* [PR PATCH] libtasn1: update to 4.19.0. CVE-2021-46848
@ 2022-12-21 21:50 crtxcr
2022-12-21 22:15 ` crtxcr
` (2 more replies)
0 siblings, 3 replies; 4+ messages in thread
From: crtxcr @ 2022-12-21 21:50 UTC (permalink / raw)
To: ml
[-- Attachment #1: Type: text/plain, Size: 1173 bytes --]
There is a new pull request by crtxcr against master on the void-packages repository
https://github.com/crtxcr/void-packages update_libtasn1
https://github.com/void-linux/void-packages/pull/41226
libtasn1: update to 4.19.0. CVE-2021-46848
<!-- Uncomment relevant sections and delete options which are not applicable -->
#### Testing the changes
- I tested the changes in this PR: **YES**
<!--
#### New package
- This new package conforms to the [package requirements](https://github.com/void-linux/void-packages/blob/master/CONTRIBUTING.md#package-requirements): **YES**|**NO**
-->
<!-- Note: If the build is likely to take more than 2 hours, please add ci skip tag as described in
https://github.com/void-linux/void-packages/blob/master/CONTRIBUTING.md#continuous-integration
and test at least one native build and, if supported, at least one cross build.
Ignore this section if this PR is not skipping CI.
-->
#### Local build testing
- I built this PR locally for my native architecture, (x86_64-glibc)
Tested using test suite of libtasn1 and gnutls.
A patch file from https://github.com/void-linux/void-packages/pull/41226.patch is attached
[-- Warning: decoded text below may be mangled, UTF-8 assumed --]
[-- Attachment #2: github-pr-update_libtasn1-41226.patch --]
[-- Type: text/x-diff, Size: 1094 bytes --]
From 9576906c5840cc12f31711b2814e80a84276c110 Mon Sep 17 00:00:00 2001
From: Albert Schwarzkopf <dev-voidlinux@quitesimple.org>
Date: Wed, 21 Dec 2022 22:45:27 +0100
Subject: [PATCH] libtasn1: update to 4.19.0.
---
srcpkgs/libtasn1/template | 4 ++--
1 file changed, 2 insertions(+), 2 deletions(-)
diff --git a/srcpkgs/libtasn1/template b/srcpkgs/libtasn1/template
index d3e0efe6a7a7..38ea364ff51e 100644
--- a/srcpkgs/libtasn1/template
+++ b/srcpkgs/libtasn1/template
@@ -1,6 +1,6 @@
# Template file for 'libtasn1'
pkgname=libtasn1
-version=4.18.0
+version=4.19.0
revision=1
build_style=gnu-configure
hostmakedepends="perl"
@@ -10,7 +10,7 @@ license="GPL-3.0-only, LGPL-2.1-only"
homepage="https://www.gnu.org/software/libtasn1/"
changelog="https://gitlab.com/gnutls/libtasn1/-/raw/master/NEWS"
distfiles="${GNU_SITE}/$pkgname/$pkgname-$version.tar.gz"
-checksum=4365c154953563d64c67a024b607d1ee75c6db76e0d0f65709ea80a334cd1898
+checksum=1613f0ac1cf484d6ec0ce3b8c06d56263cc7242f1c23b30d82d23de345a63f7a
libtasn1-devel_package() {
depends="${sourcepkg}-${version}_${revision}"
^ permalink raw reply [flat|nested] 4+ messages in thread
* Re: libtasn1: update to 4.19.0. CVE-2021-46848
2022-12-21 21:50 [PR PATCH] libtasn1: update to 4.19.0. CVE-2021-46848 crtxcr
@ 2022-12-21 22:15 ` crtxcr
2023-01-19 6:05 ` [PR PATCH] [Merged]: " Vaelatern
2023-01-19 6:11 ` Vaelatern
2 siblings, 0 replies; 4+ messages in thread
From: crtxcr @ 2022-12-21 22:15 UTC (permalink / raw)
To: ml
[-- Attachment #1: Type: text/plain, Size: 336 bytes --]
New comment by crtxcr on void-packages repository
https://github.com/void-linux/void-packages/pull/41226#issuecomment-1362173255
Comment:
tests/version.c test fails on musl, I suspect because strverscmp() used by lib/version.c behaves differently in musl. Maybe will just patch out that particular check in the test, as alpine does.
^ permalink raw reply [flat|nested] 4+ messages in thread
* Re: [PR PATCH] [Merged]: libtasn1: update to 4.19.0. CVE-2021-46848
2022-12-21 21:50 [PR PATCH] libtasn1: update to 4.19.0. CVE-2021-46848 crtxcr
2022-12-21 22:15 ` crtxcr
@ 2023-01-19 6:05 ` Vaelatern
2023-01-19 6:11 ` Vaelatern
2 siblings, 0 replies; 4+ messages in thread
From: Vaelatern @ 2023-01-19 6:05 UTC (permalink / raw)
To: ml
[-- Attachment #1: Type: text/plain, Size: 1016 bytes --]
There's a merged pull request on the void-packages repository
libtasn1: update to 4.19.0. CVE-2021-46848
https://github.com/void-linux/void-packages/pull/41226
Description:
<!-- Uncomment relevant sections and delete options which are not applicable -->
#### Testing the changes
- I tested the changes in this PR: **YES**
<!--
#### New package
- This new package conforms to the [package requirements](https://github.com/void-linux/void-packages/blob/master/CONTRIBUTING.md#package-requirements): **YES**|**NO**
-->
<!-- Note: If the build is likely to take more than 2 hours, please add ci skip tag as described in
https://github.com/void-linux/void-packages/blob/master/CONTRIBUTING.md#continuous-integration
and test at least one native build and, if supported, at least one cross build.
Ignore this section if this PR is not skipping CI.
-->
#### Local build testing
- I built this PR locally for my native architecture, (x86_64-glibc)
Tested using test suite of libtasn1 and gnutls.
^ permalink raw reply [flat|nested] 4+ messages in thread
* Re: libtasn1: update to 4.19.0. CVE-2021-46848
2022-12-21 21:50 [PR PATCH] libtasn1: update to 4.19.0. CVE-2021-46848 crtxcr
2022-12-21 22:15 ` crtxcr
2023-01-19 6:05 ` [PR PATCH] [Merged]: " Vaelatern
@ 2023-01-19 6:11 ` Vaelatern
2 siblings, 0 replies; 4+ messages in thread
From: Vaelatern @ 2023-01-19 6:11 UTC (permalink / raw)
To: ml
[-- Attachment #1: Type: text/plain, Size: 158 bytes --]
New comment by Vaelatern on void-packages repository
https://github.com/void-linux/void-packages/pull/41226#issuecomment-1396484709
Comment:
7a596df179 lol
^ permalink raw reply [flat|nested] 4+ messages in thread
end of thread, other threads:[~2023-01-19 6:11 UTC | newest]
Thread overview: 4+ messages (download: mbox.gz / follow: Atom feed)
-- links below jump to the message on this page --
2022-12-21 21:50 [PR PATCH] libtasn1: update to 4.19.0. CVE-2021-46848 crtxcr
2022-12-21 22:15 ` crtxcr
2023-01-19 6:05 ` [PR PATCH] [Merged]: " Vaelatern
2023-01-19 6:11 ` Vaelatern
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox;
as well as URLs for NNTP newsgroup(s).