gnu: mit-krb5: Update to 1.18.4 [fixes CVE-2021-36222].

* gnu/packages/kerberos.scm (mit-krb5)[replacement]: New field. (mit-krb5-1.18.4): New variable.
2024-12-25 22:08:16 -05:00 · 2021-08-02 21:40:37 -04:00 · 2021-08-02 21:40:37 -04:00 · fdd2f57359
commit fdd2f57359
parent 1e16e1938c
1 changed files with 23 additions and 0 deletions
--- a/gnu/packages/kerberos.scm
+++ b/gnu/packages/kerberos.scm
@ -52,6 +52,7 @@ (define-module (gnu packages kerberos)
 (define-public mit-krb5
  (package
    (name "mit-krb5")
+    (replacement mit-krb5-1.18.4)
    (version "1.18")
    (source (origin
              (method url-fetch)
@ -119,6 +120,28 @@ (define-public mit-krb5
    (home-page "https://web.mit.edu/kerberos/")
    (properties '((cpe-name . "kerberos")))))

+(define-public mit-krb5-1.18.4
+  ;; Hide the package to avoid displaying the confusing "1.1a" version in the
+  ;; user interface.
+  (hidden-package
+    (package
+      (inherit mit-krb5)
+      ; version 1.18.4
+      (version "1.1a")
+      (source (origin
+                (method url-fetch)
+                (uri (list
+                       (string-append "https://web.mit.edu/kerberos/dist/krb5/"
+                                      "1.18"
+                                      "/krb5-1.18.4.tar.gz")
+                       (string-append "https://kerberos.org/dist/krb5/"
+                                      "1.18"
+                                      "/krb5-1.18.4.tar.gz")))
+                (patches (search-patches "mit-krb5-hurd.patch"))
+                (sha256
+                  (base32
+                    "1j4zm5npv3yxrwrsdwlxias0ycj4qfxzgnz0h9zffla7b4pmw236")))))))
+
 (define-public shishi
  (package
    (name "shishi")