From mboxrd@z Thu Jan 1 00:00:00 1970 Return-Path: Received: from mp1 ([2001:41d0:2:4a6f::]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) by ms0.migadu.com with LMTPS id kA3ZAcuGXGCrLAEAgWs5BA (envelope-from ) for ; Thu, 25 Mar 2021 13:49:15 +0100 Received: from aspmx1.migadu.com ([2001:41d0:2:4a6f::]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits)) by mp1 with LMTPS id 8HoGOcqGXGBbDQAAbx9fmQ (envelope-from ) for ; Thu, 25 Mar 2021 12:49:14 +0000 Received: from lists.gnu.org (lists.gnu.org [209.51.188.17]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by aspmx1.migadu.com (Postfix) with ESMTPS id 19292D1D3 for ; Thu, 25 Mar 2021 13:49:14 +0100 (CET) Received: from localhost ([::1]:43440 helo=lists1p.gnu.org) by lists.gnu.org with esmtp (Exim 4.90_1) (envelope-from ) id 1lPPQG-0000mW-T6 for larch@yhetil.org; Thu, 25 Mar 2021 08:49:12 -0400 Received: from eggs.gnu.org ([2001:470:142:3::10]:51130) by lists.gnu.org with esmtps (TLS1.2:ECDHE_RSA_AES_256_GCM_SHA384:256) (Exim 4.90_1) (envelope-from ) id 1lPPQ8-0000ky-3c for bug-guix@gnu.org; Thu, 25 Mar 2021 08:49:04 -0400 Received: from debbugs.gnu.org ([209.51.188.43]:54114) by eggs.gnu.org with esmtps (TLS1.2:ECDHE_RSA_AES_128_GCM_SHA256:128) (Exim 4.90_1) (envelope-from ) id 1lPPQ6-00019h-8V for bug-guix@gnu.org; Thu, 25 Mar 2021 08:49:03 -0400 Received: from Debian-debbugs by debbugs.gnu.org with local (Exim 4.84_2) (envelope-from ) id 1lPPQ6-0006DE-6e for bug-guix@gnu.org; Thu, 25 Mar 2021 08:49:02 -0400 X-Loop: help-debbugs@gnu.org Subject: bug#47257: [PATCH v3] gnu: mariadb: Fix CVE-2021-27928. Resent-From: =?UTF-8?Q?L=C3=A9o?= Le Bouter Original-Sender: "Debbugs-submit" Resent-CC: bug-guix@gnu.org Resent-Date: Thu, 25 Mar 2021 12:49:02 +0000 Resent-Message-ID: Resent-Sender: help-debbugs@gnu.org X-GNU-PR-Message: followup 47257 X-GNU-PR-Package: guix X-GNU-PR-Keywords: security To: 47257@debbugs.gnu.org Received: via spool by 47257-submit@debbugs.gnu.org id=B47257.161667653023862 (code B ref 47257); Thu, 25 Mar 2021 12:49:02 +0000 Received: (at 47257) by debbugs.gnu.org; 25 Mar 2021 12:48:50 +0000 Received: from localhost ([127.0.0.1]:37427 helo=debbugs.gnu.org) by debbugs.gnu.org with esmtp (Exim 4.84_2) (envelope-from ) id 1lPPPu-0006Cn-57 for submit@debbugs.gnu.org; Thu, 25 Mar 2021 08:48:50 -0400 Received: from mail.zaclys.net ([178.33.93.72]:37657) by debbugs.gnu.org with esmtp (Exim 4.84_2) (envelope-from ) id 1lPPPs-0006Ca-8u for 47257@debbugs.gnu.org; Thu, 25 Mar 2021 08:48:49 -0400 Received: from guix-xps.local (82-64-145-38.subs.proxad.net [82.64.145.38]) (authenticated bits=0) by mail.zaclys.net (8.14.7/8.14.7) with ESMTP id 12PCmg48044062 (version=TLSv1/SSLv3 cipher=ECDHE-RSA-AES256-GCM-SHA384 bits=256 verify=NO) for <47257@debbugs.gnu.org>; Thu, 25 Mar 2021 13:48:42 +0100 DMARC-Filter: OpenDMARC Filter v1.3.2 mail.zaclys.net 12PCmg48044062 Authentication-Results: mail.zaclys.net; spf=fail smtp.mailfrom=lle-bout@zaclys.net DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=zaclys.net; s=default; t=1616676522; bh=G7xlpV2/nFE/A80WPwBOAgHS/KqbSvwGwt3l+Fjmv7Y=; h=Subject:From:To:Date:In-Reply-To:References:From; b=q6xwiMbR5gc3X1y6Nmw2RMPULA9+FvDEI4y2I+PEIktscHfYHk/JcmfqjAqZEERwD 3OSj6uQ0EiRY/SmLteH/DNfJSEMXAS7R/m555/JNfo9i/RNlQBetvwhVF0V1ROQELh J1x1BxdNCjKVxsL9ij0i0C4URUTwNd+6D04FG0yA= Message-ID: Date: Thu, 25 Mar 2021 13:48:41 +0100 In-Reply-To: <20210325123921.9800-1-lle-bout@zaclys.net> References: <20210325123921.9800-1-lle-bout@zaclys.net> Content-Type: multipart/signed; micalg="pgp-sha512"; protocol="application/pgp-signature"; boundary="=-DfBZWGvOjOtodEGw8CSk" User-Agent: Evolution 3.34.2 MIME-Version: 1.0 X-BeenThere: debbugs-submit@debbugs.gnu.org X-Mailman-Version: 2.1.18 Precedence: list X-BeenThere: bug-guix@gnu.org List-Id: Bug reports for GNU Guix List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , Errors-To: bug-guix-bounces+larch=yhetil.org@gnu.org Sender: "bug-Guix" Reply-to: =?UTF-8?Q?L=C3=A9o?= Le Bouter From: =?UTF-8?Q?L=C3=A9o?= Le Bouter via Bug reports for GNU Guix X-Migadu-Flow: FLOW_IN ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=yhetil.org; s=key1; t=1616676554; h=from:from:sender:sender:reply-to:reply-to:subject:subject:date:date: message-id:message-id:to:to:cc:mime-version:mime-version: content-type:content-type:resent-cc:resent-from:resent-sender: resent-message-id:in-reply-to:in-reply-to:references:references: list-id:list-help:list-unsubscribe:list-subscribe:list-post: dkim-signature; bh=G7xlpV2/nFE/A80WPwBOAgHS/KqbSvwGwt3l+Fjmv7Y=; b=CReBqIc7j3+A9vSH8HhYpBWF+s+ShUKNiHtyrjPrQCQL1Sw/kmANY9XrsiNTdZik64wWRB kOgEw4vOGt4BeqwFI8IuBtsPascRIiWgMrlXUUSAwiG3Hwc8hGws+3bDD2fwWCnqMObJ3c cXnpSiD66dyGngF+Gx1BtoKZn1rmiJuxCxz9Qb3Z0n/bm1NzjepGYd+FkMeJI8DVkX4tBi 64f1jHz8PqnNg1Mpr9J3bOQe3MedT97d/0l+ynb5gXWM8LLyodbrh18aBXAI0cjzHvViJ0 bXxD3O8RixBbOZJh18RpYms+tdwBtIi6hEn0t7s9/cp0ZJANieudyw9I8ruZXw== ARC-Seal: i=1; s=key1; d=yhetil.org; t=1616676554; a=rsa-sha256; cv=none; b=W8Jwfl5nVWNaJUB+6fkOgOcm2jiRHaHQnvhhPbfwgyCOkMc33HqcSwmxgEtMalkRqF1BNJ SNaBno3vjgByOuaBMKBS1F6tNBolJSTaluYL8Z49b7R51FXc1ijhldv48ChPjybNVx1sl0 aGbhtJ7M1hx8o7g2rtrvYLv+ZqFS3xXqftm+Atj90sonb/vhfOYtGgp49Pq+puyNozgvGX vJ4mTo4oVPZ98e7U1NO1WjZ9LgUlRlLUi4mWZYkdYWBTKcHv1Id7hICtXOE8m6LnuvCRYp 