* [PR PATCH] yt-dlp: security update to 2023.07.06
@ 2023-07-06 21:44 selfisekai
2023-07-06 21:46 ` classabbyamp
` (2 more replies)
0 siblings, 3 replies; 4+ messages in thread
From: selfisekai @ 2023-07-06 21:44 UTC (permalink / raw)
To: ml
[-- Attachment #1: Type: text/plain, Size: 1293 bytes --]
There is a new pull request by selfisekai against master on the void-packages repository
https://github.com/selfisekai/void-packages yt-dlp-2023.07.06
https://github.com/void-linux/void-packages/pull/44889
yt-dlp: security update to 2023.07.06
fixes CVE-2023-35934
<!-- Uncomment relevant sections and delete options which are not applicable -->
#### Testing the changes
- I tested the changes in this PR: **briefly**
<!--
#### New package
- This new package conforms to the [package requirements](https://github.com/void-linux/void-packages/blob/master/CONTRIBUTING.md#package-requirements): **YES**|**NO**
-->
<!-- Note: If the build is likely to take more than 2 hours, please add ci skip tag as described in
https://github.com/void-linux/void-packages/blob/master/CONTRIBUTING.md#continuous-integration
and test at least one native build and, if supported, at least one cross build.
Ignore this section if this PR is not skipping CI.
-->
<!--
#### Local build testing
- I built this PR locally for my native architecture, (ARCH-LIBC)
- I built this PR locally for these architectures (if supported. mark crossbuilds):
- aarch64-musl
- armv7l
- armv6l-musl
-->
A patch file from https://github.com/void-linux/void-packages/pull/44889.patch is attached
[-- Warning: decoded text below may be mangled, UTF-8 assumed --]
[-- Attachment #2: github-pr-yt-dlp-2023.07.06-44889.patch --]
[-- Type: text/x-diff, Size: 1061 bytes --]
From 4ba2253535d2336bca143a2cbb547d918726e76e Mon Sep 17 00:00:00 2001
From: Lauren Liberda <laura@selfisekai.rocks>
Date: Thu, 6 Jul 2023 23:34:00 +0200
Subject: [PATCH] yt-dlp: security update to 2023.07.06
fixes CVE-2023-35934
---
srcpkgs/yt-dlp/template | 4 ++--
1 file changed, 2 insertions(+), 2 deletions(-)
diff --git a/srcpkgs/yt-dlp/template b/srcpkgs/yt-dlp/template
index fbad7395bf14..e98badbb0a3e 100644
--- a/srcpkgs/yt-dlp/template
+++ b/srcpkgs/yt-dlp/template
@@ -1,6 +1,6 @@
# Template file for 'yt-dlp'
pkgname=yt-dlp
-version=2023.06.22
+version=2023.07.06
revision=1
build_style=python3-module
make_check_args="-k not(download)"
@@ -13,4 +13,4 @@ license="Unlicense"
homepage="https://github.com/yt-dlp/yt-dlp"
changelog="https://raw.githubusercontent.com/yt-dlp/yt-dlp/master/Changelog.md"
distfiles="https://github.com/yt-dlp/yt-dlp/releases/download/$version/yt-dlp.tar.gz"
-checksum=5291eb8e077ee1bc2585f4f522d75f1e4f9fd4c3374bace1572cf59b97bdd9c3
+checksum=6d2115b84b6c11867f92cf4c23705b536bfa0ba9d538b1885f52da6756f8c980
^ permalink raw reply [flat|nested] 4+ messages in thread
* Re: yt-dlp: security update to 2023.07.06
2023-07-06 21:44 [PR PATCH] yt-dlp: security update to 2023.07.06 selfisekai
@ 2023-07-06 21:46 ` classabbyamp
2023-07-06 21:46 ` [PR PATCH] [Updated] " selfisekai
2023-07-07 13:41 ` [PR PATCH] [Merged]: " sgn
2 siblings, 0 replies; 4+ messages in thread
From: classabbyamp @ 2023-07-06 21:46 UTC (permalink / raw)
To: ml
[-- Attachment #1: Type: text/plain, Size: 211 bytes --]
New comment by classabbyamp on void-packages repository
https://github.com/void-linux/void-packages/pull/44889#issuecomment-1624348298
Comment:
commit msg should just be `update to` not `security update to`
^ permalink raw reply [flat|nested] 4+ messages in thread
* Re: [PR PATCH] [Updated] yt-dlp: security update to 2023.07.06
2023-07-06 21:44 [PR PATCH] yt-dlp: security update to 2023.07.06 selfisekai
2023-07-06 21:46 ` classabbyamp
@ 2023-07-06 21:46 ` selfisekai
2023-07-07 13:41 ` [PR PATCH] [Merged]: " sgn
2 siblings, 0 replies; 4+ messages in thread
From: selfisekai @ 2023-07-06 21:46 UTC (permalink / raw)
To: ml
[-- Attachment #1: Type: text/plain, Size: 1298 bytes --]
There is an updated pull request by selfisekai against master on the void-packages repository
https://github.com/selfisekai/void-packages yt-dlp-2023.07.06
https://github.com/void-linux/void-packages/pull/44889
yt-dlp: security update to 2023.07.06
fixes CVE-2023-35934
<!-- Uncomment relevant sections and delete options which are not applicable -->
#### Testing the changes
- I tested the changes in this PR: **briefly**
<!--
#### New package
- This new package conforms to the [package requirements](https://github.com/void-linux/void-packages/blob/master/CONTRIBUTING.md#package-requirements): **YES**|**NO**
-->
<!-- Note: If the build is likely to take more than 2 hours, please add ci skip tag as described in
https://github.com/void-linux/void-packages/blob/master/CONTRIBUTING.md#continuous-integration
and test at least one native build and, if supported, at least one cross build.
