GNU bug report logs - #68516
[PATCH] gnu: gnutls: Update to 3.8.3 [security-fixes]

Previous Next

Package: guix-patches;

Reported by: Jack Hill <jackhill <at> jackhill.us>

Date: Tue, 16 Jan 2024 19:07:02 UTC

Severity: normal

Tags: patch

Done: John Kehayias <john.kehayias <at> protonmail.com>

Bug is archived. No further changes may be made.

Full log

Message #19 received at 68516-done <at> debbugs.gnu.org (full text, mbox):

From: Jack Hill <jackhill <at> jackhill.us>
To: John Kehayias <john.kehayias <at> protonmail.com>
Cc: 68516-done <at> debbugs.gnu.org, guix-security <at> gnu.org
Subject: Re: [bug#68516] [PATCH v3] gnu: gnutls: Update to 3.8.3
 [security-fixes]
Date: Sun, 21 Jan 2024 20:23:54 -0500 (EST)

On Sat, 20 Jan 2024, John Kehayias wrote:

> (apologies if this went through twice, wrong email used)
>
> Hi Jack,
>
> On Tue, Jan 16, 2024 at 02:58 PM, Jack Hill wrote:
>
>> Fixes CVE-2024-0553 and CVE-2024-0567.
>>
>> gnu/packages/tls.scm (gnutls): Update grafted version to 3.8.3.
>>
>
> Thanks! I applied as 856b4a603ac5100be03d9c9bbd8f00dce030a79e where I
> changed the replacement name to gnutls/fixed rather than using the
> version number. I think that is a bit easier to maintain and pretty
> common with our grafts.
>
> And thank you for emailing the security list for this. Something we
> should probably mention directly in the manual for patch
> submission/teams.
>
> John

Awesome, thank you!

This bug report was last modified 1 year and 122 days ago.

Previous Next

GNU bug tracking system
Copyright (C) 1999 Darren O. Benham, 1997,2003 nCipher Corporation Ltd, 1994-97 Ian Jackson.

GNU bug report logs - #68516 [PATCH] gnu: gnutls: Update to 3.8.3 [security-fixes]

GNU bug report logs - #68516
[PATCH] gnu: gnutls: Update to 3.8.3 [security-fixes]