86vDPt3poYXc5R+Ba46v7aetyyLDRjb/H4iSZLS5ol+G8NEUPWc42IBYEgOGPQ== ARC-Authentication-Results: i=1; aspmx1.migadu.com; dkim=fail ("headers rsa verify failed") header.d=zaclys.net header.s=default header.b=q6xwiMbR; dmarc=pass (policy=none) header.from=gnu.org; spf=pass (aspmx1.migadu.com: domain of bug-guix-bounces@gnu.org designates 209.51.188.17 as permitted sender) smtp.mailfrom=bug-guix-bounces@gnu.org X-Migadu-Spam-Score: -5.02 Authentication-Results: aspmx1.migadu.com; dkim=fail ("headers rsa verify failed") header.d=zaclys.net header.s=default header.b=q6xwiMbR; dmarc=pass (policy=none) header.from=gnu.org; spf=pass (aspmx1.migadu.com: domain of bug-guix-bounces@gnu.org designates 209.51.188.17 as permitted sender) smtp.mailfrom=bug-guix-bounces@gnu.org X-Migadu-Queue-Id: 19292D1D3 X-Spam-Score: -5.02 X-Migadu-Scanner: scn0.migadu.com X-TUID: lPvRtf31kEjn --=-DfBZWGvOjOtodEGw8CSk Content-Type: text/plain; charset="UTF-8" Content-Transfer-Encoding: quoted-printable v3 tested and builds fine: $ ./pre-inst-env guix build mariadb /gnu/store/f70jymwyfcnsghy4jg8caibci59p8rgq-mariadb-10.5.8-dev /gnu/store/cj3qym1x1jjh02m2g23cqpbhchrbmn6c-mariadb-10.5.8-lib /gnu/store/mpb5bdf1vkwazqfmmwcvskdm50g191bg-mariadb-10.5.8 Since we don't have PoC, I can't verify the rebased patch actually fixes the security issue but it should. That's what we get when manually rebasing stuff to earlier versions. Test suite passes but not sure it actually tests this security issue being fixed. Please review, then I will push, it's been 7 days so, let's get this in. --=-DfBZWGvOjOtodEGw8CSk Content-Type: application/pgp-signature; name="signature.asc" Content-Description: This is a digitally signed message part Content-Transfer-Encoding: 7bit -----BEGIN PGP SIGNATURE----- iQIzBAABCgAdFiEEFIvLi9gL+xax3g6RRaix6GvNEKYFAmBchqkACgkQRaix6GvN EKYPgg//eqO6SAypRLSvs4AnFOgGTUuIg+lHc5CL6OBBZs1A1p0ilSFPn7MDyFuA 2JtKlkTvBiFndMem2RBKHWpxIkhd0+QTeSSSH8e2Z6c4o9a8G5uoq2b7EmmMpz8M 0sNIFCK8IhzA+nXuNngzGONKVywhY+XQ5B+6nA3P4hKDH+6zoTfhN158H9FEUz6v 2iqjj88WNVU4tZ+EJA/7TFO9T8g3JD/zX0vWpUZcaDfuot2qEEToxyp+KuA9IrUu z3LjbKSxHChtOliTWvh6Nkg1fJnMfURKXbnsAdMKJrmh/VzYDQiwTgyO52t8G19w m5iRyKl58/lksg0dixNvmU1l6pkbjvHfsGhC+0cX1tfCL1H52tgOJWHpNDY5SLSL Y9jm/yqeVomOVqQyXn1WIOKYQU6tcvyf3UFHwCsju5FKdE4pBskxQGdrRyI4vCwK a508VvxYdx155b32+a2lK+gnJnCFnlE6L+wmQhAG6o70G+E2Ki29mAh/8f0soH8U pmvwDGSXU2Ks0Xj2gVM73nmsRNbArOzYE1OfOUTzWeUMABhKLmPif/SYlBCVVyxG vx8IpiNyjC90VrxUFFFwHmx7UdWYN3qPplOR1v4st7Ot47LcDV8kpXwxN05le9+r 0CHrBxM3q5jxG1wfpQW6+PXq+W2G+WRhlSsDxlq0DCSoQpAcUMU= =Av/a -----END PGP SIGNATURE----- --=-DfBZWGvOjOtodEGw8CSk--