me
/
guix
Archived
1
0
Fork 0
Code

gnu: java-xstream: Update to 1.4.16 [security fixes]. 

Fixes CVE-2021-21341, CVE-2021-21342, CVE-2021-21343, CVE-2021-21344,
CVE-2021-21345, CVE-2021-21346, CVE-2021-21347, CVE-2021-21348,
CVE-2021-21349, CVE-2021-21350 and CVE-2021-21351.

* gnu/packages/xml.scm (java-xstream): Update to 1.4.16.
[inputs]: Add java-mxparser, a fork of java-xpp3 made by upstream.
Java-xpp3 is still needed.

Signed-off-by: Julien Lepiller <julien@lepiller.eu>
master
Léo Le Bouter 2021-03-23 15:38:40 +01:00 committed by Julien Lepiller
parent 08b9e0ca0b
commit 8b2b546396
No known key found for this signature in database
GPG Key ID: 53D457B2D636EE82
1 changed files with 3 additions and 2 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

5
gnu/packages/xml.scm
View File

@ -2272,7 +2272,7 @@ outputting XML data from Java code.")
(define-public java-xstream (define-public java-xstream
(package (package
(name "java-xstream") (name "java-xstream")
(version "1.4.15") (version "1.4.16")
(source (source
(origin (origin
(method git-fetch) (method git-fetch)
@ -2284,7 +2284,7 @@ outputting XML data from Java code.")
version))))) version)))))
(file-name (git-file-name name version)) (file-name (git-file-name name version))
(sha256 (sha256
(base32 "1178qryrjwjp44439pi5dxzd32896r5zs429z1qhlc09951r7mi9")))) (base32 "16k2mc63h2fw7lxv74qmhg4p8q9hfrw114daa6nxwnpv08cnq755"))))
(build-system ant-build-system) (build-system ant-build-system)
(arguments (arguments
`(#:jar-name "xstream.jar" `(#:jar-name "xstream.jar"
@ -2299,6 +2299,7 @@ outputting XML data from Java code.")
("java-joda-time" ,java-joda-time) ("java-joda-time" ,java-joda-time)
("java-jettison" ,java-jettison) ("java-jettison" ,java-jettison)
("java-xom" ,java-xom) ("java-xom" ,java-xom)
("java-mxparser" ,java-mxparser)
("java-xpp3" ,java-xpp3) ("java-xpp3" ,java-xpp3)
("java-dom4j" ,java-dom4j) ("java-dom4j" ,java-dom4j)
("java-stax2-api" ,java-stax2-api) ("java-stax2-api" ,java-stax2-api)