me/guix
Archived
1
0
Fork 0
Code Activity

gnu: OpenSSL@1.0: Replace with 1.0.2t [fixes CVE-2019-1547, CVE-2019-1563].

Browse source 
* gnu/packages/tls.scm (openssl-1.0.2t): New variable.
(openssl-1.0)[replacement]: New field.
This commit is contained in:
Marius Bakke 2019-10-13 20:50:18 +02:00
parent 0475c88d6f
commit d6718086f8
No known key found for this signature in database
GPG key ID: A2A06DF2A33A54FA
1 changed files with 22 additions and 0 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

22
gnu/packages/tls.scm
View file

@ -392,6 +392,7 @@ required structures.")
(inherit openssl) (inherit openssl)
(name "openssl") (name "openssl")
(version "1.0.2s") (version "1.0.2s")
(replacement openssl-1.0.2t)
(source (origin (source (origin
(method url-fetch) (method url-fetch)
(uri (list (string-append "https://www.openssl.org/source/openssl-" (uri (list (string-append "https://www.openssl.org/source/openssl-"
@ -473,6 +474,27 @@ required structures.")
,version "/misc")) ,version "/misc"))
#t))))))))) #t)))))))))
(define openssl-1.0.2t
(package
(inherit openssl)
(version "1.0.2t")
(source (origin
(inherit (package-source openssl-1.0))
(uri (list (string-append "https://www.openssl.org/source/openssl-"
version ".tar.gz")
(string-append "ftp://ftp.openssl.org/source/"
"openssl-" version ".tar.gz")
(string-append "ftp://ftp.openssl.org/source/old/"
(string-trim-right version char-set:letter)
"/openssl-" version ".tar.gz")))
(sha256
(base32
"1g67ra0ph7gpz6fgvv1i96d792jmd6ymci5kk53vbikszr74djql"))))
(arguments
(substitute-keyword-arguments (package-arguments openssl-1.0)
;; Parallel build is not supported in 1.0.x.
((#:parallel-build? _ #f) #f)))))
(define-public libressl (define-public libressl
(package (package
(name "libressl") (name "libressl")