* [Buildroot] [PATCH] package/nfs-utils: security bump version to 2.8.7
@ 2026-03-13 21:10 Giulio Benetti
2026-03-14 19:57 ` Petr Vorel
2026-03-15 10:17 ` Julien Olivain via buildroot
0 siblings, 2 replies; 7+ messages in thread
From: Giulio Benetti @ 2026-03-13 21:10 UTC (permalink / raw)
To: buildroot; +Cc: Giulio Benetti, Petr Vorel
Release announce:
https://lore.kernel.org/linux-nfs/4d11b9d7-7b49-4a1e-8c26-29ecb2fefe2f@redhat.com/
Signed-off-by: Giulio Benetti <giulio.benetti@benettiengineering.com>
---
package/nfs-utils/nfs-utils.hash | 4 ++--
package/nfs-utils/nfs-utils.mk | 2 +-
2 files changed, 3 insertions(+), 3 deletions(-)
diff --git a/package/nfs-utils/nfs-utils.hash b/package/nfs-utils/nfs-utils.hash
index bf7c4b61b6..1e3f63d419 100644
--- a/package/nfs-utils/nfs-utils.hash
+++ b/package/nfs-utils/nfs-utils.hash
@@ -1,4 +1,4 @@
-# From https://www.kernel.org/pub/linux/utils/nfs-utils/2.8.6/sha256sums.asc
-sha256 2bd7b34e809a7eff2f4bc5fc5fd96ebcd66a5458b471a270cbd2dc169b011550 nfs-utils-2.8.6.tar.xz
+# From https://www.kernel.org/pub/linux/utils/nfs-utils/2.8.7/sha256sums.asc
+sha256 59d0f1e17b18efaa60ea3ccf89a9cad3217f8d3b23c18d2fe34b25c8969d60ae nfs-utils-2.8.7.tar.xz
# Locally computed
sha256 576540abf5e95029ad4ad90e32071385a5e95b2c30708c706116f3eb87b9a3de COPYING
diff --git a/package/nfs-utils/nfs-utils.mk b/package/nfs-utils/nfs-utils.mk
index 7ac0b549cf..3d391c1804 100644
--- a/package/nfs-utils/nfs-utils.mk
+++ b/package/nfs-utils/nfs-utils.mk
@@ -4,7 +4,7 @@
#
################################################################################
-NFS_UTILS_VERSION = 2.8.6
+NFS_UTILS_VERSION = 2.8.7
NFS_UTILS_SOURCE = nfs-utils-$(NFS_UTILS_VERSION).tar.xz
NFS_UTILS_SITE = https://www.kernel.org/pub/linux/utils/nfs-utils/$(NFS_UTILS_VERSION)
NFS_UTILS_LICENSE = GPL-2.0+
--
2.47.3
_______________________________________________
buildroot mailing list
buildroot@buildroot.org
https://lists.buildroot.org/mailman/listinfo/buildroot
^ permalink raw reply related [flat|nested] 7+ messages in thread
* Re: [Buildroot] [PATCH] package/nfs-utils: security bump version to 2.8.7
2026-03-13 21:10 [Buildroot] [PATCH] package/nfs-utils: security bump version to 2.8.7 Giulio Benetti
@ 2026-03-14 19:57 ` Petr Vorel
2026-03-15 10:17 ` Julien Olivain via buildroot
1 sibling, 0 replies; 7+ messages in thread
From: Petr Vorel @ 2026-03-14 19:57 UTC (permalink / raw)
To: Giulio Benetti; +Cc: buildroot
Hi Giulio,
> Release announce:
> https://lore.kernel.org/linux-nfs/4d11b9d7-7b49-4a1e-8c26-29ecb2fefe2f@redhat.com/
Thanks for update!
Reviewed-by: Petr Vorel <petr.vorel@gmail.com>
Kind regards,
Petr
_______________________________________________
buildroot mailing list
buildroot@buildroot.org
https://lists.buildroot.org/mailman/listinfo/buildroot
^ permalink raw reply [flat|nested] 7+ messages in thread
* Re: [Buildroot] [PATCH] package/nfs-utils: security bump version to 2.8.7
2026-03-13 21:10 [Buildroot] [PATCH] package/nfs-utils: security bump version to 2.8.7 Giulio Benetti
2026-03-14 19:57 ` Petr Vorel
@ 2026-03-15 10:17 ` Julien Olivain via buildroot
2026-03-15 23:07 ` Petr Vorel
1 sibling, 1 reply; 7+ messages in thread
From: Julien Olivain via buildroot @ 2026-03-15 10:17 UTC (permalink / raw)
To: Giulio Benetti; +Cc: buildroot, Petr Vorel
Hi Giulio,
On 13/03/2026 22:10, Giulio Benetti wrote:
> Release announce:
> https://lore.kernel.org/linux-nfs/4d11b9d7-7b49-4a1e-8c26-29ecb2fefe2f@redhat.com/
The commit title says it is a "security" bump. I can't find any
reference to security
fixes in the release note. Could you provide details?
