flatcar-scripts

mirror of https://github.com/flatcar/scripts.git synced 2025-08-15 00:46:58 +02:00

History

Dongsu Park f321302e32 dev-db/sqlite: update to 3.39.4 Update dev-db/sqlite to 3.39.4. This is not for a security issue. CVE-2022-35737, addressed by sqlite 3.39.2, affects only sqlite compiled with SQLITE_ENABLE_STAT4 being enabled. As Flatcar does not enable that option, that CVE means nothing. See also https://sqlite.org/forum/forumpost/3607259d3c. However, Gentoo has GLSA 202210-40 https://security.gentoo.org/glsa/202210-40. So it is anyway better for Flatcar to update sqlite to 3.39, to avoid having to add another GLSA allowlist entry.	2022-11-14 14:25:03 +01:00
..
src/third_party/portage-stable	dev-db/sqlite: update to 3.39.4	2022-11-14 14:25:03 +01:00

Dongsu Park f321302e32 dev-db/sqlite: update to 3.39.4

Update dev-db/sqlite to 3.39.4.

This is not for a security issue.
CVE-2022-35737, addressed by sqlite 3.39.2, affects only sqlite compiled
with SQLITE_ENABLE_STAT4 being enabled. As Flatcar does not enable that
option, that CVE means nothing. See also
https://sqlite.org/forum/forumpost/3607259d3c.

However, Gentoo has GLSA 202210-40
https://security.gentoo.org/glsa/202210-40. So it is anyway better for
Flatcar to update sqlite to 3.39, to avoid having to add another GLSA
allowlist entry.

2022-11-14 14:25:03 +01:00

src/third_party/portage-stable

dev-db/sqlite: update to 3.39.4

2022-11-14 14:25:03 +01:00