[Buildroot] [PATCH RESEND] package/icu: bump to version 68-1
Peter Korsgaard
peter at korsgaard.com
Mon Nov 23 15:11:45 UTC 2020
>>>>> "Heiko" == Heiko Stübner <heiko at sntech.de> writes:
Hi,
>> There is quite some pending patches. It would be good to explicitly mark
>> it as a security fix, E.G. 'package/icu: security bump to version 68-1',
>> to make sure it isn't missed for master, as package bumps otherwise now
>> only go to next as we are busy getting 2020.11 stablized and released.
>>
>> How much have you tested this? New icu releases unfortunately have a
>> tendency to cause various breakage? Would it be an option to backport
>> this fix to the 67-1 release for 2020.11 / 2020.02 and only bump to 68-1
>> for next?
> This is running on a device we're doing right now as part of qt5 and a qt5
> main application for a week now (on a buildroot 2020.05-base) and I didn't
> hear about any specific hickups so far.
Ok.
> But while re-researching the CVE I noticed that it (now) marks 66.1 as up-to
> affected - I do remember reading 67.1 there [0] before, though don't have
> proof that it's not just my eyes ;-) .
heh ;)
> So the 67.1 in buildroot is actually secure and doesn't need an update.
Except for 2020.02.x, which has 65-1. I'll fix that.
> So I'll re-send this as v2 without the security-related text then ;-) .
Great, thanks!
--
Bye, Peter Korsgaard
More information about the buildroot
mailing list