From mboxrd@z Thu Jan  1 00:00:00 1970
Received: from eggs.gnu.org ([2001:4830:134:3::10]:39019)
	by lists.gnu.org with esmtp (Exim 4.71)
	(envelope-from <Debian-debbugs@debbugs.gnu.org>) id 1d88ug-0000HP-83
	for guix-patches@gnu.org; Tue, 09 May 2017 13:27:07 -0400
Received: from Debian-exim by eggs.gnu.org with spam-scanned (Exim 4.71)
	(envelope-from <Debian-debbugs@debbugs.gnu.org>) id 1d88ud-0005Ll-45
	for guix-patches@gnu.org; Tue, 09 May 2017 13:27:06 -0400
Received: from debbugs.gnu.org ([208.118.235.43]:59951)
	by eggs.gnu.org with esmtps (TLS1.0:RSA_AES_128_CBC_SHA1:16)
	(Exim 4.71) (envelope-from <Debian-debbugs@debbugs.gnu.org>)
	id 1d88uc-0005Ko-47
	for guix-patches@gnu.org; Tue, 09 May 2017 13:27:03 -0400
Received: from Debian-debbugs by debbugs.gnu.org with local (Exim 4.84_2)
	(envelope-from <Debian-debbugs@debbugs.gnu.org>) id 1d88ub-0000ni-SQ
	for guix-patches@gnu.org; Tue, 09 May 2017 13:27:01 -0400
Subject: bug#26828: Update libetpan to 1.8 (CVE-2017-8825)
Resent-To: guix-patches@gnu.org
Resent-Message-ID: <handler.26828.D26828.14943507733017.done@debbugs.gnu.org>
Date: Tue, 9 May 2017 13:26:07 -0400
From: Leo Famulari <leo@famulari.name>
Message-ID: <20170509172607.GA8773@jasmine>
References: <20170508164302.41bfd137@lepiller.eu>
	<20170508173538.GC7235@jasmine>
MIME-Version: 1.0
Content-Type: multipart/signed; micalg=pgp-sha256;
	protocol="application/pgp-signature"; boundary="oyUTqETQ0mS9luUI"
Content-Disposition: inline
In-Reply-To: <20170508173538.GC7235@jasmine>
List-Id: <guix-patches.gnu.org>
List-Unsubscribe: <https://lists.gnu.org/mailman/options/guix-patches>,
	<mailto:guix-patches-request@gnu.org?subject=unsubscribe>
List-Archive: <http://lists.gnu.org/archive/html/guix-patches/>
List-Post: <mailto:guix-patches@gnu.org>
List-Help: <mailto:guix-patches-request@gnu.org?subject=help>
List-Subscribe: <https://lists.gnu.org/mailman/listinfo/guix-patches>,
	<mailto:guix-patches-request@gnu.org?subject=subscribe>
Errors-To: guix-patches-bounces+kyle=kyleam.com@gnu.org
Sender: "Guix-patches" <guix-patches-bounces+kyle=kyleam.com@gnu.org>
To: Julien Lepiller <julien@lepiller.eu>
Cc: 26828-done@debbugs.gnu.org


--oyUTqETQ0mS9luUI
Content-Type: text/plain; charset=us-ascii
Content-Disposition: inline
Content-Transfer-Encoding: quoted-printable

On Mon, May 08, 2017 at 01:35:38PM -0400, Leo Famulari wrote:
> On Mon, May 08, 2017 at 04:43:13PM +0200, Julien Lepiller wrote:
> > Hi,
> >=20
> > here is a patch to update libetpan to version 1.8. This update also
> > fixes CVE-2017-8825. Should it be mentionned in the commit log?
>=20
> Thanks! Yes, I would add [fixes CVE-2017-8825] to the end of the first
> line of the commit message.
>=20
> I bet the majority of updates include fixes for exploitable bugs (at
> least for C programs), but it's still useful to include these bug
> identifiers in the commit log, when we know about them.

Hi Julien,

I pushed the patch on your behalf as
a979eea9c2132d35cba30e7fcd4184ec159310a6.

--oyUTqETQ0mS9luUI
Content-Type: application/pgp-signature; name="signature.asc"

-----BEGIN PGP SIGNATURE-----
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=YSvv
-----END PGP SIGNATURE-----

--oyUTqETQ0mS9luUI--