GNU bug report logs -
#71124
[PATCH] gnu: skopeo: Update to 1.15.1 [security fixes].
Previous Next
Reported by: Tomas Volf <~@wolfsden.cz>
Date: Wed, 22 May 2024 18:49:01 UTC
Severity: normal
Tags: patch
Done: Zheng Junjie <zhengjunjie <at> iscas.ac.cn>
Bug is archived. No further changes may be made.
Full log
View this message in rfc822 format
[Message part 1 (text/plain, inline)]
Your bug report
#71124: [PATCH] gnu: skopeo: Update to 1.15.1 [security fixes].
which was filed against the guix-patches package, has been closed.
The explanation is attached below, along with your original report.
If you require more details, please reply to 71124 <at> debbugs.gnu.org.
--
71124: https://debbugs.gnu.org/cgi/bugreport.cgi?bug=71124
GNU Bug Tracking System
Contact help-debbugs <at> gnu.org with problems
[Message part 2 (message/rfc822, inline)]
[Message part 3 (text/plain, inline)]
Tomas Volf <~@wolfsden.cz> writes:
> This fixes CVE-2024-3727.
>
> * gnu/packages/virtualization.scm (skopeo): Update to 1.15.1.
>
> Change-Id: Icebb6f50e7317bce9ff106d71ad30dcfa6665666
> ---
> gnu/packages/virtualization.scm | 4 ++--
> 1 file changed, 2 insertions(+), 2 deletions(-)
>
> diff --git a/gnu/packages/virtualization.scm b/gnu/packages/virtualization.scm
> index 34cccd6550..d45249455e 100644
> --- a/gnu/packages/virtualization.scm
> +++ b/gnu/packages/virtualization.scm
> @@ -2258,7 +2258,7 @@ (define-public umoci
> (define-public skopeo
> (package
> (name "skopeo")
> - (version "1.15.0")
> + (version "1.15.1")
> (source (origin
> (method git-fetch)
> (uri (git-reference
> @@ -2267,7 +2267,7 @@ (define-public skopeo
> (file-name (git-file-name name version))
> (sha256
> (base32
> - "1f9n3ysdmll7vq8dmgpv03m8aqq3w9cfvbmxxpwmnv1nlfc67ihq"))))
> + "0fhw3jrbklpz7kb1kdwn2hg3v2jyyz30710wkd0wlpfz4fyzmzb6"))))
> (build-system gnu-build-system)
> (native-inputs
> (list go-1.21
push, see https://git.savannah.gnu.org/cgit/guix.git/commit/?id=4fbce61aa91f93a0f56398e71095bd8b8d26de6c
[signature.asc (application/pgp-signature, inline)]
[Message part 5 (message/rfc822, inline)]
This fixes CVE-2024-3727.
* gnu/packages/virtualization.scm (skopeo): Update to 1.15.1.
Change-Id: Icebb6f50e7317bce9ff106d71ad30dcfa6665666
---
gnu/packages/virtualization.scm | 4 ++--
1 file changed, 2 insertions(+), 2 deletions(-)
diff --git a/gnu/packages/virtualization.scm b/gnu/packages/virtualization.scm
index 34cccd6550..d45249455e 100644
--- a/gnu/packages/virtualization.scm
+++ b/gnu/packages/virtualization.scm
@@ -2258,7 +2258,7 @@ (define-public umoci
(define-public skopeo
(package
(name "skopeo")
- (version "1.15.0")
+ (version "1.15.1")
(source (origin
(method git-fetch)
(uri (git-reference
@@ -2267,7 +2267,7 @@ (define-public skopeo
(file-name (git-file-name name version))
(sha256
(base32
- "1f9n3ysdmll7vq8dmgpv03m8aqq3w9cfvbmxxpwmnv1nlfc67ihq"))))
+ "0fhw3jrbklpz7kb1kdwn2hg3v2jyyz30710wkd0wlpfz4fyzmzb6"))))
(build-system gnu-build-system)
(native-inputs
(list go-1.21
--
2.41.0
This bug report was last modified 364 days ago.
Previous Next
GNU bug tracking system
Copyright (C) 1999 Darren O. Benham,
1997,2003 nCipher Corporation Ltd,
1994-97 Ian Jackson.