Release notes for Yocto-5.2.3 (Walnascar)
Security Fixes in Yocto-5.2.3
avahi: Fix CVE-2024-52615 and CVE-2024-52616
bind: Fix:cve_nist:2025-40777
binutils: Fix CVE-2025-5245, CVE-2025-7545 and CVE-2025-7546
busybox: Fix CVE-2023-39810
coreutils: Fix CVE-2025-5278
curl: Ignore CVE-2025-4947 and CVE-2025-5025
dpkg: Fix CVE-2025-6297
dropbear: Fix CVE-2025-47203
gdk-pixbuf: Fix CVE-2025-7345
git: Fix CVE-2025-27613, CVE-2025-27614, CVE-2025-46334, CVE-2025-46835, CVE-2025-48384, CVE-2025-48385 and CVE-2025-48386
gnutls: Fix CVE-2025-6395, CVE-2025-32988, CVE-2025-32989 and CVE-2025-32990
go: Fix CVE-2025-4674
icu: Fix CVE-2025-5222
iputils: Fix CVE-2025-48964
libarchive: Fix CVE-2025-5915
libpam: Fix CVE-2024-10963
libsoup-2.4: Fix CVE-2025-4945
libsoup: Fix CVE-2025-4945, CVE-2025-6021, CVE-2025-6170, CVE-2025-49794, CVE-2025-49795 and CVE-2025-49796
linux-yocto/6.12: Ignore CVE-2021-47342, CVE-2022-49934, CVE-2022-49935, CVE-2022-49936, CVE-2022-49937, CVE-2022-49938, CVE-2022-49939, CVE-2022-49940, CVE-2022-49942, CVE-2022-49943, CVE-2022-49944, CVE-2022-49945, CVE-2022-49946, CVE-2022-49947, CVE-2022-49948, CVE-2022-49949, CVE-2022-49950, CVE-2022-49951, CVE-2022-49952, CVE-2022-49953, CVE-2022-49954, CVE-2022-49955, CVE-2022-49956, CVE-2022-49957, CVE-2022-49958, CVE-2022-49959, CVE-2022-49960, CVE-2022-49961, CVE-2022-49962, CVE-2022-49963, CVE-2022-49964, CVE-2022-49965, CVE-2022-49966, CVE-2022-49967, CVE-2022-49968, CVE-2022-49969, CVE-2022-49970, CVE-2022-49971, CVE-2022-49972, CVE-2022-49973, CVE-2022-49974, CVE-2022-49975, CVE-2022-49976, CVE-2022-49977, CVE-2022-49978, CVE-2022-49979, CVE-2022-49980, CVE-2022-49981, CVE-2022-49982, CVE-2022-49983, CVE-2022-49984, CVE-2022-49985, CVE-2022-49986, CVE-2022-49987, CVE-2022-49989, CVE-2022-49990, CVE-2022-49991, CVE-2022-49992, CVE-2022-49993, CVE-2022-49994, CVE-2022-49995, CVE-2022-49996, CVE-2022-49997, CVE-2022-49998, CVE-2022-49999, CVE-2022-50000, CVE-2022-50001, CVE-2022-50002, CVE-2022-50003, CVE-2022-50004, CVE-2022-50005, CVE-2022-50006, CVE-2022-50007, CVE-2022-50008, CVE-2022-50009, CVE-2022-50010, CVE-2022-50011, CVE-2022-50012, CVE-2022-50013, CVE-2022-50014, CVE-2022-50015, CVE-2022-50016, CVE-2022-50017, CVE-2022-50019, CVE-2022-50020, CVE-2022-50021, CVE-2022-50022, CVE-2022-50023, CVE-2022-50024, CVE-2022-50025, CVE-2022-50026, CVE-2022-50027, CVE-2022-50028, CVE-2022-50029, CVE-2022-50030, CVE-2022-50031, CVE-2022-50032, CVE-2022-50033, CVE-2022-50034, CVE-2022-50035, CVE-2022-50036, CVE-2022-50037, CVE-2022-50038, CVE-2022-50039, CVE-2022-50040, CVE-2022-50041, CVE-2022-50042, CVE-2022-50043, CVE-2022-50044, CVE-2022-50045, CVE-2022-50046, CVE-2022-50047, CVE-2022-50048, CVE-2022-50049, CVE-2022-50050, CVE-2022-50051, CVE-2022-50052, CVE-2022-50053, CVE-2022-50054