On Thu, Aug 11, 2016 at 05:11:02PM +0200, Jelle Licht wrote:
> Hello,
>
> Attached patch backports the commit[0] for jq that fixed the vulnerability
> referred to as CVE-2015-8863[1]. Some feedback would be welcome.
>
> - Jelle
>
> * gnu/packages/patches/jq-CVE-2015-8863.patch: New file.
> * gnu
ect: [PATCH] gnu: jq: Fix CVE-2015-8863.
To: guix-devel@gnu.org
* gnu/packages/patches/jq-CVE-2015-8863.patch: New file.
* gnu/local.mk (dist_patch_DATA): Add it.
* gnu/packages/web.scm (jq): Add it.
---
gnu/local.mk| 1 +
gnu/packages/patches/jq-CVE-2015-8863.patch |
