GNU bug report logs - #69721
[PATCH] gnu: Add wget-next

Previous Next

Package: guix-patches;

Reported by: Andy Tai <atai <at> atai.org>

Date: Mon, 11 Mar 2024 04:58:02 UTC

Severity: normal

Tags: patch

To reply to this bug, email your comments to 69721 AT debbugs.gnu.org.

Toggle the display of automated, internal messages from the tracker.

View this report as an mbox folder, status mbox, maintainer mbox

Report forwarded to guix-patches <at> gnu.org:
bug#69721; Package guix-patches. (Mon, 11 Mar 2024 04:58:02 GMT) Full text and rfc822 format available.
Acknowledgement sent to Andy Tai <atai <at> atai.org>:
New bug report received and forwarded. Copy sent to guix-patches <at> gnu.org. (Mon, 11 Mar 2024 04:58:02 GMT) Full text and rfc822 format available.

Message #5 received at submit <at> debbugs.gnu.org (full text, mbox):

From: Andy Tai <atai <at> atai.org>
To: guix-patches <at> gnu.org
Cc: Andy Tai <atai <at> atai.org>
Subject: [PATCH] gnu: Add wget-next
Date: Sun, 10 Mar 2024 21:56:40 -0700

* gnu/packages/wget.scm (wget-next): New variable

Change-Id: Ied567558ab0d794f567421e9c1c71ba58969cb33
---
 gnu/packages/wget.scm | 12 ++++++++++++
 1 file changed, 12 insertions(+)

diff --git a/gnu/packages/wget.scm b/gnu/packages/wget.scm
index 6c6f7d3382..002873523b 100644
--- a/gnu/packages/wget.scm
+++ b/gnu/packages/wget.scm
@@ -75,6 +75,18 @@ (define-public wget
 in downloaded documents to relative links.")
     (license license:gpl3+))) ; some files are under GPLv2+
 
+
+(define-public wget-next
+  (package
+    (inherit wget)
+    (version "1.24.5")
+    (source
+     (origin
+       (method url-fetch)
+       (uri (string-append "mirror://gnu/wget/wget-" version ".tar.lz"))
+       (sha256
+        (base32 "1vin1cwha883fjffv4rjy5rg6qw9b6nczzmgjkglzyaf3qahg8ap"))))))
+
 (define-public wgetpaste
   (package
     (name "wgetpaste")

base-commit: b0b988c41c9e0e591274495a1b2d6f27fcdae15a
-- 
2.34.1
Information forwarded to guix-patches <at> gnu.org:
bug#69721; Package guix-patches. (Fri, 07 Jun 2024 19:59:02 GMT) Full text and rfc822 format available.

Message #8 received at 69721 <at> debbugs.gnu.org (full text, mbox):

From: Dale Mellor <guix-devel-0brg6a <at> rdmp.org>
To: 69721 <at> debbugs.gnu.org
Subject: Why 'next'?
Date: Fri, 07 Jun 2024 20:57:43 +0100

Hello Andy,

Why are you adding a 'next' package instead of just bumping the version number?

Thanks, Dale
Information forwarded to guix-patches <at> gnu.org:
bug#69721; Package guix-patches. (Wed, 13 Nov 2024 10:18:02 GMT) Full text and rfc822 format available.

Message #11 received at 69721 <at> debbugs.gnu.org (full text, mbox):

From: ashish.is <at> lostca.se
To: 69721 <at> debbugs.gnu.org
Cc: Ashish SHUKLA <ashish.is <at> lostca.se>
Subject: [PATCH] gnu: wget: Update to 1.25.0. [security fixes]
Date: Wed, 13 Nov 2024 11:16:29 +0100

From: Ashish SHUKLA <ashish.is <at> lostca.se>

This fixes CVE-2024-10524.

* gnu/packages/wget.scm (wget-next): Update to 1.25.0.

Change-Id: I495bde3fbcb28629f9ae45160126d3ccf0d8f722
---
 gnu/packages/wget.scm | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/gnu/packages/wget.scm b/gnu/packages/wget.scm
index 96fe2c7c02..30f421176e 100644
--- a/gnu/packages/wget.scm
+++ b/gnu/packages/wget.scm
@@ -78,13 +78,13 @@ (define-public wget
 (define-public wget-next
   (package
     (inherit wget)
-    (version "1.24.5")
+    (version "1.25.0")
     (source
      (origin
        (method url-fetch)
        (uri (string-append "mirror://gnu/wget/wget-" version ".tar.lz"))
        (sha256
-        (base32 "1vin1cwha883fjffv4rjy5rg6qw9b6nczzmgjkglzyaf3qahg8ap"))))))
+        (base32 "07waw3s51zmjqzqq717xyyd353qc1ajcd38lh7y8i85hav3mq8hr"))))))
 
 (define-public wgetpaste
   (package

base-commit: 4edd1de72040687cfa4c43a50c684c90eee225b2
-- 
2.47.0
Information forwarded to guix-patches <at> gnu.org:
bug#69721; Package guix-patches. (Sat, 23 Nov 2024 20:44:02 GMT) Full text and rfc822 format available.

Message #14 received at 69721 <at> debbugs.gnu.org (full text, mbox):

From: Aaron Covrig <aaron.covrig.us <at> ieee.org>
To: 69721 <at> debbugs.gnu.org
Cc: Aaron Covrig <aaron.covrig.us <at> ieee.org>, ashish.is <at> lostca.se
Subject: [PATCH v2] gnu: wget-next: Graft wget to v1.25.0,
 fixing CVE-2024-10524
Date: Sat, 23 Nov 2024 15:38:33 -0500

* gnu/packages/wget.scm (wget-next): new variable, graft wget
---
Hello all,

I have combined the most recent patch commit as it was done as a diff
against the original commit. Further more, I believe the reason the
update was done as `wget-next` is to allow it to be grafted in since
wget is a dependency for so many packages; to this end I have also updated
the commit to apply as a graft (for reviewers, this is my first time
submitting a patch using a graft, so I may have missed something).

 gnu/packages/wget.scm | 13 +++++++++++++
 1 file changed, 13 insertions(+)

diff --git a/gnu/packages/wget.scm b/gnu/packages/wget.scm
index 4bd4d3c87a..dc48fb1eb7 100644
--- a/gnu/packages/wget.scm
+++ b/gnu/packages/wget.scm
@@ -47,6 +47,7 @@ (define-public wget
   (package
     (name "wget")
     (version "1.21.4")
+    (replacement wget-next)
     (source
      (origin
       (method url-fetch)
@@ -74,6 +75,18 @@ (define-public wget
 in downloaded documents to relative links.")
     (license license:gpl3+))) ; some files are under GPLv2+
 
+
+(define-public wget-next
+  (package
+    (inherit wget)
+    (version "1.25.0")
+    (source
+     (origin
+       (method url-fetch)
+       (uri (string-append "mirror://gnu/wget/wget-" version ".tar.lz"))
+       (sha256
+        (base32 "07waw3s51zmjqzqq717xyyd353qc1ajcd38lh7y8i85hav3mq8hr"))))))
+
 (define-public wgetpaste
   (package
     (name "wgetpaste")

base-commit: 36f516bfcdf64185f5d70c21a908283be22a34fd
-- 
2.46.0
This bug report was last modified 208 days ago.

Previous Next

GNU bug tracking system
Copyright (C) 1999 Darren O. Benham, 1997,2003 nCipher Corporation Ltd, 1994-97 Ian Jackson.