Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

[20.03] adns: 1.5.1 -> 1.5.2 #97357

Merged
merged 1 commit into from Sep 8, 2020
Merged

[20.03] adns: 1.5.1 -> 1.5.2 #97357

merged 1 commit into from Sep 8, 2020

Conversation

ckauhaus
Copy link
Contributor

@ckauhaus ckauhaus commented Sep 7, 2020

Motivation for this change

Security update which fixes various CVEs:

CVE-2017-9103
CVE-2017-9104
CVE-2017-9109
CVE-2017-9105
CVE-2017-9106
CVE-2017-9107
CVE-2017-9108

Closes #91310

(cherry picked from commit b3bcf10)

Things done
  • Tested using sandboxing (nix.useSandbox on NixOS, or option sandbox in nix.conf on non-NixOS linux)
  • Built on platform(s)
    • NixOS
    • macOS
    • other Linux distributions
  • Tested via one or more NixOS test(s) if existing and applicable for the change (look inside nixos/tests)
  • Tested compilation of all pkgs that depend on this change using nix-shell -p nixpkgs-review --run "nixpkgs-review wip"
  • Tested execution of all binary files (usually in ./result/bin/)
  • Determined the impact on package closure size (by running nix path-info -S before and after)
  • Ensured that relevant documentation is up to date
  • Fits CONTRIBUTING.md.

adns: 1.5.1 -> 1.5.2
aa8ccad 
Security update which fixes various CVEs:

CVE-2017-9103
CVE-2017-9104
CVE-2017-9109
CVE-2017-9105
CVE-2017-9106
CVE-2017-9107
CVE-2017-9108

Closes NixOS#91310

(cherry picked from commit b3bcf10)
@ckauhaus
Copy link
Contributor Author

ckauhaus commented Sep 7, 2020

Based against staging-20.03 due to the high number of rebuilds.

@ckauhaus ckauhaus linked an issue Sep 7, 2020 that may be closed by this pull request
Vulnerability roundup 86: adns-1.5.1: 7 advisories [9.8] #91310
Closed
7 tasks
@ofborg ofborg bot requested a review from peti September 7, 2020 13:35
@worldofpeace
Copy link
Contributor

cc @FRidh @vcunat

@worldofpeace worldofpeace merged commit fb3ac1a into NixOS:staging-20.03 Sep 8, 2020
@worldofpeace
Copy link
Contributor

lol, let's just hope we don't forget to merge staging-20.03 into release-20.03

@ckauhaus ckauhaus deleted the 91310-adns-cve-20.03 branch September 10, 2020 13:52
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@worldofpeace worldofpeace worldofpeace approved these changes

@peti peti Awaiting requested review from peti

Assignees
No one assigned
Labels
10.rebuild-darwin: 101-500 10.rebuild-linux: 501-1000 10.rebuild-linux: 501+
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.

Vulnerability roundup 86: adns-1.5.1: 7 advisories [9.8]
2 participants
@ckauhaus @worldofpeace