* [PR PATCH] git: update to 2.35.2 (fix for CVE-2022-24765)
@ 2022-04-13 14:18 subnut
2022-04-13 14:32 ` subnut
` (9 more replies)
0 siblings, 10 replies; 11+ messages in thread
From: subnut @ 2022-04-13 14:18 UTC (permalink / raw)
To: ml
[-- Attachment #1: Type: text/plain, Size: 1246 bytes --]
There is a new pull request by subnut against master on the void-packages repository
https://github.com/subnut/void-packages git
https://github.com/void-linux/void-packages/pull/36669
git: update to 2.35.2 (fix for CVE-2022-24765)
<!-- Uncomment relevant sections and delete options which are not applicable -->
#### Testing the changes
- I tested the changes in this PR: **NO**
<!--
#### New package
- This new package conforms to the [quality requirements](https://github.com/void-linux/void-packages/blob/master/Manual.md#quality-requirements): **YES**|**NO**
-->
<!-- Note: If the build is likely to take more than 2 hours, please add ci skip tag as described in
https://github.com/void-linux/void-packages/blob/master/CONTRIBUTING.md#continuous-integration
and test at least one native build and, if supported, at least one cross build.
Ignore this section if this PR is not skipping CI.
-->
<!--
#### Local build testing
- I built this PR locally for my native architecture, (ARCH-LIBC)
- I built this PR locally for these architectures (if supported. mark crossbuilds):
- aarch64-musl
- armv7l
- armv6l-musl
-->
A patch file from https://github.com/void-linux/void-packages/pull/36669.patch is attached
[-- Warning: decoded text below may be mangled, UTF-8 assumed --]
[-- Attachment #2: github-pr-git-36669.patch --]
[-- Type: text/x-diff, Size: 669 bytes --]
From c6512b5aa739e4948606855954bd3474c6d3027f Mon Sep 17 00:00:00 2001
From: Subhaditya Nath <sn03.general@gmail.com>
Date: Wed, 13 Apr 2022 19:36:15 +0530
Subject: [PATCH] git: update to 2.35.2
---
srcpkgs/git/template | 2 +-
1 file changed, 1 insertion(+), 1 deletion(-)
diff --git a/srcpkgs/git/template b/srcpkgs/git/template
index 929472b982b2..339b3d6da299 100644
--- a/srcpkgs/git/template
+++ b/srcpkgs/git/template
@@ -1,6 +1,6 @@
# Template file for 'git'
pkgname=git
-version=2.35.1
+version=2.35.2
revision=1
hostmakedepends="asciidoc gettext perl pkg-config tk xmlto"
makedepends="libglib-devel libcurl-devel libsecret-devel pcre2-devel tk-devel"
^ permalink raw reply [flat|nested] 11+ messages in thread
* Re: git: update to 2.35.2 (fix for CVE-2022-24765)
2022-04-13 14:18 [PR PATCH] git: update to 2.35.2 (fix for CVE-2022-24765) subnut
@ 2022-04-13 14:32 ` subnut
2022-04-13 14:33 ` [PR PATCH] [Updated] " subnut
` (8 subsequent siblings)
9 siblings, 0 replies; 11+ messages in thread
From: subnut @ 2022-04-13 14:32 UTC (permalink / raw)
To: ml
[-- Attachment #1: Type: text/plain, Size: 181 bytes --]
New comment by subnut on void-packages repository
https://github.com/void-linux/void-packages/pull/36669#issuecomment-1098125029
Comment:
:facepalm: I'm the silliest human alive.
^ permalink raw reply [flat|nested] 11+ messages in thread
* Re: [PR PATCH] [Updated] git: update to 2.35.2 (fix for CVE-2022-24765)
2022-04-13 14:18 [PR PATCH] git: update to 2.35.2 (fix for CVE-2022-24765) subnut
2022-04-13 14:32 ` subnut
@ 2022-04-13 14:33 ` subnut
2022-04-13 14:33 ` subnut
` (7 subsequent siblings)
9 siblings, 0 replies; 11+ messages in thread
From: subnut @ 2022-04-13 14:33 UTC (permalink / raw)
To: ml
[-- Attachment #1: Type: text/plain, Size: 1251 bytes --]
There is an updated pull request by subnut against master on the void-packages repository
https://github.com/subnut/void-packages git
https://github.com/void-linux/void-packages/pull/36669
git: update to 2.35.2 (fix for CVE-2022-24765)
<!-- Uncomment relevant sections and delete options which are not applicable -->
#### Testing the changes
- I tested the changes in this PR: **NO**
<!--
#### New package
- This new package conforms to the [quality requirements](https://github.com/void-linux/void-packages/blob/master/Manual.md#quality-requirements): **YES**|**NO**
-->
<!-- Note: If the build is likely to take more than 2 hours, please add ci skip tag as described in
https://github.com/void-linux/void-packages/blob/master/CONTRIBUTING.md#continuous-integration
and test at least one native build and, if supported, at least one cross build.
