From: Julien Olivain via buildroot <buildroot@buildroot.org>
To: Bernd Kuhls <bernd@kuhls.net>
Cc: buildroot@buildroot.org, Fabrice Fontaine <fontaine.fabrice@gmail.com>
Subject: Re: [Buildroot] [PATCH 1/1] package/suricata: bump version to 8.0.4
Date: Mon, 06 Apr 2026 10:03:55 +0200 [thread overview]
Message-ID: <9bd76f389facb56a8418edbee7d9fe8f@free.fr> (raw)
In-Reply-To: <20260403191212.41297-1-bernd@kuhls.net>
Hi Bernd,
Thanks for the patch.
On 03/04/2026 21:12, Bernd Kuhls wrote:
[...]
> diff --git a/package/suricata/suricata.mk
> b/package/suricata/suricata.mk
> index 8840853054..0ee3752a21 100644
> --- a/package/suricata/suricata.mk
> +++ b/package/suricata/suricata.mk
> @@ -4,7 +4,7 @@
> #
>
> ################################################################################
>
> -SURICATA_VERSION = 6.0.20
> +SURICATA_VERSION = 8.0.4
This is quite a large bump. I looked for the release notes, and just
found that v8.0.4 was fixing few critical CVEs. See:
https://forum.suricata.io/t/suricata-8-0-4-and-7-0-15-released/6218
Also, according to pkg-stats, there is currently 28 CVEs reported
on this package:
https://autobuild.buildroot.org/stats/master.html
I did not checked when those CVEs were introduced or if they are
all applicable, but this should be mentioned in the commit log.
It is likely this bump should be marked as a "security" one.
I believe your first motivation was to get rid of pcre (v1)
dependency, but could you add the release notes links in the
commit log, and add a note in the commit log, mentioning either:
- none of the CVE in the release notes are applying, because
they were introduced in intermediate versions, or
- the list of the fixed CVEs, to help the LTS maintainers
(and mark the bump as "security").
> SURICATA_SITE = https://www.openinfosecfoundation.org/download
> SURICATA_LICENSE = GPL-2.0
> SURICATA_LICENSE_FILES = COPYING LICENSE
Best regards,
Julien.
_______________________________________________
buildroot mailing list
buildroot@buildroot.org
https://lists.buildroot.org/mailman/listinfo/buildroot
prev parent reply other threads:[~2026-04-06 8:04 UTC|newest]
Thread overview: 2+ messages / expand[flat|nested] mbox.gz Atom feed top
2026-04-03 19:12 [Buildroot] [PATCH 1/1] package/suricata: bump version to 8.0.4 Bernd Kuhls
2026-04-06 8:03 ` Julien Olivain via buildroot [this message]
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=9bd76f389facb56a8418edbee7d9fe8f@free.fr \
--to=buildroot@buildroot.org \
--cc=bernd@kuhls.net \
--cc=fontaine.fabrice@gmail.com \
--cc=ju.o@free.fr \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox