| Message ID | 20230424125033.93540-1-aperez@igalia.com |
|---|---|
| State | Accepted |
| Headers | show |
| Series | [v2] package/webkitgtk: security bump to version 2.38.6 | expand |
>>>>> "Adrian" == Adrian Perez de Castro <aperez@igalia.com> writes: > Bugfix release with many security fixes, including (but not limited to) > patches for CVE-2023-25358, CVE-2022-0108, CVE-2022-32885, > CVE-2023-27932, CVE-2023-27954, and CVE-2023-28205. > Release notes: > https://webkitgtk.org/2023/04/20/webkitgtk2.38.6-released.html > Accompanying security advisory: > https://webkitgtk.org/security/WSA-2023-0003.html > Signed-off-by: Adrian Perez de Castro <aperez@igalia.com> > --- > Changes v1 -> v2: > - Corrected URLs to release notes and security advisory. Committed, thanks.
>>>>> "Adrian" == Adrian Perez de Castro <aperez@igalia.com> writes: > Bugfix release with many security fixes, including (but not limited to) > patches for CVE-2023-25358, CVE-2022-0108, CVE-2022-32885, > CVE-2023-27932, CVE-2023-27954, and CVE-2023-28205. > Release notes: > https://webkitgtk.org/2023/04/20/webkitgtk2.38.6-released.html > Accompanying security advisory: > https://webkitgtk.org/security/WSA-2023-0003.html > Signed-off-by: Adrian Perez de Castro <aperez@igalia.com> > --- > Changes v1 -> v2: > - Corrected URLs to release notes and security advisory. Committed to 2023.02.x and 2022.02.x, thanks.
diff --git a/package/webkitgtk/webkitgtk.hash b/package/webkitgtk/webkitgtk.hash index c771297b5a..3bc521e445 100644 --- a/package/webkitgtk/webkitgtk.hash +++ b/package/webkitgtk/webkitgtk.hash @@ -1,7 +1,7 @@ -# From https://webkitgtk.org/releases/webkitgtk-2.38.5.tar.xz.sums -md5 de05d314a3ecb5fb3835e4d84f8f466d webkitgtk-2.38.5.tar.xz -sha1 1774390c628bb3a524d4ed76f11de4a878078db6 webkitgtk-2.38.5.tar.xz -sha256 40c20c43022274df5893f22b1054fa894c3eea057389bb08aee08c5b0bb0c1a7 webkitgtk-2.38.5.tar.xz +# From https://webkitgtk.org/releases/webkitgtk-2.38.6.tar.xz.sums +md5 a50290fdc80842b1ae8be1e1147b5679 webkitgtk-2.38.6.tar.xz +sha1 4dfb3d96f621fc633ff347e083e429893551fb26 webkitgtk-2.38.6.tar.xz +sha256 1c614c9589389db1a79ea9ba4293bbe8ac3ab0a2234cac700935fae0724ad48b webkitgtk-2.38.6.tar.xz # Hashes for license files: sha256 0b5d3a7cc325942567373b0ecd757d07c132e0ebd7c97bfc63f7e1a76094edb4 Source/WebCore/LICENSE-APPLE diff --git a/package/webkitgtk/webkitgtk.mk b/package/webkitgtk/webkitgtk.mk index 09dbe96a6f..2923b1fe52 100644 --- a/package/webkitgtk/webkitgtk.mk +++ b/package/webkitgtk/webkitgtk.mk @@ -4,7 +4,7 @@ # ################################################################################ -WEBKITGTK_VERSION = 2.38.5 +WEBKITGTK_VERSION = 2.38.6 WEBKITGTK_SITE = https://www.webkitgtk.org/releases WEBKITGTK_SOURCE = webkitgtk-$(WEBKITGTK_VERSION).tar.xz WEBKITGTK_INSTALL_STAGING = YES
Bugfix release with many security fixes, including (but not limited to) patches for CVE-2023-25358, CVE-2022-0108, CVE-2022-32885, CVE-2023-27932, CVE-2023-27954, and CVE-2023-28205. Release notes: https://webkitgtk.org/2023/04/20/webkitgtk2.38.6-released.html Accompanying security advisory: https://webkitgtk.org/security/WSA-2023-0003.html Signed-off-by: Adrian Perez de Castro <aperez@igalia.com> --- Changes v1 -> v2: - Corrected URLs to release notes and security advisory. --- package/webkitgtk/webkitgtk.hash | 8 ++++---- package/webkitgtk/webkitgtk.mk | 2 +- 2 files changed, 5 insertions(+), 5 deletions(-)