koji: recent builds

complete: qemu-8.2.2-49.ocs23, target: dist-ocs23-base

Fri, 17 Apr 2026 17:42:40 CST

* Thu Apr 16 2026 PkgAgent Robot  - 8.2.2-49
- [Type] security
- [DESC] Fix CVE-2026-3842 vulnerability in Hyper-V Synthetic Debugging device

* Thu Apr 09 2026 Wei Wang  - 8.2.2-48
- [Type] enhancement
- [DESC] Add Hygon SM3/SM4 and TSC Adjust support

* Fri Mar 06 2026 Chunsheng Luo  - 8.2.2-47
- Fix Heap-buffer-overflow in virtio-sound [CVE-2026-3195]

complete: grafana-10.2.6-28.ocs23, target: dist-ocs23-base

Fri, 17 Apr 2026 16:20:44 CST

* Wed Apr 15 2026 Zhang Yu  - 10.2.6-28
- [type] security
- [desc] bump axios to 1.15.0(CVE-2026-40175, CVE-2026-25639, CVE-2025-62718 and CVE-2026-39865).

* Thu Apr 09 2026 Zhang Yu  - 10.2.6-27
- [type] security
- [desc] bump handlebars to 4.7.9(CVE-2026-33937 and CVE-2026-33940).

* Fri Mar 13 2026 Zhang Yu  - 10.2.6-26
- [type] security
- [desc] bump simple-git to 3.32.3(CVE-2026-28292).

complete: libssh-0.10.5-7.ocs23, target: dist-ocs23-base

Fri, 17 Apr 2026 11:14:09 CST

* Wed Apr 15 2026 PkgAgent Robot  - 0.10.5-7
- [Type] security
- [DESC] Fix CVE-2026-0964: scp: Reject invalid paths received through scp

* Mon Sep 15 2025 Xin Cheng  - 0.10.5-6
- Update Source0

* Thu Sep 26 2024 OpenCloudOS Release Engineering  - 0.10.5-5
- Rebuilt for clarifying the packages requirement in BaseOS and AppStream

complete: findutils-4.9.0-6.ocs23.rva23, target: dist-ocs23-riscv-rva23

Thu, 16 Apr 2026 17:59:42 CST

* Wed Apr 15 2026 maxonxie  - 4.9.0-6
- Add riscv64 support

* Thu Sep 26 2024 OpenCloudOS Release Engineering  - 4.9.0-6
- Rebuilt for clarifying the packages requirement in BaseOS and AppStream

* Fri Aug 16 2024 OpenCloudOS Release Engineering  - 4.9.0-5
- Rebuilt for loongarch release

complete: bison-3.8.2-6.ocs23.rva23, target: dist-ocs23-riscv-rva23

Thu, 16 Apr 2026 17:37:04 CST

* Thu Sep 26 2024 OpenCloudOS Release Engineering  - 3.8.2-6
- Rebuilt for clarifying the packages requirement in BaseOS and AppStream

* Fri Aug 16 2024 OpenCloudOS Release Engineering  - 3.8.2-5
- Rebuilt for loongarch release

* Fri Sep 08 2023 OpenCloudOS Release Engineering  - 3.8.2-4
- Rebuilt for OpenCloudOS Stream 23.09

failed: groff-1.23.0-6.ocs23.rva23, target: dist-ocs23-riscv-rva23

Thu, 16 Apr 2026 16:42:11 CST

failed: pipewire-0.3.85-11.ocs23.rva23, target: dist-ocs23-riscv-rva23

Thu, 16 Apr 2026 16:30:07 CST

complete: golang-1.25.8-2.ocs23, target: dist-ocs23-base

Thu, 16 Apr 2026 15:48:58 CST

* Wed Apr 15 2026 hudson zhu  - 1.25.8-2
- [Type] bugfix
- [DESC] use GOEXPERIMENT=nodwarf5 for debugedit compatibility

* Tue Apr 07 2026 hudson zhu  - 1.25.8-1
- [Type] other
- [DESC] upgrade to 1.25.8 for fixing Fix CVE-2026-34040

* Tue Feb 24 2026 hudson zhu  - 1.24.11-2
- [Type] security
- [DESC] Fix [CVE-2025-68119], [CVE-2025-61731], [CVE-2025-61730], [CVE-2025-61728], [CVE-2025-61726]

complete: libcap-2.69-7.ocs23, target: dist-ocs23-base

Thu, 16 Apr 2026 11:42:06 CST

* Wed Apr 15 2026 PkgAgent Robot  - 2.69-7
- [Type] security
- [DESC] Fix CVE-2026-4878 vulnerability

* Wed Mar 26 2025 Tao Wu  - 2.69-6
- [Type] security
- [DESC] fix CVE-2025-1390

* Sat Oct 12 2024 Jian Zhao  - 2.69-5
- riscv64: Set a fixed value for 'lib' in the Make.Rules file

complete: jq-1.7.1-8.ocs23, target: dist-ocs23-base

Thu, 16 Apr 2026 11:27:19 CST

* Thu Apr 16 2026 PkgAgent Robot  - 1.7.1-8
- [Type] security
- [DESC] Fix CVE-2026-40164 vulnerability

* Fri Oct 10 2025 xiaoyunzhao  - 1.7.1-7
- [Type] security
- [DESC] fix CVE-2025-9403

* Tue Jul 15 2025 xiaoyunzhao  - 1.7.1-6
- [Type] security
- [DESC] fix CVE-2025-48060

complete: freerdp-2.11.6-12.ocs23, target: dist-ocs23-base

Thu, 16 Apr 2026 10:41:05 CST

* Wed Apr 15 2026 Xinlong Chen  - 2.11.6-12
- [Type] security
- [DESC] fix CVE-2026-23533

