Page MenuHomePhabricator

Update zmq to 4.3.1
ClosedPublic

Authored by Fabien on Mar 30 2020, 13:52.

Details

Summary

From PR15188:

Addresses https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-6250

From PR16927:

Currently in Alpine Linux (latest, 3.10) in the depends system, one of
the ZeroMQ patches won't apply cleanly because the context around the
patch has changed and Alpine's patch implementation can't handle the
diff.

Some patch implementations can't handle fuzz / too much divergence from
the original code.

This PR just tweaks the context code around the patch so that
less-sophisticated patch implementations (such as on Alpine Linux) can
apply the patch without errors.

Backport of core PR15188 and PR16927.

Depends on D5603.

Test Plan

Run the Gitian builds.

Diff Detail

Repository
rABC Bitcoin ABC
Lint
Lint Not Applicable
Unit
Tests Not Applicable

Event Timeline

[Bot Message]
One or more PR numbers were detected in the summary.
Links to those PRs have been inserted into the summary for reference.

This revision is now accepted and ready to land.Mar 30 2020, 14:13
This revision was automatically updated to reflect the committed changes.