On Wed, Oct 25, 2017 at 07:29:28PM +0200, Tobias Geerinckx-Rice wrote:
> Leo Famulari wrote on 25/10/17 at 19:22:
> > Expat 2.2.3's release notes only mentioned CVE-2017-11742, which is a
> > Windows vulnerability and out of scope for Guix. And I didn't see
> > security issues disclosed in the 2.2.
Leo Famulari wrote on 25/10/17 at 19:22:
> Expat 2.2.3's release notes only mentioned CVE-2017-11742, which is a
> Windows vulnerability and out of scope for Guix. And I didn't see
> security issues disclosed in the 2.2.4 release notes.
Ah, sorry to spread misinfo. I don't have Web access at the m
On Wed, Oct 25, 2017 at 02:58:13PM +0200, Sebastian Pipping wrote:
> Hi GuixSD team,
>
>
> from looking at [1] and [2] my impression is that GuixSD is still at
> version 2.2.2 with Expat, while there is version 2.2.4 with bugfixes
> upstream. Is there anything blocking an update on your side tha
Sebastian,
Sebastian Pipping wrote on 25/10/17 at 14:58:
> from looking at [1] and [2] my impression is that GuixSD is still at
> version 2.2.2 with Expat, while there is version 2.2.4 with bugfixes
> upstream.
Thanks for the report!
I see that 2.2.3 fixed a CVE, so I hurried up a patch[0].
Kin
Sorry, no time.
On 25.10.2017 16:05, Vincent Legoll wrote:
> Hello,
>
> maybe you can try to submit a patch for review...
>
> That ought to be fairly easy
>
Hello,
maybe you can try to submit a patch for review...
That ought to be fairly easy
--
Vincent Legoll
Hi GuixSD team,
from looking at [1] and [2] my impression is that GuixSD is still at
version 2.2.2 with Expat, while there is version 2.2.4 with bugfixes
upstream. Is there anything blocking an update on your side that needs
fixing upstream?
Best
Sebastian
[1] https://repology.org/metapack