unofficial mirror of guix-patches@gnu.org 
 help / color / mirror / code / Atom feed
* [bug#48039] xorg-server might be vulnerable to CVE-2021-3472
       [not found]   ` <8735vcsxxt.fsf@guixSD.i-did-not-set--mail-host-address--so-tickle-me>
@ 2021-04-26 19:33     ` Leo Famulari
  2021-04-27  6:02       ` bug#48039: " Leo Famulari
  0 siblings, 1 reply; 3+ messages in thread
From: Leo Famulari @ 2021-04-26 19:33 UTC (permalink / raw)
  To: Nicolò Balzarotti; +Cc: 48039

On Mon, Apr 26, 2021 at 08:27:58PM +0200, Nicolò Balzarotti wrote:
> Leo Famulari <leo@famulari.name> writes:
> 
> > On Mon, Apr 26, 2021 at 07:25:35PM +0200, Nicolò Balzarotti wrote:
> >> * gnu/packages/xorg.scm (xorg-server): Update to 1.20.11.
> >
> > Did you see <https://bugs.gnu.org/48001>?
> >
> Ops, sorry for the duplicate, I somehow missed it, I'm closing this

I didn't mean for you to close your message.

We took different approaches to fixing the bug: I applied a patch, and
you updated the package.

The big difference is that your patch doesn't avoid changing the
xorg-server-for-tests package, so it can't be applied to master.

I'm merging the two tickets. I think that updating the package is a
better choice that simply patching it. I'll probably join our two
patches together and push that.




^ permalink raw reply	[flat|nested] 3+ messages in thread

* bug#48039: xorg-server might be vulnerable to CVE-2021-3472
  2021-04-26 19:33     ` [bug#48039] xorg-server might be vulnerable to CVE-2021-3472 Leo Famulari
@ 2021-04-27  6:02       ` Leo Famulari
  2021-04-27  7:18         ` [bug#48039] " Nicolò Balzarotti
  0 siblings, 1 reply; 3+ messages in thread
From: Leo Famulari @ 2021-04-27  6:02 UTC (permalink / raw)
  To: Nicolò Balzarotti; +Cc: 48039-done

[-- Attachment #1: Type: text/plain, Size: 324 bytes --]

On Mon, Apr 26, 2021 at 03:33:33PM -0400, Leo Famulari wrote:
> I'm merging the two tickets. I think that updating the package is a
> better choice that simply patching it. I'll probably join our two
> patches together and push that.

Done as 6afe1543271637e3fd1eac82f5ec7af6975a47a5. Thanks for looking out
for these bugs!

[-- Attachment #2: signature.asc --]
[-- Type: application/pgp-signature, Size: 833 bytes --]

^ permalink raw reply	[flat|nested] 3+ messages in thread

* [bug#48039] xorg-server might be vulnerable to CVE-2021-3472
  2021-04-27  6:02       ` bug#48039: " Leo Famulari
@ 2021-04-27  7:18         ` Nicolò Balzarotti
  0 siblings, 0 replies; 3+ messages in thread
From: Nicolò Balzarotti @ 2021-04-27  7:18 UTC (permalink / raw)
  To: Leo Famulari; +Cc: 48039-done

Leo Famulari <leo@famulari.name> writes:

> On Mon, Apr 26, 2021 at 03:33:33PM -0400, Leo Famulari wrote:
>> I'm merging the two tickets. I think that updating the package is a
>> better choice that simply patching it. I'll probably join our two
>> patches together and push that.
>
> Done as 6afe1543271637e3fd1eac82f5ec7af6975a47a5. Thanks for looking out
> for these bugs!
Thank you!




^ permalink raw reply	[flat|nested] 3+ messages in thread

end of thread, other threads:[~2021-04-27  7:19 UTC | newest]

Thread overview: 3+ messages (download: mbox.gz / follow: Atom feed)
-- links below jump to the message on this page --
     [not found] <878s55rm9c.fsf@guixSD.i-did-not-set--mail-host-address--so-tickle-me>
     [not found] ` <YIb53KSJPfQf5mn6@jasmine.lan>
     [not found]   ` <8735vcsxxt.fsf@guixSD.i-did-not-set--mail-host-address--so-tickle-me>
2021-04-26 19:33     ` [bug#48039] xorg-server might be vulnerable to CVE-2021-3472 Leo Famulari
2021-04-27  6:02       ` bug#48039: " Leo Famulari
2021-04-27  7:18         ` [bug#48039] " Nicolò Balzarotti

Code repositories for project(s) associated with this public inbox

	https://git.savannah.gnu.org/cgit/guix.git

This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox;
as well as URLs for read-only IMAP folder(s) and NNTP newsgroup(s).