Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

staging-next-24.05 iteration 7 - 2024-12-24 #367831

Open
wants to merge 147 commits into
base: release-24.05
Choose a base branch
from
Open

staging-next-24.05 iteration 7 - 2024-12-24 #367831

wants to merge 147 commits into from
+200 −64

Conversation

vcunat
Copy link
Member

@vcunat vcunat commented Dec 24, 2024

This will be the last staging iteration for 24.05. We only promised to maintain 24.05 until the end of 2024.

Significant breakages

(will be edited based on progress)

Conni2461 and others added 30 commits November 1, 2024 17:54
@Conni2461 @github-actions
python312Packages.werkzeug: 3.0.4 -> 3.0.6
50b920e 
Changelog: https://werkzeug.palletsprojects.com/en/3.0.x/changes/#version-3-0-5
https://werkzeug.palletsprojects.com/en/stable/changes/#version-3-0-6
(cherry picked from commit 0b96d8b)
@github-actions
Merge staging-next-24.05 into staging-24.05
eb17642
@github-actions
Merge staging-next-24.05 into staging-24.05
621d274
@github-actions
Merge staging-next-24.05 into staging-24.05
4c0d062
@github-actions
Merge staging-next-24.05 into staging-24.05
a3a6a0f
@github-actions
Merge staging-next-24.05 into staging-24.05
66e1a78
@github-actions
Merge staging-next-24.05 into staging-24.05
46d9dbc
@trofi @github-actions
expat: 2.6.3 -> 2.6.4
f6eb246 
Changes: https://github.com/libexpat/libexpat/blob/R_2_6_4/expat/Changes
(cherry picked from commit cb37e29)
@github-actions
Merge release-24.05 into staging-next-24.05
fbb193b
@github-actions
Merge staging-next-24.05 into staging-24.05
2bb5fbe
@github-actions
Merge release-24.05 into staging-next-24.05
f04ce42
@github-actions
Merge staging-next-24.05 into staging-24.05
d9fd1dc
@github-actions
Merge release-24.05 into staging-next-24.05
66f3d5a
@github-actions
Merge staging-next-24.05 into staging-24.05
4230457
@github-actions
Merge release-24.05 into staging-next-24.05
394df19
@github-actions
Merge staging-next-24.05 into staging-24.05
4fb480f
@github-actions
Merge release-24.05 into staging-next-24.05
30c8c98
@github-actions
Merge staging-next-24.05 into staging-24.05
fde7801
@github-actions
Merge release-24.05 into staging-next-24.05
8419ce8
@github-actions
Merge staging-next-24.05 into staging-24.05
fa8f9a8
@github-actions
Merge release-24.05 into staging-next-24.05
3e5e741
@github-actions
Merge staging-next-24.05 into staging-24.05
b320dc9
@github-actions
Merge release-24.05 into staging-next-24.05
2537a01
@github-actions
Merge staging-next-24.05 into staging-24.05
5e34ac4
@github-actions
Merge release-24.05 into staging-next-24.05
426fe97
@github-actions
Merge staging-next-24.05 into staging-24.05
70d02ea
@github-actions
Merge release-24.05 into staging-next-24.05
82826ea
@github-actions
Merge staging-next-24.05 into staging-24.05
6179a1d
@tobim
ghostscript: fix installCheck on aarch64-darwin
229a8f7
@Ma27
Reapply "postgresql_15: 15.8 -> 15.9"
ba7ccaf 
This reverts commit e13094a.
github-actions bot and others added 15 commits December 21, 2024 00:16
@github-actions
Merge staging-next-24.05 into staging-24.05
db09ea6
@mweinelt
[staging-24.05] python312: 3.12.6 -> 3.12.7 (#361744)
1be1fa8
@github-actions
Merge release-24.05 into staging-next-24.05
79abe4a
@github-actions
Merge staging-next-24.05 into staging-24.05
07b8b00
@github-actions
Merge release-24.05 into staging-next-24.05
ea87219
@github-actions
Merge staging-next-24.05 into staging-24.05
3927966
@github-actions
Merge release-24.05 into staging-next-24.05
41d5294
@github-actions
Merge staging-next-24.05 into staging-24.05
8323f82
@vcunat
python312: fix memory exhaustion vulnerability in asyncio.protocols (#…
e3ce881 
…363230)
@vcunat
mpg123: 1.32.8 -> 1.32.9 (#365028)
3736091
@vcunat
gst_all_1.*: 1.24.3 -> 1.24.10 (#365245)
6eb01a6
@LeSuisse @github-actions
avahi: apply patch for CVE-2024-52616
41db15c 
Fixes CVE-2024-52616 / GHSA-r9j3-vjjh-p8vm

(cherry picked from commit a7e9d55)
@mweinelt @vcunat
python312Packages.jinja2: 3.1.4 -> 3.1.5
cca4f8e 
https://github.com/pallets/jinja/releases/tag/3.1.5
GHSA-q2x7-8rv6-6q7h
GHSA-gmj6-6f8f-6699

Fixes: CVE-2024-56326, CVE-2024-56201
(cherry picked from commit 143eb2e / PR #367410)
@vcunat
Merge branch 'staging-24.05' into staging-next-24.05
f05b70c
@vcunat
avahi: apply patch for CVE-2024-52616 (#367827)
6f3402f
@vcunat vcunat added the 1.severity: security Issues which raise a security issue, or PRs that fix one label Dec 24, 2024
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@ajs124 ajs124 Awaiting requested review from ajs124

@lukegb lukegb Awaiting requested review from lukegb

@mweinelt mweinelt Awaiting requested review from mweinelt

@thoughtpolice thoughtpolice Awaiting requested review from thoughtpolice

Assignees
No one assigned
Labels
1.severity: security Issues which raise a security issue, or PRs that fix one 6.topic: nodejs 6.topic: python 10.rebuild-darwin: 501+ 10.rebuild-darwin: 5001+ 10.rebuild-darwin-stdenv This PR causes stdenv to rebuild 10.rebuild-linux: 501+ 10.rebuild-linux: 5001+ 10.rebuild-linux-stdenv This PR causes stdenv to rebuild
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.