[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
bug#29797: [PATCH] gnu: libxslt: Fix CVE-2017-5029 and re-apply the fix
From: |
Leo Famulari |
Subject: |
bug#29797: [PATCH] gnu: libxslt: Fix CVE-2017-5029 and re-apply the fix for CVE-2016-4738. |
Date: |
Thu, 21 Dec 2017 12:30:28 -0500 |
User-agent: |
Mutt/1.9.2 (2017-12-15) |
On Thu, Dec 21, 2017 at 11:15:46AM +0100, Ludovic Courtès wrote:
> Leo Famulari <address@hidden> skribis:
> > + ;; XXX Oops, a redefinition of the patches field, which means
> > the
> > + ;; patch for CVE-2016-4738 is not used. Fixed in the
> > definition of
> > + ;; libxslt-fixed below.
> > (patches (search-patches "libxslt-generated-ids.patch"))))
>
> Oops, indeed! You can remove the unused ‘patches’ line while you’re at it.
I commented it out and pushed as
0c9c9526bb3fb665997b3b054f8b57ffdb559043.
signature.asc
Description: PGP signature