rekado pushed a commit to branch python-team
in repository guix.
commit e0fdbfe07186dc1d85a2bfeccb53d48c3914c5ec
Author: Hilton Chain <hako@ultrarare.space>
AuthorDate: Fri Dec 20 21:19:54 2024 +0800
gnu: go-filippo-io-age: Update to 1.2.1. [security fix]
age vulnerable to malicious plugin names, recipients, or identities causing
arbitrary binary execution:
https://github.com/advisories/GHSA-32gq-x56h-299c
* gnu/packages/golang-crypto.scm (go-filippo-io-age): Update to 1.2.1.
Change-Id: I62dfffb3ffa5a049c934b48b8bb9d243f4757b12
---
gnu/packages/golang-crypto.scm | 4 ++--
1 file changed, 2 insertions(+), 2 deletions(-)
diff --git a/gnu/packages/golang-crypto.scm b/gnu/packages/golang-crypto.scm
index 0fd96eaa54..96fed6ddcd 100644
--- a/gnu/packages/golang-crypto.scm
+++ b/gnu/packages/golang-crypto.scm
@@ -124,7 +124,7 @@ can be ignored.")
(define-public go-filippo-io-age
(package
(name "go-filippo-io-age")
- (version "1.2.0")
+ (version "1.2.1")
(source
(origin
(method git-fetch)
@@ -133,7 +133,7 @@ can be ignored.")
(commit (string-append "v" version))))
(file-name (git-file-name name version))
(sha256
- (base32 "1dms32lxqgjipmlisng7dmy1sdw0qscj43x9lmpadyzbzc64lhrv"))))
+ (base32 "183iqzmdwk4b35vxrdg2gdzd4277yr5bgbgl9brqv3w1dap5v4pm"))))
(build-system go-build-system)
(arguments
(list
