[bug#48039] xorg-server might be vulnerable to CVE-2021-3472

guix-patches

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[bug#48039] xorg-server might be vulnerable to CVE-2021-3472

From:	Leo Famulari
Subject:	[bug#48039] xorg-server might be vulnerable to CVE-2021-3472
Date:	Mon, 26 Apr 2021 15:33:33 -0400

On Mon, Apr 26, 2021 at 08:27:58PM +0200, Nicolò Balzarotti wrote:
> Leo Famulari <leo@famulari.name> writes:
> 
> > On Mon, Apr 26, 2021 at 07:25:35PM +0200, Nicolò Balzarotti wrote:
> >> * gnu/packages/xorg.scm (xorg-server): Update to 1.20.11.
> >
> > Did you see <https://bugs.gnu.org/48001>?
> >
> Ops, sorry for the duplicate, I somehow missed it, I'm closing this

I didn't mean for you to close your message.

We took different approaches to fixing the bug: I applied a patch, and
you updated the package.

The big difference is that your patch doesn't avoid changing the
xorg-server-for-tests package, so it can't be applied to master.

I'm merging the two tickets. I think that updating the package is a
better choice that simply patching it. I'll probably join our two
patches together and push that.

[Prev in Thread]

Current Thread

[Next in Thread]

[bug#48039] xorg-server might be vulnerable to CVE-2021-3472, Leo Famulari <=
- bug#48039: xorg-server might be vulnerable to CVE-2021-3472, Leo Famulari, 2021/04/27
  - [bug#48039] xorg-server might be vulnerable to CVE-2021-3472, Nicolò Balzarotti, 2021/04/27

Prev by Date: [bug#47994] [PATCH] services: kmscon: Add xkb-layout and xkb-options fields.
Next by Date: [bug#48044] [PATCH] build/go: Support cross compiling.
Previous by thread: [bug#48044] [PATCH] build/go: Support cross compiling.
Next by thread: bug#48039: xorg-server might be vulnerable to CVE-2021-3472
Index(es):
- Date
- Thread