bug#30180: [PATCH] gnu: libsndfile: Fix CVE-2017-12562.

guix-patches

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

bug#30180: [PATCH] gnu: libsndfile: Fix CVE-2017-12562.

From:	Leo Famulari
Subject:	bug#30180: [PATCH] gnu: libsndfile: Fix CVE-2017-12562.
Date:	Tue, 23 Jan 2018 15:25:52 -0500
User-agent:	Mutt/1.9.2 (2017-12-15)

On Tue, Jan 23, 2018 at 10:20:26AM +0100, Ludovic Courtès wrote:
> Leo Famulari <address@hidden> skribis:
> 
> > I'd like to ungraft this on core-updates, even though it's late in the
> > core-updates cycle. Changing libsndfile requires only ~600 rebuilds per
> > architecture.
> >
> > * gnu/packages/patches/libsndfile-CVE-2017-12562.patch: New file.
> > * gnu/local.mk (dist_patch_DATA): Add it.
> > * gnu/packages/pulseaudio.scm (libsndfile)[replacement]: New field.
> > (libsndfile/fixed): New variable.
> 
> The patch LGTM!

Okay, pushed!

> As for ungrafting, I’ll let you judge.  I would really like to merge
> that branch soon, but I haven’t checked in status over the last couple
> of days.

The branch is very close to done if you just look at the numbers, but
there are still some important package failures. But there will be more
grafts soon enough, so I guess we might as well leave it grafted.

signature.asc
Description: PGP signature

[Prev in Thread]

Current Thread

[Next in Thread]

[bug#30180] [PATCH] gnu: libsndfile: Fix CVE-2017-12562., Leo Famulari, 2018/01/19
- [bug#30180] [PATCH] gnu: libsndfile: Fix CVE-2017-12562., Ludovic Courtès, 2018/01/23
  - bug#30180: [PATCH] gnu: libsndfile: Fix CVE-2017-12562., Leo Famulari <=
    - [bug#30180] [PATCH] gnu: libsndfile: Fix CVE-2017-12562., Ludovic Courtès, 2018/01/24

Prev by Date: [bug#30214] [PATCH 06/10] gnu: Add go-gopkg.in-mgo.v2.
Next by Date: [bug#30214] [PATCH 03/10] gnu: Add go-github.com-jessevdk-go-flags.
Previous by thread: [bug#30180] [PATCH] gnu: libsndfile: Fix CVE-2017-12562.
Next by thread: [bug#30180] [PATCH] gnu: libsndfile: Fix CVE-2017-12562.
Index(es):
- Date
- Thread