* [Buildroot] [PATCH 1/2] package/libhtp: bump to version 0.5.38
@ 2021-07-02 19:25 Fabrice Fontaine
2021-07-02 19:25 ` [Buildroot] [PATCH 2/2] package/suricata: security bump to version 6.0.3 Fabrice Fontaine
` (2 more replies)
0 siblings, 3 replies; 5+ messages in thread
From: Fabrice Fontaine @ 2021-07-02 19:25 UTC (permalink / raw)
To: buildroot
https://github.com/OISF/libhtp/releases/tag/0.5.38
Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
---
package/libhtp/libhtp.hash | 2 +-
package/libhtp/libhtp.mk | 2 +-
2 files changed, 2 insertions(+), 2 deletions(-)
diff --git a/package/libhtp/libhtp.hash b/package/libhtp/libhtp.hash
index 805cd4f1f3..91c20697df 100644
--- a/package/libhtp/libhtp.hash
+++ b/package/libhtp/libhtp.hash
@@ -1,3 +1,3 @@
# Locally computed:
-sha256 0f8296ce9db815bbedc1c8a0b738dd25146fdaf910995a8c5f8e147799902b7e libhtp-0.5.37.tar.gz
+sha256 8365f338fdf5ef0f3b37f3cb4e2670d218c843eccc42aa87119819c0f018ef39 libhtp-0.5.38.tar.gz
sha256 87c93904e5434c81622ea690c2b90097b9f162aaa92a96542649a157dbf98d15 LICENSE
diff --git a/package/libhtp/libhtp.mk b/package/libhtp/libhtp.mk
index 7520346031..982ffe81cb 100644
--- a/package/libhtp/libhtp.mk
+++ b/package/libhtp/libhtp.mk
@@ -4,7 +4,7 @@
#
################################################################################
-LIBHTP_VERSION = 0.5.37
+LIBHTP_VERSION = 0.5.38
LIBHTP_SITE = $(call github,OISF,libhtp,$(LIBHTP_VERSION))
LIBHTP_LICENSE = BSD-3-Clause
LIBHTP_LICENSE_FILES = LICENSE
--
2.30.2
^ permalink raw reply related [flat|nested] 5+ messages in thread
* [Buildroot] [PATCH 2/2] package/suricata: security bump to version 6.0.3
2021-07-02 19:25 [Buildroot] [PATCH 1/2] package/libhtp: bump to version 0.5.38 Fabrice Fontaine
@ 2021-07-02 19:25 ` Fabrice Fontaine
2021-08-03 14:28 ` Peter Korsgaard
2021-07-16 21:33 ` [Buildroot] [PATCH 1/2] package/libhtp: bump to version 0.5.38 Thomas Petazzoni
2021-08-03 14:28 ` Peter Korsgaard
2 siblings, 1 reply; 5+ messages in thread
From: Fabrice Fontaine @ 2021-07-02 19:25 UTC (permalink / raw)
To: buildroot
Various security, performance, accuracy and stability issues have been
fixed, including a critical evasion assigned CVE-2021-35063.
https://forum.suricata.io/t/suricata-6-0-3-and-5-0-7-released/1489
Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
---
package/suricata/suricata.hash | 2 +-
package/suricata/suricata.mk | 2 +-
2 files changed, 2 insertions(+), 2 deletions(-)
diff --git a/package/suricata/suricata.hash b/package/suricata/suricata.hash
index 8395177811..74cc7435cb 100644
--- a/package/suricata/suricata.hash
+++ b/package/suricata/suricata.hash
@@ -1,5 +1,5 @@
# Locally computed:
-sha256 5e4647a07cb31b5d6d0049972a45375c137de908a964a44e2d6d231fa3ad4b52 suricata-6.0.2.tar.gz
+sha256 daf134bb2d7c980035e9ae60f7aaf313323a809340009f26e48110ccde81f602 suricata-6.0.3.tar.gz
# Hash for license files:
sha256 8177f97513213526df2cf6184d8ff986c675afb514d4e68a404010521b880643 COPYING
diff --git a/package/suricata/suricata.mk b/package/suricata/suricata.mk
index a7a6e10c03..566243e688 100644
--- a/package/suricata/suricata.mk
+++ b/package/suricata/suricata.mk
@@ -4,7 +4,7 @@
#
################################################################################
-SURICATA_VERSION = 6.0.2
+SURICATA_VERSION = 6.0.3
SURICATA_SITE = https://www.openinfosecfoundation.org/download
SURICATA_LICENSE = GPL-2.0
SURICATA_LICENSE_FILES = COPYING LICENSE
--
2.30.2
^ permalink raw reply related [flat|nested] 5+ messages in thread
* [Buildroot] [PATCH 1/2] package/libhtp: bump to version 0.5.38
2021-07-02 19:25 [Buildroot] [PATCH 1/2] package/libhtp: bump to version 0.5.38 Fabrice Fontaine
2021-07-02 19:25 ` [Buildroot] [PATCH 2/2] package/suricata: security bump to version 6.0.3 Fabrice Fontaine
@ 2021-07-16 21:33 ` Thomas Petazzoni
2021-08-03 14:28 ` Peter Korsgaard
2 siblings, 0 replies; 5+ messages in thread
From: Thomas Petazzoni @ 2021-07-16 21:33 UTC (permalink / raw)
To: buildroot
On Fri, 2 Jul 2021 21:25:47 +0200
Fabrice Fontaine <fontaine.fabrice@gmail.com> wrote:
> https://github.com/OISF/libhtp/releases/tag/0.5.38
>
> Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
> ---
> package/libhtp/libhtp.hash | 2 +-
> package/libhtp/libhtp.mk | 2 +-
> 2 files changed, 2 insertions(+), 2 deletions(-)
Both patches applied, thanks. However, it would have been nice to make
it clear whether the htp bump to 0.5.38 is necessary for the suricata
security bump. Since you sent both in the same series, I assumed it was
the case, but I think it is important to make it clearer in the commit
logs. Indeed, when Peter will review all the commits in "master" to
consider them for the LTS branch, he will see the suricata "security
bump", so he will backport it, but not necessarily that the libhtp bump
is needed together with the suricata bump (if it's the case).