Ignore this section if this PR is not skipping CI.
-->
<!--
#### Local build testing
- I built this PR locally for my native architecture, (ARCH-LIBC)
- I built this PR locally for these architectures (if supported. mark crossbuilds):
- aarch64-musl
- armv7l
- armv6l-musl
-->
A patch file from https://github.com/void-linux/void-packages/pull/36669.patch is attached
[-- Warning: decoded text below may be mangled, UTF-8 assumed --]
[-- Attachment #2: github-pr-git-36669.patch --]
[-- Type: text/x-diff, Size: 1153 bytes --]
From 5191ac337d834cc8b8c1e16c54258ff49bc4063d Mon Sep 17 00:00:00 2001
From: Subhaditya Nath <sn03.general@gmail.com>
Date: Wed, 13 Apr 2022 19:36:15 +0530
Subject: [PATCH] git: update to 2.35.2
---
srcpkgs/git/template | 4 ++--
1 file changed, 2 insertions(+), 2 deletions(-)
diff --git a/srcpkgs/git/template b/srcpkgs/git/template
index 929472b982b2..865c814fca51 100644
--- a/srcpkgs/git/template
+++ b/srcpkgs/git/template
@@ -1,6 +1,6 @@
# Template file for 'git'
pkgname=git
-version=2.35.1
+version=2.35.2
revision=1
hostmakedepends="asciidoc gettext perl pkg-config tk xmlto"
makedepends="libglib-devel libcurl-devel libsecret-devel pcre2-devel tk-devel"
@@ -14,7 +14,7 @@ license="GPL-2.0-only"
homepage="https://git-scm.com/"
changelog="https://raw.githubusercontent.com/git/git/master/Documentation/RelNotes/${version}.txt"
distfiles="https://www.kernel.org/pub/software/scm/git/git-${version}.tar.xz"
-checksum=d768528e6443f65a203036266f1ca50f9d127ba89751e32ead37117ed9191080
+checksum=c73d0c4fa5dcebdb2ccc293900952351cc5fb89224bb133c116305f45ae600f3
replaces="git-perl>=0"
register_shell=/usr/bin/git-shell
python_version=3
^ permalink raw reply [flat|nested] 11+ messages in thread
* Re: git: update to 2.35.2 (fix for CVE-2022-24765)
2022-04-13 14:18 [PR PATCH] git: update to 2.35.2 (fix for CVE-2022-24765) subnut
2022-04-13 14:32 ` subnut
2022-04-13 14:33 ` [PR PATCH] [Updated] " subnut
@ 2022-04-13 14:33 ` subnut
2022-04-13 14:33 ` subnut
` (6 subsequent siblings)
9 siblings, 0 replies; 11+ messages in thread
From: subnut @ 2022-04-13 14:33 UTC (permalink / raw)
To: ml
[-- Attachment #1: Type: text/plain, Size: 256 bytes --]
New comment by subnut on void-packages repository
https://github.com/void-linux/void-packages/pull/36669#issuecomment-1098125029
Comment:
:facepalm: I'm the silliest human alive.
<br/><br/><br/><br/><br/><br/>
I forgot to update the checksums.
^ permalink raw reply [flat|nested] 11+ messages in thread
* Re: git: update to 2.35.2 (fix for CVE-2022-24765)
2022-04-13 14:18 [PR PATCH] git: update to 2.35.2 (fix for CVE-2022-24765) subnut
` (2 preceding siblings ...)
2022-04-13 14:33 ` subnut
@ 2022-04-13 14:33 ` subnut
2022-04-13 17:29 ` wael444
` (5 subsequent siblings)
9 siblings, 0 replies; 11+ messages in thread
From: subnut @ 2022-04-13 14:33 UTC (permalink / raw)
To: ml
[-- Attachment #1: Type: text/plain, Size: 256 bytes --]
New comment by subnut on void-packages repository
https://github.com/void-linux/void-packages/pull/36669#issuecomment-1098125029
Comment:
:facepalm: I'm the silliest human alive.
<br/><br/><br/><br/><br/><br/>
I forgot to update the checksums.
^ permalink raw reply [flat|nested] 11+ messages in thread
* Re: git: update to 2.35.2 (fix for CVE-2022-24765)
2022-04-13 14:18 [PR PATCH] git: update to 2.35.2 (fix for CVE-2022-24765) subnut
` (3 preceding siblings ...)
