[bug#54604] [PATCH] gnu: zlib: Update to 1.2.12 [fixes CVE-2018-25032].

guix-patches

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[bug#54604] [PATCH] gnu: zlib: Update to 1.2.12 [fixes CVE-2018-25032].

From:	Maxim Cournoyer
Subject:	[bug#54604] [PATCH] gnu: zlib: Update to 1.2.12 [fixes CVE-2018-25032].
Date:	Tue, 03 Jan 2023 17:31:04 -0500
User-agent:	Gnus/5.13 (Gnus v5.13) Emacs/28.2 (gnu/linux)

Hi Leo,

Ludovic Courtès <ludo@gnu.org> writes:

> Hi Leo,
>
> Leo Famulari <leo@famulari.name> skribis:
>
>> https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-25032
>> https://seclists.org/oss-sec/2022/q1/191
>>
>> * gnu/packages/compression.scm (zlib)[replacement]: New field.
>> (zlib-1.2.12): New variable.
>
> LGTM, sorry for the delay, and thanks for taking care of it!

Ping!  Feel free to apply it.

-- 
Thanks,
Maxim

[Prev in Thread]

Current Thread

[Next in Thread]

[bug#54604] [PATCH] gnu: zlib: Update to 1.2.12 [fixes CVE-2018-25032]., Maxim Cournoyer <=
- bug#54604: [PATCH] gnu: zlib: Update to 1.2.12 [fixes CVE-2018-25032]., Leo Famulari, 2023/01/04
  - [bug#54604] [PATCH] gnu: zlib: Update to 1.2.12 [fixes CVE-2018-25032]., Maxim Cournoyer, 2023/01/04

Prev by Date: [bug#54836] [PATCH 1/2] http-client: Fix redirection.
Next by Date: [bug#51415] [PATCH] In the Artanis package the propagated input of guile-json is conflicting with guix, and no series of guix upgrades or guix installs seems to fix this. Therefore, I moved guile-json from a propagated input to an input, which solves the issue, but may not be ideal for people who don't wish to keep multiple copies of guile-json
Previous by thread: [bug#54836] [PATCH 1/2] http-client: Fix redirection.
Next by thread: bug#54604: [PATCH] gnu: zlib: Update to 1.2.12 [fixes CVE-2018-25032].
Index(es):
- Date
- Thread