All of lore.kernel.org
 help / color / mirror / Atom feed
* [Buildroot] [PATCH 1/2] package/libhtp: bump to version 0.5.38
@ 2021-07-02 19:25 Fabrice Fontaine
  2021-07-02 19:25 ` [Buildroot] [PATCH 2/2] package/suricata: security bump to version 6.0.3 Fabrice Fontaine
                   ` (2 more replies)
  0 siblings, 3 replies; 5+ messages in thread
From: Fabrice Fontaine @ 2021-07-02 19:25 UTC (permalink / raw)
  To: buildroot

https://github.com/OISF/libhtp/releases/tag/0.5.38

Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
---
 package/libhtp/libhtp.hash | 2 +-
 package/libhtp/libhtp.mk   | 2 +-
 2 files changed, 2 insertions(+), 2 deletions(-)

diff --git a/package/libhtp/libhtp.hash b/package/libhtp/libhtp.hash
index 805cd4f1f3..91c20697df 100644
--- a/package/libhtp/libhtp.hash
+++ b/package/libhtp/libhtp.hash
@@ -1,3 +1,3 @@
 # Locally computed:
-sha256  0f8296ce9db815bbedc1c8a0b738dd25146fdaf910995a8c5f8e147799902b7e  libhtp-0.5.37.tar.gz
+sha256  8365f338fdf5ef0f3b37f3cb4e2670d218c843eccc42aa87119819c0f018ef39  libhtp-0.5.38.tar.gz
 sha256  87c93904e5434c81622ea690c2b90097b9f162aaa92a96542649a157dbf98d15  LICENSE
diff --git a/package/libhtp/libhtp.mk b/package/libhtp/libhtp.mk
index 7520346031..982ffe81cb 100644
--- a/package/libhtp/libhtp.mk
+++ b/package/libhtp/libhtp.mk
@@ -4,7 +4,7 @@
 #
 ################################################################################
 
-LIBHTP_VERSION = 0.5.37
+LIBHTP_VERSION = 0.5.38
 LIBHTP_SITE = $(call github,OISF,libhtp,$(LIBHTP_VERSION))
 LIBHTP_LICENSE = BSD-3-Clause
 LIBHTP_LICENSE_FILES = LICENSE
-- 
2.30.2

^ permalink raw reply related	[flat|nested] 5+ messages in thread
* [Buildroot] [PATCH 2/2] package/suricata: security bump to version 6.0.3
  2021-07-02 19:25 [Buildroot] [PATCH 1/2] package/libhtp: bump to version 0.5.38 Fabrice Fontaine
@ 2021-07-02 19:25 ` Fabrice Fontaine
  2021-08-03 14:28   ` Peter Korsgaard
  2021-07-16 21:33 ` [Buildroot] [PATCH 1/2] package/libhtp: bump to version 0.5.38 Thomas Petazzoni
  2021-08-03 14:28 ` Peter Korsgaard
  2 siblings, 1 reply; 5+ messages in thread
From: Fabrice Fontaine @ 2021-07-02 19:25 UTC (permalink / raw)
  To: buildroot

Various security, performance, accuracy and stability issues have been
fixed, including a critical evasion assigned CVE-2021-35063.

https://forum.suricata.io/t/suricata-6-0-3-and-5-0-7-released/1489

Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
---
 package/suricata/suricata.hash | 2 +-
 package/suricata/suricata.mk   | 2 +-
 2 files changed, 2 insertions(+), 2 deletions(-)

diff --git a/package/suricata/suricata.hash b/package/suricata/suricata.hash
index 8395177811..74cc7435cb 100644
--- a/package/suricata/suricata.hash
+++ b/package/suricata/suricata.hash
@@ -1,5 +1,5 @@
 # Locally computed:
-sha256  5e4647a07cb31b5d6d0049972a45375c137de908a964a44e2d6d231fa3ad4b52  suricata-6.0.2.tar.gz
+sha256  daf134bb2d7c980035e9ae60f7aaf313323a809340009f26e48110ccde81f602  suricata-6.0.3.tar.gz
 
 # Hash for license files:
 sha256  8177f97513213526df2cf6184d8ff986c675afb514d4e68a404010521b880643  COPYING
diff --git a/package/suricata/suricata.mk b/package/suricata/suricata.mk
index a7a6e10c03..566243e688 100644
--- a/package/suricata/suricata.mk
+++ b/package/suricata/suricata.mk
@@ -4,7 +4,7 @@
 #
 ################################################################################
 
-SURICATA_VERSION = 6.0.2
+SURICATA_VERSION = 6.0.3
 SURICATA_SITE = https://www.openinfosecfoundation.org/download
 SURICATA_LICENSE = GPL-2.0
 SURICATA_LICENSE_FILES = COPYING LICENSE
-- 
2.30.2