2022-04-13 14:33 ` subnut
@ 2022-04-13 17:29 ` wael444
2022-04-14 1:27 ` classabbyamp
` (4 subsequent siblings)
9 siblings, 0 replies; 11+ messages in thread
From: wael444 @ 2022-04-13 17:29 UTC (permalink / raw)
To: ml
[-- Attachment #1: Type: text/plain, Size: 190 bytes --]
New comment by wael444 on void-packages repository
https://github.com/void-linux/void-packages/pull/36669#issuecomment-1098306864
Comment:
isn't CVE-2022-24765 related to Git for Windows?
^ permalink raw reply [flat|nested] 11+ messages in thread
* Re: git: update to 2.35.2 (fix for CVE-2022-24765)
2022-04-13 14:18 [PR PATCH] git: update to 2.35.2 (fix for CVE-2022-24765) subnut
` (4 preceding siblings ...)
2022-04-13 17:29 ` wael444
@ 2022-04-14 1:27 ` classabbyamp
2022-04-14 12:21 ` leahneukirchen
` (3 subsequent siblings)
9 siblings, 0 replies; 11+ messages in thread
From: classabbyamp @ 2022-04-14 1:27 UTC (permalink / raw)
To: ml
[-- Attachment #1: Type: text/plain, Size: 371 bytes --]
New comment by classabbyamp on void-packages repository
https://github.com/void-linux/void-packages/pull/36669#issuecomment-1098622275
Comment:
> isn't CVE-2022-24765 related to Git for Windows?
CVE-2022-24767 is only for windows, 24765 is for any multi-user machine (but it'd be harder to do on linux than windows without privilege escalation or some other exploit)
^ permalink raw reply [flat|nested] 11+ messages in thread
* Re: git: update to 2.35.2 (fix for CVE-2022-24765)
2022-04-13 14:18 [PR PATCH] git: update to 2.35.2 (fix for CVE-2022-24765) subnut
` (5 preceding siblings ...)
2022-04-14 1:27 ` classabbyamp
@ 2022-04-14 12:21 ` leahneukirchen
2022-04-14 13:49 ` [PR PATCH] [Updated] " subnut
` (2 subsequent siblings)
9 siblings, 0 replies; 11+ messages in thread
From: leahneukirchen @ 2022-04-14 12:21 UTC (permalink / raw)
To: ml
[-- Attachment #1: Type: text/plain, Size: 171 bytes --]
New comment by leahneukirchen on void-packages repository
https://github.com/void-linux/void-packages/pull/36669#issuecomment-1099128088
Comment:
2.35.3 is out already.
^ permalink raw reply [flat|nested] 11+ messages in thread
* Re: [PR PATCH] [Updated] git: update to 2.35.2 (fix for CVE-2022-24765)
2022-04-13 14:18 [PR PATCH] git: update to 2.35.2 (fix for CVE-2022-24765) subnut
` (6 preceding siblings ...)
2022-04-14 12:21 ` leahneukirchen
@ 2022-04-14 13:49 ` subnut
2022-04-14 13:49 ` subnut
2022-04-16 16:11 ` [PR PATCH] [Closed]: git: update to 2.35.3 sgn
9 siblings, 0 replies; 11+ messages in thread
From: subnut @ 2022-04-14 13:49 UTC (permalink / raw)
To: ml
[-- Attachment #1: Type: text/plain, Size: 1251 bytes --]
There is an updated pull request by subnut against master on the void-packages repository
https://github.com/subnut/void-packages git
https://github.com/void-linux/void-packages/pull/36669
git: update to 2.35.2 (fix for CVE-2022-24765)
<!-- Uncomment relevant sections and delete options which are not applicable -->
#### Testing the changes
- I tested the changes in this PR: **NO**
<!--
#### New package
- This new package conforms to the [quality requirements](https://github.com/void-linux/void-packages/blob/master/Manual.md#quality-requirements): **YES**|**NO**
-->
<!-- Note: If the build is likely to take more than 2 hours, please add ci skip tag as described in
https://github.com/void-linux/void-packages/blob/master/CONTRIBUTING.md#continuous-integration
and test at least one native build and, if supported, at least one cross build.
Ignore this section if this PR is not skipping CI.
