Update patchinfo incident numbers [skip actions]

PR: products/PackageHub!475

.gitmodules

@@ -26286,11 +26286,11 @@
 	path = python-tldextract
 	url = ../../pool/python-tldextract
 	branch = leap-16.0
-[submodule "python-ty"]
-	path = python-ty
-	url = ../../pool/python-ty
-	branch = leap-16.0
 [submodule "openQA-devel-container"]
 	path = openQA-devel-container
 	url =  ../../pool/openQA-devel-container
 	branch = leap-16.0
+[submodule "uzdoom"]
+	path = uzdoom
+	url = ../../pool/uzdoom
+	branch = leap-16.0

patchinfo.20260126192907763486.93181000773252/_patchinfo

@@ -0,0 +1,12 @@
+<patchinfo incident="packagehub-141">
+  <packager>eroca</packager>
+  <rating>moderate</rating>
+  <category>recommended</category>
+  <summary>Recommended update for uzdoom</summary>
+  <description>This update for uzdoom fixes the following issues:
+
+Introduces uzdoom.
+
+</description>
+  <package>uzdoom</package>
+</patchinfo>

patchinfo.20260224091142267920.93181000773252/_patchinfo

@@ -0,0 +1,20 @@
+<patchinfo incident="packagehub-142">
+  <issue tracker="bnc" id="1258733">VUL-0: chromium: update to 145.0.7632.116</issue>
+  <issue tracker="cve" id="2026-3061">VUL-0: chromium: update to 145.0.7632.116</issue>
+  <issue tracker="cve" id="2025-3063">The Shopper Approved Reviews plugin for WordPress is vulnerable to unauthorized modification of data that can lead to privilege escalation due to a missing capability check on the ajax_callback_update_sa_option() function in versions 2.0 to 2.1. This makes it possible for authenticated attackers, with Subscriber-level access and above, to update arbitrary options on the WordPress site. This can...</issue>
+  <issue tracker="cve" id="2026-3062">VUL-0: chromium: update to 145.0.7632.116</issue>
+  <packager>AndreasStieger</packager>
+  <rating>important</rating>
+  <category>security</category>
+  <summary>Security update for chromium</summary>
+  <description>This update for chromium fixes the following issues:
+
+Changes in chromium:
+
+- Chromium 145.0.7632.116 (boo#1258733):
+  * CVE-2026-3061: Out of bounds read in Media
+  * CVE-2026-3062: Out of bounds read and write in Tint
+  * CVE-2025-3063: Inappropriate implementation in DevTools
+</description>
+  <package>chromium</package>
+</patchinfo>

patchinfo.20260224105448960295.93181000773252/_patchinfo

@@ -0,0 +1,72 @@
+<patchinfo incident="packagehub-143">
+  <packager>os-autoinst-obs-workflow</packager>
+  <rating>moderate</rating>
+  <category>recommended</category>
+  <summary>Recommended update for openQA, os-autoinst, openQA-devel-container</summary>
+  <description>This update for openQA, os-autoinst, openQA-devel-container fixes the following issues:
+
+Changes in openQA:
+
+- Update to version 5.1771872170.9e49dbec:
+  * tweak: Improve logging of Git output
+  * tweak: Avoid warnings about invalid revision ranges
+  * tweak: Use normal warning log messages when encountering Git problems
+  * fix: Avoid Perl warnings if URL passed to `git_commit_url` is invalid
+  * fix: update ajv to fix moderate severity ReDoS vulnerability
+  * fix: update minimatch override to fix high severity ReDoS vulnerability
+  * openqa-load-templates: Slightly simplify
+
+- Update to version 5.1771626210.b82f14f2:
+  * refactor(test/overview): use signatures and clean up code
+  * refactor(test/overview): reduce duplication
+
+- Update to version 5.1771589939.8f8502b4:
+  * feat: Improve default `PRODUCTDIR` after ef229dc2
+  * refactor(ui): simplify removal of empty query parameters (after rebase)
+  * test(45-make-update-deps): allow bypassing dependency update check
+  * fix(test): improve UI test robustness by using state-based waiting
+  * test: Improve workaround for candidates menu not opening sometimes
+  * docs: Mention use of relative paths in `CASEDIR` to avoid symlinking
+  * fix: Fix wrong uses of "checkout" that should be "check out"
+  * feat: support filtering by meta-results+states in /tests/overview
+  * Revert "feat: Add symlink for aeon in openqa-bootstrap script"
+  * fix(43-scheduling-and-worker-scalability): prevent sporadic issues
+  * refactor: use join for properties in determine_free_workers
+  * fix: do not cache websocket_api_version if not set
+
+- Update to version 5.1771473096.98530511:
+  * feat(ui): remove empty query parameters from /tests/overview URL
+  * feat: Allow specifying `CASEDIR` to avoid symlinking
+
+Changes in os-autoinst:
+
+- Update to version 5.1771858186.01b8328:
+  * test: implement conventional commits check with gitlint
+  * fix: Fix wrong uses of "checkout" that should be "check out"
+  * git subrepo pull (merge) --force external/os-autoinst-common
+  * style: Fix crop.py style issues
+  * workaround: Remove "get_mempolicy" warning from qemu-img output
+
+- Update to version 5.1771520411.2601197:
+  * fix: Fix wrong uses of "checkout" that should be "check out"
+  * git subrepo pull (merge) --force external/os-autoinst-common
+  * style: Fix crop.py style issues
+  * workaround: Remove "get_mempolicy" warning from qemu-img output
+  * parse_extra_log: Allow passing additional args to upload_logs
+
+Changes in openQA-devel-container:
+
+- Update to version 5.1771872170.9e49dbec8:
+  * Update to latest openQA version
+</description>
+  <package>openQA</package>
+  <package>openQA:openQA-devel-test</package>
+  <package>openQA:openQA-test</package>
+  <package>openQA:openQA-worker-test</package>
+  <package>openQA:openQA-client-test</package>
+  <package>os-autoinst</package>
+  <package>os-autoinst:os-autoinst-test</package>
+  <package>os-autoinst:os-autoinst-devel-test</package>
+  <package>os-autoinst:os-autoinst-openvswitch-test</package>
+  <package>openQA-devel-container</package>
+</patchinfo>

patchinfo.20260224152929272129.93181000773252/_patchinfo

@@ -1,11 +0,0 @@
-<patchinfo>
-  <packager>eroca</packager>
-  <rating>moderate</rating>
-  <category>recommended</category>
-  <summary>Recommended update for python-ty</summary>
-  <description>This update for python-ty fixes the following issues:
-
-Introduce python-ty.
-</description>
-  <package>python-ty</package>
-</patchinfo>

patchinfo.20260225083803306467.93181000773252/_patchinfo

@@ -0,0 +1,15 @@
+<patchinfo incident="packagehub-140">
+  <issue tracker="bnc" id="1257959">VUL-0: CVE-2026-2239: gimp: missing null terminator when  processing a specially crafted PSD file can lead to a heap buffer overflow and an application crash</issue>
+  <issue tracker="cve" id="2026-2239"/>
+  <packager>mgorse</packager>
+  <rating>low</rating>
+  <category>security</category>
+  <summary>Security update for gimp</summary>
+  <description>This update for gimp fixes the following issues:
+
+Changes in gimp:
+
+- CVE-2026-2239: Fixed a heap buffer overflow in psd-util.c (bsc#1257959).
+</description>
+  <package>gimp</package>
+</patchinfo>