GET

Patch Detail

get:
Show a patch.

patch:
Update a patch.

put:
Update a patch.

GET /api/1.2/patches/2221437/?format=api
HTTP 200 OK
Allow: GET, PUT, PATCH, HEAD, OPTIONS
Content-Type: application/json
Vary: Accept

{
    "id": 2221437,
    "url": "http://patchwork.ozlabs.org/api/1.2/patches/2221437/?format=api",
    "web_url": "http://patchwork.ozlabs.org/project/buildroot/patch/20260409131700.278723-1-bernd@kuhls.net/",
    "project": {
        "id": 27,
        "url": "http://patchwork.ozlabs.org/api/1.2/projects/27/?format=api",
        "name": "Buildroot development",
        "link_name": "buildroot",
        "list_id": "buildroot.buildroot.org",
        "list_email": "buildroot@buildroot.org",
        "web_url": "",
        "scm_url": "",
        "webscm_url": "",
        "list_archive_url": "",
        "list_archive_url_format": "",
        "commit_url_format": ""
    },
    "msgid": "<20260409131700.278723-1-bernd@kuhls.net>",
    "list_archive_url": null,
    "date": "2026-04-09T13:17:00",
    "name": "[1/1] package/libopenssl: security bump to version 3.6.2",
    "commit_ref": null,
    "pull_url": null,
    "state": "new",
    "archived": false,
    "hash": "5a06a4a897e52ee40ab383c69a8cd01c09384266",
    "submitter": {
        "id": 86624,
        "url": "http://patchwork.ozlabs.org/api/1.2/people/86624/?format=api",
        "name": "Bernd Kuhls",
        "email": "bernd@kuhls.net"
    },
    "delegate": null,
    "mbox": "http://patchwork.ozlabs.org/project/buildroot/patch/20260409131700.278723-1-bernd@kuhls.net/mbox/",
    "series": [
        {
            "id": 499296,
            "url": "http://patchwork.ozlabs.org/api/1.2/series/499296/?format=api",
            "web_url": "http://patchwork.ozlabs.org/project/buildroot/list/?series=499296",
            "date": "2026-04-09T13:17:00",
            "name": "[1/1] package/libopenssl: security bump to version 3.6.2",
            "version": 1,
            "mbox": "http://patchwork.ozlabs.org/series/499296/mbox/"
        }
    ],
    "comments": "http://patchwork.ozlabs.org/api/patches/2221437/comments/",
    "check": "pending",
    "checks": "http://patchwork.ozlabs.org/api/patches/2221437/checks/",
    "tags": {},
    "related": [],
    "headers": {
        "Return-Path": "<buildroot-bounces@buildroot.org>",
        "X-Original-To": [
            "incoming-buildroot@patchwork.ozlabs.org",
            "buildroot@buildroot.org"
        ],
        "Delivered-To": [
            "patchwork-incoming-buildroot@legolas.ozlabs.org",
            "buildroot@buildroot.org"
        ],
        "Authentication-Results": [
            "legolas.ozlabs.org;\n\tdkim=pass (2048-bit key;\n unprotected) header.d=buildroot.org header.i=@buildroot.org\n header.a=rsa-sha256 header.s=default header.b=KoAjwPKH;\n\tdkim-atps=neutral",
            "legolas.ozlabs.org;\n spf=pass (sender SPF authorized) smtp.mailfrom=buildroot.org\n (client-ip=2605:bc80:3010::136; helo=smtp3.osuosl.org;\n envelope-from=buildroot-bounces@buildroot.org; receiver=patchwork.ozlabs.org)"
        ],
        "Received": [
            "from smtp3.osuosl.org (smtp3.osuosl.org [IPv6:2605:bc80:3010::136])\n\t(using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits)\n\t key-exchange x25519 server-signature ECDSA (secp384r1) server-digest SHA384)\n\t(No client certificate requested)\n\tby legolas.ozlabs.org (Postfix) with ESMTPS id 4fs0pF0w6wz1yCv\n\tfor <incoming-buildroot@patchwork.ozlabs.org>;\n Thu, 09 Apr 2026 23:17:08 +1000 (AEST)",