, CVE-2022-50055, CVE-2022-50056, CVE-2022-50057, CVE-2022-50058, CVE-2022-50059, CVE-2022-50060, CVE-2022-50061, CVE-2022-50062, CVE-2022-50063, CVE-2022-50064, CVE-2022-50065, CVE-2022-50066, CVE-2022-50067, CVE-2022-50068, CVE-2022-50069, CVE-2022-50070, CVE-2022-50071, CVE-2022-50072, CVE-2022-50073, CVE-2022-50074, CVE-2022-50075, CVE-2022-50076, CVE-2022-50077, CVE-2022-50078, CVE-2022-50079, CVE-2022-50080, CVE-2022-50082, CVE-2022-50083, CVE-2022-50084, CVE-2022-50085, CVE-2022-50086, CVE-2022-50087, CVE-2022-50088, CVE-2022-50089, CVE-2022-50090, CVE-2022-50091, CVE-2022-50092, CVE-2022-50093, CVE-2022-50094, CVE-2022-50095, CVE-2022-50096, CVE-2022-50097, CVE-2022-50098, CVE-2022-50099, CVE-2022-50100, CVE-2022-50101, CVE-2022-50102, CVE-2022-50103, CVE-2022-50104, CVE-2022-50105, CVE-2022-50106, CVE-2022-50107, CVE-2022-50108, CVE-2022-50109, CVE-2022-50110, CVE-2022-50111, CVE-2022-50112, CVE-2022-50113, CVE-2022-50114, CVE-2022-50115, CVE-2022-50116, CVE-2022-50117, CVE-2022-50118, CVE-2022-50119, CVE-2022-50120, CVE-2022-50121, CVE-2022-50122, CVE-2022-50123, CVE-2022-50124, CVE-2022-50125, CVE-2022-50126, CVE-2022-50127, CVE-2022-50129, CVE-2022-50130, CVE-2022-50131, CVE-2022-50132, CVE-2022-50133, CVE-2022-50134, CVE-2022-50135, CVE-2022-50136, CVE-2022-50137, CVE-2022-50138, CVE-2022-50139, CVE-2022-50140, CVE-2022-50141, CVE-2022-50142, CVE-2022-50143, CVE-2022-50144, CVE-2022-50145, CVE-2022-50146, CVE-2022-50147, CVE-2022-50148, CVE-2022-50149, CVE-2022-50151, CVE-2022-50152, CVE-2022-50153, CVE-2022-50154, CVE-2022-50155, CVE-2022-50156, CVE-2022-50157, CVE-2022-50158, CVE-2022-50159, CVE-2022-50160, CVE-2022-50161, CVE-2022-50162, CVE-2022-50163, CVE-2022-50164, CVE-2022-50165, CVE-2022-50166, CVE-2022-50167, CVE-2022-50168, CVE-2022-50169, CVE-2022-50170, CVE-2022-50171, CVE-2022-50172, CVE-2022-50173, CVE-2022-50174, CVE-2022-50175, CVE-2022-50176, CVE-2022-50177, CVE-2022-50178, CVE-2022-50179, CVE-2022-50181, CVE-2022-50182, CVE-2022-50183, CVE-2022-50184, CVE-2022-50185, CVE-2022-50186, CVE-2022-50187, CVE-2022-50188, CVE-2022-50189, CVE-2022-50190, CVE-2022-50191, CVE-2022-50192, CVE-2022-50193, CVE-2022-50194, CVE-2022-50195, CVE-2022-50196, CVE-2022-50197, CVE-2022-50198, CVE-2022-50199, CVE-2022-50200, CVE-2022-50201, CVE-2022-50202, CVE-2022-50203, CVE-2022-50204, CVE-2022-50205, CVE-2022-50206, CVE-2022-50207, CVE-2022-50208, CVE-2022-50209, CVE-2022-50210, CVE-2022-50211, CVE-2022-50212, CVE-2022-50213, CVE-2022-50214, CVE-2022-50215, CVE-2022-50217, CVE-2022-50218, CVE-2022-50219, CVE-2022-50220, CVE-2022-50221, CVE-2022-50222, CVE-2022-50223, CVE-2022-50224, CVE-2022-50225, CVE-2022-50226, CVE-2022-50227, CVE-2022-50228, CVE-2022-50229, CVE-2022-50231, CVE-2024-26710, CVE-2024-57976 and CVE-2024-58091