Or is it a copy paste error from the previous bump?
https://gitlab.com/buildroot.org/buildroot/-/commit/7dfd2feb445c2cf83a2b52057fab96e72e42a071
In the later case, no need to send a v2, I'll just remove "security"
while applying.
> Signed-off-by: Giulio Benetti <giulio.benetti@benettiengineering.com>
Best regards,
Julien.
_______________________________________________
buildroot mailing list
buildroot@buildroot.org
https://lists.buildroot.org/mailman/listinfo/buildroot
^ permalink raw reply [flat|nested] 7+ messages in thread
* Re: [Buildroot] [PATCH] package/nfs-utils: security bump version to 2.8.7
2026-03-15 10:17 ` Julien Olivain via buildroot
@ 2026-03-15 23:07 ` Petr Vorel
2026-03-16 10:53 ` Giulio Benetti
0 siblings, 1 reply; 7+ messages in thread
From: Petr Vorel @ 2026-03-15 23:07 UTC (permalink / raw)
To: Julien Olivain; +Cc: Giulio Benetti, buildroot
Hi Julien,
> Hi Giulio,
> On 13/03/2026 22:10, Giulio Benetti wrote:
> > Release announce:
> > https://lore.kernel.org/linux-nfs/4d11b9d7-7b49-4a1e-8c26-29ecb2fefe2f@redhat.com/
> The commit title says it is a "security" bump. I can't find any reference to
> security
> fixes in the release note. Could you provide details?
> Or is it a copy paste error from the previous bump?
> https://gitlab.com/buildroot.org/buildroot/-/commit/7dfd2feb445c2cf83a2b52057fab96e72e42a071
> In the later case, no need to send a v2, I'll just remove "security" while
> applying.
I'd also say it's just a copy paste from 2.8.6. 2.8.7 seems to me only a bugfix
release.
Kind regards,
Petr
> > Signed-off-by: Giulio Benetti <giulio.benetti@benettiengineering.com>
> Best regards,
> Julien.
_______________________________________________
buildroot mailing list
buildroot@buildroot.org
https://lists.buildroot.org/mailman/listinfo/buildroot
^ permalink raw reply [flat|nested] 7+ messages in thread
* Re: [Buildroot] [PATCH] package/nfs-utils: security bump version to 2.8.7
2026-03-15 23:07 ` Petr Vorel
@ 2026-03-16 10:53 ` Giulio Benetti
2026-03-16 10:54 ` Giulio Benetti
0 siblings, 1 reply; 7+ messages in thread
From: Giulio Benetti @ 2026-03-16 10:53 UTC (permalink / raw)
To: Petr Vorel, Julien Olivain; +Cc: buildroot
Hi Julien and Petr,
On 3/16/26 00:07, Petr Vorel wrote:
> Hi Julien,
>
>> Hi Giulio,
>
>> On 13/03/2026 22:10, Giulio Benetti wrote:
>>> Release announce:
>>> https://lore.kernel.org/linux-nfs/4d11b9d7-7b49-4a1e-8c26-29ecb2fefe2f@redhat.com/
>
>> The commit title says it is a "security" bump. I can't find any reference to
>> security
>> fixes in the release note. Could you provide details?
>
>> Or is it a copy paste error from the previous bump?
>> https://gitlab.com/buildroot.org/buildroot/-/commit/7dfd2feb445c2cf83a2b52057fab96e72e42a071
>
>> In the later case, no need to send a v2, I'll just remove "security" while
>> applying.
>
> I'd also say it's just a copy paste from 2.8.6. 2.8.7 seems to me only a bugfix
> release.
I interpret commit [1] as a security commit, but maybe I'm wrong.
It's not a CVE or similar but to me it sounds like a security commit,
this is why subject is " security bump..".
Best regards
Giulio
> Kind regards,
> Petr
>
>>> Signed-off-by: Giulio Benetti <giulio.benetti@benettiengineering.com>
>
>> Best regards,
>
>> Julien.
_______________________________________________
buildroot mailing list
buildroot@buildroot.org
https://lists.buildroot.org/mailman/listinfo/buildroot
^ permalink raw reply [flat|nested] 7+ messages in thread
* Re: [Buildroot] [PATCH] package/nfs-utils: security bump version to 2.8.7
2026-03-16 10:53 ` Giulio Benetti
@ 2026-03-16 10:54 ` Giulio Benetti
2026-03-16 21:28 ` Julien Olivain via buildroot
0 siblings, 1 reply; 7+ messages in thread
From: Giulio Benetti @ 2026-03-16 10:54 UTC (permalink / raw)
To: Petr Vorel, Julien Olivain; +Cc: buildroot
On 3/16/26 11:53, Giulio Benetti wrote:
> Hi Julien and Petr,
>
> On 3/16/26 00:07, Petr Vorel wrote:
>> Hi Julien,
>>
>>> Hi Giulio,
>>
>>> On 13/03/2026 22:10, Giulio Benetti wrote:
>>>> Release announce:
>>>> https://lore.kernel.org/linux-
>>>> nfs/4d11b9d7-7b49-4a1e-8c26-29ecb2fefe2f@redhat.com/
>>
>>> The commit title says it is a "security" bump. I can't find any
>>> reference to
>>> security
>>> fixes in the release note. Could you provide details?
