GNU bug report logs - #48655
[PATCH] gnu: synapse: Update to 1.33.2.

Previous Next

Package: guix-patches;

Reported by: Solene Rapenne <solene <at> perso.pw>

Date: Tue, 25 May 2021 16:38:02 UTC

Severity: normal

Tags: moreinfo, patch

To reply to this bug, email your comments to 48655 AT debbugs.gnu.org.

Toggle the display of automated, internal messages from the tracker.

View this report as an mbox folder, status mbox, maintainer mbox

Report forwarded to guix-patches <at> gnu.org:
bug#48655; Package guix-patches. (Tue, 25 May 2021 16:38:02 GMT) Full text and rfc822 format available.
Acknowledgement sent to Solene Rapenne <solene <at> perso.pw>:
New bug report received and forwarded. Copy sent to guix-patches <at> gnu.org. (Tue, 25 May 2021 16:38:02 GMT) Full text and rfc822 format available.

Message #5 received at submit <at> debbugs.gnu.org (full text, mbox):

From: Solene Rapenne <solene <at> perso.pw>
To: guix-patches <at> gnu.org
Subject: [PATCH] gnu: synapse: Update to 1.33.2.
Date: Tue, 25 May 2021 18:36:56 +0200

This fixes the DoS [CVE-2021-29471] and many other improvements

I didn't try it, I don't have a matrix server.

---
 gnu/packages/matrix.scm | 5 +++--
 1 file changed, 3 insertions(+), 2 deletions(-)

diff --git a/gnu/packages/matrix.scm b/gnu/packages/matrix.scm
index 5c2b194d07..0c0fc26705 100644
--- a/gnu/packages/matrix.scm
+++ b/gnu/packages/matrix.scm
@@ -3,6 +3,7 @@
 ;;; Copyright © 2020 Tobias Geerinckx-Rice <me <at> tobias.gr>
 ;;; Copyright © 2020, 2021 Michael Rohleder <mike <at> rohleder.de>
 ;;; Copyright © 2020 Giacomo Leidi <goodoldpaul <at> autistici.org>
+;;; Copyright © 2021 Solene Rapenne <solene <at> perso.pw>
 ;;;
 ;;; This file is part of GNU Guix.
 ;;;
@@ -86,13 +87,13 @@ an LDAP server.")
 (define-public synapse
   (package
     (name "synapse")
-    (version "1.29.0")
+    (version "1.33.2")
     (source (origin
               (method url-fetch)
               (uri (pypi-uri "matrix-synapse" version))
               (sha256
                (base32
-                "0if2yhpz8psg0661401mvxznldbfhk2j9rhbs25jdaqm9jsv6907"))))
+                "14qalqy5h51qdv88wxj7h7cibxkbwdvk3pn8sj8k19ynbfwn6rpm"))))
     (build-system python-build-system)
     ;; TODO Run tests with ‘PYTHONPATH=. trial3 tests’.
     (propagated-inputs
-- 
2.31.1
Information forwarded to guix-patches <at> gnu.org:
bug#48655; Package guix-patches. (Wed, 26 May 2021 14:38:02 GMT) Full text and rfc822 format available.

Message #8 received at 48655 <at> debbugs.gnu.org (full text, mbox):

From: Michael Rohleder <mike <at> rohleder.de>
To: Solene Rapenne <solene <at> perso.pw>
Cc: 48655 <at> debbugs.gnu.org
Subject: Re: [bug#48655] [PATCH] gnu: synapse: Update to 1.33.2.
Date: Wed, 26 May 2021 16:37:33 +0200

[Message part 1 (text/plain, inline)]
Hi Solene,

Thank you for the patch!

Solene Rapenne via Guix-patches via <guix-patches <at> gnu.org> writes:
> This fixes the DoS [CVE-2021-29471] and many other improvements
>
> I didn't try it, I don't have a matrix server.

synapse > 1.30 needs a newer python-cryptography (I think >=3.4) at
runtime, so I think this version would not run on current guix.
(My homeserver runs guix synapse, but from my channel...)


Regards
mike

-- 
Life begins where fear ends.  - Osho

[signature.asc (application/pgp-signature, inline)]
Added tag(s) moreinfo. Request was from Ludovic Courtès <ludo <at> gnu.org> to control <at> debbugs.gnu.org. (Sat, 05 Jun 2021 21:31:01 GMT) Full text and rfc822 format available.
This bug report was last modified 4 years and 7 days ago.

Previous Next

GNU bug tracking system
Copyright (C) 1999 Darren O. Benham, 1997,2003 nCipher Corporation Ltd, 1994-97 Ian Jackson.