All of lore.kernel.org
 help / color / mirror / Atom feed
* [Buildroot] [PATCH 1/1] webkitgtk: update to version 2.18.1
@ 2017-10-18 23:07 Adrian Perez de Castro
  2017-10-21 11:02 ` Thomas Petazzoni
                   ` (2 more replies)
  0 siblings, 3 replies; 5+ messages in thread
From: Adrian Perez de Castro @ 2017-10-18 23:07 UTC (permalink / raw)
  To: buildroot

This is a maintenance release of the current stable WebKitGTK+ version,
which contains bugfixes (many of them related to rendering, plus one
important fix for touch input) and many security fixes.

Release notes:

    https://webkitgtk.org/2017/10/18/webkitgtk2.18.1-released.html

Fixes CVE-2017-7081, CVE-2017-7087, CVE-2017-7089, CVE-2017-7090,
CVE-2017-7091, CVE-2017-7092, CVE-2017-7093, CVE-2017-7094,
CVE-2017-7095, CVE-2017-7096, CVE-2017-7098, CVE-2017-7099,
CVE-2017-7100, CVE-2017-7102, CVE-2017-7104, CVE-2017-7107,
CVE-2017-7109, CVE-2017-7111, CVE-2017-7117, CVE-2017-7120,
CVE-2017-7142:

    https://webkitgtk.org/security/WSA-2017-0008.html

Signed-off-by: Adrian Perez de Castro <aperez@igalia.com>
---
 package/webkitgtk/webkitgtk.hash | 8 ++++----
 package/webkitgtk/webkitgtk.mk   | 2 +-
 2 files changed, 5 insertions(+), 5 deletions(-)

diff --git a/package/webkitgtk/webkitgtk.hash b/package/webkitgtk/webkitgtk.hash
index c7a87f83de..f83bd0878a 100644
--- a/package/webkitgtk/webkitgtk.hash
+++ b/package/webkitgtk/webkitgtk.hash
@@ -1,4 +1,4 @@
-# From https://webkitgtk.org/releases/webkitgtk-2.18.0.tar.xz.sums
-md5 10d86dd5a5b68875654cc38af139f382 webkitgtk-2.18.0.tar.xz
-sha1 e4d6cc7cff8729aa5ae6c17e10ed5ddf31048983 webkitgtk-2.18.0.tar.xz
-sha256 b583e46a3de36a3e80ba33b084ead60512a2046aca01ff61e50e519436e5038d webkitgtk-2.18.0.tar.xz
+# From https://webkitgtk.org/releases/webkitgtk-2.18.1.tar.xz.sums
+md5 951a6082ada2f7d0292d3251a3f9532b webkitgtk-2.18.1.tar.xz
+sha1 5054dd6b8afdc6e98b947e361011d6dca6da74e2 webkitgtk-2.18.1.tar.xz
+sha256 9cdb7b302fbc8a2a7e1e783b80391e64f8b12d70d6ebad4eb756dd59bf3ed795 webkitgtk-2.18.1.tar.xz
diff --git a/package/webkitgtk/webkitgtk.mk b/package/webkitgtk/webkitgtk.mk
index 7cdf28cd6f..55c2dd8cc4 100644
--- a/package/webkitgtk/webkitgtk.mk
+++ b/package/webkitgtk/webkitgtk.mk
@@ -4,7 +4,7 @@
 #
 ################################################################################
 
-WEBKITGTK_VERSION = 2.18.0
+WEBKITGTK_VERSION = 2.18.1
 WEBKITGTK_SITE = http://www.webkitgtk.org/releases
 WEBKITGTK_SOURCE = webkitgtk-$(WEBKITGTK_VERSION).tar.xz
 WEBKITGTK_INSTALL_STAGING = YES
-- 
2.14.2

^ permalink raw reply related	[flat|nested] 5+ messages in thread
* [Buildroot] [PATCH 1/1] webkitgtk: update to version 2.18.1
  2017-10-18 23:07 [Buildroot] [PATCH 1/1] webkitgtk: update to version 2.18.1 Adrian Perez de Castro
@ 2017-10-21 11:02 ` Thomas Petazzoni
  2017-10-21 12:03   ` Adrian Perez de Castro
  2017-10-22 22:48 ` Peter Korsgaard
  2017-10-25  7:40 ` Peter Korsgaard
  2 siblings, 1 reply; 5+ messages in thread
From: Thomas Petazzoni @ 2017-10-21 11:02 UTC (permalink / raw)
  To: buildroot

