bug#47627: syncthing package is vulnerable to CVE-2021-21404

bug-guix

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

bug#47627: syncthing package is vulnerable to CVE-2021-21404

From:	Leo Famulari
Subject:	bug#47627: syncthing package is vulnerable to CVE-2021-21404
Date:	Thu, 8 Apr 2021 20:01:26 -0400

On Tue, Apr 06, 2021 at 06:51:47PM -0400, Leo Famulari wrote:
> Yeah. Given this report, we could also just build Syncthing with the
> bundled source code, which is freely licensed.

I've attached the patch.

0001-gnu-Syncthing-Update-to-1.15.1-fixes-CVE-2021-21404.patch
Description: Text document

signature.asc
Description: PGP signature

[Prev in Thread]

Current Thread

[Next in Thread]

bug#47627: syncthing package is vulnerable to CVE-2021-21404, Léo Le Bouter, 2021/04/06
- bug#47627: syncthing package is vulnerable to CVE-2021-21404, Leo Famulari, 2021/04/06
  - bug#47627: syncthing package is vulnerable to CVE-2021-21404, Leo Famulari <=
    - bug#47627: syncthing package is vulnerable to CVE-2021-21404, Léo Le Bouter, 2021/04/11
    - bug#47627: syncthing package is vulnerable to CVE-2021-21404, Leo Famulari, 2021/04/11

Prev by Date: bug#42129: guix-install.sh does not add build users to kvm group
Next by Date: bug#47140: libupnp package vulnerable to CVE-2021-28302
Previous by thread: bug#47627: syncthing package is vulnerable to CVE-2021-21404
Next by thread: bug#47627: syncthing package is vulnerable to CVE-2021-21404
Index(es):
- Date
- Thread