGvfurJRnPD7J6gLfa3GQZN3Un7bU3ma8WkzUqSWLyKHYo3AvRDXr\n PhWl5wSrXP0AMvV0U5JCzNXIkRR+zIWzbaYxzT+Ncat1XBAnTuyRPoDi2NnWiYSVRYizrd639\n NUhqkmeVsWbak90lbvQoRMBaLaESnvZ+seCIR1MAzOoQfXFoWHL8JSipsCiY3FVCpW2xdfWFy\n t4oBlHxE1QiPNp2bmcu1ohCCdos4UqM2DavqgKAJK+UgVfg1G+aJmJey2tylHnnNyC88m3jf4\n UsGNJY2tWiG9FISp4/Xh0pUbVx7wveTdoHkFI/b+CBZpMsWpkk8ZLmi1RV1gteX981OrfMzCx\n 6aeXyVUDO+LAgPn8diV6n/VNGncV8ZF0tzgAJF/24jivnKESebtWecZOTTNUR2fwSOppXnCvp\n B4RffswTXXmrOzaCgyQT9hAly3lGli7+uaBe6AYZwXrTarHWay8+a+F+gW7RQb7CWgrpLLAK4\n gqVP70l7OkhzZp0q91BbdOFAstYEPcS2WjVrJq6GCldDC80l28vxTWQyn4z8/feV5eC7t8bQE\n RyQP65351ZELxnkgXMjK7pTfmAwV8ixr+o71Z0NxC0eflJXaF8H9wzmL00FRgsbOaXBgyJm+e\n fiSMmG+BojYDHMP64BvLNNiOc7GNoVvfc5XZlyw8IA+zQ73eK63MBavmSjPpEskDG5BU+1aZz\n r5D9PEayAYaRidTjYuez4j1IACA3ikivKiLbPsFeag+AnDWZkSL7PE2ZYB8pQIiPdf2+N/1Xb\n KKc0doxBiJtqGZBcW9gpMsLYLDc6SVDyEinj30XdiHCiL7XpG0ECl+VaSPN/Y7RUmdarNgiVu\n g3DWUBByoy/zCtNyF/F6cDzSB8OHMLJpjjbxd95ZsJ+T/zVB1e3WxbBzotYUu3D3+PEXELsY2\n vkjU8eiRakvfeGR7DyECYFj10CSfsg4NXJMZY6Z50gnlJ+wH9DIxAnfAmeqS0Etdjlkq9ZNJI\n izOrLuLCA870dL18Re3BY8yt5ME9i31Z2CMMpuI6MGqvT3YrwtGUqrsrls41wfEmEF/rC65Nw\n u+yPYEeAb3i/B8jiQkG7hHcBA6DPOlqpTm0deH2km5PRuOV05FVrcnSJR1RDqmK+dxQk/bI+U\n 9tzp01bnhe33aq3OMf2FR94MAQuxEgcx8aaHYGeEeOdOicJy+LxG9YmRjbe5P0kXeG5hOZDQr\n LmSPvWi0DDA4Nn1gExr7ebC25z/9lv8LeGvELl7fssNvSMlFWoPiQtuVBeH6iimKZg/OwEnFU\n RrHuA9qyv5taxcM9lEPs9DR7dTScEhoMHvXHXnwZ49t6+jVM5nWqY80CE8+0taGNsUqDAykv5\n 97oKl4Bao5Zb77IOM3x2cGMWS1wiDp3oA3kYUP8aucmK15TjtIfYPdOUf5zsJwTzYcr2AVaAE\n I6xVzBabg479+IwmGtrmtpSXmjR+iwibZYUODmll5pTGcfRuDf47uuD7C15sAHC5OZv3fuhyq\n IqcGAYoNon9MkJGyMYsFqw2QIGgnTVIKEihnDw8aX52kL/t0oLlS954ojrqxC/mat5Zy65LBE\n eb21H1ytAAOP0ARgsj6E1MdlfHiF3Eu2dP3zLmADoecMNjjVF6Qpa3LsPq5Ia7wk+MR/VQ8Dd\n Ju+quqB7rRMEl9iIRxfc/Th4UhopOrYuleOfluwS+IlUv9HkWlctUTvdST3u0CKtWgMspPYtr\n NcTWP6fhdHBqLafnauIEhQ5zlSCBDJPNVO4lI+SjSAYxixPw/aKaP0j0NJ5LA3BaBSa7Dy+oh\n aoppRnFVSilBsRTdAvGDtvksVpqX80boOkNTOSgXO4eVX6Mhaqsjf1WY14ZqgOQX/oaMn81V6\n XaBLrOU7K7q36J8yWhE/373+cSPMOstDNP5uP3BLkhSFl4nOfqq2TXf1RqtCMQp6LfibOlYK9\n DDXz1L3Dk7gVRmoXPz8L5lGG57u/Z1Hjzm4ccy4q+GMNA83a/roAuHvWC472Ys6iHgD9+eJ1a\n e8i7fNZXok2usD5Wa9vwqyneDVgWhtfnzVGF1nXknVLURBMR0scdADDI83/LMJ6X9bXeQSNbM\n rWJXswz2o3NKqhOR9I1CTDcWoWE5NsEoqRiDtD6uY/2ARf4evaoXEEGmygqXQlQ9eg1c06/yk\n teldydCLW9UQrLMCLJxyMt3VzDAWLY53UhyIbBEQtiGb70doXUwA0OUrov6Novm0YIiHunGiU\n RJuFX/1H+WbkQH2s2dPePT6JrBIQxRamXQG8dO5OVIwqdNcuixfpg449uIOInR5cJJouDp0Jf\n 9+oi5EgjGut19VmPlyU8N3Sj+0ucc6yRi1Y0b7th3GGjdKfZ2yCWRjr5/nPyfNJOTF9BOqWgd\n iUTtc4Kye//gRal/coFoUZsydI0iEncDNJa6UTO0jmLfntxRYBTt4TGkZk2Bb4TTm5t6uM3nb\n lKzpegiXuKmVXTlsYpJ1j8xtHr1DCg5k4IIj7Wmj6am9EFjIEWpCdQkXjlB4pN7MEGAtcpmCD\n ZIbSPnoTokJTLpAoiC9usr6B+Din+1X2ruk95s8OHNwys7GGm3/TLu+cM+eLoWwHYUkmjUQ/L\n 