-->
<!--
#### Local build testing
- I built this PR locally for my native architecture, (ARCH-LIBC)
- I built this PR locally for these architectures (if supported. mark crossbuilds):
- aarch64-musl
- armv7l
- armv6l-musl
-->
A patch file from https://github.com/void-linux/void-packages/pull/36669.patch is attached
[-- Warning: decoded text below may be mangled, UTF-8 assumed --]
[-- Attachment #2: github-pr-git-36669.patch --]
[-- Type: text/x-diff, Size: 1153 bytes --]
From 68ad232bd0f8e65d393e04a3176beb0270dc1e1c Mon Sep 17 00:00:00 2001
From: Subhaditya Nath <sn03.general@gmail.com>
Date: Wed, 13 Apr 2022 19:36:15 +0530
Subject: [PATCH] git: update to 2.35.3
---
srcpkgs/git/template | 4 ++--
1 file changed, 2 insertions(+), 2 deletions(-)
diff --git a/srcpkgs/git/template b/srcpkgs/git/template
index 929472b982b2..8b05a0f58024 100644
--- a/srcpkgs/git/template
+++ b/srcpkgs/git/template
@@ -1,6 +1,6 @@
# Template file for 'git'
pkgname=git
-version=2.35.1
+version=2.35.3
revision=1
hostmakedepends="asciidoc gettext perl pkg-config tk xmlto"
makedepends="libglib-devel libcurl-devel libsecret-devel pcre2-devel tk-devel"
@@ -14,7 +14,7 @@ license="GPL-2.0-only"
homepage="https://git-scm.com/"
changelog="https://raw.githubusercontent.com/git/git/master/Documentation/RelNotes/${version}.txt"
distfiles="https://www.kernel.org/pub/software/scm/git/git-${version}.tar.xz"
-checksum=d768528e6443f65a203036266f1ca50f9d127ba89751e32ead37117ed9191080
+checksum=15e9db4f9bf2ed9fff30cb62a00c5c7c0901015f5ab048cdb4e8b04ddee00fa2
replaces="git-perl>=0"
register_shell=/usr/bin/git-shell
python_version=3
^ permalink raw reply [flat|nested] 11+ messages in thread
* Re: git: update to 2.35.2 (fix for CVE-2022-24765)
2022-04-13 14:18 [PR PATCH] git: update to 2.35.2 (fix for CVE-2022-24765) subnut
` (7 preceding siblings ...)
2022-04-14 13:49 ` [PR PATCH] [Updated] " subnut
@ 2022-04-14 13:49 ` subnut
2022-04-16 16:11 ` [PR PATCH] [Closed]: git: update to 2.35.3 sgn
9 siblings, 0 replies; 11+ messages in thread
From: subnut @ 2022-04-14 13:49 UTC (permalink / raw)
To: ml
[-- Attachment #1: Type: text/plain, Size: 173 bytes --]
New comment by subnut on void-packages repository
https://github.com/void-linux/void-packages/pull/36669#issuecomment-1099207163
Comment:
@leahneukirchen Thanks. Updated.
^ permalink raw reply [flat|nested] 11+ messages in thread
* Re: [PR PATCH] [Closed]: git: update to 2.35.3
2022-04-13 14:18 [PR PATCH] git: update to 2.35.2 (fix for CVE-2022-24765) subnut
` (8 preceding siblings ...)
2022-04-14 13:49 ` subnut
@ 2022-04-16 16:11 ` sgn
9 siblings, 0 replies; 11+ messages in thread
From: sgn @ 2022-04-16 16:11 UTC (permalink / raw)
To: ml
[-- Attachment #1: Type: text/plain, Size: 1076 bytes --]
There's a closed pull request on the void-packages repository
git: update to 2.35.3
https://github.com/void-linux/void-packages/pull/36669
Description:
<!-- Uncomment relevant sections and delete options which are not applicable -->
#### Testing the changes
- I tested the changes in this PR: **NO**
<!--
#### New package
- This new package conforms to the [quality requirements](https://github.com/void-linux/void-packages/blob/master/Manual.md#quality-requirements): **YES**|**NO**
-->
<!-- Note: If the build is likely to take more than 2 hours, please add ci skip tag as described in
https://github.com/void-linux/void-packages/blob/master/CONTRIBUTING.md#continuous-integration
and test at least one native build and, if supported, at least one cross build.
Ignore this section if this PR is not skipping CI.
-->
<!--
#### Local build testing
- I built this PR locally for my native architecture, (ARCH-LIBC)
- I built this PR locally for these architectures (if supported. mark crossbuilds):
- aarch64-musl
- armv7l
- armv6l-musl
-->
^ permalink raw reply [flat|nested] 11+ messages in thread
end of thread, other threads:[~2022-04-16 16:12 UTC | newest]
Thread overview: 11+ messages (download: mbox.gz / follow: Atom feed)
-- links below jump to the message on this page --
2022-04-13 14:18 [PR PATCH] git: update to 2.35.2 (fix for CVE-2022-24765) subnut
2022-04-13 14:32 ` subnut
2022-04-13 14:33 ` [PR PATCH] [Updated] " subnut
2022-04-13 14:33 ` subnut
2022-04-13 14:33 ` subnut
2022-04-13 17:29 ` wael444
2022-04-14 1:27 ` classabbyamp
2022-04-14 12:21 ` leahneukirchen
2022-04-14 13:49 ` [PR PATCH] [Updated] " subnut
2022-04-14 13:49 ` subnut
2022-04-16 16:11 ` [PR PATCH] [Closed]: git: update to 2.35.3 sgn
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox;
as well as URLs for NNTP newsgroup(s).