calibre: apply fix for CVE-2026-25636 - SemanticDiff

Commit

78 days ago

calibre: apply fix for CVE-2026-25636 Updating to 9.2 is not an option as it requires Python 3.14. CVE: https://nvd.nist.gov/vuln/detail/CVE-2026-25636 Upstream advisory: https://github.com/kovidgoyal/calibre/security/advisories/GHSA-8r26-m7j5-hm29 Nix security tracking issue: https://tracker.security.nixos.org/issues/NIXPKGS-2026-0160 Fixes #488052 (cherry picked from commit 27061c4fcb7ec61003f05c834a6ec902cdae299b)

References

#489038 - [Backport release-25.11] calibre: apply fix for CVE-2026-25636

#489880 - [Backport release-25.11] elmPackages.*: remove myself as maintainer from packages where I was

#490183 - [Backport release-25.11] vesktop: 1.6.4 -> 1.6.5

#490268 - [Backport release-25.11] m-cli: 2.0.5 -> 2.0.7

#490857 - [Backport release-25.11] flux9s: init at 0.7.2

#494414 - [Backport release-25.11] nixos/rspamd: Add extraArgs option to rspamd module

#495299 - [Backport release-25.11] jadx: 1.5.0 -> 1.5.3

#495379 - [Backport release-25.11] crowdsec-firewall-bouncer: use cscli from the nix store instead of /run/current-system/sw/bin

#495768 - [Backport staging-25.11] qemu: add fuse support

#495775 - [Backport release-25.11] snitch: init at 0.1.9

#496437 - [Backport release-25.11] nixos/sssd: fix sssd-kcm wrong command-line options

#496654 - [Backport release-25.11] pihole-ftl: fix build

#496950 - [Backport release-25.11] zabbix: Multiple Versions

#497040 - [Backport release-25.11] pupdate: 3.20.0 -> 4.7.0

#497152 - [Backport release-25.11] mercury: move to by-name

#497224 - [Backport release-25.11] davmail: Various tweaks to Davmail package

#497922 - [Backport release-25.11] nixos/mihomo: add an option for processes info

#498210 - [Backport release-25.11] flatpak: 1.16.2 -> 1.16.3

#499072 - [Backport release-25.11] python3Packages.modern-colorthief: 0.1.7 -> 0.1.12

#499075 - [Backport release-25.11] nixos/tuned: add recommend option, fix ppdSupport, minor refactor

#499079 - [Backport release-25.11] tuned: 2.26.0 -> 2.27.0

#499621 - [Backport release-25.11] nixos/acme: Make the maximum jitter configurable

#499778 - [Backport release-25.11] lock: 1.8.2 -> 1.9.3

#499812 - [Backport release-25.11] _7zz: add 7-zip to description for discoverability

#499927 - [Backport release-25.11] percona-server: 8.4.7-7 -> 8.4.8-8

#500537 - [Backport release-25.11] msbuild-structured-log-viewer: miscellaneous updates

#501467 - [Backport release-25.11] ddhx: init at 0.9.1

#503441 - [Backport release-25.11] putty: fix CVE-2026-4115

#503776 - [Backport release-25.11] nextcloud{32,33}Apps: add oidc, update all

#503787 - [Backport release-25.11] flclash: 0.8.91 -> 0.8.92

#504177 - [Backport release-25.11] linkwarden: 2.13.5 -> 2.14.0

#504363 - [Backport release-25.11] unityhub: 3.16.2 -> 3.16.3

#504715 - [Backport release-25.11] fakedir: init at 0-unstable-2025-12-02

#505187 - [Backport release-25.11] ubootRaspberryPiAarch64: init

#505503 - [Backport release-25.11] python3Packages.tinytag: 2.2.0 -> 2.2.1

#506041 - [Backport release-25.11] nixos/grocy: enforce data directory presence

#506528 - [Backport release-25.11] firewalld: fix CVE-2026-4948

#506550 - [Backport release-25.11] openvr: 2.12.14 -> 2.15.6

#507269 - [Backport release-25.11] nix-user-chroot: init at 2.1.0

#507291 - [Backport release-25.11] nixos/roundcube: increase client_max_body_size for maxAttachmentSize

