koji: recent builds

building: firefox-128.13.0-1.oc9.ap.2, target: dist-oc9

complete: storm-2.8.8-1.oc9, target: dist-oc9

Wed, 27 May 2026 18:15:07 CST

* Tue May 26 2026 Upgrade Robot  - 2.8.8-1
- [Type] security
- [DESC] Upgrade to version 2.8.8
- fix CVE-2026-41081

* Tue Nov 26 2024 Upgrade Robot  - 2.7.0-1
- Upgrade to version 2.7.0
- fix CVE-2023-43123

* Thu Sep 26 2024 OpenCloudOS Release Engineering  - 2.4.0-7
- Rebuilt for clarifying the packages requirement in BaseOS and AppStream

complete: LibRaw-0.21.2-7.oc9, target: dist-oc9

Wed, 27 May 2026 18:07:42 CST

* Thu May 07 2026 PkgAgent Robot  - 0.21.2-7
- [Type] security
- [DESC] Fix CVE-2026-20884 vulnerability: integer overflow in data size calculation in float/deflated DNG loader

* Thu Apr 09 2026 PkgAgent Robot  - 0.21.2-6
- [Type] security
- [DESC] Fix multiple security vulnerabilities:
  - CVE-2026-24450: Avoid integer overflow in allocation size calculation and check for EOF in read loop
  - CVE-2026-5342: Fix out-of-bounds read in nikon_load_padded_packed_raw function by validating row size 
  - CVE-2026-24660: Fix heap buffer overflow in X3F decoder by adding memory allocation safeguards
  - CVE-2026-21413: Add boundary check in lossless_jpeg_load_raw function
  - CVE-2026-20889: Fix heap buffer overflow in x3f_thumb_loader by adding thumbnail size validation

* Mon May 26 2025 Zidong Huang  - 0.21.2-5
- Revise patch names

complete: tigervnc-1.13.1-14.oc9, target: dist-oc9

Wed, 27 May 2026 15:54:21 CST

* Wed May 27 2026 Xinlong Chen  - 1.13.1-14
- [Type] security
- [DESC] rebuild for fixing CVE-2026-34002

* Thu May 07 2026 Xinlong Chen  - 1.13.1-13
- [Type] security
- [DESC] rebuild for fixing CVE-2026-34003, CVE-2026-34001, CVE-2026-33999

* Fri Apr 10 2026 Maxon Xie  - 1.13.1-12
- [Type] security
- [DESC] Fix CVE-2026-34352: incorrect permissions on x0vncserver shared memory allowing other users to observe or modify screen content

failed: rdma-core-48.0-2.oc8, target: dist-oc8

Wed, 27 May 2026 14:52:35 CST

complete: expat-2.5.0-1.oc8.ap.1, target: dist-oc8

Wed, 27 May 2026 11:19:47 CST

* Wed Nov 19 2025 Tomas Korbar  - 2.5.0-1
- Rebase to version 2.5.0
- Fix CVE-2025-59375
- Resolves: RHEL-114618

* Mon Apr 07 2025 Tomas Korbar  - 2.2.5-17
- Fix CVE-2024-8176
- Resolves: RHEL-57477

* Fri Nov 08 2024 Tomas Korbar  - 2.2.5-16
- Fix CVE-2024-50602
- Resolves: RHEL-65062

complete: vorbis-tools-1.4.2-10.oc9, target: dist-oc9

Tue, 26 May 2026 20:22:46 CST

* Tue May 26 2026 PkgAgent Robot  - 1.4.2-10
- [Type] security
- [DESC] Fix CVE-2026-34253: buffer underflow in ogg123 remote.c remotethread function

* Thu Sep 26 2024 OpenCloudOS Release Engineering  - 1.4.2-9
- Rebuilt for clarifying the packages requirement in BaseOS and AppStream

