From: Adrian Perez de Castro <aperez@igalia.com>
To: buildroot@buildroot.org
Subject: Re: [Buildroot] [PATCH] package/webkitgtk: security bump to version 2.38.6
Date: Mon, 24 Apr 2023 15:48:09 +0300 [thread overview]
Message-ID: <20230424154809.GB49383@igalia.com> (raw)
In-Reply-To: <20230424124558.29248-1-aperez@igalia.com>
[-- Attachment #1.1: Type: text/plain, Size: 2455 bytes --]
On Mon, 24 Apr 2023 15:45:58 +0300 Adrian Perez de Castro <aperez@igalia.com> wrote:
> Bugfix release with many security fixes, including (but not limited to)
> patches for CVE-2023-25358, CVE-2022-0108, CVE-2022-32885,
> CVE-2023-27932, CVE-2023-27954, and CVE-2023-28205.
>
> Release notes:
>
> https://wpewebkit.org/release/wpewebkit-2.38.6.html
>
> Accompanying security advisory:
>
> https://wpewebkit.org/security/WSA-2023-0003.html
The links are wrong, I will re-submit with the correct ones pointing to
webkitgtk.org O:-)
> Signed-off-by: Adrian Perez de Castro <aperez@igalia.com>
> ---
> package/webkitgtk/webkitgtk.hash | 8 ++++----
> package/webkitgtk/webkitgtk.mk | 2 +-
> 2 files changed, 5 insertions(+), 5 deletions(-)
>
> diff --git a/package/webkitgtk/webkitgtk.hash b/package/webkitgtk/webkitgtk.hash
> index c771297b5a..3bc521e445 100644
> --- a/package/webkitgtk/webkitgtk.hash
> +++ b/package/webkitgtk/webkitgtk.hash
> @@ -1,7 +1,7 @@
> -# From https://webkitgtk.org/releases/webkitgtk-2.38.5.tar.xz.sums
> -md5 de05d314a3ecb5fb3835e4d84f8f466d webkitgtk-2.38.5.tar.xz
> -sha1 1774390c628bb3a524d4ed76f11de4a878078db6 webkitgtk-2.38.5.tar.xz
> -sha256 40c20c43022274df5893f22b1054fa894c3eea057389bb08aee08c5b0bb0c1a7 webkitgtk-2.38.5.tar.xz
> +# From https://webkitgtk.org/releases/webkitgtk-2.38.6.tar.xz.sums
> +md5 a50290fdc80842b1ae8be1e1147b5679 webkitgtk-2.38.6.tar.xz
> +sha1 4dfb3d96f621fc633ff347e083e429893551fb26 webkitgtk-2.38.6.tar.xz
> +sha256 1c614c9589389db1a79ea9ba4293bbe8ac3ab0a2234cac700935fae0724ad48b webkitgtk-2.38.6.tar.xz
>
> # Hashes for license files:
> sha256 0b5d3a7cc325942567373b0ecd757d07c132e0ebd7c97bfc63f7e1a76094edb4 Source/WebCore/LICENSE-APPLE
> diff --git a/package/webkitgtk/webkitgtk.mk b/package/webkitgtk/webkitgtk.mk
> index 09dbe96a6f..2923b1fe52 100644
> --- a/package/webkitgtk/webkitgtk.mk
> +++ b/package/webkitgtk/webkitgtk.mk
> @@ -4,7 +4,7 @@
> #
> ################################################################################
>
> -WEBKITGTK_VERSION = 2.38.5
> +WEBKITGTK_VERSION = 2.38.6
> WEBKITGTK_SITE = https://www.webkitgtk.org/releases
> WEBKITGTK_SOURCE = webkitgtk-$(WEBKITGTK_VERSION).tar.xz
> WEBKITGTK_INSTALL_STAGING = YES
> --
> 2.40.0
>
> _______________________________________________
> buildroot mailing list
> buildroot@buildroot.org
> https://lists.buildroot.org/mailman/listinfo/buildroot
>
Cheers,
—Adrián
[-- Attachment #1.2: signature.asc --]
[-- Type: application/pgp-signature, Size: 195 bytes --]
[-- Attachment #2: Type: text/plain, Size: 150 bytes --]
_______________________________________________
buildroot mailing list
buildroot@buildroot.org
https://lists.buildroot.org/mailman/listinfo/buildroot
prev parent reply other threads:[~2023-04-24 12:48 UTC|newest]
Thread overview: 2+ messages / expand[flat|nested] mbox.gz Atom feed top
2023-04-24 12:45 [Buildroot] [PATCH] package/webkitgtk: security bump to version 2.38.6 Adrian Perez de Castro
2023-04-24 12:48 ` Adrian Perez de Castro [this message]
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=20230424154809.GB49383@igalia.com \
--to=aperez@igalia.com \
--cc=buildroot@buildroot.org \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox