aboutsummaryrefslogtreecommitdiff
path: root/gnu/packages/xml.scm
diff options
context:
space:
mode:
authorTobias Geerinckx-Rice <me@tobias.gr>2017-10-25 18:23:44 +0200
committerTobias Geerinckx-Rice <me@tobias.gr>2017-10-25 19:06:37 +0200
commit63bbf38fb177bc28e6b8c8692815812e636d6e18 (patch)
treec9a62647a20a202dd24d6207ff8f0d4be0bd3d3b /gnu/packages/xml.scm
parentc61cac6902308f9bc1e40bb57795a0b8837c10fd (diff)
downloadgnu-guix-63bbf38fb177bc28e6b8c8692815812e636d6e18.tar
gnu-guix-63bbf38fb177bc28e6b8c8692815812e636d6e18.tar.gz
gnu: expat: Update replacement to 2.2.4 [security fixes].
See 'Changes' in the source distribution for more information about the fixed security issues. * gnu/packages/xml.scm (expat)[replacement]: Update to 2.2.4. (expat-2.2.2): Replace with... (expat-2.2.4): ...new variable.
Diffstat (limited to 'gnu/packages/xml.scm')
-rw-r--r--gnu/packages/xml.scm10
1 files changed, 5 insertions, 5 deletions
diff --git a/gnu/packages/xml.scm b/gnu/packages/xml.scm
index 163743c07d..4e69449531 100644
--- a/gnu/packages/xml.scm
+++ b/gnu/packages/xml.scm
@@ -12,7 +12,7 @@
;;; Copyright © 2016 Ben Woodcroft <donttrustben@gmail.com>
;;; Copyright © 2016 Jan Nieuwenhuizen <janneke@gnu.org>
;;; Copyright © 2016, 2017 ng0 <contact.ng0@cryptolab.net>
-;;; Copyright © 2016 Tobias Geerinckx-Rice <me@tobias.gr>
+;;; Copyright © 2016, 2017 Tobias Geerinckx-Rice <me@tobias.gr>
;;; Copyright © 2016, 2017 Marius Bakke <mbakke@fastmail.com>
;;; Copyright © 2017 Adriano Peluso <catonano@gmail.com>
;;; Copyright © 2017 Gregor Giesen <giesen@zaehlwerk.net>
@@ -58,7 +58,7 @@
(package
(name "expat")
(version "2.2.1")
- (replacement expat-2.2.2)
+ (replacement expat-2.2.4)
(source (origin
(method url-fetch)
(uri (string-append "mirror://sourceforge/expat/expat/"
@@ -75,17 +75,17 @@ stream-oriented parser in which an application registers handlers for
things the parser might find in the XML document (like start tags).")
(license license:expat)))
-(define expat-2.2.2 ; Fixes CVE-2017-9233, CVE-2016-9063 and other issues.
+(define expat-2.2.4 ; Fix CVE-{2016-9063,2017-9233,2017-11742} & other issues.
(package
(inherit expat)
- (version "2.2.2")
+ (version "2.2.4")
(source (origin
(method url-fetch)
(uri (string-append "mirror://sourceforge/expat/expat/"
version "/expat-" version ".tar.bz2"))
(sha256
(base32
- "0ik0r39ala9c6hj4kxrk933klgwkzlkbrfhvhaykx8l1rwgr2xj3"))))))
+ "17h1fb9zvqvf0sr78j211bngc6jpql5wzar8fg9b52jzjvdqbb83"))))))
(define-public libebml
(package