* Fri Aug 16 2024 OpenCloudOS Release Engineering  - 1.4.2-8
- Rebuilt for loongarch release

complete: kernel-debug-5.4.241-30.17.27.oc8, target: dist-oc8

Tue, 26 May 2026 20:07:47 CST

* Tue May 26 2026 Jianping Liu  - 5.4.241-30.17.27
- net: skbuff: propagate shared-frag marker through frag-transfer helpers
- net: skbuff: preserve shared-frag marker during coalescing
- net/rds: reset op_nents when zerocopy page pin fails
- crypto: essiv - Check ssize for decryption and in-place encryption
- xfrm: esp: avoid in-place decrypt on shared skb frags
- Revert "xfrm: esp: avoid in-place decrypt on shared skb frags"
- !739 pswiotlb: update pswiotlb to 20260410 version
- pswiotlb: Bypass pswiotlb when the numa node the device belongs to is invalid
- pswiotlb: Ensure ordering and visibility of the expansion pool's busy_record
- pswiotlb: Disable pswiotlb in the kdump kernel
- pswiotlb: Atomic operations are used when recording busy areas
- pswiotlb: Fix a issue of member variable force not being initialized
- pswiotlb: Adjust the location of the platform-identification process
- pswiotlb: Move platform-identification to cpu errata
- pswiotlb: Move pswiotlb dma functions behind dma_map_ops
- PCI: Add ACS quirk for Wangxun FF5xxx NICs

* Mon May 11 2026 Jianping Liu  - 5.4.241-30.17.26
- Ethernet: Linkdata: Supports Linkdata ethernet Controllers
- block: refactor bd_start_claiming
- arm64: tlb: Allow range operation for MAX_TLBI_RANGE_PAGES
- arm64: tlb: Improve __TLBI_VADDR_RANGE()
- arm64: tlb: Fix TLBI RANGE operand
- arm64/mm: Modify range-based tlbi to decrement scale
- KVM: arm64: Fix FEAT_TLBIRANGE bugs