#507322 - [Backport release-25.11] nixos/crowdsec-firewall-bouncer: Fix missing systemd dependencies to firewall services

#507719 - [Backport release-25.11] motioneye: init at 0.43.1

#508015 - [Backport release-25.11] comaps: 2025.11.07-2 -> 2026.03.23-5

#508153 - [Backport release-25.11] unvanquished: 0.55.3 -> 0.56.1

#508681 - [Backport release-25.11] nixos/netbird: fixes login not working properly on first login

#509215 - [Backport release-25.11] koreader: fix Japanese text selection with patched luajit

#509516 - [Backport release-25.11] shaka-packager: 3.7.1 -> 3.7.2

#509724 - [Backport release-25.11] openafs: improve CellServDB options and add test

#509829 - [Backport release-25.11] xfr: init at 0.9.6

#509952 - [Backport release-25.11] logisim-evolution: 4.0.0 -> 4.1.0

#510328 - [Backport release-25.11] rollo-printer: init at 1.8.4

#510716 - [Backport release-25.11] galculator: fix build with C23

#510914 - [Backport release-25.11] hedgedoc: 1.10.7 -> 1.10.8

#511190 - [Backport release-25.11] picotool: add missing mbedtls

#511224 - [Backport release-25.11] siyuan: 3.6.2 -> 3.6.3

#511404 - [Backport release-25.11] go-tpc: init 1.0.12

#511551 - [Backport release-25.11] plexamp: 4.13.0 -> 4.13.1

#512895 - [Backport release-25.11] packagekit: 1.3.3 -> 1.3.5

#513189 - staging-next-25.11 iteration 6 - 2026-04-24

#513235 - [Backport release-25.11] flare-signal: 0.20.2 -> 0.20.4

#513363 - [Backport staging-25.11] tzdata: 2026a -> 2026b

#513548 - [Backport release-25.11] nixos/tests/dawarich: fix points being flagged as anomalies

#513638 - [Backport release-25.11] firebird_3: 3.0.13 -> 3.0.14; firebird_4: 4.0.6 -> 4.0.7; firebird_5: init at 5.0.4

#513649 - [Backport release-25.11] osu-lazer{,-bin}: 2026.418.0 -> 2026.425.0

#513756 - [Backport staging-25.11] imagemagick: 7.1.2-19 -> 7.1.2-21

#513896 - [Backport release-25.11] j: 9.6.2 -> 9.7.1

#513960 - [Backport release-25.11] pika-backup: 0.7.5 -> 0.7.6

#514025 - [Backport staging-25.11] expat: 2.7.5 -> 2.8.0

#514139 - [Backport release-25.11] uriparser: 1.0.0 -> 1.0.1

#514223 - [Backport release-25.11] docker: 29.4.0 -> 29.4.1

#514360 - [Backport staging-25.11] xdg-dbus-proxy: 0.1.6 -> 0.1.7

#514458 - [Backport release-25.11] rustPlatform.buildRustPackage: fix cargoDeps inherited attribute overriding

#514474 - [Backport release-25.11] xorgxrdp: 0.10.4 -> 0.10.5, xrdp: 0.10.4.1 -> 0.10.6

#514650 - [Backport release-25.11] modrinth-app-unwrapped: 0.13.3 -> 0.13.6

#514670 - [Backport release-25.11] python3Packages.requests-hardened: 1.2.0 -> 1.2.2

#514688 - [Backport release-25.11] proftpd: 1.3.9 -> 1.3.9a

#514712 - [Backport release-25.11] doc/python: document fixed-point arguments (#271387)

#514715 - [Backport release-25.11] knot-resolver_6: 6.2.0 -> 6.3.0

Author

Stebalien

Stebalien

Committer

github-actions[bot]

github-actions[bot]

Parents

Loading