Bump dependency for CVE

This commit is contained in:
Kovid Goyal
2026-02-07 14:41:17 +05:30
parent 07a9f2bcaa
commit 3839dcc082
2 changed files with 2 additions and 4 deletions

View File

@@ -224,8 +224,6 @@ IGNORED_DEPENDENCY_CVES = [
'CVE-2025-15367',
'CVE-2025-12781',
'CVE-2025-11468',
# glib
'CVE-2025-4056', # Only affects Windows, on which we dont run
# github.com/nwaples/rardecode/v2
'CVE-2025-11579', # rardecode is version 2.2.1, not vulnerable
]

View File

@@ -202,11 +202,11 @@
},
{
"name": "glib 2.82.5",
"name": "glib 2.86.3",
"os": "linux",
"unix": {
"file_extension": "tar.xz",
"hash": "sha256:05c2031f9bdf6b5aba7a06ca84f0b4aced28b19bf1b50c6ab25cc675277cbc3f",
"hash": "sha256:b3211d8d34b9df5dca05787ef0ad5d7ca75dec998b970e1aab0001d229977c65",
"urls": ["https://download.gnome.org/sources/glib/{version_except_last}/{filename}"]
}
},