4Y6xNOYb4yhv54fJR1W5vYvnRjR9Pu+FYtTXyZQ/cO4bR95PhRam8fXNncrXRHYp2AlBnPpsF\n FMRkZMiMmCUiTOQROUsfLhcbO/o5uoUDTWUj0aaJxGovwLystFs5Gx7qUoSqiCaOtLIDwB6uf\n vQgArzB25dDBMx9JnfYLEQv9hiN2BJZy+EV2gr2XnNydXcfmIedWh+QoH0CQsSUjxHrTwk0iQ\n SDKpA32VkCm4Q574VwW70sIxU51FMwWHW05ja5Jd/nZOkaAywVMCKWyl1hukbp0Gz9p6rwVrJ\n 2lMUaztlB5oipOAQLoiTcxShn+cFq+ErTbhK4jqeZLekhmcG5vlcchEHTtoccpf8F7+w8UfLt\n 4d2aerR+JyedfF9YFGsfhxSbCJz2N9tV9+HH74gOow9umZgJVFESgy4NJS72YSQh+z0eBatdk\n 86qSLusKTcHfRop3CSCvK4S3+/qUDm4oyJwBfAQGp26R4E1KLiMG/kdRzqr3bxHiAiKLcS7i5\n 1L4KJK8qniTrvaxxu9HOygY5WWIiOdeCDWSEbpiDxQGejcRfyxR1O8mpBJ8VG1qkb7tHbYCQ5\n 3A6lzGehinVs8c8/Y9KGTHOsk/SkXUQNeKXiH+v3m7RLuziDjCal1K99wkhlhC9kMCMXVjbyw\n PMiA5nXEIHCk1Io1PsxV8+LZ4Ob5DRd8zGLLh31K+rUPVzwxDEHZo+cTipunjntR5M+DG0lWd\n Qows0lATiZDdBBCo7x75Rzd+8xcypieJlVPaqGCEKd6xjqZn6qHilCMMYN4q0o3TNcCoiLNdg\n vS4ocGEAOh3XXqUoeHc5akJxaDS5W8aLBREoByR5Szxw7I35C5CtYBn33Owoo/al/kAMpm/yd\n IWAcZE8UIkm14ewkfKSta4HPyWmKGM9tLQ1kWoHN/HnZw4tRjP0zNife19hGYHhPouoh5KASM\n rz1TKhKn4XNhll6u3h8RXFXGJLxT90Txile/dL5Do0r8q6xgGF/pdtUkKZqvz/bwYAF39SZ0S\n w4Pjx4a6al1aDbAvsp56lBvLKj3eDHZv4WgsHpv482P8w04CBzm489MVjKlbn2h0PC6SDkPQs\n SMb6EPolampk/+shRwsjrr3vT/2mgcl95O43jP33XHKK6W0bi0ecjg03D7ZBZaVGeA1hJB8by\n Y+fc1R6pa7g3mTHLiVsBxjMJQ8gH5pz9tPYW0Siv9nvDZ4VQ4Ql+pez4bJmNgi5GkQDTMn/cW\n fBk+2GlA79VULyDbb1ovNYpSeGT/DQHlqQtTsk0G5e3ybKwVJDjO9fnUP2uUzHCqO9zn1Qq2c\n Ea5RM91aq1T/5JTJiKXpasEw==", "X-Mailman-Original-DKIM-Signature": "v=1; a=rsa-sha256; c=relaxed/relaxed;\n d=gmx.de;\n s=s31663417; t=1776722928; x=1777327728; i=fiona.klute@gmx.de;\n bh=gIkqdOs974GEGpXPXjjin5OfZWqGt1kRo/0CJMjA57o=;\n h=X-UI-Sender-Class:From:To:Cc:Subject:Date:Message-ID:\n MIME-Version:Content-Transfer-Encoding:cc:\n content-transfer-encoding:content-type:date:from:message-id:\n mime-version:reply-to:subject:to;\n b=r3Ug0TKOJkb877IzePYO0r03hytMV+Vv4o7UmMt5kvhRWiCV8CRSm1w8giqJPqVG\n z0YgmqBQc7c/W22FLlWKotX94c+HV7QmIq6j7Jv6y/Tzh29hKHDtL06tvQ2XPA3YH\n tJBBy6D2+uDgMZQLaSAarlfs5hEFKVAhRlNk/lk6gf5qK4XUFCW2rzZK3c69vzx01\n B0D4qV4haU8917p4uusl9/kqkY9jlv9PiBLH26YHZitMqdX+NbVl2kLbD2UcckmTz\n fohlVYd3nl8Dwbe29mfH3NoQdQInaWzyOIMH2XvNu4lOpB3qIUSTT+K22KzlDb4kl\n liqIUDzxlWfv7kWcQg==", "X-Mailman-Original-Authentication-Results": [ "smtp2.osuosl.org;\n dmarc=pass (p=quarantine dis=none)\n header.from=gmx.de", "smtp2.osuosl.org;\n dkim=pass (2048-bit key,\n unprotected) header.d=gmx.de header.i=fiona.klute@gmx.de header.a=rsa-sha256\n header.s=s31663417 header.b=r3Ug0TKO" ], "Subject": "[Buildroot] [PATCH 0/2] Add upstream security patches for musl 1.2.6", "X-BeenThere": "buildroot@buildroot.org", "X-Mailman-Version": "2.1.30", "Precedence": "list", "List-Id": "Discussion