Hello,

On Thu, 19 Oct 2017 02:07:06 +0300, Adrian Perez de Castro wrote:
> This is a maintenance release of the current stable WebKitGTK+ version,
> which contains bugfixes (many of them related to rendering, plus one
> important fix for touch input) and many security fixes.
> 
> Release notes:
> 
>     https://webkitgtk.org/2017/10/18/webkitgtk2.18.1-released.html
> 
> Fixes CVE-2017-7081, CVE-2017-7087, CVE-2017-7089, CVE-2017-7090,
> CVE-2017-7091, CVE-2017-7092, CVE-2017-7093, CVE-2017-7094,
> CVE-2017-7095, CVE-2017-7096, CVE-2017-7098, CVE-2017-7099,
> CVE-2017-7100, CVE-2017-7102, CVE-2017-7104, CVE-2017-7107,
> CVE-2017-7109, CVE-2017-7111, CVE-2017-7117, CVE-2017-7120,
> CVE-2017-7142:
> 
>     https://webkitgtk.org/security/WSA-2017-0008.html
> 
> Signed-off-by: Adrian Perez de Castro <aperez@igalia.com>
> ---
>  package/webkitgtk/webkitgtk.hash | 8 ++++----
>  package/webkitgtk/webkitgtk.mk   | 2 +-
>  2 files changed, 5 insertions(+), 5 deletions(-)

Since the update includes security fixes, I've changed the commit title
to "security bump to version ..." so that it's clear there are some
security fixes in there.

Best regards,

Thomas
-- 
Thomas Petazzoni, CTO, Free Electrons
Embedded Linux, Kernel and Android engineering
http://free-electrons.com

^ permalink raw reply	[flat|nested] 5+ messages in thread
* [Buildroot] [PATCH 1/1] webkitgtk: update to version 2.18.1
  2017-10-21 11:02 ` Thomas Petazzoni
@ 2017-10-21 12:03   ` Adrian Perez de Castro
  0 siblings, 0 replies; 5+ messages in thread
From: Adrian Perez de Castro @ 2017-10-21 12:03 UTC (permalink / raw)
  To: buildroot

Hi,

On Sat, 21 Oct 2017 13:02:56 +0200, Thomas Petazzoni <thomas.petazzoni@free-electrons.com> wrote:
 
> On Thu, 19 Oct 2017 02:07:06 +0300, Adrian Perez de Castro wrote:
> > This is a maintenance release of the current stable WebKitGTK+ version,
> > which contains bugfixes (many of them related to rendering, plus one
> > important fix for touch input) and many security fixes.
> > 
> > Release notes:
> > 
> >     https://webkitgtk.org/2017/10/18/webkitgtk2.18.1-released.html
> > 
> > Fixes CVE-2017-7081, CVE-2017-7087, CVE-2017-7089, CVE-2017-7090,
> > CVE-2017-7091, CVE-2017-7092, CVE-2017-7093, CVE-2017-7094,
> > CVE-2017-7095, CVE-2017-7096, CVE-2017-7098, CVE-2017-7099,
> > CVE-2017-7100, CVE-2017-7102, CVE-2017-7104, CVE-2017-7107,
> > CVE-2017-7109, CVE-2017-7111, CVE-2017-7117, CVE-2017-7120,
> > CVE-2017-7142:
> > 
> >     https://webkitgtk.org/security/WSA-2017-0008.html
> > 
> > Signed-off-by: Adrian Perez de Castro <aperez@igalia.com>
> > ---
> >  package/webkitgtk/webkitgtk.hash | 8 ++++----
> >  package/webkitgtk/webkitgtk.mk   | 2 +-
> >  2 files changed, 5 insertions(+), 5 deletions(-)
> 
> Since the update includes security fixes, I've changed the commit title
> to "security bump to version ..." so that it's clear there are some
> security fixes in there.

Thanks! I'll make sure to have ?security? added in the first line of the
commit next time there's a release that contains security fixes :-)

Have a great Buildroot Developer's Meeting this weekend!