* Sat May 09 2026 Jianping Liu  - 5.4.241-30.17.25
- !731 blk-wbt: don't throttle swap writes in direct reclaim
- blk-wbt: don't throttle swap writes in direct reclaim
- !726 [Hygon][5.4][Feature] pwm: dwc: Add support for Hygon pwm controller
- pwm: dwc: Add support for Hygon pwm controller
- pwm: Add DesignWare PWM Controller Driver
- !516 vfio/pci: provide customized live migration VFIO driver framework
- !720 KVM: x86: Add support for CPUID leaf 0x8C860000
- !694 [Hygon][5.4][Feature] spi: dw: Add device HID for Hygon SPI controller
- KVM: x86: Expose AVX512_VP2INTERSECT to guest
- KVM: x86: Add support for CPUID leaf 0x8C860000
- Module.kabi: update arm64 Module.kabi_tkci to let check kabi take effect
- KVM: arm64: limit PMU version to PMUv3 for ARMv8.1
- arm64: cpufeature: Extract capped perfmon fields
- !620 KVM: arm64: limit PMU version to PMUv3 for ARMv8.1
- Module.kabi: update Module.kabi_tkci to let check kabi take effect
- !687 [Hygon][5.4][Feature]hwmon/k10temp: Add support for Hygon family 18h model 18h
- !716 [Hygon][5.4][Feature]anolis: EDAC/amd64: Adjust the maximum number of memory controllers
- !693 [Hygon][5.4][Feature]mmc: sdhci-pci: Add support for Hygon SD controller
- !690 [Hygon][5.4][Feature]ALSA: hda: Add support for Hygon family 18h model 18h HD-Audio
- !692 [Hygon][5.4][Feature]mmc: sdhci-acpi: Add device HID for Hygon eMMC controller
- !689 [Hygon][5.4][Feature]perf/x86/uncore: Add DF PMU support for Hygon family 18h model 18h
- !688 [Hygon][5.4][Feature]iommu/hygon: Add support for Hygon family 18h model 18h IOAPIC
- !686 [Hygon][5.4][Feature]x86/amd_nb: Add Hygon family 18h model 18h PCI IDs
- !685 [Hygon][5.4][Feature] EDAC/amd64: Add support for Hygon family 18h model 18h
- !520 Hygon CSV1&CSV2 support on both host & guest
- anolis: EDAC/amd64: Adjust the maximum number of memory controllers per node to 1 for Hygon family 18h model 18h
- x86/amd_nb: Add Hygon family 18h model 18h PCI IDs
- perf/x86/uncore: Add DF PMU support for Hygon family 18h model 18h
- ALSA: hda: Add support for Hygon family 18h model 18h HD-Audio
- mmc: sdhci-pci: Add support for Hygon SD controller
- mmc: sdhci-acpi: Add device HID for Hygon eMMC controller
- spi: dw: Add device HID for Hygon SPI controller
- iommu/hygon: Add support for Hygon family 18h model 18h IOAPIC
- hwmon/k10temp: Add support for Hygon family 18h model 18h
- EDAC/amd64: Add support for Hygon family 18h model 18h
- spi: dw-apb-ssi: Add Intel Keem Bay support
- spi: dw-apb-ssi: Add compatible string for DesignWare DWC_ssi
- spi: dw: Add support for Intel Keem Bay SPI
- spi: dw: Add support for DesignWare DWC_ssi
- spi: dw: Add update_cr0() callback to update CTRLR0
- spi: dw: Fix typo in few registers name
- !440 phytium:support live migration on the phytium platform
- !450 [5.4] Performance optimization of Phytium server large page vm and migration soft lockup bugfix
- !653 perf evsel: fix compile error for hisi-ptt
- perf evsel: fix compile error for hisi-ptt
- !518 [Hygon][5.4][EDAC] The width of hash value is 2 bits for hygon family 18h model 6h
- !517 [Hygon][5.4][Bugfix] Bug fix for EDAC address translation on hygon family 18h model 4h
- !647 drivers: remove some unused symbol of Chengdu NorthLink Technology N5/N6 Series Network Card drivers
- drivers: remove some unused symbol of Chengdu NorthLink Technology N5/N6 Series Network Card drivers
- !633 drivers: Update vendor name of Chengdu NorthLink Technology N5/N6
- drivers: Update vendor name of Chengdu NorthLink technology N5/N6 Series Network Card Drivers
- drivers: Update vendor name of Chengdu NorthLink Technology N5/N6 Series Network Card Drivers
- EDAC/amd64: The width of hash value is 2 bits for Hygon family 18h model 6h processors
- EDAC/amd64: Correct the address translation for hygon family 18h model 4h
- EDAC/amd64: Rename the address translation function for hygon family 18h model 4h
- KVM: arm64: limit PMU version to PMUv3 for ARMv8.1
- arm64: cpufeature: Extract capped perfmon fields
- vfio/pci: provide customized live migration VFIO driver framework
- x86/cpufeatures: Add CSV3 CPU feature
- x86/cpufeatures: Add CPUID_8C86_0000_EDX CPUID leaf
- x86/cpu: Detect memory encryption features on Hygon CPUs
- KVM: SVM: Print Hygon CSV support info if support is detected
- crypto: ccp: Print Hygon CSV API version when CSV support is detected
- x86/mm: Print CSV info into the kernel log
- x86/config: Set CONFIG_HYGON_CSV by default
- x86/mm: Provide a Kconfig entry to build the HYGON memory encryption support into the kernel
- Documentation/arch/x86: Add HYGON secure virtualization description
- crypto: ccp: Implement CSV_HGSC_CERT_IMPORT ioctl command
- crypto: ccp: Add support to detect CCP devices on Hygon 4th CPUs
- crypto: ccp: Add support to detect CCP devices on Hygon 2nd and 3rd CPUs
- crypto: ccp: Don't check tee support on Hygon platform
- crypto: ccp: Introduce hygon specific interface to support driver
- KVM: arm64: Move guest CMOs to the fault handlers
- KVM: arm64: clean the first vcpu dcache
- phytium:support live migration on the phytium platform

complete: kernel-6.6.119-49.23.oc9, target: dist-oc9

Tue, 26 May 2026 20:04:12 CST

* Tue May 26 2026 Yongliang Gao  - 6.6.119-49.23
- net: skbuff: propagate shared-frag marker through frag-transfer helpers
- net: skbuff: preserve shared-frag marker during coalescing
- sched: replace task_on_rq_queued with task_is_runnable in set_user_nice
- net/rds: reset op_nents when zerocopy page pin fails
- sched/fair: Fix kabi breakage of cfs_rq
- sched/fair: Fix unfairness caused by stalled tg_load_avg_contrib when the last task migrates out
- sched/fair: Ratelimit update to tg->load_avg
- psi: do not use jiffies for psi since it may compromise correctness
- xfs: Add cond_resched to block unmap range and reflink remap path
- Module.kabi: update Module.kabi file to let checkkabi take effect

