Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Memo in case of upgrade >= 1.2.5 #144

Open
supermamie opened this issue Sep 4, 2023 · 1 comment
Open

Memo in case of upgrade >= 1.2.5 #144

supermamie opened this issue Sep 4, 2023 · 1 comment

Comments

@supermamie
Copy link

Describe the bug

Upgrade to borg >= 1.2.5 will require a specific upgrade

Context

Here is the doc about the upgrade :
https://github.com/borgbackup/borg/blob/1.2.6/docs/changes.rst#pre-125-archives-spoofing-vulnerability-cve-2023-36811

I have not analyzed it deeply but it seems that the upgrade process will have to contain some intelligence to upgrade.
@Gredin67 Gredin67 mentioned this issue Dec 9, 2023
Merged
@alexAubin
Copy link
Member

Hmpf I don't know if we want to address this, there seem to be a big number of "ifs", and the appropriate way to "fix" the thing (if it happened) is clearly not straightforward ... Like, maybe it's concern for shared repo somehow but that's not the topology we have here x_x

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@supermamie @alexAubin