Skip to content
This repository has been archived by the owner on Nov 6, 2020. It is now read-only.

bump smallvec 0.6.10 to fix vulnerability #10822

Merged
merged 1 commit into from
Jun 30, 2019
Merged

bump smallvec 0.6.10 to fix vulnerability #10822

merged 1 commit into from
Jun 30, 2019

Conversation

niklasad1
Copy link
Collaborator

@niklasad1 niklasad1 added A0-pleasereview 🤓 Pull request needs code review. B1-patch-beta 🕷🕷 B0-patch-stable 🕷 Pull request should also be back-ported to the stable branch. labels Jun 30, 2019
@dvdplm
Copy link
Collaborator

dvdplm commented Jun 30, 2019

@niklasad1 is there an equivalent PR for substrate?

@dvdplm dvdplm merged commit f6a3908 into master Jun 30, 2019
@dvdplm dvdplm deleted the bump-smallvec branch June 30, 2019 21:21
dvdplm added a commit that referenced this pull request Jul 1, 2019
@dvdplm
Merge branch 'master' into dp/chore/debug-synching-UnlinkedAncientBlo…
658f7ef 
…ckChain

* master:
  cargo update -p smallvec (#10822)
  replace memzero with zeroize crate (#10816)
  Don't repeat the logic from Default impl (#10813)
  removed additional_params method (#10818)
  Add Constantinople eips to the dev (instant_seal) config (#10809)
  removed redundant fmt::Display implementations (#10806)
@ordian ordian added this to the 2.6 milestone Jul 1, 2019
@ordian ordian added A8-looksgood 🦄 Pull request is reviewed well. M5-dependencies 🖇 Dependencies. and removed A0-pleasereview 🤓 Pull request needs code review. labels Jul 1, 2019
s3krit pushed a commit that referenced this pull request Jul 1, 2019
@niklasad1 @s3krit
cargo update -p smallvec (#10822)
ca9be8d 
Fixes servo/rust-smallvec#148
s3krit pushed a commit that referenced this pull request Jul 1, 2019
@niklasad1 @s3krit
cargo update -p smallvec (#10822)
4b12bf2 
Fixes servo/rust-smallvec#148
This was referenced Jul 1, 2019
Merged
Merged
dvdplm added a commit that referenced this pull request Jul 1, 2019
@dvdplm
Merge branch 'master' into dp/fix/prevent-building-block-on-top-of-sa…
aa99629 
…me-parent

* master: (24 commits)
  cargo update -p smallvec (#10822)
  replace memzero with zeroize crate (#10816)
  Don't repeat the logic from Default impl (#10813)
  removed additional_params method (#10818)
  Add Constantinople eips to the dev (instant_seal) config (#10809)
  removed redundant fmt::Display implementations (#10806)
  revert changes to .gitlab-ci.yml (#10807)
  Add filtering capability to `parity_pendingTransactions` (issue 8269) (#10506)
  removed EthEngine alias (#10805)
  wait a bit longer in should_check_status_of_request_when_its_resolved (#10808)
  Do not drop the peer with None difficulty (#10772)
  ethcore-bloom-journal updated to 2018 (#10804)
  ethcore-light uses bincode 1.1 (#10798)
  Fix a few typos and unused warnings. (#10803)
  updated project to ansi_term 0.11 (#10799)
  added new ropsten-bootnode and removed old one (#10794)
  updated price-info to edition 2018 (#10801)
  ethcore-network-devp2p uses igd 0.9 (#10797)
  updated parity-local-store to edition 2018 and removed redundant Error type (#10800)
  Cleanup unused vm dependencies (#10787)
  ...
s3krit added a commit that referenced this pull request Jul 1, 2019
@s3krit
Beta 2.5.4 (#10827)
d60e638 
* cargo update -p smallvec (#10822)

Fixes servo/rust-smallvec#148

* Update version to v2.5.3

Signed-off-by: Martin Pugh <pugh@s3kr.it>
s3krit added a commit that referenced this pull request Jul 1, 2019
@s3krit
Stable 2.4.9 (#10826)
691580c 
* cargo update -p smallvec (#10822)

