Leo Famulari
09748a3527
gnu: wpa-supplicant: Fix "KRACK" key reinstallation attacks [security fixes].
...
Fixes CVE-2017-{13078,13079,13080,13081,13082,13087,13088}.
See these announcements for more information:
https://w1.fi/security/2017-1/wpa-packet-number-reuse-with-replayed-messages.txt
https://www.krackattacks.com/
* gnu/packages/patches/wpa-supplicant-CVE-2017-13082.patch,
gnu/packages/patches/wpa-supplicant-fix-key-reuse.patch,
gnu/packages/patches/wpa-supplicant-fix-nonce-reuse.patch
gnu/packages/patches/wpa-supplicant-fix-zeroed-keys.patch,
gnu/packages/patches/wpa-supplicant-krack-followups.patch: New files.
* gnu/packages/admin.scm (wpa-supplicant-minimal)[source]: Use them.
* gnu/local.mk (dist_patch_DATA): Add them.
2017-10-16 14:17:27 -04:00
Ludovic Courtès
7ad81b8b67
gnu: totem: Update to 3.26.0.
...
* gnu/packages/gnome.scm (totem): Update to 3.26.0.
[source]: Add 'patches' field.
[build-system]: Switch to MESON-BUILD-SYSTEM.
[native-inputs]: Add GTK+:bin and GLIB:bin.
[arguments]: Pass #:glib-or-gtk?. Adjust #:configure-flags to new
syntax.
* gnu/packages/patches/totem-meson-easy-codec.patch: New file.
* gnu/local.mk (dist_patch_DATA): Add it.
2017-10-11 23:00:46 +02:00
Marius Bakke
1c055d7258
Merge branch 'staging'
2017-10-10 21:44:32 +02:00
Marius Bakke
97ecd75e28
gnu: libxfont: Fix CVE-2017-13720, CVE-2017-13722.
...
* gnu/packages/patches/libxfont-CVE-2017-13720.patch,
gnu/packages/patches/libxfont-CVE-2017-13722.patch: New files.
* gnu/local.mk (dist_patch_DATA): Register them.
* gnu/packages/xorg.scm (libxfont, libxfont2)[source]: Use them.
2017-10-10 19:34:02 +02:00
Marius Bakke
c334058f6e
gnu: libmwaw: Update to 0.3.12.
...
* gnu/packages/libreoffice.scm (libmwaw): Update to 0.3.12.
[source](patches): Remove.
[arguments]: Remove.
* gnu/packages/patches/libmwaw-CVE-2017-9433.patch: Delete file.
* gnu/local.mk (dist_patch_DATA): Remove it.
2017-10-10 18:38:01 +02:00
Marius Bakke
5124e63775
gnu: libvisio: Update to 0.1.5.
...
* gnu/packages/patches/libvisio-fix-tests.patch: New file.
* gnu/local.mk (dist_patch_DATA): Add it.
* gnu/packages/libreoffice.scm (libvisio): Update to 0.1.5.
[source]: Add 'libvisio-fix-tests.patch'.
[arguments]: Remove.
2017-10-10 18:38:00 +02:00
Cyril Roelandt
4792a0321a
gnu: python2-unittest2: Update to 1.1.0.
...
* gnu/packages/python.scm (python2-unittest2): Update to 1.1.0.
* gnu/packages/patches/python2-unittest2-remove-argparse.patch: New file.
* gnu/local.mk: Add it.
2017-10-10 02:36:35 +02:00
Marius Bakke
ad3a937dae
Merge branch 'master' into staging
2017-10-07 12:54:40 +02:00
Christopher Baines
6bbbca9073
gnu: Add mongodb.
...
* gnu/packages/databases.scm (mongodb): New variable.
2017-10-06 21:24:23 +01:00
Marius Bakke
6a317919cf
Merge branch 'master' into staging
2017-10-06 11:03:27 +02:00
Marius Bakke
3f697ff2e8
gnu: openjpeg: Update to 2.3.0.
...
* gnu/packages/patches/openjpeg-CVE-2017-12982.patch,
gnu/packages/patches/openjpeg-CVE-2017-14040.patch,
gnu/packages/patches/openjpeg-CVE-2017-14041.patch,
gnu/packages/patches/openjpeg-CVE-2017-14151.patch,
gnu/packages/patches/openjpeg-CVE-2017-14152.patch,
gnu/packages/patches/openjpeg-CVE-2017-14164.patch: Delete files.
