* [bug#57354] [PATCH 1/2] gnu: rust-regex-syntax: Update to 0.6.27.
@ 2022-08-23 14:30 gyara via Guix-patches via
2022-08-23 14:30 ` [bug#57355] [PATCH 2/2] gnu: rust-regex: Update to 1.6.0 [fixes CVE-2022-24713] gyara via Guix-patches via
2022-08-29 16:33 ` bug#57354: [PATCH 1/2] gnu: rust-regex-syntax: Update to 0.6.27 Marius Bakke
0 siblings, 2 replies; 4+ messages in thread
From: gyara via Guix-patches via @ 2022-08-23 14:30 UTC (permalink / raw)
To: 57354; +Cc: gyara
---
This patch update rust-regex to 1.6.0 to fix CVE-2022-24713.
gnu/packages/crates-io.scm | 4 ++--
1 file changed, 2 insertions(+), 2 deletions(-)
diff --git a/gnu/packages/crates-io.scm b/gnu/packages/crates-io.scm
index cfafce9aa3..9c44fec198 100644
--- a/gnu/packages/crates-io.scm
+++ b/gnu/packages/crates-io.scm
@@ -48811,14 +48811,14 @@ (define-public rust-regex-automata-0.1
(define-public rust-regex-syntax-0.6
(package
(name "rust-regex-syntax")
- (version "0.6.25")
+ (version "0.6.27")
(source
(origin
(method url-fetch)
(uri (crate-uri "regex-syntax" version))
(file-name (string-append name "-" version ".tar.gz"))
(sha256
- (base32 "16y87hz1bxmmz6kk360cxwfm3jnbsxb3x4zw9x1gzz7khic2i5zl"))))
+ (base32 "0i32nnvyzzkvz1rqp2qyfxrp2170859z8ck37jd63c8irrrppy53"))))
(build-system cargo-build-system)
(home-page "https://github.com/rust-lang/regex")
(synopsis "Regular expression parser")
--
2.37.2
^ permalink raw reply related [flat|nested] 4+ messages in thread
* [bug#57355] [PATCH 2/2] gnu: rust-regex: Update to 1.6.0 [fixes CVE-2022-24713].
2022-08-23 14:30 [bug#57354] [PATCH 1/2] gnu: rust-regex-syntax: Update to 0.6.27 gyara via Guix-patches via
@ 2022-08-23 14:30 ` gyara via Guix-patches via
2022-10-16 6:41 ` bug#57355: Closed due to already merged ギャラ via Guix-patches via
2022-08-29 16:33 ` bug#57354: [PATCH 1/2] gnu: rust-regex-syntax: Update to 0.6.27 Marius Bakke
1 sibling, 1 reply; 4+ messages in thread
From: gyara via Guix-patches via @ 2022-08-23 14:30 UTC (permalink / raw)
To: 57355; +Cc: gyara
---
This patch update rust-regex to 1.6.0 to fix CVE-2022-24713.
gnu/packages/crates-io.scm | 4 ++--
1 file changed, 2 insertions(+), 2 deletions(-)
diff --git a/gnu/packages/crates-io.scm b/gnu/packages/crates-io.scm
index 9c44fec198..6d7c9af0f7 100644
--- a/gnu/packages/crates-io.scm
+++ b/gnu/packages/crates-io.scm
@@ -48692,14 +48692,14 @@ (define-public rust-refpool-0.4
(define-public rust-regex-1
(package
(name "rust-regex")
- (version "1.5.4")
+ (version "1.6.0")
(source
(origin
(method url-fetch)
(uri (crate-uri "regex" version))
(file-name (string-append name "-" version ".tar.gz"))
(sha256
- (base32 "0qf479kjbmb582h4d1d6gfl75h0j8aq2nrdi5wg6zdcy6llqcynh"))))
+ (base32 "12wqvyh4i75j7pc8sgvmqh4yy3qaj4inc4alyv1cdf3lf4kb6kjc"))))
(build-system cargo-build-system)
(arguments
`(#:cargo-inputs
--
2.37.2
^ permalink raw reply related [flat|nested] 4+ messages in thread
* bug#57354: [PATCH 1/2] gnu: rust-regex-syntax: Update to 0.6.27.
2022-08-23 14:30 [bug#57354] [PATCH 1/2] gnu: rust-regex-syntax: Update to 0.6.27 gyara via Guix-patches via
2022-08-23 14:30 ` [bug#57355] [PATCH 2/2] gnu: rust-regex: Update to 1.6.0 [fixes CVE-2022-24713] gyara via Guix-patches via
@ 2022-08-29 16:33 ` Marius Bakke
1 sibling, 0 replies; 4+ messages in thread
From: Marius Bakke @ 2022-08-29 16:33 UTC (permalink / raw)
To: gyara via Guix-patches via, 57354-done; +Cc: gyara
[-- Attachment #1: Type: text/plain, Size: 672 bytes --]
Hi gyara,
Thanks a lot for this security fix.
Since this will rebuild 'librsvg', which has ~550 dependent packages, I
added these patches to the about-to-be-merged 'staging' branch.
(it's not ideal either, since it is supposed to be "frozen"; but we
cannot graft Rust packages and would instead have to add a graft for a
patched librsvg, which seemed a lot of work for 'just' 550 rebuilds)
PS: In the future, please mention the changed variable in the commit
message (see the commit log for examples). I did that on your behalf.
Pushed in:
1063d918b9 gnu: rust-regex-syntax: Update to 0.6.27.
1cf3737093 gnu: rust-regex: Update to 1.6.0 [fixes CVE-2022-24713].
[-- Attachment #2: signature.asc --]
[-- Type: application/pgp-signature, Size: 247 bytes --]
^ permalink raw reply [flat|nested] 4+ messages in thread
* bug#57355: Closed due to already merged.
2022-08-23 14:30 ` [bug#57355] [PATCH 2/2] gnu: rust-regex: Update to 1.6.0 [fixes CVE-2022-24713] gyara via Guix-patches via
@ 2022-10-16 6:41 ` ギャラ via Guix-patches via
0 siblings, 0 replies; 4+ messages in thread
From: ギャラ via Guix-patches via @ 2022-10-16 6:41 UTC (permalink / raw)
To: 57355-done
[-- Attachment #1.1: Type: text/plain, Size: 106 bytes --]
Closed due to already merged.
--
存在するということは、自分を创造することだ。
[-- Attachment #2: OpenPGP digital signature --]
[-- Type: application/pgp-signature, Size: 659 bytes --]
^ permalink raw reply [flat|nested] 4+ messages in thread
end of thread, other threads:[~2022-10-16 6:44 UTC | newest]
Thread overview: 4+ messages (download: mbox.gz / follow: Atom feed)
-- links below jump to the message on this page --
2022-08-23 14:30 [bug#57354] [PATCH 1/2] gnu: rust-regex-syntax: Update to 0.6.27 gyara via Guix-patches via
2022-08-23 14:30 ` [bug#57355] [PATCH 2/2] gnu: rust-regex: Update to 1.6.0 [fixes CVE-2022-24713] gyara via Guix-patches via
2022-10-16 6:41 ` bug#57355: Closed due to already merged ギャラ via Guix-patches via
2022-08-29 16:33 ` bug#57354: [PATCH 1/2] gnu: rust-regex-syntax: Update to 0.6.27 Marius Bakke
Code repositories for project(s) associated with this public inbox
https://git.savannah.gnu.org/cgit/guix.git
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox;
as well as URLs for read-only IMAP folder(s) and NNTP newsgroup(s).