aboutsummaryrefslogtreecommitdiff
path: root/gnu/packages/tls.scm
diff options
context:
space:
mode:
authorLeo Famulari <leo@famulari.name>2018-06-14 16:30:57 -0400
committerLeo Famulari <leo@famulari.name>2018-06-18 12:04:49 -0400
commit9f162c0ab42d8adecc1e23375ce8cb8090714399 (patch)
tree0d45685025652347efaac70214be6774da6e3983 /gnu/packages/tls.scm
parentb8ea0db3aebf6ec9b1f3720759897d97bc2fcd48 (diff)
downloadguix-9f162c0ab42d8adecc1e23375ce8cb8090714399.tar
guix-9f162c0ab42d8adecc1e23375ce8cb8090714399.tar.gz
gnu: OpenSSL 1.1.0: Fix CVE-2018-{0495,0732}.
* gnu/packages/patches/openssl-1.1.0-CVE-2018-0495.patch, gnu/packages/patches/openssl-1.1.0-CVE-2018-0732.patch: New files. * gnu/local.mk (dist_patch_DATA): Add them. * gnu/packages/tls.scm (openssl-next)[source]: Use them.
Diffstat (limited to 'gnu/packages/tls.scm')
-rw-r--r--gnu/packages/tls.scm4
1 files changed, 3 insertions, 1 deletions
diff --git a/gnu/packages/tls.scm b/gnu/packages/tls.scm
index 69edd32582..c14feb2983 100644
--- a/gnu/packages/tls.scm
+++ b/gnu/packages/tls.scm
@@ -420,7 +420,9 @@ required structures.")
(string-append "ftp://ftp.openssl.org/source/old/"
(string-trim-right version char-set:letter)
"/" name "-" version ".tar.gz")))
- (patches (search-patches "openssl-1.1.0-c-rehash-in.patch"))
+ (patches (search-patches "openssl-1.1.0-c-rehash-in.patch"
+ "openssl-1.1.0-CVE-2018-0495.patch"
+ "openssl-1.1.0-CVE-2018-0732.patch"))
(sha256
(base32
"05x509lccqjscgyi935z809pwfm708islypwhmjnb6cyvrn64daq"))))