[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
[bug#56302] Acknowledgement ([PATCH] gnu: ruby: Update to 2.7.6 [securit
|
From: |
Remco van 't Veer |
|
Subject: |
[bug#56302] Acknowledgement ([PATCH] gnu: ruby: Update to 2.7.6 [security fixes].) |
|
Date: |
Wed, 29 Jun 2022 18:13:38 +0200 |
|
User-agent: |
mu4e 1.6.11; emacs 28.1 |
2022/06/29 18:04, Maxime Devos:
> core-updates probably won't be merged for a long time, so a graft might
> be needed in the meantime.
So, keep this bug and make a new patch / bug for the graft?
> Basically, what you need to do is:
>
> * keep the old ruby@2.7.4 package definition
> * add a ruby@2.7.6 package (as (define-public ruby-2.7-fixed [...]))
> * in ruby@2.7.4, add a field
> (replacement ruby-2.7-fixed) ; security fixes
>
> and verify that some Ruby-using dependents still seem to work.
>
> That way, we can use a fixed ruby@2.7.6 on master.
>
> (This assumes that ruby is graftable -- this assumes that ruby is
> ABI-compatible, otherwise the grafted dependents won't work.)
Thanks for the explanation! I'll give it a try.
Cheers,
Remco
[bug#56302] [PATCH v2] gnu: ruby: Update to 2.7.6 [security fixes]., Remco van 't Veer, 2022/06/29
[bug#56302] [PATCH] gnu: ruby: Update to 2.7.6 [security fixes]., Maxime Devos, 2022/06/29