* Fri May 15 2026 Yongliang Gao  - 6.6.119-49.22
- ptrace: slightly saner 'get_dumpable()' logic
- config: drop CONFIG_INET_ESPINTCP and CONFIG_INET6_ESPINTCP
- psi: fix possible NULL pointer deref when psi is disabled in cgroupv1
- drivers,mpt3sas: update mpt3sas driver to 57.00.00.00
- sched: change the support number of scheduler features to 64
- fuse: fix null pointer dereference in fuse_dev_ioctl_backing_close_all

* Fri May 08 2026 Yongliang Gao  - 6.6.119-49.21
- 2026-05-08 [ Kuan-Ting Chen ] xfrm: esp: avoid in-place decrypt on shared skb frags
- 2026-05-08 [ Yongliang Gao ] config,riscv: drop CONFIG_RXKAD from tencent.config

complete: kernel-debug-6.6.119-49.23.oc9, target: dist-oc9

Tue, 26 May 2026 19:55:28 CST

* Tue May 26 2026 Yongliang Gao  - 6.6.119-49.23
- net: skbuff: propagate shared-frag marker through frag-transfer helpers
- net: skbuff: preserve shared-frag marker during coalescing
- sched: replace task_on_rq_queued with task_is_runnable in set_user_nice
- net/rds: reset op_nents when zerocopy page pin fails
- sched/fair: Fix kabi breakage of cfs_rq
- sched/fair: Fix unfairness caused by stalled tg_load_avg_contrib when the last task migrates out
- sched/fair: Ratelimit update to tg->load_avg
- psi: do not use jiffies for psi since it may compromise correctness
- xfs: Add cond_resched to block unmap range and reflink remap path
- Module.kabi: update Module.kabi file to let checkkabi take effect

* Fri May 15 2026 Yongliang Gao  - 6.6.119-49.22
- ptrace: slightly saner 'get_dumpable()' logic
- config: drop CONFIG_INET_ESPINTCP and CONFIG_INET6_ESPINTCP
- psi: fix possible NULL pointer deref when psi is disabled in cgroupv1
- drivers,mpt3sas: update mpt3sas driver to 57.00.00.00
- sched: change the support number of scheduler features to 64
- fuse: fix null pointer dereference in fuse_dev_ioctl_backing_close_all

* Fri May 08 2026 Yongliang Gao  - 6.6.119-49.21
- 2026-05-08 [ Kuan-Ting Chen ] xfrm: esp: avoid in-place decrypt on shared skb frags
- 2026-05-08 [ Yongliang Gao ] config,riscv: drop CONFIG_RXKAD from tencent.config

complete: kernel-5.4.241-30.17.27.oc8, target: dist-oc8

Tue, 26 May 2026 19:50:06 CST

* Tue May 26 2026 Jianping Liu  - 5.4.241-30.17.27
- net: skbuff: propagate shared-frag marker through frag-transfer helpers
- net: skbuff: preserve shared-frag marker during coalescing
- net/rds: reset op_nents when zerocopy page pin fails
- crypto: essiv - Check ssize for decryption and in-place encryption
- xfrm: esp: avoid in-place decrypt on shared skb frags
- Revert "xfrm: esp: avoid in-place decrypt on shared skb frags"
- !739 pswiotlb: update pswiotlb to 20260410 version
- pswiotlb: Bypass pswiotlb when the numa node the device belongs to is invalid
- pswiotlb: Ensure ordering and visibility of the expansion pool's busy_record
- pswiotlb: Disable pswiotlb in the kdump kernel
- pswiotlb: Atomic operations are used when recording busy areas
- pswiotlb: Fix a issue of member variable force not being initialized
- pswiotlb: Adjust the location of the platform-identification process
- pswiotlb: Move platform-identification to cpu errata
- pswiotlb: Move pswiotlb dma functions behind dma_map_ops
- PCI: Add ACS quirk for Wangxun FF5xxx NICs

