[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
[bug#56302] Acknowledgement ([PATCH] gnu: ruby: Update to 2.7.6 [securit
[bug#56302] Acknowledgement ([PATCH] gnu: ruby: Update to 2.7.6 [security fixes].)
Wed, 29 Jun 2022 18:04:37 +0200
Remco van 't Veer schreef op wo 29-06-2022 om 17:58 [+0200]:
> Please note:
> $ guix refresh --list-dependent email@example.com
> Building the following 2346 packages would ensure 6612 dependent packages
> are rebuilt: ...
> So this goes into core-updates.
core-updates probably won't be merged for a long time, so a graft might
be needed in the meantime.
Basically, what you need to do is:
* keep the old firstname.lastname@example.org package definition
* add a email@example.com package (as (define-public ruby-2.7-fixed [...]))
* in firstname.lastname@example.org, add a field
(replacement ruby-2.7-fixed) ; security fixes
and verify that some Ruby-using dependents still seem to work.
That way, we can use a fixed email@example.com on master.
(This assumes that ruby is graftable -- this assumes that ruby is
ABI-compatible, otherwise the grafted dependents won't work.)
Description: This is a digitally signed message part
[bug#56302] [PATCH v2] gnu: ruby: Update to 2.7.6 [security fixes]., Remco van 't Veer, 2022/06/29
[bug#56302] [PATCH] gnu: ruby: Update to 2.7.6 [security fixes]., Maxime Devos, 2022/06/29