ryan77627/guix
1
0
Fork 0
mirror of https://git.in.rschanz.org/ryan77627/guix.git synced 2024-11-13 18:36:14 -05:00
Code Issues Projects Releases Packages Wiki Activity Actions

gnu: libx11: Replace with 1.6.10 [fixes CVE-2020-14344].

Browse source 
* gnu/packages/xorg.scm (libx11/fixed): New variable.
(libx11)[replacement]: New field.
This commit is contained in:
Mark H Weaver 2020-08-01 03:04:38 -04:00
parent 256d2b2e84
commit d7d85c6412
No known key found for this signature in database
GPG key ID: 7CEF29847562C516
1 changed files with 15 additions and 1 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

16
gnu/packages/xorg.scm
View file

@ -1,6 +1,6 @@
;;; GNU Guix --- Functional package management for GNU
;;; Copyright © 2013, 2014 Andreas Enge <andreas@enge.fr>
;;; Copyright © 2014, 2015, 2017, 2018 Mark H Weaver <mhw@netris.org>
;;; Copyright © 2014, 2015, 2017, 2018, 2020 Mark H Weaver <mhw@netris.org>
;;; Copyright © 2014, 2015 Eric Bavier <bavier@member.fsf.org>
;;; Copyright © 2015, 2016, 2017, 2018, 2019 Ludovic Courtès <ludo@gnu.org>
;;; Copyright © 2015 Eric Dvorsak <eric@dvorsak.fr>
@ -5492,6 +5492,7 @@ (define-public libx11
(package
(name "libx11")
(version "1.6.9")
(replacement libx11/fixed)
(source
(origin
(method url-fetch)
@ -5529,6 +5530,19 @@ (define-public libx11
(description "Xorg Core X11 protocol client library.")
(license license:x11)))
(define libx11/fixed ; Fixes CVE-2020-14344
(package
(inherit libx11)
(version "1.6.A")
(source
(origin
(method url-fetch)
(uri (string-append
"mirror://xorg/individual/lib/libX11-1.6.10.tar.bz2"))
(sha256
(base32
"09k2pqmqbn2m1bpgl7jfxyqxaaxsnzbnp2bp8ycmqldqi5ln4j5g"))))))
;; packages of height 5 in the propagated-inputs tree
(define-public libxcursor