Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

app-arch/upx: add 4.0.1-r1, security fixes #29085

Closed
wants to merge 1 commit into from
Closed

app-arch/upx: add 4.0.1-r1, security fixes #29085

wants to merge 1 commit into from

Conversation

winterheart
Copy link
Contributor

Fixes issues CVE-2023-23456 and CVE-2023-23457.

Bug: https://bugs.gentoo.org/890616
Signed-off-by: Azamat H. Hackimov azamat.hackimov@gmail.com

@winterheart
app-arch/upx: add 4.0.1-r1, security fixes
7d4c4aa 
Fixes issues CVE-2023-23456 and CVE-2023-23457.

Bug: https://bugs.gentoo.org/890616
Signed-off-by: Azamat H. Hackimov <azamat.hackimov@gmail.com>
@gentoo-bot
Copy link

Pull Request assignment

Submitter: @winterheart
Areas affected: ebuilds
Packages affected: app-arch/upx

app-arch/upx: @winterheart, @gentoo/proxy-maint

Linked bugs

Bugs linked: 890616

In order to force reassignment and/or bug reference scan, please append [please reassign] to the pull request title.

Docs: Code of ConductCopyright policy (expl.) ● DevmanualGitHub PRsProxy-maint guide

@gentoo-bot gentoo-bot added self-maintained The PR changes only packages that are maintained by the submitter (i.e. no need to ask anybody else) assigned PR successfully assigned to the package maintainer(s). bug linked Bug/Closes found in footer, and cross-linked with the PR. security PR that needs to be merged promptly as it addresses security issues labels Jan 13, 2023
@gentoo-repo-qa-bot
Copy link
Collaborator

Pull request CI report

Report generated at: 2023-01-13 09:58 UTC
Newest commit scanned: 7d4c4aa
Status: ✅ good

There are existing issues already. Please look into the report to make sure none of them affect the packages in question:
https://qa-reports.gentoo.org/output/gentoo-ci/2ae5890112/output.html

juippis
juippis approved these changes Jan 13, 2023
View reviewed changes
Copy link
Member

@juippis juippis left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Thanks! Please request stabilization for this -r1 package and make it block the security bug.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@juippis juippis juippis approved these changes

Assignees
No one assigned
Labels
assigned PR successfully assigned to the package maintainer(s). bug linked Bug/Closes found in footer, and cross-linked with the PR. security PR that needs to be merged promptly as it addresses security issues self-maintained The PR changes only packages that are maintained by the submitter (i.e. no need to ask anybody else)
Projects
None yet
Milestone
No milestone
4 participants
@winterheart @gentoo-bot @gentoo-repo-qa-bot @juippis