Re: [PATCH 0/1] curl: Fix CVE-2016-3739.

guix-devel

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [PATCH 0/1] curl: Fix CVE-2016-3739.

From:	Leo Famulari
Subject:	Re: [PATCH 0/1] curl: Fix CVE-2016-3739.
Date:	Mon, 13 Jun 2016 12:14:14 -0400
User-agent:	Mutt/1.6.0 (2016-04-01)

On Mon, Jun 13, 2016 at 03:42:47PM +0000, ng0 wrote:
> From the way it was done in Gentoo, I assume this is not needed?
> mbedtls is a separate package, and I have libressl as the curlssl provider,
> which is a curl built against libressl.
> 
> If I am wrong, correct me.
> My initial comment was a bit out of place, but I just assume it will
> justwork™ on guix, otherwise a curl-with-mbedtls would have to be
> created.
> 
> Sorry for the confusion.

I think the confusion was mine. Unless Hiawatha requires a curl linked
against mbedTLS, I don't think there will be any problem with
CVE-2016-3739 and Hiawatha.

[Prev in Thread]

Current Thread

[Next in Thread]

[PATCH 0/1] curl: Fix CVE-2016-3739., Leo Famulari, 2016/06/11
- [PATCH 1/1] gnu: curl: Replace with 7.49.1 [fixes CVE-2016-3739]., Leo Famulari, 2016/06/11
- Re: [PATCH 0/1] curl: Fix CVE-2016-3739., Ludovic Courtès, 2016/06/12
  - Re: [PATCH 0/1] curl: Fix CVE-2016-3739., ng0, 2016/06/12
    - Re: [PATCH 0/1] curl: Fix CVE-2016-3739., Leo Famulari, 2016/06/12
    - Re: [PATCH 0/1] curl: Fix CVE-2016-3739., Ludovic Courtès, 2016/06/13
    - Re: [PATCH 0/1] curl: Fix CVE-2016-3739., ng0, 2016/06/13
    - Re: [PATCH 0/1] curl: Fix CVE-2016-3739., Leo Famulari <=
    - Re: [PATCH 0/1] curl: Fix CVE-2016-3739., ng0, 2016/06/13
    - Re: [PATCH 0/1] curl: Fix CVE-2016-3739., Leo Famulari, 2016/06/13

Prev by Date: Re: [PATCH] gnu: giac-xcas: Update to 1.2.2-59
Next by Date: Re: [PATCH] Add msgpack
Previous by thread: Re: [PATCH 0/1] curl: Fix CVE-2016-3739.
Next by thread: Re: [PATCH 0/1] curl: Fix CVE-2016-3739.
Index(es):
- Date
- Thread