Ignore this section if this PR is not skipping CI.
-->
<!--
#### Local build testing
- I built this PR locally for my native architecture, (ARCH-LIBC)
- I built this PR locally for these architectures (if supported. mark crossbuilds):
- aarch64-musl
- armv7l
- armv6l-musl
-->
A patch file from https://github.com/void-linux/void-packages/pull/44889.patch is attached
[-- Warning: decoded text below may be mangled, UTF-8 assumed --]
[-- Attachment #2: github-pr-yt-dlp-2023.07.06-44889.patch --]
[-- Type: text/x-diff, Size: 1052 bytes --]
From e054970b34c17374416f3749a8952777cdfa560b Mon Sep 17 00:00:00 2001
From: Lauren Liberda <laura@selfisekai.rocks>
Date: Thu, 6 Jul 2023 23:34:00 +0200
Subject: [PATCH] yt-dlp: update to 2023.07.06
fixes CVE-2023-35934
---
srcpkgs/yt-dlp/template | 4 ++--
1 file changed, 2 insertions(+), 2 deletions(-)
diff --git a/srcpkgs/yt-dlp/template b/srcpkgs/yt-dlp/template
index fbad7395bf14..e98badbb0a3e 100644
--- a/srcpkgs/yt-dlp/template
+++ b/srcpkgs/yt-dlp/template
@@ -1,6 +1,6 @@
# Template file for 'yt-dlp'
pkgname=yt-dlp
-version=2023.06.22
+version=2023.07.06
revision=1
build_style=python3-module
make_check_args="-k not(download)"
@@ -13,4 +13,4 @@ license="Unlicense"
homepage="https://github.com/yt-dlp/yt-dlp"
changelog="https://raw.githubusercontent.com/yt-dlp/yt-dlp/master/Changelog.md"
distfiles="https://github.com/yt-dlp/yt-dlp/releases/download/$version/yt-dlp.tar.gz"
-checksum=5291eb8e077ee1bc2585f4f522d75f1e4f9fd4c3374bace1572cf59b97bdd9c3
+checksum=6d2115b84b6c11867f92cf4c23705b536bfa0ba9d538b1885f52da6756f8c980
^ permalink raw reply [flat|nested] 4+ messages in thread
* Re: [PR PATCH] [Merged]: yt-dlp: security update to 2023.07.06
2023-07-06 21:44 [PR PATCH] yt-dlp: security update to 2023.07.06 selfisekai
2023-07-06 21:46 ` classabbyamp
2023-07-06 21:46 ` [PR PATCH] [Updated] " selfisekai
@ 2023-07-07 13:41 ` sgn
2 siblings, 0 replies; 4+ messages in thread
From: sgn @ 2023-07-07 13:41 UTC (permalink / raw)
To: ml
[-- Attachment #1: Type: text/plain, Size: 1126 bytes --]
There's a merged pull request on the void-packages repository
yt-dlp: security update to 2023.07.06
https://github.com/void-linux/void-packages/pull/44889
Description:
fixes CVE-2023-35934
<!-- Uncomment relevant sections and delete options which are not applicable -->
#### Testing the changes
- I tested the changes in this PR: **briefly**
<!--
#### New package
- This new package conforms to the [package requirements](https://github.com/void-linux/void-packages/blob/master/CONTRIBUTING.md#package-requirements): **YES**|**NO**
-->
<!-- Note: If the build is likely to take more than 2 hours, please add ci skip tag as described in
https://github.com/void-linux/void-packages/blob/master/CONTRIBUTING.md#continuous-integration
and test at least one native build and, if supported, at least one cross build.
Ignore this section if this PR is not skipping CI.
-->
<!--
#### Local build testing
- I built this PR locally for my native architecture, (ARCH-LIBC)
- I built this PR locally for these architectures (if supported. mark crossbuilds):
- aarch64-musl
- armv7l
- armv6l-musl
-->
^ permalink raw reply [flat|nested] 4+ messages in thread
end of thread, other threads:[~2023-07-07 13:41 UTC | newest]
Thread overview: 4+ messages (download: mbox.gz / follow: Atom feed)
-- links below jump to the message on this page --
2023-07-06 21:44 [PR PATCH] yt-dlp: security update to 2023.07.06 selfisekai
2023-07-06 21:46 ` classabbyamp
2023-07-06 21:46 ` [PR PATCH] [Updated] " selfisekai
2023-07-07 13:41 ` [PR PATCH] [Merged]: " sgn
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox;
as well as URLs for NNTP newsgroup(s).