            "from localhost (localhost [127.0.0.1])\n\tby smtp3.osuosl.org (Postfix) with ESMTP id 4BA7060705;\n\tThu,  9 Apr 2026 13:17:07 +0000 (UTC)",
            "from smtp3.osuosl.org ([127.0.0.1])\n by localhost (smtp3.osuosl.org [127.0.0.1]) (amavis, port 10024) with ESMTP\n id aMY0cz89OXhv; Thu,  9 Apr 2026 13:17:06 +0000 (UTC)",
            "from lists1.osuosl.org (lists1.osuosl.org [140.211.166.142])\n\tby smtp3.osuosl.org (Postfix) with ESMTP id 564766082A;\n\tThu,  9 Apr 2026 13:17:06 +0000 (UTC)",
            "from smtp3.osuosl.org (smtp3.osuosl.org [IPv6:2605:bc80:3010::136])\n by lists1.osuosl.org (Postfix) with ESMTP id D091D1F6\n for <buildroot@buildroot.org>; Thu,  9 Apr 2026 13:17:04 +0000 (UTC)",
            "from localhost (localhost [127.0.0.1])\n by smtp3.osuosl.org (Postfix) with ESMTP id CE36A6082A\n for <buildroot@buildroot.org>; Thu,  9 Apr 2026 13:17:04 +0000 (UTC)",
            "from smtp3.osuosl.org ([127.0.0.1])\n by localhost (smtp3.osuosl.org [127.0.0.1]) (amavis, port 10024) with ESMTP\n id MebA7JrXfJaF for <buildroot@buildroot.org>;\n Thu,  9 Apr 2026 13:17:04 +0000 (UTC)",
            "from dd20012.kasserver.com (dd20012.kasserver.com [85.13.140.57])\n by smtp3.osuosl.org (Postfix) with ESMTPS id 8FB1960705\n for <buildroot@buildroot.org>; Thu,  9 Apr 2026 13:17:03 +0000 (UTC)",
            "from fli4l.lan.fli4l (p4fd6ca66.dip0.t-ipconnect.de\n [79.214.202.102])\n by dd20012.kasserver.com (Postfix) with ESMTPSA id 61F8DA4C00FD\n for <buildroot@buildroot.org>; Thu,  9 Apr 2026 15:17:01 +0200 (CEST)",
            "from bruckner.lan.fli4l ([192.168.1.1]:41074)\n by fli4l.lan.fli4l with esmtp (Exim 4.99.1)\n (envelope-from <bernd@kuhls.net>) id 1wApFl-000000002Hg-1Cln\n for buildroot@buildroot.org; Thu, 09 Apr 2026 13:17:01 +0000"
        ],
        "X-Virus-Scanned": [
            "amavis at osuosl.org",
            "amavis at osuosl.org"
        ],
        "X-Comment": "SPF check N/A for local connections - client-ip=140.211.166.142;\n helo=lists1.osuosl.org; envelope-from=buildroot-bounces@buildroot.org;\n receiver=<UNKNOWN> ",
        "DKIM-Filter": [
            "OpenDKIM Filter v2.11.0 smtp3.osuosl.org 564766082A",
            "OpenDKIM Filter v2.11.0 smtp3.osuosl.org 8FB1960705"
        ],
        "DKIM-Signature": "v=1; a=rsa-sha256; c=relaxed/relaxed; d=buildroot.org;\n\ts=default; t=1775740626;\n\tbh=vJPVB6D/fOUSX3zODZ6gGpBHLXUhkdot+5UYefKwIVI=;\n\th=From:To:Date:Subject:List-Id:List-Unsubscribe:List-Archive:\n\t List-Post:List-Help:List-Subscribe:From;\n\tb=KoAjwPKHqJqqxTpBja3Zl5+wzegQL5Q5jrFJYAByPA7g4LhUMj3o1AoFsHYtWPMiQ\n\t sXUH0GfN292D2WzZDjkgI1DZbIXAw/uaCy8/gFSvbSehh92nPhiKsJzxfOGQ4DDiI7\n\t DWwPpzbUXdHWSCWag2ZgpvNCHOZ8A1UzHK7LZMxSRKRb0goSEqWav96zr7QBxIXAhL\n\t 6T1Pp9ewkpxy1a/JCbv20W5osnmqvdWcad/qB5JGEJ7+/wr96/v9fkQzMdgXMIM5wo\n\t FZB/4FriEk3XSK+2g2TgR111EAKSCTIGWdvEsproQE0Rs2OWpwbXPWCcHsZDboMQoQ\n\t oG8oZR4e/L0AQ==",
        "Received-SPF": "Pass (mailfrom) identity=mailfrom; client-ip=85.13.140.57;\n helo=dd20012.kasserver.com; envelope-from=bernd@kuhls.net;\n receiver=<UNKNOWN>",
        "DMARC-Filter": "OpenDMARC Filter v1.4.2 smtp3.osuosl.org 8FB1960705",
        "From": "Bernd Kuhls <bernd@kuhls.net>",
        "To": "buildroot@buildroot.org",
        "Date": "Thu,  9 Apr 2026 15:17:00 +0200",
        "Message-ID": "<20260409131700.278723-1-bernd@kuhls.net>",
