me/guix
Archived
1
0
Fork 0
Code Activity

gnu: libtasn1: Replace 4.7 with 4.8 [fixes CVE-2016-4008].

Browse source 
* gnu/packages/tls.scm (libtasn1)[replacement]: New field.
(libtasn1/fixed): New variable.
This commit is contained in:
Ludovic Courtès 2016-04-28 18:00:21 +02:00
parent 5c6a062d48
commit f28cb89e48
No known key found for this signature in database
GPG key ID: 090B11993D9AEBB5
1 changed files with 14 additions and 0 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

14
gnu/packages/tls.scm
View file

@ -65,8 +65,22 @@
for transmitting machine-neutral encodings of data objects in computer for transmitting machine-neutral encodings of data objects in computer
networking, allowing for formal validation of data according to some networking, allowing for formal validation of data according to some
specifications.") specifications.")
(replacement libtasn1/fixed)
(license license:lgpl2.0+))) (license license:lgpl2.0+)))
(define libtasn1/fixed ;for CVE-2016-4008
(package
(inherit libtasn1)
(source
(let ((version "4.8"))
(origin
(method url-fetch)
(uri (string-append "mirror://gnu/libtasn1/libtasn1-"
version ".tar.gz"))
(sha256
(base32
"04y5m29pqmvkfdbppmsdifyx89v8xclxzklpfc7a1fkr9p4jz07s")))))))
(define-public p11-kit (define-public p11-kit
(package (package
(name "p11-kit") (name "p11-kit")