ryan77627/guix
1
0
Fork 0
mirror of https://git.in.rschanz.org/ryan77627/guix.git synced 2024-11-07 15:36:20 -05:00
Code Issues Projects Releases Packages Wiki Activity Actions

gnu: gnutls: Replace with 3.6.16 [fixes CVE-2021-20305].

Browse source 
* gnu/packages/tls.scm (gnutls)[replacement]: New field.
(gnutls-3.6.16): New variable.

Signed-off-by: Leo Famulari <leo@famulari.name>
This commit is contained in:
Solene Rapenne 2021-05-28 19:05:23 +02:00 committed by Leo Famulari
parent 4ec964ec38
commit 0b70eb03cb
No known key found for this signature in database
GPG key ID: 2646FA30BACA7F08
1 changed files with 18 additions and 0 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

18
gnu/packages/tls.scm
View file

@ -15,6 +15,7 @@
;;; Copyright © 2018 Clément Lassieur <clement@lassieur.org>
;;; Copyright © 2019 Mathieu Othacehe <m.othacehe@gmail.com>
;;; Copyright © 2020 Jan (janneke) Nieuwenhuizen <janneke@gnu.org>
;;; Copyright © 2021 Solene Rapenne <solene@perso.pw>
;;;
;;; This file is part of GNU Guix.
;;;
@ -165,6 +166,7 @@ (define-public gnutls
(package
(name "gnutls")
(version "3.6.15")
(replacement gnutls-3.6.16)
(source (origin
(method url-fetch)
;; Note: Releases are no longer on ftp.gnu.org since the
@ -258,6 +260,22 @@ (define-public gnutls
(properties '((ftp-server . "ftp.gnutls.org")
(ftp-directory . "/gcrypt/gnutls")))))
;; Replacement package to fix CVE-2021-20305.
(define gnutls-3.6.16
(package
(inherit gnutls)
(version "3.6.16")
(source (origin
(method url-fetch)
(uri (string-append "mirror://gnupg/gnutls/v"
(version-major+minor version)
"/gnutls-" version ".tar.xz"))
(patches (search-patches "gnutls-skip-trust-store-test.patch"
"gnutls-cross.patch"))
(sha256
(base32
"1czk511pslz367shf32f2jvvkp7y1323bcv88c2qng98mj0v6y8v"))))))
(define-public gnutls/guile-2.0
;; GnuTLS for Guile 2.0.
(package/inherit gnutls