linux-yocto/6.12: (cont.) Ignore CVE-2025-21817, CVE-2025-22101, CVE-2025-22112, CVE-2025-22119, CVE-2025-22122, CVE-2025-22123, CVE-2025-22128, CVE-2025-23137, CVE-2025-23155, CVE-2025-37842, CVE-2025-37855, CVE-2025-38000, CVE-2025-38001, CVE-2025-38002, CVE-2025-38003, CVE-2025-38004, CVE-2025-38005, CVE-2025-38006, CVE-2025-38007, CVE-2025-38008, CVE-2025-38009, CVE-2025-38010, CVE-2025-38011, CVE-2025-38012, CVE-2025-38013, CVE-2025-38014, CVE-2025-38015, CVE-2025-38016, CVE-2025-38017, CVE-2025-38018, CVE-2025-38019, CVE-2025-38020, CVE-2025-38021, CVE-2025-38022, CVE-2025-38023, CVE-2025-38024, CVE-2025-38025, CVE-2025-38027, CVE-2025-38028, CVE-2025-38031, CVE-2025-38032, CVE-2025-38033, CVE-2025-38034, CVE-2025-38035, CVE-2025-38037, CVE-2025-38038, CVE-2025-38039, CVE-2025-38040, CVE-2025-38043, CVE-2025-38044, CVE-2025-38045, CVE-2025-38047, CVE-2025-38048, CVE-2025-38050, CVE-2025-38051, CVE-2025-38052, CVE-2025-38053, CVE-2025-38054, CVE-2025-38055, CVE-2025-38056, CVE-2025-38057, CVE-2025-38058, CVE-2025-38059, CVE-2025-38060, CVE-2025-38061, CVE-2025-38062, CVE-2025-38063, CVE-2025-38065, CVE-2025-38066, CVE-2025-38068, CVE-2025-38069, CVE-2025-38070, CVE-2025-38071, CVE-2025-38072, CVE-2025-38073, CVE-2025-38074, CVE-2025-38075, CVE-2025-38076, CVE-2025-38077, CVE-2025-38078, CVE-2025-38079, CVE-2025-38080, CVE-2025-38081, CVE-2025-38082, CVE-2025-38083, CVE-2025-38084, CVE-2025-38085, CVE-2025-38086, CVE-2025-38087, CVE-2025-38088, CVE-2025-38089, CVE-2025-38090, CVE-2025-38091, CVE-2025-38092, CVE-2025-38093, CVE-2025-38094, CVE-2025-38095, CVE-2025-38096, CVE-2025-38097, CVE-2025-38098, CVE-2025-38099, CVE-2025-38100, CVE-2025-38101, CVE-2025-38102, CVE-2025-38103, CVE-2025-38106, CVE-2025-38107, CVE-2025-38108, CVE-2025-38109, CVE-2025-38110, CVE-2025-38111, CVE-2025-38112, CVE-2025-38113, CVE-2025-38114, CVE-2025-38115, CVE-2025-38116, CVE-2025-38117, CVE-2025-38118, CVE-2025-38119, CVE-2025-38120, CVE-2025-38121, CVE-2025-38122, CVE-2025-38123, CVE-2025-38124, CVE-2025-38125, CVE-2025-38126, CVE-2025-38127, CVE-2025-38128, CVE-2025-38129, CVE-2025-38130, CVE-2025-38131, CVE-2025-38133, CVE-2025-38134, CVE-2025-38135, CVE-2025-38136, CVE-2025-38138, CVE-2025-38139, CVE-2025-38141, CVE-2025-38142, CVE-2025-38143, CVE-2025-38144, CVE-2025-38145, CVE-2025-38146, CVE-2025-38147, CVE-2025-38148, CVE-2025-38149, CVE-2025-38150, CVE-2025-38151, CVE-2025-38153, CVE-2025-38154, CVE-2025-38155, CVE-2025-38156, CVE-2025-38157, CVE-2025-38158, CVE-2025-38159, CVE-2025-38160, CVE-2025-38161, CVE-2025-38162, CVE-2025-38163, CVE-2025-38164, CVE-2025-38165, CVE-2025-38166, CVE-2025-38167, CVE-2025-38168, CVE-2025-38169, CVE-2025-38170, CVE-2025-38171, CVE-2025-38172, CVE-2025-38173, CVE-2025-38174, CVE-2025-38175, CVE-2025-38176, CVE-2025-38177, CVE-2025-38178, CVE-2025-38179, CVE-2025-38180, CVE-2025-38181, CVE-2025-38182, CVE-2025-38183, CVE-2025-38184, CVE-2025-38185, CVE-2025-38186, CVE-2025-38188, CVE-2025-38189, CVE-2025-38190, CVE-2025-38191, CVE-2025-38192, CVE-2025-38193, CVE-2025-38194, CVE-2025-38195, CVE-2025-38196, CVE-2025-38197, CVE-2025-38198, CVE-2025-38200, CVE-2025-38201, CVE-2025-38202, CVE-2025-38208, CVE-2025-38209, CVE-2025-38210, CVE-2025-38211, CVE-2025-38212, CVE-2025-38213, CVE-2025-38214, CVE-2025-38215, CVE-2025-38216, CVE-2025-38217, CVE-2025-38218, CVE-2025-38219, CVE-2025-38220, CVE-2025-38221, CVE-2025-38222, CVE-2025-38223, CVE-2025-38224, CVE-2025-38225, CVE-2025-38226, CVE-2025-38227, CVE-2025-38228, CVE-2025-38229, CVE-2025-38230, CVE-2025-38231, CVE-2025-38232, CVE-2025-38233, CVE-2025-38235, CVE-2025-38236, CVE-2025-38238, CVE-2025-38239, CVE-2025-38241, CVE-2025-38242, CVE-2025-38243, CVE-2025-38244, CVE-2025-38245, CVE-2025-38246, CVE-2025-38247, CVE-2025-38249, CVE-2025-38250, CVE-2025-38251, CVE-2025-38252, CVE-2025-38253, CVE-2025-38254, CVE-2025-38255, CVE-2025-38256, CVE-2025-38257, CVE-2025-38258, CVE-2025-38259, CVE-2025-38260, CVE-2025-38262, CVE-2025-38263, CVE-2025-38264, CVE-2025-38265, CVE-2025-38266, CVE-2025-38267, CVE-2025-38268, CVE-2025-38269, CVE-2025-38270, CVE-2025-38271, CVE-2025-38273, CVE-2025-38274, CVE-2025-38275, CVE-2025-38276, CVE-2025-38277, CVE-2025-38278, CVE-2025-38279, CVE-2025-38280, CVE-2025-38281, CVE-2025-38282, CVE-2025-38283, CVE-2025-38285, CVE-2025-38286, CVE-2025-38287, CVE-2025-38288, CVE-2025-38289, CVE-2025-38290, CVE-2025-38291, CVE-2025-38292, CVE-2025-38293, CVE-2025-38294, CVE-2025-38295, CVE-2025-38296, CVE-2025-38297, CVE-2025-38298, CVE-2025-38299, CVE-2025-38300, CVE-2025-38301, CVE-2025-38302, CVE-2025-38303, CVE-2025-38304, CVE-2025-38305, CVE-2025-38307, CVE-2025-38308, CVE-2025-38309, CVE-2025-38310, CVE-2025-38312, CVE-2025-38313, CVE-2025-38314, CVE-2025-38315, CVE-2025-38316, CVE-2025-38317, CVE-2025-38318, CVE-2025-38319, CVE-2025-38320, CVE-2025-38321, CVE-2025-38322, CVE-2025-38323, CVE-2025-38324, CVE-2025-38325, CVE-2025-38326, CVE-2025-38327, CVE-2025-38328, CVE-2025-38329, CVE-2025-38330, CVE-2025-38331, CVE-2025-38332, CVE-2025-38333, CVE-2025-38334, CVE-2025-38336, CVE-2025-38337, CVE-2025-38338, CVE-2025-38339, CVE-2025-38340, CVE-2025-38341, CVE-2025-38342, CVE-2025-38343, CVE-2025-38344, CVE-2025-38345, CVE-2025-38346, CVE-2025-38347 and CVE-2025-38348
ncurses: Fix CVE-2025-6141
python3: Fix CVE-2025-8194
sqlite3: Fix CVE-2025-6965
sudo: Fix CVE-2025-32462 and CVE-2025-32463
webkitgtk: Fix CVE-2025-24223, CVE-2025-31204, CVE-2025-31205, CVE-2025-31206, CVE-2025-31215 and CVE-2025-31257
xserver-xorg: Fix CVE-2025-49175, CVE-2025-49176, CVE-2025-49177, CVE-2025-49178, CVE-2025-49179 and CVE-2025-49180
