Skip to content

[Backport staging-21.11] libtiff: add patches for multiple CVEs#168133

Merged
vcunat merged 2 commits intostaging-21.11from
backport-165872-to-staging-21.11
Apr 13, 2022
Merged

[Backport staging-21.11] libtiff: add patches for multiple CVEs#168133
vcunat merged 2 commits intostaging-21.11from
backport-165872-to-staging-21.11

Conversation

@github-actions
Copy link
Contributor

@github-actions github-actions bot commented Apr 10, 2022
edited by risicle
Loading

Bot-based backport to staging-21.11, triggered by a label in #165872.

  • Before merging, ensure that this backport complies with the Criteria for Backporting.
    • Even as a non-commiter, if you find that it does not comply, leave a comment.

@github-actions github-actions bot requested a review from jonringer as a code owner April 10, 2022 12:46
@github-actions github-actions bot requested a review from alyssais April 10, 2022 12:46
@github-actions github-actions bot mentioned this pull request Apr 10, 2022
Merged
13 tasks
@ofborg ofborg bot added 10.rebuild-darwin: 501+ This PR causes many rebuilds on Darwin and should normally target the staging branches. 10.rebuild-darwin: 5001+ This PR causes many rebuilds on Darwin and must target the staging branches. 10.rebuild-linux: 501+ This PR causes many rebuilds on Linux and should normally target the staging branches. 10.rebuild-linux: 5001+ This PR causes many rebuilds on Linux and must target the staging branches. labels Apr 10, 2022
@risicle risicle added the 1.severity: security Issues which raise a security issue, or PRs that fix one label Apr 10, 2022
@risicle
Copy link
Contributor

risicle commented Apr 10, 2022

Cherry-picked #162110 on top of this to aid testing.

vcunat
vcunat approved these changes Apr 13, 2022
View reviewed changes
Copy link
Member

@vcunat vcunat left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

  • in nixpkgs master; I've heard of no issues so far
  • nix build -f. libtiff.tests

@vcunat vcunat merged commit d4f138b into staging-21.11 Apr 13, 2022
@vcunat vcunat deleted the backport-165872-to-staging-21.11 branch April 13, 2022 13:59
@risicle
Copy link
Contributor

risicle commented Apr 13, 2022

Yep, I built all the passthru.tests for this on nixos x86_64 successfully, was quite far in building the macos 10.15 ones without issue.

@risicle risicle mentioned this pull request Apr 24, 2022
Closed
6 tasks
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@vcunat vcunat vcunat approved these changes

@jonringer jonringer Awaiting requested review from jonringer

@alyssais alyssais Awaiting requested review from alyssais

Assignees

No one assigned

Labels

1.severity: security Issues which raise a security issue, or PRs that fix one 10.rebuild-darwin: 501+ This PR causes many rebuilds on Darwin and should normally target the staging branches. 10.rebuild-darwin: 5001+ This PR causes many rebuilds on Darwin and must target the staging branches. 10.rebuild-linux: 501+ This PR causes many rebuilds on Linux and should normally target the staging branches. 10.rebuild-linux: 5001+ This PR causes many rebuilds on Linux and must target the staging branches.

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@risicle @vcunat