bug#57546: closed ([PATCH core-updates] gnu: xz: Update to 5.2.6 [securi

emacs-bug-tracker

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

bug#57546: closed ([PATCH core-updates] gnu: xz: Update to 5.2.6 [securi

From:	GNU bug Tracking System
Subject:	bug#57546: closed ([PATCH core-updates] gnu: xz: Update to 5.2.6 [security fix].)
Date:	Thu, 08 Sep 2022 19:53:02 +0000

Your message dated Thu, 08 Sep 2022 21:51:56 +0200
with message-id <87illxve3n.fsf@gnu.org>
and subject line Re: [bug#57546] [PATCH core-updates] gnu: xz: Update to 5.2.6 
[security fix].
has caused the debbugs.gnu.org bug report #57546,
regarding [PATCH core-updates] gnu: xz: Update to 5.2.6 [security fix].
to be marked as done.

(If you believe you have received this mail in error, please contact
help-debbugs@gnu.org.)


-- 
57546: https://debbugs.gnu.org/cgi/bugreport.cgi?bug=57546
GNU Bug Tracking System
Contact help-debbugs@gnu.org with problems

--- Begin Message --- Subject: [PATCH core-updates] gnu: xz: Update to 5.2.6 [security fix]. Date: Fri, 2 Sep 2022 17:22:57 +0000

Includes fix for CVE-2022-1271.

* gnu/packages/compression.scm (xz): Update to 5.2.6.
---
 gnu/packages/compression.scm | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/gnu/packages/compression.scm b/gnu/packages/compression.scm
index 9e0a132cfc..501db8f38b 100644
--- a/gnu/packages/compression.scm
+++ b/gnu/packages/compression.scm
@@ -484,7 +484,7 @@ (define-public pbzip2
 (define-public xz
   (package
    (name "xz")
-   (version "5.2.5")
+   (version "5.2.6")
    (source (origin
             (method url-fetch)
             (uri (list (string-append "http://tukaani.org/xz/xz-"; version
@@ -493,7 +493,7 @@ (define-public xz
                                       version ".tar.gz")))
             (sha256
              (base32
-              "045s9agl3bpv3swlwydhgsqh7791957vmgw2plw8f1rks07r3x7n"))))
+              "185kj56a996d04d943xisvpifvnsbr7iplyf2nyjxkbvw6z5l452"))))
    (build-system gnu-build-system)
    (arguments
     `(#:phases
-- 
2.37.2

--- End Message ---

--- Begin Message --- Subject: Re: [bug#57546] [PATCH core-updates] gnu: xz: Update to 5.2.6 [security fix]. Date: Thu, 08 Sep 2022 21:51:56 +0200
Greg Hogan <code@greghogan.com> skriver:

> Includes fix for CVE-2022-1271.
>
> * gnu/packages/compression.scm (xz): Update to 5.2.6.

Pushed in d4485c5af7b6f0412b5d536eff62d0c666a5dbe6, thanks!
signature.asc
Description: PGP signature

--- End Message ---

[Prev in Thread]

Current Thread

[Next in Thread]

bug#57546: closed ([PATCH core-updates] gnu: xz: Update to 5.2.6 [security fix].), GNU bug Tracking System <=

Prev by Date: bug#57533: closed ([PATCH core-updates 0/5] glibc 2.35 and GCC 11)
Next by Date: bug#57496: closed ([PATCH 0/2] Add support for chain-loader)
Previous by thread: bug#57533: closed ([PATCH core-updates 0/5] glibc 2.35 and GCC 11)
Next by thread: bug#57496: closed ([PATCH 0/2] Add support for chain-loader)
Index(es):
- Date
- Thread