nixos/nixpkgs.git - Nix Packages collection

diff options

author	Florian Klink <flokli@flokli.de>	2018-02-23 21:11:05 +0100
committer	Florian Klink <flokli@flokli.de>	2018-02-23 21:39:48 +0100
commit	9f6a942fc7725e63f36c7eb8eefe840628cf9f14 (patch)
tree	e2ab5c1f623eb924c285e735dfc332486302a60c /pkgs/development/python-modules/python-sql
parent	ee16feed37d3dfa5d0a01b62a0a2e0b3c3b3ee9d (diff)

zziplib: 0.13.67 -> 0.13.68

Bump zziplib to 0.13.68 to fix multiple CVE issues: - CVE-2018-6381 (https://github.com/gdraheim/zziplib/commit/a803559fa9194be895422ba3684cf6309b6bb598) - CVE-2018-6484 (https://github.com/gdraheim/zziplib/issues/14#issuecomment-363198084) - CVE-2018-6540 (https://github.com/gdraheim/zziplib/commit/72ec933663f738d8e166979aa7fd5590b2104a07) - CVE-2018-6541 (https://github.com/gdraheim/zziplib/issues/16#issuecomment-363197718) - CVE-2018-6542 (https://github.com/gdraheim/zziplib/commit/931f962ddfec0e00d6f486df2c56d9857b55944e) Unfortunately, getting only those patches is hard, as they're not well referenced to linked issues. The testsuite checking for vulns requires network access (so we can't easily test it here). https://github.com/gdraheim/zziplib/issues/20 might still be an issue, so keeping this as a TODO here.

Diffstat (limited to 'pkgs/development/python-modules/python-sql')

0 files changed, 0 insertions, 0 deletions


context:
space:
mode: