[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: 02/03: gnu: nghttp2: Update to 1.31.1 [fixes CVE-2018-1000168].
From: |
Mark H Weaver |
Subject: |
Re: 02/03: gnu: nghttp2: Update to 1.31.1 [fixes CVE-2018-1000168]. |
Date: |
Thu, 12 Apr 2018 14:09:36 -0400 |
User-agent: |
Gnus/5.13 (Gnus v5.13) Emacs/25.3 (gnu/linux) |
Hi Marius,
address@hidden (Marius Bakke) writes:
> mbakke pushed a commit to branch master
> in repository guix.
>
> commit 65bfe30d8a4e930599603f6d835023bbd0dbcb9a
> Author: Marius Bakke <address@hidden>
> Date: Thu Apr 12 19:43:31 2018 +0200
>
> gnu: nghttp2: Update to 1.31.1 [fixes CVE-2018-1000168].
>
> * gnu/packages/web.scm (nghttp2): Update to 1.31.1.
Thank you for this, but it would entail far too many builds to update on
the 'master' branch. 'curl' depends on 'nghttp2'. According to 'guix
refresh -l', it would require 2839 rebuilds on x86_64.
Would you like to fix this with a graft instead?
Mark
- Re: 02/03: gnu: nghttp2: Update to 1.31.1 [fixes CVE-2018-1000168].,
Mark H Weaver <=