        "X-Mailer": "git-send-email 2.47.3",
        "MIME-Version": "1.0",
        "X-Spamd-Bar": "--",
        "X-Mailman-Original-DKIM-Signature": "v=1; a=rsa-sha256; c=relaxed/relaxed;\n d=kuhls.net;\n s=kas202511301023; t=1775740621;\n bh=eZRbD6IuX/ZR1I1tB8M9AbDavtJBfIrENBrVnIlTzWg=;\n h=From:To:Subject:Date:From;\n b=FGGFSqMRQVy1hzQXVuRraE/ENQhE+RPHRtPZVZR8Vdu1ehRh5jAb3P0caeO/4Ks+6\n FDJyNfyVZ80PaBWJZagD5yaVDVfBpzFi/B2lhPdMHbRqJDMt3bUXn5Yg48h2iljjss\n +/TqM7AbpdgswGaJiX/TsPYrNttQLlR8XE80KxhIJl26Fyu+otky0qEE7KaqVUNXuK\n dJfT3waeOwQ/aHralSQQ+6u3SQnstrfv+Sh6X8kK/sYoKE6bEp4/TSiwAhzxATflfX\n e4C41yH1BzTJ6euITXm/c9NyfvGsoQwIEmo9HaaitXNFNuf+dSDbrONG5wcWfGfaNm\n KdBLXWwrgOnXw==",
        "X-Mailman-Original-Authentication-Results": [
            "smtp3.osuosl.org;\n dmarc=pass (p=none dis=none)\n header.from=kuhls.net",
            "smtp3.osuosl.org;\n dkim=pass (2048-bit key,\n unprotected) header.d=kuhls.net header.i=@kuhls.net header.a=rsa-sha256\n header.s=kas202511301023 header.b=FGGFSqMR"
        ],
        "Subject": "[Buildroot] [PATCH 1/1] package/libopenssl: security bump to\n version 3.6.2",
        "X-BeenThere": "buildroot@buildroot.org",
        "X-Mailman-Version": "2.1.30",
        "Precedence": "list",
        "List-Id": "Discussion and development of buildroot <buildroot.buildroot.org>",
        "List-Unsubscribe": "<https://lists.buildroot.org/mailman/options/buildroot>,\n <mailto:buildroot-request@buildroot.org?subject=unsubscribe>",
        "List-Archive": "<http://lists.buildroot.org/pipermail/buildroot/>",
        "List-Post": "<mailto:buildroot@buildroot.org>",
        "List-Help": "<mailto:buildroot-request@buildroot.org?subject=help>",
        "List-Subscribe": "<https://lists.buildroot.org/mailman/listinfo/buildroot>,\n <mailto:buildroot-request@buildroot.org?subject=subscribe>",
        "Content-Type": "text/plain; charset=\"us-ascii\"",
        "Content-Transfer-Encoding": "7bit",
        "Errors-To": "buildroot-bounces@buildroot.org",
        "Sender": "\"buildroot\" <buildroot-bounces@buildroot.org>"
    },
    "content": "https://openssl-library.org/post/2026-04-07-release-announcement/\n\nFixes the following vulnerabilities:\n\nCVE-2026-31790 - Incorrect Failure Handling in RSA KEM RSASVE Encapsulation.\nCVE-2026-28386 - Out-of-bounds Read in AES-CFB-128 on X86-64 with AVX-512 Support.\nCVE-2026-28387 - Potential Use-after-free in DANE Client Code.\nCVE-2026-28388 - NULL Pointer Dereference When Processing a Delta CRL.\nCVE-2026-28389 - Possible NULL Dereference When Processing CMS KeyAgreeRecipientInfo.\nCVE-2026-28390 - Possible NULL Dereference When Processing CMS KeyTransportRecipientInfo.\nCVE-2026-31789 - Heap Buffer Overflow in Hexadecimal Conversion.\n\nRemoved patch 0004 which is included in this release.\n\nSigned-off-by: Bernd Kuhls <bernd@kuhls.net>\n---\n ...ppc.pl-Removed-.localentry-directive.patch | 69 -------------------\n package/libopenssl/libopenssl.hash            |  4 +-\n package/libopenssl/libopenssl.mk              |  2 +-\n 3 files changed, 3 insertions(+), 72 deletions(-)\n delete mode 100644 package/libopenssl/0004-aes-gcm-ppc.pl-Removed-.localentry-directive.patch",