* Mon May 11 2026 Jianping Liu  - 5.4.241-30.17.26
- Ethernet: Linkdata: Supports Linkdata ethernet Controllers
- block: refactor bd_start_claiming
- arm64: tlb: Allow range operation for MAX_TLBI_RANGE_PAGES
- arm64: tlb: Improve __TLBI_VADDR_RANGE()
- arm64: tlb: Fix TLBI RANGE operand
- arm64/mm: Modify range-based tlbi to decrement scale
- KVM: arm64: Fix FEAT_TLBIRANGE bugs

* Sat May 09 2026 Jianping Liu  - 5.4.241-30.17.25
- !731 blk-wbt: don't throttle swap writes in direct reclaim
- blk-wbt: don't throttle swap writes in direct reclaim
- !726 [Hygon][5.4][Feature] pwm: dwc: Add support for Hygon pwm controller
- pwm: dwc: Add support for Hygon pwm controller
- pwm: Add DesignWare PWM Controller Driver
- !516 vfio/pci: provide customized live migration VFIO driver framework
- !720 KVM: x86: Add support for CPUID leaf 0x8C860000
- !694 [Hygon][5.4][Feature] spi: dw: Add device HID for Hygon SPI controller
- KVM: x86: Expose AVX512_VP2INTERSECT to guest
- KVM: x86: Add support for CPUID leaf 0x8C860000
- Module.kabi: update arm64 Module.kabi_tkci to let check kabi take effect
- KVM: arm64: limit PMU version to PMUv3 for ARMv8.1
- arm64: cpufeature: Extract capped perfmon fields
- !620 KVM: arm64: limit PMU version to PMUv3 for ARMv8.1
- Module.kabi: update Module.kabi_tkci to let check kabi take effect
- !687 [Hygon][5.4][Feature]hwmon/k10temp: Add support for Hygon family 18h model 18h
- !716 [Hygon][5.4][Feature]anolis: EDAC/amd64: Adjust the maximum number of memory controllers
- !693 [Hygon][5.4][Feature]mmc: sdhci-pci: Add support for Hygon SD controller
- !690 [Hygon][5.4][Feature]ALSA: hda: Add support for Hygon family 18h model 18h HD-Audio
- !692 [Hygon][5.4][Feature]mmc: sdhci-acpi: Add device HID for Hygon eMMC controller
- !689 [Hygon][5.4][Feature]perf/x86/uncore: Add DF PMU support for Hygon family 18h model 18h
- !688 [Hygon][5.4][Feature]iommu/hygon: Add support for Hygon family 18h model 18h IOAPIC
- !686 [Hygon][5.4][Feature]x86/amd_nb: Add Hygon family 18h model 18h PCI IDs
- !685 [Hygon][5.4][Feature] EDAC/amd64: Add support for Hygon family 18h model 18h
- !520 Hygon CSV1&CSV2 support on both host & guest
- anolis: EDAC/amd64: Adjust the maximum number of memory controllers per node to 1 for Hygon family 18h model 18h
- x86/amd_nb: Add Hygon family 18h model 18h PCI IDs
- perf/x86/uncore: Add DF PMU support for Hygon family 18h model 18h
- ALSA: hda: Add support for Hygon family 18h model 18h HD-Audio
- mmc: sdhci-pci: Add support for Hygon SD controller
- mmc: sdhci-acpi: Add device HID for Hygon eMMC controller
- spi: dw: Add device HID for Hygon SPI controller
- iommu/hygon: Add support for Hygon family 18h model 18h IOAPIC
- hwmon/k10temp: Add support for Hygon family 18h model 18h
- EDAC/amd64: Add support for Hygon family 18h model 18h
- spi: dw-apb-ssi: Add Intel Keem Bay support
- spi: dw-apb-ssi: Add compatible string for DesignWare DWC_ssi
- spi: dw: Add support for Intel Keem Bay SPI
- spi: dw: Add support for DesignWare DWC_ssi
- spi: dw: Add update_cr0() callback to update CTRLR0
- spi: dw: Fix typo in few registers name
- !440 phytium:support live migration on the phytium platform
- !450 [5.4] Performance optimization of Phytium server large page vm and migration soft lockup bugfix
- !653 perf evsel: fix compile error for hisi-ptt
- perf evsel: fix compile error for hisi-ptt
- !518 [Hygon][5.4][EDAC] The width of hash value is 2 bits for hygon family 18h model 6h
- !517 [Hygon][5.4][Bugfix] Bug fix for EDAC address translation on hygon family 18h model 4h
- !647 drivers: remove some unused symbol of Chengdu NorthLink Technology N5/N6 Series Network Card drivers
- drivers: remove some unused symbol of Chengdu NorthLink Technology N5/N6 Series Network Card drivers
- !633 drivers: Update vendor name of Chengdu NorthLink Technology N5/N6
- drivers: Update vendor name of Chengdu NorthLink technology N5/N6 Series Network Card Drivers
- drivers: Update vendor name of Chengdu NorthLink Technology N5/N6 Series Network Card Drivers
- EDAC/amd64: The width of hash value is 2 bits for Hygon family 18h model 6h processors
- EDAC/amd64: Correct the address translation for hygon family 18h model 4h
- EDAC/amd64: Rename the address translation function for hygon family 18h model 4h
- KVM: arm64: limit PMU version to PMUv3 for ARMv8.1
- arm64: cpufeature: Extract capped perfmon fields
- vfio/pci: provide customized live migration VFIO driver framework
- x86/cpufeatures: Add CSV3 CPU feature
- x86/cpufeatures: Add CPUID_8C86_0000_EDX CPUID leaf
- x86/cpu: Detect memory encryption features on Hygon CPUs
- KVM: SVM: Print Hygon CSV support info if support is detected
- crypto: ccp: Print Hygon CSV API version when CSV support is detected
- x86/mm: Print CSV info into the kernel log
- x86/config: Set CONFIG_HYGON_CSV by default
- x86/mm: Provide a Kconfig entry to build the HYGON memory encryption support into the kernel
- Documentation/arch/x86: Add HYGON secure virtualization description
- crypto: ccp: Implement CSV_HGSC_CERT_IMPORT ioctl command
- crypto: ccp: Add support to detect CCP devices on Hygon 4th CPUs
- crypto: ccp: Add support to detect CCP devices on Hygon 2nd and 3rd CPUs
- crypto: ccp: Don't check tee support on Hygon platform
- crypto: ccp: Introduce hygon specific interface to support driver
- KVM: arm64: Move guest CMOs to the fault handlers
- KVM: arm64: clean the first vcpu dcache
- phytium:support live migration on the phytium platform

