brotli packages: security update
Ken Brown
kbrown@cornell.edu
Fri Oct 9 18:59:50 GMT 2020
On 10/9/2020 4:49 AM, Lemures Lemniscati via Cygwin-apps wrote:
>> On 10/8/2020 11:59 AM, Lemures Lemniscati via Cygwin-apps wrote:
>>> Hi!
>>>
>>> Brotli 1.0.9 contains a security update, which fixes an "integer overflow" problem [1].
>>>
>>> Please update it.
>>>
>>>
>>> A cygport file for updating is placed at
>>> https://github.com/cygwin-lem/brotli-cygport/tree/n_1.0.9-1 .
>>>
>>>
>>> Test packages generated from it are placed at
>>> https://cygwin-lem.github.io/brotli-cygport/ ,
>>> or
>>> https://github.com/cygwin-lem/brotli-cygport/tree/n_1.0.9-1_gh-pages .
>>>
>>>
>>> But the cygport file is not tested under Cygwin CI AppVeyor, yet.
>>> So BUILD_REQUIRES in brotli.cygport might be insufficient.
>>>
>>>
>>> [1]: https://github.com/google/brotli/blob/master/README.md
>>>
>>>
>>> Regards,
>>>
>>> Lem
>>>
>
>
> On Thu, 8 Oct 2020 17:31:15 -0400, Ken Brown via Cygwin-apps
>> The maintainer is Yaakov. Do you want to adopt it and do the update?
>>
>> Ken
>
> Alright, I'd like to adopt brotli and to update it.
OK, it's yours.
Ken
More information about the Cygwin-apps
mailing list