Fixes in Yocto-5.2.3
bind: upgrade to 9.20.11
binutils: stable 2.44 branch updates
bitbake: test/fetch: Switch u-boot based test to use our own mirror
bitbake: utils: Optimise signal/sigmask performance
build-appliance-image: Update to walnascar head revision
ca-certificates: correct the SRC_URI
conf.py: improve SearchEnglish to handle terms with dots
dev-manual/start.rst: added missing command in Optimize your VHDX file using DiskPart
dev-manual/start.rst: mention that PERSISTENT_DIR should be shared too
dev-manual/start.rst: remove basic setup for hash equivalence
dev-manual/start.rst: remove shared PERSISTENT_DIR mentions
docs/variables.rst: remove references to obsolete tar packaging
git: upgrade to 2.49.1
glibc: stable 2.41 branch updates
gnutls: upgrade to 3.8.10
go: upgrade to 1.24.5
kea: set correct permissions for /var/run/kea
libpam: upgrade to 1.7.1
linux-yocto/6.12: riscv tune fragments
linux-yocto/6.12: riscv: Enable TUNE_FEATURES based KERNEL_FEATURES
linux-yocto/6.12: update to v6.12.38
linux-yocto/6.12: yaffs2: silence warnings
ltp: Skip semctl08 when __USE_TIME64_REDIRECTS is defined
ltp: backport patch to fix compilation error for Skylake -march=x86-64-v3
migration-guides: add release notes for 4.0.28, 5.0.11, 5.2.2
mingetty: fix do_package warning
mtools: upgrade to 4.0.49
openssl: upgrade to 3.4.2
orc: set CVE_PRODUCT
overview-manual/concepts.rst: fix sayhello hardcoded bindir
overview-manual/concepts.rst: mention PERSISTENT_DIR for user configuration
overview-manual/yp-intro.rst: fix broken link to article
poky.conf: bump version for 5.2.3
poky.yaml.in: increase minimum RAM from 8 to 32
python3: update CVE product
ref-manual/classes.rst: document the testexport class
ref-manual/classes.rst: drop obsolete QA errors
ref-manual/classes.rst: insane: drop cve_status_not_in_db
ref-manual/structure.rst: remove shared PERSISTENT_DIR mentions
ref-manual/structure.rst: update with info on PERSISTENT_DIR
ref-manual/system-requirements.rst: update supported distributions
ref-manual/variables.rst: document SPL_DTB_BINARY
ref-manual/variables.rst: document the FIT_CONF_PREFIX variable
ruby-ptest: some ptest fixes
ruby: upgrade to 3.4.4
rust: Fix malformed hunk header in rustix patch
scripts/install-buildtools: Update to 5.2.2
sudo: upgrade to 1.9.17p1
test-manual/understand-autobuilder.rst: mention hashequiv server
webkitgtk: Fix build break on non-arm/non-x86 systems
webkitgtk: Use gcc to compile for arm target
webkitgtk: upgrade to 2.48.2
xserver-xorg: upgrade to 21.1.18
Known Issues in Yocto-5.2.3
N/A
Contributors to Yocto-5.2.3
Aleksandar Nikolic
Antonin Godard
Archana Polampalli
Bruce Ashfield
Changqing Li
Chen Qi
Deepesh Varatharajan
Divya Chellam
Enrico Jörns
Erik Lindsten