>>
>>> Or is it a copy paste error from the previous bump?
>>> https://gitlab.com/buildroot.org/buildroot/-/
>>> commit/7dfd2feb445c2cf83a2b52057fab96e72e42a071
>>
>>> In the later case, no need to send a v2, I'll just remove "security"
>>> while
>>> applying.
>>
>> I'd also say it's just a copy paste from 2.8.6. 2.8.7 seems to me only
>> a bugfix
>> release.
>
> I interpret commit [1] as a security commit, but maybe I'm wrong.
> It's not a CVE or similar but to me it sounds like a security commit,
> this is why subject is " security bump..".
[1]: https://www.kernel.org/pub/linux/utils/nfs-utils/2.8.7/2.8.7-Changelog
> Best regards
> Giulio
>
>> Kind regards,
>> Petr
>>
>>>> Signed-off-by: Giulio Benetti <giulio.benetti@benettiengineering.com>
>>
>>> Best regards,
>>
>>> Julien.
>
_______________________________________________
buildroot mailing list
buildroot@buildroot.org
https://lists.buildroot.org/mailman/listinfo/buildroot
^ permalink raw reply [flat|nested] 7+ messages in thread
* Re: [Buildroot] [PATCH] package/nfs-utils: security bump version to 2.8.7
2026-03-16 10:54 ` Giulio Benetti
@ 2026-03-16 21:28 ` Julien Olivain via buildroot
0 siblings, 0 replies; 7+ messages in thread
From: Julien Olivain via buildroot @ 2026-03-16 21:28 UTC (permalink / raw)
To: Giulio Benetti; +Cc: Petr Vorel, buildroot
Hi Giulio,
On 16/03/2026 11:54, Giulio Benetti wrote:
> On 3/16/26 11:53, Giulio Benetti wrote:
>> Hi Julien and Petr,
>>
>> On 3/16/26 00:07, Petr Vorel wrote:
>>> Hi Julien,
>>>
>>>> Hi Giulio,
>>>
>>>> On 13/03/2026 22:10, Giulio Benetti wrote:
>>>>> Release announce:
>>>>> https://lore.kernel.org/linux-
>>>>> nfs/4d11b9d7-7b49-4a1e-8c26-29ecb2fefe2f@redhat.com/
>>>
>>>> The commit title says it is a "security" bump. I can't find any
>>>> reference to
>>>> security
>>>> fixes in the release note. Could you provide details?
>>>
>>>> Or is it a copy paste error from the previous bump?
>>>> https://gitlab.com/buildroot.org/buildroot/-/
>>>> commit/7dfd2feb445c2cf83a2b52057fab96e72e42a071
>>>
>>>> In the later case, no need to send a v2, I'll just remove "security"
>>>> while
>>>> applying.
>>>
>>> I'd also say it's just a copy paste from 2.8.6. 2.8.7 seems to me
>>> only a bugfix
>>> release.
>>
>> I interpret commit [1] as a security commit, but maybe I'm wrong.
>> It's not a CVE or similar but to me it sounds like a security commit,
>> this is why subject is " security bump..".
>
> [1]:
> https://www.kernel.org/pub/linux/utils/nfs-utils/2.8.7/2.8.7-Changelog
Applied to master, thanks.
I removed "security" in the commit title. While I agree that using
uninitialized data from the stack might be a security issue, we
generally flag updates in Buildroot as "security" when there is a
mention in the release note, a CVE assigned, or an advisory. This
"bugfix" release will go in Buildroot LTS branches anyway.
>> Best regards
>> Giulio
>>
>>> Kind regards,
>>> Petr
>>>
>>>>> Signed-off-by: Giulio Benetti
>>>>> <giulio.benetti@benettiengineering.com>
>>>
>>>> Best regards,
>>>
>>>> Julien.
Best regards,
Julien.
_______________________________________________
buildroot mailing list
buildroot@buildroot.org
https://lists.buildroot.org/mailman/listinfo/buildroot
^ permalink raw reply [flat|nested] 7+ messages in thread
end of thread, other threads:[~2026-03-16 21:28 UTC | newest]
Thread overview: 7+ messages (download: mbox.gz follow: Atom feed
-- links below jump to the message on this page --
2026-03-13 21:10 [Buildroot] [PATCH] package/nfs-utils: security bump version to 2.8.7 Giulio Benetti
2026-03-14 19:57 ` Petr Vorel
2026-03-15 10:17 ` Julien Olivain via buildroot
2026-03-15 23:07 ` Petr Vorel
2026-03-16 10:53 ` Giulio Benetti
2026-03-16 10:54 ` Giulio Benetti
2026-03-16 21:28 ` Julien Olivain via buildroot
This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.