GNU bug report logs - #73621
[PATCH] gnu: unbound: Update to 1.21.1. [security fixes]

Previous Next

Package: guix-patches;

Reported by: Ashish SHUKLA <ashish.is <at> lostca.se>

Date: Thu, 3 Oct 2024 23:40:02 UTC

Severity: normal

Tags: patch

Done: Zheng Junjie <zhengjunjie <at> iscas.ac.cn>

Bug is archived. No further changes may be made.

To add a comment to this bug, you must first unarchive it, by sending
a message to control AT debbugs.gnu.org, with unarchive 73621 in the body.
You can then email your comments to 73621 AT debbugs.gnu.org in the normal way.

Toggle the display of automated, internal messages from the tracker.

View this report as an mbox folder, status mbox, maintainer mbox

Report forwarded to guix-patches <at> gnu.org:
bug#73621; Package guix-patches. (Thu, 03 Oct 2024 23:40:02 GMT) Full text and rfc822 format available.
Acknowledgement sent to Ashish SHUKLA <ashish.is <at> lostca.se>:
New bug report received and forwarded. Copy sent to guix-patches <at> gnu.org. (Thu, 03 Oct 2024 23:40:02 GMT) Full text and rfc822 format available.

Message #5 received at submit <at> debbugs.gnu.org (full text, mbox):

From: Ashish SHUKLA <ashish.is <at> lostca.se>
To: guix-patches <at> gnu.org
Cc: Ashish SHUKLA <ashish.is <at> lostca.se>
Subject: [PATCH] gnu: unbound: Update to 1.21.1. [security fixes]
Date: Thu,  3 Oct 2024 23:38:40 +0000

This contains a fix for CVE-2024-8508.

* gnu/packages/dns.scm (unbound): Update to 1.21.1.

Change-Id: I2ed1806a0859c5dbd729d18a074220ab13b53223
---
 gnu/packages/dns.scm | 5 +++--
 1 file changed, 3 insertions(+), 2 deletions(-)

diff --git a/gnu/packages/dns.scm b/gnu/packages/dns.scm
index b2eda558df..1e9d1bc904 100644
--- a/gnu/packages/dns.scm
+++ b/gnu/packages/dns.scm
@@ -22,6 +22,7 @@
 ;;; Copyright © 2023 Bruno Victal <mirai <at> makinata.eu>
 ;;; Copyright © 2023 Hilton Chain <hako <at> ultrarare.space>
 ;;; Copyright © 2024 John Kehayias <john.kehayias <at> protonmail.com>
+;;; Copyright © 2024 Ashish SHUKLA <ashish.is <at> lostca.se>
 ;;;
 ;;; This file is part of GNU Guix.
 ;;;
@@ -635,14 +636,14 @@ (define-public rbldnsd
 (define-public unbound
   (package
     (name "unbound")
-    (version "1.21.0")
+    (version "1.21.1")
     (source
      (origin
        (method url-fetch)
        (uri (string-append "https://www.unbound.net/downloads/unbound-"
                            version ".tar.gz"))
        (sha256
-        (base32 "08a5l5z0c99433pqg2i7x5d9m6as7c2z3sv4zakdy6zqn3bagp77"))))
+        (base32 "0ipam47nnh86v1wbjvk337wch6pcplbk353yr39kcav24cyd4dih"))))
     (build-system gnu-build-system)
     (outputs '("out" "python"))
     (native-inputs

base-commit: ebb715aabfc4e59ed14b964ac7fdd2a9f9f44526
-- 
2.46.1
Information forwarded to guix-patches <at> gnu.org:
bug#73621; Package guix-patches. (Sat, 05 Oct 2024 15:56:03 GMT) Full text and rfc822 format available.

Message #8 received at submit <at> debbugs.gnu.org (full text, mbox):

From: Zheng Junjie <zhengjunjie <at> iscas.ac.cn>
To: Ashish SHUKLA via Guix-patches via <guix-patches <at> gnu.org>
Cc: 73621-done <at> debbugs.gnu.org, Ashish SHUKLA <ashish.is <at> lostca.se>
Subject: Re: [bug#73621] [PATCH] gnu: unbound: Update to 1.21.1. [security
 fixes]
Date: Sat, 05 Oct 2024 23:55:17 +0800

[Message part 1 (text/plain, inline)]
Ashish SHUKLA via Guix-patches via <guix-patches <at> gnu.org> writes:

> This contains a fix for CVE-2024-8508.
>
> * gnu/packages/dns.scm (unbound): Update to 1.21.1.
>
> Change-Id: I2ed1806a0859c5dbd729d18a074220ab13b53223
> ---
>  gnu/packages/dns.scm | 5 +++--
>  1 file changed, 3 insertions(+), 2 deletions(-)
>
> diff --git a/gnu/packages/dns.scm b/gnu/packages/dns.scm
> index b2eda558df..1e9d1bc904 100644
> --- a/gnu/packages/dns.scm
> +++ b/gnu/packages/dns.scm
> @@ -22,6 +22,7 @@
>  ;;; Copyright © 2023 Bruno Victal <mirai <at> makinata.eu>
>  ;;; Copyright © 2023 Hilton Chain <hako <at> ultrarare.space>
>  ;;; Copyright © 2024 John Kehayias <john.kehayias <at> protonmail.com>
> +;;; Copyright © 2024 Ashish SHUKLA <ashish.is <at> lostca.se>
>  ;;;
>  ;;; This file is part of GNU Guix.
>  ;;;
> @@ -635,14 +636,14 @@ (define-public rbldnsd
>  (define-public unbound
>    (package
>      (name "unbound")
> -    (version "1.21.0")
> +    (version "1.21.1")
>      (source
>       (origin
>         (method url-fetch)
>         (uri (string-append "https://www.unbound.net/downloads/unbound-"
>                             version ".tar.gz"))
>         (sha256
> -        (base32 "08a5l5z0c99433pqg2i7x5d9m6as7c2z3sv4zakdy6zqn3bagp77"))))
> +        (base32 "0ipam47nnh86v1wbjvk337wch6pcplbk353yr39kcav24cyd4dih"))))
>      (build-system gnu-build-system)
>      (outputs '("out" "python"))
>      (native-inputs
>
> base-commit: ebb715aabfc4e59ed14b964ac7fdd2a9f9f44526

push, close.

[signature.asc (application/pgp-signature, inline)]
Reply sent to Zheng Junjie <zhengjunjie <at> iscas.ac.cn>:
You have taken responsibility. (Sat, 05 Oct 2024 15:56:03 GMT) Full text and rfc822 format available.
Notification sent to Ashish SHUKLA <ashish.is <at> lostca.se>:
bug acknowledged by developer. (Sat, 05 Oct 2024 15:56:03 GMT) Full text and rfc822 format available.
bug archived. Request was from Debbugs Internal Request <help-debbugs <at> gnu.org> to internal_control <at> debbugs.gnu.org. (Sun, 03 Nov 2024 12:24:07 GMT) Full text and rfc822 format available.
This bug report was last modified 229 days ago.

Previous Next

GNU bug tracking system
Copyright (C) 1999 Darren O. Benham, 1997,2003 nCipher Corporation Ltd, 1994-97 Ian Jackson.