[AutoPR- Security] Patch libreswan for CVE-2026-50722, CVE-2026-50721, CVE-2026-12413 [HIGH]#17904
Conversation
Kanishk-Bansal
left a comment
There was a problem hiding this comment.
Patch Analysis (all patches are taken from 4.15 supported patch galary from maintainers, they apply byte accurate)
- Buddy Build
- patch applied during the build (check
rpm.log) - patch include an upstream reference
- PR has security tag
🔒 CVE Patch Review: CVE-2026-12413, CVE-2026-50721, CVE-2026-50722PR #17904 — [AutoPR- Security] Patch libreswan for CVE-2026-50722, CVE-2026-50721, CVE-2026-12413 [HIGH] Spec File Validation
Build Verification
🤖 AI Build Log Analysis
🧪 Test Log Analysis
🤖 AI Test Log Analysis
Patch Analysis
Detailed analysisCore fix equivalence: yes. Upstream contains one hunk affecting
|
Auto Patch libreswan for CVE-2026-50722, CVE-2026-50721, CVE-2026-12413.
Autosec pipeline run -> https://dev.azure.com/mariner-org/mariner/_build/results?buildId=1152289&view=results
Merge Checklist
All boxes should be checked before merging the PR (just tick any boxes which don't apply to this PR)
*-staticsubpackages, etc.) have had theirReleasetag incremented../cgmanifest.json,./toolkit/scripts/toolchain/cgmanifest.json,.github/workflows/cgmanifest.json)./LICENSES-AND-NOTICES/SPECS/data/licenses.json,./LICENSES-AND-NOTICES/SPECS/LICENSES-MAP.md,./LICENSES-AND-NOTICES/SPECS/LICENSE-EXCEPTIONS.PHOTON)*.signatures.jsonfilessudo make go-tidy-allandsudo make go-test-coveragepassSummary
What does the PR accomplish, why was it needed?
Change Log
Does this affect the toolchain?
YES/NO
Associated issues
Links to CVEs
Test Methodology