Thanks a lot,
Thomas
--
Thomas Petazzoni, CTO, Bootlin
Embedded Linux and Kernel engineering
https://bootlin.com
^ permalink raw reply [flat|nested] 5+ messages in thread
* Re: [Buildroot] [PATCH 1/2] package/libhtp: bump to version 0.5.38
2021-07-02 19:25 [Buildroot] [PATCH 1/2] package/libhtp: bump to version 0.5.38 Fabrice Fontaine
2021-07-02 19:25 ` [Buildroot] [PATCH 2/2] package/suricata: security bump to version 6.0.3 Fabrice Fontaine
2021-07-16 21:33 ` [Buildroot] [PATCH 1/2] package/libhtp: bump to version 0.5.38 Thomas Petazzoni
@ 2021-08-03 14:28 ` Peter Korsgaard
2 siblings, 0 replies; 5+ messages in thread
From: Peter Korsgaard @ 2021-08-03 14:28 UTC (permalink / raw)
To: Fabrice Fontaine; +Cc: buildroot
>>>>> "Fabrice" == Fabrice Fontaine <fontaine.fabrice@gmail.com> writes:
> https://github.com/OISF/libhtp/releases/tag/0.5.38
> Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
Committed to 2021.02.x and 2021.05.x, thanks.
--
Bye, Peter Korsgaard
_______________________________________________
buildroot mailing list
buildroot@busybox.net
http://lists.busybox.net/mailman/listinfo/buildroot
^ permalink raw reply [flat|nested] 5+ messages in thread
* Re: [Buildroot] [PATCH 2/2] package/suricata: security bump to version 6.0.3
2021-07-02 19:25 ` [Buildroot] [PATCH 2/2] package/suricata: security bump to version 6.0.3 Fabrice Fontaine
@ 2021-08-03 14:28 ` Peter Korsgaard
0 siblings, 0 replies; 5+ messages in thread
From: Peter Korsgaard @ 2021-08-03 14:28 UTC (permalink / raw)
To: Fabrice Fontaine; +Cc: buildroot
>>>>> "Fabrice" == Fabrice Fontaine <fontaine.fabrice@gmail.com> writes:
> Various security, performance, accuracy and stability issues have been
> fixed, including a critical evasion assigned CVE-2021-35063.
> https://forum.suricata.io/t/suricata-6-0-3-and-5-0-7-released/1489
> Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
Committed to 2021.02.x and 2021.05.x, thanks.
--
Bye, Peter Korsgaard
_______________________________________________
buildroot mailing list
buildroot@busybox.net
http://lists.busybox.net/mailman/listinfo/buildroot
^ permalink raw reply [flat|nested] 5+ messages in thread
end of thread, other threads:[~2021-08-03 14:28 UTC | newest]
Thread overview: 5+ messages (download: mbox.gz / follow: Atom feed)
-- links below jump to the message on this page --
2021-07-02 19:25 [Buildroot] [PATCH 1/2] package/libhtp: bump to version 0.5.38 Fabrice Fontaine
2021-07-02 19:25 ` [Buildroot] [PATCH 2/2] package/suricata: security bump to version 6.0.3 Fabrice Fontaine
2021-08-03 14:28 ` Peter Korsgaard
2021-07-16 21:33 ` [Buildroot] [PATCH 1/2] package/libhtp: bump to version 0.5.38 Thomas Petazzoni
2021-08-03 14:28 ` Peter Korsgaard
This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.