* gnu/local.mk (dist_patch_DATA): Remove them.
* gnu/packages/image.scm (openjpeg): Update to 2.3.0.
[source](patches): Remove.
* gnu/packages/gstreamer.scm (gst-plugins-bad)[arguments]: Adjust openjpeg
substitution.
2017-10-05 20:28:32 +02:00
Kei Kebreau
46cf31868c
gnu: curl: Update replacement to 7.56.0 [security fixes].
...
Fixes CVE-2017-1000254.
See <https://curl.haxx.se/docs/adv_20171004.html > for details.
* gnu/packages/curl.scm (curl)[replacement]: Update to 7.56.0.
(curl-7.55.0): Rename to ...
(curl-7.56.0): ... this.
[arguments]: Remove 'fix-Makefile' phase.
[source]: Remove patch.
* gnu/packages/patches/curl-bounds-check.patch: Delete it.
* gnu/local.mk (dist_patch_DATA): Remove it.
2017-10-04 19:37:55 -04:00
Marius Bakke
7716ccd59c
Merge branch 'master' into staging
2017-10-05 00:45:38 +02:00
Marius Bakke
a35532f52d
gnu: xorg-server: Update to 1.19.4 [fixes CVE-2017-13721, CVE-2017-13723].
...
The GPG signature for the bz2 tarball is bad, but the checksum matches the
signed release announcement, and contents are identical to the good .gz.
* gnu/packages/xorg.scm (xorg-server): Update to 1.19.4.
[source]: Remove obsolete patches.
* gnu/packages/patches/xorg-server-CVE-2017-10971.patch,
gnu/packages/patches/xorg-server-CVE-2017-10972.patch: Delete files.
* gnu/local.mk (dist_patch_DATA): Adjust accordingly.
2017-10-05 00:42:56 +02:00
Efraim Flashner
f473b8f1f7
gnu: clisp: Update to 2.49-60.
...
* gnu/packages/lisp.scm (clisp): Update to 2.49-60.
[source]: Download mercurial repository, apply patch.
[inputs]: Replace readline@6.2 with readline, add ncurses.
[arguments]: Add multiple configure flags. Remove build phase to build
in "src" directory. Remove more uses of a timestamp.
2017-10-04 09:29:24 +03:00
Marius Bakke
f9bd2051f0
gnu: qemu: Update to 2.10.1.
...
* gnu/packages/patches/qemu-CVE-2017-13711.patch,
gnu/packages/patches/qemu-CVE-2017-14167.patch: Delete files.
* gnu/local.mk (dist_patch_DATA): Remove them.
* gnu/packages/virtualization.scm (qemu): Update to 2.10.1.
[source](patches): Remove.
2017-10-03 23:22:54 +02:00
Cyril Roelandt
2299f5cd78
gnu: python-nose-timer: Add missing patch.
...
* gnu/packages/patches/python-nose-timer-drop-ordereddict.patch: New file.
* gnu/local.mk: Add it.
2017-10-03 22:41:25 +02:00
Kei Kebreau
4d6801b735
gnu: graphicsmagick: Fix CVE-2017-14649.
...
* gnu/packages/imagemagick.scm (graphicsmagick)[source]: Add patch.
* gnu/packages/patches/graphicsmagick-CVE-2017-14649.patch:
New file.
* gnu/local.mk (dist_patch_DATA): Register it.
2017-10-03 11:56:24 -04:00
Dave Love
a66408f8c0
gnu: Add cube.
...
* gnu/packages/profiling.scm(cube): New variable.
* gnu/packages/patches/cube-nocheck.patch: New file.
* gnu/local.mk: Add it.
Signed-off-by: Ludovic Courtès <ludo@gnu.org>
2017-10-03 17:07:55 +02:00
Theodoros Foradis
ea1aa4525e
gnu: openocd: Update to 0.10.0
...
* gnu/packages/embedded.scm (openocd): Update to 0.10.0.
[arguments] <configure-flags>: Add "--enable-sysfsgpio" flag.
Remove "--enable-oocd_trace" flag.
[arguments] <phases>: Add phase "change-udev-group".
Add phase "install-udev-rules".
