All of lore.kernel.org
 help / color / mirror / Atom feed
* [Buildroot] [PATCH 1/1] package/webkitgtk: security bump to version 2.28.3
@ 2020-07-10 11:52 Adrian Perez de Castro
  2020-07-11 14:00 ` Thomas Petazzoni
  2020-07-21  6:00 ` Peter Korsgaard
  0 siblings, 2 replies; 3+ messages in thread
From: Adrian Perez de Castro @ 2020-07-10 11:52 UTC (permalink / raw)
  To: buildroot

This is a minor release which provides fixes for CVE-2020-9800,
CVE-2020-9802, CVE-2020-9803, CVE-2020-9805, CVE-2020-9806,
CVE-2020-9807, CVE-2020-9843, CVE-2020-9850, and CVE-2020-13753.

Updating from 2.28.2 also brings in the usual batch of fixes, including
important improvements to threading in the media player. Full release
notes can be found at:

  https://webkitgtk.org/2020/07/09/webkitgtk2.28.3-released.html

A detailed security advisory can be found at:

  https://webkitgtk.org/security/WSA-2020-0006.html

Signed-off-by: Adrian Perez de Castro <aperez@igalia.com>
---
 package/webkitgtk/webkitgtk.hash | 8 ++++----
 package/webkitgtk/webkitgtk.mk   | 2 +-
 2 files changed, 5 insertions(+), 5 deletions(-)

diff --git a/package/webkitgtk/webkitgtk.hash b/package/webkitgtk/webkitgtk.hash
index a76cc925a1..44263745e4 100644
--- a/package/webkitgtk/webkitgtk.hash
+++ b/package/webkitgtk/webkitgtk.hash
@@ -1,7 +1,7 @@
-# From https://webkitgtk.org/releases/webkitgtk-2.28.2.tar.xz.sums
-md5  ec0ef870ca37e3a5ebbead2f268a28ec  webkitgtk-2.28.2.tar.xz
-sha1  0aba97beba7b2677ed2d28aac51e429cb26c3fe6  webkitgtk-2.28.2.tar.xz
-sha256  b9d23525cfd8d22c37b5d964a9fe9a8ce7583042a2f8d3922e71e6bbc68c30bd  webkitgtk-2.28.2.tar.xz
+# From https://webkitgtk.org/releases/webkitgtk-2.28.3.tar.xz.sums
+md5  a03a4dcd2819baca14fdec5af68b4356  webkitgtk-2.28.3.tar.xz
+sha1  af1d845d373e67fd666105e798a44e2cadaef83c  webkitgtk-2.28.3.tar.xz
+sha256  f0898ac072c220e13a4aee819408421a6cb56a6eb89170ceafe52468b0903522  webkitgtk-2.28.3.tar.xz
 
 # Hashes for license files:
 sha256  0b5d3a7cc325942567373b0ecd757d07c132e0ebd7c97bfc63f7e1a76094edb4  Source/WebCore/LICENSE-APPLE
diff --git a/package/webkitgtk/webkitgtk.mk b/package/webkitgtk/webkitgtk.mk
index 2abb083fc6..f38ea5d20a 100644
--- a/package/webkitgtk/webkitgtk.mk
+++ b/package/webkitgtk/webkitgtk.mk
@@ -4,7 +4,7 @@
 #
 ################################################################################
 
-WEBKITGTK_VERSION = 2.28.2
+WEBKITGTK_VERSION = 2.28.3
 WEBKITGTK_SITE = https://www.webkitgtk.org/releases
 WEBKITGTK_SOURCE = webkitgtk-$(WEBKITGTK_VERSION).tar.xz
 WEBKITGTK_INSTALL_STAGING = YES
-- 
2.27.0

^ permalink raw reply related	[flat|nested] 3+ messages in thread
* [Buildroot] [PATCH 1/1] package/webkitgtk: security bump to version 2.28.3
  2020-07-10 11:52 [Buildroot] [PATCH 1/1] package/webkitgtk: security bump to version 2.28.3 Adrian Perez de Castro
@ 2020-07-11 14:00 ` Thomas Petazzoni
  2020-07-21  6:00 ` Peter Korsgaard
  1 sibling, 0 replies; 3+ messages in thread
From: Thomas Petazzoni @ 2020-07-11 14:00 UTC (permalink / raw)
  To: buildroot

On Fri, 10 Jul 2020 14:52:48 +0300
Adrian Perez de Castro <aperez@igalia.com> wrote:

> This is a minor release which provides fixes for CVE-2020-9800,
> CVE-2020-9802, CVE-2020-9803, CVE-2020-9805, CVE-2020-9806,
> CVE-2020-9807, CVE-2020-9843, CVE-2020-9850, and CVE-2020-13753.
> 
> Updating from 2.28.2 also brings in the usual batch of fixes, including
> important improvements to threading in the media player. Full release
> notes can be found at:
> 
>   https://webkitgtk.org/2020/07/09/webkitgtk2.28.3-released.html
> 
> A detailed security advisory can be found at:
> 
>   https://webkitgtk.org/security/WSA-2020-0006.html
> 
> Signed-off-by: Adrian Perez de Castro <aperez@igalia.com>
> ---
>  package/webkitgtk/webkitgtk.hash | 8 ++++----
>  package/webkitgtk/webkitgtk.mk   | 2 +-
>  2 files changed, 5 insertions(+), 5 deletions(-)

Applied to master, thanks.

Thomas
-- 
Thomas Petazzoni, CTO, Bootlin
Embedded Linux and Kernel engineering
https://bootlin.com

^ permalink raw reply	[flat|nested] 3+ messages in thread
* [Buildroot] [PATCH 1/1] package/webkitgtk: security bump to version 2.28.3
  2020-07-10 11:52 [Buildroot] [PATCH 1/1] package/webkitgtk: security bump to version 2.28.3 Adrian Perez de Castro
  2020-07-11 14:00 ` Thomas Petazzoni
@ 2020-07-21  6:00 ` Peter Korsgaard
  1 sibling, 0 replies; 3+ messages in thread
From: Peter Korsgaard @ 2020-07-21  6:00 UTC (permalink / raw)
  To: buildroot

>>>>> "Adrian" == Adrian Perez de Castro <aperez@igalia.com> writes:

 > This is a minor release which provides fixes for CVE-2020-9800,
 > CVE-2020-9802, CVE-2020-9803, CVE-2020-9805, CVE-2020-9806,
 > CVE-2020-9807, CVE-2020-9843, CVE-2020-9850, and CVE-2020-13753.

 > Updating from 2.28.2 also brings in the usual batch of fixes, including
 > important improvements to threading in the media player. Full release
 > notes can be found at:

 >   https://webkitgtk.org/2020/07/09/webkitgtk2.28.3-released.html

 > A detailed security advisory can be found at:

 >   https://webkitgtk.org/security/WSA-2020-0006.html

 > Signed-off-by: Adrian Perez de Castro <aperez@igalia.com>

Committed to 2020.02.x and 2020.05.x, thanks.

-- 
Bye, Peter Korsgaard

^ permalink raw reply	[flat|nested] 3+ messages in thread
end of thread, other threads:[~2020-07-21  6:00 UTC | newest]

Thread overview: 3+ messages (download: mbox.gz / follow: Atom feed)
-- links below jump to the message on this page --
2020-07-10 11:52 [Buildroot] [PATCH 1/1] package/webkitgtk: security bump to version 2.28.3 Adrian Perez de Castro
2020-07-11 14:00 ` Thomas Petazzoni
2020-07-21  6:00 ` Peter Korsgaard

This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.