** Changed in: libzip (Debian)
Status: New => Fix Released
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/1674057
Title:
[FFe] upgrade libzip to version 1.5.0
To manage notifications about
This bug was fixed in the package libzip - 1.5.1-0ubuntu1
---
libzip (1.5.1-0ubuntu1) disco; urgency=medium
* New upstream release (LP: #1674057) (Closes: #894813)
- Removes custom AES implementation in favour of using standard crypto libs
* Build with cmake, autotools
https://launchpad.net/ubuntu/+source/libzip/1.5.1-0ubuntu1
mudlet & mysql-workbench have unrelated build failures:
https://people.canonical.com/~ubuntu-archive/transitions/html/libzip.html
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to
** Changed in: libzip (Ubuntu)
Status: New => Fix Committed
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/1674057
Title:
[FFe] upgrade libzip to version 1.5.0
To manage notifications about
also includes libzip 1.5.1 release from today
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/1674057
Title:
[FFe] upgrade libzip to version 1.5.0
To manage notifications about this bug go to:
I landed this in a silo, at Laney's request.
https://bileto.ubuntu.com/#/ticket/3230
ignition-fuel-tools:s390x is dep wait, as it also is in the archive,
everything else built fine on all arches.
--
You received this bug notification because you are a member of Kubuntu
Bugs, which is
Packaging should be good to go now, pending FFe approval. All remaining
debian/patches are upstream cherry-picks that will be included in next
upstream release.
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
I have created a transition tracker (copied from Debian)
http://people.canonical.com/~ubuntu-archive/transitions/html/libzip.html
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/1674057
Title:
[FFe]
** Description changed:
Feature Freeze Justification
This release fixes to two CVE's and most notably has removed its custom AES
crypto implementation with using openssl libraries. It is for the security
reasons I am requesting this FFe this late in the cycle.
I have been liasing with upstream to sort of the few remaining issues,
they have been super responsive, and for the the most part those are
fixed upstream, I will update the packaging with upstream fixes once I
get back into range of a power point! in the next day or three.
--
You received this
** Description changed:
Feature Freeze Justification
This release fixes to two CVE's and most notably has removed its custom AES
crypto implementation with using openssl libraries. It is for the security
reasons I am requesting this FFe this late in the cycle.
** Changed in: libzip (Debian)
Status: Unknown => New
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/1674057
Title:
[FFe] upgrade libzip to version 1.5.0
To manage notifications about this
** Bug watch added: Debian Bug tracker #894813
https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=894813
** Also affects: libzip (Debian) via
https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=894813
Importance: Unknown
Status: Unknown
--
You received this bug notification because
** Description changed:
Feature Freeze Justification
This release fixes to two CVE's and most notably has removed its custom AES
crypto implementation with using openssl libraries. It is for the security
reasons I am requesting this FFe this late in the cycle.
** Changed in: libzip (Ubuntu Bionic)
Status: In Progress => New
** No longer affects: libzip (Ubuntu Bionic)
** Tags added: bionic
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/1674057
** Description changed:
Feature Freeze Justification
This release fixes to two CVE's and most notably has removed its custom AES
crypto implementation with using openssl libraries. It is for the security
reasons I am requesting this FFe this late in the cycle.
** Patch added: "debdiff against version 1.3.2 in Debian experimental"
https://bugs.launchpad.net/ubuntu/+source/libzip/+bug/1674057/+attachment/5101199/+files/libzip_1.5.debdiff
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
** Description changed:
- Please consider upgrading libzip to the newest version (currently 1.20).
- It comes with important changes (details here:
- https://nih.at/libzip/NEWS.html) and also it's used by ark since commit
- ee74c157daf3604277ffcf10d2a89b2b59556dd7:
+ Feature Freeze Justification
** Summary changed:
- [needs packaging] upgrade libzip to version 1.20
+ [FFe] upgrade libzip to version 1.5.0
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/1674057
Title:
[FFe] upgrade libzip to
19 matches
Mail list logo