[debbugs-tracker] bug#26836: closed ([PATCH] gnu: libarchive: Update to

emacs-bug-tracker

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[debbugs-tracker] bug#26836: closed ([PATCH] gnu: libarchive: Update to

From:	GNU bug Tracking System
Subject:	[debbugs-tracker] bug#26836: closed ([PATCH] gnu: libarchive: Update to 3.3.1.)
Date:	Tue, 09 May 2017 00:27:02 +0000

Your message dated Mon, 08 May 2017 20:26:22 -0400
with message-id <address@hidden>
and subject line Re: bug#26836: [PATCH] gnu: libarchive: Update to 3.3.1.
has caused the debbugs.gnu.org bug report #26836,
regarding [PATCH] gnu: libarchive: Update to 3.3.1.
to be marked as done.

(If you believe you have received this mail in error, please contact
address@hidden)


-- 
26836: http://debbugs.gnu.org/cgi/bugreport.cgi?bug=26836
GNU Bug Tracking System
Contact address@hidden with problems

--- Begin Message --- Subject: [PATCH] gnu: libarchive: Update to 3.3.1. Date: Mon, 8 May 2017 15:07:14 -0400

Fixes CVE-2016-{10209,10350} and CVE-2017-5601.

* gnu/packages/backup.scm (libarchive): Update to 3.3.1.
---
 gnu/packages/backup.scm | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/gnu/packages/backup.scm b/gnu/packages/backup.scm
index f9c0a22a0..569d5d64b 100644
--- a/gnu/packages/backup.scm
+++ b/gnu/packages/backup.scm
@@ -186,7 +186,7 @@ backups (called chunks) to allow easy burning to CD/DVD.")
 (define-public libarchive
   (package
     (name "libarchive")
-    (version "3.2.2")
+    (version "3.3.1")
     (source
      (origin
        (method url-fetch)
@@ -194,7 +194,7 @@ backups (called chunks) to allow easy burning to CD/DVD.")
                            version ".tar.gz"))
        (sha256
         (base32
-         "03q6y428rg723c9fj1vidzjw46w1vf8z0h95lkvz1l9jw571j739"))))
+         "1rr40hxlm9vy5z2zb5w7pyfkgd1a4s061qapm83s19accb8mpji9"))))
     (build-system gnu-build-system)
     ;; TODO: Add -L/path/to/nettle in libarchive.pc.
     (inputs
-- 
2.12.2

--- End Message ---

--- Begin Message --- Subject: Re: bug#26836: [PATCH] gnu: libarchive: Update to 3.3.1. Date: Mon, 08 May 2017 20:26:22 -0400 User-agent: Gnus/5.13 (Gnus v5.13) Emacs/25.2 (gnu/linux)

Leo Famulari <address@hidden> writes:

> On Mon, May 08, 2017 at 05:10:28PM -0400, Kei Kebreau wrote:
>> Leo Famulari <address@hidden> writes:
>> 
>> > On Mon, May 08, 2017 at 03:07:14PM -0400, Kei Kebreau wrote:
>> >> Fixes CVE-2016-{10209,10350} and CVE-2017-5601.
>> >> 
>> >> * gnu/packages/backup.scm (libarchive): Update to 3.3.1.
>> >
>> > Thanks!
>> >
>> > Can you use a graft instead? Then, the commit message can be like this:
>> >
>> > gnu: libarchive: Replace with 3.3.1 [security fixes].
>> >
>> > Fixes CVE-2016-{10209,10350}, CVE-2017-5601.
>> >
>> > * gnu/packages/backup.scm (libarchive)[replacement]: New field.
>> > (libarchive-3.3.1): New variable.
>> 
>> Like the patch I've attached?
>
>> From 45d3157bb61bb8b5f26ff13feb672759b6043e6f Mon Sep 17 00:00:00 2001
>> From: Kei Kebreau <address@hidden>
>> Date: Mon, 8 May 2017 14:58:07 -0400
>> Subject: [PATCH] gnu: libarchive: Replace with 3.3.1 [security fixes].
>> To: address@hidden
>> 
>> Fixes CVE-2016-{10209,10350} and CVE-2017-5601.
>> 
>> * gnu/packages/backup.scm (libarchive)[replacement]: New field.
>> (libarchive-3.3.1): New variable.
>
> Thanks, LGTM!

Great! Pushed to master.

signature.asc
Description: PGP signature

--- End Message ---

[Prev in Thread]

Current Thread

[Next in Thread]

[debbugs-tracker] bug#26836: closed ([PATCH] gnu: libarchive: Update to 3.3.1.), GNU bug Tracking System <=

Prev by Date: [debbugs-tracker] bug#26617: closed ([PATCH] gnu: Add gnustep-make.)
Next by Date: [debbugs-tracker] Processed: Re: bug#26796: 26.0.50; (2 characters) is usually wrong
Previous by thread: [debbugs-tracker] bug#26617: closed ([PATCH] gnu: Add gnustep-make.)
Next by thread: [debbugs-tracker] Processed: Re: bug#26796: 26.0.50; (2 characters) is usually wrong
Index(es):
- Date
- Thread