[25.05] curlFull: fix CVE-2025-10148 patch#444299
Conversation
There was a problem hiding this comment.
This report is automatically generated by the PR / Check / cherry-pick CI workflow.
Some of the commits in this PR require the author's and reviewer's attention.
Please follow the backporting guidelines and cherry-pick with the -x flag.
This requires changes to the unstable master and staging branches first, before backporting them.
Occasionally, commits are not cherry-picked at all, for example when updating minor versions of packages which have already advanced to the next major on unstable.
These commits can optionally be marked with a Not-cherry-picked-because: <reason> footer.
If you need to merge this PR despite the warnings, please dismiss this review shortly before merging.
Warning
Couldn't locate original commit hash in message of d3f1981.
Hint: The full diffs are also available in the runner logs with slightly better highlighting.
|
Nit: this needs to target |
|
Ah, though we don't want such a huge rebuild at this stage when all binaries are ready. So maybe some hack on that branch and keep this PR as it is. |
The -fixed patch is taken from #444299
|
Thanks for dealing with the workaround <3 and sorry that I did not catch it earlier |
Upstream patch needs a bit of adjustment to build on top of curl 8.14.1.
ed0141f to
d3f1981
Compare
Scrumplex
left a comment
There was a problem hiding this comment.
Changes LGTM. Have not tried to build it yet
|
This doesn't change |
The -fixed patch is taken from NixOS#444299
Upstream patch needs a bit of adjustment to build on top of curl 8.14.1.
Follow up to #441889
Things done
passthru.tests.nixpkgs-reviewon this PR. See nixpkgs-review usage../result/bin/.Add a 👍 reaction to pull requests you find important.