complete: firefox-140.10.2-1.oc8.ap.2, target: dist-oc8-firefox

Tue, 26 May 2026 18:35:05 CST

* Tue May 26 2026 OpenCloudOS Release Engineering  - 140.10.2-1.ap.2
- Applied Autopatch for oc8

* Tue May 26 2026 TencentOS Team  - 140.10.2-1.ap.1
- Applied Autopatch for ts3

* Thu May 14 2026 Jan Horak  - 140.10.2-1
- Update to 140.10.2 ESR

complete: firefox-140.11.0-1.oc9.ap.2, target: dist-oc9

Tue, 26 May 2026 16:12:49 CST

* Tue May 26 2026 OpenCloudOS Release Engineering  - 140.11.0-1.ap.2
- Applied Autopatch for oc9

* Mon May 25 2026 TencentOS Team  - 140.11.0-1.ap.1
- Applied Autopatch for ts4

* Thu May 21 2026 PkgAgent Robot  - 140.11.0-1
- [Type] security
- [DESC] Update to 140.11.0esr to fix CVE-2026-8946 CVE-2026-8388 CVE-2026-8947
- CVE-2026-8391 CVE-2026-8401 CVE-2026-8949 CVE-2026-8950 CVE-2026-8953 CVE-2026-8954
- CVE-2026-8955 CVE-2026-8956 CVE-2026-8957 CVE-2026-8958 CVE-2026-8959 CVE-2026-8961
- CVE-2026-8962 CVE-2026-8968 CVE-2026-8970 CVE-2026-8974 CVE-2026-8975

complete: redis-7.2.7-6.oc9, target: dist-oc9

Tue, 26 May 2026 14:47:36 CST

* Mon May 25 2026 PkgAgent Robot  - 7.2.7-6
- [Type] security
- [DESC] Fix CVE-2026-23479: use-after-free when evicting blocked client during unblock

* Thu Oct 09 2025 Zidong Huang  - 7.2.7-5
- [Type] security
- [DESC] apply upstream patch to fix CVE-2025-46817 and CVE-2025-49844

