On Thu, Dec 1, 2022 at 2:59 PM Fabio Valentini <decatho...@gmail.com> wrote: > > On Thu, Dec 1, 2022 at 7:57 PM Neal Gompa <ngomp...@gmail.com> wrote: > > > > > If you need help with any of the rebuilds, feel free to ping me. > > > I'm currently handling the same CVE for the capnp Rust crate (where > > > thankfully only one application needs to be rebuilt). > > > > > > > Help would very much be appreciated, I'm currently underwater with other > > work. > > Sure. I'll look into it tomorrow, it's already getting late here. > I can prepare the Fedora updates, but I don't know how to handle EPEL > updates that change SONAME. > > So ... let this serve as notice that we'll likely update capnproto to > version 0.10.3 / 0.9.2 / 0.7.1 whatever version fixes that CVE for the > currently packaged branch, and will need to rebuild dependent > packages, as well (to fix the CVE *and* for the SONAME bump). >
You handle it the same way you do for Fedora, just send an email to the epel-announce@ mailing list so everyone knows it's happening. -- 真実はいつも一つ!/ Always, there's only one truth! _______________________________________________ devel mailing list -- devel@lists.fedoraproject.org To unsubscribe send an email to devel-le...@lists.fedoraproject.org Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedoraproject.org/archives/list/devel@lists.fedoraproject.org Do not reply to spam, report it: https://pagure.io/fedora-infrastructure/new_issue