--
 Adri?n ?
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 195 bytes
Desc: not available
URL: <http://lists.busybox.net/pipermail/buildroot/attachments/20171021/1826774c/attachment.asc>

^ permalink raw reply	[flat|nested] 5+ messages in thread
* [Buildroot] [PATCH 1/1] webkitgtk: update to version 2.18.1
  2017-10-18 23:07 [Buildroot] [PATCH 1/1] webkitgtk: update to version 2.18.1 Adrian Perez de Castro
  2017-10-21 11:02 ` Thomas Petazzoni
@ 2017-10-22 22:48 ` Peter Korsgaard
  2017-10-25  7:40 ` Peter Korsgaard
  2 siblings, 0 replies; 5+ messages in thread
From: Peter Korsgaard @ 2017-10-22 22:48 UTC (permalink / raw)
  To: buildroot

>>>>> "Adrian" == Adrian Perez de Castro <aperez@igalia.com> writes:

 > This is a maintenance release of the current stable WebKitGTK+ version,
 > which contains bugfixes (many of them related to rendering, plus one
 > important fix for touch input) and many security fixes.

 > Release notes:

 >     https://webkitgtk.org/2017/10/18/webkitgtk2.18.1-released.html

 > Fixes CVE-2017-7081, CVE-2017-7087, CVE-2017-7089, CVE-2017-7090,
 > CVE-2017-7091, CVE-2017-7092, CVE-2017-7093, CVE-2017-7094,
 > CVE-2017-7095, CVE-2017-7096, CVE-2017-7098, CVE-2017-7099,
 > CVE-2017-7100, CVE-2017-7102, CVE-2017-7104, CVE-2017-7107,
 > CVE-2017-7109, CVE-2017-7111, CVE-2017-7117, CVE-2017-7120,
 > CVE-2017-7142:

 >     https://webkitgtk.org/security/WSA-2017-0008.html

 > Signed-off-by: Adrian Perez de Castro <aperez@igalia.com>

Committed to 2017.08.x, thanks.

-- 
Bye, Peter Korsgaard

^ permalink raw reply	[flat|nested] 5+ messages in thread
* [Buildroot] [PATCH 1/1] webkitgtk: update to version 2.18.1
  2017-10-18 23:07 [Buildroot] [PATCH 1/1] webkitgtk: update to version 2.18.1 Adrian Perez de Castro
  2017-10-21 11:02 ` Thomas Petazzoni
  2017-10-22 22:48 ` Peter Korsgaard
@ 2017-10-25  7:40 ` Peter Korsgaard
  2 siblings, 0 replies; 5+ messages in thread
From: Peter Korsgaard @ 2017-10-25  7:40 UTC (permalink / raw)
  To: buildroot

>>>>> "Adrian" == Adrian Perez de Castro <aperez@igalia.com> writes:

 > This is a maintenance release of the current stable WebKitGTK+ version,
 > which contains bugfixes (many of them related to rendering, plus one
 > important fix for touch input) and many security fixes.

 > Release notes:

 >     https://webkitgtk.org/2017/10/18/webkitgtk2.18.1-released.html

 > Fixes CVE-2017-7081, CVE-2017-7087, CVE-2017-7089, CVE-2017-7090,
 > CVE-2017-7091, CVE-2017-7092, CVE-2017-7093, CVE-2017-7094,
 > CVE-2017-7095, CVE-2017-7096, CVE-2017-7098, CVE-2017-7099,
 > CVE-2017-7100, CVE-2017-7102, CVE-2017-7104, CVE-2017-7107,
 > CVE-2017-7109, CVE-2017-7111, CVE-2017-7117, CVE-2017-7120,
 > CVE-2017-7142:

 >     https://webkitgtk.org/security/WSA-2017-0008.html

 > Signed-off-by: Adrian Perez de Castro <aperez@igalia.com>

Committed to 2017.02.x, thanks.

-- 
Bye, Peter Korsgaard

^ permalink raw reply	[flat|nested] 5+ messages in thread
end of thread, other threads:[~2017-10-25  7:40 UTC | newest]

Thread overview: 5+ messages (download: mbox.gz / follow: Atom feed)
-- links below jump to the message on this page --
2017-10-18 23:07 [Buildroot] [PATCH 1/1] webkitgtk: update to version 2.18.1 Adrian Perez de Castro
2017-10-21 11:02 ` Thomas Petazzoni
2017-10-21 12:03   ` Adrian Perez de Castro
2017-10-22 22:48 ` Peter Korsgaard
2017-10-25  7:40 ` Peter Korsgaard

This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.