* gnu/packages/patches/openocd-nrf52.patch: Modify to apply on 0.10.0.
Signed-off-by: Ludovic Courtès <ludo@gnu.org>
2017-09-28 15:00:02 +02:00
Julien Lepiller
8a238180fd
gnu: Add ocaml-graph.
...
* gnu/packages/ocaml.scm (ocaml-graph): New variable.
* gnu/packages/patches/ocaml-graph-honor-source-date-epoch.patch: New
file.
* gnu/local.mk (dist_patch_DATA): Add it.
2017-09-27 21:26:16 +02:00
Marius Bakke
9f1d112d12
Merge branch 'master' into staging
2017-09-27 21:14:27 +02:00
Marius Bakke
29591fc4c4
gnu: e2fsprogs: Update to 1.43.6.
...
* gnu/packages/linux.scm (e2fsprogs): Update to 1.43.6.
2017-09-27 21:02:56 +02:00
Leo Famulari
373cda6ac6
gnu: libunwind: Update to 1.2.1.
...
* gnu/packages/libunwind.scm (libunwind): Upate to 1.2.1.
[source]: Remove 'libunwind-CVE-2015-3239.patch'.
* gnu/packages/patches/libunwind-CVE-2015-3239.patch: Delete file.
* gnu/local.mk (dist_patch_DATA): Remove it.
2017-09-26 11:42:06 -04:00
Leo Famulari
66660960ba
gnu: certbot, python-acme: Update to 0.18.2.
...
* gnu/packages/tls.scm (certbot, python-acme): Update to 0.18.2.
* gnu/packages/patches/python-acme-dont-use-openssl-rand.patch: Delete file.
* gnu/local.mk (dist_patch_DATA): Remove it.
2017-09-25 03:27:24 -04:00
Efraim Flashner
c80f837afd
gnu: fontforge: Update to 20170731.
...
* gnu/packages/fontutils.scm (fontforge): Update to 20170731.
[source]: Remove patch, remove snippet.
[arguments]: Enable tests. Remove phase to build showttf.
[inputs]: Use python-wrapper instead of python.
[home-page]: Update to new home page.
* gnu/packages/patches/fontforge-svg-modtime.patch: Remove file.
* gnu/local.mk (dist_patch_DATA): Remove it.
2017-09-24 20:22:00 +03:00
Marius Bakke
e0afc09de4
gnu: curl: Update to 7.55.1.
...
* gnu/packages/patches/curl-bounds-check.patch: Delete file.
* gnu/local.mk (dist_patch_DATA): Remove it.
* gnu/packages/curl.scm (curl): Update to 7.55.1.
[replacement]: Remove field.
[source]: Use '.xz' tarball.
(curl-7.55.0): Remove variable.
2017-09-21 20:53:15 +02:00
Marius Bakke
efa0ba499e
Merge branch 'master' into staging
2017-09-21 20:34:49 +02:00
Ricardo Wurmus
0cdb6ab499
gnu: emacs: Update to 25.3.
...
* gnu/packages/patches/emacs-unsafe-enriched-mode-translations.patch: Remove file.
* gnu/local.mk (dist_patch_DATA): Remove patch.
* gnu/packages/emacs.scm (emacs): Update to 25.3.
[source]: Remove obsolete patch.
2017-09-21 16:46:20 +02:00
Marius Bakke
a9bd50e352
gnu: bluez: Remove leftover patch.
...
This is a follow-up to commit 164fccea7e
.
* gnu/packages/patches/bluez-CVE-2017-1000250.patch: Delete file.
* gnu/local.mk (dist_patch_DATA): Remove it.
2017-09-20 20:50:00 +02:00
Marius Bakke
cb6392698a
gnu: mesa: Update to 17.2.1.
...
* gnu/packages/gl.scm (mesa): Update to 17.2.1.
[inputs]: Add WAYLAND-PROTOCOLS.
* gnu/packages/patches/mesa-skip-disk-cache-test.patch: Adjust context.
2017-09-20 19:55:34 +02:00
Marius Bakke
b093be236e
gnu: gd: Remove graft for 2.2.5.
...
* gnu/packages/gd.scm (gd): Update to 2.2.5.
[source]: Remove obsolete patches.
[replacement]: Remove field.
(gd-2.2.5): Remove variable.