^ permalink raw reply related	[flat|nested] 5+ messages in thread
* [Buildroot] [PATCH 1/2] package/libhtp: bump to version 0.5.38
  2021-07-02 19:25 [Buildroot] [PATCH 1/2] package/libhtp: bump to version 0.5.38 Fabrice Fontaine
  2021-07-02 19:25 ` [Buildroot] [PATCH 2/2] package/suricata: security bump to version 6.0.3 Fabrice Fontaine
@ 2021-07-16 21:33 ` Thomas Petazzoni
  2021-08-03 14:28 ` Peter Korsgaard
  2 siblings, 0 replies; 5+ messages in thread
From: Thomas Petazzoni @ 2021-07-16 21:33 UTC (permalink / raw)
  To: buildroot

On Fri,  2 Jul 2021 21:25:47 +0200
Fabrice Fontaine <fontaine.fabrice@gmail.com> wrote:

> https://github.com/OISF/libhtp/releases/tag/0.5.38
> 
> Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
> ---
>  package/libhtp/libhtp.hash | 2 +-
>  package/libhtp/libhtp.mk   | 2 +-
>  2 files changed, 2 insertions(+), 2 deletions(-)

Both patches applied, thanks. However, it would have been nice to make
it clear whether the htp bump to 0.5.38 is necessary for the suricata
security bump. Since you sent both in the same series, I assumed it was
the case, but I think it is important to make it clearer in the commit
logs. Indeed, when Peter will review all the commits in "master" to
consider them for the LTS branch, he will see the suricata "security
bump", so he will backport it, but not necessarily that the libhtp bump
is needed together with the suricata bump (if it's the case).

Thanks a lot,

Thomas
-- 
Thomas Petazzoni, CTO, Bootlin
Embedded Linux and Kernel engineering
https://bootlin.com

^ permalink raw reply	[flat|nested] 5+ messages in thread
* Re: [Buildroot] [PATCH 1/2] package/libhtp: bump to version 0.5.38
  2021-07-02 19:25 [Buildroot] [PATCH 1/2] package/libhtp: bump to version 0.5.38 Fabrice Fontaine
  2021-07-02 19:25 ` [Buildroot] [PATCH 2/2] package/suricata: security bump to version 6.0.3 Fabrice Fontaine
  2021-07-16 21:33 ` [Buildroot] [PATCH 1/2] package/libhtp: bump to version 0.5.38 Thomas Petazzoni
@ 2021-08-03 14:28 ` Peter Korsgaard
  2 siblings, 0 replies; 5+ messages in thread
From: Peter Korsgaard @ 2021-08-03 14:28 UTC (permalink / raw)
  To: Fabrice Fontaine; +Cc: buildroot

>>>>> "Fabrice" == Fabrice Fontaine <fontaine.fabrice@gmail.com> writes:

 > https://github.com/OISF/libhtp/releases/tag/0.5.38
 > Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>

Committed to 2021.02.x and 2021.05.x, thanks.

-- 
Bye, Peter Korsgaard
_______________________________________________
buildroot mailing list
buildroot@busybox.net
http://lists.busybox.net/mailman/listinfo/buildroot

^ permalink raw reply	[flat|nested] 5+ messages in thread
* Re: [Buildroot] [PATCH 2/2] package/suricata: security bump to version 6.0.3
  2021-07-02 19:25 ` [Buildroot] [PATCH 2/2] package/suricata: security bump to version 6.0.3 Fabrice Fontaine
@ 2021-08-03 14:28   ` Peter Korsgaard
  0 siblings, 0 replies; 5+ messages in thread
From: Peter Korsgaard @ 2021-08-03 14:28 UTC (permalink / raw)
  To: Fabrice Fontaine; +Cc: buildroot

>>>>> "Fabrice" == Fabrice Fontaine <fontaine.fabrice@gmail.com> writes:

 > Various security, performance, accuracy and stability issues have been
 > fixed, including a critical evasion assigned CVE-2021-35063.

 > https://forum.suricata.io/t/suricata-6-0-3-and-5-0-7-released/1489

 > Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>

Committed to 2021.02.x and 2021.05.x, thanks.

-- 
Bye, Peter Korsgaard
_______________________________________________
buildroot mailing list
buildroot@busybox.net
http://lists.busybox.net/mailman/listinfo/buildroot

^ permalink raw reply	[flat|nested] 5+ messages in thread
end of thread, other threads:[~2021-08-03 14:28 UTC | newest]

Thread overview: 5+ messages (download: mbox.gz / follow: Atom feed)
-- links below jump to the message on this page --
2021-07-02 19:25 [Buildroot] [PATCH 1/2] package/libhtp: bump to version 0.5.38 Fabrice Fontaine
2021-07-02 19:25 ` [Buildroot] [PATCH 2/2] package/suricata: security bump to version 6.0.3 Fabrice Fontaine
2021-08-03 14:28   ` Peter Korsgaard
2021-07-16 21:33 ` [Buildroot] [PATCH 1/2] package/libhtp: bump to version 0.5.38 Thomas Petazzoni
2021-08-03 14:28 ` Peter Korsgaard

This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.