and development of buildroot <buildroot.buildroot.org>", "List-Unsubscribe": "<https://lists.buildroot.org/mailman/options/buildroot>,\n <mailto:buildroot-request@buildroot.org?subject=unsubscribe>", "List-Archive": "<http://lists.buildroot.org/pipermail/buildroot/>", "List-Post": "<mailto:buildroot@buildroot.org>", "List-Help": "<mailto:buildroot-request@buildroot.org?subject=help>", "List-Subscribe": "<https://lists.buildroot.org/mailman/listinfo/buildroot>,\n <mailto:buildroot-request@buildroot.org?subject=subscribe>", "From": "Fiona Klute via buildroot <buildroot@buildroot.org>", "Reply-To": "Fiona Klute <fiona.klute@gmx.de>", "Content-Type": "text/plain; charset=\"us-ascii\"", "Content-Transfer-Encoding": "7bit", "Errors-To": "buildroot-bounces@buildroot.org", "Sender": "\"buildroot\" <buildroot-bounces@buildroot.org>" }, "content": "Hi everyone,\n\nthe patches themselves are pretty standard, importing the upstream\npatches. This is the first time I'm adding CVE tags & ignore rules to\nBuildroot, so please check everything is right.\n\nHowever, I found an annoying thing while looking into the CVE details:\n\"make pkg-stats\" didn't find any open CVEs for package/musl, I believe\nbecause CVE-2026-6042 and CVE-2026-40200 have not been tagged with the\nCPE yet in the NVD (status \"Awaiting Analysis\").\n\nI looked https://db.gcve.eu/ in search of an alternative, and the\nresults were mixed:\n\n* https://db.gcve.eu/vuln/cve-2026-40200 has the correct CPE\n\n* https://db.gcve.eu/vuln/CVE-2026-6042 does not: no CPE, and tagged\n with vendor \"musl\" and product \"libc\" which does not match\n\nUnfortunately they don't seem to have a channel for reporting errors.\nSo I'm wondering: Is there another reliable source for vulnerability\ninformation that might be a bit faster to update?\n\nBest regards,\nFiona\n\n\nFiona Klute (2):\n package/musl: add upstream security patch for CVE-2026-6042\n package/musl: add upstream security patches for CVE-2026-40200\n\n ...-slowness-incorrect-mappings-in-icon.patch | 324 ++++++++++++++++++\n ...do-heap-corruption-from-bug-in-doubl.patch | 48 +++\n ...ude-oob-array-writes-independent-of-.patch | 97 ++++++\n ...06-qsort-fix-shift-UB-in-shl-and-shr.patch | 43 +++\n package/musl/musl.mk | 8 +\n 5 files changed, 520 insertions(+)\n create mode 100644 package/musl/0003-fix-pathological-slowness-incorrect-mappings-in-icon.patch\n create mode 100644 package/musl/0004-qsort-fix-leonardo-heap-corruption-from-bug-in-doubl.patch\n create mode 100644 package/musl/0005-qsort-hard-preclude-oob-array-writes-independent-of-.patch\n create mode 100644 package/musl/0006-qsort-fix-shift-UB-in-shl-and-shr.patch" }