* gnu/packages/patches/gd-fix-gd2-read-test.patch,
gnu/packages/patches/gd-php-73968-Fix-109-XBM-reading.patch: Delete files.
* gnu/local.mk (dist_patch_DATA): Remove patches.
* gnu/packages/php.scm (php)[inputs]: Replace GD-2.2.5 with GD.
2017-09-20 19:06:38 +02:00
Marius Bakke
58366883f2
Merge branch 'master' into staging
2017-09-20 18:49:26 +02:00
Efraim Flashner
bbcfd80a20
gnu: newsbeuter: Fix CVE-2017-14500.
...
* gnu/packages/syndication.scm (newsbeuter)[source]: Add patch.
* gnu/packages/patches/newsbeuter-CVE-2017-14500.patch: New file.
* gnu/local.mk (dist_patch_DATA): Register it.
2017-09-18 22:38:56 +03:00
Ludovic Courtès
e14ab0ad07
gnu: httpd: Patch "options bleed" [fixes CVE-2017-9798].
...
* gnu/packages/patches/httpd-CVE-2017-9798.patch: New file.
* gnu/packages/web.scm (httpd)[source]: Use it.
* gnu/local.mk (dist_patch_DATA): Add it.
2017-09-18 15:44:52 +02:00
Marius Bakke
881006b65c
gnu: certbot: Fix build with python-pyopenssl >= 17.3.0.
...
* gnu/packages/patches/python-acme-dont-use-openssl-rand.patch: New file.
* gnu/local.mk (dist_patch_DATA): Register it.
* gnu/packages/tls.scm (python-acme)[source]: Use it.
2017-09-17 18:50:00 +02:00
Ben Woodcroft
86805c1ba3
gnu: ruby-2.2: Update to 2.2.8. Fix CVE-2017-{0898,10784,14033,14064}.
...
* gnu/packages/ruby.scm (ruby-2.2): Update to 2.2.8.
[source]: Remove patch.
* gnu/packages/patches/ruby-2.2.7-rubygems-2613-ruby22.patch: Delete file.
* gnu/local.mk (dist_patch_DATA): Remove it.
2017-09-17 20:08:48 +10:00
Ben Woodcroft
c351e8cea5
gnu: ruby-2.3: Update to 2.3.5. Fix CVE-2017-{0898,10784,14033,14064}.
...
* gnu/packages/ruby.scm (ruby-2.3): Update to 2.3.5.
[source]: Remove patch.
* gnu/packages/patches/ruby-2.3.4-rubygems-2613-ruby23.patch: Delete file.
* gnu/local.mk (dist_patch_DATA): Remove it.
2017-09-17 20:08:48 +10:00
Ben Woodcroft
312e8a9993
ruby: Update replacement to 2.4.2. Fix CVE-2017-{0898,10784,14033,14064}.
...
* gnu/packages/ruby.scm (ruby): Update replacement to 2.4.2.
(ruby-2.4.1): Rename to ...
(ruby-2.4.2): ... this.
[source]: Remove patches.
* gnu/packages/patches/ruby-rubygems-2612-ruby24.patch,
gnu/packages/patches/ruby-rubygems-2613-ruby24.patch: Delete files.
* gnu/local.mk (dist_patch_DATA): Remove them.
2017-09-17 20:08:48 +10:00
Peter Mikkelsen
dab666cd8d
gnu: Add meson-for-build.
...
* gnu/packages/build-tools.scm (meson-for-build): New variable.
* gnu/packages/patches/meson-for-build-rpath.patch: New file.
* gnu/local.mk (dist_patch_DATA): Register it.
Signed-off-by: Ludovic Courtès <ludo@gnu.org>
2017-09-16 00:03:53 +02:00
Paul Garlick
8f21aa22bf
gnu: Add openfoam.
...
*gnu/packages/patches/openfoam-4.1-cleanup.patch: New file
*gnu/packages/simulation.scm: New file
*gnu/local.mk (GNU_SYSTEM_MODULES): Add module.
(dist_patch_DATA): Add patch.
Signed-off-by: Ludovic Courtès <ludo@gnu.org>
2017-09-15 18:31:53 +02:00
Kei Kebreau
db7f7eb8ca
gnu: graphicsmagick: Fix CVE-2017-{11403,14103}.
...