* Wed Jul 09 2025 Zidong Huang  - 7.2.7-4
- [Type] security
- [DESC] apply upstream patch to fix CVE-2025-32023 and CVE-2025-48367

complete: xorg-x11-server-21.1.8-17.oc9, target: dist-oc9

Tue, 26 May 2026 14:39:51 CST

* Tue May 26 2026 PkgAgent Robot  - 21.1.8-17
- [Type] security
- [DESC] Fix CVE-2026-34002 (out-of-bounds read in XKB CheckModifierMap)

* Wed May 06 2026 PkgAgent Robot  - 21.1.8-16
- [Type] security
- [DESC] Fix CVE-2026-34003, CVE-2026-34001, CVE-2026-33999

* Wed Nov 05 2025 Xinlong Chen  - 21.1.8-15
- [Type] security
- [DESC] fix CVEs: CVE-2025-62229 CVE-2025-62230 CVE-2025-62231

complete: xorg-x11-server-Xwayland-23.1.2-11.oc9, target: dist-oc9

Tue, 26 May 2026 14:35:46 CST

* Tue May 26 2026 PkgAgent Robot  - 23.1.2-11
- [Type] security
- [DESC] Fix CVE-2026-34002: out-of-bounds read in XKB modifier map handling

* Wed May 06 2026 PkgAgent Robot  - 23.1.2-10
- [Type] security
- [DESC] Fix CVE-2026-33999, CVE-2026-34001, CVE-2026-34003

* Wed Nov 05 2025 Xinlong Chen  - 23.1.2-9
- [Type] security
- [DESC] fix CVEs: CVE-2025-62229 CVE-2025-62230 CVE-2025-62231

complete: hplip-3.26.4-1.oc9, target: dist-oc9

Tue, 26 May 2026 14:34:14 CST

* Mon May 25 2026 Upgrade Robot  - 3.26.4-1
- Upgrade to version 3.26.4
- Update to 3.26.4 for fix CVE-2026-8631, CVE-2026-8632

* Thu Sep 26 2024 OpenCloudOS Release Engineering  - 3.22.10-6
- Rebuilt for clarifying the packages requirement in BaseOS and AppStream

* Fri Aug 16 2024 OpenCloudOS Release Engineering  - 3.22.10-5
- Rebuilt for loongarch release

complete: opencryptoki-3.27.0-1.oc9, target: dist-oc9

Tue, 26 May 2026 14:32:43 CST

* Mon May 25 2026 wynnfeng  - 3.27.0-1
- update to 3.27.0 and fix CVE-2026-40253

* Thu Sep 26 2024 OpenCloudOS Release Engineering  - 3.22.0-3
- Rebuilt for clarifying the packages requirement in BaseOS and AppStream

* Fri Aug 16 2024 OpenCloudOS Release Engineering  - 3.22.0-2
- Rebuilt for loongarch release

complete: nginx-1.26.3-1.oc9.ap.6, target: dist-oc9

Tue, 26 May 2026 14:31:46 CST

* Tue May 26 2026 OpenCloudOS Release Engineering  - 1.26.3-1.ap.6
- Applied Autopatch for oc9

* Tue May 26 2026 PkgAgent Robot  - 1.26.3-1.ap.5
- [Type] security
- [DESC] Fix CVE-2026-9256, CVE-2026-40701

* Thu May 14 2026 PkgAgent Robot  - 1.26.3-1.ap.4
- [Type] security
- [DESC] Fix CVE-2026-42945 vulnerability

complete: thunderbird-140.11.0-1.oc9, target: dist-oc9-epol

Tue, 26 May 2026 03:39:26 CST

* Fri May 22 2026 PkgAgent Robot  - 140.11.0-1
- [Type] security
- [DESC] Update to 140.11.0 (fixes CVE-2026-8950 CVE-2026-8947)

* Mon May 11 2026 PkgAgent Robot  - 140.10.1-1
- [Type] security
- [DESC] Update to 140.10.1.
- [DESC] Fix CVE-2026-7323

* Wed May 06 2026 Jiaxin Yang  - 140.10.0-1
- [Type] security
- [DESC] Update to 140.10.0.