    "diff": "diff --git a/package/libopenssl/0004-aes-gcm-ppc.pl-Removed-.localentry-directive.patch b/package/libopenssl/0004-aes-gcm-ppc.pl-Removed-.localentry-directive.patch\ndeleted file mode 100644\nindex 7c507a2687..0000000000\n--- a/package/libopenssl/0004-aes-gcm-ppc.pl-Removed-.localentry-directive.patch\n+++ /dev/null\n@@ -1,69 +0,0 @@\n-From 5aaa7e5fdc59e88a13d2911cb86d814d4e2669da Mon Sep 17 00:00:00 2001\n-From: Danny Tsen <dtsen@us.ibm.com>\n-Date: Wed, 28 Jan 2026 07:23:13 -0500\n-Subject: [PATCH] aes-gcm-ppc.pl: Removed .localentry directive\n-\n-Otherwise there is mixing of  ELFv1 ABI and ELFv2 ABI directives\n-and PPC64 big endian builds fail.\n-\n-Fixes #29815\n-\n-Signed-off-by: Danny Tsen <dtsen@us.ibm.com>\n-\n-Reviewed-by: Paul Dale <paul.dale@oracle.com>\n-Reviewed-by: Shane Lontis <shane.lontis@oracle.com>\n-Reviewed-by: Tomas Mraz <tomas@openssl.org>\n-MergeDate: Tue Feb  3 08:39:50 2026\n-(Merged from https://github.com/openssl/openssl/pull/29827)\n-\n-Upstream: https://github.com/openssl/openssl/commit/5aaa7e5fdc59e88a13d2911cb86d814d4e2669da\n-\n-Signed-off-by: Bernd Kuhls <bernd@kuhls.net>\n----\n- crypto/modes/asm/aes-gcm-ppc.pl | 5 -----\n- 1 file changed, 5 deletions(-)\n-\n-diff --git a/crypto/modes/asm/aes-gcm-ppc.pl b/crypto/modes/asm/aes-gcm-ppc.pl\n-index 68918a9305a2b..fd5dcc22a6117 100644\n---- a/crypto/modes/asm/aes-gcm-ppc.pl\n-+++ b/crypto/modes/asm/aes-gcm-ppc.pl\n-@@ -409,7 +409,6 @@\n- ################################################################################\n- .align 4\n- aes_gcm_crypt_1x:\n--.localentry\taes_gcm_crypt_1x,0\n- \n- \tcmpdi\t5, 16\n- \tbge\t__More_1x\n-@@ -492,7 +491,6 @@\n- ################################################################################\n- .align 4\n- __Process_partial:\n--.localentry\t__Process_partial,0\n- \n- \t# create partial mask\n- \tvspltisb 16, -1\n-@@ -564,7 +562,6 @@\n- .global ppc_aes_gcm_encrypt\n- .align 5\n- ppc_aes_gcm_encrypt:\n--.localentry     ppc_aes_gcm_encrypt,0\n- \n- \tSAVE_REGS\n- \tLOAD_HASH_TABLE\n-@@ -752,7 +749,6 @@\n- .global ppc_aes_gcm_decrypt\n- .align 5\n- ppc_aes_gcm_decrypt:\n--.localentry\tppc_aes_gcm_decrypt, 0\n- \n- \tSAVE_REGS\n- \tLOAD_HASH_TABLE\n-@@ -1032,7 +1028,6 @@\n- .size   ppc_aes_gcm_decrypt,.-ppc_aes_gcm_decrypt\n- \n- aes_gcm_out:\n--.localentry\taes_gcm_out,0\n- \n- \tmr\t3, 11\t\t\t# return count\n- \ndiff --git a/package/libopenssl/libopenssl.hash b/package/libopenssl/libopenssl.hash\nindex 0e0dbd3926..05777cdac2 100644\n--- a/package/libopenssl/libopenssl.hash\n+++ b/package/libopenssl/libopenssl.hash\n@@ -1,5 +1,5 @@\n-# From https://github.com/openssl/openssl/releases/download/openssl-3.6.1/openssl-3.6.1.tar.gz.sha256\n-sha256  b1bfedcd5b289ff22aee87c9d600f515767ebf45f77168cb6d64f231f518a82e  openssl-3.6.1.tar.gz\n+# From https://github.com/openssl/openssl/releases/download/openssl-3.6.2/openssl-3.6.2.tar.gz.sha256\n+sha256  aaf51a1fe064384f811daeaeb4ec4dce7340ec8bd893027eee676af31e83a04f  openssl-3.6.2.tar.gz\n \n # License files\n sha256  7d5450cb2d142651b8afa315b5f238efc805dad827d91ba367d8516bc9d49e7a  LICENSE.txt\ndiff --git a/package/libopenssl/libopenssl.mk b/package/libopenssl/libopenssl.mk\nindex d580947899..bd4b889c88 100644\n--- a/package/libopenssl/libopenssl.mk\n+++ b/package/libopenssl/libopenssl.mk\n@@ -4,7 +4,7 @@\n #\n ################################################################################\n \n-LIBOPENSSL_VERSION = 3.6.1\n+LIBOPENSSL_VERSION = 3.6.2\n LIBOPENSSL_SITE = https://github.com/openssl/openssl/releases/download/openssl-$(LIBOPENSSL_VERSION)\n LIBOPENSSL_SOURCE = openssl-$(LIBOPENSSL_VERSION).tar.gz\n LIBOPENSSL_LICENSE = Apache-2.0\n",
    "prefixes": [
        "1/1"
    ]
}