* gnu/packages/imagemagick.scm (graphicsmagick)[source]: Add patch.
* gnu/packages/patches/graphicsmagick-CVE-2017-11403+CVE-2017-14103.patch:
New file.
* gnu/local.mk (dist_patch_DATA): Register it.
2017-09-14 09:23:19 -04:00
Christopher Baines
9d46919f9c
gnu: Add perl-text-markdown-discount.
...
* gnu/packages/markdown.scm (perl-text-markdown-discount): New variable.
* gnu/packages/patches/perl-text-markdown-discount-use-system-markdown.patch:
New file.
2017-09-13 18:19:29 +01:00
Mark H Weaver
27236a4348
gnu: bluez: Add replacement to fix CVE-2017-1000250.
...
* gnu/packages/patches/bluez-CVE-2017-1000250.patch: New file.
* gnu/local.mk (dist_patch_DATA): Add it.
* gnu/packages/linux.scm (bluez)[replacement]: New field.
(bluez/fixed): New variable.
2017-09-13 10:43:03 -04:00
Ludovic Courtès
66ae958c5b
gnu: emacs: Patch message-mode enriched text translation [security fix].
...
* gnu/packages/patches/emacs-unsafe-enriched-mode-translations.patch:
New file.
* gnu/packages/emacs.scm (emacs)[source](patches): Add it.
* gnu/local.mk (dist_patch_DATA): Add it.
2017-09-11 14:52:29 +02:00
Efraim Flashner
338b58e0ea
gnu: openjpeg: Fix CVE-2017-14164.
...
* gnu/packages/image.scm (openjpeg)[source]: Add patch.
* gnu/packages/patches/openjpeg-CVE-2017-14164.patch: New file.
* gnu/local.mk (dist_patch_DATA): Register it.
2017-09-10 22:00:35 +03:00
Efraim Flashner
224bb4b6f9
gnu: graphicsmagick: Fix CVE-2017-14165.
...
* gnu/packages/imagemagick.scm (graphicsmagick)[source]: Add patch.
* gnu/packages/patches/graphicsmagick-CVE-2017-14165.patch: New file.
* gnu/local.mk (dist_patch_DATA): Register it.
2017-09-10 21:45:45 +03:00
Kei Kebreau
2cc752c0b0
gnu: graphicsmagick: Fix CVE-2017-14042.
...
* gnu/packages/imagemagick.scm (graphicsmagick)[source]: Add patch.
* gnu/packages/patches/graphicsmagick-CVE-2017-14042.patch: New files.
* gnu/local.mk (dist_patch_DATA): Register them.
2017-09-10 09:33:56 -04:00
Ludovic Courtès
67a37c6311
gnu: foomatic-filters: Add missing patches.
...
This is a followup to commit d02aabaf1b
.
* gnu/packages/patches/foomatic-filters-CVE-2015-8327.patch: New file.
* gnu/packages/patches/foomatic-filters-CVE-2015-8560.patch: New file.
* gnu/local.mk (dist_patch_DATA): Add them.
2017-09-10 12:00:25 +02:00
Leo Famulari
81635ad03e
gnu: tcpdump: Update to 4.9.2 [security fixes].
...
Fixes CVE-2017-{12893,12894,12895,12896,12897,12898,12899,12900,12901,12902,
12985,12986,12987,12988,12989,12990,12991,12992,12993,12994,12995,12996,12997,
12998,12999,13000,13001,13002,13003,13004,13005,13006,13007,13008,13009,13010,
13012,13013,13014,13015,13016,13017,13018,13019,13020,13021,13022,13023,13024,
13025,13026,13027,13028,13029,13030,13031,13032,13033,13034,13035,13036,13037,
13038,13039,13040,13041,13042,13043,13044,13045,13046,13047,13048,13049,13050,
13051,13052,13053,13054,13055,13687,13688,13689,13690,13725}.
* gnu/packages/admin.scm (tcpdump): Update to 4.9.2.
[source]: Remove patches and add alternate source URL.
* gnu/packages/patches/tcpdump-CVE-2017-11541.patch,
gnu/packages/patches/tcpdump-CVE-2017-11542.patch,
gnu/packages/patches/tcpdump-CVE-2017-11543.patch: Delete files.
* gnu/local.mk (dist_patch_DATA): Remove them.
2017-09-07 17:44:20 -04:00