diff options
| author | Leo Famulari <leo@famulari.name> | 2016-10-02 15:58:06 -0400 |
|---|---|---|
| committer | Leo Famulari <leo@famulari.name> | 2016-10-03 16:52:28 -0400 |
| commit | b38e97e03b92d54524953949934884828a1683c1 (patch) | |
| tree | fde3b2a9c2c85a51a501ea92b785e7852fd4c102 /gnu/packages/backup.scm | |
| parent | 85358aef8e80d810405916f571816bd028c245b8 (diff) | |
| download | guix-b38e97e03b92d54524953949934884828a1683c1.tar guix-b38e97e03b92d54524953949934884828a1683c1.tar.gz | |
gnu: libarchive: Fix several security issues.
* gnu/packages/backup.scm (libarchive)[replacement]: New field.
(libarchive/fixed): New variable.
* gnu/packages/patches/libarchive-7zip-heap-overflow.patch,
gnu/packages/patches/libarchive-fix-symlink-check.patch,
gnu/packages/patches/libarchive-fix-filesystem-attacks.patch,
gnu/packages/patches/libarchive-safe_fprintf-buffer-overflow.patch: New files.
* gnu/local.mk (dist_patch_DATA): Add them.
Diffstat (limited to 'gnu/packages/backup.scm')
| -rw-r--r-- | gnu/packages/backup.scm | 12 |
1 files changed, 12 insertions, 0 deletions
diff --git a/gnu/packages/backup.scm b/gnu/packages/backup.scm index c6f1321d77..797c06e149 100644 --- a/gnu/packages/backup.scm +++ b/gnu/packages/backup.scm @@ -172,6 +172,7 @@ backups (called chunks) to allow easy burning to CD/DVD.") (define-public libarchive (package (name "libarchive") + (replacement libarchive/fixed) (version "3.2.1") (source (origin @@ -227,6 +228,17 @@ archive. In particular, note that there is currently no built-in support for random access nor for in-place modification.") (license license:bsd-2))) +(define libarchive/fixed + (package + (inherit libarchive) + (source (origin + (inherit (package-source libarchive)) + (patches (search-patches + "libarchive-7zip-heap-overflow.patch" + "libarchive-fix-symlink-check.patch" + "libarchive-fix-filesystem-attacks.patch" + "libarchive-safe_fprintf-buffer-overflow.patch")))))) + (define-public rdup (package (name "rdup") |