[AutoPR- Security] Patch erlang for CVE-2026-54886 [MEDIUM]#17923
[AutoPR- Security] Patch erlang for CVE-2026-54886 [MEDIUM]#17923azurelinux-security wants to merge 1 commit into
Conversation
🔒 CVE Patch Review: CVE-2026-54886PR #17923 — [AutoPR- Security] Patch erlang for CVE-2026-54886 [MEDIUM] Spec File Validation
Build VerificationBuild log analysis was skipped (no build ID available). Patch Analysis
Detailed analysis
Verdict✅ APPROVED — All checks passed. Ready to merge. |
Kanishk-Bansal
left a comment
There was a problem hiding this comment.
LGTM, Patch have been ported and matches upstream ref.
- Buddy Build
- patch applied during the build (check
rpm.log) - patch include an upstream reference
- PR has security tag
Auto Patch erlang for CVE-2026-54886.
Autosec pipeline run -> https://dev.azure.com/mariner-org/mariner/_build/results?buildId=1154399&view=results
Merge Checklist
All boxes should be checked before merging the PR (just tick any boxes which don't apply to this PR)
*-staticsubpackages, etc.) have had theirReleasetag incremented../cgmanifest.json,./toolkit/scripts/toolchain/cgmanifest.json,.github/workflows/cgmanifest.json)./LICENSES-AND-NOTICES/SPECS/data/licenses.json,./LICENSES-AND-NOTICES/SPECS/LICENSES-MAP.md,./LICENSES-AND-NOTICES/SPECS/LICENSE-EXCEPTIONS.PHOTON)*.signatures.jsonfilessudo make go-tidy-allandsudo make go-test-coveragepassSummary
What does the PR accomplish, why was it needed?
Change Log
Does this affect the toolchain?
YES/NO
Associated issues
Links to CVEs
Test Methodology