ChangeLog for: 2025-07-11 00:14:41

a/kernel-firmware-20250708_99d64b4-noarch-1.txz:  Upgraded.
a/kernel-generic-6.12.37-x86_64-1.txz:  Upgraded.
d/kernel-headers-6.12.37-x86-1.txz:  Upgraded.
k/kernel-source-6.12.37-noarch-1.txz:  Upgraded.
l/libwebp-1.6.0-x86_64-1.txz:  Upgraded.
n/gnutls-3.8.10-x86_64-1.txz:  Upgraded.
  This update fixes security issues:
  libgnutls: Fix NULL pointer dereference when 2nd Client Hello omits PSK.
  Reported by Stefan Bühler.
  libgnutls: Fix heap read buffer overrun in parsing X.509 SCTS timestamps.
  Spotted by oss-fuzz and reported by OpenAI Security Research Team,
  and fix developed by Andrew Hamilton.
  libgnutls: Fix double-free upon error when exporting otherName in SAN.
  Reported by OpenAI Security Research Team.
  certtool: Fix 1-byte write buffer overrun when parsing template.
  Reported by David Aitel.
  For more information, see:
    https://www.cve.org/CVERecord?id=CVE-2025-6395
    https://www.cve.org/CVERecord?id=CVE-2025-32989
    https://www.cve.org/CVERecord?id=CVE-2025-32988
    https://www.cve.org/CVERecord?id=CVE-2025-32990
  (* Security fix *)
n/postfix-3.10.3-x86_64-1.txz:  Upgraded.
n/wireless-regdb-2025.07.10-x86_64-1.txz:  Upgraded.
xap/mozilla-thunderbird-140.0.1esr-x86_64-1.txz:  Upgraded.
  This is a bugfix release.
  For more information, see:
    https://www.mozilla.org/en-US/thunderbird/140.0.1esr/releasenotes/
isolinux/initrd.img:  Rebuilt.
kernels/*:  Upgraded.
testing/packages/linux-6.15.x/kernel-generic-6.15.6-x86_64-1.txz:  Upgraded.
testing/packages/linux-6.15.x/kernel-headers-6.15.6-x86-1.txz:  Upgraded.
testing/packages/linux-6.15.x/kernel-source-6.15.6-noarch-1.txz:  Upgraded.
usb-and-pxe-installers/usbboot.img:  Rebuilt.