Fixes servo/rust-smallvec#148

* Update version to 2.4.9
dvdplm added a commit that referenced this pull request Jul 3, 2019
@dvdplm
Merge branch 'master' into dp/insipx/insi_mutex-account-bloom
a7b3f47 
* master: (22 commits)
  ethcore does not use byteorder (#10829)
  Better logging when backfilling ancient blocks fail (#10796)
  depends: Update wordlist to v1.3 (#10823)
  cargo update -p smallvec (#10822)
  replace memzero with zeroize crate (#10816)
  Don't repeat the logic from Default impl (#10813)
  removed additional_params method (#10818)
  Add Constantinople eips to the dev (instant_seal) config (#10809)
  removed redundant fmt::Display implementations (#10806)
  revert changes to .gitlab-ci.yml (#10807)
  Add filtering capability to `parity_pendingTransactions` (issue 8269) (#10506)
  removed EthEngine alias (#10805)
  wait a bit longer in should_check_status_of_request_when_its_resolved (#10808)
  Do not drop the peer with None difficulty (#10772)
  ethcore-bloom-journal updated to 2018 (#10804)
  ethcore-light uses bincode 1.1 (#10798)
  Fix a few typos and unused warnings. (#10803)
  updated project to ansi_term 0.11 (#10799)
  added new ropsten-bootnode and removed old one (#10794)
  updated price-info to edition 2018 (#10801)
  ...
dvdplm added a commit that referenced this pull request Jul 4, 2019
@dvdplm
Merge branch 'master' into ng-fix-fork-choice
26f80c2 
* master:
  refactor: whisper: Add type aliases and update rustdocs in message.rs (#10812)
  Break circular dependency between Client and Engine (part 1) (#10833)
  tests: Relates to #10655: Test instructions for Readme (#10835)
  refactor: Related #9459 - evmbin: replace untyped json! macro with fully typed serde serialization using Rust structs (#10657)
  idiomatic changes to PodState (#10834)
  Allow --nat extip:your.host.here.org (#10830)
  When updating the client or when called from RPC, sleep should mean sleep (#10814)
  Remove excessive warning (#10831)
  Fix typo in README.md (#10828)
  ethcore does not use byteorder (#10829)
  Better logging when backfilling ancient blocks fail (#10796)
  depends: Update wordlist to v1.3 (#10823)
  cargo update -p smallvec (#10822)
  replace memzero with zeroize crate (#10816)
  Don't repeat the logic from Default impl (#10813)
  removed additional_params method (#10818)
  Add Constantinople eips to the dev (instant_seal) config (#10809)
dvdplm added a commit that referenced this pull request Jul 4, 2019
@dvdplm
Merge branch 'master' into luke-whisper-cli-test
cc45ea8 
* master: (21 commits)
  refactor: whisper: Add type aliases and update rustdocs in message.rs (#10812)
  Break circular dependency between Client and Engine (part 1) (#10833)
  tests: Relates to #10655: Test instructions for Readme (#10835)
  refactor: Related #9459 - evmbin: replace untyped json! macro with fully typed serde serialization using Rust structs (#10657)
  idiomatic changes to PodState (#10834)
  Allow --nat extip:your.host.here.org (#10830)
  When updating the client or when called from RPC, sleep should mean sleep (#10814)
  Remove excessive warning (#10831)
  Fix typo in README.md (#10828)
  ethcore does not use byteorder (#10829)
  Better logging when backfilling ancient blocks fail (#10796)
  depends: Update wordlist to v1.3 (#10823)
  cargo update -p smallvec (#10822)
  replace memzero with zeroize crate (#10816)
  Don't repeat the logic from Default impl (#10813)
  removed additional_params method (#10818)
  Add Constantinople eips to the dev (instant_seal) config (#10809)
  removed redundant fmt::Display implementations (#10806)
  revert changes to .gitlab-ci.yml (#10807)
  Add filtering capability to `parity_pendingTransactions` (issue 8269) (#10506)
  ...
Sign up for free to subscribe to this conversation on GitHub. Already have an account? Sign in.
Reviewers

@dvdplm dvdplm dvdplm approved these changes

@kirushik kirushik kirushik approved these changes

Assignees
No one assigned
Labels
A8-looksgood 🦄 Pull request is reviewed well. B0-patch-stable 🕷 Pull request should also be back-ported to the stable branch. M5-dependencies 🖇 Dependencies.
Projects
None yet
Milestone
2.6
Development

Successfully merging this pull request may close these issues.

use-after-free when growing to the same size
4 participants
@niklasad1 @dvdplm @kirushik @ordian