aboutsummaryrefslogtreecommitdiff
path: root/gnu/packages/backup.scm
diff options
context:
space:
mode:
authorLeo Famulari <leo@famulari.name>2017-12-20 19:39:59 -0500
committerLeo Famulari <leo@famulari.name>2017-12-21 12:28:43 -0500
commit2a0e3d163581f053138508b0d40a28e07dc37923 (patch)
tree8c14071c0dd2a225d7df8607203129291e726966 /gnu/packages/backup.scm
parentc521c8f1a4cd50996d661c01f8ac6d4832d825f4 (diff)
downloadguix-2a0e3d163581f053138508b0d40a28e07dc37923.tar
guix-2a0e3d163581f053138508b0d40a28e07dc37923.tar.gz
gnu: libarchive: Fix CVE-2017-14502.
* gnu/packages/patches/libarchive-CVE-2017-14502.patch: New file. * gnu/local.mk (dist_patch_DATA): Add it. * gnu/packages/backup.scm (libarchive-3.3.2)[source]: Use it.
Diffstat (limited to 'gnu/packages/backup.scm')
-rw-r--r--gnu/packages/backup.scm3
1 files changed, 2 insertions, 1 deletions
diff --git a/gnu/packages/backup.scm b/gnu/packages/backup.scm
index e634d6ab96..fab71d055a 100644
--- a/gnu/packages/backup.scm
+++ b/gnu/packages/backup.scm
@@ -253,7 +253,8 @@ random access nor for in-place modification.")
(method url-fetch)
(uri (string-append "http://libarchive.org/downloads/libarchive-"
version ".tar.gz"))
- (patches (search-patches "libarchive-CVE-2017-14166.patch"))
+ (patches (search-patches "libarchive-CVE-2017-14166.patch"
+ "libarchive-CVE-2017-14502.patch"))
(sha256
(base32
"1km0mzfl6in7l5vz9kl09a88ajx562rw93ng9h2jqavrailvsbgd"))))))