* Mon Mar 16 2026 Xinlong Chen  - 2.11.6-11
- Fix out-of-bounds write in nsc_process_message

* Tue Mar 03 2026 Xinlong Chen  - 2.11.6-10
- Fix CVE-2026-26955 CVE-2026-26965

canceled: compiler-rt-20.1.8-1.ocs23.rva23, target: dist-ocs23-riscv-rva23

Wed, 15 Apr 2026 20:59:59 CST

complete: util-linux-2.39.1-13.ocs23, target: dist-ocs23-base

Wed, 15 Apr 2026 19:31:04 CST

* Tue Apr 14 2026 PkgAgent Robot  - 2.39.1-13
- [Type] security
- [DESC] Fix CVE-2026-27456 vulnerability: loopdev: add LOOPDEV_FL_NOFOLLOW to prevent symlink attacks
- [DESC] Fix CVE-2026-3184 vulnerability: login: use original FQDN for PAM_RHOST

* Thu Mar 05 2026 Chunsheng Luo  - 2.39.1-12
- lscpu: optimize query virt pci device

* Wed Dec 24 2025 Chunsheng Luo  - 2.39.1-11
- Fix Heap buffer overread in setpwnam() [CVE-2025-14104]

complete: libmysofa-1.3.2-3.ocs23.rva23, target: dist-ocs23-riscv-rva23

Wed, 15 Apr 2026 16:56:16 CST

* Thu Sep 26 2024 OpenCloudOS Release Engineering  - 1.3.2-3
- Rebuilt for clarifying the packages requirement in BaseOS and AppStream

* Fri Aug 16 2024 OpenCloudOS Release Engineering  - 1.3.2-2
- Rebuilt for loongarch release

* Wed Jan 03 2024 Upgrade Robot  - 1.3.2-1
- Upgrade to version 1.3.2

complete: capstone-5.0.1-4.ocs23.rva23, target: dist-ocs23-riscv-rva23

Wed, 15 Apr 2026 15:46:53 CST

* Wed Apr 15 2026 maxonxie  - 5.0.1-4
- Add riscv64 support

* Thu Feb 05 2026 rockerzhu  - 5.0.1-4
- [Type] Security
- [Desc] Fix CVE-2025-67873 and CVE-2025-68114.

* Thu Sep 26 2024 OpenCloudOS Release Engineering  - 5.0.1-3
- Rebuilt for clarifying the packages requirement in BaseOS and AppStream

complete: nodejs-22-1.ocs23.rva23, target: dist-ocs23-riscv-rva23

Wed, 15 Apr 2026 14:44:49 CST

* Mon Apr 13 2026 Maxon Xie  - 22-1
- riscv Update to nodejs22

* Wed Sep 17 2025 Zhao Zhen  - 20-1
- Switched the repo for providing meta packages only.
- Please go into nodejs repo to see changelog for detail.

* Mon Jul 28 2025 Zhao Zhen  - 18.20.8-2
- fixed CVE-2025-5889

complete: nodejs20-20.20.0-4.ocs23, target: dist-ocs23-base

Wed, 15 Apr 2026 13:11:18 CST

* Mon Mar 30 2026 Zhao Zhen  - 20.20.0-4
- fixed install error

* Mon Mar 30 2026 Zhao Zhen  - 20.20.0-3
- fixed install error via modifing release number definition

* Thu Mar 19 2026 Zhao Zhen  - 20.20.0-2
- fixed CVE-2026-1526 CVE-2026-1528 CVE-2026-2229 CVE-2026-1525 via
- upgrading undici from 6.23.0 to 6.24.0

complete: moby-29.3.1-1.ocs23, target: dist-ocs23-base

Wed, 15 Apr 2026 11:12:03 CST

* Thu Apr 02 2026 hudsonzhu  - 29.3.1-1
- [Type] security
- [DESC] Fix CVE-2026-34040

* Wed Feb 04 2026 hudsonzhu  - 28.4.0-3
- [Type] bugfix
- [DESC] pass -ldflags to gobuild to fix docker version showing as unknown

* Mon Jan 05 2026 hudsonzhu  - 28.4.0-2
- [Type] bugfix
- [DESC] Remove Provides: docker-ce to avoid conflict with docker-ce package

complete: qemu-8.2.2-48.ocs23, target: dist-ocs23-base

Wed, 15 Apr 2026 10:38:34 CST

* Thu Apr 09 2026 Wei Wang  - 8.2.2-48
- [Type] enhancement
- [DESC] Add Hygon SM3/SM4 and TSC Adjust support

* Fri Mar 06 2026 Chunsheng Luo  - 8.2.2-47
- Fix Heap-buffer-overflow in virtio-sound [CVE-2026-3195]

* Fri Feb 06 2026 Chunsheng Luo  - 8.2.2-46
- Avoid QEMU OOM on huge request from guest [CVE-2025-14876]

complete: llvm-20.1.8-1.ocs23.rva23, target: dist-ocs23-riscv-rva23

Wed, 15 Apr 2026 08:45:25 CST

* Tue Mar 24 2026 OpenCloudOS Release Engineering  - 20.1.8-1
- Update to 20.1.8 RISC-V support

* Wed Aug 20 2025 chenli  - 17.0.6-12
- [Type] bugfix
- [DESC] Add support for RuntimeDyld on loongarch64

* Thu Jul 10 2025 chenli  - 17.0.6-11
- LoongArch Backport: Define psABI v2.30 relocs
- LoongArch Backport: Fix xvshuf instructions lowering