Gyorgy Sarvari
Hongxu Jia
Jiaying Song
Jinfeng Wang
Khem Raj
Lee Chee Yang
Marco Cavallini
Mark Hatle
Peter Marko
Praveen Kumar
Richard Purdie
Robert P. J. Day
Steve Sakoman
Vijay Anusuri
Wang Mingyu
Yash Shinde
Yi Zhao
Yogesh Tyagi
Yogita Urade
Zhang Peng
Repositories / Downloads for Yocto-5.2.3
poky
Repository Location: https://git.yoctoproject.org/poky
Branch: walnascar
Tag: yocto-5.2.3
Git Revision: db04028d9070f05c3b5dee728473fb234bd24f05
Release Artefact: poky-db04028d9070f05c3b5dee728473fb234bd24f05
sha: 32e1d457d5de0041ee423727b5690fbde58c485a42b8ed81ecebb7bb2d8c58cc
Download Locations: https://downloads.yoctoproject.org/releases/yocto/yocto-5.2.3/poky-db04028d9070f05c3b5dee728473fb234bd24f05.tar.bz2 https://mirrors.kernel.org/yocto/yocto/yocto-5.2.3/poky-db04028d9070f05c3b5dee728473fb234bd24f05.tar.bz2
openembedded-core
Repository Location: https://git.openembedded.org/openembedded-core
Branch: walnascar
Tag: yocto-5.2.3
Git Revision: 347cb0861dde58613541ce692778f907943a60ea
Release Artefact: oecore-347cb0861dde58613541ce692778f907943a60ea
sha: 88cbb79f7bc2de9d931cfa1092463005189972d4584cdae1562621df79f09fbd
Download Locations: https://downloads.yoctoproject.org/releases/yocto/yocto-5.2.3/oecore-347cb0861dde58613541ce692778f907943a60ea.tar.bz2 https://mirrors.kernel.org/yocto/yocto/yocto-5.2.3/oecore-347cb0861dde58613541ce692778f907943a60ea.tar.bz2
meta-mingw
Repository Location: https://git.yoctoproject.org/meta-mingw
Branch: walnascar
Tag: yocto-5.2.3
Git Revision: edce693e1b8fabd84651aa6c0888aafbcf238577
Release Artefact: meta-mingw-edce693e1b8fabd84651aa6c0888aafbcf238577
sha: 6cfed41b54f83da91a6cf201ec1c2cd4ac284f642b1268c8fa89d2335ea2bce1
Download Locations: https://downloads.yoctoproject.org/releases/yocto/yocto-5.2.3/meta-mingw-edce693e1b8fabd84651aa6c0888aafbcf238577.tar.bz2 https://mirrors.kernel.org/yocto/yocto/yocto-5.2.3/meta-mingw-edce693e1b8fabd84651aa6c0888aafbcf238577.tar.bz2
bitbake
Repository Location: https://git.openembedded.org/bitbake
Branch: 2.12
Tag: yocto-5.2.3
Git Revision: 710f98844ae30416bdf6a01b655df398b49574ec
Release Artefact: bitbake-710f98844ae30416bdf6a01b655df398b49574ec
sha: e30aa4739e3104634184b1dd7d5502f0994a725daec15929c4adf1164aa1296d
Download Locations: https://downloads.yoctoproject.org/releases/yocto/yocto-5.2.3/bitbake-710f98844ae30416bdf6a01b655df398b49574ec.tar.bz2 https://mirrors.kernel.org/yocto/yocto/yocto-5.2.3/bitbake-710f98844ae30416bdf6a01b655df398b49574ec.tar.bz2
meta-yocto
Repository Location: https://git.yoctoproject.org/meta-yocto
Branch: walnascar
Tag: yocto-5.2.3
Git Revision: ce011415ab4e583a4545cd91aceff4190225f31d
yocto-docs
Repository Location: https://git.yoctoproject.org/yocto-docs
Branch: walnascar
Tag: yocto-5.2.3
Git Revision: e664a70adb5bc19041b3b5f553fb90dcddff99d0