New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
[20.09] glibc: 2.31 -> 2.31-74 (CVE-2019-25013 CVE-2020-29562 CVE-2021-3326) #109123
Conversation
@GrahamcOfBorg build python3Packages.requests |
This includes the backport of #108571. |
Not really. It is switching to the Glibc release branch which carries many other significant fixes as well. |
@TredwellGit Alright, I reworded my comment. Just mentioned the issue so its |
1301c5e
to
0f160fa
Compare
@GrahamcOfBorg build python3Packages.requests |
0f160fa
to
6352a31
Compare
@GrahamcOfBorg build python3Packages.requests |
What needs to be done to get this merged? |
6352a31
to
45200d7
Compare
@FRidh @NeQuissimus @jonringer ping |
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
What I did:
- Check that 2.31-master.patch.gz was generated with the mentioned commands.
- Check that CVEs of all removed patches were actually fixed in
release/2.31/master
, due toNEWS
.
Also I'm currently rebuilding my whole system with this PR and will merge if it succeeds.
I think this should go along with #111020. |
The staging build has completed, so I'd prefer to merge #111020 and add this to the next batch. |
I just finished building and deploying all my systems with this PR. Next glibc upgrade won't be reviewed so thoroughly by me^^. |
Hmm, if I had [create/edit] hydra powers, I would make a For the 21.05 release, I think will change the creation steps to point to a |
Does this also fix CVE-2020-29562? See #109170. |
Motivation for this change
https://sourceware.org/glibc/wiki/Release
https://sourceware.org/git/?p=glibc.git;a=log;h=refs/heads/release/2.31/master
Things done
sandbox
innix.conf
on non-NixOS linux)